All applications created by Twilight Utilities requires the user to have MS Crypto installed.
This is for two reasons:
1 We digitally sign all of our applications and this requires the user have 128 bit encryption installed so the digital signature can be tested.
1.1 The files are signed to ensure you always get what we shipped. If the program is modified in any way it will not run. For example it will fail if it is infected (hacked) by a virus.
2 The Phone Server can encrypt the data streams and this is recommended since otherwise the account information sent by the NetCaller client will be sent as plain text.
Encryption Strategy
Our encryption strategy is assured to pass US export laws because we use NO proprietary encryption, only the encryption strength as allowed through windows.
The basic steps are:
a Each side of the conversation creates a unique MD5 encryption key as well as a new 128 bit RSA key.
b The public RSA key is sent unencrypted (of course) over the wire be each party to the other.
c The public RSA keys are used to encrypt the MD5 key and the encrypted key is sent over the wire.
d A final hash test is performed on the received keys, closing the handshake.
