|
Alternatives to Storing Session Keys
Instead of storing a random session key blob, a derived key can be used. Derived session keys are created from a password using the CryptDeriveKey function. In this way, instead of storing a particular derived key, an
application can create a derived key as needed by prompting the user for the password.
Stored key blobs are dependent on the stability of the public/private key
pairs stored within the CSP. If these key pairs are somehow lost, (for example,
through a hardware or software incident), you will be unable to decrypt your key
blobs. This means that any data that has been encrypted using these keys will
also be lost. For this reason, it is recommended that you use a backup authority when storing long-term archival data.
A backup authority is a trusted application running on a secure computer which
provides storage for the session keys of its clients. All session keys stored
there are encrypted in the form of key blobs with the backup authority's public
key. An application using a backup authority typically follows these steps:
- Encrypt the file normally.
- Export the session key used to encrypt the file into a simple key blob,
specifying that your own key exchange public key be used to encrypt the key blob.
Store this key blob with the encrypted file.
- Export the session key again, this time specifying that the backup authority's
public key be used to encrypt the key blob. Send this key blob to the backup
authority, along with the key's description, serial number, etc.
If, at a later time, you lose your key pairs, you can retrieve the session
keys from the backup authority. (You will first have to establish your identity to
the backup authority, but this procedure falls outside the scope of CryptoAPI.)
| Last news from Greatis Software |
 |
|
Nostalgia .Net |
|
.Net is powerful, but not all-powerful, so sometimes we need to use Win32 API for our .Net applications. It's simple enough with Platform Invoke if you have Win32 skill, but we do not always have time to dig the ancient documentation, declare the special types that are compatible with Win32, find the values of the Win32's constants and so on. Nostalgia .Net offers several simple-to-use classes, and components that will allow you to forget about the headache of Win32 and just use the power of Win32 in your application the same way as you use the native. Net classes. More » |
| Recommended software for developers |
 |
|
Ultimate Pack |
|
Component pack for Delphi and C++ Builder that contains runtime form designer, runtime object inspector, print suite and much more for the very special price. More » |
 |
|
Form Designer .Net |
|
Unique runtime form design solution that allows to edit any form in .Net WinForms application at runtime with full source codes for only 300 euro! More » |
 |
|
Print Suite .Net |
|
Print Suite .Net is a set of components for easy printing texts, images and grids from your WinForms applications. Full C# source codes are available More » |
 |
|
Gradient Controls .Net |
|
Gradient Controls .Net offers controls with gradient background feature. Labels, panels and so on... Full C# source codes are available More » |
 |
|
Greatis iGrid |
|
iGrid plots drawing grid right over your desktop, so you can use it everywhere, with any drawing application without any special plugins for different graphic editors. More » |
All the contacts and projectsDmitry Vasiliev (just.dmitry)
Related LinksSoftware for Visual Studio .NET developers
Software for Delphi and C++ Builder developers
Software for Visual Basic 6 developers
Delphi Tips&Tricks
MegaDetailed.NET More Online Helps Win32 Programmer's Reference
Win32 Multimedia Programmer's Reference
OLE Programmer's Reference
Microsoft Windows Pen API Programmer's Reference
Microsoft Windows Sockets 2 Reference
Microsoft Windows Telephony API (TAPI) Programmer's Reference
Unix Manual Pages
|
