>
>Craig's documentation does not tell me what happens if the incorrect secret key is entered or decryption/encryption fails. Is there any other documentation in this case?>
>I don't know as I have not used it. You could ask Craig, or try it yourself but what happens in CryptAPI when you do that is that you change gibberish into different gibberish instead of clear text. He probably does the same as the password is not stored anywhere so it's hard to tell if it is the correct one.
For example, if an encrypted string is decrypted with the wrong key, it doesn't throw any exception or SetLastError, it just returns a different gibberish from the encrypted one.
Dawa Tsering
"Do not let any unwholesome talk come out of your mouths,
but only what is helpful for building others up according to their needs,
that it may benefit those who listen."
- Ephesians 4:29-30 NIV
Dare to Question -- Care to Answer
Time is like water in a sponge, as long as you are willing you can always squeeze some.
--Lu Xun, Father of Modern Chinese Literature