Windows Server 2003 Security Infrastructures: Core Security Features (HP Technologies)

This chapter is the first chapter on Windows Server 2003 PKI in this book. In this chapter we will look at the added value of using Microsoft Windows Server 2003 PKI as the building block for advanced IT security in your organization. We will also take a closer look at all of its core components: the certificate server, the CryptoAPI, the Data Protection API, and the Active Directory.

13.1 Getting started

Reading this chapter requires a good understanding of the general concepts of cryptography (and particularly asymmetric cryptography) and public key infrastructure (PKI). Good introductions to cryptography and PKI are available in the following books:

• Understanding Public-Key Infrastructure by Carlisle Adams and Steve Lloyd (Macmillan, 1999).

• Planning for PKI: Best Practices Guide for Deploying Public Key Infrastructure by Russ Housley and Tim Polk (John Wiley, 2001).

• PKI: Implementing and Managing E-Security by Andrew Nash (McGraw-Hill, 2001).

• Introduction to the Public Key Infwrastructure for the Internet by Messaoud Benantar (Prentice Hall, 2001).