Re: handling asymmetric key that exists in a container

• Previous message: Michael Prendergast: "CryptEncrypt() buffer limit?"
• In reply to: lelteto: "RE: handling asymmetric key that exists in a container"
• Next in thread: Rayees: "Re: handling asymmetric key that exists in a container"
• Reply: Rayees: "Re: handling asymmetric key that exists in a container"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 28 Oct 2004 13:05:52 -0700

You can only have a max of 1 encryption key pair and 1 signing key pair in a
container.

-- 
Thanks,
Anand Abhyankar [MS]
----
This posting is provided "AS IS" with no warranties, and confers no rights.
"lelteto" <lelteto@discussions.microsoft.com> wrote in message 
news:CDBA310F-417E-4D05-A4C2-FB17A182078A@microsoft.com...
> The CSP shall always overwrite the old key with the new one. This is NOT 
> an
> error condition.
>
> Laszlo Elteto
> SafeNet, Inc.
>
> "rayees@yahoo.com" wrote:
>
>> Hi,
>>
>> I have a question on how a custom CSP should handle an asymmetric key
>> that exists in a container. The scenario is the following
>>
>> 1. generate an exchange key using CryptGenKey
>> 2. encrypt some data with that exchange key
>> 3. try to generate an exchange key using CryptGenKey again (same
>> container) OR try to import a private key blob into the container.
>>
>> Should the CSP generate a new exchange key and move on OR should it
>> return an error NTE_EXISTS?
>> In the first case (generating new key), the old key is lost and the
>> data encrypted is also lost.
>>
>> -rayees
>>
>> 

• Previous message: Michael Prendergast: "CryptEncrypt() buffer limit?"
• In reply to: lelteto: "RE: handling asymmetric key that exists in a container"
• Next in thread: Rayees: "Re: handling asymmetric key that exists in a container"
• Reply: Rayees: "Re: handling asymmetric key that exists in a container"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]