2.4.1.1 Cryptographic Service Provider (CSP)
The name of the cryptographic service provider (CSP) used to generate the key pair on the HCEA.
Value: "CSP" or one of the value names specified in the table in [MS-GPREG] section 3.2.5.1 specifying how the value is deleted.
Type: REG_SZ.
Size: Equal to size of the Data field.
Data: A variable-length null-terminated Unicode string. This setting specifies the name of the CSP used.
The following CSPs are available by default. <7>
|
CSP |
Description |
|---|---|
|
Microsoft Base Cryptographic Provider v1.0 |
A broad set of basic cryptographic functionality that can be exported to other countries or regions. |
|
Microsoft Strong Cryptographic Provider |
An extension of the Microsoft Base Cryptographic Provider. |
|
Microsoft Enhanced Cryptographic Provider v1.0 |
Microsoft Base Cryptographic Provider with support for longer keys and additional algorithms. |
|
Microsoft AES Cryptographic Provider |
Microsoft Enhanced Cryptographic Provider with support for AES encryption algorithms. |
|
Microsoft Base DSS Cryptographic Provider |
Provides hashing, data signing, and signature verification capability, using the Secure Hash Algorithm 1 (SHA1) and Digital Signature Standard (DSS) algorithms. |
|
Microsoft Base DSS and Diffie-Hellman Cryptographic Provider |
A superset of the DSS Cryptographic Provider that also supports Diffie-Hellman key exchange, hashing, data signing, and signature verification, using the Secure Hash Algorithm 1 (SHA1) and Digital Signature Standard (DSS) algorithms. |
|
Microsoft Enhanced DSS and Diffie-Hellman Cryptographic Provider |
Supports Diffie-Hellman key exchange (a 40-bit DES derivative), SHA hashing, DSS data signing, and DSS signature verification. |
|
Microsoft DH SChannel Cryptographic Provider |
Supports hashing, data signing with DSS, generating Diffie-Hellman (D-H) keys, exchanging D-H keys, and exporting a D-H key. This CSP supports key derivation for the SSL3 and TLS1 protocols. |
|
Microsoft RSA/Schannel Cryptographic Provider |
Supports hashing, data signing, and signature verification. The algorithm identifier CALG_SSL3_SHAMD5 is used for SSL 3.0 and TLS 1.0 client authentication. This CSP supports key derivation for the SSL2, PCT1, SSL3, and TLS1 protocols. |
|
Microsoft Base Smart Card Crypto Provider |
Provides all of the functionality of the Microsoft Strong Cryptographic Provider. The Microsoft Base Smart Card Cryptographic Service Provider communicates with individual smart cards that translate the characteristics of particular smart cards into a uniform interface. For more information on smart cards, see [MSDN-SC]. |
|
Microsoft Exchange Cryptographic Provider v1.0 |
A 64-bit block encryption CSP tied to the Mail API. |