Re: Key length question

From: D. Cross (vaq130@alias.hotmail.com)
Date: 06/28/02 

From: "D. Cross" <vaq130@alias.hotmail.com>
Date: Fri, 28 Jun 2002 07:07:52 -0700

NO it depends on the policy of the CA and what key length is specified
during enrollment.

Windows 2000 SP2 and XP supports 16K RSA key lengths. 

--
David B. Cross [MS]
--
This posting is provided "AS IS" with no warranties, and confers no rights.
"Eric" <eric.h@netcourrier.com> wrote in message
news:#dqgg0mHCHA.1740@tkmsftngp10...
> Thanks for you answer,
>
> However, this is the case when creating the certificate from IE for
> instance.
> What I was asking is the case where my organisation is a CA issuing
> certificates for our clients using MS Certificate Server..But I guess it's
> the same, it depends on the machine running MS Certificate Server.?
> What about the Session key if I use the CryptoAPI what can be the length?
> Thanks
> Eric
>
> "Yu Chen (MS)" <yuchen@online.microsoft.com> wrote in message
> news:unzWUZjHCHA.1632@tkmsftngp10...
> > Since the key pair is generated by the requesting party, i.e. your
client
> > machine,
> > the key length is determined by the OS on your client machine.
> > If you have W2k SP2 installed, the machine has RSA enhanced csp and the
> > default RSA key length is 1024 bits. Of course you can choose other
> lengths
> > when generating the key pair, such as 512, 2048.
> >
> > --
> > This posting is provided "AS IS" with no warranties, and confers no
> rights.
> >
> >
> >
> > "Eric" <eric.h@netcourrier.com> wrote in message
> > news:uhdRzLfHCHA.1876@tkmsftngp12...
> > > Hi,
> > >
> > > Is the key length in a pki architecture depends only on the CA that
> > provides
> > > the certificates?.
> > > I mean, if I setup the MS Certificate Services on Win2k for issuing
> > > certificates, what will be the maximum key length? Does it depend on
the
> > > Operating system? on the MS Certificate Services?
> > >
> > > Thanks
> > > Eric
> > >
> > >
> >
> >
>
>

Relevant Pages

  • Re: IIS and Certificate User Mapping
    ... This posting is provided "AS IS" with no warranties, and confers no rights. ... "Mark Pfeifer" wrote in message ... > Yes - valid certificate, trusted CAs on server and trusted Cert listing. ...
    (microsoft.public.windows.server.security)
  • RE: SmartCard Your credentials could not be verified.
    ... This posting is provided "AS IS" with no warranties, ... SmartCard Your credentials could not be verified. ... | In the event log of the client PC i get "The client has failed to ... | the Domain Controller certificate for %servername%. ...
    (microsoft.public.windows.server.general)
  • Re: certificate revocation doesnt work
    ... This posting is provided "AS IS" with no warranties, and confers no rights. ... >>> certificate ...
    (microsoft.public.win2000.security)
  • Re: Question on Certificate Server
    ... Microsoft Online Partner Support ... This posting is provided "AS IS" with no warranties, ... | Subject: Re: Question on Certificate Server ... |> validity period when issuing a certificate? ...
    (microsoft.public.win2000.setup)
  • Re: certificate
    ... This posting is provided "AS IS" with no warranties, ... > I remember that during the reinstall of xp I got a dialog ... >>> Excel so I created a certificate using selfcert to get ... >>> certificate or create a new one (get selfcert error: ...
    (microsoft.public.windowsxp.security_admin)