{"id":156,"date":"2006-11-12T00:09:01","date_gmt":"2006-11-11T22:09:01","guid":{"rendered":"http:\/\/soci.hu\/blog\/index.php\/2006\/11\/12\/uj-crypto-api-a-vistaban-cryptography-api-next-generation-cng\/"},"modified":"2006-11-12T00:09:01","modified_gmt":"2006-11-11T22:09:01","slug":"uj-crypto-api-a-vistaban-cryptography-api-next-generation-cng","status":"publish","type":"post","link":"https:\/\/soci.hu\/blog\/index.php\/2006\/11\/12\/uj-crypto-api-a-vistaban-cryptography-api-next-generation-cng\/","title":{"rendered":"\u00daj Crypto API a Vist\u00e1ban; Cryptography API: Next Generation, CNG"},"content":{"rendered":"<p><a target=\"_blank\" href=\"http:\/\/msdn2.microsoft.com\/en-us\/library\/aa376210.aspx\">MSDN Docs<\/a>.<\/p>\n<p>R\u00f6viden:<\/p>\n<p>Cryptography API: Next Generation (CNG) API is the long-term replacement for the <a onclick=\"javascript:TrackThisClick('ctl00_LibFrame_ctl01','ctl00_LibFrame_ctl02',this);\" href=\"http:\/\/msdn2.microsoft.com\/en-us\/library\/ms721572.aspx\"><em>CryptoAPI<\/em><\/a>.  CNG is designed to be extensible at many levels and cryptography agnostic in behavior.<\/p>\n<p>CNG has the following features.<\/p>\n<ul>\n<li>CNG supports cryptography in kernel mode. The same API is used in both kernel and user mode in order to fully support the crypto cryptography features. Both SSL\/TLS and IPSec operate in kernel mode in addition to boot processes that will be using CNG.<\/li>\n<li>Federal Information Processing Standards (FIPS) 140 Certification. CNG is aiming at getting FIPS 140-2 level 2 certification together with Common Criteria evaluation on selected platforms. Other platforms will have FIPS 140-2 level 1 certification. These will be the same implementation, just different certifications.<\/li>\n<li>CNG complies with Common Criteria requirements by storing and using long lived keys in a secure process in order to comply with Common Criteria requirements. Audit appropriate actions in the CNG layer.<\/li>\n<li>CNG provides support for the current set of algorithms in CryptoAPI 1.0. Every algorithm that is currently supported in CryptoAPI 1.0 will continue to be supported in CNG.<\/li>\n<li>CNG provides support for Elliptic Curve Cryptography (ECC) algorithms. A number of ECC algorithms are required by the United States government&#8217;s Suite B effort.<\/li>\n<li>Key Isolation &#038; Storage: Any machine with a Trusted Platform Module (TPM) will seamlessly provide key isolation and key storage in TPM<\/li>\n<\/ul>\n<p>Sz\u00f3val kernel m\u00f3d\u00fa a j\u00e1t\u00e9kos. \u00c9rdekes, ahogy egyre t\u00f6bb dolgot lenyomnak kernel m\u00f3dba. Ez valahol \u00e9rthet\u0151 sz\u00e1momra, mi\u00f3ta az Inside Windowsban a GDI-vel kapcsolatban le\u00edrt\u00e1k mi\u00e9rt l\u00e9ptek \u00edgy, de az\u00e9rt egy kicsit mindig agg\u00f3dok, amikor a TCB-t nyomj\u00e1k tele sok, pontenci\u00e1lisan bugos cuccal. Lelk\u00fck rajta.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>MSDN Docs. R\u00f6viden: Cryptography API: Next Generation (CNG) API is the long-term replacement for the CryptoAPI. CNG is designed to be extensible&#8230;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4,23],"tags":[],"class_list":["post-156","post","type-post","status-publish","format-standard","hentry","category-szakmai-elet","category-vista"],"_links":{"self":[{"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/posts\/156","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/comments?post=156"}],"version-history":[{"count":0,"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/posts\/156\/revisions"}],"wp:attachment":[{"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/media?parent=156"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/categories?post=156"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/soci.hu\/blog\/index.php\/wp-json\/wp\/v2\/tags?post=156"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}