Internet Explorer Cannot Import Odd-Sized Keys (269518)



The information in this article applies to:

  • Microsoft Internet Explorer 5.5 for Windows NT 4.0
  • Microsoft Internet Explorer 5.01 for Windows NT 4.0 SP 1
  • Microsoft Internet Explorer 5.0 for Windows NT 4.0
  • Microsoft Internet Explorer 4.01 for Windows NT 4.0 SP 1
  • Microsoft Internet Explorer 4.01 for Windows NT 4.0 SP 2
  • Microsoft Internet Explorer 4.0 for Windows NT 4.0
  • Microsoft Internet Explorer 3.02 for Windows NT 4.0
  • Microsoft Internet Explorer 3.01 for Windows NT 4.0
  • Microsoft Internet Explorer 3.0 for Windows NT 4.0
  • Microsoft Internet Explorer 5.5 for Windows 98 Second Edition
  • Microsoft Internet Explorer 5.01 for Windows 98 Second Edition SP 1
  • Microsoft Internet Explorer 5.5 for Windows 98
  • Microsoft Internet Explorer 5.01 for Windows 98 SP 1
  • Microsoft Internet Explorer 5.0 for Windows 98
  • Microsoft Internet Explorer 4.01 for Windows 98 SP 2
  • Microsoft Internet Explorer 5.5 for Windows 95
  • Microsoft Internet Explorer 5.01 for Windows 95 SP 1
  • Microsoft Internet Explorer 5.0 for Windows 95
  • Microsoft Internet Explorer 4.01 for Windows 95 SP 1
  • Microsoft Internet Explorer 4.01 for Windows 95 SP 2
  • Microsoft Internet Explorer 4.0 for Windows 95
  • Microsoft Internet Explorer 3.02 for Windows 95
  • Microsoft Internet Explorer 3.01 for Windows 95
  • Microsoft Internet Explorer 3.0 for Windows 95
  • Microsoft Internet Explorer 5.5 for Windows 2000
  • Microsoft Internet Explorer 5.01 for Windows 2000 SP 1

This article was previously published under Q269518

SYMPTOMS

When you use Microsoft Internet Explorer and you attempt to import cryptographic keys that are made up of two different-sized modulus, you may receive one of the following error messages.

Internet Explorer 5.01 on Microsoft Windows 98:
Error Message from Certificate Manager Import Wizard: The input information is invalid.
Internet Explorer 5.01 on Microsoft Windows 2000:
Error Message from Certificate Import Wizard: An internal error occurred.
The private key that you are importing might require a cryptographic service provider that is not installed on your system.

CAUSE

The Microsoft Cryptographic Service Providers (CSPs), which support Rivest-Shamir-Adleman (RSA) algorithms, require that the two prime values that are multiplied to generate the modulus be exactly half the length of the modulus. For example, if the modulus is 1024 bits (with the most significant bit set to 1), the two primes are both assumed to be 512 bits (again, the most significant bit is set to 1). Some RSA keys have prime values that do not meet this criterion. For example, some RSA keys generated by cryptography products have one prime that is 513 bits and one that is 511 bits. The Microsoft PFX code and the Microsoft CSPs do not support keys of this type. You are not be able to import these keys.

Modification Type:MinorLast Reviewed:1/14/2006
Keywords:kbprb KB269518