Use this repository to download the DKE service. Once you download, install, and set up the DKE service, you keep your keys under your control. This way, your keys are never exposed to Microsoft. Follow the instructions at https://aka.ms/dke to get started.

IMPORTANT NOTICE: This project includes code for encryption libraries. You are responsible for complying with all applicable international and national laws that apply to this software, including the U.S. Export Administration Regulations, as well as end-user, end use and destination restrictions by U.S. and other governments.

# Test if KSP is registered successfully
certutil -csp "SafeNet Key Storage Provider" -csptest

# Create a simple RSA4096-KeyPair with certreq
$inf_content = @"
[Version]
Signature="$Windows NT$"
[NewRequest]
HashAlgorithm=sha512
KeyAlgorithm=RSA
KeyLength=4096
MachineKeySet=true
Subject="CN=my key"
ProviderName="SafeNet Key Storage Provider"
RequestType=PKCS10
"@
$inf_content | Out-File dummy-csr.inf
certreq -new dummy-csr.inf dummy.csr

# List created key. Take the id and place it into appsettings.json as keyId
certutil -csp "SafeNet Key Storage Provider" -key

This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.

When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.

Coding Guidelines Capitalization Conventions