What algorithm is used with the KRA certificate?
AFAIK the following is true for key archival:
A random key is generated using the same CSP for the CA and this is used to encrypt the archived private key using 3DES. The random key is then encrypted with the KRA public key and archived, but what algoritm is used? Presumably
it is RSA or Diffie-Hellman?
Thanks
March 22nd, 2012 11:22am
RSA. Moreover, only RSA keys are supported for key archival.My weblog: http://en-us.sysadmins.lv
PowerShell PKI Module: http://pspki.codeplex.com
Windows PKI reference:
on TechNet wiki
Free Windows Admin Tool Kit Click here and download it now
March 22nd, 2012 12:18pm
Thanks Vadims.
March 22nd, 2012 12:48pm