Introduction

In the early days of computer networks, when users and resources were situated in a single location with no connections to the outside world, protecting a company s data was simply a matter of securing the files and folders that resided on the network servers and client computers. It was a simple matter of ensuring that your internal users had access to the resources they required to do their jobs, without being able to get into areas that they shouldn t. However, as networks have grown in complexity and connectivity, the need to protect network information as it traverses the network has become an increasingly critical issue. Security administrators quickly discovered that data traveling from one location to another (especially if it traveled over a public medium like the Internet) was at risk of being stolen, altered, or intercepted by a third party. We quickly realized that we needed a way to secure data as it traveled over a network in order to protect its confidentiality and integrity. Windows Server 2003 provides a number of options for securing data as it traverses a network; we ll discuss the most prevalent of these technologies here.

The most exciting advance in Windows Server security in recent years has doubtless been the introduction of IP Security, or IPSec, support within Windows 2000 and Windows Server 2003. IPSec can be implemented at both the server and client level to encrypt data as it traverses even public networks like the Internet, allowing business in multiple locations to...