Link to home
Start Free TrialLog in
Avatar of johnqgalt
johnqgalt

asked on

What is HKLM\SOFTWARE\Microsoft\Cryptography\RNG\Seed and what is it used for?

What is HKLM\SOFTWARE\Microsoft\Cryptography\RNG\Seed and what is it used for?
ASKER CERTIFIED SOLUTION
Avatar of 20LILY00
20LILY00

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of johnqgalt
johnqgalt

ASKER

Thank you for your comments. Can you please explain why  HKLM\SOFTWARE\Microsoft\Cryptography\RNG\Seed is so frequently used by applications which do not even use crypto? For example, opening a simple application like MS Paint or metapad results in 6 or 7 "set value" actions in this key. Why is that?
I just checked my copy of mspaint.exe (running Windows XP v2002) and I didn't find any occurrence of "crypto" or "seed."  Maybe a DLL it calls does this as part of its initialization routine or there's something wrong with your mspaint.exe (i.e., infection).  As it was, I had to dig hard and deep to even come up with what little info I was able to give you.  This is probably a question for Microsoft support, and quite frankly I'd be very surprised if they had an even halfway satisfactory answer, because the support people probably don't even know and they work for the company that writes the software!  I run Windows 2000 SP4 at work - I'll be sure to check there on Monday.
I just checked mspaint on my work system (Windows 2000 SP4) and there is no mention of crypto, seed or RNG in it.
Thanks for your followup, ometecuhtli2001. Try running <a href="http://www.sysinternals.com/ntw2k/source/regmon.shtml">regmon</a> and then opening MS Paint (I tested on Windows 2000). It will SetValue 6 or 7 times in that key. I would like to know why.