RE: Behavior when multiple access to one key container
From: lelteto (lelteto_at_discussions.microsoft.com)
Date: 02/25/05
- Next message: Vishal Agarwal[MSFT]: "Re: submit request to CertificateAuthority"
- Previous message: lelteto: "RE: How to add a friendly name to a certificate"
- In reply to: Jack: "Behavior when multiple access to one key container"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 25 Feb 2005 08:55:09 -0800
The CSP MUST allow multiple contexts for the same container (and signature or
key exchange key). Any context can change it - and it shuld be reflected in
all other contexts. (Obviously, the CSP would need to serialize access to
keys to avoid one context starting an operation using the existing key value
and another context overwriting the key vie import or new key gen).
Container DELETE: The usual way to handle this is to delay the delete action
until all contexts to the container are closed. This is very similar behavior
to files and other objects in the OS; there all open handles must be closed
before the delete / destroy operation actually takes place.
Laszlo Elteto
SafeNet, Inc.
"Jack" wrote:
> Hello!
>
> How should a custom CSP react, when an application retrieves multiple
> contexts to one single key container?
> It id possible that one context alters or even deletes the container, and
> the other tries to access it - this would produce an error.
>
> Thanks
>
>
>
- Next message: Vishal Agarwal[MSFT]: "Re: submit request to CertificateAuthority"
- Previous message: lelteto: "RE: How to add a friendly name to a certificate"
- In reply to: Jack: "Behavior when multiple access to one key container"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
