????? ????? ??????? ????? ????????? ??????? "?" ????????? ?? Schannel.dll

???? ???????: 245030 - ??? ???????? ???? ????? ????? ??? ???????.
????? ???????? ????? ????? ??????? ?????? ?????? ???????
????? ???? | ?? ????

?? ??? ??????

??????

???? ??? ??????? ????? ????? ??????? ????? ????????? ??????? ????????????? ?? ????? Schannel.dll.

????? ??? ????????? ???? ??? ???? ??????? ??????? (ISV) ????????? ???????? ? API ????? Microsoft.
???? ??? ?????? | ????? ???????

??????? ????

????? ???? ????? ???????? (Csp) ??????? ?? Windows NT 4.0 Service Pack 6 ?? ???? ???????? ?? ????????? ?? ??? ??????? FIPS 140-1
(http://csrc.nist.gov/cryptval/140-1/1401val.htm)
:
  • ??????? Microsoft ???? ???? ??????? (Rsabase.dll)
  • Microsoft ???? ??????? ?????? (????? Rsaenh.dll) [-????? ?????]
?????? Microsoft ??? ???? ???? TLS/SSL? ????? Schannel.dll? ???? ???? ????? Csp ???????? ????? ?????? ??????? ???? ??? SSL ?? TLS ?? ???? ??????? Microsoft Internet Explorer ? Internet Information Server (IIS).

????? ????? ????? Schannel.dll ???? ????? Suite 1 ? 2? ???? ??? ?? ????? ???????? ???? ????? Suite 1 ? 2. ????? Suite 1 ? 2 ??? ?????? ?? IIS 4.0 ? 5.0.

???? ??? ??????? ????????? ???????? ?????? ???? ??????? Windows NT 4.0 Service Pack 6 ????? ??? ???? ???? TLS/SSL. ????? ??????? "????? Windows" ?????? ?? ??????? SSL 3.0 ????? ?? ????? ??????? TLS 1.0 ?????? ??? ????????? ????? ????? ?? ??? ??????? Microsoft "??" ???? ??????? ??????.

??????: ?? Windows NT 4.0 Service Pack 6? ?? ?????? ????? Schannel.dll Microsoft Base DSS ???? ??????? (Dssbase.dll) ?? Microsoft DS/???? ?? Diffie-hellman ?????? ???? ??????? (Dssenh.dll).

????? ???????

??? SSL 3.0 (http://www.mozilla.org/projects/security/pki/nss/ssl/draft302.txt
(http://www.mozilla.org/projects/security/pki/nss/ssl/draft302.txt)
)? ? TLS 1.0 (RFC2246) ?? "?? 56 ?? ????? ??????? ??????? ? TLS draft-ietf-tls-56-bit-ciphersuites-00.txt" ??? ????? ?????? ???? ?? ?????? ???????? ????? ??????? ??????. ???? ?? ?????? ????? ????? ????? ???????? ???????? ?????????? MAC ??????? ??? ???? ??? SSL/TLS. ???? ??? ??? ??????? RSA ????? ???????? ?????????? ????????, ???????RSA???? ??? ????? ??? ?? ??????? ?????? ????? ???????.

???? ???? ??????? Windows NT 4.0 Service Pack 6 Microsoft TLS/SSL "???? ??????" ??????? "CipherSuite" ??????? ?? SSL 3.0 ??? ??????? "??????? Microsoft" ?? "???? ??????? ??????:
?? ??? ??????????? ??? ??????
SSL_RSA_EXPORT_WITH_RC4_40_MD5{0x00? 0x03}
SSL_RSA_WITH_RC4_128_MD5{0x00? 0x04}
SSL_RSA_WITH_RC4_128_SHA{0x00? 0x05}
SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5{0x00? 0x06}
SSL_RSA_WITH_DES_CBC_SHA{0x00? 0x09}
SSL_RSA_WITH_3DES_EDE_CBC_SHA{0x00? 0x0A}
SSL_RSA_EXPORT1024_WITH_DES_CBC_SHA{0x00? 0x62}
SSL_RSA_EXPORT1024_WITH_RC4_56_SHA{0x00? 0x64}
??????: ??? ????? ?? SSL_RSA_EXPORT1024_WITH_DES_CBC_SHA ??? SSL_RSA_EXPORT1024_WITH_RC4_56_SHA ?? ???? SSL 3.0. ??? ???? ????? ??? ?? ????? SSL 3.0 ??? ?? ??? Microsoft? ?????.

