|
In Microsoft Windows, a Cryptographic Service Provider (CSP) is a software library that implements the Cryptographic Application Programming Interface (CAPI). CSP's implement encoding and decoding functions, which computer's application programs may use for e.g. strong authentication of the user or for secure email. Image File history File links Key-crypto-sideways. ...
Microsoft Windows is the name of several families of proprietary software operating systems by Microsoft. ...
The Cryptographic Application Programming Interface (also known variously as CryptoAPI, Microsoft Cryptography API, or simply CAPI) is an application programming interface included with Microsoft Windows operating systems that provides services to enable developers to secure Windows-based applications using cryptography. ...
CSP's are implemented basically as a special type of DLL with special restrictions on loading and use. Every CSP must be digitally signed by Microsoft and the signature is verified when Windows loads the CSP. In addition, after being loaded, Windows periodically re-scans the CSP to detect tampering, either by malicious software such as computer viruses or by the user him/herself trying to circumvent restrictions (for example on cryptographic key length) that might be built into the CSP's code. This article is about dynamic libraries implemented by Microsoft. ...
A computer virus is a computer program that can copy itself and infect a computer without permission or knowledge of the user. ...
To obtain a signature, non-Microsoft CSP developers must supply paperwork to Microsoft promising to obey various legal restrictions and giving valid contact information; however, they do not need to supply Microsoft with the CSP's actual code--they only supply a cryptographic hash of the CSP itself, which Microsoft then signs. As of circa 2000, Microsoft did not charge any fees to supply these signatures. For development and testing purposes, a CSP developer can configure Windows to recognize the developer's own signatures instead of Microsoft's, but this is a somewhat complex and obscure operation unsuitable for nontechnical end users. In cryptography, a cryptographic hash function is a hash function with certain additional security properties to make it suitable for use as a primitive in various information security applications, such as authentication and message integrity. ...
2000 (MM) was a leap year starting on Saturday of the Gregorian calendar. ...
The CAPI/CSP architecture had its origins in the era of restrictive US government controls on the export of cryptography. Microsoft's default or "base" CSP then included with Windows was limited to 512 bit RSA public-key cryptography and 40-bit symmetric cryptography, the maximum key lengths permitted in exportable mass market software at the time. CSP's implementing stronger cryptography were available only to U.S. residents, unless the CSP's themselves had received U.S. government export approval. The system of requiring CSP's to be signed only on presentation of completed paperwork was intended to prevent the easy spread of unauthorized CSP's implemented by anonymous or foreign developers. As such, it was presented as a concession made by Microsoft to the government, in order to get export approval for the CAPI itself. Since World War II, Western governments, including the U.S. and its NATO allies have regulated the export of cryptography for national security considerations. ...
In cryptology, RSA is an algorithm for public-key encryption. ...
This article or section does not adequately cite its references or sources. ...
After the Bernstein v. United States court decision establishing computer source code as protected free speech and the transfer of cryptographic regulatory authority from the U.S. State Department to the more pro-export Commerce Department, the restrictions on key lengths were dropped, and the CSP's shipped with Windows now include full-strength cryptography. The main use of 3rd party CSP's is to interface with external cryptography hardware such as host security modules or smart cards. Bernstein v. ...
The first ten Amendments to the U.S. Constitution make up the Bill of Rights. ...
The United States Department of State, often referred to as the State Department, is the Cabinet-level foreign affairs agency of the United States government, equivalent to foreign ministries in other countries. ...
The United States Department of Commerce is a Cabinet department of the United States government concerned with promoting economic growth. ...
This article does not cite any references or sources. ...
Smart card used for health insurance in France. ...
Smart Card CSP
These cryptographic functions can be realised by a Smart card, thus the Smart Card CSP is the Microsoft way of a PKCS#11. Microsoft Windows is identifying the correct Smart Card CSP, which have to be used, analysing the answer to reset (ATR) of the smart card, which is registered in the Windows Registry. Installing a new CSP, all ATRs of the supported smart cards are enlisted in the registry. Smart card used for health insurance in France. ...
In cryptography, PKCS refers to a group of Public Key Cryptography Standards devised and published by RSA laboratories in California. ...
Smart card used for health insurance in France. ...
A smartcard or smart card is a tiny secure cryptoprocessor embedded within a credit card-sized or smaller (like the GSM SIM) card. ...
External links - Microsoft Developer Network page about CSP's.
- Java Cryptogrpahy Architecture - Cryptographic Service Provider
|
Feeds |
Contact