[xmlsec] xmlSecMSCryptoKeyDataAdoptCert

Dmitry Belyavsky beldmit at cryptocom.ru
Tue Feb 14 04:47:59 PST 2006


On Mon, 13 Feb 2006, Amiler Scumba wrote:

> Can you describe the scenario you were testing. What kind of token were you
> using?  We have found out, that
> CryptAcquireCertificatePrivateKey(CRYPT_ACQUIRE_COMPARE_KEY_FLAG) does not
> work well when the certificate is generated on the machine, imported into the
> hardware token and then removed from the disk. (Please note, that when
> deleting the certificate trough Internet explorer, the private key still
> remains on disk!). If you later register the certificate from the hardware
> token and user CryptAcquireCertificatePrivateKey, the private key from disk
> will be used if then token is not inserted into the computer. Clearlly, this
> is not the desired ehaviour.

Sorry my mistake. Do you really put _certificate_ to hardware token
leaving private key at disk?

SY, Dmitry Belyavsky (ICQ UIN 11116575)

More information about the xmlsec mailing list