Chapter 9. Security

A system is as secure as its weakest component taking the message broker into account. As RabbitMQ instances can be used to carry sensitive application data or affect the stability of an entire system, we need to make sure that our RabbitMQ deployments are secured properly.

The topics covered in this chapter are as follows:

  • Types of threats
  • Authentication
  • Authorization
  • Secure communication
  • Penetration testing

Types of threats

There are several aspects in which the security of the message broker is affected. RabbitMQ hasn't been planned to be exposed on the Internet initially; however, a number of security concerns exist even with in-house deployments of the message broker. We will stay away from this fact and not make assumptions on ...

Get Learning RabbitMQ now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.