I did not look at this api but from general security point of view, I doubt the
I'm using Microsoft's data
protection API (DPAPI) to encrypt the document. If it works as advertised,
it should only be feasible to decrypt it 1) on the machine it was encrypted
on 2) with secondary entropy known only to my app.
first statement unless there is a crypto *hardware* support (which is not the case
on a general i386 box). It's only a matter of time, resources and will to hack it.
Aleksey
_______________________________________________ xmlsec mailing list [EMAIL PROTECTED] http://www.aleksey.com/mailman/listinfo/xmlsec