???? ???? ??????? Windows NT 4.0 ???? ???? 6 Microsoft TLS/SSL "???? ??????" ???? ??????? "CipherSuite" ??????? ?? TLS 1.0 ??? ??????? "??????? Microsoft" ?? "???? ??????? ??????:

?? ??? ??????????? ??? ??????
TLS_RSA_EXPORT_WITH_RC4_40_MD5{0x00? 0x03}
TLS_RSA_WITH_RC4_128_MD5{0x00? 0x04}
TLS_RSA_WITH_RC4_128_SHA{0x00? 0x05}
TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5{0x00? 0x06}
TLS_RSA_WITH_DES_CBC_SHA{0x00? 0x09}
TLS_RSA_WITH_3DES_EDE_CBC_SHA{0x00? 0x0A}
TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA{0x00? 0x62}
TLS_RSA_EXPORT1024_WITH_RC4_56_SHA{0x00? 0x64}
??????: ?????? ????? ????? ?? ?????? ????? "0x00" ??? ??? ??????? ????????? ?????? ??????. ?? ??? ???????? Windows NT 4.0 Service Pack 6 Microsoft TLS/SSL "???? ??????" ???? ????????? ?????? ???????? ??????? cipher ??? ??? ?? ???? ?? ??????? SSL 3.0 ? TLS 1.0 ????? ??????? ??????? ????????.

?????? ??????? Schannel ??????

?????? ?????? ?? ????? ?? ?????? ??? ??????? ???? ???? ????? ????? ???????. ??? ???? ?? ???? ?????? ????? ?? ???? ????? ??????? ???? ??? ????. ?????? ???? ?? ????? ??????? ??????? ??????. ??????? ????????? ???? ???????? ??????? ??? ??????. ??? ???? ????? ??????? ??????? ??? ???? ????? ??. ?????? ??? ???? ?? ????????? ??? ????? ????? ????? ????????? ?????????? ???????? ???? ??? ??? ??????? ?????? ???? ??????? ?? ????? ????? Microsoft:
322756
(http://support.microsoft.com/kb/322756/ )
????? ????? ????? ????????? ?????????? ??????? ?? ???? ??????? Windows

????? SCHANNEL

??? ????? ???? ??????? (Regedt32.exe)? ???? ???? ??????? ?????? ?? ???????.
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL

??????? ?????? SCHANNEL\Protocols

?????? ??????? ???????????? ???? ?? ???? ??????? ???? ??????? (??? ???? ??????? TLS 1.1 ?? TLS 1.2)? ?? ?????? ?????? ?????? DWORD???????????????????? ???0 × 0?? ?? ?? ?????? ??????? ???????? ??? ????? ??????????:
  • SCHANNEL\Protocols\TLS 1.1\Client
  • SCHANNEL\Protocols\TLS 1.1\Server
  • SCHANNEL\Protocols\TLS 1.2\Client
  • SCHANNEL\Protocols\TLS 1.2\Server
?????:???????????????????? ?? ?????? ??????? ?????????????????? ?? ???? ???????? ???grbitenabledprotocols ???? ???????? ???? ?? ??????? ?? ???? schannel_cred ???? ????? ??? ???????? ?????? ??????? ?????? Schannel.

??????? ?????? SCHANNEL\Ciphers

"?????????? ??????? ???SCHANNEL??? ??????? ??????? ?????? ???????? ????????? ??????? ??? DES ?? RC4. ???? ??? ?????? ??????? ???? ?????????????.

SCHANNEL\Ciphers\RC4 128/128 ??????? ??????:

RC4 128/128

???? ??? ??????? ?????? ??? RC4 128-??.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????. ?? ????? ????? ??????? ??? ??? ???? ?????? ??? ?????? ?????? SGC.

