Re: Does W2K hold user's email, EFS etc private key securely ?

From: Laura A. Robinson (laurarobinson@earthlink.net)
Date: 09/18/02 

From: "Laura A. Robinson" <laurarobinson@earthlink.net>
To: "Schwarz, Roland" <Roland.Schwarz@bdr.de>, <focus-ms@securityfocus.com>
Date: Tue, 17 Sep 2002 17:11:02 -0700

Which official MS whitepapers? And how old are they?

Laura
----- Original Message -----
From: "Schwarz, Roland" <Roland.Schwarz@bdr.de>
To: <focus-ms@securityfocus.com>
Cc: <Fred.Langston@guardent.com>
Sent: Monday, September 16, 2002 6:35 AM
Subject: RE: Does W2K hold user's email, EFS etc private key securely ?

> Could you provide any details on how you
> implemented EFS keys on smart cards.
> Official MS whitepapers say that this is not possible.
>
> Thanks
> Roland
>
>
>
> > -----Original Message-----
> > From: Fred.Langston@guardent.com [mailto:Fred.Langston@guardent.com]
> > Sent: Tuesday, September 10, 2002 12:48 AM
> > To: bkml@att.net; fp56@dial.pipex.com; focus-ms@securityfocus.com
> > Subject: RE: Does W2K hold user's email, EFS etc private key
> > securely ?
> >
>
> > We are currently using EFS key storage on Smart cards with
> > XP, so that one's
> > incorrect. This one goes a long way toward solving the
> > previously mentioned
> > problem. At the time of your SANS article, you were correct,
> > but things
> > have changed with, as you said, newer versions.
> >