[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ms-cryptoapi
Subject:    Re: CSP Development
From:       "Tom Jones (.NET)" <tjones () WINDOWS ! MICROSOFT ! COM>
Date:       2002-11-29 19:11:57
[Download RAW message or body]

msdn is the best source of this information.
Here is what I found by searching for CSP sign
 
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/security/Security/csp_signing_policy_csp_vendors_outside_north_america.asp
  
there is no charge, you must get all crypto code one the client signed.
There are lots of companies that use hardware security modules (HSMs) for keying \
material. Those are most secure than a typical server- if they are correctly \
configured.  
..tom
 
________________________________

From:    G. Egger [mailto:gernot.egger@GMX.AT]	
Sent:    Fri 11/29/2002 5:06 AM	
To:      CryptoAPI@DISCUSS.MICROSOFT.COM	
Subject:         CSP Development	
 	

Hello,
I have some questions about CSP development:

1. Is it allowed for a CSP to store private keys at a server ? For this it
is necessary to perform a server sided authentication of the key owner
inside the CSP. This means that the CSP does not allow access to the
private key without online connection to the server.
Does Microsoft impose any restrictions to the key storage.

2. Is it necessary that Microsoft signs all software components used by the
CSP or might this also be a vendor specific signature ?

3. Does Microsoft require from the CSP vendor the whole special HW/SW
environment used by the CSP ? Is a test from Microsoft needed to get a CSP
signed ?

4. What are the costs charged by Microsoft to get a CSP implementation
signed ?

5. Does Microsoft plan to provide a CSP development version of advapi32.dll
for Win2k Service Pack 3 and Win XP. It would be great for test and
demonstration purpose.

Thanks !
Gernot Egger

----------------------------------------------------------------
Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
contains important info. Save time, search the archives at
http://discuss.microsoft.com/archives/index.html .
To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM

----------------------------------------------------------------
Users Guide http://discuss.microsoft.com/archives/mailfaq.asp
contains important info. Save time, search the archives at
http://discuss.microsoft.com/archives/index.html .
To unsubscribe, mailto:CryptoAPI-signoff-request@DISCUSS.MICROSOFT.COM


[prev in list] [next in list] [prev in thread] [next in thread]