Pocket Internet Explorer Security (Windows CE 5.0)
The mobile Internet browser, Microsoft® Pocket Internet Explorer, supports Secure Socket Layers SSL2 and SSL3, and Server Gated Cryptography (SGC). These protocols are available through WinInet or directly from Winsock. In addition, WinInet provides server and proxy authentication for HTTP sessions and client-side use of the Passport Authentication Protocol. For more information, see WinInet Security.
Best Practices
Use authentication
If your OS design supports NTLM or Kerberos authentication, use one of these mechanisms instead of Basic authentication for better security.
Use Secure Sockets Layer (SSL)
SSL protocol helps to protects data from packet sniffing by anyone with physical access to the network. For more information, see SSL Support.
Mobile Internet Browser ActiveX Controls (SP only)
ActiveX controls in the mobile Internet browser must not call trusted APIs. The browser now runs untrusted on the Windows Mobile-based Smartphone. ActiveX controls that require trusted APIs will not function properly and should be updated.
Ports
The following table shows the ports that the mobile Internet browser uses by default. A user can also specify a port in a URL, using the format <protocol>://<host>:<port-number>[<path>]. If the specified port is available at the server, it is used in place of the default.
| Protocol | Default port number |
|---|---|
| FTP | 21 |
| HTTP | 80 |
| HTTPS | 443 |
See Also
Pocket Internet Explorer | Pocket Internet Explorer Registry Settings | Enhancing the Security of a Device
Send Feedback on this topic to the authors