From 9ba48a690c095eab588fe6c9378d4c3005ff26bc Mon Sep 17 00:00:00 2001
From: Rick Munck <33725928+jmunck@users.noreply.github.com>
Date: Tue, 20 Oct 2020 11:15:29 -0500
Subject: [PATCH 01/44] Update security-compliance-toolkit-10.md

Added new baseline for 20H2
---
 .../security/threat-protection/security-compliance-toolkit-10.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/threat-protection/security-compliance-toolkit-10.md b/windows/security/threat-protection/security-compliance-toolkit-10.md
index 4941242b47..e8dd6ab29f 100644
--- a/windows/security/threat-protection/security-compliance-toolkit-10.md
+++ b/windows/security/threat-protection/security-compliance-toolkit-10.md
@@ -27,6 +27,7 @@ The SCT enables administrators to effectively manage their enterprise’s Group
 The Security Compliance Toolkit consists of:
 
 - Windows 10 security baselines
+    - Windows 10 Version 20H2 (October 2020 Update)
     - Windows 10 Version 2004 (May 2020 Update)
     - Windows 10 Version 1909 (November 2019 Update)
     - Windows 10 Version 1903 (May 2019 Update)

From 20545abfd3681a634befb8ed81249c23494aa78f Mon Sep 17 00:00:00 2001
From: garrettburk123 <55765124+garrettburk123@users.noreply.github.com>
Date: Tue, 20 Oct 2020 12:44:13 -0700
Subject: [PATCH 02/44] Updating to add the most recent certifications

Windows 10 version 1809 and Windows Server 2019 recently had FIPS 140 certificates issued. This update adds new tables reflecting this status. One table is in the "Modules used by Windows" section and the other is in the "Modules used by Windows Server" section.

Additionally, this update fixes spacing issues in the "Using Windows in a FIPS 140-2 approved mode of operation" section to separate paragraphs.
---
 .../threat-protection/fips-140-validation.md  | 144 +++++++++++++++++-
 1 file changed, 142 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/fips-140-validation.md b/windows/security/threat-protection/fips-140-validation.md
index 262058bf1d..e86723ea32 100644
--- a/windows/security/threat-protection/fips-140-validation.md
+++ b/windows/security/threat-protection/fips-140-validation.md
@@ -28,9 +28,9 @@ Microsoft maintains an active commitment to meeting the requirements of the FIPS
 ## Using Windows in a FIPS 140-2 approved mode of operation
 
 Windows 10 and Windows Server may be configured to run in a FIPS 140-2 approved mode of operation. This is commonly referred to as “FIPS mode.”  When this mode is enabled, the Cryptographic Primitives Library (bcryptprimitives.dll) and Kernel Mode Cryptographic Primitives Library (CNG.sys) modules will run self-tests before Windows cryptographic operations are run. These self-tests are run in accordance with FIPS 140-2 Section 4.9 and are utilized to ensure that the modules are functioning properly. The Cryptographic Primitives Library and the Kernel Mode Cryptographic Primitives Library are the only modules affected by this mode of operation. The FIPS 140-2 approved mode of operation will not prevent Windows and its subsystems from using non-FIPS validated cryptographic algorithms. For applications or components beyond the Cryptographic Primitives Library and the Kernel Mode Cryptographic Primitives Library, FIPS mode is merely advisory.
- 
+
 While US government regulations continue to mandate that FIPS mode be enabled on government computers running Windows, our recommendation is that it is each customer’s decision to make when considering enabling FIPS mode. There are many applications and protocols that look to the FIPS mode policy to determine which cryptographic functionality should be utilized in a given solution. We recommend that customers hoping to comply with FIPS 140-2 research the configuration settings of applications and protocols they may be using to ensure their solutions can be configured to utilize the FIPS 140-2 validated cryptography provided by Windows when it is operating in FIPS 140-2 approved mode. 
- 
+
 Achieving this FIPS 140-2 approved mode of operation of Windows requires administrators to complete all four steps outlined below.
 
 ### Step 1: Ensure FIPS 140-2 validated cryptographic modules are installed
@@ -89,6 +89,76 @@ The following tables identify the cryptographic modules used in an operating sys
 
 ## Modules used by Windows
 
+##### Windows 10 Fall 2018 Update (Version 1809)
+
+Validated Editions: Home, Pro, Enterprise, Education
+
+<table>
+<colgroup>
+<col style="width: 25%" />
+<col style="width: 25%" />
+<col style="width: 25%" />
+<col style="width: 25%" />
+</colgroup>
+<tbody>
+<tr class="odd">
+<td><b>Cryptographic Module</b></td>
+<td><b>Version (link to Security Policy)</b></td>
+<td><b>FIPS Certificate #</b></td>
+<td><b>Algorithms</b></td>
+</tr>
+<tr class="even">
+<td>Cryptographic Primitives Library</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3197.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3197">#3197</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>Kernel Mode Cryptographic Primitives Library</td>
+<td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3196.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3196">#3196</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="even">
+<td>Code Integrity</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3644.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3644">#3644</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>Windows OS Loader</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3615.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3615">#3615</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="even">
+<td>Secure Kernel Code Integrity</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3651.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3651">#3651</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>BitLocker Dump Filter</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3092.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3092">#3092</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="even">
+<td>Boot Manager</td>
+<td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3089.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3089">#3089</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>Virtual TPM</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3690.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3690">#3690</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+
+</tbody>
+</table>
+
 ##### Windows 10 Spring 2018 Update (Version 1803)
 
 Validated Editions: Home, Pro, Enterprise, Education
@@ -1336,6 +1406,76 @@ Validated Editions: Ultimate Edition
 
 ## Modules used by Windows Server
 
+##### Windows Server 2019 (Version 1809)
+
+Validated Editions: Standard, Datacenter
+
+<table>
+<colgroup>
+<col style="width: 25%" />
+<col style="width: 25%" />
+<col style="width: 25%" />
+<col style="width: 25%" />
+</colgroup>
+<tbody>
+<tr class="odd">
+<td><b>Cryptographic Module</b></td>
+<td><b>Version (link to Security Policy)</b></td>
+<td><b>FIPS Certificate #</b></td>
+<td><b>Algorithms</b></td>
+</tr>
+<tr class="even">
+<td>Cryptographic Primitives Library</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3197.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3197">#3197</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>Kernel Mode Cryptographic Primitives Library</td>
+<td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3196.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3196">#3196</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="even">
+<td>Code Integrity</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3644.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3644">#3644</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>Windows OS Loader</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3615.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3615">#3615</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="even">
+<td>Secure Kernel Code Integrity</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3651.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3651">#3651</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>BitLocker Dump Filter</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3092.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3092">#3092</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="even">
+<td>Boot Manager</td>
+<td><a href="https://csrc.nist.gov/csrc/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3089.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3089">#3089</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+<tr class="odd">
+<td>Virtual TPM</td>
+<td><a href="https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/security-policies/140sp3690.pdf">10.0.17763</a></td>
+<td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/3690">#3690</a></td>
+<td>See Security Policy and Certificate page for algorithm information</td>
+</tr>
+
+</tbody>
+</table>
+
 ##### Windows Server (Version 1803)
 
 Validated Editions: Standard, Datacenter

From ff1b1e6b9d5a95a5749bbaad59675d90388a6045 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Tue, 20 Oct 2020 16:08:50 -0700
Subject: [PATCH 03/44] add deployment ring table

---
 .../deployment-phases.md                      | 21 +++++++++++++++++++
 .../deployment-rings.md                       |  0
 2 files changed, 21 insertions(+)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md

diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
index 147eb07fb2..98afe5e640 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
@@ -41,6 +41,27 @@ There are three phases in deploying Microsoft Defender ATP:
 
 There are several methods you can use to onboard to the service. For information on other ways to onboard, see [Onboard devices to Microsoft Defender ATP](onboard-configure.md).
 
+## Deploy Microsoft Defender ATP in rings
+
+Deploying Microsoft Defender ATP can be done using a ring-based deployment approach. 
+
+A ring-based approach is a method of identifying a set of machines to onboard with specific timelines and verifying that certain criteria are met before the deploying to a larger set of devices.
+
+Adopting a ring-based deployment helps reduce potential issues or conflicts that could arise while rolling the service out. By piloting a certain number of devices first, you can identify potential issues and mitigate potential risks that might arise. 
+
+
+Table 1 provides an example of the deployment rings you might use. 
+
+**Table 1**
+
+|**Deployment ring**|**Description**|
+|:-----|:-----|
+Pilot and deployment planning | Phase 1: Identify 50 systems for pilot testing - Focus on the security team, IT team and maybe Helpdesk
+Full scale pilot | Phase 2: 100  systems <br> 	Phase 3: 150 systems <br> Phase 4: 500 systems <br> Phase 5: 1000 systems <br><br> Review and assess if there required tweaks to deployment. 
+Full deployment | Roll out service to the rest of environment in larger increments.
+
+
+
 ## In Scope
 
 The following is in scope for this deployment guide:
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
new file mode 100644
index 0000000000..e69de29bb2

From d2706507ce70c61026d0909d51f9fcaeda0b9474 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 21 Oct 2020 09:53:16 -0700
Subject: [PATCH 04/44] add line break

---
 .../microsoft-defender-atp/deployment-phases.md                 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
index 98afe5e640..4e23d893f1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
@@ -56,7 +56,7 @@ Table 1 provides an example of the deployment rings you might use.
 
 |**Deployment ring**|**Description**|
 |:-----|:-----|
-Pilot and deployment planning | Phase 1: Identify 50 systems for pilot testing - Focus on the security team, IT team and maybe Helpdesk
+Pilot and deployment planning | Phase 1: Identify 50 systems for pilot testing. <br> Focus on the security team, IT team and maybe Helpdesk.
 Full scale pilot | Phase 2: 100  systems <br> 	Phase 3: 150 systems <br> Phase 4: 500 systems <br> Phase 5: 1000 systems <br><br> Review and assess if there required tweaks to deployment. 
 Full deployment | Roll out service to the rest of environment in larger increments.
 

From 45e02efe854350367849904b29e4a4cd7049a1a3 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 21 Oct 2020 13:36:06 -0700
Subject: [PATCH 05/44] new deployment rings topic

---
 windows/security/threat-protection/TOC.md     |   1 +
 .../deployment-phases.md                      |  21 +---
 .../deployment-rings.md                       |  92 ++++++++++++++++++
 .../images/deployment-rings.png               | Bin 0 -> 37348 bytes
 4 files changed, 94 insertions(+), 20 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/deployment-rings.png

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 632fbafb38..52deba3ff6 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -16,6 +16,7 @@
 ## [Plan deployment](microsoft-defender-atp/deployment-strategy.md)
 
 ## [Deployment guide]()
+### [Deployment rings](microsoft-defender-atp/deployment-rings.md)
 ### [Deployment phases](microsoft-defender-atp/deployment-phases.md)
 ### [Phase 1: Prepare](microsoft-defender-atp/prepare-deployment.md)
 ### [Phase 2: Set up](microsoft-defender-atp/production-deployment.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
index 4e23d893f1..9d66c621de 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-phases.md
@@ -29,7 +29,7 @@ ms.topic: article
 
 There are three phases in deploying Microsoft Defender ATP:
 
-|Phase | Desription | 
+|Phase | Description | 
 |:-------|:-----|
 | ![Phase 1: Prepare](images/prepare.png)<br>[Phase 1: Prepare](prepare-deployment.md)| Learn about what you need to consider when deploying Microsoft Defender ATP: <br><br>- Stakeholders and sign-off <br> - Environment considerations <br>- Access <br> - Adoption order
 |  ![Phase 2: Setup](images/setup.png) <br>[Phase 2: Setup](production-deployment.md)|  Take the initial steps to access Microsoft Defender Security Center. You'll be guided on:<br><br>- Validating the licensing <br>  - Completing the setup wizard within the portal<br>- Network configuration|
@@ -41,25 +41,6 @@ There are three phases in deploying Microsoft Defender ATP:
 
 There are several methods you can use to onboard to the service. For information on other ways to onboard, see [Onboard devices to Microsoft Defender ATP](onboard-configure.md).
 
-## Deploy Microsoft Defender ATP in rings
-
-Deploying Microsoft Defender ATP can be done using a ring-based deployment approach. 
-
-A ring-based approach is a method of identifying a set of machines to onboard with specific timelines and verifying that certain criteria are met before the deploying to a larger set of devices.
-
-Adopting a ring-based deployment helps reduce potential issues or conflicts that could arise while rolling the service out. By piloting a certain number of devices first, you can identify potential issues and mitigate potential risks that might arise. 
-
-
-Table 1 provides an example of the deployment rings you might use. 
-
-**Table 1**
-
-|**Deployment ring**|**Description**|
-|:-----|:-----|
-Pilot and deployment planning | Phase 1: Identify 50 systems for pilot testing. <br> Focus on the security team, IT team and maybe Helpdesk.
-Full scale pilot | Phase 2: 100  systems <br> 	Phase 3: 150 systems <br> Phase 4: 500 systems <br> Phase 5: 1000 systems <br><br> Review and assess if there required tweaks to deployment. 
-Full deployment | Roll out service to the rest of environment in larger increments.
-
 
