Quality of protection

Advanced Message Security data-protection policies imply a quality of protection (QOP).

• Privacy - messages placed on the queue must be signed and encrypted.
• Integrity - messages placed on the queue must be signed by the sender.
• Confidentiality - messages placed on the queue must be encrypted. For more information, see Qualities of protection available with AMS
• None - no data protection is applicable.

A policy that stipulates that messages must be signed when placed on a queue has a QOP of INTEGRITY. A QOP of INTEGRITY means that a policy stipulates a signature algorithm, but does not stipulate an encryption algorithm. Integrity-protected messages are also referred to as "SIGNED".

A policy that stipulates that messages must be signed and encrypted when placed on a queue has a QOP of PRIVACY. A QOP of PRIVACY means that when a policy stipulates a signature algorithm and an encryption algorithm. Privacy-protected messages are also referred to as "SEALED".

A policy that stipulates that messages must be encrypted when placed on a queue has a QOP of CONFIDENTIALITY. A QOP of CONFIDENTIALITY means that a policy stipulates an encryption algorithm.

A policy that does not stipulate a signature algorithm or an encryption algorithm has a QOP of NONE. Advanced Message Security provides no data-protection for queues that have a policy with a QOP of NONE.