Skip to Content
Microsoft® Windows® 2000 Security Handbook
book

Microsoft® Windows® 2000 Security Handbook

by Jeff Schmidt
August 2000
Intermediate to advanced
800 pages
21h 5m
English
Que
Content preview from Microsoft® Windows® 2000 Security Handbook

Encryption Process

Every time EFS encrypts a file, it generates a random number to use as the DESX cipher. This file encryption key (FEK) is encrypted under a user's public key in the Data Decryption Field (DDF) and also under the Data Recovery Field (DRF), which is the recovery agent's public key, as shown in Figures 21.2.

Figure 21.2. EFS encryption flow chart.

In Windows 2000 you have two ways to encrypt a file (or directory): using the NT Explorer interface and checking the Encrypted dialog box in the advanced properties or using the Cipher, a command-line tool. Both of them call the EncryptFile Win32 API that the advanced Win32 API DLL ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Windows Server® 2008 Security Resource Kit

Windows Server® 2008 Security Resource Kit

Jesper M. Johansson
Windows Server® 2008 Active Directory® Resource Kit

Windows Server® 2008 Active Directory® Resource Kit

Conan Kezema Stan Riemer Mike Mulcare, Byron Wright, and Microsoft Active Directory
Microsoft® Windows® Internals: Microsoft Windows Server™ 2003, Windows XP, and Windows 2000, 4th Edition
Microsoft Internet Information Services 7.0

Publisher Resources

ISBN: 0789719991Purchase book