Message Queuing-Encrypted Messages


Applies To: Windows 10, Windows 7, Windows 8, Windows 8.1, Windows Server 2008, Windows Server 2008 R2, Windows Server 2012, Windows Server 2012 R2, Windows Server Technical Preview, Windows Vista

To let the source queue manager encrypt your messages, the sending application must set the privacy level and encryption algorithm (optional) properties of the message when the message is sent.

The privacy level property (PROPID_M_PRIV_LEVEL or MSMQMessage.PrivLevel) of the message must be set to one of the following.

Set to For
MQMSG_PRIV_LEVEL_BODY 40-bit encryption (MSMQ 1.0 and MSMQ 2.0)
MQMSG_PRIV_LEVEL_BODY_BASE 40-bit encryption (MSMQ 2.0 and later)
MQMSG_PRIV_LEVEL_BODY_ENHANCED 128-bit encryption (MSMQ 2.0 and later)

The encryption algorithm property (PROPID_M_ENCRYPTION_ALG or MSMQMessage.EncryptAlgorithm) of the message can be set to MQMSG_RC2 or MQMSG_RC4. If this property is not set, the default RC2 encryption algorithm is used to encrypt the message. Message encryption is based on public-key encryption using Microsoft® CryptoAPI with the underlying Microsoft Base Cryptographic Provider for 40-bit encryption or the Microsoft Enhanced Cryptographic Provider for 128-bit encryption.

More Information

For information on See
Manually encrypting messages when there is no access to the directory service. Application-Encrypted Messages
Reading private messages from the destination queue Reading Private Messages


For an example of See
Enforcing encryption when creating a queue C/C++ Code Example: Enforcing Encryption

 Visual Basic Code Example: Enforcing Encryption
Requesting encryption when sending messages C/C++ Code Example: Requesting Encryption

 Visual Basic Code Example: Requesting Encryption