0

The protect and unprotect functions in system.security.cryptography,
use the symmetric key to encrypt... I need to know that is this the
same symmetric key that is used by windows to encrypt the private key files...? ? ?

2
Contributors
3
Replies
4
Views
5 Years
Discussion Span
Last Post by saneeha.nust
0

Each user (and machine) has a key that is used by the API. The same key is used for anything that uses the Data Protection API. Not sure what private key files you are talking about.

0

I am talking about the private key files that are generated when different applications
exchange certificates..

What I understand from your answer is that if DataProtectionScope is set to current user
the same key will be used that is assigned to this user by windows. and similar is the case with machine option of DataProtectionScope.

So there is a key for machine , and a key for each user set by windows for the encryption
purpose? Am I right?

0

I am talking about the private key files that are generated when different applications exchange certificates..


What I understand from your answer is that there exist a single key that is used by windows
for encryption, and the same keys are used by the protect and unprotect APIs.

and the DataProtectionScope attribute is set to allow the scope for the set of users
that can decrypt the file. If DataProtectionScope is set to currentuser, then all processes running under current user will be able to perform decryption of the particular file.

This topic has been dead for over six months. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.