2.2.9.1 Encrypted Message Types

Encryption is used by the Web Services Management Protocol Extensions for Windows Vista service and clients when encrypting messages for confidentiality and integrity protection when using HTTP as the transport. This section describes the data types that are used by the Web Services Management Protocol Extensions for Windows Vista service when encrypting messages for confidentiality and integrity protection by using HTTP as the transport. Web Services Management Protocol Extensions for Windows Vista clients MUST use this message when sending a request and the Web Services Management Protocol Extensions for Windows Vista service MUST use this message when responding to a request if integrity protection and encryption is required.

When using Encryption, there are three options available.<40>

Option

Description

Negotiate Encrypted Message

SPNEGO (as specified in [RFC4559] section 4.1) is used for setting up a security context between the client and server and message encryption is done by using the GSS-API security context.

Kerberos Encrypted Message

Kerberos (as specified in [RFC4559] section 4) is used for setting up a security context between the client and server and message encryption is done by using the GSS-API security context.

CredSSP Encrypted Message

CredSSP (as specified in [MS-CSSP]) is used for setting up a security context between the client and server, and message encryption is done by using the GSS-API security context.