CERT_CAPABILITY

The following constants indicate the capabilities, algorithms, and cryptography supported by the certificate silo.

CERT_CAPABILITY_HASH_ALG

0x1

Hashing algorithms supported (e.g. SHA-1, SHA-256, etc).

CERT_CAPABILITY_ASYMMETRIC_KEY_CRYPTOGRAPHY

0x2

Asymmetric key cryptography supported (e.g. RSA 1024 bit key).

CERT_CAPABILITY_SIGNATURE_ALG

0x3

Signature algorithms supported (e.g. RSASSA PSS-SHA1 RSASSA PKCS v1.5 SHA-1).

CERT_CAPABILITY_CERTIFICATE_SUPPORT

0x4

Certificate support provided in the certificate silo. Currently, only certificate extension field parsing is supported.

CERT_CAPABILITY_OPTIONAL_FEATURES

0x5

Optional features supported by the certificate silo.

CERT_MAX_CAPABILITY

0xFF

This is used to indicate the first reserved value.

CERT_RSA_1024_OID

"1.2.840.113549.1.1.1,1024"

Identifier used to communicate support for RSA 1024 bit keys.

CERT_RSA_2048_OID

"1.2.840.113549.1.1.1,2048"

Identifier used to communicate support for RSA 2048 bit keys.

CERT_RSA_3072_OID

"1.2.840.113549.1.1.1,3072"

Identifier used to communicate support for RSA 3072 bit keys.

CERT_RSASSA_PSS_SHA1_OID

"1.2.840.113549.1.1.10,1.3.14.3.2.26"

Identifier used to communicate support for RSASSA PSS-SHA-1 signature algorithm.

CERT_RSASSA_PSS_SHA256_OID

"1.2.840.113549.1.1.10,2.16.840.1.101.3.4.2.1"

Identifier used to communicate support for RSASSA PSS-SHA-256 signature algorithm.

CERT_RSASSA_PSS_SHA384_OID

"1.2.840.113549.1.1.10,2.16.840.1.101.3.4.2.2"

Identifier used to communicate support for RSASSA PSS-SHA-384 signature algorithm.

CERT_RSASSA_PSS_SHA512_OID

"1.2.840.113549.1.1.10,2.16.840.1.101.3.4.2.3"

Identifier used to communicate support for RSASSA PSS-SHA-512 signature algorithm.

Requirements

Minimum supported client
Windows Vista with SP2 [desktop apps only]
Minimum supported server
Windows Server 2008 R2 [desktop apps only]
Header
EhStorExtensions.h