Crypo Algo for SSPI's EncryptMessage()
From: cmg_cobra (cglasnap_at_vt.edu)
Date: 02/22/05
- Next message: Ivailo Petrov: "remote console, WlxQueryConsoleSwitchCredentials, and WlxGetConsoleSwitchCredentials"
- Previous message: Michael: "Signing & Timestamping using CryptoAPI Directly"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 21 Feb 2005 19:40:51 -0800
I'm trying to determine the cryptographic algorithm used by SSPI's
Encrypt/Decrypt functions using the NTLM SSP. I'm using
QueryContextAttributes with SECPKG_ATTR_KEY_INFO as a parameter in an
attempt to do this, but apparently this function doesn't allow this
parameter while running in user-mode.
Most important question: Is there another way to figure out which algo
is being used?
Less important question: Or is there an easy way to call this function
in kernel-mode rather than user-mode? I'm guessing the answer to my
second question is no, but it's worth a shot.
I'm also playing around with the NTLM settings found in Local Security
Policy (i.e. only allow NTLMv2, enforce packet privacy, etc.). When I
look at the initial negotiation between client/server, NTLM flags sent
by the client indicates it supports NTLM, even though I set the
minimums to NTLMv2. What's the deal with that? Do these Local Security
Policy settings have any effect if you are calling the SSPI functions
directly?
-cmg_cobra
- Next message: Ivailo Petrov: "remote console, WlxQueryConsoleSwitchCredentials, and WlxGetConsoleSwitchCredentials"
- Previous message: Michael: "Signing & Timestamping using CryptoAPI Directly"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
