Enabled: All keys used exclusively for signing operations by the MS-CAPI interface are protected by strong private protection. In this case the key is protected by its own password that has to be entered whenever the key is being used for a signing operation.
This specific password can be cached to avoid repetitive input. Since this password is not related to the Basic User Key, the caching mechanism used for the Basic User Password does not affect this password.
Disabled: Signing keys are not protected in a special form.
Default value: Disabled
| Registry Hive | HKEY_CURRENT_USER |
| Registry Path | Software\Policies\Infineon\TPM Software |
| Value Name | StrongSigningKey |
| Value Type | REG_DWORD |
| Enabled Value | 1 |
| Disabled Value | 0 |