DPAPI Machine Key Security on Windows Mobile

Discussion in 'ASP .Net Security' started by percussionplayer, Feb 12, 2007.

  1. Hi,

    I am wondering if anyone knows how the DPAPI key management on Windows
    Mobile works with the CRYPTPROTECT_LOCAL_MACHINE flag. How is the key
    material is generated and stored?

    The problem I'm trying to solve requires that I encrypt some data in a
    file on a Windows Mobile 5 device, but the device may or may not be
    password protected, so I'd like to use CryptProtectData with the
    CRYPTPROTECT_LOCAL_MACHINE flag, but I can't find out anything about
    how the machine key is derived, stored, etc.

    It's OK if other processes running on the device are able to see and
    decrypt the data, but we'd like to protect against forensic attacks.
    For example, if a device were to be lost or stolen, would it be
    possible for a hacker to remove the flash drive and retrieve enough
    information from the physical device to decrypt the file?

    Thanks,
    Frank
    percussionplayer, Feb 12, 2007
    #1
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. BigLuzer
    Replies:
    1
    Views:
    1,407
    Cowboy \(Gregory A. Beamer\)
    Nov 21, 2006
  2. chen selina
    Replies:
    0
    Views:
    1,284
    chen selina
    Jul 13, 2010
  3. Phil C.

    DpAPI Encrypted Aes Key Problems

    Phil C., Mar 5, 2005, in forum: ASP .Net Security
    Replies:
    0
    Views:
    295
    Phil C.
    Mar 5, 2005
  4. Phil C.
    Replies:
    2
    Views:
    435
    Phil C.
    Jul 19, 2005
  5. Sachin Chavan

    DPAPI (Machine Store) Access Denied Problem.

    Sachin Chavan, May 10, 2006, in forum: ASP .Net Security
    Replies:
    7
    Views:
    209
    Dominick Baier [DevelopMentor]
    May 12, 2006
Loading...

Share This Page