 
 ## In Scope
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index e69de29bb2..e43f88673b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -0,0 +1,92 @@
+---
+title: Deploy Microsoft Defender ATP in rings
+description: Learn how deploy Microsoft Defender ATP in rings
+keywords: deploy, rings, setup, onboard, phase, deployment, deploying, adoption, configuring
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+ms.author: macapara
+author: mjcaparas
+ms.localizationpriority: medium
+manager: dansimp
+audience: ITPro
+ms.collection: 
+- M365-security-compliance
+- m365solution-endpointprotect
+- m365solution-overview  
+ms.topic: article
+---
+
+# Deploy Microsoft Defender ATP in rings
+
+[!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
+
+**Applies to:**
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
+
+
+Deploying Microsoft Defender ATP can be done using a ring-based deployment approach. 
+
+![Image of deployment rings](images/deployment-rings.png)
+
+
+A ring-based approach is a method of identifying a set of endpoints to onboard and verifying that certain criteria is met before proceeding to deploy the service to a larger set of devices. You can define the exit criteria for each ring and ensure that they are satisfied before moving on to the next ring.
+
+Adopting a ring-based deployment helps reduce potential issues that could arise while rolling out the service. By piloting a certain number of devices first, you can identify potential issues and mitigate potential risks that might arise. 
+
+
+Table 1 provides an example of the deployment rings you might use. 
+
+**Table 1**
+
+|**Deployment ring**|**Description**|
+|:-----|:-----|
+Evaluate | Ring 1: Identify 50 systems for pilot testing 
+Pilot | Ring 2: 50-100  systems <br> 	
+Full deployment | Roll out service to the rest of environment in larger increments.
+
+
+## Evaluate
+You can use the [evaluation lab](evaluation-lab.md) to gain full access to the capabilities of the suite without the complexities of environment configuration. 
+
+You'll be able to add Windows 10 or Windows Server 2019 devices to the lab environment, install threat simulators, and run scenarios to instantly see how the platform performs.
+
+### Exit criteria?
+- Able to run simulation
+- Able to install threat simulator
+- Results from simulation is displayed in dashboard
+
+
+## Pilot
+Microsoft Defender ATP supports a variety of endpoints that you can onboard to the service. In this ring, identify several devices to onboard and based on the exit criteria you define, decide to proceed to the next deployment ring.
+
+The following table shows the supported endpoints and the corresponding tool you can use to onboard devices to the service. 
+
+| Endpoint     | Deployment tool                       |
+|--------------|------------------------------------------|
+| **Windows**  |  [Local script (up to 10 devices)](configure-endpoints-script.md) <br>  [Group Policy](configure-endpoints-gp.md) <br>  [Microsoft Endpoint Manager/ Mobile Device Manager](configure-endpoints-mdm.md) <br>   [Microsoft Endpoint Configuration Manager](configure-endpoints-sccm.md) <br> [VDI scripts](configure-endpoints-vdi.md)   |
+| **macOS**    | [Local script](mac-install-manually.md) <br> [Microsoft Endpoint Manager](mac-install-with-intune.md) <br> [JAMF Pro](mac-install-with-jamf.md) <br> [Mobile Device Management](mac-install-with-other-mdm.md) |
+| **Linux Server** | [Local script](linux-install-manually.md) <br> [Puppet](linux-install-with-puppet.md) <br> [Ansible](linux-install-with-ansible.md)|
+| **iOS**      | [App-based](ios-install.md)                                |
+| **Android**  | [Microsoft Endpoint Manager](android-intune.md)               | 
+
+
+### Exit criteria?
+- [Run a detection test](run-detection-test.md)
+- [Run a simulated attack on a device](attack-simulations.md)
+
+
+## Full deployment
+At this stage, you can use the [Plan deployment](deployment-strategy.md) material to help you plan your deployment. 
+
+
+Use the following material to select the appropriate Microsoft Defender ATP architecture that best suites your organization.
+
+|**Item**|**Description**|
+|:-----|:-----|
+|[![Thumb image for Microsoft Defender ATP deployment strategy](images/mdatp-deployment-strategy.png)](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)<br/> [PDF](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)  \| [Visio](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.vsdx) | The architectural material helps you plan your deployment for the following architectures: <ul><li> Cloud-native </li><li> Co-management </li><li> On-premise</li><li>Evaluation and local onboarding</li>
+
+### Exit criteria?
+- Devices show up in the device inventory list
\ No newline at end of file
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/deployment-rings.png b/windows/security/threat-protection/microsoft-defender-atp/images/deployment-rings.png
new file mode 100644
index 0000000000000000000000000000000000000000..2caccad26ad86d7fdd82b4335c7a96404eddede7
GIT binary patch
literal 37348
zcmcG$g<Dix8#g?NNEr;Nv^0u<3euoBbV-PaG>9NbiF8R0EiDKrEz;86B?1!C9nvM;
z?>(O9{ocRe<KkR+V9%bt*Iw&hzq-f&iK5gM0!jh|0&zt~8l{3jTu4SBuoCeu!Ecn5
z4a?vMzLoUzw+I9|Gv+@m85O2Y_$98bjDiI2903^#2a)=RTcZdBJwgWcNX;RBb==*d
zZ?{_P<Q0}5KUIIBxxv7yd55=n#fD&Pijh74CQVkF=C1f?k(vl!#+}mq4FMtleS3-V
z@tqM;yQ}SXV?RQ!%u?5qO9xOR@1!Mj&s_LgR>qt5Ww^iJ^Jw~6AKkCd<>!lsF3~(P
zpNeEePq$pOVq#4H9&X99?fl+9K6R?@yYT)Y0)_cve;~JxK*N`bu>pfD<~QH<{(t`Y
zk<lK3vRPWEYI=gWe*LnZIwiN6I^`w53)0x!&gzuLX;;qa5PyEkHeN}eoXslz8O3M9
zz`$@L{;)kkrks;RIZi!y_ga#@9-gUbUDb-Qp%t4)*Tf^O^&55biEi=x`?DnOTwU*W
zrp4{WIPG?4;YaS3%So2>9y(j+UXK^4u8VIxM7Vl2cDwFIm&+UnN~2Ib&+i;9y^yJV
z0B2Y6z2I>^f<Wj^yes79CapUR5p}WJqU>@R@!I#vI+&W_b#d6D6s@woqFwEEPf8w!
ztcM$!CS%G?1h1p_^}SGLy>4#1e`UH_$$7IRkHpfo-#>bL{9v<}7cTOHkQ&?#B`ZrZ
z54+Y1T|@Evn`8X;4<?RRZz;OYwF<q_HW3{R{<A$^_Ukv7JsQp)sV9$OpTC4%7nSJd
zV$sEM8OKBHK+yW@F7d>{TU<q#sTd()IHfF-B{`B9uIZ!mI7j@(qF0|YPF_N_CkdVH
zRCRam4;o4&64~zU&&Dj#TKwqZg~m5wZs!zYd+|q?^AgLwy9EWB72(|)KcZE{FJHc7
zH9vx|h~vZEaJM7la^{?=J#)aabZg7BgSQF@@@G?Mi^{_ODD;Y4XG^Oo(7npzS+`b8
zvqgv#F%sD`1Siot!o^-J6GSvu2{@eod^w~T-wKD(+iSp^@Zj7<rrq7W2Jf<rut?;?
zm71)*FuJwvur*G2{qn`RtHCfM)45raNq_%7yQ#$|bOr7t=zM!1;~>u-XXnbjLna1>
z<R+M@H=S@VEG|(s{XTmny#FWTtK%&7NZ!s58gjT<g~#$Je1ui`D+J#-H?HCanMO!a
zQs(aWv77M69-dZ|t?$Y@RfA8isJZ(rwO!(g_X|_FdgUM7$b|P5PPlhrTAuY!;B422
z{_1y<S^t1pCYR!v?GcfJG0vBW@DNfHm7W{V$J+|ZV!erxo!mY?K2I{$tOOHm{KT7(
zJ+V_T`7FvT$X7R9d_VIZTIG5*OTl!}$Whneh|XX5{hBwLOE=`l4_US-*&7Uuac&>c
ziiT%q*qgdkO(lb)PiBSv-rp?Iff0{V&uTt7+{QxC(9mo;2yY&`@H=eM$1Ac%C?{W>
z>ObLOvfZ67>~a%6{NdMj&@OW_x-kOR6zui;wU2C?Cw%{YO|yTOhgW2)iR5cuo|LPr
zNL*ap=6dCZc-HTRjeWzFfgBq@DV{rU^OD}VZd$ABttEqEEitrWA-XhXF+xlX$)=Ap
z)n@!z6A_4_;^KDdD?K}PnTMuR;?Kl#KPC9WQLReXT$$|oQP$Ri32dC4A;(pFc4x^F
zD4yTeC|iQc0Wt5~iAN_hi>+mct(+`LD3pxd-s*Ei-AJ)nqmF8(8XE`4MeZsi#{2j0
zXA5c*U4(&}`}0RuPVnCS`}+4{r|c>jC;C=)8;tJVWM!2SWMyT2)t^Q`BVcfOM&#n7
zk8Pu@viu=v#YbmZ*kxNs0uE<uN?WyiPCY{0O!m?!{G=yrAEKg|?XUCrJkL=dGJkMz
z>URCIulLh3=V~2lek%ldAdaJ>BipT80Z!SS#(^5|HtZ^uRa7q2PF^e446dpY{`pyq
zjy4q6u9616)w6h4M{cWUBM^(Wf*iUv)bMPq%C+(}I2Kn|QBR*f?LRgt)`V|cTidCr
zdM|ixBxf9GVt@Zd(tD%`m|>e;t=dD24s@?X*TRIDlD&WY_#y7<T0N%!i*(+KU!3@1
z<#<R*Nr|<)l7!|x6=h{)^g*yuv8MimPs%zvoFc4v7amxQ;nhyk?ZsWM>@o2kHgBP^
zAHxckWUP*kiSdKeeOS2o$U`Sj>dl)wa3~w|X#M_;*nR>}kKSGtmK2^$tJiJ;L={Jy
zF@(?b4?@+mo&JQ%i~FM`he|DVhu(6=n2ingy)OQ>WZUbGc=F;!V0?W1*S<y07(&UE
zyBs}ZweDgrqI8!pJsvVcJW*4-7}0*Qb~04E($1%<#IQBw0~6_W&UoTi*EC<eV4Qe0
z*Y-^%6Q!-K9kh|i#>>wj*si^}+`2p1*?^g8wN)**6d01#9AS!m8C-dsSU7CX{i&0U
zo!x&#Zl~sWozQuGbGi}X;k;4Jw|uIetA!uf>=_*$oj*8c!KauY=<{}=D=94v=gpfp
zus-x#s}KKtN|}(#R1?qWQ($|<D$B%@9HFsMN3>V9eS_Bh5ZiY5>JOT$$ez>^yS0)0
zi*nTM@{xc4+QbXIy#$Z<cz@#>)wmiPX-cjPP3+L6j;^jtM1ldgVbI@<kp7KV%xDZ}
zmP62U+}J%nHJtD>xi{T^!UXGZ_GgBO#_mtLtxzrpScA<Evsu(L)$Y=COYZcA@>l0P
zVMAQb%gN5nlsRx!&(Xv|z;wCnd<WTVXK;c@W$M@Co*F7JG_kbAEK<AGq4z;SLHLt_
z(iYUn1Qg7gt;6!dtx=MNg2Oso8^6aWp84y+lJH&Li2ku;D@l_>I+zg9o=uMjlkrK`
zZ)Db{)T~`)8gd{^P*8BDf?W9?tj6%Nq4CfGC8zwk%u-D8QZSGTp~mv~C^d<tx4Zls
z;Sr<b#J+r2DwOt$fI5eG0MB1`ybE!kJ~bv%WUMxu1<%<EKIc`6ARtkW)h-wGFgtxb
z^!M8}dy8XiO)-65VPucdOPHvoqp;>u*^e~F>?d8Hu#x7EuH_G#>*odLWRMd0sI5lE
z#^UQabedR2)zIS&RlLh8qUC`fD*&VdajyC?&hh3A24*BW-7;GKENu}V7o%*yK_61>
zjuR?4(dy{_d2E^psr&&BAgDdt%}dK`_PpsM{(ijDzV$boZl;>S{`xq~pZBmXx)Oxa
z!n#62t~v-O=C9m}l2ubv`%+Ru&dki*8|nJ??fw4OyhWOCh8EK$Q{Ml69Tm;CI#y1y
zz0e&q!*~7iM=^KNtUso`dJMO`&gv1y-Lj3{x@NN_@u){yoX_O@5}fx|^`CMxkGC-?
z<)|AT{+)N&>5*zYa%y1^5~AX&J-G)n%;&M+RhjlL>RA%-C2i=W{PZbVZ(m=5{f17N
z7AG4iLH6^)OHol#Lq(>lO~<5UWYaBFmQDA&g&C`HbJTD1mQj@6WRAQ15uHBNyzZv8
zM%Umaq%=E+JKc8+g<{IvA{Q<$Ee&-Hl1zE@^y%-9mG_&8yG?{7=NA?j#l*yB%*LvN
zSV&ls*=;jlAuyoC*-T`S?s6N=)t*$66`k#+r6qQ>FB%;l>~BJ_bLHxE#q&ZvfxmYX
zEoRh&m3hX@5&<OYGsGEDR37*AiFxDN6;0)YHhiKZf$g+YO&%4oXw!{QbX#n#F1~Y}
z8eRmySLWVBDtJ!3zj+aHa*}_|{=CvphE18^;s*QruG7mPZ#3GV8QF8O^4ECi`otsQ
zgV8>R(bh}{27!1XdyAiYf*DGm6_t5VDAFrZD3X8YKWPrli<>kemW?#1uWXJNaklF>
zY!<2VM@#F-qe#Bk>p3i+E<F<yf0ToZ)zw6jHfCRYti7}a&tFQ!?s#tvSt<ovS-$~;
z;3HQrtcyf-y-*2Cs?Q2wE_G_$ewG_ad+Z|mQ9d2r3Y$d#z<^Ed8-`>V5C6rBT8qn4
zE3D&XyIUj<8NsSsD4Sjrp08iOeyAxKU2AJ^fAsDhZ?^jFZ&_Jk5fRvd%@=ai3BBs+
z4U2f9;8b7LZoz&wYyb#h>{~=S4*Biih+n_`29$CQnro|X+q0o|CZR^7qoc`9Pcym~
z9zz{#yQ`T){_fp7hqJ?ldAu+*+LIee<434{%6}H4IQDA0jfMb;qkJn0c67hS>ALAg
zziFHD)Z#Djs%yfV2-w|40b0Z|GBXI^dD7<~OEoy4V(2kYmUf6>^Z#-|p65I7eA8kG
z2!=hv+1Xh<@41?qcXD#Fa_C*kU~bA_b^%{Bi{HQiW*~fbXjmMrgH5OfopHCaSEwVN
z02T!Ffi?+p!u5UfdlSpenx}w~4*(wOKA9A%l?XwEcQM~>&>6F(7~?%6(ks@)j7*d)
zPL!<A_wV=0#@Fw57i;FUb#_K|b#!)0JbwJR$<Qlnl8Tb@iH62?o5aRxw2)oiAYnv1
zDRJe{BXJ_{4~7aXBx<+F%pbhyUxC%~C{0CX<IyVRl&#=2RJp<CZs{?DXG9l2%Ci_5
z8_V7e`fW--(A~9UE1N(ldG`FJu`$30pQ>kD2QxDU2#=2W@b&t2?7uJ{0<umYmyPhD
zH_nfghFq6b%NuVpB$E<d#7av`Q@JarqeFZ761JwM<`Wea;&;v(kBB~e`a}p%8PI`O
zy$7I!0~b+DRjH^DTo$3Z>eug<ot%6@FySg72G}lND~*{9J})r9S+x^_;zx>&fH4)%
z8}wu9gEv4VTVA+{cY%_MDoH&n?DJ>3zaztiuK;{7R6hgk(b6I*yz}evrc*WBojc82
zv#kZjos<AO;4J}4qT3fyqLr|vuZ~wzbi{DQOk|B)#7s~jQZq6hXY@VF`hDU0guep(
zE2B@pJ)F6~r6`gqJ}$Ju{T(nNtdlQ)l&svxm;t$=A{jpMS^BolzOUEA%gTNbD-R{x
zIsuRd0RaI90K8inc$CuP9X~iQaH()O=$Vcq&hYSX@3uuL6_ipqSflv$Qw;|G@X<A2
zKqTTxb%oucgw;B9clQA2^6>IvA-)$D!aYuJ9|E3xynYRV*?17b2UA}9`-Pf0u;r`h
ze}Ubg$dp8jlY-W1@g|f;KxYq^Ri<qPm9?}kf9fPxpW>V7?lLaK+)zjKonF^}FvqWT
z_R-_V*nhXT!x9pLkB*$!eY3MU`UeL?j~rEATcLP7<wQ=)pw?`htk8YLKz4eI(ifCi
zLH!d_V?;Mc90e0NSB2A5{OL{?r4Sw%9FwrJeW>@~Q)77D>Z<w2PGdw}AXg2)@hUGb
zF9K0GOdahVP!PzNQ{OkfGMI;pfa|1RrM6Bj`tpT-l{Z0=qBlVtKy#QBZP<jWf`Wo{
z7EiSffXOQW+V0&F3hTc5P@4EwqN<M0RXvCPXcj(}WJWyg(@pK==2G`FTo;F>xPN;b
zL4x2rf`@a+hsqWf7DI1gTgE|T>r@NQ2oREU03I(YLb-@&R^Humw2tuY;d$^N#3^U$
zz>}otc)ju(!fNqX(g(w89WG(oYk&X#ZIEQZ(%YJ8*6&Ws$bf11`d!o8d-v`k5D5wH
z<H1%8pS9K1)thSS<YG8+5b?r}_hxua|4#M0d@#d)%s;=<6gSD!0fh(I{!soy6N*L0
zxbQh;bI?-`kvq-7H&~o<d<ZEn;3@oylx2nmvufwuwo}D_;l`au)NA*NNxB?@77AaK
zm_HxePipt^Uvwv_II=#9pvBMu9t$X3u;+#z9T~9)DYKE@)Xmc@CIB!7HBg1YY4I1#
zg@C(!e$tVde}|O~?jmulU^82L=Cox$#+Qgja|^$tF->4563h|qJ=$HFRU8``8A+~T
zDG?7S;^Yl4NZ)K`KMd<zK0G`GWQ3tm9OQ(6<kSihZ_OUAnk;|XGDDpXUh1(frgPu7
zbdMAwWnc)8<$vdTusMy+BlILHc&#IBIa%XsJ=wRgT@P@}MS+7}v&QA{;~??{Meu;L
znu{)MBA1=l>T&73CpV;EKI%9vF(c{#*0fY@pcLi`Q!*_jS(Bd~U+UrG_kP-af=@Ge
zY3`~Y8g0Z9a=Ah)H~%cblU@%9nQ}LPZ$NR#V<V?(oye#tiRukiB@yOew*cy^xNzyD
z1QPQ2(~Z}}F6%kuyi9ExFuGSiZv%_M=jkH0drpv;%^coUT46kxhy_z@JuFAV&9fz=
z7T5?LK0ZI*eOAYxLz#z3Nr(#wx6Ku?0znu;rqNQ%m?L{yF*mJSRi+jezM46{^?DCs
zGa7PyQEDL}BZCibyth71rILStB(hvF!wVL90NL$SgOq>piWbr6|B?egNhi+_$Y+lU
zutDp#xQ>#N2T-hl4P|!rNmB-20;1K6-T>y;TJ<V9XumKp27s4(mJcl9M~|>zI(`TX
zLl!)xNNWkAK`O{$uR9JjiozTr#UQFm`;BP3J?nBU6Em~Nj*bG$%gd?c5@B6$1rxZh
zUq<+nux)8UO$G`gQN0jCBcyjP_7@bam=2uJ-F{H1tN#ADZJqOp<JPT)L=k5_?(3;T
z+ME>drm)m|`uj->#>1quKPbHnBjzsX=G1}vj<R#IDc92Xc@e2;`u-t3y**LpfDpI$
zZso*mNdjq%k8Zr*eX(-Yb#Al?rE;bkFs2CO7&^a3tdt&fKmdW-)2Hn;R~3i@-Hz0I
z-Of78G7mwtQsZ^0V~Uh!0XXV3HZj3z$b{kv*Z3J3z`)F)=gXWN<8-9|HldX(<gXtc
z2214)-hNXY`|q!pn3E|gj;*JZD3l$iu*)AO-C%Pd<)#Gm3l-1E$VjgzSwf@ShS~i(
zk@62T4VK$MBi#>b{7$C(3`jCqaVK1ECyncchIH~wBv6Y~XkI_~l+?Gh*+_TB{n`)^
zkAJ>q4!`5yRJEs;+}95_uB7!BDWSM*cT;vFX#a;iJQkfF1&ZN$`bVX}(;WK#vg7OT
zTvUY5;7W5(iqzJhPnHHyWdKFk_@R_xE0T+vWr^^2SC6#m6GT>z-S^lF(aD|~NZ|1g
zdP+0;>z4<kREYQLMDNfL8fHuX@85TCq{(d5y~kG3Z3%lJqrz5Bxc8%@1H*mIF7p&B
ztcWIWi}DfPE_=tSa2J*|FmHal)sICl=@1UWwB{p4GA(VO*$|s)vL;U!)&z!Rja5XX
zvjj_e(FoZ|UrBsFoq5!=7skTC5GR}dlEDd-qVtV2vDt(Y#q!5D<G2HxiNELW#MGXo
z1@#aik<491axen>v-|Grb--Aog-DaV@hviDwhw>(`o;Z6Krw@aB?4bSKmZ^fd}9#d
z^XE6>6&F4(P>_?$F5u8@Sn)qmSNHw-Q+{c8Y)lLAAf6|84Ie)N&>Wb<9~=PKfYza`
zu71g{5xHCAN$(vG+|97Ya`Tw5rUrOPVyR|M?>0~)rk414Y79&*5J>3qcJcM3uQM+6
zaeV+9)Lre4C0pNkl9Q9Rjf8?3!jPK|lNN9@#4k8<exgnOd{l3it;T-5xK7hlo&6!h
zR5EYyF^E93H_j$R-z}5E_Q^<#p}Ce5K`kvU`GY|5;TxdIY;F_9MXXN`-Vm7HW&R5?
zl!GwPIoPrBhf_3(E}Bo)&=eOJBXvP!HZeCx85%MIt4ehF+n(Qz%2Z?E;!--|xJu3M
zvAVi?cVo?pe`^023vtOyzrS0W=wf7aw5<CBhOI(TD9d&m6L-c-0ZGj`6N@#br>B1m
z=%u8j+#E6tm9f4=Qh5i|8}reUJInjBOrXOsg;C#_oTzp#a6R7pC@RH}Tp*u?vR#jV
z?yy;!fy8U0!B?J{2PLUpQBF>-$&i6r0w%1={NJU%jI>nwlXEB$EmiifUS-&7`-o#f
zwcLtxtEH1nLBj6(@d;Oh^ac!&0nj>WB_&+UmZ%~d;3`UY>((uRw2k3Y#~Zb}0UN)P
z9^YO2e8=J~9wJLUC%{Q-b0PWn>o7ox^e6Y(frs`jU6#rAI@bc_Ep`7Ed0Oy*_M@?D
zTB+(;)`QyiH$_Bf5)u;lZ5N4PxKG@~;Pjh6Zs#>c@?T<2>VawI@-;gfrK+mhR&F+!
z+YIXs;e9p?C~(P<Avr8vfx#)WlJ5MkCe_5AwKkiA5+Ma=BrP8wpOmn1U%G-y!<XN$
zl~q+qN`xXt*Cb_R{CScWt@vB0>s|iDzM9%{fHL?5=IaB^g<Yq|>(%;=m-rL9tV`nv
zYNG#xaa4B;cAcs*G(B=Bw$pgbx|QbUhJctD-Roja$|T#$@f4Pqp7hd#s#(8NLRd!D
z><&)P(D?a%OHIC4sNh*o?;ocrFH3K<n(+8C#c;;lehpjieI|U~Po4T}_TRpJgEE~;
zu1CdZ(d19Unp|^DuPijDV?N-(_5MB4&{mQ?SCW&V*Tu5_i*V~hpTg0}apYzwF1!8N
zCO@~6li~-kYGo;{nTQ@XEot~Q-aOrWmi7B<R#sq{go&NqgGAT8=SwRZ0iT<g`V9(D
z@|?VsS76ZrAx}Hl+n5yF`xHQb;0j=Kb)s5mdGXuO^M@RN{vMz9KJckuuUO$++Io+T
zD_MOW#weBAdQJ3T>TB!KsT*bq`d8`XU6Ubdp0gV*d4rr(QdU-$Rvv*G$T+dxDt1<|
z!>>Yoi-6Mxo}i)K3lOJL+$MqF``B9H(ekn|Q0B3JM(<s@nv~&=w?816_>C!!-EMu1
zUF7Vr+g)_oB(>}hsRxfNKP3<W(Dal;f$<&mgt{@go;DD2H4)o=oZ1IX&@fKL?Pw_@
ztu;6}7>L5nyu25sicZv3%5@t1Tx@LDcQs&l@S}BNTV7%89$d0b3CYjZsn&FI`8(I1
zKM0g7b-dJ8aQtI%8=d1Ea><&*e>Or%RA70(vwDBxwn#{k`bRXIj;biK+G3AGI6no)
z>#^2#+50hrD^cm+f4_bwzjD8MH>l2PtIq_6EB9miu-Bk!2*-rK#O5(*KX)laOnKry
z{5jvK+EyG|F_>A~KTffu!K-oC(a~uNtJf1uu;}lWNa=Z)^h8=W55RZ-3JzB-n#rNa
zF53(XPsXWLmYR&9`J;qF{p7PS$$5X`N2~J4u_({<JoW^%4j4cYc`oQu(V2=TanC&?
zs1W?ld)Yhu4wQoG2?;6ZG@9i$FXabe>{J?X>2vL59xfi^C8mc+Y^sNcl_+S{x>fJ+
z^CuCK3)9dF3*P7uNooJ_Bb=5?BVX_5tQ1N7Sg1ORtX;$3&?-LC;i?~YY;3F{Eo;dh
z<?w^sJqy2vfc7V;Wa<?T&s}|~`RRMJEa)U#15ybN6-$hmiRnMZ^v0-{=tL8sRDZNo
zCb#>U%hHwx{<?Ji2IGXt4=*VaM&@KF9G>Dy9+Mlb^<KD)C2YhQ^RqXC71E|qJ1-`W
zqJzSoWVgJ2OfJuXM<S$(X!P+1p=@n!4O#oD_3hR6l%ymqu9^b|TDOB~{C8xr7U^?n
zlk+;F+`Vhl6PkO3X|c1Ne3Oy1T+hFwTBKPrrVMgRN;VrLfb#H~4It3MBA|Gu?Z(tg
z2%u(xj)I!8<K!wY^YuSAr<v2z!Bras#0of7<C3j-j(Vd-sUKN<@B(#!Hpp2cqob`_
zfizhQiO!q`?hCONvLWcMxF}y-`$Wle`az%GpY(X*ZIrcXaxs!3cEYYyQk6PYph~8;
z*0<|_#|f>Gl<VK9-q*?0SZWJnylKYZm9^A*OC|2IJWIsb&0lOyophuGIPxrg9~mQn
z5+HmDTRaC@Zb!)qAI?R95>p2<&tu7D7>XXF`}4#-a^t55^BW`9f3Z0uGh$~C7e2=f
z97rs`xl#2ddCZl{D<gDv+?Dmf6&0sLr?6S%R&-G#Z%|G|LQ1ilPS6&w&g%SkdxhDD
z>q3aVKk;+$)=-l3Eye{+c;fDoC|8ct7VB|9{Uh+X0307mACAqefS<|tSQXW6Y%i>;
zt%a*6J4Be<25I848ycrnniz+o9`*Y8zVbr%=g_6HsipO)<TQ<Ox8t?m+1b|6)_3ce
zJ*hS2>F2=eM_w5VUZV^+6ub%#Zrr%hYnai;Zpd`;@-us>+eX6$hPY5NTUM(OC%fG?
zMHfV@wH?gNR?52ledzJHW90#Ugav$tdci<W8}NG#z==*C1>h5yxBr2Y8^wCES`|bc
zt|-6^y<Ay9;a|RdslQKh@#gZOfpUyPh{h1vS~vH>sYD>7O43l<OR<@)nQV1y>jGPs
z&0?HK58)BCy}GCA(%0NCi}JhR(7#nPrcaa>R7MysozW-pCXrLUw-We_XdFo~kfx6z
zgt?N}EUuAd0hi8XcjHhPlF-R}rs>S9PL(`mYJV3TS^^)2_18OU1i5qWOKCAiK}LVS
zYv!mVgZm??Am7q4ZAA~RkG{{t87`+3vPJ(6g(haUS%Fs^aPdHqC{1&|e)Ukycnr{E
z9V~;dZ@Rlai-kI`mrIQtfDKR&oXwyBqtL86SQAc8tr=bU|0JEiaxaVc<z!`nDEPu+
zpy%Sc_AFQHeY3$MQ&ZC>v9}TJ-k=x(wPv_|Th7T+^z$|2!W-q~<<{<bJUl#K%E~lG
zWMRK)nBDr4oXjv+sQKLp-&QbT$Fc}m4X`A|j0j`PDjog+UC0Xjmj%cxO5{H%+&^^b
zbK6F<N1%1Ubb}h^v3(|rsTlaMhrMaWzsxEFYJ+kp1)()!YO9q_$%F%pnV+foNl7<T
zpPx7kKEJeKYy|aR_M4ZzDrHtaec8eyRFB7JwZ@%sG9o@V#w0r|N|pSTdmMyV<-HrH
zJ(>-|&bo%y>;NOP>krxsCctEQ4^&N3^3vYwaKs1kXpQJ3G=5;&#h1bhL6QLN#>$jO
zzL#WX;)AaRYGdo|ys8U`gW+yB@+~cEzr3lp@H%Y0vcT51i<aAeI#qg|W}5I<hYGNv
zKCvps*TwOgwQwvBmsvCZG`<h`N3TF5->~&6e}W=Aa;(PHxozvgrz=48K>%nCp?M50
z80mt^LhyV+D{UiCwA2+C0vWT?&yIg?Eb(vY%;4>kC<)&ri}vsE0BIekc9N?)4+Ias
z^p7FwD29<?A&*+EvP&Idq4QUL*fOhhxXd4X+G*r;&|X|0uar^<zjgceV@U}@LP9Bp
znWoGljffj5J=fm_e1!rUDzf)+r?}lHz*P3$h^yzP?#Z{^BFct4puOF`9pPqWT0Ej`
zFG%dq7zh~g_wV1m3)EF_e;K9rn1}~NJ}@8R{!^6DI4$j{uezx@37S9iOSOC9(v185
zLs;O?B<JT7H8(dSd?T`sj*d)!d%ik9I|WF9EY0rh>H@0m(Y+AJe=9C3imb%=IaH&L
zOP(>8%Em2V=0UxcqE;@^;4tJ|d0yk<s1YQarg9|VI=5~*L;M~_HQzl3R2K}WdBVoP
z(wV{zllYjHNX*ZHZ^y*+#stk@VE=@Hmf689=@snC*^#35S7|ea811j4@RdPu-8wW8
z<9;Vd^ZNDc7V1pZTTw$LZ>XT=rLN>?6fk55ob4?2nV6b}4WL@WU7r5upuj2+vR`k~
zwjcM|*|D{?vzq}N+*{n_z^W+?Sk(&_A1(|Oe8X-3dR?qh<5JG^<1K)W58d)fPcS;i
z-Cz@PGO~K}2aOy1ayjn|#=~SS0DOa91`MMY?*~-%0+&M@b}S$cC^@;nox`R|fjSfp
zmn94w8ynjP$qJ=JVSgCU$d>y$Q08h6J1zCVd{WQSFV@U>gHyqOO7&)&V9R-Bb+}O9
zU%7~r22?|@j`@a6)r{2I7c-m|_4nx*fg*&&wMiWF$pH$1YB6t9zh=h>dIJ<sxPDLv
zm$_PD$TdBGjf_xkXG<4ZFdAG24Ex7jRXtDVN=%2(t3=03;H0R|OeUjZcl;N9a@|(>
zt!Z;U?|@dXEZ!t2o&qepjWM)ocht(wO%#@m*A=P<(kU*0hnGbFMh#g`g=K4%69<yt
z@dO1GX2S?Yj~;hWIjbuN59Jkr%>5T|uhZ(I_Zry;j6{ZDWr<5Fvb+uJm4<qZLFc5k
z-3x?=FZEI#MjaI*RWiMSH@e+K4id7AVx0Dx!PZaSfx$EHr*)fP2VtSsWeCdnttq@P
z=DI&FQ(aT0X2@`7)<C9Lk`w>N%0}Hxb70TV(DiU0R)!FbsF;}9pRxBr=<Vg20LioU
z+tVzTU7IA-$9{hk2-bio@t-d#9%&0}8Mdv1b^F>t*ziLteLjFD1Z?2!^w|1fQy-&2
znQwgUTLPu${nIS<=BPQC1=Ary>vfiH+f>w`K*_oQfy87aFrIJHIXCR|rosJkT-Bt}
zXdoRX#Us{}rA0+NOvvhunqy*O`&(dlXmF5^!SP5jD!|J@L6<=%r36WidjFokKY05M
z!F&^F04R#GSH0}dWd=k>M@RJwhk>7jfoFc_MM=<#ru~>T?mz8P2*i5u=(c`6zQ)YV
zP89LIXTUXJoV)49`>lAAz=AUu&lqiasmxVZVU^8E)5>wqwU5Ql`|C2JDx64`cMJp<
zH?LK;=ol&R3^$LGyiJD12?7R52_u><+6`^!zhC%kWmo2NI{Y$FpdOSG>pLRoSCpE0
zgRQ%V@;in8`)&_i+}%LiVAq`_-}tP=GqZn`5-J)ndGd!3<PKop8imGJXkB-Dyjk{V
zvYSlqbbv{VF<rflgcq7-mNGsowsUd5>P`$ksuogz|7ma~m@=g-OVilcxNY08xR~Vj
zu9VqnG{MZ|66o`$W<%lO;bodu3cL{|8cUGuz<A{$h1McS=J#c{uOP<U&rk13ibuqL
z{6H&YciC(pyB>C$0)u7(;6dKSGJPgIu*5OtjBp$HIt=P#LBpVh_#SjlqNn|Jxl4C@
z0tdpSiM;a-Qo@p(fxCha0K7C!m!o;WE(NZ~K3A2EG{X2zIz$BkQ5I?5IdMCWT>NlX
zC*lFJ`mEylfvz*jC}9{H5ARf;!ZhPna#)jh|B@}ZIx_gC$$K{Et?nmMh&s?o$yCbM
zcAe5nWI{!c7QMUujmInAVNB>@bL8#W1jScPiC?yUba(rK!r3uTu<{46sr2m<6L6L^
z4F1?v761cAxSwjFW`6!kSNPNru3V6jIk};9aJg4{#+THfUOnH}*Ec`F^$}6(%cqP|
z4jB<L0=(`?z`>6+slcd*tp}Z+bb7om7b=xC!AvQWsn%e^Gn3>;OEBzYpA0%n8gC|`
zmSq9<+^rJL9R0qYSpincU`g!4;mavKY`m{NgYS&^l9GZ=8_KG`;#_Ju84?~&3>){q
z#qkUCsG-DhUr#1SU1;p!YVxGLD``#h9lV?4X7DDHtE(ZXqP@(-KrD9KtNz2zo43y(
za8NmZHL#iC4%xx<HFvyfolwkTcx@nd??FU6PYz);i#CHGDI$00@|3QQSp+EHalRKH
zVUTrNUhAmCXX6KVZz?cB^g?K(iUcZuBykofs=_CmjmjB8t#1{1z}+r8-5Uj|0XwFH
znRyt>080dWI&F19TUS>LY`^dqFEF$~4*vT4b!1G89R8UJtN`oLH>K0DuM+W1l^<xv
zAh+HMx*S-wahijJwm<3aE^90SBL+YaDAtrsIfk~+d@VK`yzo#%U-z3qgsLVz5hy*V
z{17v2wzE)mp2Qj^Fja4oyIIqAoy;kgH%iAgG>9+JHH$d!$;TC|lDq`D!PGILJ#t5x
zh(Y%9)?}(0g*$QnVumI2+QMWiC33Ay&_m2+teGhiO`M*ceHp9?Kk+0y(;B)JP6+-*
z3P;>RD%84NeIPgyBXpS|PV&UfeQ4r0+%Qz)KBsXqWRDuRDRB=NwhmiL6jpy!*T0}p
z{*2_}h(@x%AR*}WQbv#<m0egA7=G9(pdvcdhOfDBkOwj|kIE4vl}}hC7@U%_=t@Wy
z{$-fhFxF}$Lj(g*a68IGhuGtGFyEDp`d&u+ink}C3A9}geiyv`sHKn!x+j`#*l2R*
zt-2<qo6{m=c_Tf>t|g6lhf;&oP03)n7lhrAJ@QN|XcKyb#k>rho9A(RG@Rx1;5kXg
zoIjkx_|`CS57_r7%h&e<nc)O+nMN`g8F+ROW9q^IJkN=Hs6d5{W~A$|HiIJ=;+Rx)
zc-_I539%P#tRtfG!@N(Y5j!2S+H`{YB)dIkdGy~~Gez_wd)8}iR=MrngT!X~-xAFI
z@!+TNU<Ci4xMK42cl^bFCfp|^tmU~@dfT$DlkexFqus(VQTqqId9_!!^FDj+lox&}
zbGvF0FGRI8*!}2eZ1~`0>^UZbId}HS12>Uu&W#Yx%D(GU{w-Bo=%xSS6M7G^V*C12
z>u29AWbO~eSjGkV=vH8rx?9tdyKY_LsMwVp%Z>NrnmiG3u`0M$6X>;A_Q2cB^`Vk3
zLc|qIYZG^Bh44$IC7y^Y_TthCom-AQ{1c1gqZlEV`I8@~128NquYYrOv967<%c1i2
zaP>snF6~8Xyj}R&FzGtW!g2fp=bq)MFuB{-C6mavJ$)2)eiXP<mBJpOTsT%=9TCMb
zC!5-o*Y~T>Sl(M>o-hGPPlw2<$?NLKZ=*dtd-juM__u4V@2k7b8oO+)@Xf4+=1zyw
zUHek(isu)X*I=JXm@w!&cQpd8q~$|6Y6pTDkZ)unD@`_KTgW2Ft~xc&K5DshFfnL}
zT48myIzGzZxQ6X;(%k(^s7_rE#!FRMmbmAW#mB}qVRmEP<A&X`^G~wb6{p50y1LK4
zto=otO|3NE?50l?b$FkW059l6^^#y_3V$^XL{~qrzUU#{JM8ZCoxaLEa7Wu?mCKzr
zuUN-x<<#wDc{i|ZsIv*K&O}hwiD9IV?_x(-iP5BQ`qvX?cdy>G(wX;`?pRV?wzI#Z
z-A)|nUNB*1&_x*~R31cmGk0yiTRv88Q+X#iaHpC~Vp4rZs}-SRxz-$~>*{-3gc_3$
zjgtwF13pDt=l)&VAMw>9F7TaPt@n(OMKjEy`mBt+hO$y@ck-4=Ma(QtFG*!d-d^aG
z?4()<cO;CP<N4uuun?u&a-LFoh3hnvs)R3hX6@SX+|@uhn&mwl?bod(c}%u`Ta4u8
z_@3iO^~^23J&OF}HO}nA-B)Ez$&9cP2*Qj0Ew*#Vl|CcwM3&4A7iOCDr>{@+dOC-;
z)%n)Xiam05_Wq?=tz_g-mJo$K-{s8u{EDF3STrcB{~%Y8#(84BWxTe=<LnU&6b}@s
zwhD0%WROB?+;LpxQR&rm92Ga<oMUIrR8#!#$dsyWl>dvW21v^?j99-zJQzGQ(u!m8
zU*(!aXAsu-=1u%{tlI2)DqMaZ{$CcBG$InEcGvQ%&dIC~9BTC7_MIy)2x~$VZd*L=
z?74d4F8>fl$t0dQ5hGJh7vF!zeSNCv#8!3Z4RZ;p$<*HN%zJkVtE9lEn<$hG1UV5N
zdwX`Vj5h-&vr)Rg+}{uhDOzc|3AR`5UaC?%Q#fJTH#;aDtjOPe!UrjmxDwEr)NVZ;
zatH4OlnW3qZT$F|fmJ_DQ%TCsmS2BjLM-RN;50in93TBz^4p-xmCjIiTskf3#`DuL
zGU{`}Pdy|(KLJO8g_U{^>N&u+_3{N;I7J)HL@MkUkkz=234SuWygr*ZR##BM-FMq2
z9Mat6J$Zh;3HzM$%ju6Vn9)e<2V#i@Ub*WXybFo$XN~|Th4+RG%eK3OlGJX!40_^b
zTqv+?2AE8X^P!>aA{vA7Lwpsj16E!cc29D(lpNQ*PpI9H*zM59)JOzCQb^~`&Cl0w
z?9YO%1#TG6JTninddXM7VfW`eN+(>!<o6oi^!SgBDa}c($kj6M$!dEA%u{4Z_?`6(
zThE$EnSqH1>3Uw61-ZS?ZE`9BYPn|wdogCp$CB4d&U2;Kt>EAs971w$kp){pj1XC@
z2?8GIW@>Y!KmTuLmNgacTSWz>Cy^^3s3HE}zkmPmHe21Sf4154c1EAT@=8xGC{>L!
zKOvAa&=TTeSudd-CK}N*p^CwaBIXZ9KW@mJP&dDAJrXwgD?3El6Ox7PFx<GCq}r*l
z{b#Cl<z4~3D=qC|x7@+Oy^LvplVy-^0B~&{pMo(9_J#a`V3%r!B7`&kbbi9nioGh(
zBYI3Oa%<te<i7r^r{_HcpdcC3U{Pua@jZYHAx??^Wi5a8_Ff2V4v$nGmbNY_E(Urw
zUA~a`7+938APu5!-bTi{xe*+2i&D9TfQ`)Z@*BWSxvDlV03l{L8%_{&r=@ye?(v_Y
zEhk3^@e;7I1%-qliN_mOs>B{$XOPBoLNVy4$Udp-aNoQ+&}!}{uer$3O-wX~WX6gg
zWQ)|iH9H}Q6+F?^{haTN=jl=Hyng`!@t6i3G1ns=I4N*C5|za{yGnf?N`T^<tA*XZ
zRhLe9?`HjH-!yGYvSj`jn8A0pth4G!GqDC3xH?iyh)C^Lqs9texL-1C4jc=x^w-SH
z_mU}LIwb#cNWh1OKrLxX?KOXpQdOlT8~uK|=Qrq5Fk%L?Ey4F|(B`*fhWcGJH4&C>
zi%R|TZ0)q&rvy3&e#{5<uPDyO+aX;SceJ-QO0gHuZ@{PQN&f{j4@e*ZXa@xqPv#2>
z{DYxtXM2t0=K$gK`28slDG{&=0IWlJ^25NB`h{R>b`UFCO5TjJoJ@G0uD%k(_CU9P
zmrRjqGfCn15xs|x<4f4^pAG@3Au8)~afp;i6B8gXB3%?H;0abik%IU#C_mo|2dBCp
zy%ljv$GCC1qF?DN{Gr&|KX=5J>dNP0Ln<?YYS25<Z0Wl40xr+vUor_D_W?whd~c)&
z&r@ABHPT%-17ttMrP3CfP=X_lurv#*W3Pi|@-J~Pf^N5A0HF!e-ix*sXn$eu_@Izz
zHO?0$95aqH+lF@%zO*ynRNa1-d&QtTvzyqOT{d}xtLjGWo#)=qUgS+LT{@e2i0bRW
zaA(Pfv)Yx{<-rU*J2~tfl#Awow8En%lxifT6?TgY44#)+-9${ywMX>6HRz2d06!1m
zG2aoxdaBbCF4OZLl}5t?@L_I-c#VRwNu&XcLSNqJU}&I_ZAxR4A*el-SaoC~`LwUw
z&{If_!<@X70nY_Qew6|h2%(jj58qo~2{t#O3v3Rg2t9UV@DaZ|Z6=R$a;nJQzxE*3
zAZboon&C)BicWOJXf(Zjxo0DDvtLBFIb9@XGbB`o4XL0Dc{KCWDWkgsPEW06-Hh&y
zj*U_8#`kE7`VR(0$_J)=4!aoI#?qm&&ks}Dqc()NZ-;l9H`xnoYR)gaEHOLr=jn@+
zjg73WMv)jye7Kznl%_hXm+m}%*XS-GK)+CNQvBCgAhm{jbh6zo<)T9^BmDM{eAD1H
z8bQ)MEn{OA(9>bHROwju^Rq$_F4XbbBO(m4f5H}Cq8`N(iVq<fr=y-<4dan4j2)+w
zb=Z?f#Ag69_Qj|^2vIX6-&mRUqr1edbxO;g$rCFNNg2pp+%$VKn5TOUF_f>5J!WCw
z2DZHFYi8c?vXH+J!q;Djm1j9{smXu)9~Z|$VC-z6?v>qSP=)6NiZ$;v6K7312gyq|
z?<u&|>I#OWm*OjRx<ltp{DB8!azv+lc1P1-trg>0d(ZpC8V^i9tJB1(npQoF3`8rK
zt~Y(2zzkO@t{BRdfk2>l>4Xy@NShFWE>$b*@9Dt`ZDrJcn+hU0Yzj#Q1$XDFAn%}6
zZi7QcM)ox)=ZaAGKkg>7>V`-~2@GMRwUH4`^PzmK=g*%nE-vCNc~Q!2il}F6AZ<GT
z{4qAY@7Z3_<VkGS0O%Isuu+)hkM<#^zjMW*VD(d(#lSo6wU;k3nQUda8rUPI(qeQP
zfVWTYUpuGD>08QoJ3ac!=mApgttbMJFQNuw|IE+JG^_Oxmq1ja4m{Td_W$z9K&9Eh
z!YATY{2v2^NNvP=#uGM-d#tHRX|viAOa(?SM86@53Olml5l53VwWy26>o;jn*uL~F
zS)HHmvliVUQ?P&_jh=YpOR339&!@FVhRHKY_+|6H0z<lIV!zy8;te#Kt9&+DeqlW8
zb7d^Y3%Ew~(^~#e#`7wA_QAwolmLmb`TKvAC`8l`)^cB~J<c$XKQ#IP^Ba19@JVD*
z*ocXP`-6Tz)}pEYOx6A<F6+GyK(0*Q6NC7C@pF(*wZy1cMW+N&0%>Vj#~tUm6DM+F
z=9Zh?|BeX34@NuTgw(XZaUbUEaeIkog!mC`-9bV~8Ulp->kUOC4$_QsjTryo!ra+7
zOd2*WyhVg}()tY|x7Nz_s}{$;JGSn#2|QJij9CnTdQEB1Ajm`da9bb*{bRa)thV{Q
z>XiH>!mAb!@+Cd}yz7~VR0~~_+m0;BnR|=-Y6pJtI0x-=31fHtjkA}RUqgnNl$;z=
zu;^CI&omWCzcv@2(gSSiDkH&gDaa@*8FBFVHdwkNmBzQ93KvX<DxG*i>X(VIbo9;}
zg+-h4O<0c|)G$iHgJl_iCXXX=?q%+r`tTWcGsX@TEf7zfn?D3RVesc)+*0@tbn{&O
zuhL;bc2kw;21NhfXfY;>xOzE^4#qBOum!xZ_~<nm&C&4ZG-fL#PYGTf-Y{>I1Oa=P
z_4{8{*C8Yd<r~2rUnL4T*38Qh(hoqV1uqJm2mhmeFOzRK2GJ%;lSC6oXn&J$CwAH_
zI&Z3dQ(ifPiee%Tr2@c8L!u=F(k9ObuM$BE3hY^6?t7_ZUKXnP_Kg6H37Oz`$)Gw}
zE%&oigMA0S1C)sXF9?&?xC%j_f`eR6c4G~CdY(P=lL#bF0^K5QpC!DpjJQXju<uuc
zcv_@`@V;fz$;qxm#rrpLCd(cFI&xf_2Ak;WU<rf&;*f9Jm;SX?$!_NB9R-n`oE%uN
zVDHEsR)^Ax5P-A-QRTfj$l#lqnf)+ikWIH%=<KevAcu~@J3R%z@G!vQZ2$b^UP<+j
z)X(X)Pz7Lbg=FcH0L0Va5$Qewj;}T=i^7Fg!m&orSfdJ{%|ihc`W;DEi*)sUggdF{
z=jS26*gFV0(5SnV(EOKf&7A!C;5m1Md98MgKjW+1>9!kg13cT9SZ(iY1gp}I>yZ5d
z85^Qz%YUKBrs@=d>!;uP;=dNFR_L=z20v-0c-(?do`nQLNRM;b_sSrg4Q63)oEiv5
zG_Q&^(^gOc5<#P{i^c!z&YGJ8h<@|_eF#38_Rp|DXlct8Js7+*;ZOWh%M2wpQ{<xZ
z6p$);YIoy+*O-7mTR3Pi(C&b!16K#yd`N7x{Tkml`dv$b&K=RuN=`ce1#MDFqA7C}
zqGZzu4o3jeneebM8Oz3l!2l=(`l;$>x4cOQ?|_XhsQ52B1h(5laHI9OF=`o14ooG5
zU6VcC%)|t5X(!*Pofty0fD!eFzrO_0748c53WyJSbuV~n=179`<*~W(xd&26m~J?T
z`e=ZE2ip@c2}sR?x6%;8_b&|%3Zja6Ybc$RgappzOO0isQppZY3Fxa=aW*GjJ&QmR
zVrjfPR&Y4Mz2Pt?#??+k&=Ul?<*iw|bAG17%YU{UU=9H$g3bUBFlW)fPk4%7zIv5X
zQ=@Z~#-M3E4!C&wUl>RH+cJ2p5QcnhW>)aebf!eqK|2UG!eKt@nYdfnmQyvq{W>+`
z3*0D(ZV=c5N!Vet9(VTaW%K{bM(=0P<G~#RbTlzBdFbX=V_OBm%yA1p^{gu^Po}N-
z4?2j`P-Ffk_LKCA?hVF!?I5T;u#4nq=<_=P7?1I<-yQ9kE^R^VCfq46Ow6h|ED5j&
zHUj*9>yra(b{R6M7|FA#nzfQq@mmRAB#~iczcBFThjY^0+sbhhb8~OS3_`QDRJB`M
zDRifJuuoRnt%XZUh|pd`Om*m<*|cqe?kTHI!px6PW_XK>%dgp>9uVDQV&zYrmk<Dg
z@sFFo!F|5!iVw59%P1QS<?ekFLbR+c^U%m)AfL#xYBF^2#V}W-G3OR;waNUCD4EI_
zOyEjfifYZ4pBhqXKtle9pWAk_BvbIq)vdxC!qS!=b0of~c6!$|NWr0jKw$i>#Ey;*
zjE9Vgz`;ZEX8oL;ot=%IteoKztzXH3H3HSdR#3a&0ou^oQIX-C>jr7VrltoU{7o9h
zk2|^aOj}$|j!a_4l8D+{09$<ju5zTA(Z~F*vYYPwptaY~I*xZF(ivL%{!1mn_FfVl
zSO3$vP;HFlL^t(a14N`D4l4l{0o(k0D1Kih6iATWtB+p2dNsB{#Qb=SF`3WB;(;@o
zrGCIOFKO=zr{kAcDWZ!-B_*=KRn0WfP%{%D5Co~7q@+i27T`_aUHg(UxB_}{YWguK
zlrjpDrhj{17ejZGTmPU};3t4YFwv*1`136%MZs@O25d4j@>2~-qRdbpoTZVO6|+J?
zlIherxcN$-sMa|YUsS=;Kq$W8f1xQ;)sG0Pxi;j|7KE=2Me~Y^)MQbibYh8{WhSpR
zYTZNv0s>|Pr8uPjI#oNIY_$SH$amZ}2Ah~sMp-f@G4U$Bt;n9VygEDCOk&)I5pmp;
z*wP6P*7YBCA$&vr9(dOi8NjTTp)(~Vl=e6X@bjDvP=Be^H`w4qh=l+oLbcBe78$sg
z2znzC+gsyyqi+zt?gBvrhC9F%<z7njJZ?@v+iA^*$od!U(q3_M-6617O1|+ZTbk}r
z7Zx-K5fk8oDG!>ms8}&jTJ~mvH_@t-$ESa{XO5o5w6n8QUq%xcC-@T3`6Zp=7&f>f
z0jR9)Eo3rR%R<G@u0LGdC*B-POlqHKgI0+;J?^@V{S+{%R$WKTAAsq_%6o}Hk6Lw`
