Three-Tier Security in a Microsoft E-Commerce Environment

This paper discusses topics related to securing a Microsoft Windows Distributed interNet Applications Architecture (Windows DNA) application, including the user services, business, and data tiers. The reader should be familiar with Microsoft Windows Internet Information Services (IIS) and Microsoft SQL Server and have a good knowledge of Windows 2000 security.

Security topics related to Microsoft Site Server and Microsoft Commerce Server 2000 will not be discussed due to length constraints. Additionally, firewall and other hardware security issues will not be covered in this paper. By studying this paper, you will be better able to use the security mechanisms provided by Microsoft Windows DNA.