The x509 certificate

- Used with the modern RSA algorithm, for speed and security
- Can encrypt a limited amount of information (up to the modulus size, determined when you created the cert)
- Is slow (compared to symmetric key)

In this implementation it is

- Always safely stored in Microsoft's certificate store. If your working locally this will be the machine store. If in the cloud then is has been securely escrowed away in the management portal at http://windows.azure.com
- The private key is never marked as "exportable" when residing on any role instance in the cloud
- It is used to encrypt and decrypt the symmetric key



Last edited May 12, 2011 at 9:31 PM by clamont, version 1

Comments

No comments yet.