Secure Networking with Window 2000 and Trust Services

Secure Networking with Windows 2000 and Trust Services is an authoritative resource that addresses the security issues involved in using the Internet as a platform for conducting commerce. It explains the public-key technology and describes techniques for ensuring secure transactions with business partners and consumers. For organizations that are looking into scalable, remote-access solutions, this book provides basic material on virtual private networks (VPNs) and includes practical guidelines for using the built-in security features of the Windows 2000 operating system. Basic material and sample programming projects explain how to use the Kerberos authentication service to secure internal networks while sharing resources with the external world via the Internet, Intranets, and extranets. In addition, the authors explain the role of trust services in ensuring the integrity of secure electronic commerce systems.

Throughout the book, the authors provide thorough explanations of such key topics as:

• The Kerberos network authentication service and how Kerberos secures internal access to network resources
• The Kerberos authentication system in Windows 2000
• Cryptography, public-key technology, public-key infrastructures (PKIs), certification authorities, digital certificates, and the X.509 standard
• The Windows 2000 public-key infrastructure and practical guidelines for using its built-in public-key features
• Virtual private networks (VPNs) and the Internet Protocol security (IPsec) architecture
• The built-in capabilities of Windows 2000 for supporting virtual private networks and the IP security (IPsec) protocol
• External trust infrastructures and trust issues in B2B marketplaces
• Local trust networks created by the Windows 2000 Certificate Services (or other certificate servers) and effective methods for plugging such internal trust networks into the VeriSign external trust infrastructure
• Windows 2000 as a programming platform to create secure, distributed applications

The accompanying CD-ROM contains sample programming projects written in Visual C++ for the Windows 2000 server operating system. These projects demonstrate how to “Kerberize” client-server based applications and publish secure services in the Windows 2000 Active Directory.

• Preface
• Chapter 1: The Kerberos Network Authentication Service
• Chapter 2: Using Public Key Technology in Windows 2000
• Chapter 3: IP Security
• Chapter 4: Virtual Private Networks
• Chapter 5: Using IPsec and VPNs in Windows 2000
• Chapter 6: Extending trust beyond the Enterprise
• Chapter 7: Trust in Business-To-Business Marketplaces
• Chapter 8: Kerberizing Applications Using Security Support Provider Interface
• Chapter 9: Service Publications in Windows 2000 Active Directory
• Glossary
• Index