Microsoft CNG Guide for nShield Security World v13.9.3

Introduction

Cryptography API: Next Generation (CNG) is the successor to the Microsoft Crypto API (CAPI) and its long-term replacement. The Security World Software implementation of Microsoft CNG is supported on Microsoft Windows Server 2016 and later releases. The nShield CNG providers offer the benefits of hardware-based encryption accessed through the standard Microsoft API, and support the National Security Agency (NSA) classified Suite B algorithms.

Before using the nShield CNG providers, run the nShield CNG Configuration Wizard to:

configure HSM Pool mode for CNG as required.
create a new Security World or specify an existing Security World to use.
register the nShield CNG providers.
configure the nShield CNG providers as default CNG providers for specific tasks.

For additional information, see the Microsoft CNG documentation: http://msdn2.microsoft.com/en-us/library/aa376210.aspx.

Before reading this document and using the Microsoft CNG toolkit supplied by Entrust, familiarize yourself with the information contained in API introductory guide.