Re: Verisign CRL single point of failure

2004-03-31 Thread t . c . jones
Verisign incorrectly built the new certificate causing every SSL access on IE 5.x to request a new CRL (700k) on every single SSL access. This has been fixed, a new udated cert is available and the CRL storm is abating. See the versign site for more details on what they did to fix the

Re: Any good books or URLs for WinXP crypto security?

2004-01-03 Thread t . c . jones
Securing Mobile Computers with Windows XP Professional This article examines specific threats that can affect mobile computers, including how security tools and privacy services included in the Windows XP Professional operating system provide solutions to combat these threats.

Re: Internal format of RSA private keys in microsoft keystore.

2003-10-12 Thread t . c . jones
key containers in MS are encrypted. there is a capi m/l to be found at http://discuss.microsoft.com/archives/index.html ..tom Greetings, In the process of trying to work around some of the limitations of the m$-CAPI API, I'm trying to decipher the internal representation of private keys in