CNG Key Isolation
The CNG (Cryptographic Next Generation) key isolation service is hosted in the LSA process. The service provides key process isolation to private keys and associated cryptographic operations as required by the Common Criteria. The service stores and uses long-lived keys in a secure process complying with Common Criteria requirements.
This service is required for wireless networks (WLAN).
More Info MSDN - CNG Features
More Info MSDN - Key Storage and Retrieval
More Info Wiki - Common Criteria
- Win8: Manual (Trigger Start)
- Win7/Vista: Manual
- lsass.exe (KeyIso)