TLS-SSL (Schannel SSP) 概觀TLS - SSL (Schannel SSP) Overview

適用於:Windows Server(以每年次管道)、Windows Server 2016Applies To: Windows Server (Semi-Annual Channel), Windows Server 2016

本主題適用於 IT 專業人員導入 TLS 日 SSL 實作使用 Schannel 安全性服務提供者 (SSP),描述實用的應用程式,Microsoft 實作,與軟體需求,以及其他資源變更適用於 Windows Server 2012 和 Windows 8 的 windows。This topic for the IT professional introduces the TLS/SSL implementation in Windows using the Schannel Security Service Provider (SSP) by describing practical applications, changes in Microsoft's implementation, and software requirements, plus additional resources for Windows Server 2012 and Windows 8.

您是否表示:Did you mean???

TLS\SSL (Schannel) 描述TLS\SSL (Schannel) description

Schannel 是實作的安全通訊端層 (SSL) 和 Tls (TLS) 安全性支援提供者 (SSP) 網際網路標準驗證通訊協定。Schannel is a Security Support Provider (SSP) that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) Internet standard authentication protocols.

安全性支援提供者介面 (SSPI) 是用來執行 security\ 相關的功能包括驗證 windows API。The Security Support Provider Interface (SSPI) is an API used by Windows systems to perform security-related functions including authentication. 做為數個安全性支援提供者 (SSPs),包括 Schannel SSP.常見介面 SSPI 函式The SSPI functions as a common interface to several Security Support Providers (SSPs), including the Schannel SSP.

1.0,1.1、1.2 安全通訊端層 (SSL) 通訊協定,2.0 和 3.0 資料流 Tls (DTLS) 1.0 版,並私人通訊傳輸 (PCT) 通訊協定的 Tls (TLS) 通訊協定版本根據公開加密。The Transport Layer Security (TLS) protocol versions 1.0, 1.1, and 1.2, Secure Sockets Layer (SSL) protocol, versions 2.0 and 3.0, Datagram Transport Layer Security (DTLS) version 1.0, and the Private Communications Transport (PCT) protocol are based on public key cryptography. 安全性通道 (Schannel) 驗證通訊協定提供這些通訊協定。The Security Channel (Schannel) authentication protocol suite provides these protocols. 所有 Schannel 通訊協定都使用 client\ 日伺服器模型。All Schannel protocols use a client/server model.

實用的應用程式Practical applications

有一個問題,您可以管理網路時保護資料未受信任的網路上的應用程式之間傳送。One problem when you administer a network is securing data that is being sent between applications across an untrusted network. 您可以使用 TLS\SSL 驗證伺服器和 client 電腦,然後使用通訊協定加密已驗證的對象之間的訊息。You can use TLS\SSL to authenticate servers and client computers and then use the protocol to encrypt messages between the authenticated parties.

例如,您可以使用適用於 TLS\SSL:For example, you can use TLS\SSL for:

  • SSL\ 保護交易 e\ 商務網站SSL-secured transactions with an e-commerce website

  • 證存取 SSL\ 安全的網站Authenticated client access to an SSL-secured website

  • 遠端存取Remote access

  • SQL 存取SQL access

  • E\ 郵件E-mail

軟體需求Software requirements

使用 client\server 模型 TLS\SSL 通訊協定,並為基礎的憑證驗證,這需要公開基礎結構。The TLS\SSL protocol use a client\server model and are based on certificate authentication, which requires a Public Key Infrastructure.

伺服器管理員資訊Server Manager information

實作 TLS、SSL 或 Schannel 所需的任何設定步驟。There are no configuration steps necessary to implement TLS, SSL or Schannel.