Ensuring Communication Integrity During Message Exchange
After a security context is established, the application can use the message support functions to transmit tamper-resistant messages.
The client or server passes the security context and a message to the MakeSignature function to generate a secure signature that prevents the message from being modified while in transit. The receiver of the message calls the VerifySignature function. VerifySignature uses the information in the signature to verify that the message received was not modified during transmission. The client and server can also exchange encrypted messages using EncryptMessage (General) and DecryptMessage (General).
The server in an authenticated connection can also make connections with other remote computers in the name of the client after calling ImpersonateSecurityContext.