IX509AttributeArchiveKeyHash interface (certenroll.h)
The IX509AttributeArchiveKeyHash interface represents an attribute that contains a SHA-1 hash of the encrypted private key to be archived by a certification authority. The encrypted key is attached as an unauthenticated attribute to the primary signature of a CMC request. The hash of the encrypted key is encoded as an authenticated attribute in a CMC request.
When a certification authority receives the request, it hashes the unsigned encrypted key and compares it to the signed hash sent by the requester. If the hashes match, the key was not tampered with.
Inheritance
The IX509AttributeArchiveKeyHash interface inherits from IX509Attribute. IX509AttributeArchiveKeyHash also has these types of members:
Methods
The IX509AttributeArchiveKeyHash interface has these methods.
| IX509AttributeArchiveKeyHash::get_EncryptedKeyHashBlob Retrieves a string that contains a hash of the encrypted private key. |
| IX509AttributeArchiveKeyHash::InitializeDecode Initializes the object from a Distinguished Encoding Rules (DER) encoded byte array that contains a SHA-1 hash of the encrypted private key. |
| IX509AttributeArchiveKeyHash::InitializeEncodeFromEncryptedKeyBlob Initializes the attribute from an encrypted private key. |
Requirements
| Requirement | Value |
|---|---|
| Minimum supported client | Windows Vista [desktop apps only] |
| Minimum supported server | Windows Server 2008 [desktop apps only] |
| Target Platform | Windows |
| Header | certenroll.h |
See also
Feedback
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see: https://aka.ms/ContentUserFeedback.
Submit and view feedback for