?? ???? ????? ??? ?????????? ???????:
  • SSL_RSA_WITH_RC4_128_MD5
  • SSL_RSA_WITH_RC4_128_SHA
  • TLS_RSA_WITH_RC4_128_MD5
  • TLS_RSA_WITH_RC4_128_SHA
SCHANNEL\Ciphers\Triple DES 168/168 ??????? ??????:

DES ??????? 168

???? ????? ??????? ??? ??? 168 ?? ????? Triple DES ??? ?? ???? ?? ANSI X9.52 ? FIPS ????? 46-3. ?? ????? ????? ??????? ??? ??????? ???????.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ????? ???????? DWORD0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

?? ???? ????? ??? ?????????? ???????:
  • SSL_RSA_WITH_3DES_EDE_CBC_SHA
  • SSL_DHE_DSS_WITH_3DES_EDE_CBC_SHA
  • TLS_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA
SCHANNEL\Ciphers\RC2 128/128 ??????? ??????:

RC2 128/128

???? ????? ??????? ??? ??? RC2 128-??. ?? ????? ??????? ???????.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

SCHANNEL\Ciphers\RC4 ??????? ?????? 64/128:

RC4 64/128

???? ????? ??????? ??? ??? RC4 64-??. ???? ?? ????? ??? ??????? ??????? (???? ??? ??????? ?? Microsoft Money).

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

SCHANNEL\Ciphers\RC4 56/128 ??????? ??????:

RC4 56/128

???? ????? ??????? ??? ??? RC4 56 ??.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

?? ???? ????? ??? ?????????? ???????:
  • TLS_RSA_EXPORT1024_WITH_RC4_56_SHA
SCHANNEL\Ciphers\RC2 56/128 ??????? ??????:

RC2 56/128

???? ????? ??????? ??? ??? RC2 56 ??.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

SCHANNEL\Ciphers\RC2 56/56 ??????? ??????:

DES 56

???? ????? ??????? ??? ??? DES 56 ?? ??? ?? ???? ?? FIPS 46-2. ?? ?????? ?? ??????? ????? ?? ?? Rsabase.dll ?????? ? Rsaenh.dll ??? "?????? ?????? ?? ??? ?????? ??????? ??????? ?" FIPS 140-1.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

?? ???? ????? ??? ?????????? ???????:
  • SSL_RSA_WITH_DES_CBC_SHA
  • TLS_RSA_WITH_DES_CBC_SHA
SCHANNEL\Ciphers\RC4 40/128 ??????? ??????:

RC4 40/128

???? ??? ??? RC4 40 ??.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

?? ???? ????? ??? ?????????? ???????:
  • SSL_RSA_EXPORT_WITH_RC4_40_MD5
  • TLS_RSA_EXPORT_WITH_RC4_40_MD5
SCHANNEL\Ciphers\RC2 40/128 ??????? ??????:

RC2 40/128

???? ????? ??????? ??? ??? RC2 40-??.

?????? ???? ?????????? ???????? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0. ??? ?? ??? ????????????? ????? ??????? ??????? ?????????.

?? ???? ????? ??? ?????????? ???????:
  • SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5
  • TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
??????? ?????? "SCHANNEL\Ciphers\NULL":

????? (NULL)

????? ??????? ??? ???? ??? ???????. ??? ????? ???? ???????.

?????? ????? ????? (??? ?????? ??? ?? ????????? ???????)? ????? ?????? ?????? DWORD??????????? ???0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0.

??????? ?????? SCHANNEL/???????

"???????????? ??????? ???SCHANNEL??? ??????? ??????? ?????? ???????? ????????? ??????? MD5 ?? SHA-1. ???? ??? ?????? ??????? ???? ???????????????.

??????? ?????? "SCHANNEL\Hashes\MD5":

MD5

?????? ??? ???????? ???????? ?????? ?????? ?????? DWORD??????????? ??? ?????? ??????????0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0.

?? ???? ????? ??? ?????????? ???????:
  • SSL_RSA_EXPORT_WITH_RC4_40_MD5
  • SSL_RSA_WITH_RC4_128_MD5
  • SSL_RSA_EXPORT_WITH_RC2_CBC_40_MD5
  • TLS_RSA_EXPORT_WITH_RC4_40_MD5
  • TLS_RSA_WITH_RC4_128_MD5
  • TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5
??????? ?????? "SCHANNEL\Hashes\SHA":

??

???? ????? ??????? ??? ??? "???????? ??????? ??????" (sha-1)? ??? ?? ???? ?? FIPS 180-1. ?? ?????? ?? ??????? ????? ?? ?? Rsabase.dll ?????? ? Rsaenh.dll ??? "?????? ?????? ?? ??? ?????? ??????? ??????? ?" FIPS 140-1.

