Microsoft.com
Welcome Sign in
Microsoft Developer Network
Click to Rate and Give Feedback
MSDN
MSDN Library
Security
Cryptography
 CAPICOM Reference

  Switch on low bandwidth view
CAPICOM Reference

[CAPICOM is available for use in the following operating systems: Windows Server 2008, Windows Vista, Windows XP, and Windows 2000. Instead, use the .NET Framework to implement security features. For more information, see Alternatives to Using CAPICOM.]

The CAPICOM COM client provides services that enable application developers to add security based on cryptography to applications. CryptoAPI includes functionality for authentication using digital signatures, for enveloping messages, and for encrypting and decrypting data.

CategoryDescription
Certificate Store ObjectsObjects available for using certificate stores and the certificates in those stores.
Digital Signature ObjectsObjects used to digitally sign data and to verify digital signatures.
Enveloped Data ObjectsObjects used to create enveloped data messages for privacy and to decrypt data in enveloped messages.
Data Encryption ObjectsObjects used to encrypt data and to decrypt encrypted data.
Auxiliary ObjectsObjects used to change default behaviors and to manage certificates, certificate stores, and user interface (UI) messages.
Interoperability InterfacesInterfaces that allow derivations of CryptoAPI to work together with CAPICOM 2.0.
Enumeration TypesEnumeration types used with CAPICOM.

 

Certificate Store Objects

The following objects work with certificate stores and the certificates in those stores. CAPICOM supports the use of Current User, Local Machine, Memory, and Active Directory certificate stores.

ObjectDescription
CertificateA single digital certificate.
CertificatePoliciesA collection of PolicyInformation objects.
CertificatesCollection of Certificate objects.
CertificateStatusProvides status information on a certificate.
ChainCreates and checks a certificate validation chain based on a digital certificate.
ExtendedPropertiesRepresents a collection of ExtendedProperty objects.
ExtendedPropertyRepresents a Microsoft-extended property.
ExtensionRepresents a single certificate extension.
ExtensionsRepresents a collection of Extension objects.
PrivateKeyRepresents a private key.
PublicKeyRepresents a public key in a Certificate object.
StoreProvides the properties and methods to choose, manage, and use certificate stores and the certificates in those stores.
TemplateRepresents the certificate extension template of the certificate.

 

Digital Signature Objects

The following objects are exported to digitally sign data and to verify digital signatures.

ObjectDescription
SignedCodeProvides functionality for signing content with an Authenticode digital signature.
SignedDataObject used to sign data and to verify the signature on signed data.
SignerInformation on a single data signer, including the signer's certificate.
SignersCollection of Signer objects.

 

Enveloped Data Objects

The following objects are exported to create enveloped data messages for privacy and to decrypt data in enveloped messages.

ObjectDescription
EnvelopedDataObjects used to create, send, and receive enveloped data. Enveloped data is encrypted so that only the intended recipients can decrypt it.
RecipientsCollection of the Certificate objects of the intended recipients of an enveloped message.

 

Data Encryption Objects

The following object is exported to encrypt arbitrary data for privacy and to decrypt encrypted data.

ObjectDescription
EncryptedDataObjects used to encrypt data. Encrypted data in an EncryptedData object can be decrypted.

 

Auxiliary Objects

The following objects are exported to change default behaviors of other objects and to manage certificates, certificate stores, and messages.

ObjectDescription
AlgorithmSets the algorithm and key length to be used in cryptographic operations.
AttributeProvides a single piece of added information about a signature, such as the time of signing.
AttributesCollection of Attribute objects.
BasicConstraintsProvides read-only access to basic constraints on the uses of a certificate.
EKUProvides access to EKU properties of certificates.
EKUsCollection of EKU objects.
EncodedDataRepresents a block of encoded data.
ExtendedKeyUsageProvides read-only access to the extended key usage properties of certificates.
HashedDataProvides functionality for applying a hash algorithm to a string.
KeyUsageProvides read-only access to key usage properties of certificates.
OIDRepresents an object identifier that is used by several CAPICOM properties.
OIDsRepresents a collection of OID objects.
PolicyInformationProvides access to the policy OIDs of an extension.
QualifierRepresents a Certification Practice Statement (CPS) pointer or user notice qualifier.
QualifiersRepresents a collection of qualifiers.
SettingsEnables or disables dialog boxes to prompt for signer or sender identity if that identity is not specified.
UtilitiesProvides functionality for common tasks.

 

Interoperability Interfaces

The following interfaces allow derivations of CryptoAPI to work together with CAPICOM 2.0.

InterfaceDescription
ICertContextProvides access to the context of a CAPICOM X.509v3 Certificate object. This context allows the CAPICOM certificate to be used in other derivations of CryptoAPI.
ICertStoreProvides access to the context of a CAPICOM Store object. This context allows the CAPICOM certificate store to be used in other derivations of CryptoAPI.
IChainContextProvides access to the context of a CAPICOM Chain object. This context allows the CAPICOM certificate trust chain to be used in other derivations of CryptoAPI.

 

Enumeration Types

CAPICOM defines the following enumeration types:

Send comments about this topic to Microsoft

Build date: 6/26/2009

Tags What's this?: Add a tag
Community Content   What is Community Content?
Add new content RSS  Annotations
© 2009 Microsoft Corporation. All rights reserved. Terms of Use  |  Trademarks  |  Privacy Statement
Page view tracker