Information Protection

This page provides information for the IT professional about features and technologies that provide ways of securing information and technologies to allow only legitimate users access to devices, applications, and data.

Active Directory Rights Management Services

Active Directory Rights Management Services (AD RMS) is a security technology that works with applications to help protect digital content such as Web content, documents, and e-mail.

Backup and Restore

Backup and restore operations in Windows Vista help protect your data if your hard disk stops working or your files are accidentally erased.

BitLocker Drive Encryption

Windows BitLocker Drive Encryption (BitLocker) is a feature available in the Windows Server 2008 and Windows Vista operating systems. BitLocker allows you to encrypt all data stored on the Windows operating system volume and configured data volumes.

Encrypting File System

Encrypting File System (EFS) is a core encryption technology that enables you to encrypt files stored on NTFS volumes.

  • Encrypting File System
    This page provides an overview of EFS and the changes to EFS made in Windows Vista and Windows Server 2008.

Public Key Infrastructure

A public key infrastructure (PKI) enables you to secure and exchange information with strong security and easy administration across the Internet, extranets, intranets, and applications.

  • Certificate-Related Changes for Windows Vista
    This overview document describes several new and updated features that support certificate-related improvements, including Web enrollment updates, credential roaming, Cryptography Next Generation support, and CryptoAPI monitoring.
  • Troubleshooting PKI Problems on Windows Vista
    This document describes how to use CryptoAPI 2.0 Diagnostics to compile detailed information about certificate chain validation, certificate store operations, and signature verification, thereby simplifying the process of identifying the cause of PKI problems.

Trusted Platform Module

Trusted Platform Module (TPM) services is a new feature that is used to administer the TPM security hardware in a computer.