Each CSP has a key database in which it stores persistent cryptographic keys. Each key database contains one or more key containers, each of which contains all the key pairs belonging to a specific user. The following illustration shows the relationship between CSPs, key databases, and key containers.
The CSP stores each key container from session to session, including all of the public and private key pairs that it contains. However, session keys are not preserved from session to session.
Generally, a default key container is created for each user. Default key containers have a default name. An application can create its own key container and key pairs, in which case the key container is given a name by the application.