Cryptography Next Generation (CNG) is the replacement cryptography application programming interface (API) for the original Windows CryptoAPI. The new APIs will allow the use of newer, stronger encryption and signing algorithms when implementing cryptography.
CNG has the following features that differentiate it from the legacy CryptoAPI:
Auditing. CNG increases auditing abilities to meet Common Criteria requirements. The events are captured by the Key Service Provider (KSP) in user mode and include:
Errors during testing of keys. The tests include verification, consistency, self-tests, and parity checks.
Failures during cryptographic operations. The operations include encryption, decryption, hashing, ...