RMS Certificates and Licenses

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

The different components of an RMS installation have trusted connections that are implemented by a set of certificates. Enforcing the validity of these certificates is a core function of RMS technology. Each piece of rights-protected content is published with a license that expresses its usage rules, and each consumer of that content receives a unique license that reads, interprets, and enforces those usage rules. In this context, a license is a particular type of certificate.

RMS uses an XML vocabulary to express usage rights for rights-protected content, the eXtensible rights Markup Language (XrML), version 1.2.1. For more information, see “XrML” later in this subject.

The certificates and licenses that are in RMS are connected in a hierarchy, so that RMS can always follow a chain from a particular certificate or license through trusted certificates, up to a trusted key pair. For more information, see "RMS Trust Hierarchy" later in this subject.

This section covers:

• RMS Certificate and License Summary

• Server Licensor Certificates

• Client Licensor Certificates

• RMS Machine Certificates

• Rights Account Certificates

• Publishing Licenses

• Use Licenses