I am presently studying the topic of encrypting and signing SOAP messages via WSE 3.0 or WCF. Since I have not participated in distributed application development involving the public Internet, I find my knowledge on X.509 ceritificates lacking and how it works in the Windows certificate store mechanism. It is not about asymmetric cryptography; it is about the PKI ecosystem.
Therefore I would like to gather what are some articles or books that give comprehensive explanations on Windows' security mechanisms, how to properly use and manage the Certificate Store, CA trust chains, and how APIs like WSE or WCF may interact and make use of certificates. Recommendations?
I think the base starting point to understanding the Windows implementation of PKI has to come from TechNet
PKI segment http://technet.microsoft.com/en-us/library/cc757327(WS.10).aspx
Certificates overview http://technet.microsoft.com/en-us/library/cc784662(WS.10).aspx
Certificate services http://technet.microsoft.com/en-us/library/cc783511(WS.10).aspx
Certificate templates http://technet.microsoft.com/en-us/library/cc758496(WS.10).aspx