API tools faq
paste
Advertisement
Guest User

Compression oracle attack target

a guest
Nov 12th, 2018
442
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
HTML 18.26 KB | None | 0 0
raw download clone embed print report
  1. <!DOCTYPE html>
  2. <html class="no-js hasSidebar hasPageActions hasBreadcrumb conceptual" lang="en-us" dir="ltr" data-authenticated="false" data-target="docs">
  3. <head>
  4.     <meta charset="utf-8" />
  5.     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
  6.     <meta property="og:title" content="CNG DPAPI" />
  7.     <meta property="og:image" content="https://docs.microsoft.com/_themes/docs.theme/master/en-us/_themes/images/microsoft-header.png" />
  8.         <meta name="author" content="windows-sdk-content" />
  9. <meta name="ms.author" content="windowssdkdev" />
  10. <meta name="breadcrumb_path" content="/windows/desktop/breadcrumb/toc.json" />
  11. <meta name="ms.prod" content="desktop" />
  12. <meta name="uhfHeaderId" content="MSDocsHeader-WinDesktop" />
  13. <meta name="ms.assetid" content="048DEA72-39E1-4129-A554-F7D08442C2D9" />
  14. <meta name="ms.topic" content="article" />
  15. <meta name="Description" content="Microsoft introduced the data protection application programming interface (DPAPI) in Windows&#160;2000." />
  16. <meta name="ms.date" content="05/31/2018" />
  17. <meta name="search.ms_sitename" content="Docs" />
  18. <meta name="search.ms_docsetname" content="desktop" />
  19. <meta name="locale" content="en-us" />
  20. <meta name="site_name" content="Docs" />
  21. <meta name="search.ms_product" content="MSDN" />
  22. <meta name="depot_name" content="MSDN.desktop" />
  23. <meta name="updated_at" content="2018-11-06 05:21 PM" />
  24. <meta name="gitcommit" content="https://cpubwin.visualstudio.com/DefaultCollection/win32/_git/win32/commit/0180b6dbcaa133e58745702bf0ebefa871ee151b?path=%2fdesktop-src%2fSecCNG%2fcng-dpapi.md&amp;_a=contents" />
  25. <meta name="original_content_git_url" content="https://cpubwin.visualstudio.com/DefaultCollection/win32/_git/win32?path=%2fdesktop-src%2fSecCNG%2fcng-dpapi.md&amp;version=GBlive&amp;_a=contents" />
  26. <meta name="document_id" content="fc478d42-efca-31b1-5a53-6388ea8a4d5e" />
  27. <meta name="document_version_independent_id" content="5641989d-a57c-9cf5-055b-94b102d61c19" />
  28. <meta name="page_type" content="conceptual" />
  29. <meta name="toc_rel" content="TOC.json" />
  30. <meta name="word_count" content="180" />
  31.  
  32. <!-- secret here -->
  33. <input type="hidden" name="secret" value="7253b8f45f322b411ce39b12c6e9a84c" />
  34.  
  35.     <meta name="scope" content="Windows, Desktop" />
  36. <link href="https://docs.microsoft.com/en-us/windows/desktop/seccng/cng-dpapi" rel="canonical">
  37.     <title>CNG DPAPI | Microsoft Docs</title>
  38.  
  39.         <link rel="stylesheet" href="/_themes/docs.theme/master/en-us/_themes/css/4e146f3a.site-ltr.css ">
  40.  
  41.     <link rel="stylesheet" href="/_themes/docs.theme/master/en-us/_themes/css/fbd113ac.conceptual.css ">
  42.  
  43.  
  44.     <script>
  45.     var msDocs = {
  46.         data:{
  47.             azureHeaderLocale: 'en-us',
  48.             contentLocale: 'en-us',
  49.             contentDir: 'ltr',
  50.             userLocale: 'en-us',
  51.             userDir: 'ltr',
  52.             pageTemplate: 'Conceptual',
  53.             brand: '',
  54.             context: {
  55.  
