The authentication and authorization occur at many single points along the application layers, besides the own security subsystem existing in SIES, there is the security of the architecture of the application.

Secure communications channels are also applied along the layers and extend from the browser or client device to the database.

The channels can be protected by a combination of SSL and a protocol that provides encryption services, integrity and authorization to network traffic, the IPSec, besides other standard security policies of the own customer installation.

The figure below shows the main security features existing in the .NET Framework architecture: