O'Reilly logo

Windows Server® 2008 PKI and Certificate Security by Brian Komar

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Cryptography Next Generation (CNG)

Cryptography Next Generation (CNG) is the replacement cryptography application programming interface (API) for the original Windows CryptoAPI. The new APIs will allow the use of newer, stronger encryption and signing algorithms when implementing cryptography.

Features of CNG

CNG has the following features that differentiate it from the legacy CryptoAPI:

  • Auditing. CNG increases auditing abilities to meet Common Criteria requirements. The events are captured by the Key Service Provider (KSP) in user mode and include:

    • Errors during testing of keys. The tests include verification, consistency, self-tests, and parity checks.

    • Failures during cryptographic operations. The operations include encryption, decryption, hashing, ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required