Security and Protection (Reporting Services)
You can use information in this section to learn about the security features of Reporting Services and the security threats that you need to consider. This section also explains the authorization models and authentication providers supported in Reporting Services. It also provides information to developers that explains how to implement code access security when writing applications that use the Report Server Web service. Finally, this section includes instructions for configuring report server access and guidance for routine maintenance of report server security features.
Beginning with SQL Server 2008 R2, support for Extended Protection for Authentication is available. The SQL Server feature supports the use of channel binding and service binding to enhance protection of authentication. The SQL Server features need to be used with an operating system that supports Extended Protection. For more information, see Extended Protection for Authentication with Reporting Services and Troubleshooting Extended Protection (Reporting Services).