Security

Secure Communications with SSL and TLS

As previously mentioned, SSL and TLS are ways means to authenticate, detect tampering, and encrypt communication between a server and a client. IIS 5.0 will attempt to use TLS before attempting to use SSL, because it is more secure.

In order to use SSL or TLS, the Web server must have a server authentication certificate issued by a trusted CA.

See the following:

• Authentication and Trust
• Encryption
• Enabling SSL
• IIS 5.0, SSL, and Fortezza
• Certificate Revocation Lists
• Certificates and CryptoAPI

© 1997-1999 Microsoft Corporation. All rights reserved.