You can encrypt SSL authenticated connections to the Broker Server as well as SSL authorized communications at the client group ACL level. By default, encryption is enabled.

Encryption is useful when the network traffic carries sensitive data, and in cases where the network may be susceptible to packet sniffing and other security breaches.

You can enable encryption for Broker clients at the client group level without setting up ACLs, which allows you to create system configurations where anonymous clients can make secure connections to a Broker.

Although encryption provides the highest level of security, there are associated performance costs. Therefore, you should understand the trade-offs between the security needs of your organization versus maintaining an acceptable level of system performance before employing encryption as part of your Broker security solution.