The CryptoProxy service runs in the Windows environment and uses Microsoft cryptography interfaces to perform the actual cryptographic functionality. The algorithms supported are industry standard encryption, digest, and signature algorithms.

Administrators use the Security Center Client GUI to create asymmetric encryption key pairs which are stored in Microsoft key containers, and to store certificates in Microsoft Certificate stores. These Microsoft key and certificate containers are then accessed by the CryptoProxy when performing cryptographic functions. The CryptoProxy service can also generate and use symmetric encryption keys when requested via the McpCryptoApi library.

The CryptoProxy service is implemented as a DLL, named NgmIOSu42024.dll. On earlier systems, the CryptoProxy was implemented as an executable named NXCryptoProxy.exe.

The CryptoProxy can be installed on IOPs and on the CPM. When installed on the CPM, the same DLL can be loaded by a Service Unit IOP and by the CPM. The CryptoProxy DLL loaded by the CPM appears in the NA MCAPI STATUS command as the CPMCryptoProxy. The CPMCryptoProxy is used exclusively for database encryption.