zqSDlP(e3|c0gfY(twCxasMMVKI37H2B>R^cGI70;5jR!*exWNtZkhOktO%F`&{Y)L
z>gDNq0b;)NjEs*prK;Yos7FRd))^G&ZA?_F%sL`^B?;?;B*AMh?57qxC}T}@V3->c
zS}((fs0vg^h%I1R+Q736hJFC=+HUZEGNp2L@?vIS+iHxu{VcW2Kb(CX+0$K7HgCl6
zQ&z4q`oa}+4iIZ>1O?A3R-PLhr$ZR&yZLwp8NdTbL%?YXe8ipZ{Ig3{M;zP0Jp~8=
zaQ2cH7I^xE<?1lN&}=YdomU0gL9QO8z#%UO)ff6r9=(10wyl~3ERy8hT+TUH7^i=2
zbcgdXX)p0m?WFtY#SFI)G)n_a_Qti9=B--p0@iSNarA(LQ}sldB(GP-Zh2$x4%7N~
z(qNU$pv=At9v|Ea3);H7ubB$dWmi{=tO`IQ%GRNV4#lKY>b?!8_ZaWS7PD+onI!7?
z5;p%}eUoYO_gWXm2RUU|gxtC>Ff){2EFE-QNU%2$<tnpZY}<83^|ga%j6i@r8!kW`
z*EJ&t8}+6PD@l*PQ^l0oL1zJ{)*@v%WP@+qc6b%9d-gZx?&oLEp0SF!O})n@rX=Yx
zx{2r6pC0t0SLI%F6#D9A9IJvr)oqe3F9|;QyaN~7kkU#F=8=3+{5q;=uWMmDsiMN^
z=i4!h(w)ZVNl&IA*Alp-(=#$l)ZT7fD3QIm|F0`3ssu5gekD>KkidI{)%&O0BnDb(
zlBewCY{+&6=!Jx#?j3}9E(mPO5t6X!f|ImlRyZuYeDnlZkH|!=yZZ$O7TN5sE=AC*
zpm_?S3QvwKn*+$8YJw7>QmdM5<e#O%e&<TrgSw@;tzNS~hSL<5bxM1>aK8)<R?5=w
zgkiVBLI766y+#W~zY!=e)@2GmFsy`A9joj0uD^YjP`O?qSCI={nX&g@eNoB$H9YJ;
zYEgNIea!(qqx|HF2VB9w<JTeqSZQ{!C5O%A#%)mHF)@bRs4r8w(u%n$1r|Vj8bu~Z
z2$VoIK5?rpqBxL-`3>@1dJYXAw9-MKN{(!ACQ=ju?qpLnR<bpiV%E=gNSHOXRJTnL
zP67;qoRf#Lf;GocwyVe3B+AL{>9ENFP6Fi!?EX~ClrpNwVRPTUr65Q5ttr~z`o0~Q
za;G=^(PuBfa6&tx`#|2bKU<-*+Pj}?9TaoA5i>OwwUWPZhb37x>L_~HK_A;$k{H?Z
z^ZPQzg7w^I3a0rH>tJ-3EVdJ_0AxS2M@2*Fj3$C8CdygBuY#`#Nf)@f#%dJ1Xv@>r
ztBzSzr(RmRa_|?XfZND~glJzK^4rZ4De-;{t6Wn!xmPg83;}Yo|Aga9sOq-$-JBx=
zyV`M|TpbqBV^OI38CvAa<Mg3SP{9M{b!SHYHSXcT%zc$s;HpYJaOad*$EB1ors6Ob
zSOGGa^cjO7KWW{VfOW#X6tYR{+ad955nynEe<Z_RgW^HBSSV_KH;7e_{?=!`edX=u
zo}WAl2+kacj{ixIFoBcNw~;iI1XFJd;Vwaaw`|VJc+Reb;vvga`}XymjGSCjq#N>F
z5Kx{Q0wdMC1w2<wdmu)Lw1!6jVKfyEs8oh5Mv$s&QP<YK0-b}OI$@L|6t$c?uU)$E
zu>;xjk<|4C{_Mn6jKP&`t-?my_TvYEvm3OzAw&O%*s^{D)<YlwU&D9SZ_4ex{FDL^
z*feth5~R>BfUd_wnRe$j))&wW{|i(ClEN48n*%lU|B(f)bt@L8ToexxLbR1P+3<(%
zUq1f9yB=bM*zkD|DAX)8==eYe<zq<kKk=@uqoXnU&WkT<S1oZ@?JBMJ$L$-z{)K#l
zhh)l)XB?0rtv#9N0t387cwo&A{s#G;e;LJf=(Pqx5fUucP<nisTHyW-o;`i)191&+
z?Ty8r6wn4?9phJ~Yt4L$yLOQ~Ms?fpmbTMva6zIl4~o*SAiaulxcn_E!kZ}x@d4W5
zpbG_2m#babLKgb3F9(t(UXV6Y&!X8q0O<o!2VvhE;RiqvFk#A@TZ(hk$td*gtjqZt
zrt+W9$IOK{*SMyN?{laC&;0>6M&5^cN>KSBOMg@5>(?(|5D2T2gDvY;1Mchjuexc0
z*T4rRxc3`^U<zOa+}lQ-4)EI{-wHAwJsydm9~%;8Ay$bcrPp)_*GyZih1Qb(#uJ9*
z*s1<ZRfNZe+kPcdw;MX|p`#<wT6@xjr@^4$Ax108=8wCbyA_1e+6OIGaQ&^pKee00
z#>OUfCgZ=}QnYp8?=|R)z{nT>^?gbxcuLWVjr>bI0s}z!#xTP}!|)dnKEQlXq3%IT
zXu}6e=sznmU@CBOpEGf`q7EZymL#w6A4CqWXmXG*9ZV(Pdqng^Tbt%@Y!Lb9_?fO-
zP)91>O_q~Mb?<f1TtfB)!KXB&&FK}*F^2&}#zH_6KgcPFKOu3|0rH5~5E@ku*8PS}
z23cKQUDluPlb4QO0mmV@NL@`0az`KuA^*|lgp0Cra+v;b%%@AhC?kBO%%OpyF@)^D
zrc?v?lm}ek5uljE_CE#TEW?)PDk`3!CSiKX;T2^z^8}!A!)X}L96|XarJzWGvjbr1
zb%r!LfMV#q4L<HJ2MrjMD_9O+56(v`_si0|%-v5u6RpQwN!}t4E>)9w{Nh{jYfWm?
zJIQJ*wvk_kx=e9G?b0(8oQ!P+-!|P>PdJRT4SAJc>p3gm`r?=12;mbmsf^ebO|wsZ
z#1iJ3W<-`-Et2KBZtmR9pFUi~V_Lm9aJ)Oi>}#}9%*S@Sdpmm<xMb3kI`apNtgNlm
zIx=Z0V4SoW-9t<f&H^y~{0qjOiIo+4*(awbfVNT#*fgb-IeE1<%TDt!EDsDlnwAci
zoQ~P})sJ)2d#40=rr!?>h&KS}<fNdsE<-BjsCUpQu|(+q`56mss!^)-%0QbkTIbUH
zfahx|PC66DklHh`uv|hs(a{Mx++MI>;iZ8>p;7I`s}cQfnY@n7^370w{k%1-&M#`W
zXa+_A(!oVFf*SwzYuofY=*#ed?Ls!q=G*c@#dTXF_$&n&;dkgTIg3u?`yiPAd1BN=
zmIi7XXnz7H9JV_ZT~$ZRSwoffd5vF7Atwr-^fHk1;?S(Ct?ePO((__qT90$og{aNI
z4$*r~4i)h#*)F6dS(Or3ZRD$)Q?gZ<E?koEIk*+=vA=WbwP}50?Y0u$O>us!DUUuw
z$&{YiS*sMqJvxYw`0C`f!qkA~>cwEI<7`ML)&rMM>EVAm%*xCRY7+c!1r6C7-A(2&
z=>zX?RaNosV@CIqQd2M9i~af1j6Fwv)Kq^E5?~1ik<v_1;;<1JsOV2;7N5Os@<xlz
zD6acH0*Wb>k_?KEq8wM*#sAaVSBF)#b?<IMN*V;D8>CT6QejIs2uPQb5(3g8B3+6C
z3W$ITh=fRYqaxBEUD8sLl6Nf6@80{@{qLUVd!F;0kG<DkYpyxR9OE7D`_6#@4hE3%
z<DdwcWGAjP{Fp-HHRqs3B$UG*^*xWQ**QG)N#(IOeoZQmc?aR2u8%KmL5Xr`a2=jh
zzia@*<;WX4Dguo^G+4&DUZl6Rp;Op8073_Cs)T!Ja4cQ5d7aOvaU)$lJ*il)*_I~)
zOetLp+B`2T?<89|ISSD<mGV7TeK#&<N*)zv;k5SE&v@f#Y(9QLg)8E^$07<<;W9Z^
zNK9Ja4Yws?6qY5N)ey}wBO?~yY-sQynJbKxMSAD^HO&Ms{g8S5C^TldaW@xN1Tn+v
zuzQt`V39=UkdiA0$;LA#*LqGFnaPDcuR)r|f((KX|Fzq-9t`P4lp*C7)Z=$zCyY%5
zboLGC&0b_=AbS}Is6h($_WgUvw0d2qrG3j3MfB;zW<SBWT(u#59Brae<(~3k0iOkp
z2TVFd{R41-QSw4sm;V5)cIYoLJfqkUE?Vxql+%Y7Zgtp50)u@2+Mj*B53gsQmBtST
zKFEolsOj0Ld(SKBPtg<?yMO!j1g|UTN{ygX0kw|V@}6H%=SSegY?;xYJW+}QcM>am
z$Eg>i^SCp-yc%5;@{x&yj^%pW;l=LwLtm4)%r>OkG}gzs?meiU;BtSU;;bYCK}oGy
zh%htJb4k?flly#!%O?9m6nLprvPEay{%gWVRVn=7mOVZ`K5@dhAc@<Pg2Bza7<pG^
zO-;oI53UY>yz}_}cm)ek=>av^v;TU-b*l<H$W0_JvgX+X3+aXiWfMPgd1Z?Z4wiit
zMO9S-6!5KoF6=G=&kuKIYD~uB8N6|zb{Q86<Q~REN5d-z9AzYD#52rkug$Eo*lili
zn?DMuUAeb+HmrY%U4c)Zyc+uT%T|aG3&t*{eQrN}V!2X0cidl|^{M55R58mt!<)l#
ze(90KZ$J2^FfveUtSR8Lyd{BjLNf|yBz+S0>?~~weI_+_@?XDxh1|X4JXJS3>jf1L
zG@%l|+SXTS9Rpnv8|8DlH^M+}1E4vuJy9s|eHoe`srn4P93euamP>iD4POF6<-ts}
zX&TgKwpTBMlgGeS+_dh+-FmloZ{9Rr5x(|P9T9bg_#ZrJy}j9ZI2R)jtO(dZQ|U*A
zadwLt#aXksA3&nKUe8iG>I}gmWCyRfSNip<gt)Ckj=-sejTnW|7dZMOeMj2zc=(=x
zkj|K#yPe7*@2`~4_Ug+nY&!^95<w>tyM8k9Omgv{cEYTx6!V1gp`Pj-Jg6YS1KjRu
zdiwXx=r%K;wR^mZ-}vD)@w96JBHa_?!o{@D9tWQQk-hhM)ajNje6h9vom$3*zk|aS
zcq))MLMAZTU|whdMo$AQibV@45HB6QK?bLD=g!y4Kc$Vt8|L}?Jeh(dFR$JukdsV%
z^(y-3Pa}vrxDZu*j@K*ya_+C&0NGG>-DaGD(e8z?m9<41S?|4RaTF&l5l2{}EYcdr
zn)&%yA4;De>DPTg8D)0Hy5y(40lqHa?XyIo{X%u26u+U^q1;$KO^itD;qRGZHhzAh
z9@*oM<5%W4>N+xjJsQg-#|RrKa5GQr(;;(F%xV6!(B<#ub->QSVb$|m24bKBh@t^G
zfQJKo9APShcg*M35kP8eKsOGQT;AYr)pz7QG6(77uhS+1B|(<0s;Y`Y5w_ld+XJa?
zeSd+TK#C2Jl99F*R5Uc<v$cwD!4F0T#y|P04nmHz`t>4hnhDvt8r#O8_%YA>5F4Mr
zEcAz^_??Xf)RL5Q3Z*{6Q+HM@Hrer6!hBpH|Al)t8@nBiy5efu(PtR`_t#IxVzNR9
z`;O&9H;Xp%#Fo&<TgyM~1AHGTqTxHF^3t>JtYZ^n(S2A~$QDkP8zchUvxxUJ7>W2O
z<ndrn^=IVDZobJHn}vRU@MW3ixk3Nc3&<ZxwS3bf6`w>4JJ`P!w8mFX3RldT<K)PO
zOX9J-{v$zl2{%e8$Sn-{8wHNiT#JUIEo@L>q;vT$q8Au$wW~^3vl9-dd4~}{M!sTJ
z2KZB!0`vLYb|i$OyY^{XC>k>A@K@mm|MSIuqDfWs<Hu+kQWYsa4I1(&CKnL`1{~xe
zly9sWuo{p5l&?o)#4^!i@Lu8}LvGSjt&+U&{i1<7Bh|vX5vFEKFSlvkty5Uf@THm@
zlPG)JJemQ;b|0zakZbO4lppnl|J`Fh|D-zl@m5JJxz4Lsuo=kXtu(lBWTS+Fl+Rrp
znW*To9Zb37BFX>#hF&E_UtTXWVKnjfJwA-PCo_2IjZ@5?H2+2dqhLI0IpgRa`~H0B
zJN(CN4#=j5$MP1pCL<E(LR6we-8pAA7VBf3TXDbtyQ{+SC~gXY@CVKx#clApg=eh?
z#kAKrkzY#OSl!=Owtk9tpmw|&2_I6tU*D@k>Pka%3HwffknOg0EF*VE)y?Ke0t%L^
zB6v@&Si^8*NXcl!D&;=5y>7Iik~Bqr+mN4TzV=<D%vi3TK-882Jq8!2G`47*2rI2U
z8pTL^Df&u|{PveT(pUyc%*c>6XSScU8dW9(VdLVfZsngY#Ay`T+dCeA{*-@7_^CBt
zU_feb$_==^-4FMf^pAf3lu<>G)^L8OX`T7J^RaRcpGMtCsOa<aNSsjjXO`b<1Su0@
zi52D|g-mPiBy@?>xn+g6U-7_lT&t}Z7B4;Kz4LF9$S08NkfD8?O`RLn(Kan@CH=HI
zjhCp&!nnAe*t}+?Z=G*DJkupAGA-;d%q`AocpCj3`Cf2u4%+jEt<WN8+x!8Op%3rt
zkmj%$_sU1)w87V$0wkzpNaK|{!spA%ah3}C&bDtA_F5q`rR@nLyxuKsxyjXQlBTh*
zaK>(bwRo#Z(D^w5&B{kpqCe3dKeuM@{GQAS`E=%<1Q`)|`TAAQ4dZiKuV{RVocCEe
z%R)!>Pe{<#qh-nf{moC1@HI3}096#;YvPUJd34#Q>Py!;+V*SFB9hWHqGgKuLJ8km
zxB7qEmx+kBI#*v<8<NaYV1;=T83FrGhaxtc8CgQ5T;p7v52m8JJ*i`j(S40NJ3O`y
z-Yb3D$_iUUqvIl&s_@|0C9q7b$+o_5chG&pex6st3{2L$av6+KzdNnn{?NyG$D2`0
z(j&8IS37}12Sr0m7u_t(Qe`k1Jglx5(MOe8e~Xr@Be>g+lwl&Y@pOmBrQ~#JDHfUf
zU3L9gwKYYTwKQW7I<hc3U^=72qQi)DdeV|e<0l0Pu}yAAuvwVqvOh;Yu2A<Zvf~!E
zg6OTeIE4$bwR`-LZ_$IfXC9h_<|<Jgow+VEy9cMP1K7x1EZ+GBCL?(8qCbigUlRI2
zXH0sT3VR|el*2V94zDHI&YCRxUfuD^?J@i)<l;GX6}}JEc(=YRpXrr(<`zXMq5~~|
zp@b_0nL<`q{pgQZaX7MI1eKW<%h8l5s!6#oX%Rb4LwnuNBmG8y&9Z#yiS9gj;l15m
zd0Re00hu#QJI1WE)MT-_l&86tE1C=(*;68c&NNe|lBnEo1=<fAjF;Vz&-GudlVp_)
zQf9|deB!f{7!*_Jq^O@~=xWg@3LmeyN7(eK*k!IZ#`_6z1hU5K+X`L|7QW(?zV03(
zPO?%736>Nm2}$#2Fn!EikL%3Ir7;e8CTWfrsx07*MBG{cl%}`3S3p44n+12}$jTE%
z+?<Vj)G4V`@jCj2pCj^|ClbV&0UmU6ruk&Z`^0b)#CJRww&@_W7ommXJ4@kr<uFho
z^7W%3!^l!#F`wJ3Uhr(c;mXu6cw28MAfZhW`(~vC@pO9e`xPJgNDDwuAa6cFj60xE
z01EvRkg{d9?p(ZZ;exV;#wAHY@}|0erNODm@OylImZZc%la&XUc5APgnUtY_bl;bg
z%CLAu*NU8_&9#1i%n9<l#dDX>qa_|onqd8b6gsJ5_i5Rmot3{-^N0Mt-md{1g{&ak
zs`t~JGcji(iz6UviN35*A86F5XEqWWshyRBr+$8&3ui8wDqT{I{}mp~BL&u{(CkC@
zYQC;HKttps(8^6aeyp@)tQ`~-^DI<*>wPUIq8gELZ$9{Hb*tcY{@%7aJlWNNF$ha^
z0o0Kg^#)opGs<}Q0kU7;{v6}v^DA+s=Fj*%bVKY0pC=6lvH+ZRXz0bKvl)``STLMm
zU)D^xOo-F)Z5&!_Iek?h?}3|Euf0gBuuZrE*&uX0Kt(d~dcac15+GCJ;+4GYbl$3~
zG=vO6las<g#M4X9&(A*@`?)`I&th=sHdJtu89!#}!9g<QtL^Hrm;2i7aq1MWrK8{O
z2eK?I&9l|(7vDqi4%2{~oP44Km`-gLcE|pGvW(sbEoY42aK(406k9i+5}NZEs52Ud
zNu>>A$)lHR{IV+Omyt8FaxxY{<y1B}eG_$D!@1WEv+HQ7?|aEdAZrKa*SVTOPT%1#
z>U99LB~Olk-;_17mcb~<$JYimA|!c`(nGe^-`|fyK{^XB^WjTr;2p36UIJ!MFjJs;
z-wce#tRcrqPGcERkVQg=HbUZsDhH%6Q$fe~p?I&7*uQ0F24e%>n-`#Wfl^jed#w7d
z1$3^TJXdtVZLuRK6@+4lPeSrthK+*SO$ED=&OUpQlX@+6b+o1?u|-vKT3XEDp#GVi
zx<CrJkcQs9Q`zne2s1W{&$uiy_&Yd)Ucde_Awo(CQZW$hOfnV#&#}O;7)+=<eNI65
zi;Dt&UDv`IpaF-+zet?Y>&-u6qq3~Y7@6ddf6=}&33MlD9uhBq^XDO!?RIm?lry;`
zedEDIEO%J6vHOv~!Ll|UOQ61$6-(w%)O{5M>qd&zau4vL_&wdogetLY#>_3w1p7$n
zZvu_Ri`(<+OLb_}ThidT*6$^^j)YW%DHV^{biWdn2skY18d)FxjH{xeLTq7D<C#BF
zL}ag~JJId{(n$XU7u3w=6>-ef6&dr|hx{;{`aCaM4+yKg1*M}#0VILR4^BPahsIV`
zSpy!m4+3wD;}w9uN<Qlbki>pHxPC4w@Kh|V8&U9C+}Qhmt)~gVM_@of<ENpu`o0()
zWT4DRUk{7nYKTONuL~%lENpC#gB!lu%KQ0Af|PN_lkW|G{#_cJ%z!^p3eKPHdK6t;
z1fpYNGB)^8LHBo{?>0HnH?{EjR(z#n+SWYolb*7`m5FlWFLMrl4c8QCgdZ@*b&O0;
zQAtul7=Ad@gpu1hmO$l|(tS?>nx9a*{O1Wbztxqg2gntap%NUg5U6YH!}sxEA{6x5
z<aq4lFz=m99<x)TK%G=_w=0>^BCQ^&qe8lD?+B#$zq6jSy}FJ6vH-18Fa!me=U*RS
zNT5QXc99J1mi>e!T`TJ{Di0U1=QaI5Acd?P&#Pz8FvG3D&}~kHwud7mhFWluNecWo
zAek4Tjnn%G?*?E(q^eZ9rIjfg2c`tq+c{IZ{)X1<7lS`3wAG==69^`LGV>X&PtFi(
zmrJxgG<(`I>Li-jer&5<t>t^2gO;o3Q&qDV0RsVKq0l(vY&72lcPM0L%SA5<uz=u6
z6Q8X&`3>fesHZYTc+qMfL;R!4YDcPRudE4xr)t3vbk=4E*q@k;S!O1dFR8fpLvI|*
zo({uR4%4wGY3&;LXy2hyeb>K0NBoBW@<K8zz?$0$-D%<^sPq~hM28zPuY3gKL0^<5
z<I*;IW*2(Rd&9I+Z*5{Q_?V`u(PQA?tSR^Iw3d40V-bPxDY>Njqc5argx|P&<1Xhb
zEm$c(51(0cbx?gxI%m=&y%RfNV`lbwS@k%4A8=D(nUI*q&$*k%ee)7c#;4#!p)}Ja
zn&mn;6zZXSRam?OwVVHfG@v$n-?rf;0uKyIbP)Ghd>IPD{kUN|4RD6k$<bStB$PxE
z-QxSYYIX|ywEd-Ik}6f_fq?<Djm4q9o-r_hoea7U+)EgCa2S5*ldcv%$<ZLcwc=)e
z`~EcpIZ68BK)0!sT(a-gPUVLyB9QugQTv=@#giKZslap>fNFQ|asYe>KM#QoA@jH}
z6$dID7tN3-y|$!z-`Tkwm6}R(vuBzCAeU6AKf#Lz&{+})U4;f~WgFyM-Fu@<*REf`
zeD!5)=Iaz?b|0`TKuJ(t8D0C`9bVvqJwZq9z4#*|=Hw&*iI!|^IRmyv+_DU043rF^
znVOrmLpuwGPC|an9N8Ou0nFq?MBRrQ<m+r&cq<H!<+RZE0Hmi4V#{eZPwK#^-))zp
z^1!Pm#>T7rq8VNn+(h49oS<XyY!5;Yr%bftc+zJ|P0;oL<_#pCP%9b`Rpn}8zc#h7
z>sk14JkIrGVo+TCQbX{0Pz39{eZ*oCTym;Um+e&|q@du$a&xt<_>A1(<`+gX^02`$
zj0V{_W`U_9CEGka;n~5TQ!nlgu)6<HHSvKWXGAkEM>Mu*_#zJ_K?&bl1=BJp!^~uV
z#Pw##_zy3P$enB{<aWY_)g(lS02pNz;_fPGr-S7(MQ`47A>Mzw`6v|hgRy2t_c*w?
zypK$Q;qec>N>}_*y*UeBJcs4^MZ;~Huca?H)wB1dRXx<5_~LB$wM080Gcp|KX2x7l
zxB8pUKUeb~Og$M?nFYp1_#V$5A(Z`gnSoR{O!jIE-s(c@9nhJ4eMw3wcQz*wfO^u7
z!a51y&EK!uO98N3vlsvbSlgP#PXWn9dJJ^{sAv{{HsS-WLVc?Zyx)X(1yy@70HNlS
zeCWQ{3Yb!D0N=($(X)1>opL~Kp;g>-R=u9kQ|@YgCpq}FOwof$XR#fX_XQ6vkg;tQ
z0(r9AxO(HM%mH?#iywd?E=g8de*?^~OH1H+a1uAYStd1Y960#kdb5!6e{%uecNGs=
z>IdLyTCDny3{&*Tl1F*SX+I)o2}9jyL-cSkOAs3eZpz5GxC_0>LheHornQ`!0H4C3
z;REIk+i(!S73e2n;|Tt~4=XM)Ik`jp){?oQj?N?4H~?hFg*{!f7|eQLws}f2p=5O`
zItvwmhRQ)sK>?Kbg<jmD41ndVR{GyTphGYri(j{mjR{_=;{bGWRn`zpm)k1?9D}uh
zr`3x0hHJ#`eB#dMd)EUB%gUa+5^S!XVcj<)g?%P5GjsEy*?Us~CD=Y-)kBwtzUa|0
z<H1`ael|8NNCZ#nJzo%BEHtE&n5r2Mqh?C74*W_|?_Oi>wfK$U%iQt)!}qUWiOSMH
zWnm2nuKu?bx49xdXONfqKxYl{g-pKh|G5YlMnG?@rN4tUcH{_JZP=MJE$m*w(^KnJ
ztA$m#P7`Nnb~eUa(R_#K2zD#0ZahZ7IU6f;0K6O(EbD>`TpzxOr3c+V_xxmH6>U<E
zgE{}-P*0^AvFS@mFCGXc&_t~D)RL)|1-prO`dJe<VL~i$Rsp7=mqd3r$0NS3hgAaC
z;CZ1htz>Tgx>Xc-Gmxr7cc-rFpyh?{&f?ADkz=!`<VpzO!)wBHd*VaH??yj63{O{8
zjmXa6o}_s@|NN`zI~{WpgN7qBANPuSvwUuwdI}}WZq#*(KxHylT$S+w0JhqCS<i9Y
z7e*Nyrq!E7^#*q-s4vG3h8<2xnic=;tgPJL%5w|5peLt;ij2W)+5I$oSoDkskmfMb
ztV`6?$6$SzJ3`(UnaKQ6jc&*!cTIFpga2^1Rx0%>kN&duiTvs>xAcnPH=n8vamJ8u
z%_%}+WR$$u#mb>s%z?l}6M}K_{gKO4l6Q-*@2~Sq3x)D5VOTb>(qA&P7eT5+vS+ZQ
zn9jCvg$M`cz1}wr77z)U7(Y5+eVmis*--z4{c>Dnd=j<|H(SS(0{ypWD7^5jAh$-C
zdC!uPK-v#E<C-CzRM|*Dl)ZW?%|!}aD<9|SvEVbN=_$pQ-rk_;pJ&3pG!2dFIS~B;
z$OcZ#+}s>Y$LT_|mwtN1n_9jF@5zea#ka*A2UI#eCY3!cq9yq%zx}oPY`iJ3BURh9
zT2<-_0t?8GHU!r8viQ6miP)OUk>46n3TKtbbG`kNX?<x8eG5gd6gJzx=LaRm>31*&
zXZ}~o$&5`tf#2Q2eyLXE;QVNDyP<r2>61q#pbO?)N4<I42=H;#0i_xYp}ca)@?O3#
ziiYx1XeI|q=VrXbrWakFtW=NnuMkVZSb~<g+Ec;HX=0L;DXwC83^?w<cVq?(b$(<W
zj9<Tg{VE$7iHxf~RJ#bcw{xdqrC;!Qa8M`6ar^R1Nq@TRPw#z#U&7l?XJ*SrF+)*V
ztfw>^ESFEogI#=lT%DH6LKn?;_f(LDPKp~l_d5VVc+k?Zwzf`rO$W8ryggp;@FvoN
z26I4m=tpA~{R{#8Osxcd6P;~vG8gsq@U-)ieE6(rL_>A_^xOE3O}SNz7xP#-p(rwK
zlj-whcI<3u;`|=3)LIsb%z%9hb}Uo~)G-pYP?^YtiZwh(N6b-c?Pg@Z+bkYw*7v1O
z&?2Okd~VJWL(<_@0pJQ!gOgigZ#GT!6P(<0nI66Ga6oM+<S!rDYqiUBr;g^f_pAQ_
z6EPIGkkkxQ;~QS&k+O--Y060ARbc}6r=inh=GQdIV^?Wu$v9vFgJsQ4o)?e=<1?t<
z0QekgJ7s0%5PhB}kj_i87w^P4=L2d}EGMeCEL1n=qHt|Wc(N%ytf4&4K}oSQMkg=@
zXhfw@F*i5_$ji&8SQu(+H#Pnk3Vs8eg8w+wv*$SwE1_h>0aoAa3!J?PL3yp9%MW@|
zRHZh5L)#0e_<j)`M=%&rEW#a>7@2Oe+A*aBI`QZ9ExV=vpxuLR%14VvM)*7NbPk7F
z@|%*9615Svy5iFwg<}$L@GU^Dz2$*cG3_aY55l#ee3y@ydkS$4x;<ZPOJ!?=Ona?4
ze!%8)B7G-%ubo<Zn)2|1U~NNH?B33=pXYZAd$V?<^MuHXblHw&k%S9s7``s3yTG^1
z3jQ;r!3Fm4lO^bE|B|a5b^clBdkq{?x<<h18f*=r9Sy`_Fdp7NVXcGe%nA(X0FD-D
zbP-Dft1_rFL8%u|I{g{i2fnUG$>0+j)@R=adp|-51Z3U!^yIC_YjzUkNDZWb3J*4e
z_5oA_VBB*0XZmI^h__3eMg-K;CCH#BAbVX2$_d!)o~z!?6cE~rf!Vm4X1v`Pv+!lq
zUvpX8@8j|=5v8qWlZ1*;!{@!zr!8NEglW@^pAbJjOjUg+50pOC49w~b&TQ~VGH@Dy
ze+e3%S;9eg?z~hW|Deq+glJdV+Q2)AmMQ3v<=nX5d~@LZckLQ@^%JY)>E^dV28)3L
zM{3ARak@%TC~%(uqh=}g$B^|dC`Iw|^8P($N%~sivuz#WK?Hrel@r>yjul35H<Zkn
zb{4aN#tV{4GCx(Wb6;u0GSgrNCN}Jr&{qIEIQ(i;;y3FW<DnNWLTN61e@rB^E^CDZ
zdc_d{q4=)*!25V?UVN~k59QN!lqEDhWThhHw$jj^mij{GsltRcIn?g^j&Z%SyGB_n
zlDeFV2MK5qbXd5o&@&Cm3MgJ>$@m2XHatBS!SHQfE*MP5&199{=~@kaxP2mM_5&Pj
z>B;#sG?%=ixO<0_M1koCX4BrPe~|ti%q_$o8H&%>3c<b5SChRC#`!1Z@$}c9xi0*Q
z*UX*I>=7cI@>}E2WhnXG<63U~30^g=&f2XF#cz|N&^kuVj5MB=w>IKNp+hask46x5
z0cHd@*?I)0dMdLgp6mj(6Z*RM>Z=m|dD*Pit>{S$(~hJh0LA(uwaMZlaYzlFNX-Jv
zEK-u6KgWhN1$D9;pd<?!>Df+hX3*HIld!Nb@BxAO?4>Gy-MDagHekv~a8-kXQ~e(w
z-JrlMUPKjoc?%2M!Gc$=Y=86Rr;1UKuLd?t%6JL<1rg~HwxaCm?mVnCe{mSjH2_>z
zM#9#rbcdPb4j2Id16;$EBWF%{$nLU+3g5LA>E~>}$e@~#QED)6ph3aNIC)TcLP&za
zk$oC=`ehMZ0w-mQ^YS7yjkVO&JX8lESF0)O@C1&+$<l<#i$;W<o4Y2k@Zfr;I@bMx
zVi_<PaXIsdQyj1&B#*-8c@cen{K=-%FW~Gf`^}p-BLpT@;&&K0iY8p_p^`9@6)<#{
z0Z8zSXc0_$P0#2bw0l6Okt(J=OV__6_A&#NIsgD5j1$O+XuaftasONZ2_K#f@y}d}
z^12$n2#bmitsi_pJDO;p{h<Bvl+I;CVj}G()Ixu{YheQi;EQ2HMQOV_I!a0jSfS%B
z?LfWAZK=A%Yf#0&UD8N`n7*#VmM9t5WeCG^A!ND4()l!MjqKTtf#GlYn+eh35!ii$
z0jOC57Rh6`+oMwc`_5-OplYmKD$&xV<~JT(H(IyJD<b~R(4`n(SLqNTUep})*0(wI
zLWb=0ng2fEI|qj+XPQ7AE2~-gif0XJ=DqK!vpXADDS{R_DD_t&U)Mc2wO$jxS(8(M
z1rB@ViLw(E;J_?F^3&I^H^g+R1O8rp?YDXb-XaKX5GR>J13)by*iNnd1-K4aGXeb|
z5P<CW$w01_4dlfV5EXLW1<Yz7EM7_#cV&b$(Cv8tK77sg?%nE>GY1h`gh>hfiKwWk
zlX8fTP^7WKkj`%+>~GLnK;IS8VGzB6_b|}k=G}?`@Pper$4M%<S9vZsVEu_1icLt?
zi4Ue6%jW=Z%jmf3`^PrI1JcJc`iY7zxHs4hAWnig{1e@L&qKzgU%x!7g3ABH!1jIc
zqXZATX>~Lc@gn0$526a?yfbP-<Fw)wo8>m=7AG6h@`gk!m_<^b_1)-8;+KWF2G0So
zNWaydbjsUrwxt4b0k70K^$iW@ftQt6RMY|J9k^UJCw#!c1OgIBlfcI#r?iwDh5>G3
z;bL-K^S#g82k0#ADzo94cyXI;B?#rjT~yFk=HcO~+1q&yoHRfRW)gx=5Sv)U7d8`=
zqyi~7%R1wX-McJ9{9RF*;MtjLqi<mF&`(_e1MI9ecc-7jq+1;-XfFMz*NFqJY*6cf
zG!95P4?H};_kF!YbM#+YL;*tv%$@R9!cKrT|Gq6hrTw*k!K(-XyP)DA7Jl%x5ICs7
z$)S&qMF>5xDZvRrDJe@^uE3M`S{yR8Xa`eSh6Zs{!{|bj%0CA@kh}vba56$AX#TtG
zJz#vm$VqNY+278P_AMPSs;a8?r~}+vQ|{XSK_I|<#M2Z4)gx<r$|@@Ee*+O`Tbl4@
zuFQbB?Q^!NMI??^>@B%2#<x@io3}tOC98F%;@kKhw?xpTm|XM>zrqZ)WwqWoDhxZO
zxA$PJ6mN`2qIxgB=))3_91g>B1NSOrfKwno9WanpBi&0wh;y=69K1Jn)brz~R@bZU
zMS;ER>sm0jGrLAwiUC!jrLZ<n!1v__z)&#BhKtO`XP-p^;F0UF4<#+^+q<f2rT>=~
zbV(eLUf=~mVNx5w_A)hf`MD8P?SR38l?@b1v08qxN&N>UnwlpV6fBIVR$oI_1x@wd
z(C2&Iq2|Tj%G}i}oBJx<2Q>hoZRb2)Pg;z(wX>7r@OLbK)rg~&E*nT2;!$}q3f=!s
zd@*C?cLR`-W(zB)<RP9YkWb1g2CuxG_14=-uj!yV*_><2%$|O*i+PnPUeVKtX;kvt
zld%qiFzkcLHMV$NUEM=W8pDAdK!<<Hd5e3Q8X0{#fA&dBzS=<mI5%;M^CLv*>$$k=
z?gRD{gQ=&qI^?O~{Jk}5mkGw{S#V?n_;)e57$iP_9tJ=Ocz_h!(cl2ZJh$C@Vz>CT
zl+b^Ij>d4UsG7=lgHa9)lh0`me3e`!s*|lZejZR)aHVvCQ2;FK#$h<i2RI=RNh))E
zfP8cw+?upk2I+v;UkPtMtp*Fz+IKLoj(#0~FWlQ$ZUAe;oeM5S-!r5}1fOX)X(^!}
zRd61>)C+&p<a4>R2Y1mPA7$iR{?oPQQKouSlSTYNw@%+!ctyT%znn5VITW-BTCD3z
zx1Gi4GE=LM??OIFuV@Ou@%RcGY}?dMsbfylvcRmfg2*YL^c66=*(45}qNBKn?~4=O
z$RaE!Il-xbYf0e9_53*{I4l#vB7)){HqFgH+=c)!OsAd|2cJ5ny#G7yks?(63?k>i
zyvN#Y8D9;5vufP+k@gz3<m*YC8uEa|13)me;6IVE`9unmH1K2PgXIq~4^hQKmCnY&
z(O&S?!tOvuSeOiwY@El<D@Ue#oK(@%oY|<}{;^Ow{<M%VA`3j&KkXCDo45oytPYmS
z?VUILhZaPM_(fR9diYGM61CdE<^Ib#YlWb$AD9`NHtZu&<=ppJRKLOUJk!f?c+RT>
zc;WgD8>63dM;`K*o-g#h2+BDnN?E={NeS=h?YnnKj%qH|0MP{yt-qOpfN{7dC~YkD
z1#yP>f6U43q2SU)RaF|4@k*+-93Rn9Xl=Zx1o8;n04cbS3BaQ@+8DT=1vk5UF`eX#
z=UZ@Pld)L0DdE`6>)C7-9Q0gd(5!r6UK5k>&DCoAx!dpSqX!kIbtco%C8U5;YC%m4
z`QhPx2>|EW$?+Q%6Rc<|<0{vcK1!;|*FTjQE67`}gX1%()L>%|AcsjNb^5OVg~!7e
zr+A;`;wg`@%8l3euro}0zTbY+lP2D?ph!5`Uf&GJP1X1kY+L{iCOk`xqZ8j(Wl{C@
ztsW<9|MB4jGMsUm>R_pV>?{wJYAMrq4ZUBfDm#22fSqt30eMHp_-gOdABq7$6T)cP
ztUTB|{%z%^&OI!BMWLlvIZI)MY+Z*}pF|0tAzbUk?ek?}ouJd#;fGBV)gFI)5M5+U
zdkdG+em(ExigOvf2(O>49}0deVO5={O3kShcmH^g2P%<~+=YSu{==TYNrSvbpgJMV
zHBl!jXg6f_*@M1Vaw0P8+C+_N5d%f<K8^yAMS-kns`up*>PMP*vD(s1{Qbt-mx69l
zuWOUhVrhi~AAG%qADlk~?y+1(ccDK(`Yt0&z}N(NgAn2T(8~VnL}hlPN*4w=kHt`I
zX=eCrW4dvA-J@!+Z2#Qikhf6_jqwJW-N9d9aeLCp{AqvUn0}H)E9c8?x~yHdA!R~g
z&8h%p<}L{1lD9LNfRW1bXiYU3>;r#V6*p!`dHcP4B?||b2^Lx3sc8MxZT-n-u<Zmu
zZ0HFFU6uz*_ie93uj9a6P`^0jGB91?=Dq<keg(``7wW=&f{Pc;IO(8v1M!6=O~>ps
z394?lUkw#9Vi7z!>+cACBE+Js2`u<(D39SD0CI(W%yj>vC=H>2f2g11e?U1DUYatz
zFsVS!HnAcMA4%VM@zu8F+Y4TdiCRH=7pjGJY70+Q#p-<xzOJKyuOyWpn}?R2b#$H%
zG^(X_cbo?g2ZfF3K{q78Lf5eV!TRPjoa!>3<FOYWLepX0(oQ2KL|^<iwuw$jkO1bm
zLxNe;_?@KfABNCuoVz`o)*TtQ;g2u2LL(k+BbLVSKI#&|tq8rF6QInfJkInu-JuEJ
zR=xV|k|D<Zuj7Z?^BLA4=Lcsyjoi*si(Cgd?+ys7WrUDYSgnthpL|ib8|ghu<xKjz
zF7y4%7dRmR7qB;oxKw;bA=9TD-Y!bPRbFwB?8}}nOpN>ou}#clCV|Weum&I%2Pt3`
z2@13dA>3SA9dHJboi?}v9mHvssI^-K11mMs1iUF-NJ|pPp5k^12+X>#*y$|hUl{2G
zAZ|d<HvsW=MgWxm4-S0-V1H#XXzT)Rl2GTIepfw~7y4({tqK+Q_gA7_vyxT*?{xD6
z8iM@3J->3Y?Cj{sV{Kz2Z1;m6w!-=K%IU?luF3?BoIam-mWXdBWSbCpp_p6@HV49=
zR_?&x?mRaoOjfcBV;`2q-zPje8x%FYM;At%YeJaJlm2;VCjYo~`%FBL>vH*&a|?60
zA{y%!c-N*>dZbDFK8VoB$^<(bc>WT;u7e++r*Q^fq*w&KJm+XW{qsu7TL3T~@PCg&
zo=fk+HM<|bw^EG2F0MR!)9@QKO9lp>0*Jb4>#_L#a>JNK?ts^!8gyfK@UeRLW89(m
z3`lzg-`Y~ihH@I=Rj*xNPx3<<)p%ZkCUUSA73iY2F5U%`5}(!lTxh>QlkGev0I73y
z;p9Wr2*!AZ^-}rtJ$8po8Go^J56ec3n~<S{(qK_63mB*fa{!LRYd-%D!MfTxbo%B0
zrRSaWuu<ctSo$l#*-VI~CMdfRK^$<KIg?oat5Z86s!Ig~K71$^PQnzAq;n%50W6;I
z=&4>;Y?{o4!zZ@RU8;$&sQ8V4y)e(n074_2X>k$Spm5L+A&_e^H8!+1`~t}6My~CF
z$Ego!GY&o6zXlr^Bu^I;Ekwd8hgk1pYqP2^wdcB8>NGn*V65QcB5oSaRB!sjP#H$t
zUJze@mFD=&{c`zUpttwCs%6W6oGB~Mi<Q@+a{;`FsO^Ue5|M46OkWO%Q<#=_8G`Mk
ziV%e*l%C+X_e)7#ls2vl+Z`BwC&4Z2-in_Lq47R3F+r@vRc&VfyCBN!lKSZ8%pCDZ
zSzW=ldu>)#bkEQlFbT{9w%Y|n$M4bLfVy<$g+*_e=Y@mKmhlTwZQ>Py+EGI*4J)Oj
zq)=lceQ`SKm~s!y%A31NcCNE0akP1i#J}eX_8S_f@Kl`hdaV-8IiD)i6C@!-+jkCJ
zg$6O;gu}|uA7{~sU&aAanrfuUJ(9+6XKOoidN93|%X8h7sTV#}Q@HD@#rkvx0wKbr
z)k}w23K_<M&l0_hZT_hYc(e=npM70;AR7+ksoajgpz4B;z-Pfk=y@2q{E6<3xX1^_
z#uy89oauPIiU%re+1o3;Du-W9M%+&|r)h4QzMy}i@;F4W2WdTL;{PJk0nC#N&`cwH
zbXmsHd#c~Zl`42-xc4Z$2HK^*Tr*YNw;_XICCVizVr?Y-AD{2-8s=59I6QoLA7xVF
zyS$RYrJ2S%Q{Kw7m&0Gqx4`S<ZK&xDnccP;{P~Z`XGT?W=P|n^c0z1?vtTC86;JNT
z{{FFO(ape!-%7_FdG@>^{V{tqvU#rT!~a0o`Vb8?hNY!Go)|w(j6+V?xK;%hL1Rt$
zrpuu9=x)Q)*r10E7z%S&5PY&9IotwxyO_*Pz}d=ka_l&x=2W1kOkKM*QfJrP6GVB@
zA>9a&uHTu-ez6S0l{FX$^Qg@mV4XNTGPbMicoC&s-e<OQ`VZgX6bIY4M|WZd+huP$
zYgDy}*$gH&2)C#qxau^)A)3;D+{<Cn2&d79Rp>aTh*vhj{Tb<reZY*C6Ls2}&;#zc
zXoT?i)*}$YQOMyJQfG4s9Fi_fkNV|T2Mr28Y;@!!`fQk97q!~nv2CgtMu=?6n=984
z;K;)B{9+OdK@<J*q-)W<{;f+vVp7I%-@hK-zbJd&Ks>LA9i*%A?@m_rqU?R#NV8ko
zFlx;`-!;%DOj3t-QegT=pUsSTRRJ#$-YO3iKw)9n-&2LL#L_f?pS2w=`yvvv=}n%c
zw3q;Ku`Hv{>8;V4dmn##P&K~lvTO@!D$G9rWy-Mn3QZ#w8=VY{qE6UZPLK8=<ERgE
zfsQ+z5fd63YAz?vBERf`P~syAJI?+6_}<47*6n30^-OkjB=BryYT@ito?6H?#^C2%
z&T3^2BTWGO523L`8C)N<0p|}v-IP;PGq&RNpqd`CwnOlO0({R;Moc~+ON%o*U2BMh
zRgBeWSxCC#@0SavMMdq6T(~ZKe`l|G;gQEM(~%$E&qs!0jxJCV;qEqboo|QqT6uO|
ztnEsCMjHP-DoZ}1|9-7(adQ}IaxWTr<qadb6n%$ZER}6qx4s5Tb9-_#)|!on{g$!&
z^w4Eyqh@zwq#O?)zoTmQkyNP~-ijPR#(+6MUXFo+EFAD+_#beJ-2EEBN*(s8^K{_e
z0K!o%EmpaI4WTBb;yivNmkiLjLBRzSfE{OWbXvSzd;wIzU>^<j2hfWEfWZLj8N3>>
z%O{RWL(&;@TyImu5zWZT-4&Q)P7gDML@*;tFTuk5l+fimdl1|hX_!ekL9koc`QfPu
zivfc4ztw|{9LPr6++#r&z}A1Kiw|A3uSuI;HlWP`S{iZ_U8O+OK$t~Cj<;ab0NUH8
z+XO)I$O(AGBWzG#Am{S%yntLt0!p@!3T&{cljn3APrb#Nw7rz9`p&EYIV=t#^1v>J
z1}hsB=*-x7dAk;N;GhsdC}6*WiW#sP6bi0|G#zUL%;jr%x2Uuq!m6kI_KEPU%oEf6
zr=EbP1mmdBA+9uE%uUS)?0<+v<s;@lY4Ps~@wRNu1QMQYniwEF!nVS<Z`q*_LIQvs
z^mCQf)!P~ZkJDdQK3q5c4}=QBrm$Dj248{@$S?RzDhOd3p-MpRjcUSW3J8I(pZ$gA
zLW+PHCh9*qI2JS-z<?B}EO2tyKKB_g|DgT^qxUGmd(hMX5?A=Bvm!uGi#?e=a<GlV
z424wMa-_(N_<}ZIG>n;<i5ts1Y}x5I`&f*2o0y%Ag%p>yrT1Glu1dcojUT1J{Jgak
zm*c&?g^h#tlJp;^j#2ofI&#t~fKSTu7&jocFQfqO1}CYc1y4AOVWAXbX=b+qs!iho
z87}Uy1GSJaxL#nPzI8F+T31o&0A{Uu`w+oambqCP23^T@-V_!N#C+AQyIQ+8Kz}xK
zPlLi77I50@_*Tk0GnWL-?xt-oa(Qo&YV=XaV@?19ib6qZ;{JEfsx=$~rI{()E!Uy(
z6wVQ$0<6>S69*?}jq{p_*Q!3M2~L+e>;%{X`VPAJzm#0Y(`5WBTroM?G#gdX7|fjN
zu^JaUtXBqEkfsUDOO~DWtInpBF~>N#Q_<08nbWuKdysM_yqn4nOKeI>OY5RO_!;c>
zL~|cb2F8X%RzO(|Dc?n4_PLo14pIPCxcSGUTK3)Rx^Pkpyt>$qi_o1bSsTT#Y8jqi
zt{#_<7`S`fP!s;>DT~jk!)5b%<6$}!icC)heN(^RaF$@4&r_N4&H+XY@N3bxy|4tv
zR>KfpX^lpfHnZ69DPKaMdlH(p8P5MiICxmN#BTs_1mH$s<la7&A<+&#nLJRZG2UEi
zI_ACPvm1B*cx8?Ou%=RRxx%)lJkpbgv!o|VR+k)Up&^pr#p5bIzh_NV{Fbn(Hq-o8
zpiN9K3z@ufrS$p9&X+G=ww6UrZ$1Nqj^dy_UZ|x$!WaXk;6Ug3MtfV?o{y}@V(j>m
zcB!hLLSx#iCG03PX%zZ!x&2sJQnn;IM2!9nBUsLxqS1`Tr+Y5p`OxgoYCq|#*Ub@r
zU7HPH@hIdR#W&-fi6ALK6lRdh`EUqmLC=K#hDou$w~XR69GEdh7`3Z+DhB%xbg9Fl
zZyg@@Y$`eXSP~IC5eLO=7ERyW(0f$Lb$TwP8@Kp|Sv^C!T`i3Cyp_WNoP#t~#t<zF
zpst{yqV4v8?C4+D%m|^=?Fg9H;h_S0bcsi<4K|c~p$0k~<giA`w;<IU@S>umd{b67
zm@7<*xjUclOH4r)``%!N>3kdYEa>1}@2t<S>4zz^+WV*4JyBsB%9eXHfqOSDA*|#u
zVSa8YEjT=v^qd7yqJNn0CuqFH(qAWs{PWki=>4g>%b<aRkk$@1>B0|wDW8=C{ba=l
zC?AkfL5T45n{q0yU)-9wqW3<;iU!6X1Z1pYVpK5uXHA5B2fz>>pk(N>AsU^||KWS=
zxKqrjo%*4lQ!rg7bTFkkBMUKkBrtYH^w$06mmofQSm3(1$1(TL#;byz2|MEOCNgq>
z?Kl9*9pDVmY6q=Zv(SNL5cKAnErp=DhheYA11F6Gm<tmAt*=~}67;-4DuJ%qiZ4^Z
z)+0S89a!$*r+$Mo39S9W0b_7>Vv7B#GSaq-SOb)}9Y|r@XUCg6U8H#196I1UF{595
zXk?~$F+QU<&es)Z*b^OKD-?gKME=3Ct@n2$2gKEv($d(j0t_KJ7LzR`h9~~|;sTO1
zYD`R=h{&R!7wDad0HT*Yrd$dB-zjagCR_HymdB5UZc||myt;x>es33|Nsy_fqN%M1
zNa9{M3`Sa<6cX$(UXB!Q#pHbmUFa@=t}dWbCET-{o+dWLlJ`Ai?_;64OpSwF;I_v3
z<eu@#a<F=;gg)V3x^h<Q_Lr#5wQb#5{_mR6xek7imOwH>1g)W_`iz%&+ZR;PW+2T7
zg-j{^q=%h74ln(~Zknh@YWbcTI$X@gEadh;=3xV4!Tv<c;PxkF8VVm|-)HZoq@=9+
zxC~5VP_@rhqBK-h$(belEwouz6`jLqbh4TccVFN>y(+7@>{j!!{F0H;7Ll{J;~TRU
z=BxVbp2}tqk964{Je+Pba-iI3OsK$wMAG6zQ4#D7it_T9$$WQOf{{=Kb_WDcLN~ot
zBa0(F^2HyUuvn9!Q9(yvwA1U2V+K+-2^e%!>P`F@qOEj{WSme9hgoFat5`XlafMFp
zN_MN;gOB?XNiKFStnJymY$yC|Rd}2zk*w&1&l30;&3e<`p4%w79jeVJz?i`j4^&Tc
zPpHkC=v?a_<#8Je+zJu=aeIDtyWui(_J_X$A6y-q1*fGF&aXezfr<HNjZ10%$;;NQ
zF&3(6b0=WsCe$6F33WNc=Y3W*8h@s}{;&uXlwBo#(M?>0_b|Pqh(K<TptI4*9$_?|
z|BRNqN8ChtCl3~<ZCB^eVQZh1kM-&e?v8$a8OW~sM_@oPI89^e7leM<#e<wGq3*8(
z$60*|z3<Cy<(D)P87S0D&b4x*{am`pD5B0J5;dVjd|(AYx)tVw&ymeY3vc&H6qdVX
zyKR=j_LqiYXXVL#B7>gjwr{_hR!8pm)?ViIo^E;SL3HT;hm<`oS7sH_f;5DX_qou}
zQxGf|;dGi4eB{3=C(!uh?R4OyN5b7cHY$8?-L10}{(Q-lD`-wQZ(Pf}B@}ekpQeK-
z_tq|wQ#0qF%hJNz!dR`8u^WySD1p&GETA4kpsEwF$aD5*01iU5)Y~&0z4!5YoAu7D
zqdE=4<LU%uNGy#;5TQ<@*z?H!CQ?pHc(GNb?wpX|eyotCldB2IJXsMj_z~R(`RK5w
zI%+Hb9iv*sbkkHZ?VCiBrisgsg_A4rU^>ZT5^!Y8P_j~GeagR(8?;So{#r(U*-iS7
z`(J+c`)8O~*=bvHAB<vYNR9ONP+J=#qDH!I48dm~scdWssbnQ7@pH0CS&7pX&yeQ{
zz7>^6-4<5K;nw(4iU8M8J)Aq_!JF}Njl=DI-8u_DBG+?I=0$Zv3dy%F*8|=Ycbx}N
z1Rr*qg()h{{q<$rTE@Z>cEpQ&hEykK(X?a!qvcX@d7ycFCYRAnJ?sc8Rr%YYgtLVt
zS!Q}cXGQQJ9)o5=+b!(buPU>txp<vh62c9Q`i~35*W6e9WLD`+YP{7Q?Li6lmg&!3
z1%Fj^;0!Q7SQXk2+p{)5Eo?&WI!^{Or&6C{tAvlr^|Iquf=A1y{h;1FdvmIn1vlem
zhVV8rt18dWjKJDydia^R;seg$us6T(J2bGMl!MVx_8~QQ2Eyj2Kl{`){T4rd=RGt)
zLfG<t*Zpv6I4o4lNyoSL&T?X%JoZeMP8JZbKs80s{PQMD2wv3>vC#VQuv$@#s=!>b
zy*Pe*XUAI#dgGZO%!(u=$^Q2XjS5lrsM?@Pd{Lrqqm$eL3160y_p2B)jY|pb#joif
z)oFeBw1&3S8mYY|#DiCQX!&KXokm7G*8OoP*(FYSTV+z#*2kobgy=AwS=Vr0`3OX1
zv|Hme)a~=vVVcrbk9F*#BV8I9BVR}Hlw3l$(nloS4a<6ZIEi_^gE$u5oGU7EW>(+J
zf-g@c*dfKsAs=xQxx|O(;sW!_ybUkO-hTLNPD;iau8duGbcjb;tV&olEPvO~v4r`Y
zuI{Ywz~}Ea_eYJGjyLv4eXw5Tm3y?s`eHzQV>y;b6Oeg~_ddZYjJVUrzp*adeNC(B
zK@P#@NBS@hy?jw%O+u!WK;CCACd7mN*hbzefCIk~q&={iI62&J7bL#3wM@s!u4+=U
z_Sc6mAcS1^-=dBu*TI0S0*@TSX)(4f>-SfhjxYj-XPxTQo0c1C(=$t(>FupHA%WMi
zwv(<rPyAO7uW^%I($-I<`MeR+dQhEkBZ=H-{P6=>N&k!a<7Xs2>ymL%t;SnZF^@|;
zjnPeokCEl0yqSa6w{$0K#v{RR8RNPu@pn~0nTGa?r}CtA38)Ru#ElZqiNcBOTW|%5
z+qCS^%#yMH-C~tuR9+^stH4l8oQ}2rEVGR5o%I~2rv8w1^!f7ViZiC{mbLBX9`-LP
z@$vzbr+NS6ZDe<GgV-h23CTjJ?-44D7Bh8xM}7Rb^c)%!nHvJFSZP{WS?_4u<>+F|
z9fW;+JZB0cko$~ug%}wDyI`sWJGqjDAIc<{Rmn5eXgRT_+q$4V=D6XB^CW(Hl^fA$
z!Y#}5Z;!qNiIBq@kdIJ;cTI}X_d_*k<0wNhECPGBlF7VjQ?7^<*xIQ)G0mm<3QxBa
zu~R<0+Bzup3kaydsB|(8BQ8`Z`wVX{@$5^A6t4~|EpyTI{kHX2oOQeL7dY%(2pHl=
zzGq64-qDMg<02sfvs`cYk9B0hawc4!MglslFiYRc!3sd3jEx_y9&rZTcE>Ha*w{W=
z0Oi;(QJpO7y!Xl_&Z|P~agi;ZcfEvei_GylVYy7~B|OztMHI2SN^tN4?(K4oNPLox
zOxfDl%+1O-4PWKRMO`mTanr|aq%hw-K}n0n-)t}B47hv0X@oj$`$aj%kXMVT;6M56
z5t}MHO3e$_rK3ap`-G1_J=>xijxy4P!<&C^V<m#N9Yp1ErMyH!r@X?af8?=N)BKiN
z{=<8i;1MJ}Pc_-(+gPFb)#fT!$LuK~dysQHx5eg5uiH_{@jmzC-r=G(1&@o^d`mZ{
zk*nCT?cj3+6=69g<H&xi=Il*N%1%BD^2gnm1jj$ZF5u289kg2=+2i0V<Oo^0vHyA|
zG$>Lw7eN;XdY6uNlfsfS-kSg)ukKfK|3jUSyO6f79f%w@uxy>ZcsQ-a^MqK5lx?m>
z$V!>LgCxGGt@&xHgb3|C2N{hpGv$)2NRwaA<=bBTc}^&(Cm3Wm#L6UO4W{=G9`)UX
z@r2~c8!kQBGA#P2(5WN2(U7^v4PS$Qw~+WEam!&dS*nl(IjCUCK+_7GPT^UWNFowN
zbtBT$ElYGn6d46$Y^soOc1tKJ17}C$=>pC&F>+1UB7M=B0So282hOVKV+<27Hu%Wa
z5`|&Ob`F8*hY!?}Z$m_^+^~O~-Fww*g}@~Bj&rVBN52o4?r)EhC|k>uUglBkc;1|M
zxbAs!zugvQ1(hTp5(;)b%0|8Au5$BWqY|&m5^I5;bnTne;pVf85~jo64;}x3TQhIa
zWlYg=_Qw@H^sR5UrpettzsDax^TiMTdqPk&?La9Z`R`iPBBIkh?TXko-<#Y{{zN^k
zs&L?xH4T*0rNF^sph9BR5eD!PQ6V?`?houI#Kp9?=2&Zw{0x=Ltcn$vtB?IQu0MfL
zVM#Z0$aLnILEF3iw3&vHj=<}i@=3`V83fNT$8VMpy8c^viLzme=qM91miwD}uTzCk
zdUu6?RtK=g2l>-o=;)F--18FATN3<tZzz~DdXV|CpTDZf478wUq$P`+l+$SHv~#sO
zw!5!#1-ZS*TzGqo_+&AMdvA9*J8b|Ztj$zw!d;|8t`*?9PvtW4?wdbyK~IRG{cP^%
zju*<8&u*r|73WwVZ?A(8(6!-FV_+ad=6MqVJqvQxlS>@gZM>oDimDXhiq<~P+y*>g
zS?k!IJN@~m|0*qnP>PWc4rK^!nB_j)fNZm9H*Sb;(%e&N0V*q&n^mSmsK*OpvI329
zJwFU*L4t&l!;ai-B7C@>6~Y}VkqA#=agaqhjWVHkhPkW^)8bCSw$-S{$xba#z{A(?
z{~-C;St#7{S{tk7Oyhn%Zpi5Tybu_1)V!yHspr07%&%!?xqY{t0ST7<UEU6B$WnWY
z?6ZeYwx9|<FK}IXoAoqRh#gaFQVx%wzc7-RV%|mJ;t#VzB>hOQ(~g5|dM+Z(tLpXu
zyW20gMZ6UO2oe_LF=!gg${!+p5_kihLaAb}n*Y>P{JO@<j;Fz22#*)C1Cr}~N1}%E
zp}CVd$rHC6V!4Trtq5sE;1Mz`8E??fv7a;d)hFwqNO5imM1`1=Ke|qV`=;pA1t4#e
zMukL@3coTj)-juo1#u+&eq@(3TT#hgmHtr3nm3*Mye1n&STxjMw6BbHdQL|tLc`xv
z4T_g%XH~BYBQMk^C9nL&z61N|00=-~1U0$~VSl`NlU1a$Odk6NJ-d8j-nteFkC@!*
z&zc1uoe;cQ*2K?^FBg;Mb&-G!kBd#l?ukMko8@irzx)LLUpyFf<ocwnc>e+~yf<ce
nZ~s0O3Xg?+`v1d+4$m=0<r$}=Nkzy|@Q=zZO>~jGW$6C`xHHIV

