Re: Crypto API

From: Jos Scherders (jos.scherders@spam.philips.com)
Date: 09/06/02

• Next message: Bill Sanderson: "Re: MBSA and Windows XP french version"
• Previous message: RGS: "Annoying pop ups"
• In reply to: D. Cross [MS]: "Re: Crypto API"
• Next in thread: David Cross [MS]: "Re: Crypto API"
• Reply: David Cross [MS]: "Re: Crypto API"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "Jos Scherders" <jos.scherders@spam.philips.com>
Date: Fri, 6 Sep 2002 10:58:57 +0200

HI,

Thanks for the information.

I now use the CRYPT_MACHINE_KEYSET flag which allows me to share
keys but I believe this method is flawed. Am I correct that I should use the
CryptExportPublicKeyInfoEx and CryptImportPublicKeyInfoEx functions
to make public key's available ?

The real problem however is that I have multiple users which must be able to
decrypt the data. So I suppose I could make the public key of the
application
available to all users who need it and set an ACL on it to prevent others
from
accessing this key ?

Jos.

"D. Cross [MS]" <dcross@online.microsoft.com> wrote in message
news:OsshT1SVCHA.2328@tkmsftngp09...
> You would need to store the public key or certificate of the second user
in
> a location that is accessible to your app. Commonly, applications now use
> the Other People store for storage of user certs for the purposes of
> encryption sharing when using PK base encryption
>
> --
>
> David B. Cross [MS]
>
> --
> This posting is provided "AS IS" with no warranties, and confers no
rights.
>
> "Jos Scherders" <jos.scherders@spam.philips.com> wrote in message
> news:3d7762a9$1$231$4d4ebb8e@read-nat.news.nl.uu.net...
> > Hi,
> >
> > I (user X) am trying to store encrypted data that a different user(user
> Y)
> > must be able to
> > decrypt and I can't figure out how to do this. I think for this to work
I
> > need access to the
> > the public key of user Y but how do I get access to that ? None of the
> API's
> > allow me
> > to specify a user and experimenting with security descriptors also
didn't
> > work. Can
> > anyone tell what I should be doing ?
> >
> > Jos.
> >
> >
>
>
>

---

• Next message: Bill Sanderson: "Re: MBSA and Windows XP french version"
• Previous message: RGS: "Annoying pop ups"
• In reply to: D. Cross [MS]: "Re: Crypto API"
• Next in thread: David Cross [MS]: "Re: Crypto API"
• Reply: David Cross [MS]: "Re: Crypto API"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Crypto API ... You would need to store the public key or certificate of the second user in ... Commonly, applications now use ... encryption sharing when using PK base encryption ... > the public key of user Y but how do I get access to that? ... (microsoft.public.security) Re: How To Access Public Key Certificate ... The certificate own only a public key and stored in the AdressBook ... I'm really stuck with assymetric encryption. ... > store certificate. ... (microsoft.public.platformsdk.security) Re: Encrypted network communication ... Bob) communicate over an insecure channel. ... This type of encryption uses a single shared, ... Secret-key encryption algorithms use a single secret key to encrypt and ... unauthorized users and a public key that can be made public to anyone. ... (microsoft.public.dotnet.languages.csharp) RE: PGP scripting... ... cryptosystems, ... In these systems divulging your private key compromises the public ... Here is a quick over view of the public key encryption routines (the ... (SecProg) RE: Cannot decrypt files encrypted using Crypto API on a different ... previous message which uses the recipien't public key.) ... KEK (key encryption key) to protect the session key. ... embedded into your client app and server code). ... but what is the point to encrypt the data if ANYBODY can decrypt it (since ... (microsoft.public.platformsdk.security)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(10)