April 2007 - Posts
27 April 2007
when not to use DPAPI
DPAPI is great. only when used in appropriate scenario. Consider this, You encrypt data using DPAPI and latter move ( not copy) the data to the other machine. Now you try to decrypt the data on other machine and it fails. Okay, you change the password
Read More...
Home
Email
Security is not a eight letter word
RSS 2.0
Atom 1.0
Recent Posts
[rant] SSL=Security
Forgot password security design
Security Summit 2007
CryptAcquireContext with CRYPT_SILENT flag
SQL sevrer Lock table and Hollywood business
Tags
authentication
Bad
code review
dpapi
efs
General
hash
iis
password
RMS
SSL
threats
tips
Archives
July 2008 (1)
February 2008 (1)
November 2007 (1)
October 2007 (6)
September 2007 (2)
April 2007 (1)
Search
Go
Links
Michael Howard
ACE team
This blog is provided "AS IS" with no warranties, and confers no rights. Opinions are not necessarily of Microsoft.
