CERT_KEY_USAGE_RESTRICTION_INFO
This structure contains restrictions imposed on the usage of a certificate's public key. This includes purposes for use of the key and policies under which the key can be used.
The CryptDecodeObject function creates an instance of this structure when performed on a CERT_EXTENSION structure's Value member with the structure's pszObjId member set to szOID_KEY_USAGE_RESTRICTION.
An instance of this structure can be used as input to the CryptEncodeObject function to create an appropriate CERT_EXTENSION structure.
typedef struct _CERT_KEY_USAGE_RESTRICTION_INFO {
DWORD cCertPolicyId;
PCERT_POLICY_ID rgCertPolicyId;
CRYPT_BIT_BLOB RestrictedKeyUsage;
} CERT_KEY_USAGE_RESTRICTION_INFO, *PCERT_KEY_USAGE_RESTRICTION_INFO;
Members
cCertPolicyId
Number of elements in the rgCertPolicyId array.rgCertPolicyId
Array of pointers to CERT_POLICY_ID structures.RestrictedKeyUsage
The CRYPT_BIT_BLOB structure that includes, as its pbData, a byte indicating the purposes for which the key can be used. If the cbData member is zero, the key has no usage restrictions.The following are currently defined values for the pbData member of RestrictedKeyUsage. These can be combined using a bitwise OR operation.
CERT_DATA_ENCIPHERMENT_KEY_USAGE
CERT_DIGITAL_SIGNATURE_KEY_USAGE
CERT_KEY_AGREEMENT_KEY_USAGE
CERT_KEY_CERT_SIGN_KEY_USAGE
CERT_KEY_ENCIPHERMENT_KEY_USAGE
CERT_NON_REPUDIATION_KEY_USAGE
CERT_OFFLINE_CRL_SIGN_KEY_USAGE
Requirements
| Runs on | Versions | Defined in | Include | Link to |
|---|---|---|---|---|
| Windows CE OS | 3.0 or later | Wincrypt.h |
Note This API is part of the complete Windows CE OS package as provided by Microsoft. The functionality of a particular platform is determined by the original equipment manufacturer (OEM) and some devices may not support this API.
See Also
CERT_EXTENSION, CERT_POLICY_ID, CRYPT_BIT_BLOB
Last updated on Tuesday, July 13, 2004
© 1992-2000 Microsoft Corporation. All rights reserved.