literal 0
HcmV?d00001


From d8ef639eb5170b80b412cca61df36b26e9834fbc Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Wed, 21 Oct 2020 15:28:40 -0700
Subject: [PATCH 06/44] ring

---
 .../microsoft-defender-atp/deployment-rings.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index e43f88673b..266fd081ad 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -45,7 +45,7 @@ Table 1 provides an example of the deployment rings you might use.
 |:-----|:-----|
 Evaluate | Ring 1: Identify 50 systems for pilot testing 
 Pilot | Ring 2: 50-100  systems <br> 	
-Full deployment | Roll out service to the rest of environment in larger increments.
+Full deployment | Ring 3: Roll out service to the rest of environment in larger increments.
 
 
 ## Evaluate

From 294e55a611e6c01fdf7bf22ee7676e20b9fb40d4 Mon Sep 17 00:00:00 2001
From: Sunny Zankharia <67922512+sazankha@users.noreply.github.com>
Date: Thu, 22 Oct 2020 06:24:53 -0700
Subject: [PATCH 07/44] Update windowsdefenderapplicationguard-csp.md

---
 .../mdm/windowsdefenderapplicationguard-csp.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
index 59f3f7c19e..446d2447ff 100644
--- a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
+++ b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
@@ -125,7 +125,7 @@ The following list shows the supported values:
 - 1 - Non-enterprise content embedded on enterprise sites are stopped from opening in Internet Explorer or Microsoft Edge outside of Microsoft Defender Application Guard.
 
 > [!NOTE]
-> This policy setting is no longer supported in the new Microsoft Edge browser.
+> This policy setting is no longer supported in the new Microsoft Edge browser. This policy will be eventually deprecated. 
 
 <!--ADMXMapped-->
 ADMX Info:  

From 740abac7e76d8cdb245bc1034bd59ee4b2100b0b Mon Sep 17 00:00:00 2001
From: Sunny Zankharia <67922512+sazankha@users.noreply.github.com>
Date: Thu, 22 Oct 2020 23:12:17 -0700
Subject: [PATCH 08/44] Update
 windows/client-management/mdm/windowsdefenderapplicationguard-csp.md

Co-authored-by: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com>
---
 .../mdm/windowsdefenderapplicationguard-csp.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
index 446d2447ff..6e88afcf72 100644
--- a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
+++ b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
@@ -125,7 +125,7 @@ The following list shows the supported values:
 - 1 - Non-enterprise content embedded on enterprise sites are stopped from opening in Internet Explorer or Microsoft Edge outside of Microsoft Defender Application Guard.
 
 > [!NOTE]
-> This policy setting is no longer supported in the new Microsoft Edge browser. This policy will be eventually deprecated. 
+> This policy setting is no longer supported in the new Microsoft Edge browser. The policy will be deprecated eventually. 
 
 <!--ADMXMapped-->
 ADMX Info:  

From cd1a8187a990748cd8ea2986784c710d79af8d6d Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Fri, 23 Oct 2020 10:47:53 +0300
Subject: [PATCH 09/44] remove policy

Bitlocker is enabled by default on HoloLens 2. No need to enable it via CSP policy.

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8438
---
 .../mdm/policies-in-policy-csp-supported-by-hololens2.md         | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
index 20d7139bc6..739826c640 100644
--- a/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
+++ b/windows/client-management/mdm/policies-in-policy-csp-supported-by-hololens2.md
@@ -86,7 +86,6 @@ ms.date: 10/08/2020
 - [Search/AllowSearchToUseLocation](policy-csp-search.md#search-allowsearchtouselocation)
 - [Security/AllowAddProvisioningPackage](policy-csp-security.md#security-allowaddprovisioningpackage)
 - [Security/AllowRemoveProvisioningPackage](policy-csp-security.md#security-allowremoveprovisioningpackage)
-- [Security/RequireDeviceEncryption](policy-csp-security.md#security-requiredeviceencryption)
 - [Settings/AllowDateTime](policy-csp-settings.md#settings-allowdatetime)
 - [Settings/AllowVPN](policy-csp-settings.md#settings-allowvpn)
 - [Speech/AllowSpeechModelUpdate](policy-csp-speech.md#speech-allowspeechmodelupdate)

From 57cee8adbb657c1e8fa7763cc5ab321676f08f50 Mon Sep 17 00:00:00 2001
From: VLG17 <41186174+VLG17@users.noreply.github.com>
Date: Fri, 23 Oct 2020 11:03:36 +0300
Subject: [PATCH 10/44] update wording

https://github.com/MicrosoftDocs/windows-itpro-docs/issues/8437
---
 .../microsoft-defender-atp/enable-network-protection.md         | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md b/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md
index 76fd837692..f8805cd0d8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/enable-network-protection.md
@@ -100,7 +100,7 @@ Use the following procedure to enable network protection on domain-joined comput
 4. Double-click the **Prevent users and apps from accessing dangerous websites** setting and set the option to **Enabled**. In the options section, you must specify one of the following options:
     * **Block** - Users can't access malicious IP addresses and domains
     * **Disable (Default)** - The Network protection feature won't work. Users won't be blocked from accessing malicious domains
-    * **Audit Mode** - If a user visits a malicious IP address or domain, an event won't be recorded in the Windows event log. However, the user won't be blocked from visiting the address.
+    * **Audit Mode** - If a user visits a malicious IP address or domain, an event will be recorded in the Windows event log. However, the user won't be blocked from visiting the address.
 
 > [!IMPORTANT]
 > To fully enable network protection, you must set the Group Policy option to **Enabled** and also select **Block** in the options drop-down menu.

