Microsoft KB Archive/269518

= Internet Explorer Cannot Import Odd-Sized Keys =

Article ID: 269518

Article Last Modified on 1/27/2007

-

APPLIES TO


 * Microsoft Internet Explorer 5.5
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 4.01 Service Pack 1
 * Microsoft Internet Explorer 4.01 Service Pack 2
 * Microsoft Internet Explorer 4.0 128-Bit Edition
 * Microsoft Internet Explorer 3.02
 * Microsoft Internet Explorer 3.01
 * Microsoft Internet Explorer 3.0
 * Microsoft Internet Explorer 5.5
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.5
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 4.01 Service Pack 2
 * Microsoft Internet Explorer 5.5
 * Microsoft Internet Explorer 5.01
 * Microsoft Internet Explorer 5.0
 * Microsoft Internet Explorer 4.01 Service Pack 1
 * Microsoft Internet Explorer 4.01 Service Pack 2
 * Microsoft Internet Explorer 4.0 128-Bit Edition
 * Microsoft Internet Explorer 3.02
 * Microsoft Internet Explorer 3.01
 * Microsoft Internet Explorer 3.0
 * Microsoft Internet Explorer 5.5
 * Microsoft Internet Explorer 5.01

-



This article was previously published under Q269518





SYMPTOMS
When you use Microsoft Internet Explorer and you attempt to import cryptographic keys that are made up of two different-sized modulus, you may receive one of the following error messages.

Internet Explorer 5.01 on Microsoft Windows 98:

Error Message from Certificate Manager Import Wizard: The input information is invalid.

Internet Explorer 5.01 on Microsoft Windows 2000:

Error Message from Certificate Import Wizard: An internal error occurred.

The private key that you are importing might require a cryptographic service provider that is not installed on your system.



CAUSE
The Microsoft Cryptographic Service Providers (CSPs), which support Rivest-Shamir-Adleman (RSA) algorithms, require that the two prime values that are multiplied to generate the modulus be exactly half the length of the modulus. For example, if the modulus is 1024 bits (with the most significant bit set to 1), the two primes are both assumed to be 512 bits (again, the most significant bit is set to 1). Some RSA keys have prime values that do not meet this criterion. For example, some RSA keys generated by cryptography products have one prime that is 513 bits and one that is 511 bits. The Microsoft PFX code and the Microsoft CSPs do not support keys of this type. You are not be able to import these keys.

Keywords: kbprb KB269518

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.