Windows 2000 IIS 5.0 New Features

With the development of the Internet, the traditional LAN resource sharing method can no longer meet people's demand for information. Creating an Internet information server is undoubtedly the best choice for people, including Web, FTP and SMTP. The three aspects of the virtual server not only realize the Internet information service of the company's internal network, but also enable the company network to connect to the Internet to provide information services for the company's remote customers or business partners.

A new generation of IIS 5.0, which has made considerable improvements in network security, programmability and management, and supports more Internet standards, which can help users easily create and manage. Sites and make web applications that are easier to upgrade and more flexible. The following describes the new features and features of IIS 5.0 in terms of security, management, programmability, and Internet standard support.

Security

To improve security, IIS 5.0 has improved its own security authentication methods, enhanced secure communication capabilities, and is fully integrated with the Kerberos v5 authentication protocol.

In terms of security verification, IIS 5.0 uses hierarchical authentication to securely and reliably authenticate users through proxy servers and firewalls, in addition to Anonymous and Windows authentication.

In terms of secure communications, Secure Sockets Layer (SSL) 3.0 and Transport Layer Security (TLS) for IIS 5.0 provide a secure way to exchange information between clients and servers. In addition, SSL 3.0 and TLS provide the server with a way to verify the client before the user logs in to the server. In IIS 5.0, both ISAPI and ASP get client certificates so that programmers can track users through their sites. At the same time, IIS 5.0 can also map client certificates to Windows user accounts, so administrators can control access to system resources based on client credentials. Server Encryption (SGC) is an extension of SSL that allows up to 128 bits of data encryption. However, a special SGC certificate is required to use SGC.

IIS is fully integrated with the Kerberos v5 authentication protocol, enabling certificates to be transferred between different computers that are already connected and running Windows. In addition, Windows Certificate Manager provides a single entry point that allows storage, backup, and configuration of server certificates.

Management

IIS's management tools use the Microsoft Management Console (MMC) to facilitate centralized management. During the management process, the user can restart the Internet service without restarting the computer; or back up and save the settings of the Internet Information Service to return to a safe, known state after a problem occurs. In addition, users can set the security of information services in different locations such as sites, directories or files, and reduce the security management of users.

Programmability

IIS 5.0 creates dynamic content by using server-side scripts and components to create dynamic browser-independent content. ASP allows content developers to embed any scripting language or server component into their HTML pages, so that some of the ASP content can be replaced with convenient CGI and ISAPI. ASP provides data flow for all HTTP requests and responses, access to standards-based database connections, and the ability to customize content for different browsers. In addition, ASP has some new and improved features that can be used to enhance the performance and pipelining of server-side scripts, as well as the flexibility of site configuration.

Internet Standard Support

IIS 5.0 is compatible with the HTTP 1.1 standard, supports PUT and DELETE features, custom HTTP error messages, and custom HTTP headers. With support for Web DAV (Web Distributed Authoring Program), IIS 5.0 also allows remote authors to edit, move, or delete files, file attributes, directories, and directory attributes on the server over an HTTP connection.

In addition, IIS 5.0 supports breakpoint transmission, that is, after an interruption occurs in the data transmission process, FTP file download can be resumed without downloading the entire file repeatedly, which greatly facilitates the visitor to download the file.