From f86ab6f48a97447247edb1aef2621ce4ada1d7c7 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 23 Oct 2020 12:41:06 -0700
Subject: [PATCH 11/44] update image

---
 .../images/deployment-rings.png               | Bin 37348 -> 24969 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/deployment-rings.png b/windows/security/threat-protection/microsoft-defender-atp/images/deployment-rings.png
index 2caccad26ad86d7fdd82b4335c7a96404eddede7..6a806b001a5c101cf8d576458ba47f9df17cf86a 100644
GIT binary patch
literal 24969
zcmYg&1ymL5_x4dyLApb_kw!!W1d;BN?nb(#qy&`)2?+sdkrwGj0TDrv?k?%>`u6eu
z{%d`Aox60MIWzOlp8f84o@X1PtSE(fhwKglfxwiJ7FR_eu8SfN*Njka!8i5fMOp9%
znxnL~3j#sJfc*cOj4J&$e0kedMnU5C!X09KOuC+-_#6a+8X+St`phF`ee$J;?qDkC
zd5QP$$x@2zXfz~tZ=7u?n$hCMl44#-qkK}66^Krx{E@r=T3V^+tntmjD*Z}Q|MT?s
zvM;+klXU3cJbFaI7=wOa`Bs4W*q<NQW#?X#;KlgU%S)3xmr_h`4V|=1CO5oDV1F*R
zd$cFyOZ#%#S6A_?pUzs<P#?<mSBPNv&mvK%;s!M>Ev@Q}SmYlcq7zYYadCUYTj~ED
zre_ot7Z>NH<3@vnnWTA7HW0x9m{H+$2qRnX>z<xu3!;HLAtFsfR_Pu6)Y$%vN`dD>
z5o5D>xGM1`c;e5waZ!z|JjmzquMrR}WK?reP5RLNU7-@)YGxMjdfPjA|Mi}}81f7E
z>4o8$Z4$|LMlJzi?i0&D!&_G?!W9k?!NFhS-o`Sh@?c^_7@N@gkCxr}^N>FjT|bcD
zr;*Ce@}<+^9HQF|V`jbWTFM%^{I7#z=Cm7?H*s-Qz99Ukg?u#!d`9rZ)p+=XUuDcX
zEi6BOmyi~u)N?Sqz?9%P7b~}&y7KBu9{bkYAF7l=x1NZFH!Z*u@7Ycq)+L^Cp=DO@
zV}@Txgof?Tiu4DHF>%g)F2TRN|JbUDKi%0Cj1yvtCvJ?18FlTCk*oK0D({Jq8&rDD
zDuzsvRr;!eykNF$BRp}0|EpQ<@Tl9$&l00dFBR*3XLxl)R-0G$F06wj#l_?B<O3|e
zY&PO{ad0%ZZPL`c?2}LNPejsDxqYS}f@jg;Li=D0Yvi)jxQ6BHc+G*_zWp0^H<Mj9
z@+hA%9`6m;qX?s^l&2}@3wQ>H-T@+%)>3|ClJ@XA&3PC_A6a|2l6#V2)~C764^}D8
zMs0nRaGwqyGe#cAfa7LnuH-FQv3p1LyGtzRLAjX3oS1q4?k#D87k9(!RO*Y7J?_-S
zmm9^yKK!n80b?}CQ-v5swF~{MFd8oCj*mpV!-uCX<0kdNE@(!0aprHO+PS%L{lUJz
z2jlqs-n*Iqoy7oWnK*iolVQRu;5c8+!S|RR&U2H7^Ry#ml;5sVk%@^m-fBNj9XS}E
z=l^ET3ho#a07q8ul1r!<3s0SWzR`5L;pCxo^qB$=OrU6t7ia8sTar7s8nN{;Mc#L;
z`!N5%Bfr!H5g!I79|k-@@E?D>>Alvp)l!*@&2=p^W#Q;dMML9OgyfB|wwP@<+DtQJ
zxp%)f4kC<Z>uKwK_Q^l`oS+QvWTp&HO+^+Lb0A{TlrqOdf@9vuypw$^$(T^#adzP{
zax!=O?>ec5ApI{V-zF+`b#>JM+|Fn^DP?W#q`A+*!2>Py(l--MCI5^*ew}t<!y0)q
z|B@P4A))>a17$<QdL%>U#1DGr2(U4C0W(!MBWH?&K}AajsXPvf?N~X>s_?L(pU;O(
z8d}xcvFW^ts3=_gLT|Gg6-O=?QER<M4<uImR$M<96sQSe(9)`Nqsf*QPZ@`YE6#NI
z*|iC_cNb7#!MnO3jZG(5p(1aa7=7b-wW2m~HGbPVNDOQ)%CDq+XCEv4`}9;;(?yVv
zyg#!gNra>oFIn9C_Y#vO6%~YJ5x3wY=)Nhh23{XxDyNM1;wa)t*0sx(6H}}6{#>|H
z+_MA@g<@S|o7YL+&$Qj$-DOQ7q+l_M%J2yAy&A^;D0zY2&c#QmEJzOFB=nWcAKrug
zC<MZHzl(-k$X9gHDtK=Gz{|L5oX);!<x}z(--}aT<nHj55BM~zy2YiKw$(l@h?QRF
zAim)kJh!xWVpO3+XFt4lARiFSyv&XEA#*m`iMPRp>}vlzcZC>@Z0#F#;(UthxGKNE
zD#}V%sJpwo$2%faKgPGx)C9>hS$fwFtZZ$c{h#5UXl|hjuaPusv|n>|#m@U@H-#Iq
z>HL^j5wqAq<2xcLTX__Bz?ux#nB>AUER9eCTTDkv&$#fZGey?^{#6!4$$UM!;bz7A
z;dP`_jou$C-tDssnTR%%(kHq73<oK3{EVV1t_N82WnqCHf2ADKPkve=ZO0u+B~t8$
z8uyKjD2&&p`aF!ep9?KC9k$lTp`PtjrpsWL)Ij)QcCD^MgSwZ`y4JBuGzA64@zhac
zLh(E1K(qk=C)CtFXaUXfQRE2`MY{3<-%0LbH(zo}ZI><U3}U@uHuc^KGmJC1x|qIt
ztfTw>N?1o%*O-gsPhVfm<{xH>g(Cj`4Xm+J)7##{hJAJKgFgkzyz6TILvkAQW82Vg
z^V{8^u|cdL<}C0H)BuE$^Tijzt$KW-u$yjm6p~rEteVB*a&qYT`T5Tx<6>xz@f(io
zl!&6*Z$wDaUF7vz%{bQ(jAt?!n-oPJn{$zTpAswIm?gouwUQ`ZMD}gx=9VQFiBZ+K
zm`V71#H}sPt)~QQNdY}H4nC#h8-G?@X?9L7e2*`D+j@j3m7X4D_piW@3H4KVeR#<*
z$+3`&ZnZI^Wfb)r>KD;Q*i}B5PZT-59xZ-<u<2sFDWklcpxKOe!I2-FruWYug#RA)
z;+>{x?6e-@T^DYdq|lA=DzTDbv4X*Sz6NS)H`027o=_vQdQlTP-+cH$#-FN~$NJl%
zOcV!YC1cgO=F7_?dkOdC@eK{On{<qi=MF1uh9y%OC=%tFC+w?SyCNwBjd+rtPTlbA
zdi4Y$kjg>-{EJReD9LXNmjUrU`>GZ*o{X9rZKv?WR@;#;*AUy^(K(qTUHHjI%Ad#X
zH}ouv+1VAjVl^0Gi{enD1`w2u+Da-Y{Epkq%glT_*1o*=&7@R%tIQ*6?r?Q=_4AfH
zqY>Wgj=|}dr&2qHzF(2K(Uj^*+?%DIG|q<j;UoIYuV3-l+1a_0f2;DKAnrc2f8D<#
zZfZ*RtFtr5j)8%JW?8G&HLv{f@hg%Zw_jMhMAslLf)T(hLF>z|0)$P=@Yfbwz7{K9
zS&@Q*f<S82kupnc{|=3g88h9I;jE$}%w{vZWw*Lg({`-3N49*r1Bnz^K_*mS#N7V8
z5zDi~jW46NG~8$2!V;ZQ+qVPQbt@6UDbhMc8Y8xR5_8IihS)|tJH6Hwf7T90Dr^$U
z^@S1=sYB`wO7?3jD~XyHw#33uzTKumL9k4DY<1Z3Wfd1I?)a#wsg0a<5Z(9vm@el-
zSN-Qf@Rsli<E^0f0dQCId#tRus3@O&D2p`0PEWm7ME*Jo2nuFVillDDdBLr%AH9oZ
zVk|`sNcSKKE5hVUR@kA|ue42?<A<jY4Gn#_x8f=wq4{po9{c$y1Pp}#joVlVghq)0
zg?s&6%VnhCW^ip<^`=3gMvjq5fYa(g-aETFA9lk=A+uy^R8?n9U0w9p4wR_&z|~dj
z_30)N+cllcPhLudgoMVr7-b#d_GqiC6q4hk214h@R7nV2+>W34B#3_B5z>es@8ZMr
zzG|@{eP{D7_chtu$-h7S4VBY8ib{MP%5H)cBxb#m#8I&+V|Skqt#&{#99wwv`_<mw
zL)h`b%yb=8Z&y}7#8r9!^lUI-xdr}SHcHOTSo$KbLH|)R!-S`VTmr{UM2fJF&d%OU
ze6sXT8(vWblMbtjV`t)Ti@=uIceUT~o~MSH<sT8S>7g5ZN{*IMR+>hgI+?kC*?8$c
zmVtx&8<isg-M&g!rS)$2Cxzr0M}C3|W{3;IX-fG8@HQR!$@|>uCb6o<*?kQ4^)W?p
z2#V<4>hzuDxk{HL4Ny0nYo68yw;nH4Joar8$qpXbaATFs4!PMH9Ya($icv6_|92NZ
zD#4v9^gx6$7R{pU(cA?+?bORqsY-=Fu6gT#)7$NTT(>bkT6-97C<g~S$7_+WgUgy$
z>J1DI8lUVghW5%K2o7uy4i2oWtz)`NhS!Ywk_oX5ONI+bEbRG`XI%xvBwuzs;Nz2R
zS#8_nd-#ym1b6;^l6<Jk&EfHt1Fu5;I*lDl@q&(mk`gHii8m%FN&J1Xit<CS*`Lh_
z>F-Rb2`!I;%erFknyky`pwVZk^2lLeMwu%0OO0Ht23ZF^mHC?OjYUS;B)7p8987P5
zu9*KR?28r~tmsbOIBibExG(YE372VY%a0#79P5v-;X_USO9w1sW>5X0mb90G4;OW&
zX+r>2iIrHCfi`oUK{1|0=pl}RLU$DkW>n;S$FdI6dsK9I`S?B+vKB(gQj~Sztgl#w
za)22*_poVi{{2I-AY@(C+ZA61@9_%tu%g`bsDKISEy2M&%8HDlP^3etM(aE4t%NjY
zFtgaA9-eES0}55u(F~REV5S>06b*6Tob$PA-HiyKP@KKGXw!uUgs(|CEMwBY%{uL4
zN6s}}PT;?^MD`Us&a`M`6v@pa$0(OgS35+fw`<6R7!rD|UQ1?)LX|X@(P}=JuMXK#
zP3I^m_^CD<(en+?U+j;fQLZ(cDm6qLhTX6Z5`FZyFGmjH50CYpE<{PL)9i6d&$8Mh
zJX(fSMPlwp#KR|{an0>x9~Cfe1)4ait11mKiQ?m5vvnbF4yly;w?JdaAdsAcLuw?m
zUj4QZqsDnhv=PUIR$93%P${0HsKF!(8U46s@A3J{h$qw#w7*z566CBsLk<x{M`0F|
zwJ#uoLKHKOy3J_$lxSn5^oD)aU3f`LhqiIQNOM@YwUbexTbUhAP?{0>Afh5jK%4p6
z+_@-edMl{IET++&pIns(ugi*;76(-tO|81Mb?qRtu~B$^=j>=J$e={?-1cB~5aEA#
zc$hfe0=X}A^M2Iw-nIL;0<S@$y%i`rW)F$4T^DSm>lhZ>J|Er9(j>X<v*ubG%&o;n
zv{G-vs-2AtTKwc#@R1Puc6NLEMjI1rY&!H9<z9l@$<vn0xd_@!`QitHjx$ew_8e|a
zQyq|$7Rchfei!5`02Pc@kp|1hr6r4jfdS?if`Y-&u`!+Jb%WOL=PJfGU_)=8c%!0R
z|6Ek`rezkjCep*38pnUs_ANDPA783s(2KPpnekLbCTnZ!%todM4<3Z>73o%CHJe?3
z&X){Z4+3&FQ8ru>(&`F{ryOY;=UPm9Zz)=MxPsAH|LuRliz$Si-PvZSFl226GBE_>
z4<9}R7fI!n+YECc&pU%~iW)#&)QE+!C?l23QW?WS<SM1zLadKhVOx}G>!c4@@qV}E
z3)0KY%aieHFz+Nn#1`F$SOtNpch{Vkj0W}klo#tRx!dpGzx&o6*bKEk_(G#$B3o*%
zj~ADa`_0eq)6FbXe5B{Z#g^+7(MG>x!t4#!7Yv|Iuc>)dY#Q?$60sQ%OKqqL1HrBa
zdC71XWQ^Cvr1hC~=ianniOR~#>h3Dr(XWYT9t{S(4<5)INvp-G%P6}~qh6YC1$j)5
z=eaS*iRp19JWHb)veIIUXCc%NU52a`+g)Wnc+Ymcl702WZF7QDm1=Is!>Ck?V3~(3
zVx-P}D{k|?mXy?OJq}`U_&G9xR4mCX?zvnK&jxX!(%?O!o5PL45Af##zh-6KfN-lK
z2i4xwIn*jc+ATRa53ZT_84b6j!ev>})zwv8NW*|_Vr=Y=(e4rbRcgZf_unAXkJC|X
zxz**Qb<Y2cJH;v;V!}ZcFI>j$h@~pMD`RUMk^|+)jsYUgy<J^XvweaRnih$NDw&fK
zYNWnY=MI8;eGlF*+#@O(W_^)nepY_Xy5j@=U)5<YZ%eQ3o)SlO4_Qhm4`MrBzkPda
z#Zq5iAAAc3g=TZfyJ<Q~y+A`|IcC_iyu5rSgz4iG=&f3Bzi@Z2a<xN@RNCDI_d+I{
zWos*|=7ysw!HwCkMMXu`8<pcwd(F7j5e|c!T3K27cbI+8S1))PbKSG*XNlj%TH-M7
zGCQ6P`NHruMjO+^&B-uAR*h!sihGpQu$viUWoiwh+VR~)c6>%_Tr3AXTIU}+Op)&z
zy{MZUsrS5(aZ79j<rYFQRe+&E*kuWWjR+l<LeR7ap^2B5*J$zAdm2B#)@c_G=mBt0
zL}mE`bR|qizZl;@Fyl2r86~H$Tv~Zsx5}QP(qa0eGKRCwaPb@1T#e8@eb<-TUx-zD
zii7e@Q&Uc+;e7h@hy>$Q=QHs$9Ca0yZ}e87UrnwJ?t~z4{(Qj-j<FuEv<qFZoc|F~
zy%?|iXL2$EOqr+MP+rcv>M0-~@Wp;oU?rn)cuhrDH_W^<J|j2xc1itiXk6FC%dG}}
z=LJ;oHM);IP)}a1XsD~tCQqL;B4$pO(-QFR1hu>Zhh`xZ13#YY7Tk)X9Lvec;UbIZ
z%N_7JJCs3t3MD_rts7)_@2VIWU?Hl{HtSS$bnZP~_dDq{lpPPaSbEqLZ2%@W#IEak
zb>p_<R>P5ODU=p*adAe&#rl0OR~`A4b#y|RK6=ou`X)bg__0wnO?h}>XJ;p&pb)X&
zFlzh5=V&tMCOXl~{!0Hy!^?*g_78P*bhevsV9%twPlb3GBDRYheB`{a+oogBx3IWQ
z>hv1CD&k0xh4sTJ4?4um%jvU^`)6^(fr#dVVMD5&+N2*=yg$|tp>Yn)R$p(#jb$wL
z(3ThOvM3ukC9rw<1q#Ky3f1oAy|(x1gHS_EH~RGL%>B8XDK4ZCbYm{2={BS{kON=e
zCD=M>8U1P=_RO&uOl)XK)wjslB;2Ni|1-ed9#9pL&m#Wu^TY#KZ+N<5b{|=JoEN{2
zvaz#k`}LkRXDe0F@~7Xz95a56<CWfmj9m6riatjI?}Apza8MU6o_A4SpQ_N&go{>_
zuTQJZ`}p{|tSI3-p2||EQQGu=)JeZB&X3zgupR}q&wm?kJbbW1<4`tAfR-Q>nVaTI
z7A3SR{qqGPy|54ib`~=`yM$%#*SmtpG=v;Pf!}cYOv;?*f4pmzYc$NBes$j1a?u#L
z#d`el)v>P<^p;#C7^(sID;Lr2DL1b$`_nvyC?Oljv*u;&k5q5CbEjdGPE!mG3Wob#
ziQUDgmc8d$74q8x{p?90U=ajCZ~J?DX&&?56b(LJfk12m4vN5WiK&7os^9r>mj(?7
z(Z<vaJEs2fbWLR*osqBeMr;u=)M&=Kg82mnI}<KFGSgT4xgzSe2_ge&o=ZtzhR5pM
zOX9@atXXjI6K1pmn1=5s|8}g=Q#nFEn%bPK(~Lfr2+eJ5G_XDyudvY^NTj>?2o26o
z7S)CH>17+SVYnA1t*VkFlj!6H9luKk)xnjU{Dv}f`_G^%$+g^vWDzv@6&)S1?-Y{x
zBpQ~$yI2~8o#w<_FMPKHsl+!pVhxusj;5o$ej9N%?8oe%mbO!d)oz_0tP!Fm)GL1a
z`c-vosIL!?Z^vWty=L|>w(zmhfQ^JKW#Dv>$054?BUxUe(xH~+Jqh-h$itU+5}NT;
zmO4g0q(4D0|1_n*$$2|+4>p595u=@FhOLZ@%mjWb#bYnmU)a9{H><_GeE$B)cpdqE
z*!*=eI-{1l`g_-|r2Ccx*cV%VS7*q`gqRt%OlzBu5-H}_V7o(vE;&e$k}YxexI?Ox
zLc~|^V1%U%qDt8rPmq}{9<Pu<B*oR4zUv`I0mYrgFCKWWtgxtr*&2xO1LPTp@(>v=
z$*)~H*{h`6=D&rEPr6UDH`rTQDbtJY7Jt!VH(Q}jyQXbGt{{G2SJEx$1)v%gRZ6qJ
zkA&3(2{J#o=3wK!=vR2i@F-@#-?~CIH5Q7s^5UOC-Aa~Pj$h@?pNE1gu<6(G-t5Iu
z`Si1z-ij8dIce|Wn5w(gnj-iUt=@$+?NG5kYlFSLJyudWd*86DwWODqSN1SEF^BwL
ztrN#955~Z_D%Xy>S#j*g`|tL>dOkizFow0Y4P^li5l$jXSF#p*<UTMunuJ@5ud-^U
zhsP^S*?eVdbX`2}y%i4*m^fr#V665@$No~XgKUXI&0;(l*!@a^wVSA;uIGD2XrW<~
zffr{R8MSArN8#L>Ycx}sHT$}ZcoI`qOuAe{i<Q?hudvYjmu2~?7STP2_YAeT6FV0}
z$8=oJHmc-GjyA><;zmCDU7iGoBza2<`+uez{$6u+d6qM*^!VV}fKOmhzmzp0uI1*&
z>S{peqH6e)*kQ~(8DSny{SIqd+TY3wuv8TpWnW*)e>FLm)vb3u2Iu{0m%Qs@RuKIA
zP=cbLX=uoX1dne-)-0(>NlA6xHuw*U`Ch4Yz8xeIx2lUG8Y~beOzu=^$vq|A=@7gY
zAF{AFg>shMbaHp)0QOE!F&FfPFMce#j(sr>be+~Hcwk}kZh9+C1Kn6?L1xjl&OF4*
zn#aOb3)+T{zB~MyLAm9S364*C{37GyiCka2Fowhj<?-jwpHa0>)ARFXd)Wyfq|P?K
zy73ntZqT}|(dW$Z>f%VQlMYHT>>z9^Ni{WmWGl^M>iPv@0R)&QCBvp0V-+;q*J9D6
zGRt+?eRpHir0GTh<ADMYna!S$Vw~)fH=FU`7ro7cE$0=rfV~HahjaE=HK)Fw972ey
zsxDwSWuxIx)Je0t9qsSW{O!%^`${uw5w7?N`DKxpMgbut8CYyHtm=!~##o#|axkO0
zI36#rP$YC59&LLeV;O%i`bI`RYfVvmM2kDgyv~w}l2izQj0qvkVdm9sO8=haK(PC1
zhp-0s-cXTlj)Xj2YUhfpqUR+U(%87WC*H=y!33sgAFr5F+9_Yk_gZV{=zMU(zx9i_
zl7P4)!gbpJ>lCZ{PH+f+`uQ0XXEjsiKu7TAmve8-kLQ|)A!=Ul6B4pYOL6&<F`)wL
z>$xfF|J$NPipuBp!P>AKc8e8yo`#0T97L;E{VT5xO0Y*YONNn1&5G+>LeshVK((x_
zEWmFw(B;nYB>#q@NF^ZyCkoBLNM$oxit<&@ato}Sa2O|w7{Am5kNU~z?_1P!ccy3O
z!YiKG)t`kN-Q8#e7!R_pQQ7Fz)jU}_xs2hp(idwQ^{1-^#=~bZN_IG`GI;Y5@%wyy
zd{A_=nhdQSpbdNB_6~e*^k2<sG_F6G@;u)k-pVJvWuBMEk^bTN0=mnm+PjSE3+Mrq
zkDTdey`ZTz`xScg+1}pn_TFRLo3y_ypq^8`{!CrH4F$NMfP5KcAdlP{kFSMggnXUo
zP8G}<o<8Yze-{2anAta<K~#)x-m2+OR6?>ghC<wLsD83T@LqLkF$M-RQ^MgBPqOpy
zwm;(9TTlihEOCrgJDL9I!W0)L2)ie?fW*$0UZy!&SY?XDMhWONde?+T(<`RX)B<=o
zeX;4T9{Cn|8+uVPOn&;0(iRt|2g;u5OK~-N91`v%xGI&>FWpCGw)v5$INMuBXnoal
z9;2<UP<^v;NRvG>4}o@?pzi|;;NEkFlT<l-G0-xL8|OSgBTGwcmh-cfTV_E1=DVye
z-ax-dz_Q<#((odD5u6F%AUhJ5i1j;kz$$gUi>KLzPW>1g+Y))B%&zG8_;hWF6C~EK
zQcVC5wThnV6yCt3NWe4&e_(X)&NIVMxDc~Fiv!w+hjlo0hL4k0J8_U$Hhm7e=p30b
zTrRI319|3m)iFF?2e)gNCnAd3yLiY&s>OVbPoH|FLN4HhyDV^9?ZrP%kVQ^gPT9#=
zSoan3(xy4t44?fR38XIctpvxDL;KaRes%U6oh<G-4lcTsy7uaIC8_(5w%tq=sY8@m
z5}IrldUxI9Xr9o1lX$-XQ5L$(4FuQ6<K?5BX>zFntTaF*y5?d|xQ}FH{ylveXBlDe
z)A#JmKXzG{X7k(j91mhns!w-4t5<hDwY)~j%MHn!Ya&Gfyf-!D^#?X!e?Mye=`i(M
z$sgQ8Jdqi*B3F-iUcvWWsrvqYyd}@hDq-C%LZ@MY|8C-1?1IB2ToV_nrbd*c9vAg~
zIDUS~hIn>~lkNN0HWy&Cnk^~BkO(8Xeha_zF5ZW!ON?cKARJT_yv83BqtBD}QviQb
z?n|Ri@Cw?QqZ*6x(fNg>N(=Q=BJ<ZcTYkaSe%Q!5Wp3cr=f3PcUeZo!;PP+$#$C}u
zPfL6KT>!n+<pk}z&)KuDN^+#DVNXfzYc_c%ob4VpX0rx0H4rzdH5|8mb2%Pt@_Ajl
z)2izZmhYp<llcQky^f+@^EPV2&!6VQ`VBblMFwx{@{7fLnwh<G&$hdJ6@{v*FvVKV
zC-HGr+@!7Xc;RvOnvR(E;^JtC61sm(7R1jM4{Dlhu0JIgn0j@(tTeYS(S1WgTzr%z
zPe%C)ZXmKMy~H9T@#d!Iac6#xR@Ldf3Ff%jnbI(iiW3Y)-@Yt2D{z+n_;UKsbq**c
z9>Ow1E7B70S${cAYsSwPRI#<~MAbPhm@&CswYRI0HNdsw@?zpqe#85?0?u$yW73gS
z-hJiEdZ_1i{Yxy7u>(rtCWs3u@5||b`h6l!ecaL^K#`;JVv&$*sz_|*+~j=c&!h9L
z1nptCRt+c1zs}lV{>yP;S>>v%ZN1zR@Xtdkfv7+#y=Q`8<IHjyS@3Q}nkoK)kKt-6
zWD|Rfiz6NhM08nC_Ue`$7tC`1(Udv*sxj2lE0k_;%wIKCd!q6AT-*YdwfSO5oBY7(
zIX>W8HJ?&ZUK~ZuR8)y5NV3JzY8vnnCpS6K6>IZgm++;1JDcLD5Q8Y7I$0i@?pb!{
z%hsPHv(^gt6s`Z$0z75ec3*4qceom?INqQVX>*uBg4W2rBrk|2Fy)4(zka8aziQg`
z5ue}uExmQJA5ne>l-)0|^8T@#l1Uo>0)+^<g{UiIjqNO3Vw2Mi`@Z;D!k*{#F9Y-q
z;cd*yv!dN&``JD&)x*R}^nr1HQowt;q@-od&$>M-&C?LbG}vfk<uU26GE}_1iaE7Q
z{}8<IVhuPDDH2~f*Y?;QZg*Td_y3Q)t!H5prOTS<_l}8O%d<Pc3{yEuyVvVnc%yq*
zF(1j8sSG7LLki`I^kFZ&t=jL`xFuk#^%7HWlTXnDDBieqxB&VR(d^6)dPn%1xpGHe
zT;J_KzY`zUp&nkjV5Clxr%J)kKEuzbKCb@w`PYNTG=qP_x8G#I$A)3*k=M1WQ|sih
zSqNR`MJx=W7lEeR<sTK?*a%vxu2#{juL_2n7cWV+e10-;!h?M>m6cIOT&uqj4*HSX
zf9NnBz+mpOQwDd^e@yp}0F68N6o*1cyfnYSQYoG-reaL_aipG%&a}Co)BCd<KUnY)
zox{D`6{#BvZsY`#o*iuGB~k^wlMin#+fe-@S5*{c_|eEHN!z2bABiaEtFt9V<x<w&
zph{i+Cg<Rt|KBy3X6dcWY_H!Ip80e9>@-vP?bTIpNwdqs^$CYEL@K;;LOjI)3*zPZ
zk#@bf`|6v=bBo7m({(pEFJ=jZg0#IA!6^68h$Y=!v9lbEcnM3pJl>9%e2;Is!1F!W
zqMA)id$SB{&5KjUBS1y8kKT#HI~|Xoy^USe%6WNk!`u69SRWw2IXX`#jp<D1J<k5t
zJZs}Io!n{b+_`X2=eY)sDx38>CcU&2A#A_AeQbtYB$de5J3aM(&98$jLIR*Opn(DG
z%o*PC5CXUsS}&Fc#ah4`fyk?9k*<T&AC=viaoCbkXS=W17IQLE>iOW~%ild@)U>}y
zffFE$klcBIPxU441Wz_V;N@E`9)ak5EsMC_7;TS<`a7Fd-RX;3LGX4N%(kW)`dZkB
zg>luKQU7B%YbNdgx(ZaZ$OgBWpoP@b){+6Y2AJ34u#&`@Mz)I=AZ&bmj2i-@v>Eh&
zV|zyQV=?AbNrIx>Gf(uf0&}|-c06WwJigltdhLJSKOM+ZTe%a`CqET)fAV%IlukX%
zVaM*F(wI(6qAhgu{8K+TlFd9!_N-HcMf@2RUrWm@{ZkAO^%2teBA+?pM`F=Kcqjlk
zKj-DWYBP~h+mDk8(0zg;nmBY4&#rq5!S8d*i)c3DY6f^k-*R`26ysLg^thwn?Zva#
zHpX{`L+OV0e&TcQSbiJs1AG1hR{QvXHEo)vs=Udo(FLd;V0XRhBt_<3a2Ye6Yl+@l
z56Cdr-Cnk?NrXwQhlaZ;27XKb`<1{?1WBr-8Ufq5e)V9K_LAPpmArkNU&y!ia#pa)
z#0*34PM~ULLj#4re)Lu9skbnIRd7XPz}~Iw>@e%n&ei<#(G^(s03|>6ZhV)fl)I)T
z@7rpIih$}HL5+jjymoLs(fczPT0-+f%dE0cIy(_Ma3JMA?U59HEst?2qi%yW90gMQ
zYR-K{geb8=YXmJorfx}Xt-!kHTnH(mP=oc}y?fa{NX8bMG$JAbevM$fn!I)W8qhT|
z!_X}Dd45PvHs(pno{nlWQE4r6+t8`jEB?HU(LU>#UR0zY5Jinj6B47C8(Y~qU1E#t
zj`!?c+U+Y+A_=AT>7pj0Fyii6lh1KP0o2VFWh{-*3ubQs`B}Z!E!f+Os}t)6JxGvG
z(c7URjg|gIC?nM)-hBG8bp))eC_t5XXreekMsoUWLD9T-@@HTmn}2G>_4|gK99m7w
zEL7jIm3Jc~S7tv30~!Pk3+w7jK)~o21!r6D-bVnsCD8{cw^(G@k=O1~5%{TB10?{q
zSTE)E^(W)36ZgFu<^+=Y>;lF&;v3!TCILr(-{`mf?e^^6$=B6DwFwzz2ty!vP%>wG
zv~ieBWZGhA-TP<YlN&Ry7;FKs6H6l&rBE;+^l|a=*Aca~wc9OJms|@YQk0(Jr>;jo
z>7ud)UEfSi_2e%8-Q3jRj!6P)`|ZZ1?1JdMElE85-I?#>Gn>?<jq*swo1>Dlq6%P1
zZTAT$sfkkYxdSh;;`g6DOd_*0GihzZbcKe|H+^H6m~<;`qo=OS+$=c_8_AoOi(0;g
z41aw5k{b1U`E<W)s36+vI;EmH`6Ij8b6RA)hOqB?5dN70>$fA|Xf$b!Aps$iYMJ6x
zL*KGmGGEjw&n;{f9WyW{nP_UexZEell9H8js-3iF!38dy#?OIAe?sQZiCkb_I9=|=
zOh)ofcQ3lfme|lU6^nO%nOm!?bHNmM<SzXc+H=ol;%`N3DV4jfAW?;9JNH$#ncF;c
zv|R=C2a1yc#>{RNQr|tz(;7yXBJbvOC`EJc&I5UdW8I{xUG(vLyE(;x?i4C%SpAyF
zv^&MpZ;tN<N(+oCv=9CsoCc4_Ji=DCv0(+USEERWkjHbX(r%pg(vl-mATKX3+Sj5&
zr_7DuP8%cR@-7E?>Bpb8d|>gX@B#n0lcCQ+T&Phnr)T1xbbO@A77$+m+zH4B&M6*}
zV1#1dEVb5~3-PSQBIn0(ZUFv-<*-zXt<MLA$=$w6kRI#gQSMWrH2z;~A8{R$n2YJH
ztjtpGODKI?y$ilEX0v_1miC$Aj!LlO&E8D2-#5zb#`y~MYVfdvZh+s1+5xJqB(#Hq
zB8r-9^}@|f@uW7cp*7m%+kyBl$Hb2xl5H*SN1KyY_VyYnx!|tQX#xl?`zcWOZEJwF
z6BS4SiZoaWC5HzGkpc*v=$H%-laHZ5z<{r_2=7dXjLgw02_v^P%5%6-=#iAc4Eaim
z8VzcIiJ3k%&d=J#hrF-&$4Wq?wF7#TouC%m-@%$4^|V5D8=TwY4~5%s-2!vuJ!QBr
zd+Sv<xOm>4_ZJ(KMDgFS1*(FGU5DPsZ)Z*-E+Ii~dVIreCAI>f#=Pa=3W~&YvwK*t
zZu#fu-}Bx}o<>2GS5#yG;j^RcERY&%UkiJD|L|~bq|_7%kokA?@&YQCUfy$lvZtc0
zO}fEOlSzPcg^j96v+gDcD8PH%3el*`IcndXzxkif2wGieBP0XMDAuv$TBk)^@9PNv
z1@MS;1#q_a2Ab;XEO_Z=kOrYi1rR&I(D#wqh!d>X_qc^h_6&&32>`EE*=A#q4*2>l
zC%%exaD@zIl+=zxpLGQ^$_0cP-{)4bSnvI8v6K&(tK8vWmt7*9A6&W*v=f2Ja(8Oz
zX$aNDUn!ZUABP*`Im11VkMu@b|A%w*O-KN;>oNO=IEE4(mmv)(RbVv%H_z1NAf5DI
zA<&e=!Fl3N739`F|Fv)QnA5Q7n$qQIA`;hFKJX&!Uk9O9Rz`+s?@e>Q<Wi7aWgApg
zRH)YilgHh2HDVeiBT?*7zw>r=4^*ArttahYwe@6_dz!8C=YNteojEi^6}fCBpqkpV
zj84i;R|SxO(B<*GOw(r4{j@6oTTw=6%cpB42?k68#F)6fuC4D;4i4|5g|;U&c|3wb
zb*{aqz62O$V<6clyw-|5j%S0^__o5l&9sH~3V+)81xUSvqD2*M>P}@D7THdBH0`e`
zlxw;r9e1l&G6?F;lsCQl4TZNu7q^BC!@~4iJdRML0(-kOR8?sk>}_nqYMQ(m&aCkH
z@o*V*yXcv55CXM9eYkQ%wYy(yjt>oeu0=RF^OE#NJe*=~5cb$M>bi)c65(j*{`7`8
zg!!yZJ^*x#PM~^tw&XD3KYh8w+x=qKhc>^sI9?;q;ra8B8jd7y{tI}`#4n~>g0PiD
zp3r8Bge9RwL@A{Qwan9<h9xJYn{;^BUowF_f<8tm{;;CNN1=C-VfF7{|2C6o$=3ku
zyrEF!H1z+Pm&dZ|OeH@0!=#jXh$3r0G!;bw<<IY4V_dt_Q%pVb_sl<$41g#OLS8YT
z+IdkH3NO%0zz3+`LaoxL+y(phdxY>0^+4L<R6K59hY74PpoC)D+S*?B!I^l(b?^N;
zmOtOAQo3gnT<&36cvHB{6ZEUM0%;0{HdVny(pkNZnXRasC%evis}w)Z42Z<=JCGO@
z?5Yo#WQlrQgW$UGfn;1@vpXF@jp{KU@i4Ra+Tnnjl1xe4Nz_M=IkXk>Y++EVXi2LH
zhkR7bZK-{+mTl+NApE@JEpXwISt0!Gar|MW9(IUOdYYj_J<F<b%YlnqVK%NK+dn<P
zzhv)j^?l#lyjjsg9n+O2V(8_wR#c^UBJ^<5HFjS|kB&KdquC6-`&-~`&~KDF%}eGf
zq9)p&j8;3*r6@Ah8#r`HC=ZtyMrj)QsB?QE<&=}P4>n(BwpQzL<h?Kxn0x@$if|e>
zGN<`g`kc8z&69XwvZDpOT$jat5HS7Zb9&?I`Lq%QP1Te3#}}80<7Fx!n#%nl{e+xd
zwE6F`xPVE=J)45!)}PFd1MV`Qn4o|E{(T?Q*h<%}2Hy*>6`|etlk<}tmb_%M&NY8V
zM_DNPM@P{TItlkiW^4c}lU?5SYG6s)`M{{F*_tDdXr6VHMia}N@>*jDNfOBkQ!#`4
z>Hhw*`kq$<?r{EClb_$ua`Xbtl3R%Ksw!YyBZVFTy%KsPvA+9&1OvD3COc7BIeYa@
zN!!6)51~*S6sEA<z1!_T96!~mrA_UDA`)I5NNj4a2OeQJ2I=8xx{v%NiA^`UyM_1X
zeDe{Qn^v|KL{6{IZLcmbRH90CiXN$H;)irD26UJOfHV!ben34t%v9-F07R{*r~oMd
z<c_z%U{*qK2GPOFF_8Ot9E!!CK1s?Rwn@mg#j|jK!>xMw@FCP#5(=s|*4EiJq02WI
zbt7!~?m|7Z|Lr=$+QtUnWQ&{K(uWZloMw7vX=wAAIl9`TV^jZ;@UA8{!4n@I*wAin
zLGU_w(mb$g9iYo^La3WN4iL6+*=V)~dyxiugF)2emxt14ke%}0+^=r40sanv>AoFM
z32?`#4oplSNsf2$jLq{q&0q_iMqr!((#&GaQ_NMXU7~QGxQ5`aJ2PQusG+s^2R@O+
zQs0Eud0oWY04d;6h0Oka#Z`8?lWKhjXU!UqVQUlPD90`A_3)Z{xyN(f4~a)Ck+uX;
zQI?Mztd<c^nFwLmI1O`k<fa58H6O6k&FM~fWY+0}CynnE*jHoZ>{%kAlz&gk11psk
zrX8GUH3j_=Ahw}F<s**?irZL{Aj>|DAt)_CR@6&}$ZFq=K#z8-=UE+Epj6{cCLw6h
zR?3RPie7?J%Chd^t7@G95JXwl$_0r~p2{N^&lAu-k4E~~0xE2K%F>%F9ZYF)m0O@?
zf$h22nf*_ZNHA$NUgeNr5?1keWURu*xI!nFTxom9Btn_1)Iy3fxz|ek#ft|hqRREt
zCd8wG*uwma)vY?|j<7su0kqJXP$Bdz5zU%R^3LMKpsNdKH>^~8TG>jd83u-i?$s*T
z@+D`k{aW5b78I{Qkrm4quAAG>q9fbN4?P3m{?G!bsHxF0P=S`ix+bLJaiWLPH+^x?
zY8dNAey3=1m=<2~aI*5-e%b=>%n9@4!n0xOoqfJX2^9-tX_yiY3dk+qxHg5nFsPBn
z51!u~vh{sLQEFCiSMe~b%I~@ZxtW~uCuUBTA0i(#^C@oO_LhUh6g7aWDEqDO(O*ui
zIpV0|&{`$EP74B})(5#JimYruTQnWCLtEM((S}3EPTbmMfBhPxDB{cEP!9j4)58QD
z8qjRva@zzjGWvh_W)xksuM6F~4oT{lRmE6JaZ`slcUdx8C5o}ritPk_T*e!H<A3;q
z8y+w2lW!PG0h<Os3|N$PKQWMqKu~Kj+I0(Wxj*^^@ujTDJGOt}5_r2-Y!F;ihVHZ*
zONmq{(Pq+z(xH7AebWnfy93ScXLuHXb+z?I6`WLjA&_d>IOqqoFpUr*<<vHF)@b*V
zG!rAWc)E$-@Bl(OyWS@HzY9UyT3mh(T7MOYYy4Gu?xgi;prl7$FXzcRJ+on8jOTq`
zwAxDYseVvh1J<e1MgJK_JHliwa_Hj2V*sO0a9uq9OCa?I&RNV%lzAt4gH4BD5DXs&
zIN+?qR@<NLYNTusSLIIY0|DDv47TvbgWAp+!M0*9co;oGO}uA3CH#X<W+}-{UxE*w
zAT7iOCGX`#(jXo$XyhLnsQvN+bzCMnktSZbQFoVYfQEr?B)(k&7hm^HHGt5a)l=4t
zy9$kWs|?&p>%Jows;4LO=jR9t42Z<8YVk-ehB_Y$Z~W8D)5>O4$D}`@_Gh@yjHXlR
z!O?9%qKwpp|99YffDoHD@BNtcuQ%Hg6H(J09Dy>1D>A>ClMS#STokKw70oy8K<z9^
z4C)bhJAf4k2UXd+zgx}xYP+As@D~YGH^vtHzz2iWR>!8d-8WkaFG%QWf5TCU9Ju-S
z<=2=bZkzqVgr1g@ZewH!rp+V>6GS5;O>G9`S&dXq5(#qiPj|#459txR<MHxQ`XBz9
z;E3!7kbTA6#W7L_Y1D2w>mJ9imIFd`HPW!vctc_A4dUB4sE#%8L~x=X9!#OEvC1M3
z7T0=nbiZ&kBLPLAJdQga3PRJ6n^WD%>~&7qQfAppab&OvX2t}p<`+@dQx)T<L1ynC
zmF;p131qmDz<Y_ig=WrsL(KHiW0!pxEFhsI)%?$JfdQ}GIR4Ch$k}s(F`K+lDRq}n
z^xp9vdS*2}13vVGgq|OBU$wQqT48bMYK3dJc`|d{1EiJ`Ms2por~LwmCwwc!0Qbdk
znI9~@YX=Jmy|cHon9R{`<KQQ-n9ehrqJ2_5@*v-h<bM2S{z<jl$#p$<1+?NCXG*U#
zNvAw_6c|eRyK+}zIY-pn%?Sr|T(O2(_=)N%QJ7vuV;O*fzdbo{5DBkQdMfko7U)72
zHc?A!%I<LU_Laaz-%8$irf(QIZeNS>efQ+=D&>!pNYP`Z7xP78X~wofZazbWbLYI`
zvH&_WXV9Y}e#wP$1E_p@%ekb@?6C0q5K7Ls&_#5|Glek6y%*+IO<ciBJ%@9X*c{sp
zOaMa50%Ax`*&Z<*H<xO<tcDwvztnZF`41OWYu?w@x6TtU#_<S<m$Eisc&2U(e}CDC
zM*(nnnpyhKpQ*769IDxvV$(<4PHZEjUyV0;kZv~Gp-HwgIrdFQs9C-o#DYD*yaPLv
znToYUKQ2`3*~46ZDlxhgCT8u%@=OB5t5tOpGSc=lCPBwj^0gxPwF`X;%C#o|*>yzH
z(RFbw35j+nSEi#*Yt@k>J)5qbb8cW%_#d8qhdXB_El8?;=gneGRpM&loHqtcU&Ozt
zV*e&$o8NjYj^Ny~F$Ks_oYY2^U6jmfdy$jlM~7O?gXeR9w)rgxxp6;)0#3MHbTFK5
z>x*k}GSA}r0=wWJru|IK8tsE%9b)jkTnt6n>a8Ft6}?tZOT2?Op*KfPH<G!yg<nlK
z_`F2}XE%StQUMaticUFYy~L>5-ihZANJ%K$3p0gW3n-+Cdi_ph|2BEwoboyn8tZl(
zAcixdSUAz9fm;JIM$UpQ|1LSDrJVBh#*+k1)4_;Ek45Y>Bodlgcz==JO2g^eX8nVz
z+E$pos>TpYx$JMy(Q{c8I=?LH2iH<TPO@aaR;Upygm+S9kYK|uYHEuX+VaUkFAUzz
z$Wbn`i38-+T+JTsx<5Rz)8OJ>3}M(RD3-axprxoV?9YIp`Vc!+9fYE^na=^x=M~_K
z<eV<&*Dn2RZ{&f|CeiOD=R9UO$kwu$({`-3_UK=%{!sb+@eXkp`}fI$1O`^3LC~Cj
zWnd1-zx&HcYSE<rg5#fj7_;C0@DIDLf8Wivj$nxwfR!_IK-T*L(Wh;Cl4<65OPaBf
zmHa;nAjV`&>Adlq%7kZUpIK{W?JF80$=k_5%uQd~P<+7ld)vc-1wamjm_8sUAcbJG
zB$UWXvgO+}jYNHop{;27$&CD|V(LcV)w8I7A)Y~9_0(5GPd(r(`Cq)VeLWEl&a@&o
z5>nIo+B*ab&;NMUi~WnGF&seLOgA$(ddVFsrFg9BQN?q7fXR_8H|G2TgBp@y&A6Ej
zy0m}8H!8C949MHRe%V+rM4GEQ*eZ^I2<PZI%2pw!GPtgNay(|p*7EA8$JARW{U7+w
z5?!95{QWEW3f@^Ec9^9Hp6iunLd(%}&Te;%eB?ln$}f6$wAH&LZ4HJUmqY1F-M`oA
zrM38|SeumJ9w~y%F8FH@l)oSvp5D?FBtZCoGlI{%#$hX7kZ|9V6rY9jb@-c5kJJrQ
z3;XkyV#^w;3tg9B9OYuLz;VIjHVij{1`OsI+e}_TZRg#Ae?3z^dLZfA@^23D#n4@|
zk31W~kEes$az>|%9ugYrsQlX@#^Vg|x-;3BP_JKq<-fn^R+rJgGJwTOLlnmFoclIF
zro+Qbi+XWFG715^d%PoGG?Kg2K27HJoI18;KC%wV2(5F_4T$w+d?L;(g9N(m8FTy5
z(t2)3wZ~@v4gSOl%wdZ5&CkX4v;~&>o9m>K29#V5Zm-5NvIk!fGH7vC;ZUV5We1DD
zen*5Oiu373qj@LeaFP(f+Ws9MNW<D_U!-=Fz~~MEnpU+A*@^J1j?MRqIS(O9m>-j%
zWxQlN)&b4{a3~PnjuElE+B>@lbs5<>eCOjTkUA&aO7=-w<`dL!wh3jRb++3*3m@<z
z)XO56FlUL<z7!4_Z}SNBBc5xh(<}b6rSM7a^r?2kjjU>>PRn<~E{#-j9Ld^6FhE*~
z0*r^ac%t{0lYhYVvM3XyhzU%(z@3}TG^2;tZgQP$A9*!|7V`$R;O-&-b?rL@^cL`M
z269kQiz+B!rYPpRa=?rPjB0@5xNNlW?@&Q;G1f~;Q5++_<eUq@Uv5{8QykR76ati?
z(Dfh-^M$9m{i3=3GRrQ2db@?ST`w5Clh(szM~u&i@BmD=rLr1`3n+T8C&~w(`!>1O
zL-RCfjVUt)qS5R%7^i|ZWyPJ*3s4*clFo>97uutL4DM8dI(@wQphMVBhvMY(joN~x
z0t(47y&4a!cmuw>Q%bc+nY1%VbU;`h0LpQCyZ~xu&^U1rdka&6R)(NmFjW!y*1U?=
zSw{fEWyV3nk)mk%-3cjM2Mm7);b3bUp1A&+j`1xt!73>*0M+h;1%omG39fj<8{27w
z<$;T}05%TSSaE$?a8bW6J~6!LoB=pt0JRY)u4uS{)qyt-w`x17&|!z(8E~|mVAf*+
zB-A$NjranR?Zn?p)msnxv&}m8J3B4rYYT`!%?&(v`rCRFwbMcouYC2b#CGbYI+PE;
zaCD0JY>zZ)(+(FWrT=00GT2@!j#a<&)N-@eIzx)2Ha0d?(c7U*!*yqi_JFeAhQS(o
zRZtFR?18`yo+IniC&ugo*1ner`6-cfTZPyyR?52P{frW{HGWsVEGoFV3(&i`2HmXM
zeq9%tXtXiaaJPAx{jG^}T!d;2ih?}K_V#eGTw7lM+|MA2>f%h4n<w{8Pr`K_m|Jo;
zd|(_woK$@MBi@@e$}mO`S1o|ycv?EWfX)E7Q00l~VnN}v9ZCO-hs3c%LhA(;&hK2N
z29?1Q^3*rq5F7YYqoP%$n16_)7j>~Do&%XdhKY<@<tL1Y@cF<f!BUfx>lI=$HJs1b
zn*aVq5#WG%+&j4DBqukVYuOohv>LsgzfaE48kZiJtn}p|XSe1oX-f&kpQ)(e-goL>
zaaECOP=EHUHT+TEi#ZwQ){BKnpXjL@2;43G2~8o5f3Wm?QPmW5f-3a)b~P&UaAHS^
z4Lq*Zxov!hDV|TRALXNCps)e-YiHxE@m+p@?!;^?1&+lN{XeUBImPZmS<QSSc+zec
z7V$r{TNc~HlcpR3<)F2CirhK}{+ebhtyK+R0pJ@F5n<nqlnDsWyc<7<^u5Kr`_zPw
z1VaU%t8TKG`RP=XpNN0Q0>i{hP$~gf@qJ1VQ3x{w;L^3MHa0e;;6m%8Wm3_fgY|X3
zZAm!F_aeJ{e%<;j+xK6gIY@b0SmTMt!I_+zFPA-#flvI!<krB=Nyp#UQ-p`1qKnG_
zLh9GAU;K+AIT0i5_<Bn8oC|g^{W(y+4(}fJb12evS}e*y(Jz|SD@~WW@c)6|6(4|f
z`3HW_#?ZhH0p<mXbC3i2p%V6HZFLpt;}VY}h4`GDWt{3@)MK*=G+WSun+1D2cE$oS
z3)>!sC1jq}8*m~CAaYQj)vM#a{y!~%le>1Pz72HX?Ch`eve8hkv*<F`gNnkT@rcy-
zbd4^rR{Yn(;`8mZs~1$O9|c~+Kzl`tObA1m#eCh}l9sR%zd|==H9kLk8os|}XH>?F
zv3_14!lHRo1QYGR=)urtZhum**u3AxIQGsTL&Li-(&C_edIBgsiG9-@hP_Z#&!jkL
zab_Mn*bm<<(rQFlaze_N?AEQYR{tp=8{G)@8^B5kX3l3y^TvB}*o{e_&_|D&m?E^Z
zwHfg-#5~_!q#kwhtEY8PG|#Yl+>8kmdZt=YP7cGSPhD-TDhV2H@BSn5$ik0zr8yRD
z#NxVGzZ?22S_@rlwR7`)(4UkI0tw4lKI<SBo%w6?z3nkyVb^{c;cvS9FrxT8l>Xty
zL=8TO#BU+UA337{(soZuJnp5cmPD-Eb8TuHM-L3_$*h+9oN4myi!n<+hD=0VEX^?z
zW$^C=q>s(gt9R5t1rz>x$d&KLeE-g}tW447W{>6Lt&PRcQnaBQi<8EPFOI(4l+`X?
zVOx3T(-~#ei?tI4{aSi_cN4tc4kCLy=?BkcVE)zBmi*I;(FD{74SOv1HH~^3Tru`e
zqii4%$wT(b(bj$ODC{YQ;SugDCR>Tdir&s>7lB#F-v?_R$l7*fj{c=0R}sVrZQeSP
zqx*qmlw7VFULMJwZB5kNU(kbD>(@|VES=*n69Ewf^lYj|;oKwB2m+W$$aUS29$p9V
z7<O8(Rh-5TBB|e`5t8eZbq^OvPF^ykaVhB~$ef3kvx!Pc1?^v=Y&HEi<3Yb|kE6mT
zqYI55Na4Kgeh;qHo2i~}Hj@^fKec}mq7QlHaf5sS&wKA{o$>MUi6OsWT*7AM05tg=
z4S?<8pj-p%zXjeZTo|88Rky}D$K=O^c*t@+ux<kvCWC9R2x3-^LKwMtDkc_avRnP%
zOvKF8%Pq{LawmZb5ddA`2k)k+9#xG;{7!z@V#Fmcs6wCF6*olx*~|d9F~=~vTaK}9
z?Y0t><Y7-W&VF0$SuC4!Nin_ZB816Rm|=#gf{<!M;91DX$Pn@zIxLaF)^>L9btF+l
zn?cIhJ24Rs8x$!{4BbnX|MXezMs`b8;{iK}RFRXwFfUZnc$!bJg%oUFkYfeWJ})RN
zj600Q9``w2$<0XvoRZao{1)SM8qEH(gv1&`Km{J}Mxy*vDvz0Km8iIj>E+>Av8+j&
zC>I-=-!5{M`h8Yd1g9San>H#!<M=j^YT<|9>o$oK5{gu1!EjQhu`wiYjXzWZyz<p{
z3-&xrv>*_`z|ZWoQ(?cHK<BKdZip|z<@LMt22OX5N#q2L(sLpD-F&M}2-?6}NfV`8
zlPe1=YamQS00$7d>ugS801#X}ry&QXpWjMO0>Pxi9M5fshJ*P1vbzrT+^efY*h1U>
z`vMbPRWPAV6egk5hZKk}{%s_El7cz9yl1``gJW{uY-U20avrOyqYHlR=5+0H?V-a{
zW6?3r$LtEXg@5O9l+Mjv508W)`iBLBWIJnlxgS;63kI!K)YWeqeO;4n{G2rbqyrst
z`PqZky`!U~4@yrq-J4h&e1RDF<f_yGg!0bud{hwq6WS9Wz~vOybY329zONncvT$kj
z`ULY9|9EVu8y*zd^wHN%Qu3(PD&~gO_PEyC3@+_>r1x6UUY;rNL45_X-Y3+}D9l*-
zX0#vxiF$m@@POm7d6UEQ_JiR#vqe1WS!kWP(SBWzdVC06JF-L>zwmA1r8{^=bU&^t
zt~Gz91I2`R(A9Ft_n%IG&g5M*GTFd{_%Dvq1@Q7$PoA8{a9%#I8VBGr$8PR=?usle
z&o|c?Mwsye{V@Hb%!&7hn_Na;<<>U`JGZy|j!8hS6zTKi770u`!mPa0+QH(8`*z{j
zth}yD#w}C%fIg1iB#o`cGy9c_&c!<?W=BAb$(2BEGyT}Jb(Gc6@Hm5Hps%<0)qHzY
z&^a4vz*<`7W5<QH8j$V_Srh9br-`_d<PmsV8o0z$slU3uL#|fsDzxV%D+TrfvLh4g
zG)%><mUn+)qf&lSnm5GsfRC~{zUg-{%Z8!P8bPD;o;g%5_oY2OYo0Yv3=R_Vi0iH2
zVP$7mr<ZqzjR{_2Zf*|GkDS>nk)Jy{GcMIi?_c?1)tmWF3tu~k{R4pJ(j|c<xaW(G
z{4vhIZQ(aLD5$9Hl2NUT&X6~aKnbGe1-v>)NQ5Vx+9^WQN_49@tY>|*^KcgQRd#&>
zN?4{Duj;PJyK#mXMt{;p6>h43sU*~tXa(c}@L3WGX&%BmLe0x+Lcv=vw+XPmEwq1-
zXM~1g<uSUj#$_GBmcj&+&ZG&4Dm&T-{gfyGt7aNY*fd#Rzpn5dc-5bFFxzSP>r&hb
zM4$m|1)U%AD82sDtW?zBm6{^7;3aDr>I1e6wC3p<88q|6mM{KIY26c7%*m@KhWRF_
zrk>x)>=61Ef<Pb#w&yPAZukJLjifoCVD|D&>&f+CR?01q%j!ke)svQpr=L`iB96+n
z11||YI@Ew?V)&>iUtmP)oeh);&z?P#K7$fyh0LTt)5WE%TtBz}&A_7$=nH_YX6Xj%
zi?B#??j&524yt#Uch5xUPCVDj?GJ%I1eo{90uMb<N60hA(&9S*zm~27D$4I^gQBo>
zcS*Q{q<}2#BHc(WEeHZicXu~P*Rq5ljUXc3AuR&ZNOwv|$aneuzjHX8J$v@v_r}cJ
znLE!jFN_w^=*oF7pe_38Kb=#ydQg~UkYFxNOZvy~qQ?=%SAz;y%JJu-!U<XjS4wpt
z2lWXy1(HgJk|W|*Wwj%BiAu+;fwe?EUI60;DHHqEKB8{Ff`03dNEIC|`vG8Iv_&;n
z398KEk<bh3gcd-TuW_s$)hsh=7GAYT*j54%2oMTU=p5fysz5^hjBTFZQSm<VO9!RF
z1{mgmOZ2GR?O5^>)I?AakTX600%&JdSCMy44}caZ&)5MG0qK~?iiW$A0)P$E1O=S%
z`6z&r0X~uXfxygPCIB!4z>LWEfK~{+`KO69OIMllnts@^ajHw|8fT>P4A)Ed8ZJYt
zw|jPt6yCVIN6V{`Cye+pPonp4JWM1gr?|P^kVrLZy*?fQ#ZeTuO18(hN)n;Y0NVfv
z0&L~Ch<ba}AJ4~Rb3KaxpUUZ_hJOVXsJO;amRa1p^NV=5;~kq{o7LkP-SF`m@?0Dc
z<*Ct#RczNb(EKAKvAfSrqX4kot-8Vv<oBF~A7OPQHIxO8R097ONx`8}{EyTC)=If!
zs~`G4HMN*dVa}k^t9m`9`&}3>CxDne;n2L9Qgyie9|=Q|yEz!36+R8fiEp8@MA;&e
z)L8OI5wtx7jLU=H0TTXVOVyA1h&BwLF3|{cDyWZ@_yE*eV6trlxTeCX<8L9GPT*?c
zU3r8SDQDe2h&WY*sP2jTAuw-MKsb0uafrW3<u;~&_JbpVd>CwsGTX35kqTQ2fo(U@
z2c(%RGO`sE#K0__$QZ3fZ->MI_6KiyMzvX&hCQhGq)$JX!(^qpV?jwp*E^&uYNxii
z1Otf0Qo4uTcRY*?v~qwXs22a#NgzRcmWJq$0PT-E6;xX4rrlajvg4)90jBQ`gq1(}
z`!3o4W5>S#j)}@at~faP_%HMig|Rp9vM<eZ>-YxBa_#qnlZ>s4BdWs=gbY7HE-DVz
z>1$sejnHSV;|I*QZfg7gad~+$Q!D{z8pPrnIkIxs_KbGAM7P=f5dtDi0NbRj#O~VK
ze~S-d-Zu&w+I<n_n(bXqJs;ZcBnvS3Vv>GIlfQo#o-UdE=(znY1;u}N>5DoQJx}d?
z^ITyL4$b>vTefryV$*=BtKkSB;yCLYJz28TEIDs?!x(&F)(I!)t+zf_J!aMGC;&rQ
z_N!gIUKcDZ_zf77U8=svBy%7?j^;mQ<b{VH#?03J<1XX8Y-MHDZu50MG=@enub=>9
zMB=uI^yMAJm1RB0Yd_&_?*hQ90FG&h*Zw!mHnUfMYLGV^6{c1moKdrTq3y5RKvr&S
zauO7E;GQT0z?gi%d)vOlA_V{k0VGKa!W30i31aERB7qrd-*W|#&Csug2q|eA@|L?m
zIFO}oHGF$#r;tc1Pp(Gr{TDr8u(1LOUulpZ#Q*yr_ggL^)m>Z&<olvQwGBl-3SgkX
zhzcpKK27bcl*C1L{TD5PfT?}U*%Soek;2f-A#yjj>Zu((D)q^^xvb=Iyn?{T@xu^Y
zQ&8%w{burGS$db<IYBG-xxR(N&(yyk1|M8~|K45ycjnpk)?GE6XPhS+<fcL5HJL6X
zhE7~R{M3%O4y9EkZk)TQP$I&@uX!l*>T*Ev2V$D~`TeR}hbU%a|IOR#fsG`H#m;1T
z{YH*gfm2AMtV2Yk9Kiko&QQbc>_T&xv?25zn%@TgpgmOuJ4FCoim<cs3Bm)tNmLiA
zXg%<5>I@^Bvqq(EyXL*v7}s=Nqm3;8fZjm9%@tw>#qTn}sBt8-@FIZlTi*?SCmP=d
zL58jxEhV#GE7iit$sw$rz?&86er3dIzV-HYOYf^~_FDSF<v=S43=2Mf#4o|syE6K)
zqM)q2r;*$5YrW_Md72We?;}GxZt`|sh9t+3p3^xRezp0UX!-HXhDvpbu-KdcHtG#7
zPIFP=!<Dx?Siq&e;)tKza=uX^O7rmWcm#!F0)KqJhDM=u!W7U@Qxv6#qJq7+$@jCn
zMQzM%EG2}5r~vZAXA+vuEjjf4yQH2TwSl1_C&SLojP>|O<&-GHp;qXqh7n+cM`UHu
z4mj%^#2IsQa^h`mZTYkuXna)KI_K$MT{X*sIot!^3GRvlfTo<1QWp@vg!J_Ods3_Z
zQUb&nf3gO%j`dRJvsju}*1q*!f5f%G>GF9va0=#7W-Nrx;A6X36gAT+M@Tfy9g8u|
z-ADtuhnB7ss5P)_!N0ku%57@W)H=#*J^AYg<jq$IHAO54qvi*}T?E3PHf>WOUXv-H
zwQ|PxV>dpMUDm;aWW6_*R5)@d^1B{SN3ZneT|O$1&=7Q5UW$!l8pQLy0}GXptI)HL
zgLo!F=$oS=DO)XX<UrzGdzPFY9&TA2{uu+^U*S>bWiPa2T$$B52|ZcstLd!8Uj(6r
z@j133yVWWfEfJo69w(d_GHTBMI~iJpe_e%jeRHCCcx>OpA|m{vI`1Rht4|oV)HxJV
zQp;rI<gT5C#ZoWfwX9fZa}x>|SH%gQeo3S156w^ZPZ0dGE#&gX*C--%=AV+ij7%aa
z85zQ6tgLKo{p*d@;kL=eiiD#z;+qot*gZ)O;*zpdqhn6VFnzT+X@@h7;MnX^nX20u
zi#kH02x&OHJy+HL@#m0DMMAW`yErcO1ImH?)^&dfnbq4wmA`cGp5eXCaa3k*yyEY*
z_6I+t%o?kzc+AYq7@3(@LI*THBqm<Y9WLmD(;FF=UitkOxP+N3)4d-dWlCiTNMoOy
zo=c==XZv(+WTqp({fjwo9Xs94$B<|B?-HNH)DqmRJ{`wFIO^nr>FsG6aR$mb@`s08
z>!_*uCnb><6cm8lRo&sAys3{)%J+frqzq`()YK#-B#doLo{x^Ir71mTdHk43Ow6Zk
zc4uW}g%g>Xm>3uwj4{wlOiavS-08hxpsh`Ar&2`oOB!q}K@7IApP*=qdl`7(pRsl(
z{yOK^3E8xH?$_R&&TtO66hHsq`PeBJFDPpxZDL}AoSpP)t<%!hPFXtz{xPR{5#alc
zl%JqbC{R;MusJz9RIrf^j<!^xZra^pFBKNyhdIemhwS+&$K4g({FhGFR9$-_^mEDc
zXsSIfXHq6dw6(Q0G|&C7e5%r?E!TovT*HoDUI$i{`ecNJuRUz&_k?_}Vg5OJS_s6i
z4JszSMs_&bYyONXlQq&OtIM$qzf50%@+WdCxB*3t7bC*L_GR~o8fdsjS(rX2|0Q1P
z=;#pFFar0>4h{}zo{{l?eW<9YUbZk>0~AQS97}jyTrYqtbGCA;+b!D?->CH!s(mkX
ztrp+B2x0g3F2*7lX5a*JyhbLNSN)CTQ9u?sGt=y;k+XG9py$o$6z1tS04RsU;VFJx
zTwE<{wA0hmU?F@WbsQa!IsL>OtzC5j{d26UMLL=emkf@$9la#@7&vVna?}RdoP;^D
z^E^+>hfA4dZXo^WLBW!P8j-TxTr^|fzvjq!-Sv>M%H}gY<T;du1rhlj(4sj-hHT9<
zIJmg*ArOe*E-qkYPmSIL^qa^5UsisT@M}qPK8~G_H$Bqam`FHMi@rj^THjC5m7yVU
zPVrQ-w|e`pER(w4SY%+L4AAAsQoVq}h-L0hDQB<UnJ+jyQ<bt{GRSjKZHd<PdL`Dj
z{Y)&i%2d97!eZBvrEgG|wbzM2xh?w07wCQoYTAEF92T_N_1bd2%SXB!YHZkD@WgJc
z@*5M=wkn_kn|FOWzw+cBeEh8D3h4~A+DcWW8<wEDLMx^d;YZKj@j3W4Dj%VRn2F~5
z>yk$Jn-z!zQ)V-$-i0=5!EQa2A>bnu8a}w&0t`z(hV}IjZuBwvIor^IpD#q~bkE%q
z9zLpGcDcGkym`;?_s$x}f9-)6d=P4AC3WKvPF$cV_vnMd(S{Zu$~6UtuD2w0K@2^_
zAkgc8{2=1T-lgrXm_ek~SWA3A%Y8q9EJ>hq3<uXa?<|B2veqtUot7nVO!wB`U>&-^
zO?Tx``E#0Q>Ffp^wq1j1M3S-qEpn*~Qv#~w_J!DJpZ(f=LJ3UBe3KtET1lh)9dRMw
zBH8=xQ(Oy&Oi_O@WTjplAOL9NUM4f5jW(1JE+0hVJ%!@Xb(hS@h)voI!<VDg)2P=t
zowG7$&aBV_Wh`@XoJoX1N^LCOu^yZXq^N!(ard{nwP4=t6_!1hoI)4ffrL^Kf4)aP
z_n}yr)%UOOXXcSy#TfxPYwO?ftXP{uTEZrtX!I)7%+92x!{n2{-RzKU-@SSnyNsEg
zvwRIdS$3ZdG7V;}Vp2dIxJ98%Ow=4<oIs1W^V%Xqej^B<E@UIn4)@Nd4liT*5I0dz
z#>i1wCju8-U#Y7}x_x+9!SG%SIfG?@7UI6w?qb}>cQ|mIajOLt60>^7`&Xny1kQA|
z*-Exg!(&W{021VC;}F>M0%C}frz!S+1jV_{zOlC(S?gj(5Okj=h%I4xF5z@xL6Wi|
zIy{qUVebYUMnSwB3WR7+R$qyJ;m3YTj%Za<wp{czj?nTG2iu8Hym$7OvynT$V$A<r
z^}nV!0N=AaS#=3nFH2+=f`=8Q$Uwj{*MzvZugBQ&?%*@9g#UTby_X*Hg#CT{Tspe_
zc=**T1V|eH!z~38KyC3L@h!&k*Ekh$C~9?+4Y^;&FjMl);GHj!v4B<c@jk>>F(__d
zZVV)(U1E2>tHPLx+X%ME8j0jxps4()L;@OqiSZP@DYC9_?62~MSB*McemRg6s@rV|
zPQ$Y6l8QVZl?6}S!5aYWXp1Sy^13riEx<V0UltLKw0e-*&}F+jTES{<moq)TbK7>5
z&JIhmC%;}$^0S=Rk_2s;s7I^7R^_^AnEb)QThR4_W@#;pV;m;i6xly(#lF3<Bz+tl
zWryRF*@9zt&=UQDVyEh2m{CeL+{ujwi2HOE7yN}P(ebHsPvg#h@Yk>pqYh;=XS(7)
z7DPg>Hllkv>eVHCx26K#ko`Jz<uZH4wx3QDJ(l0)als6By^0%%2}->~xx8(1aaiV1
z&Vl<-%(DW!Rq2Xa&yDq;lNC%<8g{C=Xx1izH0qHcFoOT2R2_^tmGwvJZ6d&~`cz@u
z^eLAI*C@nB3mk=GPhbNj4Sjpx=o<M3maY>+K_4SIh)_i_pYB`@oVt7Loc9SE#%xv_
zrAhFi!I_1gfj*WQXRAy)AEI7{he&dTyyBAn5zUySS(jU%r@JYqo&8NSD6mxdVj|Jr
zGHb2gfN8i%=c)eD&?g0F$_8G}8O#I|y<*a5wcCxO(^l8=#`=XxkDe*b6()y=+qTYK
z>&@}DU1~=3n?0NVDC%0MwHV^JmSnOLYXA&rpJ9GihOB9>i%UmNWo2Gji86Rz48*ZB
z+R{!b`cO(*OGJS^L*28Sj4sqRvo+;EdyA5Isldea*<$wGpd*rX(k|jP<a1udr~3kU
zdx)<>n8_}ClD$-F$Jab%2E+kDvI7a}hL4@I(B)a$k{pcE#1}9d7<GOMy5^SD(M`RZ
zu`h3+Gn~I4M_diCPwIY%z|a>OrRdn-NGqG%sC6yagJby^8Or%y?MHRFXOpMvn!}QH
zpw0zw92{rq3rjaCjK)V@#zE^TD*XI3qjT?GXedHgpF!B)&yG!-?|SU;cgVB80p#R7
znko!DB2ag)8AWraseaQg+MBQ-Vw$}$=s}c}vJYm<MICOkizkYCdT?YM;%hW~c<S6C
zXGd}2Uc6M02ro>67sg8#CYg?)p2o`ss{o{r>G-c75ytZpliPe8@aM&L`!76{X(sK4
z;Wqg`Ns+zeAuC7SM8CW)uv<hul{aB8hX)KpQZ-D2V?iBdrkcwb+NNsHk_n4?>4k@S
zI%M~}e_q&k(ss#QLFg>h7Dk$a!+hPafDlfKl80FC7XV$k*G6o{=N3cEUP#Jao)!J`
zDj%%Q6Z463L@O(%{<%Td@`bvb4<qf0%W|V9NKI_I5}$|YGO?!0KT4HP;1NShXs1Vf
zWyOr)e2993w|TgQO)G8~Ak7za*d|K1u0#`1rlAGPwv&h|0=734TQ<=5o~j^OpiKR8
zC!Q0JOIF;d!$Zy!IS9Si->18xYT@+};_mwia!N6)Aw>Yz(gajN3LM$>?~^W8G{%oI
zF?(Ke)ga3iZiUq&jc<==nrhCO9><(?Ma9L)?qb-X-T<`QJb4yA4HMXJr=kmHVCMf_
z#?`>w4X(q;GR!xOUb^lJD8>9~|NPA)O~Qxt^N8lkYPViv+B#spH;{3_U-o(DU-1p(
zIjDN`JoinDDoy6RS47>Eg)`CjO)W;G$KB+pjPd&46p8&&m`qlGWoJZ`%aRp92CT}#
z=+5};b)FJE`%Wfe1kCn96sd6RkR$gL)85TEqW%)cjGj$KGfm`qMMktaq@7Y^MtRd6
zDC^5WX1D|iI4{wv7@re5eT?ov{yX=g6)|SDXP<R;rK-L~u$?hH4XK=@Iw^YaTD?hv
zUJ0wGKk5rCTPG}%`e^YJfL;D%NXbQ}Pb!C0*fKvC<$X|e^1kY*)8MC|8y4NbTi_b}
zs=j^Zy4xBZK1QD=$cgreAX-{OABwH0Z~v_TlB$@Idr)=r*d55kqbiK~hwDxuJv*XD
zN2Mo6`wOCAYZ#r&^i$jl(LHpi4<~y!2+L2p3a}WI7!E?9`*cBh$8Skf`15mXsX$Mo
z6GJXwS}ZCY@UIDBA1xxSJxnQyEihgK6OqMTLIImlb*ihvx4_vsJXd<bp3L|*n&PqS
z#Ztv5U-#{HtW`3>T+mU7j=q}ud}zuU7m67G8_{1wh=apqAjy)Et>Pj$VJb-`15gUJ
zDKkF}vnf7mWmvLtkj7sDw7UbB_qS0R<$g?oE;G?mY3P_`#}_@ZlAT#~!^ME_;M4Y>
z;<9n4b1EPz+8pqE4%(;QJ8$xD?iT+l)~LJD>qJd=1BMfG8fpvNvXK0Zf6a_d8%Z{J
z_k08>#a;!aVG&?ll>9!(myuScx$Dhp^Mz~?5in?*c=MY)lz!J=Xf9(J`~?1Z1G4_6
zw!G5yqMf>>HE)}8d6y1!pxR|bI!Ws*Hr-ZTq5><{@i^nCYK;2AyLwpv@3O?s30-^(
z=!2gs&tRWc)kN5qmRZ6+yn09h6*8K4)!y6$3oCg#M0YWZGhQy<NzC$W$R^ufz29MV
zSD>jGN}$7@5faPtj=9<3P<=)e^@flrp^rn~&AtsuAj+X`W?)DP9J@5wB+WrZBgxjS
z0G$cCXm0#nuv(1~k<_D$UT6>rF)`{xki-e*L`Zj868xuBLbxf62^u2(s8@Z2WZMyf
z$jlHyoe`<pVU7RJEZ4Zk&RuX~Jw&6V$m`xw9eJUyOH#MrUt=u`1tK+Dg)vQ)oL7V^
z9pcHvX-=J?kN4~5l;C2yu@o!|R#t3yc%Lu$4eyr^wC|uoz%dH~rpSKRo6ME&NmqZ<
zJ5)YU><D_r`1|%(M?IGjzm39i$0QfWVs5YMFp%aH`5)oj_QK#v4yF)CMuiYu@K?cw
zEt*u^*(q=Gq<$uRkeL<c-4Hl#4kWX=3Pb40$qdTjkzVw%`pWbgNxWYnx>rr*(qX@2
z?Y2h(8;Hs6IN+WBS8-pbWJ4{9M1PQRixUR{D{!%`DdfndDfH9luBV`GV*bH;*y;6C
zB=uI%A){NF9(hcLj2H-`yL5`aJFLGdZ-W5SXG@ThYceP*$^U)!K}2=HodSXpZbWU{
zFS)Y;3z1j*&fRbooB*AeiiGHB2Aa43N_nix1et=wUI$_r&dX%oqVR<_N*yYS@hPHc
zFqGthb#z7q78|RiykhB$ej*V~u=TCvWnmJkxC{b4d2e4)g)eQc{G`%~gzE`#OE^s-
zd3@`FJmAFw7<caofREKb;i&A5J$sRhd`doq8~Ex`h$g$Vhs#s0Wd0=sbusLL3^mQk
z;OF}<fMF#100QX`qmTL=YPT9eu(`C$BCF^Hz0)bZiOA*1w*cdS%B#a86R>$%$7~av
zio^2q7<dbP32A88%r-d_7Kp&jI-Yd@vsf-?8s)p7lFbb4eD0?S|MfbRpU+)#Tjb+P
zJjF8f@GPyjJl-E{N?N26WzYBI7*~3U{FyXG-GaIgW<`iVIcH(qc^>r5?dQPldw~sU
zh>>VXkz-6yV0>`*?}H;P2q$du6v4F$5uV~J)cv~;kN{TjZFnf_9k!W?I^`e3NbbMh
V)X!-<;57<p^3p0&6_T$5{}1};BR&8C

