CAPI Key Store - Storage of RSA Machine Keys in Windows RRS feed

  • Question

  • I'm wondering about the CryptoAPI key store i Windows. I know that RSA Machine Keys are stored in files at C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys on my Vista machine, but are these files (the keys themselves) encrypted somehow or is ACL the only thing protecting them?

    Would it be enough for someone to get administrator access to the machine to be able to copy/steal all the public/private keys stored in this folder or are these files useless unless accessed through the CryptoAPI?

    I haven't found any information about the CAPI key store itself anywhere so this seemed like the best forum to ask :)
    Wednesday, March 4, 2009 9:23 AM

All replies