4.4 Messaging security The messaging security model includes the following three major areas: Determining and authenticating the user's identity Checking the identity's authorization on the provider's resources Ensuring the message's confidentiality and integrity in transit The next sections cover these areas. 4.4.1 Identity authentication This section describes the way WebSphere Application Server for z/OS Version 6.01 determines the user ID to be authenticated to propagate with the message towards the JMS provider. It ends with some security considerations regarding MDBs. Messaging security operates as part of the WebSphere Application Server global security and is only enabled when global security is enabled. If so, user IDs requesting connections to the JMS provider are authenticated, and can then be used by the JMS provider to control access to its resources like queues. The user ID that will be used for authentication can be provided by the application or the container and depends on a combination of settings. When the