literal 37348
zcmcG$g<Dix8#g?NNEr;Nv^0u<3euoBbV-PaG>9NbiF8R0EiDKrEz;86B?1!C9nvM;
z?>(O9{ocRe<KkR+V9%bt*Iw&hzq-f&iK5gM0!jh|0&zt~8l{3jTu4SBuoCeu!Ecn5
z4a?vMzLoUzw+I9|Gv+@m85O2Y_$98bjDiI2903^#2a)=RTcZdBJwgWcNX;RBb==*d
zZ?{_P<Q0}5KUIIBxxv7yd55=n#fD&Pijh74CQVkF=C1f?k(vl!#+}mq4FMtleS3-V
z@tqM;yQ}SXV?RQ!%u?5qO9xOR@1!Mj&s_LgR>qt5Ww^iJ^Jw~6AKkCd<>!lsF3~(P
zpNeEePq$pOVq#4H9&X99?fl+9K6R?@yYT)Y0)_cve;~JxK*N`bu>pfD<~QH<{(t`Y
zk<lK3vRPWEYI=gWe*LnZIwiN6I^`w53)0x!&gzuLX;;qa5PyEkHeN}eoXslz8O3M9
zz`$@L{;)kkrks;RIZi!y_ga#@9-gUbUDb-Qp%t4)*Tf^O^&55biEi=x`?DnOTwU*W
zrp4{WIPG?4;YaS3%So2>9y(j+UXK^4u8VIxM7Vl2cDwFIm&+UnN~2Ib&+i;9y^yJV
z0B2Y6z2I>^f<Wj^yes79CapUR5p}WJqU>@R@!I#vI+&W_b#d6D6s@woqFwEEPf8w!
ztcM$!CS%G?1h1p_^}SGLy>4#1e`UH_$$7IRkHpfo-#>bL{9v<}7cTOHkQ&?#B`ZrZ
z54+Y1T|@Evn`8X;4<?RRZz;OYwF<q_HW3{R{<A$^_Ukv7JsQp)sV9$OpTC4%7nSJd
zV$sEM8OKBHK+yW@F7d>{TU<q#sTd()IHfF-B{`B9uIZ!mI7j@(qF0|YPF_N_CkdVH
zRCRam4;o4&64~zU&&Dj#TKwqZg~m5wZs!zYd+|q?^AgLwy9EWB72(|)KcZE{FJHc7
zH9vx|h~vZEaJM7la^{?=J#)aabZg7BgSQF@@@G?Mi^{_ODD;Y4XG^Oo(7npzS+`b8
zvqgv#F%sD`1Siot!o^-J6GSvu2{@eod^w~T-wKD(+iSp^@Zj7<rrq7W2Jf<rut?;?
zm71)*FuJwvur*G2{qn`RtHCfM)45raNq_%7yQ#$|bOr7t=zM!1;~>u-XXnbjLna1>
z<R+M@H=S@VEG|(s{XTmny#FWTtK%&7NZ!s58gjT<g~#$Je1ui`D+J#-H?HCanMO!a
zQs(aWv77M69-dZ|t?$Y@RfA8isJZ(rwO!(g_X|_FdgUM7$b|P5PPlhrTAuY!;B422
z{_1y<S^t1pCYR!v?GcfJG0vBW@DNfHm7W{V$J+|ZV!erxo!mY?K2I{$tOOHm{KT7(
zJ+V_T`7FvT$X7R9d_VIZTIG5*OTl!}$Whneh|XX5{hBwLOE=`l4_US-*&7Uuac&>c
ziiT%q*qgdkO(lb)PiBSv-rp?Iff0{V&uTt7+{QxC(9mo;2yY&`@H=eM$1Ac%C?{W>
z>ObLOvfZ67>~a%6{NdMj&@OW_x-kOR6zui;wU2C?Cw%{YO|yTOhgW2)iR5cuo|LPr
zNL*ap=6dCZc-HTRjeWzFfgBq@DV{rU^OD}VZd$ABttEqEEitrWA-XhXF+xlX$)=Ap
z)n@!z6A_4_;^KDdD?K}PnTMuR;?Kl#KPC9WQLReXT$$|oQP$Ri32dC4A;(pFc4x^F
zD4yTeC|iQc0Wt5~iAN_hi>+mct(+`LD3pxd-s*Ei-AJ)nqmF8(8XE`4MeZsi#{2j0
zXA5c*U4(&}`}0RuPVnCS`}+4{r|c>jC;C=)8;tJVWM!2SWMyT2)t^Q`BVcfOM&#n7
zk8Pu@viu=v#YbmZ*kxNs0uE<uN?WyiPCY{0O!m?!{G=yrAEKg|?XUCrJkL=dGJkMz
z>URCIulLh3=V~2lek%ldAdaJ>BipT80Z!SS#(^5|HtZ^uRa7q2PF^e446dpY{`pyq
zjy4q6u9616)w6h4M{cWUBM^(Wf*iUv)bMPq%C+(}I2Kn|QBR*f?LRgt)`V|cTidCr
zdM|ixBxf9GVt@Zd(tD%`m|>e;t=dD24s@?X*TRIDlD&WY_#y7<T0N%!i*(+KU!3@1
z<#<R*Nr|<)l7!|x6=h{)^g*yuv8MimPs%zvoFc4v7amxQ;nhyk?ZsWM>@o2kHgBP^
zAHxckWUP*kiSdKeeOS2o$U`Sj>dl)wa3~w|X#M_;*nR>}kKSGtmK2^$tJiJ;L={Jy
zF@(?b4?@+mo&JQ%i~FM`he|DVhu(6=n2ingy)OQ>WZUbGc=F;!V0?W1*S<y07(&UE
zyBs}ZweDgrqI8!pJsvVcJW*4-7}0*Qb~04E($1%<#IQBw0~6_W&UoTi*EC<eV4Qe0
z*Y-^%6Q!-K9kh|i#>>wj*si^}+`2p1*?^g8wN)**6d01#9AS!m8C-dsSU7CX{i&0U
zo!x&#Zl~sWozQuGbGi}X;k;4Jw|uIetA!uf>=_*$oj*8c!KauY=<{}=D=94v=gpfp
zus-x#s}KKtN|}(#R1?qWQ($|<D$B%@9HFsMN3>V9eS_Bh5ZiY5>JOT$$ez>^yS0)0
zi*nTM@{xc4+QbXIy#$Z<cz@#>)wmiPX-cjPP3+L6j;^jtM1ldgVbI@<kp7KV%xDZ}
zmP62U+}J%nHJtD>xi{T^!UXGZ_GgBO#_mtLtxzrpScA<Evsu(L)$Y=COYZcA@>l0P
zVMAQb%gN5nlsRx!&(Xv|z;wCnd<WTVXK;c@W$M@Co*F7JG_kbAEK<AGq4z;SLHLt_
z(iYUn1Qg7gt;6!dtx=MNg2Oso8^6aWp84y+lJH&Li2ku;D@l_>I+zg9o=uMjlkrK`
zZ)Db{)T~`)8gd{^P*8BDf?W9?tj6%Nq4CfGC8zwk%u-D8QZSGTp~mv~C^d<tx4Zls
z;Sr<b#J+r2DwOt$fI5eG0MB1`ybE!kJ~bv%WUMxu1<%<EKIc`6ARtkW)h-wGFgtxb
z^!M8}dy8XiO)-65VPucdOPHvoqp;>u*^e~F>?d8Hu#x7EuH_G#>*odLWRMd0sI5lE
z#^UQabedR2)zIS&RlLh8qUC`fD*&VdajyC?&hh3A24*BW-7;GKENu}V7o%*yK_61>
zjuR?4(dy{_d2E^psr&&BAgDdt%}dK`_PpsM{(ijDzV$boZl;>S{`xq~pZBmXx)Oxa
z!n#62t~v-O=C9m}l2ubv`%+Ru&dki*8|nJ??fw4OyhWOCh8EK$Q{Ml69Tm;CI#y1y
zz0e&q!*~7iM=^KNtUso`dJMO`&gv1y-Lj3{x@NN_@u){yoX_O@5}fx|^`CMxkGC-?
z<)|AT{+)N&>5*zYa%y1^5~AX&J-G)n%;&M+RhjlL>RA%-C2i=W{PZbVZ(m=5{f17N
z7AG4iLH6^)OHol#Lq(>lO~<5UWYaBFmQDA&g&C`HbJTD1mQj@6WRAQ15uHBNyzZv8
zM%Umaq%=E+JKc8+g<{IvA{Q<$Ee&-Hl1zE@^y%-9mG_&8yG?{7=NA?j#l*yB%*LvN
zSV&ls*=;jlAuyoC*-T`S?s6N=)t*$66`k#+r6qQ>FB%;l>~BJ_bLHxE#q&ZvfxmYX
zEoRh&m3hX@5&<OYGsGEDR37*AiFxDN6;0)YHhiKZf$g+YO&%4oXw!{QbX#n#F1~Y}
z8eRmySLWVBDtJ!3zj+aHa*}_|{=CvphE18^;s*QruG7mPZ#3GV8QF8O^4ECi`otsQ
zgV8>R(bh}{27!1XdyAiYf*DGm6_t5VDAFrZD3X8YKWPrli<>kemW?#1uWXJNaklF>
zY!<2VM@#F-qe#Bk>p3i+E<F<yf0ToZ)zw6jHfCRYti7}a&tFQ!?s#tvSt<ovS-$~;
z;3HQrtcyf-y-*2Cs?Q2wE_G_$ewG_ad+Z|mQ9d2r3Y$d#z<^Ed8-`>V5C6rBT8qn4
zE3D&XyIUj<8NsSsD4Sjrp08iOeyAxKU2AJ^fAsDhZ?^jFZ&_Jk5fRvd%@=ai3BBs+
z4U2f9;8b7LZoz&wYyb#h>{~=S4*Biih+n_`29$CQnro|X+q0o|CZR^7qoc`9Pcym~
z9zz{#yQ`T){_fp7hqJ?ldAu+*+LIee<434{%6}H4IQDA0jfMb;qkJn0c67hS>ALAg
zziFHD)Z#Djs%yfV2-w|40b0Z|GBXI^dD7<~OEoy4V(2kYmUf6>^Z#-|p65I7eA8kG
z2!=hv+1Xh<@41?qcXD#Fa_C*kU~bA_b^%{Bi{HQiW*~fbXjmMrgH5OfopHCaSEwVN
z02T!Ffi?+p!u5UfdlSpenx}w~4*(wOKA9A%l?XwEcQM~>&>6F(7~?%6(ks@)j7*d)
zPL!<A_wV=0#@Fw57i;FUb#_K|b#!)0JbwJR$<Qlnl8Tb@iH62?o5aRxw2)oiAYnv1
zDRJe{BXJ_{4~7aXBx<+F%pbhyUxC%~C{0CX<IyVRl&#=2RJp<CZs{?DXG9l2%Ci_5
z8_V7e`fW--(A~9UE1N(ldG`FJu`$30pQ>kD2QxDU2#=2W@b&t2?7uJ{0<umYmyPhD
zH_nfghFq6b%NuVpB$E<d#7av`Q@JarqeFZ761JwM<`Wea;&;v(kBB~e`a}p%8PI`O
zy$7I!0~b+DRjH^DTo$3Z>eug<ot%6@FySg72G}lND~*{9J})r9S+x^_;zx>&fH4)%
z8}wu9gEv4VTVA+{cY%_MDoH&n?DJ>3zaztiuK;{7R6hgk(b6I*yz}evrc*WBojc82
zv#kZjos<AO;4J}4qT3fyqLr|vuZ~wzbi{DQOk|B)#7s~jQZq6hXY@VF`hDU0guep(
zE2B@pJ)F6~r6`gqJ}$Ju{T(nNtdlQ)l&svxm;t$=A{jpMS^BolzOUEA%gTNbD-R{x
zIsuRd0RaI90K8inc$CuP9X~iQaH()O=$Vcq&hYSX@3uuL6_ipqSflv$Qw;|G@X<A2
zKqTTxb%oucgw;B9clQA2^6>IvA-)$D!aYuJ9|E3xynYRV*?17b2UA}9`-Pf0u;r`h
ze}Ubg$dp8jlY-W1@g|f;KxYq^Ri<qPm9?}kf9fPxpW>V7?lLaK+)zjKonF^}FvqWT
z_R-_V*nhXT!x9pLkB*$!eY3MU`UeL?j~rEATcLP7<wQ=)pw?`htk8YLKz4eI(ifCi
zLH!d_V?;Mc90e0NSB2A5{OL{?r4Sw%9FwrJeW>@~Q)77D>Z<w2PGdw}AXg2)@hUGb
zF9K0GOdahVP!PzNQ{OkfGMI;pfa|1RrM6Bj`tpT-l{Z0=qBlVtKy#QBZP<jWf`Wo{
z7EiSffXOQW+V0&F3hTc5P@4EwqN<M0RXvCPXcj(}WJWyg(@pK==2G`FTo;F>xPN;b
zL4x2rf`@a+hsqWf7DI1gTgE|T>r@NQ2oREU03I(YLb-@&R^Humw2tuY;d$^N#3^U$
zz>}otc)ju(!fNqX(g(w89WG(oYk&X#ZIEQZ(%YJ8*6&Ws$bf11`d!o8d-v`k5D5wH
z<H1%8pS9K1)thSS<YG8+5b?r}_hxua|4#M0d@#d)%s;=<6gSD!0fh(I{!soy6N*L0
zxbQh;bI?-`kvq-7H&~o<d<ZEn;3@oylx2nmvufwuwo}D_;l`au)NA*NNxB?@77AaK
zm_HxePipt^Uvwv_II=#9pvBMu9t$X3u;+#z9T~9)DYKE@)Xmc@CIB!7HBg1YY4I1#
zg@C(!e$tVde}|O~?jmulU^82L=Cox$#+Qgja|^$tF->4563h|qJ=$HFRU8``8A+~T
zDG?7S;^Yl4NZ)K`KMd<zK0G`GWQ3tm9OQ(6<kSihZ_OUAnk;|XGDDpXUh1(frgPu7
zbdMAwWnc)8<$vdTusMy+BlILHc&#IBIa%XsJ=wRgT@P@}MS+7}v&QA{;~??{Meu;L
znu{)MBA1=l>T&73CpV;EKI%9vF(c{#*0fY@pcLi`Q!*_jS(Bd~U+UrG_kP-af=@Ge
zY3`~Y8g0Z9a=Ah)H~%cblU@%9nQ}LPZ$NR#V<V?(oye#tiRukiB@yOew*cy^xNzyD
z1QPQ2(~Z}}F6%kuyi9ExFuGSiZv%_M=jkH0drpv;%^coUT46kxhy_z@JuFAV&9fz=
z7T5?LK0ZI*eOAYxLz#z3Nr(#wx6Ku?0znu;rqNQ%m?L{yF*mJSRi+jezM46{^?DCs
zGa7PyQEDL}BZCibyth71rILStB(hvF!wVL90NL$SgOq>piWbr6|B?egNhi+_$Y+lU
zutDp#xQ>#N2T-hl4P|!rNmB-20;1K6-T>y;TJ<V9XumKp27s4(mJcl9M~|>zI(`TX
zLl!)xNNWkAK`O{$uR9JjiozTr#UQFm`;BP3J?nBU6Em~Nj*bG$%gd?c5@B6$1rxZh
zUq<+nux)8UO$G`gQN0jCBcyjP_7@bam=2uJ-F{H1tN#ADZJqOp<JPT)L=k5_?(3;T
z+ME>drm)m|`uj->#>1quKPbHnBjzsX=G1}vj<R#IDc92Xc@e2;`u-t3y**LpfDpI$
zZso*mNdjq%k8Zr*eX(-Yb#Al?rE;bkFs2CO7&^a3tdt&fKmdW-)2Hn;R~3i@-Hz0I
z-Of78G7mwtQsZ^0V~Uh!0XXV3HZj3z$b{kv*Z3J3z`)F)=gXWN<8-9|HldX(<gXtc
z2214)-hNXY`|q!pn3E|gj;*JZD3l$iu*)AO-C%Pd<)#Gm3l-1E$VjgzSwf@ShS~i(
zk@62T4VK$MBi#>b{7$C(3`jCqaVK1ECyncchIH~wBv6Y~XkI_~l+?Gh*+_TB{n`)^
zkAJ>q4!`5yRJEs;+}95_uB7!BDWSM*cT;vFX#a;iJQkfF1&ZN$`bVX}(;WK#vg7OT
zTvUY5;7W5(iqzJhPnHHyWdKFk_@R_xE0T+vWr^^2SC6#m6GT>z-S^lF(aD|~NZ|1g
zdP+0;>z4<kREYQLMDNfL8fHuX@85TCq{(d5y~kG3Z3%lJqrz5Bxc8%@1H*mIF7p&B
ztcWIWi}DfPE_=tSa2J*|FmHal)sICl=@1UWwB{p4GA(VO*$|s)vL;U!)&z!Rja5XX
zvjj_e(FoZ|UrBsFoq5!=7skTC5GR}dlEDd-qVtV2vDt(Y#q!5D<G2HxiNELW#MGXo
z1@#aik<491axen>v-|Grb--Aog-DaV@hviDwhw>(`o;Z6Krw@aB?4bSKmZ^fd}9#d
z^XE6>6&F4(P>_?$F5u8@Sn)qmSNHw-Q+{c8Y)lLAAf6|84Ie)N&>Wb<9~=PKfYza`
zu71g{5xHCAN$(vG+|97Ya`Tw5rUrOPVyR|M?>0~)rk414Y79&*5J>3qcJcM3uQM+6
zaeV+9)Lre4C0pNkl9Q9Rjf8?3!jPK|lNN9@#4k8<exgnOd{l3it;T-5xK7hlo&6!h
zR5EYyF^E93H_j$R-z}5E_Q^<#p}Ce5K`kvU`GY|5;TxdIY;F_9MXXN`-Vm7HW&R5?
zl!GwPIoPrBhf_3(E}Bo)&=eOJBXvP!HZeCx85%MIt4ehF+n(Qz%2Z?E;!--|xJu3M
zvAVi?cVo?pe`^023vtOyzrS0W=wf7aw5<CBhOI(TD9d&m6L-c-0ZGj`6N@#br>B1m
z=%u8j+#E6tm9f4=Qh5i|8}reUJInjBOrXOsg;C#_oTzp#a6R7pC@RH}Tp*u?vR#jV
z?yy;!fy8U0!B?J{2PLUpQBF>-$&i6r0w%1={NJU%jI>nwlXEB$EmiifUS-&7`-o#f
zwcLtxtEH1nLBj6(@d;Oh^ac!&0nj>WB_&+UmZ%~d;3`UY>((uRw2k3Y#~Zb}0UN)P
z9^YO2e8=J~9wJLUC%{Q-b0PWn>o7ox^e6Y(frs`jU6#rAI@bc_Ep`7Ed0Oy*_M@?D
zTB+(;)`QyiH$_Bf5)u;lZ5N4PxKG@~;Pjh6Zs#>c@?T<2>VawI@-;gfrK+mhR&F+!
z+YIXs;e9p?C~(P<Avr8vfx#)WlJ5MkCe_5AwKkiA5+Ma=BrP8wpOmn1U%G-y!<XN$
zl~q+qN`xXt*Cb_R{CScWt@vB0>s|iDzM9%{fHL?5=IaB^g<Yq|>(%;=m-rL9tV`nv
zYNG#xaa4B;cAcs*G(B=Bw$pgbx|QbUhJctD-Roja$|T#$@f4Pqp7hd#s#(8NLRd!D
z><&)P(D?a%OHIC4sNh*o?;ocrFH3K<n(+8C#c;;lehpjieI|U~Po4T}_TRpJgEE~;
zu1CdZ(d19Unp|^DuPijDV?N-(_5MB4&{mQ?SCW&V*Tu5_i*V~hpTg0}apYzwF1!8N
zCO@~6li~-kYGo;{nTQ@XEot~Q-aOrWmi7B<R#sq{go&NqgGAT8=SwRZ0iT<g`V9(D
z@|?VsS76ZrAx}Hl+n5yF`xHQb;0j=Kb)s5mdGXuO^M@RN{vMz9KJckuuUO$++Io+T
zD_MOW#weBAdQJ3T>TB!KsT*bq`d8`XU6Ubdp0gV*d4rr(QdU-$Rvv*G$T+dxDt1<|
z!>>Yoi-6Mxo}i)K3lOJL+$MqF``B9H(ekn|Q0B3JM(<s@nv~&=w?816_>C!!-EMu1
zUF7Vr+g)_oB(>}hsRxfNKP3<W(Dal;f$<&mgt{@go;DD2H4)o=oZ1IX&@fKL?Pw_@
ztu;6}7>L5nyu25sicZv3%5@t1Tx@LDcQs&l@S}BNTV7%89$d0b3CYjZsn&FI`8(I1
zKM0g7b-dJ8aQtI%8=d1Ea><&*e>Or%RA70(vwDBxwn#{k`bRXIj;biK+G3AGI6no)
z>#^2#+50hrD^cm+f4_bwzjD8MH>l2PtIq_6EB9miu-Bk!2*-rK#O5(*KX)laOnKry
z{5jvK+EyG|F_>A~KTffu!K-oC(a~uNtJf1uu;}lWNa=Z)^h8=W55RZ-3JzB-n#rNa
zF53(XPsXWLmYR&9`J;qF{p7PS$$5X`N2~J4u_({<JoW^%4j4cYc`oQu(V2=TanC&?
zs1W?ld)Yhu4wQoG2?;6ZG@9i$FXabe>{J?X>2vL59xfi^C8mc+Y^sNcl_+S{x>fJ+
z^CuCK3)9dF3*P7uNooJ_Bb=5?BVX_5tQ1N7Sg1ORtX;$3&?-LC;i?~YY;3F{Eo;dh
z<?w^sJqy2vfc7V;Wa<?T&s}|~`RRMJEa)U#15ybN6-$hmiRnMZ^v0-{=tL8sRDZNo
zCb#>U%hHwx{<?Ji2IGXt4=*VaM&@KF9G>Dy9+Mlb^<KD)C2YhQ^RqXC71E|qJ1-`W
zqJzSoWVgJ2OfJuXM<S$(X!P+1p=@n!4O#oD_3hR6l%ymqu9^b|TDOB~{C8xr7U^?n
zlk+;F+`Vhl6PkO3X|c1Ne3Oy1T+hFwTBKPrrVMgRN;VrLfb#H~4It3MBA|Gu?Z(tg
z2%u(xj)I!8<K!wY^YuSAr<v2z!Bras#0of7<C3j-j(Vd-sUKN<@B(#!Hpp2cqob`_
zfizhQiO!q`?hCONvLWcMxF}y-`$Wle`az%GpY(X*ZIrcXaxs!3cEYYyQk6PYph~8;
z*0<|_#|f>Gl<VK9-q*?0SZWJnylKYZm9^A*OC|2IJWIsb&0lOyophuGIPxrg9~mQn
z5+HmDTRaC@Zb!)qAI?R95>p2<&tu7D7>XXF`}4#-a^t55^BW`9f3Z0uGh$~C7e2=f
z97rs`xl#2ddCZl{D<gDv+?Dmf6&0sLr?6S%R&-G#Z%|G|LQ1ilPS6&w&g%SkdxhDD
z>q3aVKk;+$)=-l3Eye{+c;fDoC|8ct7VB|9{Uh+X0307mACAqefS<|tSQXW6Y%i>;
zt%a*6J4Be<25I848ycrnniz+o9`*Y8zVbr%=g_6HsipO)<TQ<Ox8t?m+1b|6)_3ce
zJ*hS2>F2=eM_w5VUZV^+6ub%#Zrr%hYnai;Zpd`;@-us>+eX6$hPY5NTUM(OC%fG?
zMHfV@wH?gNR?52ledzJHW90#Ugav$tdci<W8}NG#z==*C1>h5yxBr2Y8^wCES`|bc
zt|-6^y<Ay9;a|RdslQKh@#gZOfpUyPh{h1vS~vH>sYD>7O43l<OR<@)nQV1y>jGPs
z&0?HK58)BCy}GCA(%0NCi}JhR(7#nPrcaa>R7MysozW-pCXrLUw-We_XdFo~kfx6z
zgt?N}EUuAd0hi8XcjHhPlF-R}rs>S9PL(`mYJV3TS^^)2_18OU1i5qWOKCAiK}LVS
zYv!mVgZm??Am7q4ZAA~RkG{{t87`+3vPJ(6g(haUS%Fs^aPdHqC{1&|e)Ukycnr{E
z9V~;dZ@Rlai-kI`mrIQtfDKR&oXwyBqtL86SQAc8tr=bU|0JEiaxaVc<z!`nDEPu+
zpy%Sc_AFQHeY3$MQ&ZC>v9}TJ-k=x(wPv_|Th7T+^z$|2!W-q~<<{<bJUl#K%E~lG
zWMRK)nBDr4oXjv+sQKLp-&QbT$Fc}m4X`A|j0j`PDjog+UC0Xjmj%cxO5{H%+&^^b
zbK6F<N1%1Ubb}h^v3(|rsTlaMhrMaWzsxEFYJ+kp1)()!YO9q_$%F%pnV+foNl7<T
zpPx7kKEJeKYy|aR_M4ZzDrHtaec8eyRFB7JwZ@%sG9o@V#w0r|N|pSTdmMyV<-HrH
zJ(>-|&bo%y>;NOP>krxsCctEQ4^&N3^3vYwaKs1kXpQJ3G=5;&#h1bhL6QLN#>$jO
zzL#WX;)AaRYGdo|ys8U`gW+yB@+~cEzr3lp@H%Y0vcT51i<aAeI#qg|W}5I<hYGNv
zKCvps*TwOgwQwvBmsvCZG`<h`N3TF5->~&6e}W=Aa;(PHxozvgrz=48K>%nCp?M50
z80mt^LhyV+D{UiCwA2+C0vWT?&yIg?Eb(vY%;4>kC<)&ri}vsE0BIekc9N?)4+Ias
z^p7FwD29<?A&*+EvP&Idq4QUL*fOhhxXd4X+G*r;&|X|0uar^<zjgceV@U}@LP9Bp
znWoGljffj5J=fm_e1!rUDzf)+r?}lHz*P3$h^yzP?#Z{^BFct4puOF`9pPqWT0Ej`
zFG%dq7zh~g_wV1m3)EF_e;K9rn1}~NJ}@8R{!^6DI4$j{uezx@37S9iOSOC9(v185
zLs;O?B<JT7H8(dSd?T`sj*d)!d%ik9I|WF9EY0rh>H@0m(Y+AJe=9C3imb%=IaH&L
zOP(>8%Em2V=0UxcqE;@^;4tJ|d0yk<s1YQarg9|VI=5~*L;M~_HQzl3R2K}WdBVoP
z(wV{zllYjHNX*ZHZ^y*+#stk@VE=@Hmf689=@snC*^#35S7|ea811j4@RdPu-8wW8
z<9;Vd^ZNDc7V1pZTTw$LZ>XT=rLN>?6fk55ob4?2nV6b}4WL@WU7r5upuj2+vR`k~
zwjcM|*|D{?vzq}N+*{n_z^W+?Sk(&_A1(|Oe8X-3dR?qh<5JG^<1K)W58d)fPcS;i
z-Cz@PGO~K}2aOy1ayjn|#=~SS0DOa91`MMY?*~-%0+&M@b}S$cC^@;nox`R|fjSfp
zmn94w8ynjP$qJ=JVSgCU$d>y$Q08h6J1zCVd{WQSFV@U>gHyqOO7&)&V9R-Bb+}O9
zU%7~r22?|@j`@a6)r{2I7c-m|_4nx*fg*&&wMiWF$pH$1YB6t9zh=h>dIJ<sxPDLv
zm$_PD$TdBGjf_xkXG<4ZFdAG24Ex7jRXtDVN=%2(t3=03;H0R|OeUjZcl;N9a@|(>
zt!Z;U?|@dXEZ!t2o&qepjWM)ocht(wO%#@m*A=P<(kU*0hnGbFMh#g`g=K4%69<yt
z@dO1GX2S?Yj~;hWIjbuN59Jkr%>5T|uhZ(I_Zry;j6{ZDWr<5Fvb+uJm4<qZLFc5k
z-3x?=FZEI#MjaI*RWiMSH@e+K4id7AVx0Dx!PZaSfx$EHr*)fP2VtSsWeCdnttq@P
z=DI&FQ(aT0X2@`7)<C9Lk`w>N%0}Hxb70TV(DiU0R)!FbsF;}9pRxBr=<Vg20LioU
z+tVzTU7IA-$9{hk2-bio@t-d#9%&0}8Mdv1b^F>t*ziLteLjFD1Z?2!^w|1fQy-&2
znQwgUTLPu${nIS<=BPQC1=Ary>vfiH+f>w`K*_oQfy87aFrIJHIXCR|rosJkT-Bt}
zXdoRX#Us{}rA0+NOvvhunqy*O`&(dlXmF5^!SP5jD!|J@L6<=%r36WidjFokKY05M
z!F&^F04R#GSH0}dWd=k>M@RJwhk>7jfoFc_MM=<#ru~>T?mz8P2*i5u=(c`6zQ)YV
zP89LIXTUXJoV)49`>lAAz=AUu&lqiasmxVZVU^8E)5>wqwU5Ql`|C2JDx64`cMJp<
zH?LK;=ol&R3^$LGyiJD12?7R52_u><+6`^!zhC%kWmo2NI{Y$FpdOSG>pLRoSCpE0
zgRQ%V@;in8`)&_i+}%LiVAq`_-}tP=GqZn`5-J)ndGd!3<PKop8imGJXkB-Dyjk{V
zvYSlqbbv{VF<rflgcq7-mNGsowsUd5>P`$ksuogz|7ma~m@=g-OVilcxNY08xR~Vj
zu9VqnG{MZ|66o`$W<%lO;bodu3cL{|8cUGuz<A{$h1McS=J#c{uOP<U&rk13ibuqL
z{6H&YciC(pyB>C$0)u7(;6dKSGJPgIu*5OtjBp$HIt=P#LBpVh_#SjlqNn|Jxl4C@
z0tdpSiM;a-Qo@p(fxCha0K7C!m!o;WE(NZ~K3A2EG{X2zIz$BkQ5I?5IdMCWT>NlX
zC*lFJ`mEylfvz*jC}9{H5ARf;!ZhPna#)jh|B@}ZIx_gC$$K{Et?nmMh&s?o$yCbM
zcAe5nWI{!c7QMUujmInAVNB>@bL8#W1jScPiC?yUba(rK!r3uTu<{46sr2m<6L6L^
z4F1?v761cAxSwjFW`6!kSNPNru3V6jIk};9aJg4{#+THfUOnH}*Ec`F^$}6(%cqP|
z4jB<L0=(`?z`>6+slcd*tp}Z+bb7om7b=xC!AvQWsn%e^Gn3>;OEBzYpA0%n8gC|`
zmSq9<+^rJL9R0qYSpincU`g!4;mavKY`m{NgYS&^l9GZ=8_KG`;#_Ju84?~&3>){q
z#qkUCsG-DhUr#1SU1;p!YVxGLD``#h9lV?4X7DDHtE(ZXqP@(-KrD9KtNz2zo43y(
za8NmZHL#iC4%xx<HFvyfolwkTcx@nd??FU6PYz);i#CHGDI$00@|3QQSp+EHalRKH
zVUTrNUhAmCXX6KVZz?cB^g?K(iUcZuBykofs=_CmjmjB8t#1{1z}+r8-5Uj|0XwFH
znRyt>080dWI&F19TUS>LY`^dqFEF$~4*vT4b!1G89R8UJtN`oLH>K0DuM+W1l^<xv
zAh+HMx*S-wahijJwm<3aE^90SBL+YaDAtrsIfk~+d@VK`yzo#%U-z3qgsLVz5hy*V
z{17v2wzE)mp2Qj^Fja4oyIIqAoy;kgH%iAgG>9+JHH$d!$;TC|lDq`D!PGILJ#t5x
zh(Y%9)?}(0g*$QnVumI2+QMWiC33Ay&_m2+teGhiO`M*ceHp9?Kk+0y(;B)JP6+-*
z3P;>RD%84NeIPgyBXpS|PV&UfeQ4r0+%Qz)KBsXqWRDuRDRB=NwhmiL6jpy!*T0}p
z{*2_}h(@x%AR*}WQbv#<m0egA7=G9(pdvcdhOfDBkOwj|kIE4vl}}hC7@U%_=t@Wy
z{$-fhFxF}$Lj(g*a68IGhuGtGFyEDp`d&u+ink}C3A9}geiyv`sHKn!x+j`#*l2R*
zt-2<qo6{m=c_Tf>t|g6lhf;&oP03)n7lhrAJ@QN|XcKyb#k>rho9A(RG@Rx1;5kXg
zoIjkx_|`CS57_r7%h&e<nc)O+nMN`g8F+ROW9q^IJkN=Hs6d5{W~A$|HiIJ=;+Rx)
zc-_I539%P#tRtfG!@N(Y5j!2S+H`{YB)dIkdGy~~Gez_wd)8}iR=MrngT!X~-xAFI
z@!+TNU<Ci4xMK42cl^bFCfp|^tmU~@dfT$DlkexFqus(VQTqqId9_!!^FDj+lox&}
zbGvF0FGRI8*!}2eZ1~`0>^UZbId}HS12>Uu&W#Yx%D(GU{w-Bo=%xSS6M7G^V*C12
z>u29AWbO~eSjGkV=vH8rx?9tdyKY_LsMwVp%Z>NrnmiG3u`0M$6X>;A_Q2cB^`Vk3
zLc|qIYZG^Bh44$IC7y^Y_TthCom-AQ{1c1gqZlEV`I8@~128NquYYrOv967<%c1i2
zaP>snF6~8Xyj}R&FzGtW!g2fp=bq)MFuB{-C6mavJ$)2)eiXP<mBJpOTsT%=9TCMb
zC!5-o*Y~T>Sl(M>o-hGPPlw2<$?NLKZ=*dtd-juM__u4V@2k7b8oO+)@Xf4+=1zyw
zUHek(isu)X*I=JXm@w!&cQpd8q~$|6Y6pTDkZ)unD@`_KTgW2Ft~xc&K5DshFfnL}
zT48myIzGzZxQ6X;(%k(^s7_rE#!FRMmbmAW#mB}qVRmEP<A&X`^G~wb6{p50y1LK4
zto=otO|3NE?50l?b$FkW059l6^^#y_3V$^XL{~qrzUU#{JM8ZCoxaLEa7Wu?mCKzr
zuUN-x<<#wDc{i|ZsIv*K&O}hwiD9IV?_x(-iP5BQ`qvX?cdy>G(wX;`?pRV?wzI#Z
z-A)|nUNB*1&_x*~R31cmGk0yiTRv88Q+X#iaHpC~Vp4rZs}-SRxz-$~>*{-3gc_3$
zjgtwF13pDt=l)&VAMw>9F7TaPt@n(OMKjEy`mBt+hO$y@ck-4=Ma(QtFG*!d-d^aG
z?4()<cO;CP<N4uuun?u&a-LFoh3hnvs)R3hX6@SX+|@uhn&mwl?bod(c}%u`Ta4u8
z_@3iO^~^23J&OF}HO}nA-B)Ez$&9cP2*Qj0Ew*#Vl|CcwM3&4A7iOCDr>{@+dOC-;
z)%n)Xiam05_Wq?=tz_g-mJo$K-{s8u{EDF3STrcB{~%Y8#(84BWxTe=<LnU&6b}@s
zwhD0%WROB?+;LpxQR&rm92Ga<oMUIrR8#!#$dsyWl>dvW21v^?j99-zJQzGQ(u!m8
zU*(!aXAsu-=1u%{tlI2)DqMaZ{$CcBG$InEcGvQ%&dIC~9BTC7_MIy)2x~$VZd*L=
z?74d4F8>fl$t0dQ5hGJh7vF!zeSNCv#8!3Z4RZ;p$<*HN%zJkVtE9lEn<$hG1UV5N
zdwX`Vj5h-&vr)Rg+}{uhDOzc|3AR`5UaC?%Q#fJTH#;aDtjOPe!UrjmxDwEr)NVZ;
zatH4OlnW3qZT$F|fmJ_DQ%TCsmS2BjLM-RN;50in93TBz^4p-xmCjIiTskf3#`DuL
zGU{`}Pdy|(KLJO8g_U{^>N&u+_3{N;I7J)HL@MkUkkz=234SuWygr*ZR##BM-FMq2
z9Mat6J$Zh;3HzM$%ju6Vn9)e<2V#i@Ub*WXybFo$XN~|Th4+RG%eK3OlGJX!40_^b
zTqv+?2AE8X^P!>aA{vA7Lwpsj16E!cc29D(lpNQ*PpI9H*zM59)JOzCQb^~`&Cl0w
z?9YO%1#TG6JTninddXM7VfW`eN+(>!<o6oi^!SgBDa}c($kj6M$!dEA%u{4Z_?`6(
zThE$EnSqH1>3Uw61-ZS?ZE`9BYPn|wdogCp$CB4d&U2;Kt>EAs971w$kp){pj1XC@
z2?8GIW@>Y!KmTuLmNgacTSWz>Cy^^3s3HE}zkmPmHe21Sf4154c1EAT@=8xGC{>L!
zKOvAa&=TTeSudd-CK}N*p^CwaBIXZ9KW@mJP&dDAJrXwgD?3El6Ox7PFx<GCq}r*l
z{b#Cl<z4~3D=qC|x7@+Oy^LvplVy-^0B~&{pMo(9_J#a`V3%r!B7`&kbbi9nioGh(
zBYI3Oa%<te<i7r^r{_HcpdcC3U{Pua@jZYHAx??^Wi5a8_Ff2V4v$nGmbNY_E(Urw
zUA~a`7+938APu5!-bTi{xe*+2i&D9TfQ`)Z@*BWSxvDlV03l{L8%_{&r=@ye?(v_Y
zEhk3^@e;7I1%-qliN_mOs>B{$XOPBoLNVy4$Udp-aNoQ+&}!}{uer$3O-wX~WX6gg
zWQ)|iH9H}Q6+F?^{haTN=jl=Hyng`!@t6i3G1ns=I4N*C5|za{yGnf?N`T^<tA*XZ
zRhLe9?`HjH-!yGYvSj`jn8A0pth4G!GqDC3xH?iyh)C^Lqs9texL-1C4jc=x^w-SH
z_mU}LIwb#cNWh1OKrLxX?KOXpQdOlT8~uK|=Qrq5Fk%L?Ey4F|(B`*fhWcGJH4&C>
zi%R|TZ0)q&rvy3&e#{5<uPDyO+aX;SceJ-QO0gHuZ@{PQN&f{j4@e*ZXa@xqPv#2>
z{DYxtXM2t0=K$gK`28slDG{&=0IWlJ^25NB`h{R>b`UFCO5TjJoJ@G0uD%k(_CU9P
zmrRjqGfCn15xs|x<4f4^pAG@3Au8)~afp;i6B8gXB3%?H;0abik%IU#C_mo|2dBCp
zy%ljv$GCC1qF?DN{Gr&|KX=5J>dNP0Ln<?YYS25<Z0Wl40xr+vUor_D_W?whd~c)&
z&r@ABHPT%-17ttMrP3CfP=X_lurv#*W3Pi|@-J~Pf^N5A0HF!e-ix*sXn$eu_@Izz
zHO?0$95aqH+lF@%zO*ynRNa1-d&QtTvzyqOT{d}xtLjGWo#)=qUgS+LT{@e2i0bRW
zaA(Pfv)Yx{<-rU*J2~tfl#Awow8En%lxifT6?TgY44#)+-9${ywMX>6HRz2d06!1m
zG2aoxdaBbCF4OZLl}5t?@L_I-c#VRwNu&XcLSNqJU}&I_ZAxR4A*el-SaoC~`LwUw
z&{If_!<@X70nY_Qew6|h2%(jj58qo~2{t#O3v3Rg2t9UV@DaZ|Z6=R$a;nJQzxE*3
zAZboon&C)BicWOJXf(Zjxo0DDvtLBFIb9@XGbB`o4XL0Dc{KCWDWkgsPEW06-Hh&y
zj*U_8#`kE7`VR(0$_J)=4!aoI#?qm&&ks}Dqc()NZ-;l9H`xnoYR)gaEHOLr=jn@+
zjg73WMv)jye7Kznl%_hXm+m}%*XS-GK)+CNQvBCgAhm{jbh6zo<)T9^BmDM{eAD1H
z8bQ)MEn{OA(9>bHROwju^Rq$_F4XbbBO(m4f5H}Cq8`N(iVq<fr=y-<4dan4j2)+w
zb=Z?f#Ag69_Qj|^2vIX6-&mRUqr1edbxO;g$rCFNNg2pp+%$VKn5TOUF_f>5J!WCw
z2DZHFYi8c?vXH+J!q;Djm1j9{smXu)9~Z|$VC-z6?v>qSP=)6NiZ$;v6K7312gyq|
z?<u&|>I#OWm*OjRx<ltp{DB8!azv+lc1P1-trg>0d(ZpC8V^i9tJB1(npQoF3`8rK
zt~Y(2zzkO@t{BRdfk2>l>4Xy@NShFWE>$b*@9Dt`ZDrJcn+hU0Yzj#Q1$XDFAn%}6
zZi7QcM)ox)=ZaAGKkg>7>V`-~2@GMRwUH4`^PzmK=g*%nE-vCNc~Q!2il}F6AZ<GT
z{4qAY@7Z3_<VkGS0O%Isuu+)hkM<#^zjMW*VD(d(#lSo6wU;k3nQUda8rUPI(qeQP
zfVWTYUpuGD>08QoJ3ac!=mApgttbMJFQNuw|IE+JG^_Oxmq1ja4m{Td_W$z9K&9Eh
z!YATY{2v2^NNvP=#uGM-d#tHRX|viAOa(?SM86@53Olml5l53VwWy26>o;jn*uL~F
zS)HHmvliVUQ?P&_jh=YpOR339&!@FVhRHKY_+|6H0z<lIV!zy8;te#Kt9&+DeqlW8
zb7d^Y3%Ew~(^~#e#`7wA_QAwolmLmb`TKvAC`8l`)^cB~J<c$XKQ#IP^Ba19@JVD*
z*ocXP`-6Tz)}pEYOx6A<F6+GyK(0*Q6NC7C@pF(*wZy1cMW+N&0%>Vj#~tUm6DM+F
z=9Zh?|BeX34@NuTgw(XZaUbUEaeIkog!mC`-9bV~8Ulp->kUOC4$_QsjTryo!ra+7
zOd2*WyhVg}()tY|x7Nz_s}{$;JGSn#2|QJij9CnTdQEB1Ajm`da9bb*{bRa)thV{Q
z>XiH>!mAb!@+Cd}yz7~VR0~~_+m0;BnR|=-Y6pJtI0x-=31fHtjkA}RUqgnNl$;z=
zu;^CI&omWCzcv@2(gSSiDkH&gDaa@*8FBFVHdwkNmBzQ93KvX<DxG*i>X(VIbo9;}
zg+-h4O<0c|)G$iHgJl_iCXXX=?q%+r`tTWcGsX@TEf7zfn?D3RVesc)+*0@tbn{&O
zuhL;bc2kw;21NhfXfY;>xOzE^4#qBOum!xZ_~<nm&C&4ZG-fL#PYGTf-Y{>I1Oa=P
z_4{8{*C8Yd<r~2rUnL4T*38Qh(hoqV1uqJm2mhmeFOzRK2GJ%;lSC6oXn&J$CwAH_
zI&Z3dQ(ifPiee%Tr2@c8L!u=F(k9ObuM$BE3hY^6?t7_ZUKXnP_Kg6H37Oz`$)Gw}
zE%&oigMA0S1C)sXF9?&?xC%j_f`eR6c4G~CdY(P=lL#bF0^K5QpC!DpjJQXju<uuc
zcv_@`@V;fz$;qxm#rrpLCd(cFI&xf_2Ak;WU<rf&;*f9Jm;SX?$!_NB9R-n`oE%uN
zVDHEsR)^Ax5P-A-QRTfj$l#lqnf)+ikWIH%=<KevAcu~@J3R%z@G!vQZ2$b^UP<+j
z)X(X)Pz7Lbg=FcH0L0Va5$Qewj;}T=i^7Fg!m&orSfdJ{%|ihc`W;DEi*)sUggdF{
z=jS26*gFV0(5SnV(EOKf&7A!C;5m1Md98MgKjW+1>9!kg13cT9SZ(iY1gp}I>yZ5d
z85^Qz%YUKBrs@=d>!;uP;=dNFR_L=z20v-0c-(?do`nQLNRM;b_sSrg4Q63)oEiv5
zG_Q&^(^gOc5<#P{i^c!z&YGJ8h<@|_eF#38_Rp|DXlct8Js7+*;ZOWh%M2wpQ{<xZ
z6p$);YIoy+*O-7mTR3Pi(C&b!16K#yd`N7x{Tkml`dv$b&K=RuN=`ce1#MDFqA7C}
zqGZzu4o3jeneebM8Oz3l!2l=(`l;$>x4cOQ?|_XhsQ52B1h(5laHI9OF=`o14ooG5
zU6VcC%)|t5X(!*Pofty0fD!eFzrO_0748c53WyJSbuV~n=179`<*~W(xd&26m~J?T
z`e=ZE2ip@c2}sR?x6%;8_b&|%3Zja6Ybc$RgappzOO0isQppZY3Fxa=aW*GjJ&QmR
zVrjfPR&Y4Mz2Pt?#??+k&=Ul?<*iw|bAG17%YU{UU=9H$g3bUBFlW)fPk4%7zIv5X
zQ=@Z~#-M3E4!C&wUl>RH+cJ2p5QcnhW>)aebf!eqK|2UG!eKt@nYdfnmQyvq{W>+`
z3*0D(ZV=c5N!Vet9(VTaW%K{bM(=0P<G~#RbTlzBdFbX=V_OBm%yA1p^{gu^Po}N-
z4?2j`P-Ffk_LKCA?hVF!?I5T;u#4nq=<_=P7?1I<-yQ9kE^R^VCfq46Ow6h|ED5j&
zHUj*9>yra(b{R6M7|FA#nzfQq@mmRAB#~iczcBFThjY^0+sbhhb8~OS3_`QDRJB`M
zDRifJuuoRnt%XZUh|pd`Om*m<*|cqe?kTHI!px6PW_XK>%dgp>9uVDQV&zYrmk<Dg
z@sFFo!F|5!iVw59%P1QS<?ekFLbR+c^U%m)AfL#xYBF^2#V}W-G3OR;waNUCD4EI_
zOyEjfifYZ4pBhqXKtle9pWAk_BvbIq)vdxC!qS!=b0of~c6!$|NWr0jKw$i>#Ey;*
zjE9Vgz`;ZEX8oL;ot=%IteoKztzXH3H3HSdR#3a&0ou^oQIX-C>jr7VrltoU{7o9h
zk2|^aOj}$|j!a_4l8D+{09$<ju5zTA(Z~F*vYYPwptaY~I*xZF(ivL%{!1mn_FfVl
zSO3$vP;HFlL^t(a14N`D4l4l{0o(k0D1Kih6iATWtB+p2dNsB{#Qb=SF`3WB;(;@o
zrGCIOFKO=zr{kAcDWZ!-B_*=KRn0WfP%{%D5Co~7q@+i27T`_aUHg(UxB_}{YWguK
zlrjpDrhj{17ejZGTmPU};3t4YFwv*1`136%MZs@O25d4j@>2~-qRdbpoTZVO6|+J?
zlIherxcN$-sMa|YUsS=;Kq$W8f1xQ;)sG0Pxi;j|7KE=2Me~Y^)MQbibYh8{WhSpR
zYTZNv0s>|Pr8uPjI#oNIY_$SH$amZ}2Ah~sMp-f@G4U$Bt;n9VygEDCOk&)I5pmp;
z*wP6P*7YBCA$&vr9(dOi8NjTTp)(~Vl=e6X@bjDvP=Be^H`w4qh=l+oLbcBe78$sg
z2znzC+gsyyqi+zt?gBvrhC9F%<z7njJZ?@v+iA^*$od!U(q3_M-6617O1|+ZTbk}r
z7Zx-K5fk8oDG!>ms8}&jTJ~mvH_@t-$ESa{XO5o5w6n8QUq%xcC-@T3`6Zp=7&f>f
z0jR9)Eo3rR%R<G@u0LGdC*B-POlqHKgI0+;J?^@V{S+{%R$WKTAAsq_%6o}Hk6Lw`
zqSDlP(e3|c0gfY(twCxasMMVKI37H2B>R^cGI70;5jR!*exWNtZkhOktO%F`&{Y)L
z>gDNq0b;)NjEs*prK;Yos7FRd))^G&ZA?_F%sL`^B?;?;B*AMh?57qxC}T}@V3->c
zS}((fs0vg^h%I1R+Q736hJFC=+HUZEGNp2L@?vIS+iHxu{VcW2Kb(CX+0$K7HgCl6
zQ&z4q`oa}+4iIZ>1O?A3R-PLhr$ZR&yZLwp8NdTbL%?YXe8ipZ{Ig3{M;zP0Jp~8=
zaQ2cH7I^xE<?1lN&}=YdomU0gL9QO8z#%UO)ff6r9=(10wyl~3ERy8hT+TUH7^i=2
zbcgdXX)p0m?WFtY#SFI)G)n_a_Qti9=B--p0@iSNarA(LQ}sldB(GP-Zh2$x4%7N~
z(qNU$pv=At9v|Ea3);H7ubB$dWmi{=tO`IQ%GRNV4#lKY>b?!8_ZaWS7PD+onI!7?
z5;p%}eUoYO_gWXm2RUU|gxtC>Ff){2EFE-QNU%2$<tnpZY}<83^|ga%j6i@r8!kW`
z*EJ&t8}+6PD@l*PQ^l0oL1zJ{)*@v%WP@+qc6b%9d-gZx?&oLEp0SF!O})n@rX=Yx
zx{2r6pC0t0SLI%F6#D9A9IJvr)oqe3F9|;QyaN~7kkU#F=8=3+{5q;=uWMmDsiMN^
z=i4!h(w)ZVNl&IA*Alp-(=#$l)ZT7fD3QIm|F0`3ssu5gekD>KkidI{)%&O0BnDb(
zlBewCY{+&6=!Jx#?j3}9E(mPO5t6X!f|ImlRyZuYeDnlZkH|!=yZZ$O7TN5sE=AC*
zpm_?S3QvwKn*+$8YJw7>QmdM5<e#O%e&<TrgSw@;tzNS~hSL<5bxM1>aK8)<R?5=w
zgkiVBLI766y+#W~zY!=e)@2GmFsy`A9joj0uD^YjP`O?qSCI={nX&g@eNoB$H9YJ;
zYEgNIea!(qqx|HF2VB9w<JTeqSZQ{!C5O%A#%)mHF)@bRs4r8w(u%n$1r|Vj8bu~Z
z2$VoIK5?rpqBxL-`3>@1dJYXAw9-MKN{(!ACQ=ju?qpLnR<bpiV%E=gNSHOXRJTnL
zP67;qoRf#Lf;GocwyVe3B+AL{>9ENFP6Fi!?EX~ClrpNwVRPTUr65Q5ttr~z`o0~Q
za;G=^(PuBfa6&tx`#|2bKU<-*+Pj}?9TaoA5i>OwwUWPZhb37x>L_~HK_A;$k{H?Z
z^ZPQzg7w^I3a0rH>tJ-3EVdJ_0AxS2M@2*Fj3$C8CdygBuY#`#Nf)@f#%dJ1Xv@>r
ztBzSzr(RmRa_|?XfZND~glJzK^4rZ4De-;{t6Wn!xmPg83;}Yo|Aga9sOq-$-JBx=
zyV`M|TpbqBV^OI38CvAa<Mg3SP{9M{b!SHYHSXcT%zc$s;HpYJaOad*$EB1ors6Ob
zSOGGa^cjO7KWW{VfOW#X6tYR{+ad955nynEe<Z_RgW^HBSSV_KH;7e_{?=!`edX=u
zo}WAl2+kacj{ixIFoBcNw~;iI1XFJd;Vwaaw`|VJc+Reb;vvga`}XymjGSCjq#N>F
z5Kx{Q0wdMC1w2<wdmu)Lw1!6jVKfyEs8oh5Mv$s&QP<YK0-b}OI$@L|6t$c?uU)$E
zu>;xjk<|4C{_Mn6jKP&`t-?my_TvYEvm3OzAw&O%*s^{D)<YlwU&D9SZ_4ex{FDL^
z*feth5~R>BfUd_wnRe$j))&wW{|i(ClEN48n*%lU|B(f)bt@L8ToexxLbR1P+3<(%
zUq1f9yB=bM*zkD|DAX)8==eYe<zq<kKk=@uqoXnU&WkT<S1oZ@?JBMJ$L$-z{)K#l
zhh)l)XB?0rtv#9N0t387cwo&A{s#G;e;LJf=(Pqx5fUucP<nisTHyW-o;`i)191&+
z?Ty8r6wn4?9phJ~Yt4L$yLOQ~Ms?fpmbTMva6zIl4~o*SAiaulxcn_E!kZ}x@d4W5
zpbG_2m#babLKgb3F9(t(UXV6Y&!X8q0O<o!2VvhE;RiqvFk#A@TZ(hk$td*gtjqZt
zrt+W9$IOK{*SMyN?{laC&;0>6M&5^cN>KSBOMg@5>(?(|5D2T2gDvY;1Mchjuexc0
z*T4rRxc3`^U<zOa+}lQ-4)EI{-wHAwJsydm9~%;8Ay$bcrPp)_*GyZih1Qb(#uJ9*
z*s1<ZRfNZe+kPcdw;MX|p`#<wT6@xjr@^4$Ax108=8wCbyA_1e+6OIGaQ&^pKee00
z#>OUfCgZ=}QnYp8?=|R)z{nT>^?gbxcuLWVjr>bI0s}z!#xTP}!|)dnKEQlXq3%IT
zXu}6e=sznmU@CBOpEGf`q7EZymL#w6A4CqWXmXG*9ZV(Pdqng^Tbt%@Y!Lb9_?fO-
zP)91>O_q~Mb?<f1TtfB)!KXB&&FK}*F^2&}#zH_6KgcPFKOu3|0rH5~5E@ku*8PS}
z23cKQUDluPlb4QO0mmV@NL@`0az`KuA^*|lgp0Cra+v;b%%@AhC?kBO%%OpyF@)^D
zrc?v?lm}ek5uljE_CE#TEW?)PDk`3!CSiKX;T2^z^8}!A!)X}L96|XarJzWGvjbr1