?????? ??? ???????? ???????? ?????? ?????? ?????? DWORD??????????? ??? ?????? ??????????0xffffffff? ???? ?????? ?????? ?????? DWORD ???0 × 0.

?? ???? ????? ??? ?????????? ???????:
  • SSL_RSA_WITH_RC4_128_SHA
  • SSL_RSA_WITH_DES_CBC_SHA
  • SSL_RSA_WITH_3DES_EDE_CBC_SHA
  • SSL_RSA_EXPORT1024_WITH_DES_CBC_SHA
  • SSL_RSA_EXPORT1024_WITH_RC4_56_SHA
  • TLS_RSA_WITH_RC4_128_SHA
  • TLS_RSA_WITH_DES_CBC_SHA
  • TLS_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
  • TLS_RSA_EXPORT1024_WITH_RC4_56_SHA

??????? ?????? SCHANNEL/????????????????????

"????????????????????????? ??????? ???SCHANNEL??? ??????? ??????? ?????? ???????? ????????? ????? ????????? ??? ???? ?????? RSA. ???? ??? ?????? ??????? ???? ????????????????????????????.

??????? ?????? "SCHANNEL\KeyExchangeAlgorithms\PKCS":

PKCS

???? ????? ??????? ??? ??? RSA ??? ???? ????? ?????? ?????????? ????????.

?????? RSA? ?? ?????? ?????? ?????? DWORD??????????? ??? ?????? ??????????0xffffffff? ???? ????? ???????? DWORD0 × 0.

????? RSA ?????? ?? ???? ????? RSA-????? SSL ? TLS ????? ??????? ???????? ?? ??? "???? ??????" TLS/SSL Microsoft Windows NT4 SP6.

????? ??????? 140-1 FIPS

?? ????? ??? ??????? ??? ??? SSL 3.0 ?? TLS 1.0 ????? ??????? ???? ?????? ?? FIPS 46-3 ?? FIPS 46-2 ? 180-1 fips ?? ?????? ?? ??? "??????? Microsoft" ?? "???? ??????? ??????.

?? ??? ??????? ???? ?????? ????? ?????? ??????? 140-1 FIPS. ????? ???? ???:
  • SSL_RSA_WITH_DES_CBC_SHA
  • SSL_RSA_WITH_3DES_EDE_CBC_SHA
  • SSL_RSA_EXPORT1024_WITH_DES_CBC_SHA
  • TLS_RSA_WITH_DES_CBC_SHA
  • TLS_RSA_WITH_3DES_EDE_CBC_SHA
  • TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA
???????? ????? ??????? 140-1 FIPS ??? ??????? ?????? ????? ?? ??? ???? ??????? Windows NT 4.0 ???? ???? 6 Microsoft TLS/SSL "???? ??????" ???????? ??????? Microsoft "??" ???? ??????? ?????? ????? ?????? ?????? DWORD??????????? ?? ?????? ??????? ??????? ???0 × 0:
  • SCHANNEL\Ciphers\RC4 128/128
  • SCHANNEL\Ciphers\RC2 128/128
  • SCHANNEL\Ciphers\RC4 64/128
  • SCHANNEL\Ciphers\RC4 56/128
  • SCHANNEL\Ciphers\RC2 56/128
  • SCHANNEL\Ciphers\RC4 40/128
  • SCHANNEL\Ciphers\RC2 40/128
  • SCHANNEL\Ciphers\NULL
  • SCHANNEL\Hashes\MD5
?? ?? ?????? ?????? ?????? DWORD??????????? ?? ?????? ??????? ??????? ???0xffffffff:
  • SCHANNEL\Ciphers\DES 56/56
  • SCHANNEL\Ciphers\Triple DES 168/168 "[??? ???? ??????? ?? ????? ?????]
  • SCHANNEL\Hashes\SHA
  • SCHANNEL\KeyExchangeAlgorithms\PKCS

???? ???? ???? ???????? ???????? ????? ??????? 140-1 FIPS

????????? ?????? ???????? ????? FIPS ???????? ????? ??? ??????? 140-1 ?? SSL 3.0 ????? ?? ??? ?????? ???????? (?????) FIPS 140-1 ??????? ??????? TLS 1.0.

