Exporting Non-Exportable Rsa Keys presented at Blackhat Europe 2011

by Jason Geffner (Next Generation Security Software ),

Tags: Security

Summary : Microsoft Windows provides interfaces to allow applications to store and use cryptographic keys and certificates. These CryptoAPI and CNG interfaces in Windows allow applications to mark stored private keys as non-exportable, thereby preventing users from extracting private key data that is installed on their own systems. This private key "security" is provided mostly by data obfuscation via Microsoft's Cryptographic Service Providers. This talk will discuss the details of said obfuscation and provide code to export non-exportable keys from client versions of Windows, server versions of Windows, and Windows Mobile devices. Unlike prior work done in this space, the solution offered in this talk does not rely on function hooking or code injection.