  56.             },
  57.             hasComments: false,
  58.             feedbackSystem: 'None',
  59.             feedbackGitHubRepo: '',
  60.             feedbackProductUrl: '',
  61.             contentGitUrl: 'https://cpubwin.visualstudio.com/DefaultCollection/win32/_git/win32?path=%2fdesktop-src%2fSecCNG%2fcng-dpapi.md&version=GBlive&_a=contents',
  62.             forceVersionPicker:false        },
  63.         functions:{},
  64.         settings:{
  65.             extendBreadcrumb: true,
  66.             enableUHFPPE: false
  67.         }
  68.     };
  69.     if (!('Promise' in window && 'resolve' in window.Promise && 'reject' in window.Promise && 'all' in window.Promise && 'race' in window.Promise)) {
  70.         document.write('<script src="/_themes/docs.theme/master/en-us/_themes/global/js/6ee34c01.bluebird.min.js"><\/script>');
  71.     }
  72.     if (typeof fetch !== 'function') {
  73.         document.write('<script src="/_themes/docs.theme/master/en-us/_themes/global/js/d9fc435c.fetch.min.js"><\/script>');
  74.     }
  75.     </script>
  76.  
  77.     <script src="https://ajax.aspnetcdn.com/ajax/jQuery/jquery-3.3.1.min.js" integrity="sha384-tsQFqpEReu7ZLhBV2VZlAu7zcOV+rXbYlF2cqB8txI/8aZajjp4Bqd+V6D5IgvKT" crossorigin="anonymous"></script>
  78.     <script src="/_themes/docs.theme/master/en-us/_themes/global/js/9228aa03.global.min.js"></script>
  79.  
  80. </head>
  81.  
  82. <body lang="en-us" dir="ltr">
  83. <div class="header-holder">
  84.         <div id="headerAreaHolder" data-bi-name="header">
  85.             <div id="uhf-placeholder"></div>
  86.         </div>
  87.     <div class="content-header uhf-container has-padding has-default-focus" data-bi-name="content-header">
  88.         <nav class="has-padding-none-mobile" data-bi-name="breadcrumb" itemscope itemtype="http://schema.org/BreadcrumbList" role="navigation" aria-label="Breadcrumb">
  89.         <ul class="breadcrumbs">
  90.         </ul>
  91.         </nav>
  92.         <div class="content-header-controls exit-focus">
  93.             <button type="button" class="ap-collapse-behavior ap-expanded button" data-bi-name="ap-collapse">
  94.                 <span class="icon"><span class="docon docon-exit-mode"></span></span>
  95.                 <span>Exit focus mode</span>
  96.             </button>
  97.            
  98.         </div>
  99.         <div class="content-header-controls">
  100.             <button type="button" class="contents-button button" data-bi-name="contents-expand">
  101.                 <span class="icon"><span class="docon docon-menu"></span></span>
  102.                 <span>Contents</span>
  103.             </button>
  104.         </div>
  105.         <div class="action-bar">
  106.             <ul class="action-list">
  107.                             <li id="contenteditbtn" hidden>
  108.                                     <a href="https://cpubwin.visualstudio.com/DefaultCollection/win32/_git/win32?path=%2fdesktop-src%2fSecCNG%2fcng-dpapi.md&version=GBlive&_a=contents"  class="button is-text is-icon-only-touch is-size-7" title="Edit This Document" data-bi-name="edit">
  109.                                     <span class="icon">
  110.                                         <span class="docon docon-edit-outline" aria-hidden="true"></span>
  111.                                     </span>
  112.                                     <span class="action-item-text">Edit</span>
  113.                                 </a>
  114.                             </li>
  115.                 <li>
  116.                     <div class="sharing dropdown has-caret" auto-align>
  117.                         <a href="#" class="dropdown-trigger button is-text is-size-7 is-icon-only-touch" aria-haspopup="true" aria-controls="sharing-menu" aria-expanded="false" title="Share This Document" data-bi-name="share">
  118.                             <span class="icon">
  119.                                 <span class="docon docon-sharing" aria-hidden="true"></span>
  120.                             </span>
  121.                             <span class="action-item-text">Share</span>
  122.                         </a>
  123.                         <div class="dropdown-menu" id="sharing-menu" role="menu">
  124.                             <ul data-bi-name="share-links">
  125.                                 <li><a class="share-twitter" data-bi-name="twitter">
  126.                                     <span class="icon">
  127.                                         <span class="docon docon-brand-twitter" aria-hidden="true"></span>
  128.                                     </span>
  129.                                     <span>Twitter</span></a></li>
  130.                                 <li><a class="share-linkedin" data-bi-name="linkedin">
  131.                                     <span class="icon">
  132.                                         <span class="docon docon-brand-linkedin" aria-hidden="true"></span>
  133.                                     </span>
  134.                                     <span>LinkedIn</span></a></li>
  135.                                 <li><a class="share-facebook" data-bi-name="facebook">
  136.                                     <span class="icon">
  137.                                         <span class="docon docon-brand-facebook" aria-hidden="true"></span>
