Skip to main content

lsass.exe - what is it?

LSASS.exe (the 'LSA Shell') is part of the Windows security services, dealing mainly with local security policies. I've seen two major variants: the export version (weak crypto) and the domestic version, which is supposed to offer 128-bit encryption.

I have seen XP systems with lsass.exe marked with the description 'Export Version' even though Internet Explorer claims to be offering 128-bit encryption, so there seems to be some confusion over the differences between the 'Export Version" and the domestic, 'strong crypto' version. I need to figure out whether this is important... I seem to recall it being a non-issue, because at some point software companies were no longer required to ship crippled (weak) crypto export versions of the software.