?? SSL 3.0? ?????? ?????? ?? ????? ???? master_secret:

1.0 TLS? ?????? ?????? ?? ????? ???? master_secret:

???:

????? ???? ??????? ????? ??????? 140-1 FIPS ??? ?? TLS 1.0:

????? ????? ????? ??????? ?? ???? ??? ??????? SSL 3.0 ??? ??? ?? ????? ?????? ????? ??? ?? ????? ??????? 140-1 FIPS ?????? ??????? ??? ?? ????? ???????. ?? ??? ??????? ?????? ?????? ?????? DWORD??????????? ???0 × 0?? ?? ?? ?????? ??????? ???????? ??????????????????:
  • SCHANNEL\Protocols\SSL 3.0\Client
  • SCHANNEL\Protocols\SSL 3.0\Server
?????:????????? ???????? ?? ?????? ??????? ??????? ?????????????????? ???????? ???grbitenabledprotocols ???? ???????? ???? ?? ??????? ?? ???? schannel_cred ???? ????? ??? ???????? ?????? ??????? ?????? Schannel. ??????? ?????????????????? ?????? ??????0xffffffff.

????? ??????? ??????

??? ????? ????? ????? ?? ????? ??? ??????? ?????? ?????? ?? ???????? Non-export.reg? ? Export.reg ?? ??? ????? ?? ??? ??????? ??? ????????.

?? ????? ??????? ????? Windows NT 4.0 Service Pack 6 ?? ????? Rasbase.dll ? Schannel.dll ????? ???????? ????? Export.reg ?????? ?? ?? ????? ??????? TLS 1.0 FIPS ??? ??????? ????? ?????????.

?? ??????? ???? Windows NT 4.0 Service Pack 6 ???? ????? Rasenh.dll ??? ???? ??????? ???????? Schannel.dll Non-(export.reg) ?????? ?? ?? ??????? FIPS 1.0 TLS ??? ??????? ??????? ?? ??? ?????????.

????? Schannel.dll ?????? ??? ????????? ???SCHANNEL????? ???????? ??? ????? ????? ???? ?????????.

?????? ??? ????????? ??????? ???????? ????SCHANNEL????? ??????? ??? ??? ????. ?? ???? ??? ???? ?????? ??????? ??? ??????? Schannel.dll ???? ???? ???????? ??? ????? ????? ?????????.

???? ??? ?????? | ????? ???????

???????

???? ???????: 245030 - ????? ??? ??????: 02/????? ??????/1432 - ??????: 0.1
????? ???
  • Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
  • Microsoft Windows Server 2003, Standard Edition (32-bit x86)
  • Microsoft Windows Server 2003, Web Edition
  • Microsoft Windows XP Professional
  • Microsoft Windows XP Home Edition
  • Microsoft Windows 2000 Server
  • Microsoft Windows 2000 Advanced Server
  • Microsoft Windows 2000 Professional Edition
  • Microsoft Windows NT Server 4.0 Standard Edition
  • Microsoft Windows NT Server 4.0 Enterprise Edition
  • Microsoft Windows NT Workstation 4.0 Developer Edition
????? ??????: 
kbenv kbinfo kbmt KB245030 KbMtar
????? ????
???: ??? ????? ??? ?????? ???????? ?????? ????? ???? ????? ?????????? ????? ?? ????????? ?????? ????. ???? ???? ?????????? ???? ?? ???????? ???????? ?????? ????????? ????? ????????? ???????? ????? ???????? ?????? ?? ?????? ??? ?? ???????? ???????? ?? ????? ??????? ?????? ??? ??????? ?????? ??. ?????? ?? ???? ??? ??????? ???????? ????? ?? ???? ????? ?????? ??? ????? ??? ????? ??????? ?? ????? ?? ?????? ??? ??? ??????? ??????? ?? ????? ????? ????? ????? ?????. ?? ????? ???? ?????????? ??????? ??? ????? ?? ??????? ?? ????? ?????? ?? ??? ????? ?? ????? ??????? ?? ???????? ?? ??? ???????. ???? ???? ?????????? ???????? ??? ????? ?????? ??????? ??????
???? ??? ????? ??????? ?????? ??????????245030
(http://support.microsoft.com/kb/245030/en-us/ )
???? ??? ?????? | ????? ???????

????? ???????

 
???? ??? ?????????? ??? ??????