The Core protocol is Apache Artemis’ native messaging protocol for client-to-broker and broker-to-broker communication. It carries the commands, headers, and message data that Artemis uses to publish, consume, route, and federate messages.
In security terms, the Core protocol matters because it often sits inside trusted infrastructure. If a broker accepts Core connections from untrusted networks, an attacker may be able to speak the broker’s native language directly, bypassing assumptions made by higher-level applications. That can expose message injection, unauthorized forwarding, or message disclosure when federation and access controls are weak. Defenders should limit where Core is exposed, require mutual TLS where possible, and restrict federation links to known peers. Protocol filtering and authentication checks are especially important because a flaw in broker trust handling can turn ordinary messaging traffic into a path across a security boundary.