  138.                                     </span>
  139.                                     <span>Facebook</span></a></li>
  140.                                 <li><a class="share-email" data-bi-name="email">
  141.                                     <span class="icon">
  142.                                         <span class="docon docon-mail-message-fill" aria-hidden="true"></span>
  143.                                     </span>
  144.                                     <span>Email</span></a></li>
  145.                             </ul>
  146.                         </div>
  147.                     </div>
  148.                 </li>
  149.                 <li>
  150.                     <button class="toggle-theme button is-text is-size-7 is-icon-only-touch" aria-label="toggle-theme" data-bi-name="select-theme">
  151.                         <span class="icon">
  152.                             <span class="docon docon-sun"></span>
  153.                         </span>
  154.                         <span class="action-item-text">Theme</span>
  155.                     </button>
  156.                 </li>
  157.                 <li class="is-unstyled-action-list-item">
  158.                     <a class="docs-sign-in not-authenticated button is-text has-text-primary is-size-7" href="#">Sign in</a>
  159.                     <div class="dropdown has-caret authenticated" auto-align>
  160.                         <button class="dropdown-trigger button is-text is-size-7 is-icon-only-touch has-inner-focus" aria-label="Your Account" aria-haspopup="true" aria-controls="user-menu" aria-expanded="false">
  161.                             <span class="image icon" aria-hidden="true">
  162.                                 <img class="has-body-background-medium is-rounded" data-profile-property="avatarUrl">
  163.                             </span>
  164.                             <span class="is-truncated" data-profile-property="userName"></span>
  165.                         </button>
  166.                         <div class="dropdown-menu box" id="user-menu" role="menu">
  167.                             <div class="media is-user-dir">
  168.                                 <div class="media-left">
  169.                                     <span class="image is-64x64" aria-hidden="true">
  170.                                         <img class="has-body-background-medium is-rounded" data-profile-property="avatarUrl">
  171.                                     </span>
  172.                                 </div>
  173.                                 <div class="media-content">
  174.                                     <p class="title has-margin-top-small">
  175.                                         <span class="is-truncated" style="max-width: 200px" data-profile-property="userName"></span>
  176.                                     </p>
  177.                                     <p class="subtitle">
  178.                                         <span class="is-truncated" style="max-width: 200px" data-profile-property="upn"></span>
  179.                                     </p>
  180.                                 </div>
  181.                             </div>
  182.                             <ul class="is-unstyled has-margin-none">
  183.                                 <li><a href="/profile" data-profile-property="profileUrl">Profile</a></li>
  184.                                 <li><a class="docs-sign-out" href="#">Sign out</a></li>
  185.                             </ul>
  186.                         </div>
  187.                     </div>
  188.                 </li>
  189.             </ul>
  190.             <button type="button" class="contents-button" aria-label="Contents" data-bi-name="contents-expand-">
  191.                 <span class="docon docon-editor-list-bullet"></span><span>Contents</span>
  192.             </button>
  193.         </div>
  194.     </div>
  195.     <div id="disclaimer-holder" class="disclaimer-holder"></div>
  196.     </div>
  197.  
  198.     <div class="mainContainer uhf-container  has-top-padding  has-default-focus" data-bi-name="body">
  199.        
  200.         <div class="columns ">
  201.  
  202.             <section class="primary-holder column is-two-thirds-tablet is-three-quarters-desktop">
  203.                 <div class="columns ">
  204.  
  205.                     <div id="page-actions" class="right-container column is-one-quarter is-one-fifth-desktop is-hidden-mobile is-hidden-tablet-only" data-bi-name="pageactions" role="complementary" aria-label="Page Actions">
  206.                             <nav id="side-doc-outline" class="doc-outline" data-bi-name="intopic toc" role="navigation" aria-label="On page navigation">
  207.                                 <h3>In this article</h3>
  208.                             </nav>
  209.                     </div>
  210.  
  211.  
  212.                 <div id="main-column" class="column  is-full is-four-fifths-desktop ">
  213.                    
  214.                     <main id="main" role="main" class="content" data-bi-name="content" lang="en-us" dir="ltr">
  215.  
  216.  
  217.  
  218.                         <h1 id="cng-dpapi" sourcefile="SecCNG/cng-dpapi.md" sourcestartlinenumber="9">CNG DPAPI</h1>
  219.  
