2.2.8 ENCRYPTION_CERTIFICATE

The ENCRYPTION_CERTIFICATE type is used to represent a single X.509 certificate.

 typedef struct _ENCRYPTION_CERTIFICATE {
   DWORD cbTotalLength;
   RPC_SID* UserSid;
   EFS_CERTIFICATE_BLOB* CertBlob;
 } ENCRYPTION_CERTIFICATE;

cbTotalLength: The length, in bytes, of the structure.

UserSid: The SID of the user who owns the certificate. This is intended as a hint only. It MAY be set to zero if no such hint is available. The structure of an RPC SID is as specified in [MS-DTYP] section 2.4.2.3.

CertBlob: A pointer to an EFS_CERTIFICATE_BLOB (2.2.6) structure.