zb%r!LfMV#q4L<HJ2MrjMD_9O+56(v`_si0|%-v5u6RpQwN!}t4E>)9w{Nh{jYfWm?
zJIQJ*wvk_kx=e9G?b0(8oQ!P+-!|P>PdJRT4SAJc>p3gm`r?=12;mbmsf^ebO|wsZ
z#1iJ3W<-`-Et2KBZtmR9pFUi~V_Lm9aJ)Oi>}#}9%*S@Sdpmm<xMb3kI`apNtgNlm
zIx=Z0V4SoW-9t<f&H^y~{0qjOiIo+4*(awbfVNT#*fgb-IeE1<%TDt!EDsDlnwAci
zoQ~P})sJ)2d#40=rr!?>h&KS}<fNdsE<-BjsCUpQu|(+q`56mss!^)-%0QbkTIbUH
zfahx|PC66DklHh`uv|hs(a{Mx++MI>;iZ8>p;7I`s}cQfnY@n7^370w{k%1-&M#`W
zXa+_A(!oVFf*SwzYuofY=*#ed?Ls!q=G*c@#dTXF_$&n&;dkgTIg3u?`yiPAd1BN=
zmIi7XXnz7H9JV_ZT~$ZRSwoffd5vF7Atwr-^fHk1;?S(Ct?ePO((__qT90$og{aNI
z4$*r~4i)h#*)F6dS(Or3ZRD$)Q?gZ<E?koEIk*+=vA=WbwP}50?Y0u$O>us!DUUuw
z$&{YiS*sMqJvxYw`0C`f!qkA~>cwEI<7`ML)&rMM>EVAm%*xCRY7+c!1r6C7-A(2&
z=>zX?RaNosV@CIqQd2M9i~af1j6Fwv)Kq^E5?~1ik<v_1;;<1JsOV2;7N5Os@<xlz
zD6acH0*Wb>k_?KEq8wM*#sAaVSBF)#b?<IMN*V;D8>CT6QejIs2uPQb5(3g8B3+6C
z3W$ITh=fRYqaxBEUD8sLl6Nf6@80{@{qLUVd!F;0kG<DkYpyxR9OE7D`_6#@4hE3%
z<DdwcWGAjP{Fp-HHRqs3B$UG*^*xWQ**QG)N#(IOeoZQmc?aR2u8%KmL5Xr`a2=jh
zzia@*<;WX4Dguo^G+4&DUZl6Rp;Op8073_Cs)T!Ja4cQ5d7aOvaU)$lJ*il)*_I~)
zOetLp+B`2T?<89|ISSD<mGV7TeK#&<N*)zv;k5SE&v@f#Y(9QLg)8E^$07<<;W9Z^
zNK9Ja4Yws?6qY5N)ey}wBO?~yY-sQynJbKxMSAD^HO&Ms{g8S5C^TldaW@xN1Tn+v
zuzQt`V39=UkdiA0$;LA#*LqGFnaPDcuR)r|f((KX|Fzq-9t`P4lp*C7)Z=$zCyY%5
zboLGC&0b_=AbS}Is6h($_WgUvw0d2qrG3j3MfB;zW<SBWT(u#59Brae<(~3k0iOkp
z2TVFd{R41-QSw4sm;V5)cIYoLJfqkUE?Vxql+%Y7Zgtp50)u@2+Mj*B53gsQmBtST
zKFEolsOj0Ld(SKBPtg<?yMO!j1g|UTN{ygX0kw|V@}6H%=SSegY?;xYJW+}QcM>am
z$Eg>i^SCp-yc%5;@{x&yj^%pW;l=LwLtm4)%r>OkG}gzs?meiU;BtSU;;bYCK}oGy
zh%htJb4k?flly#!%O?9m6nLprvPEay{%gWVRVn=7mOVZ`K5@dhAc@<Pg2Bza7<pG^
zO-;oI53UY>yz}_}cm)ek=>av^v;TU-b*l<H$W0_JvgX+X3+aXiWfMPgd1Z?Z4wiit
zMO9S-6!5KoF6=G=&kuKIYD~uB8N6|zb{Q86<Q~REN5d-z9AzYD#52rkug$Eo*lili
zn?DMuUAeb+HmrY%U4c)Zyc+uT%T|aG3&t*{eQrN}V!2X0cidl|^{M55R58mt!<)l#
ze(90KZ$J2^FfveUtSR8Lyd{BjLNf|yBz+S0>?~~weI_+_@?XDxh1|X4JXJS3>jf1L
zG@%l|+SXTS9Rpnv8|8DlH^M+}1E4vuJy9s|eHoe`srn4P93euamP>iD4POF6<-ts}
zX&TgKwpTBMlgGeS+_dh+-FmloZ{9Rr5x(|P9T9bg_#ZrJy}j9ZI2R)jtO(dZQ|U*A
zadwLt#aXksA3&nKUe8iG>I}gmWCyRfSNip<gt)Ckj=-sejTnW|7dZMOeMj2zc=(=x
zkj|K#yPe7*@2`~4_Ug+nY&!^95<w>tyM8k9Omgv{cEYTx6!V1gp`Pj-Jg6YS1KjRu
zdiwXx=r%K;wR^mZ-}vD)@w96JBHa_?!o{@D9tWQQk-hhM)ajNje6h9vom$3*zk|aS
zcq))MLMAZTU|whdMo$AQibV@45HB6QK?bLD=g!y4Kc$Vt8|L}?Jeh(dFR$JukdsV%
z^(y-3Pa}vrxDZu*j@K*ya_+C&0NGG>-DaGD(e8z?m9<41S?|4RaTF&l5l2{}EYcdr
zn)&%yA4;De>DPTg8D)0Hy5y(40lqHa?XyIo{X%u26u+U^q1;$KO^itD;qRGZHhzAh
z9@*oM<5%W4>N+xjJsQg-#|RrKa5GQr(;;(F%xV6!(B<#ub->QSVb$|m24bKBh@t^G
zfQJKo9APShcg*M35kP8eKsOGQT;AYr)pz7QG6(77uhS+1B|(<0s;Y`Y5w_ld+XJa?
zeSd+TK#C2Jl99F*R5Uc<v$cwD!4F0T#y|P04nmHz`t>4hnhDvt8r#O8_%YA>5F4Mr
zEcAz^_??Xf)RL5Q3Z*{6Q+HM@Hrer6!hBpH|Al)t8@nBiy5efu(PtR`_t#IxVzNR9
z`;O&9H;Xp%#Fo&<TgyM~1AHGTqTxHF^3t>JtYZ^n(S2A~$QDkP8zchUvxxUJ7>W2O
z<ndrn^=IVDZobJHn}vRU@MW3ixk3Nc3&<ZxwS3bf6`w>4JJ`P!w8mFX3RldT<K)PO
zOX9J-{v$zl2{%e8$Sn-{8wHNiT#JUIEo@L>q;vT$q8Au$wW~^3vl9-dd4~}{M!sTJ
z2KZB!0`vLYb|i$OyY^{XC>k>A@K@mm|MSIuqDfWs<Hu+kQWYsa4I1(&CKnL`1{~xe
zly9sWuo{p5l&?o)#4^!i@Lu8}LvGSjt&+U&{i1<7Bh|vX5vFEKFSlvkty5Uf@THm@
zlPG)JJemQ;b|0zakZbO4lppnl|J`Fh|D-zl@m5JJxz4Lsuo=kXtu(lBWTS+Fl+Rrp
znW*To9Zb37BFX>#hF&E_UtTXWVKnjfJwA-PCo_2IjZ@5?H2+2dqhLI0IpgRa`~H0B
zJN(CN4#=j5$MP1pCL<E(LR6we-8pAA7VBf3TXDbtyQ{+SC~gXY@CVKx#clApg=eh?
z#kAKrkzY#OSl!=Owtk9tpmw|&2_I6tU*D@k>Pka%3HwffknOg0EF*VE)y?Ke0t%L^
zB6v@&Si^8*NXcl!D&;=5y>7Iik~Bqr+mN4TzV=<D%vi3TK-882Jq8!2G`47*2rI2U
z8pTL^Df&u|{PveT(pUyc%*c>6XSScU8dW9(VdLVfZsngY#Ay`T+dCeA{*-@7_^CBt
zU_feb$_==^-4FMf^pAf3lu<>G)^L8OX`T7J^RaRcpGMtCsOa<aNSsjjXO`b<1Su0@
zi52D|g-mPiBy@?>xn+g6U-7_lT&t}Z7B4;Kz4LF9$S08NkfD8?O`RLn(Kan@CH=HI
zjhCp&!nnAe*t}+?Z=G*DJkupAGA-;d%q`AocpCj3`Cf2u4%+jEt<WN8+x!8Op%3rt
zkmj%$_sU1)w87V$0wkzpNaK|{!spA%ah3}C&bDtA_F5q`rR@nLyxuKsxyjXQlBTh*
zaK>(bwRo#Z(D^w5&B{kpqCe3dKeuM@{GQAS`E=%<1Q`)|`TAAQ4dZiKuV{RVocCEe
z%R)!>Pe{<#qh-nf{moC1@HI3}096#;YvPUJd34#Q>Py!;+V*SFB9hWHqGgKuLJ8km
zxB7qEmx+kBI#*v<8<NaYV1;=T83FrGhaxtc8CgQ5T;p7v52m8JJ*i`j(S40NJ3O`y
z-Yb3D$_iUUqvIl&s_@|0C9q7b$+o_5chG&pex6st3{2L$av6+KzdNnn{?NyG$D2`0
z(j&8IS37}12Sr0m7u_t(Qe`k1Jglx5(MOe8e~Xr@Be>g+lwl&Y@pOmBrQ~#JDHfUf
zU3L9gwKYYTwKQW7I<hc3U^=72qQi)DdeV|e<0l0Pu}yAAuvwVqvOh;Yu2A<Zvf~!E
zg6OTeIE4$bwR`-LZ_$IfXC9h_<|<Jgow+VEy9cMP1K7x1EZ+GBCL?(8qCbigUlRI2
zXH0sT3VR|el*2V94zDHI&YCRxUfuD^?J@i)<l;GX6}}JEc(=YRpXrr(<`zXMq5~~|
zp@b_0nL<`q{pgQZaX7MI1eKW<%h8l5s!6#oX%Rb4LwnuNBmG8y&9Z#yiS9gj;l15m
zd0Re00hu#QJI1WE)MT-_l&86tE1C=(*;68c&NNe|lBnEo1=<fAjF;Vz&-GudlVp_)
zQf9|deB!f{7!*_Jq^O@~=xWg@3LmeyN7(eK*k!IZ#`_6z1hU5K+X`L|7QW(?zV03(
zPO?%736>Nm2}$#2Fn!EikL%3Ir7;e8CTWfrsx07*MBG{cl%}`3S3p44n+12}$jTE%
z+?<Vj)G4V`@jCj2pCj^|ClbV&0UmU6ruk&Z`^0b)#CJRww&@_W7ommXJ4@kr<uFho
z^7W%3!^l!#F`wJ3Uhr(c;mXu6cw28MAfZhW`(~vC@pO9e`xPJgNDDwuAa6cFj60xE
z01EvRkg{d9?p(ZZ;exV;#wAHY@}|0erNODm@OylImZZc%la&XUc5APgnUtY_bl;bg
z%CLAu*NU8_&9#1i%n9<l#dDX>qa_|onqd8b6gsJ5_i5Rmot3{-^N0Mt-md{1g{&ak
zs`t~JGcji(iz6UviN35*A86F5XEqWWshyRBr+$8&3ui8wDqT{I{}mp~BL&u{(CkC@
zYQC;HKttps(8^6aeyp@)tQ`~-^DI<*>wPUIq8gELZ$9{Hb*tcY{@%7aJlWNNF$ha^
z0o0Kg^#)opGs<}Q0kU7;{v6}v^DA+s=Fj*%bVKY0pC=6lvH+ZRXz0bKvl)``STLMm
zU)D^xOo-F)Z5&!_Iek?h?}3|Euf0gBuuZrE*&uX0Kt(d~dcac15+GCJ;+4GYbl$3~
zG=vO6las<g#M4X9&(A*@`?)`I&th=sHdJtu89!#}!9g<QtL^Hrm;2i7aq1MWrK8{O
z2eK?I&9l|(7vDqi4%2{~oP44Km`-gLcE|pGvW(sbEoY42aK(406k9i+5}NZEs52Ud
zNu>>A$)lHR{IV+Omyt8FaxxY{<y1B}eG_$D!@1WEv+HQ7?|aEdAZrKa*SVTOPT%1#
z>U99LB~Olk-;_17mcb~<$JYimA|!c`(nGe^-`|fyK{^XB^WjTr;2p36UIJ!MFjJs;
z-wce#tRcrqPGcERkVQg=HbUZsDhH%6Q$fe~p?I&7*uQ0F24e%>n-`#Wfl^jed#w7d
z1$3^TJXdtVZLuRK6@+4lPeSrthK+*SO$ED=&OUpQlX@+6b+o1?u|-vKT3XEDp#GVi
zx<CrJkcQs9Q`zne2s1W{&$uiy_&Yd)Ucde_Awo(CQZW$hOfnV#&#}O;7)+=<eNI65
zi;Dt&UDv`IpaF-+zet?Y>&-u6qq3~Y7@6ddf6=}&33MlD9uhBq^XDO!?RIm?lry;`
zedEDIEO%J6vHOv~!Ll|UOQ61$6-(w%)O{5M>qd&zau4vL_&wdogetLY#>_3w1p7$n
zZvu_Ri`(<+OLb_}ThidT*6$^^j)YW%DHV^{biWdn2skY18d)FxjH{xeLTq7D<C#BF
zL}ag~JJId{(n$XU7u3w=6>-ef6&dr|hx{;{`aCaM4+yKg1*M}#0VILR4^BPahsIV`
zSpy!m4+3wD;}w9uN<Qlbki>pHxPC4w@Kh|V8&U9C+}Qhmt)~gVM_@of<ENpu`o0()
zWT4DRUk{7nYKTONuL~%lENpC#gB!lu%KQ0Af|PN_lkW|G{#_cJ%z!^p3eKPHdK6t;
z1fpYNGB)^8LHBo{?>0HnH?{EjR(z#n+SWYolb*7`m5FlWFLMrl4c8QCgdZ@*b&O0;
zQAtul7=Ad@gpu1hmO$l|(tS?>nx9a*{O1Wbztxqg2gntap%NUg5U6YH!}sxEA{6x5
z<aq4lFz=m99<x)TK%G=_w=0>^BCQ^&qe8lD?+B#$zq6jSy}FJ6vH-18Fa!me=U*RS
zNT5QXc99J1mi>e!T`TJ{Di0U1=QaI5Acd?P&#Pz8FvG3D&}~kHwud7mhFWluNecWo
zAek4Tjnn%G?*?E(q^eZ9rIjfg2c`tq+c{IZ{)X1<7lS`3wAG==69^`LGV>X&PtFi(
zmrJxgG<(`I>Li-jer&5<t>t^2gO;o3Q&qDV0RsVKq0l(vY&72lcPM0L%SA5<uz=u6
z6Q8X&`3>fesHZYTc+qMfL;R!4YDcPRudE4xr)t3vbk=4E*q@k;S!O1dFR8fpLvI|*
zo({uR4%4wGY3&;LXy2hyeb>K0NBoBW@<K8zz?$0$-D%<^sPq~hM28zPuY3gKL0^<5
z<I*;IW*2(Rd&9I+Z*5{Q_?V`u(PQA?tSR^Iw3d40V-bPxDY>Njqc5argx|P&<1Xhb
zEm$c(51(0cbx?gxI%m=&y%RfNV`lbwS@k%4A8=D(nUI*q&$*k%ee)7c#;4#!p)}Ja
zn&mn;6zZXSRam?OwVVHfG@v$n-?rf;0uKyIbP)Ghd>IPD{kUN|4RD6k$<bStB$PxE
z-QxSYYIX|ywEd-Ik}6f_fq?<Djm4q9o-r_hoea7U+)EgCa2S5*ldcv%$<ZLcwc=)e
z`~EcpIZ68BK)0!sT(a-gPUVLyB9QugQTv=@#giKZslap>fNFQ|asYe>KM#QoA@jH}
z6$dID7tN3-y|$!z-`Tkwm6}R(vuBzCAeU6AKf#Lz&{+})U4;f~WgFyM-Fu@<*REf`
zeD!5)=Iaz?b|0`TKuJ(t8D0C`9bVvqJwZq9z4#*|=Hw&*iI!|^IRmyv+_DU043rF^
znVOrmLpuwGPC|an9N8Ou0nFq?MBRrQ<m+r&cq<H!<+RZE0Hmi4V#{eZPwK#^-))zp
z^1!Pm#>T7rq8VNn+(h49oS<XyY!5;Yr%bftc+zJ|P0;oL<_#pCP%9b`Rpn}8zc#h7
z>sk14JkIrGVo+TCQbX{0Pz39{eZ*oCTym;Um+e&|q@du$a&xt<_>A1(<`+gX^02`$
zj0V{_W`U_9CEGka;n~5TQ!nlgu)6<HHSvKWXGAkEM>Mu*_#zJ_K?&bl1=BJp!^~uV
z#Pw##_zy3P$enB{<aWY_)g(lS02pNz;_fPGr-S7(MQ`47A>Mzw`6v|hgRy2t_c*w?
zypK$Q;qec>N>}_*y*UeBJcs4^MZ;~Huca?H)wB1dRXx<5_~LB$wM080Gcp|KX2x7l
zxB8pUKUeb~Og$M?nFYp1_#V$5A(Z`gnSoR{O!jIE-s(c@9nhJ4eMw3wcQz*wfO^u7
z!a51y&EK!uO98N3vlsvbSlgP#PXWn9dJJ^{sAv{{HsS-WLVc?Zyx)X(1yy@70HNlS
zeCWQ{3Yb!D0N=($(X)1>opL~Kp;g>-R=u9kQ|@YgCpq}FOwof$XR#fX_XQ6vkg;tQ
z0(r9AxO(HM%mH?#iywd?E=g8de*?^~OH1H+a1uAYStd1Y960#kdb5!6e{%uecNGs=
z>IdLyTCDny3{&*Tl1F*SX+I)o2}9jyL-cSkOAs3eZpz5GxC_0>LheHornQ`!0H4C3
z;REIk+i(!S73e2n;|Tt~4=XM)Ik`jp){?oQj?N?4H~?hFg*{!f7|eQLws}f2p=5O`
zItvwmhRQ)sK>?Kbg<jmD41ndVR{GyTphGYri(j{mjR{_=;{bGWRn`zpm)k1?9D}uh
zr`3x0hHJ#`eB#dMd)EUB%gUa+5^S!XVcj<)g?%P5GjsEy*?Us~CD=Y-)kBwtzUa|0
z<H1`ael|8NNCZ#nJzo%BEHtE&n5r2Mqh?C74*W_|?_Oi>wfK$U%iQt)!}qUWiOSMH
zWnm2nuKu?bx49xdXONfqKxYl{g-pKh|G5YlMnG?@rN4tUcH{_JZP=MJE$m*w(^KnJ
ztA$m#P7`Nnb~eUa(R_#K2zD#0ZahZ7IU6f;0K6O(EbD>`TpzxOr3c+V_xxmH6>U<E
zgE{}-P*0^AvFS@mFCGXc&_t~D)RL)|1-prO`dJe<VL~i$Rsp7=mqd3r$0NS3hgAaC
z;CZ1htz>Tgx>Xc-Gmxr7cc-rFpyh?{&f?ADkz=!`<VpzO!)wBHd*VaH??yj63{O{8
zjmXa6o}_s@|NN`zI~{WpgN7qBANPuSvwUuwdI}}WZq#*(KxHylT$S+w0JhqCS<i9Y
z7e*Nyrq!E7^#*q-s4vG3h8<2xnic=;tgPJL%5w|5peLt;ij2W)+5I$oSoDkskmfMb
ztV`6?$6$SzJ3`(UnaKQ6jc&*!cTIFpga2^1Rx0%>kN&duiTvs>xAcnPH=n8vamJ8u
z%_%}+WR$$u#mb>s%z?l}6M}K_{gKO4l6Q-*@2~Sq3x)D5VOTb>(qA&P7eT5+vS+ZQ
zn9jCvg$M`cz1}wr77z)U7(Y5+eVmis*--z4{c>Dnd=j<|H(SS(0{ypWD7^5jAh$-C
zdC!uPK-v#E<C-CzRM|*Dl)ZW?%|!}aD<9|SvEVbN=_$pQ-rk_;pJ&3pG!2dFIS~B;
z$OcZ#+}s>Y$LT_|mwtN1n_9jF@5zea#ka*A2UI#eCY3!cq9yq%zx}oPY`iJ3BURh9
zT2<-_0t?8GHU!r8viQ6miP)OUk>46n3TKtbbG`kNX?<x8eG5gd6gJzx=LaRm>31*&
zXZ}~o$&5`tf#2Q2eyLXE;QVNDyP<r2>61q#pbO?)N4<I42=H;#0i_xYp}ca)@?O3#
ziiYx1XeI|q=VrXbrWakFtW=NnuMkVZSb~<g+Ec;HX=0L;DXwC83^?w<cVq?(b$(<W
zj9<Tg{VE$7iHxf~RJ#bcw{xdqrC;!Qa8M`6ar^R1Nq@TRPw#z#U&7l?XJ*SrF+)*V
ztfw>^ESFEogI#=lT%DH6LKn?;_f(LDPKp~l_d5VVc+k?Zwzf`rO$W8ryggp;@FvoN
z26I4m=tpA~{R{#8Osxcd6P;~vG8gsq@U-)ieE6(rL_>A_^xOE3O}SNz7xP#-p(rwK
zlj-whcI<3u;`|=3)LIsb%z%9hb}Uo~)G-pYP?^YtiZwh(N6b-c?Pg@Z+bkYw*7v1O
z&?2Okd~VJWL(<_@0pJQ!gOgigZ#GT!6P(<0nI66Ga6oM+<S!rDYqiUBr;g^f_pAQ_
z6EPIGkkkxQ;~QS&k+O--Y060ARbc}6r=inh=GQdIV^?Wu$v9vFgJsQ4o)?e=<1?t<
z0QekgJ7s0%5PhB}kj_i87w^P4=L2d}EGMeCEL1n=qHt|Wc(N%ytf4&4K}oSQMkg=@
zXhfw@F*i5_$ji&8SQu(+H#Pnk3Vs8eg8w+wv*$SwE1_h>0aoAa3!J?PL3yp9%MW@|
zRHZh5L)#0e_<j)`M=%&rEW#a>7@2Oe+A*aBI`QZ9ExV=vpxuLR%14VvM)*7NbPk7F
z@|%*9615Svy5iFwg<}$L@GU^Dz2$*cG3_aY55l#ee3y@ydkS$4x;<ZPOJ!?=Ona?4
ze!%8)B7G-%ubo<Zn)2|1U~NNH?B33=pXYZAd$V?<^MuHXblHw&k%S9s7``s3yTG^1
z3jQ;r!3Fm4lO^bE|B|a5b^clBdkq{?x<<h18f*=r9Sy`_Fdp7NVXcGe%nA(X0FD-D
zbP-Dft1_rFL8%u|I{g{i2fnUG$>0+j)@R=adp|-51Z3U!^yIC_YjzUkNDZWb3J*4e
z_5oA_VBB*0XZmI^h__3eMg-K;CCH#BAbVX2$_d!)o~z!?6cE~rf!Vm4X1v`Pv+!lq
zUvpX8@8j|=5v8qWlZ1*;!{@!zr!8NEglW@^pAbJjOjUg+50pOC49w~b&TQ~VGH@Dy
ze+e3%S;9eg?z~hW|Deq+glJdV+Q2)AmMQ3v<=nX5d~@LZckLQ@^%JY)>E^dV28)3L
zM{3ARak@%TC~%(uqh=}g$B^|dC`Iw|^8P($N%~sivuz#WK?Hrel@r>yjul35H<Zkn
zb{4aN#tV{4GCx(Wb6;u0GSgrNCN}Jr&{qIEIQ(i;;y3FW<DnNWLTN61e@rB^E^CDZ
zdc_d{q4=)*!25V?UVN~k59QN!lqEDhWThhHw$jj^mij{GsltRcIn?g^j&Z%SyGB_n
zlDeFV2MK5qbXd5o&@&Cm3MgJ>$@m2XHatBS!SHQfE*MP5&199{=~@kaxP2mM_5&Pj
z>B;#sG?%=ixO<0_M1koCX4BrPe~|ti%q_$o8H&%>3c<b5SChRC#`!1Z@$}c9xi0*Q
z*UX*I>=7cI@>}E2WhnXG<63U~30^g=&f2XF#cz|N&^kuVj5MB=w>IKNp+hask46x5
z0cHd@*?I)0dMdLgp6mj(6Z*RM>Z=m|dD*Pit>{S$(~hJh0LA(uwaMZlaYzlFNX-Jv
zEK-u6KgWhN1$D9;pd<?!>Df+hX3*HIld!Nb@BxAO?4>Gy-MDagHekv~a8-kXQ~e(w
z-JrlMUPKjoc?%2M!Gc$=Y=86Rr;1UKuLd?t%6JL<1rg~HwxaCm?mVnCe{mSjH2_>z
zM#9#rbcdPb4j2Id16;$EBWF%{$nLU+3g5LA>E~>}$e@~#QED)6ph3aNIC)TcLP&za
zk$oC=`ehMZ0w-mQ^YS7yjkVO&JX8lESF0)O@C1&+$<l<#i$;W<o4Y2k@Zfr;I@bMx
zVi_<PaXIsdQyj1&B#*-8c@cen{K=-%FW~Gf`^}p-BLpT@;&&K0iY8p_p^`9@6)<#{
z0Z8zSXc0_$P0#2bw0l6Okt(J=OV__6_A&#NIsgD5j1$O+XuaftasONZ2_K#f@y}d}
z^12$n2#bmitsi_pJDO;p{h<Bvl+I;CVj}G()Ixu{YheQi;EQ2HMQOV_I!a0jSfS%B
z?LfWAZK=A%Yf#0&UD8N`n7*#VmM9t5WeCG^A!ND4()l!MjqKTtf#GlYn+eh35!ii$
z0jOC57Rh6`+oMwc`_5-OplYmKD$&xV<~JT(H(IyJD<b~R(4`n(SLqNTUep})*0(wI
zLWb=0ng2fEI|qj+XPQ7AE2~-gif0XJ=DqK!vpXADDS{R_DD_t&U)Mc2wO$jxS(8(M
z1rB@ViLw(E;J_?F^3&I^H^g+R1O8rp?YDXb-XaKX5GR>J13)by*iNnd1-K4aGXeb|
z5P<CW$w01_4dlfV5EXLW1<Yz7EM7_#cV&b$(Cv8tK77sg?%nE>GY1h`gh>hfiKwWk
zlX8fTP^7WKkj`%+>~GLnK;IS8VGzB6_b|}k=G}?`@Pper$4M%<S9vZsVEu_1icLt?
zi4Ue6%jW=Z%jmf3`^PrI1JcJc`iY7zxHs4hAWnig{1e@L&qKzgU%x!7g3ABH!1jIc
zqXZATX>~Lc@gn0$526a?yfbP-<Fw)wo8>m=7AG6h@`gk!m_<^b_1)-8;+KWF2G0So
zNWaydbjsUrwxt4b0k70K^$iW@ftQt6RMY|J9k^UJCw#!c1OgIBlfcI#r?iwDh5>G3
z;bL-K^S#g82k0#ADzo94cyXI;B?#rjT~yFk=HcO~+1q&yoHRfRW)gx=5Sv)U7d8`=
zqyi~7%R1wX-McJ9{9RF*;MtjLqi<mF&`(_e1MI9ecc-7jq+1;-XfFMz*NFqJY*6cf
zG!95P4?H};_kF!YbM#+YL;*tv%$@R9!cKrT|Gq6hrTw*k!K(-XyP)DA7Jl%x5ICs7
z$)S&qMF>5xDZvRrDJe@^uE3M`S{yR8Xa`eSh6Zs{!{|bj%0CA@kh}vba56$AX#TtG
zJz#vm$VqNY+278P_AMPSs;a8?r~}+vQ|{XSK_I|<#M2Z4)gx<r$|@@Ee*+O`Tbl4@
zuFQbB?Q^!NMI??^>@B%2#<x@io3}tOC98F%;@kKhw?xpTm|XM>zrqZ)WwqWoDhxZO
zxA$PJ6mN`2qIxgB=))3_91g>B1NSOrfKwno9WanpBi&0wh;y=69K1Jn)brz~R@bZU
zMS;ER>sm0jGrLAwiUC!jrLZ<n!1v__z)&#BhKtO`XP-p^;F0UF4<#+^+q<f2rT>=~
zbV(eLUf=~mVNx5w_A)hf`MD8P?SR38l?@b1v08qxN&N>UnwlpV6fBIVR$oI_1x@wd
z(C2&Iq2|Tj%G}i}oBJx<2Q>hoZRb2)Pg;z(wX>7r@OLbK)rg~&E*nT2;!$}q3f=!s
zd@*C?cLR`-W(zB)<RP9YkWb1g2CuxG_14=-uj!yV*_><2%$|O*i+PnPUeVKtX;kvt
zld%qiFzkcLHMV$NUEM=W8pDAdK!<<Hd5e3Q8X0{#fA&dBzS=<mI5%;M^CLv*>$$k=
z?gRD{gQ=&qI^?O~{Jk}5mkGw{S#V?n_;)e57$iP_9tJ=Ocz_h!(cl2ZJh$C@Vz>CT
zl+b^Ij>d4UsG7=lgHa9)lh0`me3e`!s*|lZejZR)aHVvCQ2;FK#$h<i2RI=RNh))E
zfP8cw+?upk2I+v;UkPtMtp*Fz+IKLoj(#0~FWlQ$ZUAe;oeM5S-!r5}1fOX)X(^!}
zRd61>)C+&p<a4>R2Y1mPA7$iR{?oPQQKouSlSTYNw@%+!ctyT%znn5VITW-BTCD3z
zx1Gi4GE=LM??OIFuV@Ou@%RcGY}?dMsbfylvcRmfg2*YL^c66=*(45}qNBKn?~4=O
z$RaE!Il-xbYf0e9_53*{I4l#vB7)){HqFgH+=c)!OsAd|2cJ5ny#G7yks?(63?k>i
zyvN#Y8D9;5vufP+k@gz3<m*YC8uEa|13)me;6IVE`9unmH1K2PgXIq~4^hQKmCnY&
z(O&S?!tOvuSeOiwY@El<D@Ue#oK(@%oY|<}{;^Ow{<M%VA`3j&KkXCDo45oytPYmS
z?VUILhZaPM_(fR9diYGM61CdE<^Ib#YlWb$AD9`NHtZu&<=ppJRKLOUJk!f?c+RT>
zc;WgD8>63dM;`K*o-g#h2+BDnN?E={NeS=h?YnnKj%qH|0MP{yt-qOpfN{7dC~YkD
z1#yP>f6U43q2SU)RaF|4@k*+-93Rn9Xl=Zx1o8;n04cbS3BaQ@+8DT=1vk5UF`eX#
z=UZ@Pld)L0DdE`6>)C7-9Q0gd(5!r6UK5k>&DCoAx!dpSqX!kIbtco%C8U5;YC%m4
z`QhPx2>|EW$?+Q%6Rc<|<0{vcK1!;|*FTjQE67`}gX1%()L>%|AcsjNb^5OVg~!7e
zr+A;`;wg`@%8l3euro}0zTbY+lP2D?ph!5`Uf&GJP1X1kY+L{iCOk`xqZ8j(Wl{C@
ztsW<9|MB4jGMsUm>R_pV>?{wJYAMrq4ZUBfDm#22fSqt30eMHp_-gOdABq7$6T)cP
ztUTB|{%z%^&OI!BMWLlvIZI)MY+Z*}pF|0tAzbUk?ek?}ouJd#;fGBV)gFI)5M5+U
zdkdG+em(ExigOvf2(O>49}0deVO5={O3kShcmH^g2P%<~+=YSu{==TYNrSvbpgJMV
zHBl!jXg6f_*@M1Vaw0P8+C+_N5d%f<K8^yAMS-kns`up*>PMP*vD(s1{Qbt-mx69l
zuWOUhVrhi~AAG%qADlk~?y+1(ccDK(`Yt0&z}N(NgAn2T(8~VnL}hlPN*4w=kHt`I
zX=eCrW4dvA-J@!+Z2#Qikhf6_jqwJW-N9d9aeLCp{AqvUn0}H)E9c8?x~yHdA!R~g
z&8h%p<}L{1lD9LNfRW1bXiYU3>;r#V6*p!`dHcP4B?||b2^Lx3sc8MxZT-n-u<Zmu
zZ0HFFU6uz*_ie93uj9a6P`^0jGB91?=Dq<keg(``7wW=&f{Pc;IO(8v1M!6=O~>ps
z394?lUkw#9Vi7z!>+cACBE+Js2`u<(D39SD0CI(W%yj>vC=H>2f2g11e?U1DUYatz
zFsVS!HnAcMA4%VM@zu8F+Y4TdiCRH=7pjGJY70+Q#p-<xzOJKyuOyWpn}?R2b#$H%
zG^(X_cbo?g2ZfF3K{q78Lf5eV!TRPjoa!>3<FOYWLepX0(oQ2KL|^<iwuw$jkO1bm
zLxNe;_?@KfABNCuoVz`o)*TtQ;g2u2LL(k+BbLVSKI#&|tq8rF6QInfJkInu-JuEJ
zR=xV|k|D<Zuj7Z?^BLA4=Lcsyjoi*si(Cgd?+ys7WrUDYSgnthpL|ib8|ghu<xKjz
zF7y4%7dRmR7qB;oxKw;bA=9TD-Y!bPRbFwB?8}}nOpN>ou}#clCV|Weum&I%2Pt3`
z2@13dA>3SA9dHJboi?}v9mHvssI^-K11mMs1iUF-NJ|pPp5k^12+X>#*y$|hUl{2G
zAZ|d<HvsW=MgWxm4-S0-V1H#XXzT)Rl2GTIepfw~7y4({tqK+Q_gA7_vyxT*?{xD6
z8iM@3J->3Y?Cj{sV{Kz2Z1;m6w!-=K%IU?luF3?BoIam-mWXdBWSbCpp_p6@HV49=
zR_?&x?mRaoOjfcBV;`2q-zPje8x%FYM;At%YeJaJlm2;VCjYo~`%FBL>vH*&a|?60
zA{y%!c-N*>dZbDFK8VoB$^<(bc>WT;u7e++r*Q^fq*w&KJm+XW{qsu7TL3T~@PCg&
zo=fk+HM<|bw^EG2F0MR!)9@QKO9lp>0*Jb4>#_L#a>JNK?ts^!8gyfK@UeRLW89(m
z3`lzg-`Y~ihH@I=Rj*xNPx3<<)p%ZkCUUSA73iY2F5U%`5}(!lTxh>QlkGev0I73y
z;p9Wr2*!AZ^-}rtJ$8po8Go^J56ec3n~<S{(qK_63mB*fa{!LRYd-%D!MfTxbo%B0
zrRSaWuu<ctSo$l#*-VI~CMdfRK^$<KIg?oat5Z86s!Ig~K71$^PQnzAq;n%50W6;I
z=&4>;Y?{o4!zZ@RU8;$&sQ8V4y)e(n074_2X>k$Spm5L+A&_e^H8!+1`~t}6My~CF
z$Ego!GY&o6zXlr^Bu^I;Ekwd8hgk1pYqP2^wdcB8>NGn*V65QcB5oSaRB!sjP#H$t
zUJze@mFD=&{c`zUpttwCs%6W6oGB~Mi<Q@+a{;`FsO^Ue5|M46OkWO%Q<#=_8G`Mk
ziV%e*l%C+X_e)7#ls2vl+Z`BwC&4Z2-in_Lq47R3F+r@vRc&VfyCBN!lKSZ8%pCDZ
zSzW=ldu>)#bkEQlFbT{9w%Y|n$M4bLfVy<$g+*_e=Y@mKmhlTwZQ>Py+EGI*4J)Oj
zq)=lceQ`SKm~s!y%A31NcCNE0akP1i#J}eX_8S_f@Kl`hdaV-8IiD)i6C@!-+jkCJ
zg$6O;gu}|uA7{~sU&aAanrfuUJ(9+6XKOoidN93|%X8h7sTV#}Q@HD@#rkvx0wKbr
z)k}w23K_<M&l0_hZT_hYc(e=npM70;AR7+ksoajgpz4B;z-Pfk=y@2q{E6<3xX1^_
z#uy89oauPIiU%re+1o3;Du-W9M%+&|r)h4QzMy}i@;F4W2WdTL;{PJk0nC#N&`cwH
zbXmsHd#c~Zl`42-xc4Z$2HK^*Tr*YNw;_XICCVizVr?Y-AD{2-8s=59I6QoLA7xVF
zyS$RYrJ2S%Q{Kw7m&0Gqx4`S<ZK&xDnccP;{P~Z`XGT?W=P|n^c0z1?vtTC86;JNT
z{{FFO(ape!-%7_FdG@>^{V{tqvU#rT!~a0o`Vb8?hNY!Go)|w(j6+V?xK;%hL1Rt$
zrpuu9=x)Q)*r10E7z%S&5PY&9IotwxyO_*Pz}d=ka_l&x=2W1kOkKM*QfJrP6GVB@
zA>9a&uHTu-ez6S0l{FX$^Qg@mV4XNTGPbMicoC&s-e<OQ`VZgX6bIY4M|WZd+huP$
zYgDy}*$gH&2)C#qxau^)A)3;D+{<Cn2&d79Rp>aTh*vhj{Tb<reZY*C6Ls2}&;#zc
zXoT?i)*}$YQOMyJQfG4s9Fi_fkNV|T2Mr28Y;@!!`fQk97q!~nv2CgtMu=?6n=984
z;K;)B{9+OdK@<J*q-)W<{;f+vVp7I%-@hK-zbJd&Ks>LA9i*%A?@m_rqU?R#NV8ko
zFlx;`-!;%DOj3t-QegT=pUsSTRRJ#$-YO3iKw)9n-&2LL#L_f?pS2w=`yvvv=}n%c
zw3q;Ku`Hv{>8;V4dmn##P&K~lvTO@!D$G9rWy-Mn3QZ#w8=VY{qE6UZPLK8=<ERgE
zfsQ+z5fd63YAz?vBERf`P~syAJI?+6_}<47*6n30^-OkjB=BryYT@ito?6H?#^C2%
z&T3^2BTWGO523L`8C)N<0p|}v-IP;PGq&RNpqd`CwnOlO0({R;Moc~+ON%o*U2BMh
zRgBeWSxCC#@0SavMMdq6T(~ZKe`l|G;gQEM(~%$E&qs!0jxJCV;qEqboo|QqT6uO|
ztnEsCMjHP-DoZ}1|9-7(adQ}IaxWTr<qadb6n%$ZER}6qx4s5Tb9-_#)|!on{g$!&
z^w4Eyqh@zwq#O?)zoTmQkyNP~-ijPR#(+6MUXFo+EFAD+_#beJ-2EEBN*(s8^K{_e
z0K!o%EmpaI4WTBb;yivNmkiLjLBRzSfE{OWbXvSzd;wIzU>^<j2hfWEfWZLj8N3>>
z%O{RWL(&;@TyImu5zWZT-4&Q)P7gDML@*;tFTuk5l+fimdl1|hX_!ekL9koc`QfPu
zivfc4ztw|{9LPr6++#r&z}A1Kiw|A3uSuI;HlWP`S{iZ_U8O+OK$t~Cj<;ab0NUH8
z+XO)I$O(AGBWzG#Am{S%yntLt0!p@!3T&{cljn3APrb#Nw7rz9`p&EYIV=t#^1v>J
z1}hsB=*-x7dAk;N;GhsdC}6*WiW#sP6bi0|G#zUL%;jr%x2Uuq!m6kI_KEPU%oEf6
zr=EbP1mmdBA+9uE%uUS)?0<+v<s;@lY4Ps~@wRNu1QMQYniwEF!nVS<Z`q*_LIQvs
z^mCQf)!P~ZkJDdQK3q5c4}=QBrm$Dj248{@$S?RzDhOd3p-MpRjcUSW3J8I(pZ$gA
zLW+PHCh9*qI2JS-z<?B}EO2tyKKB_g|DgT^qxUGmd(hMX5?A=Bvm!uGi#?e=a<GlV
z424wMa-_(N_<}ZIG>n;<i5ts1Y}x5I`&f*2o0y%Ag%p>yrT1Glu1dcojUT1J{Jgak
zm*c&?g^h#tlJp;^j#2ofI&#t~fKSTu7&jocFQfqO1}CYc1y4AOVWAXbX=b+qs!iho
z87}Uy1GSJaxL#nPzI8F+T31o&0A{Uu`w+oambqCP23^T@-V_!N#C+AQyIQ+8Kz}xK
zPlLi77I50@_*Tk0GnWL-?xt-oa(Qo&YV=XaV@?19ib6qZ;{JEfsx=$~rI{()E!Uy(
z6wVQ$0<6>S69*?}jq{p_*Q!3M2~L+e>;%{X`VPAJzm#0Y(`5WBTroM?G#gdX7|fjN
zu^JaUtXBqEkfsUDOO~DWtInpBF~>N#Q_<08nbWuKdysM_yqn4nOKeI>OY5RO_!;c>
zL~|cb2F8X%RzO(|Dc?n4_PLo14pIPCxcSGUTK3)Rx^Pkpyt>$qi_o1bSsTT#Y8jqi
zt{#_<7`S`fP!s;>DT~jk!)5b%<6$}!icC)heN(^RaF$@4&r_N4&H+XY@N3bxy|4tv
zR>KfpX^lpfHnZ69DPKaMdlH(p8P5MiICxmN#BTs_1mH$s<la7&A<+&#nLJRZG2UEi
zI_ACPvm1B*cx8?Ou%=RRxx%)lJkpbgv!o|VR+k)Up&^pr#p5bIzh_NV{Fbn(Hq-o8
zpiN9K3z@ufrS$p9&X+G=ww6UrZ$1Nqj^dy_UZ|x$!WaXk;6Ug3MtfV?o{y}@V(j>m
zcB!hLLSx#iCG03PX%zZ!x&2sJQnn;IM2!9nBUsLxqS1`Tr+Y5p`OxgoYCq|#*Ub@r
zU7HPH@hIdR#W&-fi6ALK6lRdh`EUqmLC=K#hDou$w~XR69GEdh7`3Z+DhB%xbg9Fl
zZyg@@Y$`eXSP~IC5eLO=7ERyW(0f$Lb$TwP8@Kp|Sv^C!T`i3Cyp_WNoP#t~#t<zF
zpst{yqV4v8?C4+D%m|^=?Fg9H;h_S0bcsi<4K|c~p$0k~<giA`w;<IU@S>umd{b67
zm@7<*xjUclOH4r)``%!N>3kdYEa>1}@2t<S>4zz^+WV*4JyBsB%9eXHfqOSDA*|#u
zVSa8YEjT=v^qd7yqJNn0CuqFH(qAWs{PWki=>4g>%b<aRkk$@1>B0|wDW8=C{ba=l
zC?AkfL5T45n{q0yU)-9wqW3<;iU!6X1Z1pYVpK5uXHA5B2fz>>pk(N>AsU^||KWS=
zxKqrjo%*4lQ!rg7bTFkkBMUKkBrtYH^w$06mmofQSm3(1$1(TL#;byz2|MEOCNgq>
z?Kl9*9pDVmY6q=Zv(SNL5cKAnErp=DhheYA11F6Gm<tmAt*=~}67;-4DuJ%qiZ4^Z
z)+0S89a!$*r+$Mo39S9W0b_7>Vv7B#GSaq-SOb)}9Y|r@XUCg6U8H#196I1UF{595
zXk?~$F+QU<&es)Z*b^OKD-?gKME=3Ct@n2$2gKEv($d(j0t_KJ7LzR`h9~~|;sTO1
zYD`R=h{&R!7wDad0HT*Yrd$dB-zjagCR_HymdB5UZc||myt;x>es33|Nsy_fqN%M1
zNa9{M3`Sa<6cX$(UXB!Q#pHbmUFa@=t}dWbCET-{o+dWLlJ`Ai?_;64OpSwF;I_v3
z<eu@#a<F=;gg)V3x^h<Q_Lr#5wQb#5{_mR6xek7imOwH>1g)W_`iz%&+ZR;PW+2T7
zg-j{^q=%h74ln(~Zknh@YWbcTI$X@gEadh;=3xV4!Tv<c;PxkF8VVm|-)HZoq@=9+
zxC~5VP_@rhqBK-h$(belEwouz6`jLqbh4TccVFN>y(+7@>{j!!{F0H;7Ll{J;~TRU
z=BxVbp2}tqk964{Je+Pba-iI3OsK$wMAG6zQ4#D7it_T9$$WQOf{{=Kb_WDcLN~ot
zBa0(F^2HyUuvn9!Q9(yvwA1U2V+K+-2^e%!>P`F@qOEj{WSme9hgoFat5`XlafMFp
zN_MN;gOB?XNiKFStnJymY$yC|Rd}2zk*w&1&l30;&3e<`p4%w79jeVJz?i`j4^&Tc
zPpHkC=v?a_<#8Je+zJu=aeIDtyWui(_J_X$A6y-q1*fGF&aXezfr<HNjZ10%$;;NQ
zF&3(6b0=WsCe$6F33WNc=Y3W*8h@s}{;&uXlwBo#(M?>0_b|Pqh(K<TptI4*9$_?|
z|BRNqN8ChtCl3~<ZCB^eVQZh1kM-&e?v8$a8OW~sM_@oPI89^e7leM<#e<wGq3*8(
z$60*|z3<Cy<(D)P87S0D&b4x*{am`pD5B0J5;dVjd|(AYx)tVw&ymeY3vc&H6qdVX
zyKR=j_LqiYXXVL#B7>gjwr{_hR!8pm)?ViIo^E;SL3HT;hm<`oS7sH_f;5DX_qou}
zQxGf|;dGi4eB{3=C(!uh?R4OyN5b7cHY$8?-L10}{(Q-lD`-wQZ(Pf}B@}ekpQeK-
z_tq|wQ#0qF%hJNz!dR`8u^WySD1p&GETA4kpsEwF$aD5*01iU5)Y~&0z4!5YoAu7D
zqdE=4<LU%uNGy#;5TQ<@*z?H!CQ?pHc(GNb?wpX|eyotCldB2IJXsMj_z~R(`RK5w
zI%+Hb9iv*sbkkHZ?VCiBrisgsg_A4rU^>ZT5^!Y8P_j~GeagR(8?;So{#r(U*-iS7
z`(J+c`)8O~*=bvHAB<vYNR9ONP+J=#qDH!I48dm~scdWssbnQ7@pH0CS&7pX&yeQ{
zz7>^6-4<5K;nw(4iU8M8J)Aq_!JF}Njl=DI-8u_DBG+?I=0$Zv3dy%F*8|=Ycbx}N
z1Rr*qg()h{{q<$rTE@Z>cEpQ&hEykK(X?a!qvcX@d7ycFCYRAnJ?sc8Rr%YYgtLVt
zS!Q}cXGQQJ9)o5=+b!(buPU>txp<vh62c9Q`i~35*W6e9WLD`+YP{7Q?Li6lmg&!3
z1%Fj^;0!Q7SQXk2+p{)5Eo?&WI!^{Or&6C{tAvlr^|Iquf=A1y{h;1FdvmIn1vlem
zhVV8rt18dWjKJDydia^R;seg$us6T(J2bGMl!MVx_8~QQ2Eyj2Kl{`){T4rd=RGt)
zLfG<t*Zpv6I4o4lNyoSL&T?X%JoZeMP8JZbKs80s{PQMD2wv3>vC#VQuv$@#s=!>b
zy*Pe*XUAI#dgGZO%!(u=$^Q2XjS5lrsM?@Pd{Lrqqm$eL3160y_p2B)jY|pb#joif
z)oFeBw1&3S8mYY|#DiCQX!&KXokm7G*8OoP*(FYSTV+z#*2kobgy=AwS=Vr0`3OX1
zv|Hme)a~=vVVcrbk9F*#BV8I9BVR}Hlw3l$(nloS4a<6ZIEi_^gE$u5oGU7EW>(+J
zf-g@c*dfKsAs=xQxx|O(;sW!_ybUkO-hTLNPD;iau8duGbcjb;tV&olEPvO~v4r`Y
zuI{Ywz~}Ea_eYJGjyLv4eXw5Tm3y?s`eHzQV>y;b6Oeg~_ddZYjJVUrzp*adeNC(B
zK@P#@NBS@hy?jw%O+u!WK;CCACd7mN*hbzefCIk~q&={iI62&J7bL#3wM@s!u4+=U
z_Sc6mAcS1^-=dBu*TI0S0*@TSX)(4f>-SfhjxYj-XPxTQo0c1C(=$t(>FupHA%WMi
zwv(<rPyAO7uW^%I($-I<`MeR+dQhEkBZ=H-{P6=>N&k!a<7Xs2>ymL%t;SnZF^@|;
zjnPeokCEl0yqSa6w{$0K#v{RR8RNPu@pn~0nTGa?r}CtA38)Ru#ElZqiNcBOTW|%5
z+qCS^%#yMH-C~tuR9+^stH4l8oQ}2rEVGR5o%I~2rv8w1^!f7ViZiC{mbLBX9`-LP
z@$vzbr+NS6ZDe<GgV-h23CTjJ?-44D7Bh8xM}7Rb^c)%!nHvJFSZP{WS?_4u<>+F|
z9fW;+JZB0cko$~ug%}wDyI`sWJGqjDAIc<{Rmn5eXgRT_+q$4V=D6XB^CW(Hl^fA$
z!Y#}5Z;!qNiIBq@kdIJ;cTI}X_d_*k<0wNhECPGBlF7VjQ?7^<*xIQ)G0mm<3QxBa
zu~R<0+Bzup3kaydsB|(8BQ8`Z`wVX{@$5^A6t4~|EpyTI{kHX2oOQeL7dY%(2pHl=
zzGq64-qDMg<02sfvs`cYk9B0hawc4!MglslFiYRc!3sd3jEx_y9&rZTcE>Ha*w{W=
z0Oi;(QJpO7y!Xl_&Z|P~agi;ZcfEvei_GylVYy7~B|OztMHI2SN^tN4?(K4oNPLox
zOxfDl%+1O-4PWKRMO`mTanr|aq%hw-K}n0n-)t}B47hv0X@oj$`$aj%kXMVT;6M56
z5t}MHO3e$_rK3ap`-G1_J=>xijxy4P!<&C^V<m#N9Yp1ErMyH!r@X?af8?=N)BKiN
z{=<8i;1MJ}Pc_-(+gPFb)#fT!$LuK~dysQHx5eg5uiH_{@jmzC-r=G(1&@o^d`mZ{
zk*nCT?cj3+6=69g<H&xi=Il*N%1%BD^2gnm1jj$ZF5u289kg2=+2i0V<Oo^0vHyA|
zG$>Lw7eN;XdY6uNlfsfS-kSg)ukKfK|3jUSyO6f79f%w@uxy>ZcsQ-a^MqK5lx?m>
z$V!>LgCxGGt@&xHgb3|C2N{hpGv$)2NRwaA<=bBTc}^&(Cm3Wm#L6UO4W{=G9`)UX
z@r2~c8!kQBGA#P2(5WN2(U7^v4PS$Qw~+WEam!&dS*nl(IjCUCK+_7GPT^UWNFowN
zbtBT$ElYGn6d46$Y^soOc1tKJ17}C$=>pC&F>+1UB7M=B0So282hOVKV+<27Hu%Wa
z5`|&Ob`F8*hY!?}Z$m_^+^~O~-Fww*g}@~Bj&rVBN52o4?r)EhC|k>uUglBkc;1|M
zxbAs!zugvQ1(hTp5(;)b%0|8Au5$BWqY|&m5^I5;bnTne;pVf85~jo64;}x3TQhIa
zWlYg=_Qw@H^sR5UrpettzsDax^TiMTdqPk&?La9Z`R`iPBBIkh?TXko-<#Y{{zN^k
zs&L?xH4T*0rNF^sph9BR5eD!PQ6V?`?houI#Kp9?=2&Zw{0x=Ltcn$vtB?IQu0MfL
zVM#Z0$aLnILEF3iw3&vHj=<}i@=3`V83fNT$8VMpy8c^viLzme=qM91miwD}uTzCk
zdUu6?RtK=g2l>-o=;)F--18FATN3<tZzz~DdXV|CpTDZf478wUq$P`+l+$SHv~#sO
zw!5!#1-ZS*TzGqo_+&AMdvA9*J8b|Ztj$zw!d;|8t`*?9PvtW4?wdbyK~IRG{cP^%
zju*<8&u*r|73WwVZ?A(8(6!-FV_+ad=6MqVJqvQxlS>@gZM>oDimDXhiq<~P+y*>g
zS?k!IJN@~m|0*qnP>PWc4rK^!nB_j)fNZm9H*Sb;(%e&N0V*q&n^mSmsK*OpvI329
zJwFU*L4t&l!;ai-B7C@>6~Y}VkqA#=agaqhjWVHkhPkW^)8bCSw$-S{$xba#z{A(?
z{~-C;St#7{S{tk7Oyhn%Zpi5Tybu_1)V!yHspr07%&%!?xqY{t0ST7<UEU6B$WnWY
z?6ZeYwx9|<FK}IXoAoqRh#gaFQVx%wzc7-RV%|mJ;t#VzB>hOQ(~g5|dM+Z(tLpXu
zyW20gMZ6UO2oe_LF=!gg${!+p5_kihLaAb}n*Y>P{JO@<j;Fz22#*)C1Cr}~N1}%E
zp}CVd$rHC6V!4Trtq5sE;1Mz`8E??fv7a;d)hFwqNO5imM1`1=Ke|qV`=;pA1t4#e
zMukL@3coTj)-juo1#u+&eq@(3TT#hgmHtr3nm3*Mye1n&STxjMw6BbHdQL|tLc`xv
z4T_g%XH~BYBQMk^C9nL&z61N|00=-~1U0$~VSl`NlU1a$Odk6NJ-d8j-nteFkC@!*
z&zc1uoe;cQ*2K?^FBg;Mb&-G!kBd#l?ukMko8@irzx)LLUpyFf<ocwnc>e+~yf<ce
nZ~s0O3Xg?+`v1d+4$m=0<r$}=Nkzy|@Q=zZO>~jGW$6C`xHHIV