  220.                         <ul class="metadata page-metadata" data-bi-name="page info" lang="en-us" dir="ltr">
  221.                             <li class="displayDate loading">
  222.                                 <span aria-hidden="true" class="docon docon-calendar"></span>
  223.                                 <time role="presentation" datetime="2018-05-31T00:00:00.000Z" data-article-date-source="ms.date">05/31/2018</time>
  224.                             </li>
  225.                                 <li class="readingTime">
  226.                                     <span aria-hidden="true" class="docon docon-clock"></span>
  227.                                     2 minutes to read
  228.                                 </li>
  229.  
  230.                         </ul>
  231.  
  232.                         <nav id="center-doc-outline" class="doc-outline is-hidden-desktop" data-bi-name="intopic toc" role="navigation" aria-label="On page navigation">
  233.                             <h3>In this article</h3>
  234.                         </nav>
  235.  
  236.  
  237.  
  238.                         <!-- <content> -->
  239.                            
  240. <p>Microsoft introduced the data protection application programming interface (DPAPI) in Windows 2000. The API consists of two functions, <a href="https://msdn.microsoft.com/library/windows/desktop/aa380261" data-linktype="external"><strong>CryptProtectData</strong></a> and <a href="https://msdn.microsoft.com/library/windows/desktop/aa380882" data-linktype="external"><strong>CryptUnprotectData</strong></a>. DPAPI is part of CryptoAPI and was intended for developers who knew very little about using cryptography. The two functions could be used to encrypt and decrypt static data on a single computer.</p>
  241. <p>Cloud computing, however, often requires that content encrypted on one computer be decrypted on another. Therefore, beginning with Windows 8, Microsoft extended the idea of using a relatively straightforward API to encompass cloud scenarios. This new API, called DPAPI-NG, enables you to securely share secrets (keys, passwords, key material) and messages by protecting them to a set of principals that can be used to unprotect them on different computers after proper authentication and authorization. The following principals are currently supported:</p>
  242. <ul>
  243. <li>A group in an Active Directory forest.</li>
  244. <li>Web credentials.</li>
  245. </ul>
  246. <p>For more information, see the following topics:</p>
  247. <ul>
  248. <li><a href="protection-providers" data-linktype="relative-path">Protection Providers</a></li>
  249. <li><a href="protection-descriptors" data-linktype="relative-path">Protection Descriptors</a></li>
  250. <li><a href="protected-data-format" data-linktype="relative-path">Protected Data Format</a></li>
  251. </ul>
  252. <p>DPAPI-NG is built on top of Cryptography Next Generation (CNG) and includes the following functions:</p>
  253. <ul>
  254. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptcreateprotectiondescriptor" data-linktype="absolute-path"><strong>NCryptCreateProtectionDescriptor</strong></a></li>
  255. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptcloseprotectiondescriptor" data-linktype="absolute-path"><strong>NCryptCloseProtectionDescriptor</strong></a></li>
  256. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptprotectsecret" data-linktype="absolute-path"><strong>NCryptProtectSecret</strong></a></li>
  257. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptqueryprotectiondescriptorname" data-linktype="absolute-path"><strong>NCryptQueryProtectionDescriptorName</strong></a></li>
  258. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptregisterprotectiondescriptorname" data-linktype="absolute-path"><strong>NCryptRegisterProtectionDescriptorName</strong></a></li>
  259. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptstreamclose" data-linktype="absolute-path"><strong>NCryptStreamClose</strong></a></li>
  260. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptstreamopentoprotect" data-linktype="absolute-path"><strong>NCryptStreamOpenToProtect</strong></a></li>
  261. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptstreamopentounprotect" data-linktype="absolute-path"><strong>NCryptStreamOpenToUnprotect</strong></a></li>
  262. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptstreamupdate" data-linktype="absolute-path"><strong>NCryptStreamUpdate</strong></a></li>
  263. <li><a href="/en-us/windows/desktop/api/NCryptprotect/nf-ncryptprotect-ncryptunprotectsecret" data-linktype="absolute-path"><strong>NCryptUnprotectSecret</strong></a></li>
  264. </ul>
  265. <p> </p>
  266. <p> </p>
  267.  
  268.                         <!-- </content> -->
  269.                            
  270.                         </main>
  271.  
  272.                         <!-- feedback section -->
  273.  
  274.  
  275.                
  276.                         <!-- end feedback section -->
  277.  
  278.                         <div class="footerContainer is-visible-interactive has-default-focus ">
  279. <footer id="footer-interactive" data-bi-name="footer" class="footer-layout">
  280.  
  281.     <a data-mscc-ic="false" class="locale-selector-link" href="#" data-bi-name="select-locale"><span class="icon docon docon-world is-size-4 has-margin-right-small"></span><span class="local-selector-link-text"></span></a>
  282.  
