Forums
New posts
Search forums
News
Security News
Technology News
Giveaways
Giveaways, Promotions and Contests
Discounts & Deals
Reviews
Users Reviews
Video Reviews
Support
Windows Malware Removal Help & Support
Inactive Support Threads
Mac Malware Removal Help & Support
Mobile Malware Removal Help & Support
Blog
Log in
Register
What's new
Search
Search titles only
By:
Search titles only
By:
Reply to thread
Menu
Install the app
Install
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Forums
Software
Security Apps
Microsoft Defender
Key management in Windows
Message
<blockquote data-quote="notabot" data-source="post: 795815" data-attributes="member: 75970"><p>Many policies revolve around allowing only signed code etc, verifying drivers at boot etc, which begs the question of how key management is done in Windows.</p><p></p><p>How is a key revoked ? Is it eg revoked with Windows updates or with another distribution channel</p><p></p><p>Where are the keys stored are they in a software keystore or eg in the TPM ? If it’s a software keystore what protections are built around they keystore?</p><p></p><p>Which is the root CA for the keys that sign code?</p><p></p><p>What standards does the CA impose ? Which encryption methods does it accept and with what parameters ?</p><p></p><p>Also what types of hashes of an app can be signed for the app to be considered signed ? Does eg signing the md5 qualify ? Or it needs to be a more modern algorithm like sha256? Where are acceptable hashing algorithms configured? Where are acceptable signing algorithms configured?</p></blockquote><p></p>
[QUOTE="notabot, post: 795815, member: 75970"] Many policies revolve around allowing only signed code etc, verifying drivers at boot etc, which begs the question of how key management is done in Windows. How is a key revoked ? Is it eg revoked with Windows updates or with another distribution channel Where are the keys stored are they in a software keystore or eg in the TPM ? If it’s a software keystore what protections are built around they keystore? Which is the root CA for the keys that sign code? What standards does the CA impose ? Which encryption methods does it accept and with what parameters ? Also what types of hashes of an app can be signed for the app to be considered signed ? Does eg signing the md5 qualify ? Or it needs to be a more modern algorithm like sha256? Where are acceptable hashing algorithms configured? Where are acceptable signing algorithms configured? [/QUOTE]
Insert quotes…
Verification
Post reply
Top
