The System.Net.TransportContext class is used with classes in the System.Security.Authentication.ExtendedProtection namespace to provide support for authentication using extended protection for applications.

The design of integrated Windows authentication allows for some credential challenge responses to be universal, meaning they can be re-used or forwarded. If this particular design feature is not needed then the challenge responses should be constructed with, at minimum, target specific information and, at best, also some channel specific information. Services can then provide extended protection to ensure that credential challenge responses contain service specific information (a Service Provider Name or SPN) and, if necessary, channel specific information (a channel binding token or CBT). With this information in the credential exchanges, services are able to better protect against malicious use of credential challenge responses that might have been improperly obtained.

System.Net.HttpWebRequest is the only class derived from System.Net.WebRequest class that can potentially use IWA. The System.Net.FtpWebRequest class does only FTP clear text authentication. The System.Net.FileWebRequest class doesn't perform any authentication.

There are several ways an application may get a System.Net.TransportContext instance. An application that uses System.Net.Security.SslStream can get the System.Net.TransportContext using the System.Net.Security.SslStream.TransportContext property. An application that uses System.Net.HttpWebRequest can get a System.Net.TransportContext using the HttpWebRequest.GetRequestStream(TransportContext@) or HttpWebRequest.EndGetRequestStream(IAsyncResult, TransportContext@) methods.

Namespace: System.Net
Assembly: System (in System.dll)
Assembly Versions: 4.0.0.0