Internet Explorer Mobile Security

4/8/2010

Internet Explorer Mobile supports the SSL2 and SSL3 Secure Socket Layers (SSL) and Server Gated Cryptography (SGC). These protocols are available through Windows Internet Services (WinInet) or directly from Windows Sockets (Winsock). In addition, WinInet provides server and proxy authentication for HTTP sessions and client-side use of the Passport Authentication Protocol. For more information, see WinInet Security.

Best Practices

Use authentication

You should use NTLM or Kerberos authentication, if your OS design supports these mechanisms, for better security than basic authentication.

Use Secure Sockets Layer

SSL protocol helps protects data from a network or protocol analyzer or packet sniffer that is connected or has physical access to the network. For more information, see SSL Support.

Mobile Internet Browser ActiveX Controls ( Windows Mobile Standard only)

Microsoft ActiveX controls in the mobile Internet browser must not call privileged APIs. The browser now runs Normal on Windows Mobile Standard. ActiveX controls that require privileged APIs will not function correctly and should be updated.

Ports

The following table shows the ports that the mobile Internet browser uses by default. A user can also specify a port in a URL by using the format <protocol>://<host>:<port-number>[<path>]. If the specified port is available at the server, it is used instead of the default.

Protocol Default port number

FTP

21

HTTP

80

HTTPS

443

See Also

Other Resources

Internet Explorer Mobile