|
.cab file, 90–91
caching, 303–4
cages, computer, 75
CAs (certificate authorities). See also Certificate Services; digital certificates
authentication and, 5
backing up/restoring, 253–54
certificates imported from, 276
designing hierarchy, 228–32
fine-tuning security for, 254–55
PKCS#10 requests and, 195–98
PKI, 223–25
responsibilities of, 23, 222
S/MIME certificates, 274–75
SSL certificates, 192, 193–95
standalone vs. enterprise, 227–28
Web enrollments, 244–46
CAST-128 algorithm, 19
CCITT (Comit Consultatif International T l graphique et graphique et T l phonique), 22–23
CD-RW drives, protecting, 78
CDO (Collaboration Data Objects), 263, 270
Center for Internet Security, 111
certificate authorities. See CAs (certificate authorities)
Certificate button, Exchange System Manager, 192–93
certificate publishers, 23
Certificate Renewal Wizard, 236
Certificate Request Wizard, 236
certificate revocation lists. See CRLs (certificate revocation lists)
Certificate Services. See also CAs (certificate authorities); digital certificates
configuring and managing, 251–55
enrollment, 236
PKI built with, 225–27
standalone vs. enterprise CAs, 227–28
Certificate Services, installing, 241–51
Exchange KMS and, 246–51
overview of, 242–44
planning, 241–42
Web enrollment and, 244–46
certificates. See CAs (certificate authorities); Certificate Services; digital certificates
Certification Authority Restore Wizard, 254
Certification Authority snap-in, 198–99
CA backups, 253–54
KMS, 246–47
Web enrollments, 245
Windows Certificate Services authority, 251–52
Certified Information Security Systems Professional (CISSP), 4, 64
Certsrv application, 255
challenge-response protocols, 36
Change Security Settings dialog box, Outlook, 35, 277
CheckAdminSettings, 271–72
checklists, security. See Windows 2000 Server
ciphertext blocks, 17
CISSP (Certified Information Security Systems Professional), 4, 64
clean desktop policy, 79
clear-signed messages, 264
Client\DisableVideo, Windows Messenger, 341
Client policy, IPsec, 204, 310
Client Type page, New Web Publishing Rule Wizard, 317–18
clients, Exchange IM, 334–35
cluster resource monitor, 327
CMS (Cryptographic Message Syntax), 264
code, malicious, 11–13. See also antivirus protection
CodeRed worm
file-server scanning and, 177
incidental targets hit by, 61
protective measures, 186–87
Collaboration Data Objects (CDO), 263, 270
Collins, Scott, 75
Comit Consultatif International T l graphique et graphique et T l phonique (CCITT), 22–23
command line switches, MBSA, 94–97
Computer dialog box, SMTP, 148
COMSEC (communications security). See Internet communication security
confidentiality
DSS standard providing, 29
privacy vs., 8–9
protecting, 9–10, 79
Connection button
SMTP, 147–48
VS Properties dialog box, 325
Connection dialog box, SMTP, 147–48
content control. See monitoring
content filters, 164–66
content-scanning products, 336
Counterpane Systems, 360
credentials, 4–5
CRLs (certificate revocation lists)
checking for, 202–3
defined, 22
publishing new, 253
revocation and, 238–40
self-built PKIs providing, 226
cross-certification
hierarchy, 231
overview of, 224–25
trusts working with, 232
CryptoAPI, 275
Cryptographic Message Syntax (CMS), 264
cryptographic service providers. See CSPs (cryptographic service providers)
cryptography, additional reading, 40
Cryptography Frequently Asked Questions list, 40
CSPs (cryptographic service providers)
Certificate Services installation and, 241, 243
key length determined by, 234
private keys protected by, 235–36
CTLs (certificate trust lists)
cross-certification and, 232
publishing, 252–53
self-built PKIs providing, 226
Custom Installation Wizard, 271
Custom Maintenance Wizard, 271
Custom Security Method Settings dialog box, Security Rule Wizard, 213–14
Customize dialog box, Outlook, 279
|