Certificates are digital identification
documents that allow both servers and
clients to authenticate each other. They are
required for the server and client's browser
to set up an SSL connection over which
encrypted information can be sent. Server
certificates usually contain information
about your company and the organization
that issued the certificate. Client certificates
usually contain identifying information
about the user and the organization that
issued the certificate.
IIS 6.0 takes advantage of the Internet-standard security features that are fully integrated with Windows
Server 2003. The following list contains the security protocols supported in IIS 6.0:
• Fortezza satisfies the Defense Message System security architecture with a cryptographic mechanism
that provides message confidentiality, integrity, authentication, non-repudiation, and access control to
messages, components, and systems. These features are implemented both with server and browser
software and with PCMCIA card hardware.
• Secure Sockets Layer (SSL) 3.0, which is used by most Internet browsers and servers for
authentication, message integrity, and confidentiality. You can configure your Web server's SSL security
features to verify the integrity of your content, verify SSL security protocols are the identity of users,
and encrypt network transmissions. SSL relies upon
• Transport Layer Security (TLS), which is based on SSL,
provides for cryptographic user authentication. TLS also
focuses on improving performance by reducing network traffic
and providing an optional session caching scheme that can
reduce the number of connections that need to be established
• PKCS #7 describes the format of encrypted data such as
digital signatures or digital envelopes.
• PKCS #10 describes the format of requests for certificates that
are submitted to certification authorities.