tags:

views:

49

answers:

1
+1  Q: 

Can another application access a private key stored in a key container using RSACryptoServiceProvider?

I am using RSACryptoServiceProvider to generate public/private key pair and using cspParameters object to store it in a key container.

My problem is that after i store the private key in a key container, can another application access the key container and retrieve the private key i generated?

If yes, the security of the key is compromised isn't it?

How do i avoid this? Should i encrypt the generated private key with a symmetric encryption algorithm?

+1  A: 

Without using a Hardware Security Module, your only protection is to set the CspParameters.Flags field:

CspParameters.Flags = CspProviderFlags.UseNonExportableKey |  CspProviderFlags.UseUserProtectedKey;

The first flag prevents software from "honestly" exporting the private key. The second requires user interaction with the GUI to perform any private key operations.

GregS  2010-07-23 19:47:11
You mean some sort of Dialog Box will pop and request the user to approve it?
Ranhiru Cooray  2010-07-23 20:44:40
Yes. Try it out.
GregS  2010-07-23 22:09:38

related questions

How do I remove the .NET Compact Framework from my Windows Mobile 5 device?
.NET Compact Framework Printing libraries
Does DataGrid on CE 5.0 Compact Framework .NET support editing?
Multiple Forms and a Single Update,Will it work?
Where can I find a QR (quick response) Code component/API for Windows Mobile?
Determine Installed Compact Frameworks (and SP) Version
What's the best way to embed video in a Windows Mobile 6 application?
Transmiting data throught the Serial Port
MAC address in Compact Framework
IRAPIStream COM Interface in .NET
How can I expose only a fragment of IList<>?
3rd Party UI components for .net Compact Framework?
Compact Framework - Lightweight GUI Framework?
.Net Compact Framework scrollbars - horizontal always show when vertical shows
Compact Framework - how do I dynamically create type with no default constructor?
Compact Framework - Is there an MVC framework/library available?
How can I get the name of the executing .exe?
Alpha blending colors in .NET Compact Framwork 2.0
Has anyone used NUnitLite with any success?
Whats the best way of finding ALL your memory when developing on the Compact Framework?
Compact Framework/Threading - MessageBox displays over other controls after option is chosen
Center text output from Graphics.DrawString()
Zip library options for the Compact Framework?
Getting DirectoryNotFoundException when trying to Connect to Device with CoreCon API
Compact Framework - how to wait for thread complete before continuing?