  283.     <ul class="links" data-bi-name="footerlinks">
  284.         <li><a data-mscc-ic="false" href="https://docs.microsoft.com/previous-versions/" data-bi-name="archivelink">Previous Version Docs</a></li>
  285.         <li><a data-mscc-ic="false" href="https://docs.microsoft.com/teamblog" data-bi-name="bloglink">Blog</a></li>
  286.         <li><a data-mscc-ic="false" href="https://docs.microsoft.com/contribute" data-bi-name="contributorGuide">Contribute</a></li>
  287.             <li><a data-mscc-ic="false" href="https://go.microsoft.com/fwlink/?LinkId=521839" data-bi-name="privacy">Privacy &amp; Cookies</a></li>
  288.         <li><a data-mscc-ic="false" href="/en-us/legal/termsofuse" data-bi-name="termsofuse">Terms of Use</a></li>
  289.         <li><a data-mscc-ic="false" href="https://aka.ms/sitefeedback" data-bi-name="feedback">Site Feedback</a></li>
  290.         <li><a data-mscc-ic="false" href="https://www.microsoft.com/en-us/legal/intellectualproperty/Trademarks/EN-US.aspx" data-bi-name="trademarks">Trademarks</a></li>
  291.     </ul>
  292. </footer>                       </div>
  293.                     </div>
  294.  
  295.                     <!--end of div.columns -->
  296.  
  297.                 </div>
  298.            
  299.             <!--end of .primary-holder -->
  300.             </section>
  301.  
  302.                 <div id="left-container" class="left-container column is-one-third-tablet is-one-quarter-desktop">
  303.                     <nav class="sidebar" id="sidebar" data-bi-name="left toc" role="navigation" aria-label="Main Navigation">
  304.                         <button class="sidebar-header" type="button" aria-label="Close" data-bi-name="contents-collapse">
  305.                             <span>Contents</span>
  306.                             <span class="docon docon-navigate-close" aria-hidden="true"></span>
  307.                         </button>
  308.                         <div id="sidebarContent">
  309.                             <div class="filterHolder">
  310.                             </div>
  311.                             <nav class="toc"></nav>
  312.                             <div class="pdfDownloadHolder"></div>
  313.                         </div>
  314.                     </nav>
  315.                 </div>
  316.  
  317.             <aside id="interactive-container" class="interactive-container is-visible-interactive column has-body-background-dark ">
  318.             </aside>
  319.         </div>
  320.  
  321.         <!--end of .mainContainer -->
  322.     </div>
  323.  
  324.     <div id="openFeedbackContainer" class="openfeedback-container"></div>
  325.  
  326.     <div class="footerContainer has-default-focus is-hidden-interactive ">
  327. <footer id="footer" data-bi-name="footer" class="footer-layout uhf-container has-padding" role="contentinfo">
  328.  
  329.     <a data-mscc-ic="false" class="locale-selector-link" href="#" data-bi-name="select-locale"><span class="icon docon docon-world is-size-4 has-margin-right-small"></span><span class="local-selector-link-text"></span></a>
  330.  
  331.     <ul class="links" data-bi-name="footerlinks">
  332.         <li><a data-mscc-ic="false" href="https://docs.microsoft.com/previous-versions/" data-bi-name="archivelink">Previous Version Docs</a></li>
  333.         <li><a data-mscc-ic="false" href="https://docs.microsoft.com/teamblog" data-bi-name="bloglink">Blog</a></li>
  334.         <li><a data-mscc-ic="false" href="https://docs.microsoft.com/contribute" data-bi-name="contributorGuide">Contribute</a></li>
  335.             <li><a data-mscc-ic="false" href="https://go.microsoft.com/fwlink/?LinkId=521839" data-bi-name="privacy">Privacy &amp; Cookies</a></li>
  336.         <li><a data-mscc-ic="false" href="/en-us/legal/termsofuse" data-bi-name="termsofuse">Terms of Use</a></li>
  337.         <li><a data-mscc-ic="false" href="https://aka.ms/sitefeedback" data-bi-name="feedback">Site Feedback</a></li>
  338.         <li><a data-mscc-ic="false" href="https://www.microsoft.com/en-us/legal/intellectualproperty/Trademarks/EN-US.aspx" data-bi-name="trademarks">Trademarks</a></li>
  339.     </ul>
  340. </footer>   </div>
  341.  
  342.     <div class="action-panel has-default-focus"></div>
  343. </body>
  344. </html>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!