From f3bbac7981b42409dc298b5271f750e09307ad38 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 23 Oct 2020 13:31:44 -0700
Subject: [PATCH 12/44] udpates

---
 windows/security/threat-protection/TOC.md     |   6 +--
 .../deployment-rings.md                       |  50 ++++++++++++++----
 .../images/deployment-rings.png               | Bin 24969 -> 25023 bytes
 .../images/insider-rings.png                  | Bin 0 -> 38213 bytes
 4 files changed, 43 insertions(+), 13 deletions(-)
 create mode 100644 windows/security/threat-protection/microsoft-defender-atp/images/insider-rings.png

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 8f92bf2e40..4f732d6ced 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -16,14 +16,14 @@
 ## [Plan deployment](microsoft-defender-atp/deployment-strategy.md)
 
 ## [Deployment guide]()
-### [Deployment rings](microsoft-defender-atp/deployment-rings.md)
 ### [Deployment phases](microsoft-defender-atp/deployment-phases.md)
 ### [Phase 1: Prepare](microsoft-defender-atp/prepare-deployment.md)
 ### [Phase 2: Set up](microsoft-defender-atp/production-deployment.md)
 ### [Phase 3: Onboard]()
+#### [Deployment rings](microsoft-defender-atp/deployment-rings.md)
 #### [Onboarding overview](microsoft-defender-atp/onboarding.md)
-##### [Onboarding using Microsoft Endpoint Configuration Manager](microsoft-defender-atp/onboarding-endpoint-configuration-manager.md)
-##### [Onboarding using Microsoft Endpoint Manager](microsoft-defender-atp/onboarding-endpoint-manager.md)
+#### [Onboarding using Microsoft Endpoint Configuration Manager](microsoft-defender-atp/onboarding-endpoint-configuration-manager.md)
+#### [Onboarding using Microsoft Endpoint Manager](microsoft-defender-atp/onboarding-endpoint-manager.md)
 
 
 ## [Migration guides](microsoft-defender-atp/migration-guides.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index 266fd081ad..4825c6f7ed 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -29,6 +29,12 @@ ms.topic: article
 
 Deploying Microsoft Defender ATP can be done using a ring-based deployment approach. 
 
+The deployment rings can be applied in the following scenarios:
+- New deployments
+- Existing deployments
+
+## New deployments
+
 ![Image of deployment rings](images/deployment-rings.png)
 
 
@@ -49,14 +55,11 @@ Full deployment | Ring 3: Roll out service to the rest of environment in larger
 
 
 ## Evaluate
-You can use the [evaluation lab](evaluation-lab.md) to gain full access to the capabilities of the suite without the complexities of environment configuration. 
+Identify a small number of test machines in your environment to onboard to the service. Ideally, these machines would be less than 50 endpoints. 
 
-You'll be able to add Windows 10 or Windows Server 2019 devices to the lab environment, install threat simulators, and run scenarios to instantly see how the platform performs.
-
-### Exit criteria?
-- Able to run simulation
-- Able to install threat simulator
-- Results from simulation is displayed in dashboard
+### Exit criteria
+- Devices show up in the device inventory list
+- Alerts appear in dashboard
 
 
 ## Pilot
@@ -66,14 +69,15 @@ The following table shows the supported endpoints and the corresponding tool you
 
 | Endpoint     | Deployment tool                       |
 |--------------|------------------------------------------|
-| **Windows**  |  [Local script (up to 10 devices)](configure-endpoints-script.md) <br>  [Group Policy](configure-endpoints-gp.md) <br>  [Microsoft Endpoint Manager/ Mobile Device Manager](configure-endpoints-mdm.md) <br>   [Microsoft Endpoint Configuration Manager](configure-endpoints-sccm.md) <br> [VDI scripts](configure-endpoints-vdi.md)   |
+| **Windows**  |  [Local script (up to 10 devices)](configure-endpoints-script.md) <br> NOTE: If you want to deploy more than 10 devices in a production environment, use the Group Policy method instead.<br>  [Group Policy](configure-endpoints-gp.md) <br>  [Microsoft Endpoint Manager/ Mobile Device Manager](configure-endpoints-mdm.md) <br>   [Microsoft Endpoint Configuration Manager](configure-endpoints-sccm.md) <br> [VDI scripts](configure-endpoints-vdi.md)   |
 | **macOS**    | [Local script](mac-install-manually.md) <br> [Microsoft Endpoint Manager](mac-install-with-intune.md) <br> [JAMF Pro](mac-install-with-jamf.md) <br> [Mobile Device Management](mac-install-with-other-mdm.md) |
 | **Linux Server** | [Local script](linux-install-manually.md) <br> [Puppet](linux-install-with-puppet.md) <br> [Ansible](linux-install-with-ansible.md)|
 | **iOS**      | [App-based](ios-install.md)                                |
 | **Android**  | [Microsoft Endpoint Manager](android-intune.md)               | 
 
 
-### Exit criteria?
+### Exit criteria
+- Devices show up in the device inventory list
 - [Run a detection test](run-detection-test.md)
 - [Run a simulated attack on a device](attack-simulations.md)
 
@@ -89,4 +93,30 @@ Use the following material to select the appropriate Microsoft Defender ATP arch
 |[![Thumb image for Microsoft Defender ATP deployment strategy](images/mdatp-deployment-strategy.png)](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)<br/> [PDF](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)  \| [Visio](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.vsdx) | The architectural material helps you plan your deployment for the following architectures: <ul><li> Cloud-native </li><li> Co-management </li><li> On-premise</li><li>Evaluation and local onboarding</li>
 
 ### Exit criteria?
-- Devices show up in the device inventory list
\ No newline at end of file
+- Devices show up in the device inventory list
+
+
+## Existing deployments
+
+### Windows endpoints
+For Windows and/or Windows Servers you select several machines to test ahead of time (before patch Tuesday) by using the **Security Update Validation program (SUVP)**.
+
+For more information see:
+- [What is the Security Update Validation Program](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/what-is-the-security-update-validation-program/ba-p/275767)
+- [Software Update Validation Program and Microsoft Malware Protection Center Establishment � TwC Interactive Timeline Part 4](https://www.microsoft.com/security/blog/2012/03/28/software-update-validation-program-and-microsoft-malware-protection-center-establishment-twc-interactive-timeline-part-4/)
+
+
+### Non-Windows endpoints
+With macOS and Linux, you could take a couple of systems and run in the �InsidersFast� channel.
+
+>[!NOTE]
+>Ideally at least one security admin and one developer so that you are able to find compatibility, performance and reliability issues before the build makes it into the �Production� channel.
+
+The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in insiders-fast are the first ones to receive updates and new features, followed later by insiders-slow and lastly by prod.
+
+![Image of insider rings](images/insider-rings.png)
+
+In order to preview new features and provide early feedback, it is recommended that you configure some devices in your enterprise to use either insiders-fast or insiders-slow.
+
+>[!WARNING]
+>Switching the channel after the initial installation requires the product to be reinstalled. To switch the product channel: uninstall the existing package, re-configure your device to use the new channel, and follow the steps in this document to install the package from the new location.
diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/deployment-rings.png b/windows/security/threat-protection/microsoft-defender-atp/images/deployment-rings.png
index 6a806b001a5c101cf8d576458ba47f9df17cf86a..c8d85fa88990340250e8d2710bc5dfe40fba19e3 100644
GIT binary patch
literal 25023
zcma&ObyOAq_dR@7lu|kbDUnn{5tT+Iqy!1+mM-ZI1(gPAkW#w4yAcqO?k?#TF8Q46
z`}1ADf1kBbmvd+C%)H{9efHi5-#5~)ZefvQArOdL;$p&b2*g!E1mcPb#tk@fh|aqO
z|6p2*sn{S8B=o31SH$J$cHkhot@vvZ^hGRELblrtwivSr1Pwx5_=SRF+{ToPquNkB
z`&qtg_f#R}Rm{7$%|E-WBc#6%_JrRQHqquuO$ltVy`9)kNXs98<c6I&baypo!1#NF
z1n<gbj4Ivdm^d7-#ipC#FAJnh$CaOp$KeURB>4IX(^rVCY~gf@$D_i<;r*1p<ap@W
zIbU$%&*}0+y7trbQg>6<*EDz-AAEd#j3R%^^CD<zX_IVq_k@Ing^RJmsNuig-bSC{
z;p6w^G%b3=X$Hg$g76_{_Cw@dI9KI!2QEH7e)oMTchq+%>iqw?lqiD|AzKjAhlz#=
zkddNgm+|5=diV&L-cEjt(}{fX%I`(vuZiihyy~>Hog7l`OsovouG|ck($?kp(B#QS
zM7o@u?m<+0E&0zK3L(R7j4Bszt2~$6r~|8sC*<U0?W4zZZ43<Q7q?DMrs^k?|H|K^
zO=3yLM7w&W)a(1?BQCz6jt<0f5A*ZO-?w`laOVaquaqRNHpgIlaSd?$JSM$iRc6Y>
zJW`$GN;Ucy#-i~m!u@bGUZ=cp$vaKoRhOXo9^ud40UCBe+{C!ecHdz3`QvudIo>Jk
z%T>*rIKk<BIJZ80!Kj~vfpRgQzL@Zth(3FxeuCbPK(vY=cM`W+8wp7*TSl(K`L^n}
z6}Wj|ERP={e-wOq)po_`;nPRHM}lij7e~DdKKa<~<Lp_K<S+*TFzASe*`Hht3|E=%
z|7w@@Al01kz%r+{pNCf{6}m@DD{-Geuvl5<l4+TQboOQM!)XC)l6>m5hB;iGAsl}n
zAEwmkvtJxu%?r`b(h=y>g25xWcC!tqE1^&K{NU3&50Np~oljmBYHQw=c6G&PcM@o$
z#<AC?xpl7)CYS?1ERo^~$J38|fj6dQoOe278F#%MdcLQ7C~OwM=L+qMjNSo3ueJ5e
zOfKT1X1IK39LKHZ<_pGkV3p_-F$i*hchDyCUnZT4$K{!G?)LU-@6Dzpz{i(u)7=Ye
zz44{J@7Y7Y%aik0j)%E2qq!o&!bIo{f+_}jW>>?)t{lr8&6Cy(1PL*+W&FDe7F-zp
z7g2`qeTa6!tu}T|zMvyl4HIuzqTvzIXL=PM=d6epO)Up!K2OyPd|6P}^n_(93ZG<L
z{CGq}yu2`l%e(8ZMeTK@kUxGG9&!ndL69u%z2(h)KkS_z-^`TsbE(AtJ_+Y5z4o1%
z|2!E3?ZdV0#P*R(!^dTUm5IK%OLX-!!9_(JMx5lzERmne3Gus$)Z7*93q6SZNr~oi
z?-}kMNVZq@kSx^%1>x8_I9!XCuqBw17Uq<fa#!Hs<0(CBQQMAh%_E(DrL^rcepfbV
z|MWZ~D=U=1Um1s5AfU6eljxO*aJW01ZVBJ2!QXtm>rpb7Ay{_@zfY<|O<}%oq}@V^
zw)3@=dw+(5_DvhVy*abJrm@AhycFMB(Oxt}vZ^I**-Y7uq%xD!CLO?V-w6AN_#)b7
z1?zC4o?6s_y1GJ4gC`!x&d$!n`-N}{7K0%3@YFNUzCv-nU21d3(?8s$&9Ljg9Y&v}
z{A~Drd%2hO(`j(x_Y1)pC0+^$7AJ%~`(anzyx#3N9L&AHD2#!jxtZLD5h&_aR8*94
zT3TBABDwE*a-a4{o`$hskPnl)8B#nc;X>Akv!R~Pfhf@9OnB4MCv<JTHPdcMH}G~?
zFv0rjs<^R~u<$_RBBOX)8{_WyNBIno3#K;4t0vy4NQDoJ_Q&)`SwzE8B9G6t_MU8t
zTe7Y-n(Q0)E-jnSrXBA+wU~@<gZ0_(-O+nfedA7Jrp>iu^mg}ygWxPm9N9@%0qPt@
z)0R!=+60JaODqh61DqT@AJfWZ=Cl$7v+S9K#mgOcbxVb4XeG!P1TohrZ;NOq+z>n-
z5prCwEr!S7WOc5k3JeVVzk$R2vvsF6J>JW4u#h^Qzxlrh9cWl&loo1UI6nV@b5^{s
zQ7VLrp=7gk-j5D&f^?1aD0q)3bmxT*7~|vPO}w9nKdhd@2^0<c{fI3Jn>_G_d%a+0
zp)w1}AKR*wgs^$oY<^pH_^!@67`U#Nb|n-S3NUsYZH4dJ2XQ`fM7QdO7$74(@bzIL
z@o(M?ZXWo{T!%cSwk$IhgA)}Tx>(D_f`h4U33e717Zc80{4F0KCeVNQ0uK)ZErtCB
z-e`ZwLQ&=u{|=ek3xrojFV7#kpGn1z|G?7^=yhFw+`r&)?CtSfEq3qnm73a}n>Vhh
zs;Lc7lBfFA3>l<N3Gg~>ed=A2bUwoGvwesRA)}ybZ`k3wxL~BJaW4=;J*r=y(I*-V
zMB4CC)j|-jcA>I%`GgK9d7<;6Nl95*QdXA4k{C0Yr(mQ1wp)=S9~JDcRjokLYf)XP
zqa>_I0#mCNcCSXfzudwTR6&i}UxR!H{qQNYcHD1xU9qp`r)yL8)!Mn(%X?X<$$U()
zH%tQK881yrkT|pLJ+rNJ_G@96?jX*VhjPQdI!RK#E?6}AWAogH-W7kxK&ht16&Yvr
zG_2U}G7^fzS6USzMr9|xmuE8Jk&#!UB|cE#pywz)ASWkBSYCWrpF298+ef~1XJcR-
zfC<3)bLebTs@mFXYGN|GkAwl$<|Lo9u6!dee=U80*)C?x>?wvP&6Jb|8|mMTvE)CB
zHq}#p^lB}7uO{o<&rdRnzg?5}{WP%|88lXD!zjfd|I?Hvm>Un{dHTR-I&8)4xA@6p
zW<lSck8j#XOEHv`lrRP1hef@PeR>6v;Bn#9YK7x{O|8r<r0xjmnvt6u(eq<u{Vv8;
zv=?7>pT>4)WM;+;+hk>AeEqwNbS+S3>0f6NcxB}RTYqpw4PwZ{QgWB=hT9jXxJN(E
zrL;D#`4s(b`i!00zIPHYte~ivR9Z@GP^=>1iO}9(?zZHKH!?F5c5<pL$xTV2TcqfU
zVvj0ApTSrdlOB69ef4{v5e!1XyY`^3=W){M^KR3H@6dl4JPr^|J}9oL;=%CzV3_De
z(xC7_&oVT3WW8^C8b|xS6AZ~{rA_)g#nV_;lV3RALWRMwU<OtdHi}_{N6pH<M!N|l
zCZ*mx_G&0IpFjvp)8r~XFnbzHtCNwRkNz-X2c`ffVq>~iZJaGZQYt`LGhfMBT}=&J
zd+i+WUESry>6Pbx&!$)Op2o^5DWxCRWo9yO?047}yC)?2pC@z8@PB&Gzk36s<PeTG
zlm7h&5AZS23|y&l75z_6oL6yexHL30WP=ks>?Qc&)}=&0I|xIS(O$fn{M0&pJ+?co
z;$xn2;Y+Ky-W4Gc5s{xrTb}r&u6B!Z?~+A$Fhs+}`RNse=}2B6ujVd;$LVJIt0@_E
zQg+1$at|LBayjkk{d~IXl&fCJp%+VoAt$E<j~>>67ToT&wq~+1QO<5=s+yE`8h8Kx
z{iZTJ122`Sy#a{We;>O!?i30>+`UU18p6niFmMffOdfcbm2^NK_E@PZ@f4@-d>GEt
z*w=kak$DzWkB~%a4HP)ugGG<!P52p0e~mA$=+0nFUuN97?3I~*!%IY)6hK#xnU;+$
zH{E}C<<L3x_L;ljF9VyF=$7G>Ae^O!2+I{>R;@Y;gyq^Gb8D}cnh9+ysbtA;yixAU
zMpm7tvA1CU*7hV)p0I_k3Z!e#scvu#<w&_ZpT64td%CiVdw4p8^BEwdWu>|$Y=!wr
z%QCaEtKQ8&GM+%p+d;a@O$8`se{P=pS~jt1UomB|dJ1EJ;rZQ&xNu_A@13XblP7yu
z4Wqh<`-$n=81tugPtWhRHd>UcJ!+C-xfv9m6Wwi~oU14@lHgcV6Z<A-`%#S4!`N>8
zL>bz7H|gD<k*hZiG`f2mesg`piEHa6pO#0xb{stkUl(_LPc$nrY!2m0>r`D%0)$Ad
zs+$}Cw{PE4_SX-c;fq^ekE|cw|KcCpZNL@Z^R-XS8j?Z(j^l0(D=Vv?a?7z4L)g4}
z<Do62iS?0urJ5UkCR=Ok>$0-4KW^hQ1jU6ChH;ipuoAQND%A8cC+wrvtTWCY?YdMl
zCSCGX4oN`3vtwzvg)0%bgE*f<^;D32oP74_<2rcw;w>bx3a?Kge*PXDB$A5~k%%q7
zd^&%wGi>V;D1$cZIOoP70Enpc%-!SXq(FFuO5f%aGK^V|4FQDA9a2Vm+N2G7Y3tj3
z<+$_=D{AhdZ45gtkIkiA0THs2-?<|{y!2K{DQdXSq4IvZn)``&+fMe($?o2rAI<2#
zfT!#`#}?B8*LCMoj_!A2{+HHnhK6;>01(BAulSJ2GxHV(6Y%^)?x-{M4eHicl(on0
zS|wSOSSVolJ?_5a)*XuG&;HHF9v&xYkYWH5e(8)^G&It?dQIrv@oA!??lyn`;bKK;
zI>C1fVYd^bTP}}!-|K4oWEaa@lLd-GatM!z$fT4|AI?#^7AX2S*Urg@DIBuk@N&}R
zSHccl1m9k9`EM(oH=7Tc&^2lt@e#kLrgE+6c8$&BvmEx3uJ>QPOi3A7rDa%}=TQ$K
zI8vS{_HERD!{RKl8g<ywyQqf<=J~tecq)Q=#iWO@1vtrHw|r7h?rSh8zKe$;=5O2?
z=A}GgL#dV!%AOsT_#?#XtOdz7E#NG@`Nqe`+OKOVR8=);%CYr4X{<o!8pJ@er)r}M
zA2Vb8MNs*2V)M()c5o&ComA@^Mt(BG41$2w9Zymhj$e1Rn|Qwz4lj_(qX%&KFh;8X
z2)2~OOHX)rC~cT!v7){@)@lxpjCk|A&(yj7UO)6p%+;tSLHzFP!?$tavai<Yd%e7S
z=0p?FsQqEe!W%LsYA?0!lK6{^lT0=(?mDK}bmrrq)!6Z9wA^MP@we41e9O`gQHv6?
z9Rvv4gxPbi#A_l^5&!0Pye9s5XuIg~IwNi8qH59k>5=!D8QfYn7{59N?FB~VSb7-T
zXUHUC-q_gq#p~CBwA_WNxu|?prk1P7tO@zpyZK6DulIAB598yiTogfH*L~X2uU>&I
z1?kazVAXcCK*y_OYSlI=EsbH#R8C$VqVktpcMwwaK?cQS@bmHcbCX9|xw)SQR>Olr
z$^&H0RHDuTf@E}UT?u#-_`U;r6Xq5-QwdQkx6n{;zj5`-v8%w~;GnP>t3>KlwL|l&
zt;CFyl9CV}n(-4`1cZc#<bnP62rj!dBE<K~O1OuLD%YS9XOr1eZ}s%dOmXKL^NFVj
z`CJq%6G)Wl>(}Qbhuk{t`go7R7WRApg5COX>l5v}iZ3NX^fmUv64M(mU9*T`+5Vft
zuoBf=+K*ouvHN^9xIAgTr>4^9y$kJL*>BY2V6OV4OHZ(;cqf0v-_OtQQyy7OQ`MO(
zZM?Mi-@kt=ddhWM{i07{o;ja95$_El2z&c)CNA8z(H(myQtg?-h1A)i6g=(@YeOkw
zOf2uW0$D4pr`({M9HxeU4QanQPAqphx9bS;f@p<<JaDwyVY?*3u%M?$x<Z}p_RSlu
zPhi3WMBlZ@Z0<SxIO^iBP-5ko<D1g9+|e^MWJG}_#U|~CpIY!O>V-9<;JS_RQc2nU
zyPA;6H2!RC1UTl@U{vJh-f9>;rSs_R>g)vcle!ra<WN1;-@9a`CvpBoxr-13jdpn5
zXHh(ORD-T8qeTv4p(E=DL5FIHHtmyCQg~=04sVjCUJj6nQlEM7suw+pPq|N$Kk~pX
zO#gJ}(zff{V!EL=QQbi8@kmsq1TQ@b9(3rv6cX|}DBjw#;G)36@WgW{uASL#|MtW*
z#inDO3n1$5@j`HNR@VLbTUF`lud1FRU|cAlJb7ZtMd4@jgp+f2t9m<Ow_v2K?CGTQ
zdM@lVR6;U^Rl~{2*`UXv)BWwq-Hs16rwdW_XZpX^efDvDpWNJAN6445yBuw`X1&cu
z<=AI9<rBBUI_UVdg4+r01$XVnN==mp9a|R4EvCq=h3o*_RM|bac|&Nl<vKz-fsdJA
z!0m*Sg#_Eg#Dr+u$-&_nV9NsM!?mw7)Vppy^sv}GX~e`uEgy)n#6C5@iV$fk2N;x@
z%{=^9`_5Cdh9F8_0>2j)=O>2+s=56~y0_j`totN5&SL_+f>g;I6Lm>VT;0^N!a><5
z!1q=`;UQA|jUtN~&m*$u+5|cKKT^i)+^T6;$7-A&Tht*94h{~!|M>C3M1Y-@HPAT$
zrrB(?;6)V~WW2%QVOWR6e>OK;yV&bl=pQ-ExIOz{q3W|z40w`y0!G;NFk9<7g70Y3
zMvivQlIxAE?4w-TcGS39wNv(YSCy0yi6+aQD2z`|ve4hi&CPvy`{sW@k{dCbSH1Pp
z*f`TR>=N1Q!Df#AH(Tpm!uf28-Gh5W;Phy_eac~mwH45;tel)D>|@FN%;vf0#>UK4
z9%s85r{+^t#N|`=YNI3Nun=K-`;Q=4z@y-ju&RENPnXu|P2h)#H8MAEbvv5!E}wDd
zo!`IuA>ZSCz2B6nPG)b0QhTjdz1luE9M5dL1oPRX<u%0Y#LPw6fqUmVKVr6OJ<s29
zO6naa`8)gftF}BMMfdFod^$pv!&w+8A!wMG`<3!5ySdd4@-VOLBj+W4t*x#7hF7Iz
z$LYh}DjG*&Tk`ocq4`okjC8MeH3j3$C(6V>F9Jw7JUqOsVY;_2Z}#muNsVsuJHlg&
zbN3P|-h9~NI*}2*Le1|S7+e9%-ciigWOduN<q^90;GZnI*mUj?!uTNMf~i`a&G=7&
zW<GAr!o6eF)YMeR<ru>PtA#e7k^8Kyt=`n`x2?T`4$xKT>hWW`4bEoK1u?k2+ZP(6
z>JI2vmo19Nh<qdYf*2EB32^xj-u$#fe9y_bIW;xK#L6n76jfBsbG%H%Mgj#`|I1>h
z{pGKpB<r+Nj-FrCG}q2F_C7e~zP4K{1Enm?s+=z2>S0KG+;xvHt1^64xUj|z!hgMS
zHbb#vN8SP3f7iC|G<uxZ#rxvYN7T5q7!-f5#UCCTV)hegUftLTw}|wl5kBKIf$Gp{
z-vHsm&8-Ggt?6-o__YQ7!#trD>=#X!&C-nB>x8j0A2WyjPEJk=a_<Zc4WV8;W!vK*
znVPw*>;19}|DnRD>E=|ml0<@T=}jL@NlTW-uz47P3iZ5<)6XvEM_W_bV#l<t@>*K#
zr3ahSwY(<3LZ;LA_N-kmPiLa)Jmx-=CM9_L^s^_2B_@27jS~?3aB|59JVE%o#b$-%
z!{$4IZC^2m7Z*F)QM8NZeh}~0S1M{jcfNV|ne#1&WPAUP{QYT{ZIN1o0#YqkS?9B#
z_kx9|92VLF{e&eo(dAWCn9WVi&2Pn8)|~Bi^)H-m*9)$d($WVu<_qziUN0x2C-+zG
zf{HVVMDUeMViSFya5y(d*)k&@0&9;G_HsC$+7$^&Ny9-~R`w69%*?(ny5;v?1xcOW
zaDpmBG8mVNFZy@kUX{P4O(j}3Fik<+ZYL%42AA>MuIP{{VcVV`3^;BSwiC7cwbtq0
z&G_aSR&2B#=Bh9b^{qm1Jcp#6-IHo&o9Ar|g7@ALjw0W0f6sOh-h9L4-5Q1vw)yk>
z?rLE)h8{;D&UK9VSh~2__jM}wv2dkFx2o3JR;?gP(;`D0oLWurCDD-qt$Rs^wBO=6
ziYBtF-=pQ%*%7?2In4wlC_>LB`!(av`<h1`At{N9*%52eu2A(o5fMOhXJ~c_)8~;C
zgOXeqxwpjZ^TlT{(yF6ZkLJU`%8i}go)!}_pR{}GZep~<`C9D!7RJVyG0Lp{BT^<W
zon2f~+x<z|rT-`+3(g%GtisF9I;tmxart&W92}1sCSHH|7LBcp<n7zH`Yk@Uou(9P
zwxLK=5^a$d?ude$v<M?Evp@RcrYa_hKc}Oor|(}dTK`Ko0FQc?zYe(^OUR=*-A$VN
zN0n}y0eb|i$ZA1!wUo%zbx~xt&@XF1B!Mogbd~{MKPW)Lo$YVn_tj1L<5|6}Zcm9A
z5dq$8*T!aTwx|at>%Yy*rx^GxEG(oY%zF8c)LTAD36xMh9}F>?n{?T(?O#Yd-!POt
zx<y4ook=VlXIx%geTOYd@==nMCTR)-QmopRKGWBSGno@VRaBH-5Q%g;&II<U`Mb(<
zfr*`9_k-kuXNj8=<&uPiqH?hE=xHp<d6&OQ!Pb5B-WI|#Fp*djFL!IV-DI+~@X_wB
zeLc2p8H;IkyvG`LH}3&MXs;UKhN;%+w*yBAs&Y|LKuz!nS@W2Wmxw!0D`r12SP!1r
zPL%c6=3DGol&aS9WqL&Rcsv_w2AMj`fb3Fv)!TuhXN!!2FHB7zR8?1_7$AUv3JMCJ
zSY+S4eVh8{0@I*)tia>a9oW-mlhP!>Wk=I4`6U5Y9uAFL!de47q_a6*diOCO`uf(E
z=<C<F4xIU6(y0juA4V9_Nn{VrdkdcZ;N<9@v;3Z!i3u6=Yh?LX_T(#4^pE;X!T}|v
zj)=Jv)~_VE5CpNm?d<B3h5b)o45<S!p>nxJe2J(1`}gcY6x_6|+xQk=R`gWi;Gmyj
zsVWc_L4JN%oX?)UgY?T>`?Sw23csUw=O-Eu+s%3XUKDgM7JK(DS(nUnwiUZI6&t>V
z;0ZD_C#PjSzdq=6s~T4z5f_GijS;CV(itppl2KA&lwt#wr*W^~y`CNxhUWr_>>Evi
zx-5<RN1yf~UNEV4zz%<GktB%p44a=X4M}+RJ!eJYEuZdH943#;#m@)A;jUzTn-Pim
zjf9tt0`DdAA%t;0ecEJD`~$ePlS&$lf-$q>oo3uZ)Y4?QZT@kfvs0qx{O<%XI#55{
zJze`(-EzfCpPj7;29qm^i({&@k;X|Iim5|3g(q6G#-D%Gh)vzefACufs&vPLzE{K}
zc)_HE1&##N&&T3#(9HWy%*_XsTAJ0I`u08>-+xLT2ub&Iw*hu$6eOb0n)&U?!2*6t
znojf^&gy&2Si1DDbZh!Tr`p;?VG)S@a;_DaQ)Q!-2w208)!d+NjNMLX4t7Tdebadp
z`E9EyEk?9X+aRl2O-`iljbTp2y04EMYclE6?%u9unFRf8T-m3lrlw&8iGWC;4i4{A
zc<p|2qrG7L^O4G;RQM7AVtW3I<!AMox^%+Ag_)6OH-n|WFPtGXO>{yY%RXI)^uxe~
z#_^6Dn>NWvLDGG1pY!;Uf1Gd8v}t}VLpOg3B)@=|32z@Jg129)j&K6z0v!aGq<Vxs
zXsJa?td}H+?}^88CEGy4syobmpGk2GU)C&(PLTW-S4q5>0R;UwPP0oTmFjFF<)rws
zX_7AGBfo#5T`W~5vsg1g+59$zAGu0-yEXfLyws6Cl-xdu6mHa!W{(O%sTF$E5u*NY
zXHrtq^R0p<>HDEjDGOs6OS(Iwi|$TtpRHC=K%FhC3`h3%I33eMG&JFal)RFgcH67e
zt?&8bI%42E2BRV)6S+l@P{pIKRuG{sQDA<LTqV2R`u-@f?a!!i7CT5X!bI|&YVIVz
zSX&a5q*G2fP&cy@H|`3q_@X3pX>^|*#mW<vhnJnPM5}%9IPcz7K<O?%Om~@0k*iSW
zH!hF@3C;92iUwXzLb+4b-4A<zYz=i886!QbAXNNZ^V_1QF?9-Y3D$3bYJb44@!<hm
zeDIRw^1JD{tG`&;8k#DvNAsrR?XN7pleW6D+{@fj!+kwkK0MgT25aZIzRvq{jw{Fh
z7<dnz$Vire3Re0K8Tcld`W8iMthZ$uw;!;peRvSb))3J}GT$jlI_oD%s*R-I2Z8|4
zkk|Y7*ke#W5Tc@tzj+^i+@BJ<O%>np^AFmWR~HA{f9T-&Ll2897acXKo9QqnWXp4j
zR6eMi^p54-rMNuSy)XS*MNe8*Kv7F0C^k>iGd54flUQ=)oi)b?8D4LzIv0$U>Q|P>
zEh3z?hs-_px9;I#(76U8Z3Z~Rxj~2enli%;Nn!T$OgZCeN%(b`H|5$aink*go<mCP
zjklB{=7ETClsWvd8~B*Z#vSimXu-r=92gSy{;<T)`~C$-xnUgwtoj+f82S~+aY@Vl
zp{3)TJc^4Tfn({vb4Tbs^Q4!^yKRgF@4G>VkVsAWM>ZJoyHnjuR_~;Z(r{VQovgIK
zzLir&Q45+*{960OtE!z})Al!mcWN1FlYT`GE*iq?thlepEHg6;v9QMbR}bej#GA6W
zpH+V5a?Bw-?2T`T!H#Q(6<Q=I7nTTmT#4Ig%rE&+KP>FMov626g*uzW6)%{YKPHpz
zNOT#;9akuA{)WYp#%lbpveo?S8kaK=;&)#uVj-b7zlGF7Gw2=l;p~nt+Xk}x)c|=Q
zjDEOrXyn<iM70ky50M=vrg`;fX}osIR%2Hkr@8&Nx80-s`w8%6d&E`u76hlf^QJ@e
z;)D7#s`fZ;Z}<PO)p>Mbxx;d?Nk423D}GBtVsBtT&`*iGhJQULzltJuo9K;tbg&zG
z?_9$v=^zfg3)50)C@gLzpAlSpx&?*s8(L?R5@vPs{(X<WFU1#gxh6?&eubClXJGCK
z-d13*t|@BJnk>1gR_DqO^6H%X{>`A{3N%cR&I$EH@BW_`K;W^oyYmgv-8HpDx_cxN
zAzkb-!MR$MSCm-QJ}9Y5FYv!F|0hLe8nkuvdU9Vk5^&@pD|~}>Hq~aj6IfqGUVqWd
zcpPz>F+K+bTBZe@RruHck3p1DTjge(WZ~h1k%gB>816g%4j^$W|9eD^rhw2yP|waT
z@UY__chLK<G@M1OTP2s>WOtFCi(lB7hdmk^E4wGJ{57~dC{9w5g;S`l+V*%^OUr-c
zV)P?5-(kYP`{}2U(F0xe?s(D6qe%CM@qLvyXzMe1qN`2Zj`LBktWGAs|9g7<9Aid7
zC}_BBA#G)vZyrj@9+gKJ@sDG!WHS!pfX#qu;WaOkj4J-Q&4YEf!GoEtN|M-Nt?N<M
z@r1-67PlIYcl0J9MYt?CTshwT;9}KO{<JM%NeB_i^Zb%RL<#rR1jMdZQ#cKs(d8k}
z(~w`vOgQCJ6-0JgT7l)kaqS*8{dx9W5N}irRXb3eFQ2(#C?$3)Y7}oAxzF9Nn53SY
z!mZ%E4!XOo)B_|Y&4=>o1-v8M@!i1K!W=UJ_cM>6q-qD0<OXYdxFj@jzR5L?t0U6e
z7PR^11+@`fTMEZLB(SxpH(FnMz49G+`Hmp3CMNb6ugi1GC(bABbFPQ?{)wucn3#-$
z_mT;@&aSK+iI@86WA7HfvS{~ablII>Pt2giftA@K#)TxKOl-M0;%?!O5V#jUcj<Aw
zze6E_d!)v~!U%gf?NeA{Wh;{F1fR4^Dq=#=hWTQo{C&HBy&z`qU6Kewe0+Mfrt7`&
z{P+G)Q%H)i6erA;Jt)|GFW|3rHsZ~-X7~a^kL-QA@H4cl4UfuBQa)V_6CZC~%ibNh
zbfl(^U)C*zG0O~nQ$F(N7;T!z`sv%kU#jIE%W|$O>k%lz*r%W7$D*Mt--loxu3!8y
zsE0(y&25xtcZ@m4!+#ytwd4sR+swAisvVSpoaDFE*_0&m!z@5|zTx#^^I<;&Tn-Wb
znAcgJxGP7#(Cn_gg@(VO=3#N0w~zIgR^5+48Mt<*-Fcv2_bD_nZ(0Wo2Wj^sRZ?s8
zaHt;Ve?09TfVGqfvx_-a?T~LP-&HEp5KiGq15Ot)EsOFyJn_<-1q8Z<$}e^E^72G!
z@ILezNg)sA`@Rvc#%bo00&_23EuALGghU?8+jr4<Rp_<;c&B0H<lQ{R{Md<)%8@Uj
zU;+gL`2|3ssd|~j8CE{|>)^(QEe}*=v=`F&sq&K@y^t(|N{dYy$f#zjNYZ<5CHWHG
zmJ3Cmy8})A*_PW!3*K2Y`H_KXV5=^0qqm?Y21>4<h+jW+mIU_&o`G#0@dHH!LOP!3
zIs$5Fkm=+|W6qpmoOWIAY&pEClc^v{wak60TN}i8h0ue<l@+wne|##V`Mx9H&gr?1
z8sEFtoPkx)Rf#n``&64iq?KYI{E#`K37oY>`Kubu62}&{cB2)}+c*94#COk8TFN>a
z@UA+S!+KT6VTpy96s9W=k77>R-%oq?Sy^^qN%;OVF}%9)SldVb{{0&f*750y>G1d5
zT-FWuJsD&s8%^r3h5zZH0%2^@k5=)+Xb?cJAwE2(LFA8s`ep#Yl32q42yCl&Wy&nT
z!}R}+=XH>Hb|?%wFR-%>z{;-dou2PF@?oG|1pw~1RSon>!HO@V0Rs4~jQ?qu_=4&v
zM7wHxHTuNk4hGsAB_&1;nd~8n6=0k{cIbspQ~S3j`4|E$2W3gNmn;ZKA{UoxTdEg$
zFA3=4r5Vkm>NR87wieTA1aU70SnLyg>n9waM6xBci%2lDqP_UgZ6NOoMWFbEnwlE$
zRu12bAD1j|K=pp>RQZ;<xp{wjheox1COP(NC~~|z^gKaiq{9PVx2{g}WO~WEab^Dp
zu*Oz31FI-Om%s|9D7Kry{29>9uley&v_D)ixDD?iDrMc|`^*4ELi_181K&(Rx_!8q
zuLhMiR5KtH6aI~^s;V*`Vp=_PZnZ-xWFQ*3ZQEDNs;ND2^SC@eYF^pbZ$(e52un<A
z;)~;X_O(;ldffaOTWebVVA79Fjm<Ykk-t}MGqSVgT`9RN5x`dipK~1nb=88)%&F$j
zLLhs-9vE-^@TQV*_=Dx<=8>S83`A+Gm;r9C;+?YC2O)PdYO2MgTD-7LysF(=P9Ehd
zW*=9Mst)$`-L+GhazEX)YA5g=S-(}Om^AOp9SS^l0jt@rI(tQ|ctW_@MA>WS^RO}V
zT0q7K4~ttk(iI7Ae^oF%A1;h=QqD`eS2>Hyk-d^ut0};Mczr9XnsTZ(87vgV>L9`W
zOgB%`)_oSv)E8^JW0Y?+^&p%JY5Kt3w<C3wez?CMB*Tz?*%;9MBtX)9^>h1mnjbHc
z+rf${!fLSul_tOwMYZkT@Qu0i=AO(B@L3ceg>*XJ=d2!cQco7q5UhWWWY-E>>WX^c
z&VWT_cUvagPdeRyTtr@0HY7YcT~d>pc-?u<r+IIQm2<9#o6^0W8t#@wNl;%T0^5Go
z#w#=6p5b}9OJ1vIrO4>I@8p4a%8go0YAZF4m0e>~Q?FLtM&P4gGSp7gxw*6m&d)Q2
ze)~qgY6z9`x@g3kvz8R~>9_ZWv4N8U1^Yh{TjXOg#Lgj;w{emiB!nIwt@8$zAen#=
z+PYl<B9-fHpSR5fGQS>|dR$(7T{j1+wlEmPuY^~Yax3=LLi1k}ZFpMteUsbf$r>ZY
z=Ox^~ykg`k-sjAzb!UE>TaVRS`?nD2md_YUe^?}j`2;2)ajXqx18@6#d^~G(*}fV@
zoD1Q7D!^1!QW`1AmmHI%KoYC7(`{#&o0%z0+8%9;c|}H&v^r&FXX_M?X>-J+(D78z
zi?M{09Q7G-{x&I<YqZhOpac^_9x*efALH_BMqb{RF|){d!plS-R+hb#<fNpR5&<Yj
zgrnQy=dKVKUQZe((a!5vKjx?~2od@u$7g{#OVB;-R=r@$u)kvj3scj;#O2j`_j5uD
z0|%wf@F=2%#9!G%IQQQD6r5T+Jn?y4W^Zq=+Yw6Ne?-cr{v2Ei2enfcQ3B!<;2>}g
zRG#>lDU&q+#sC2{N0U<h$y)>j2wo6(iJsj{AISU@1l6OEmKJpo6~AAuTKUyza!MQ6
zXp*Na>J@kq5fOcw1hf)YcHcj@#L_9BC<F;0AmiNWI30awz<cD=lp<a)Cgiyu+oFjF
z_?J5kuZ`U5!+de|Q_>UNRh`v=+z@jOZCtVz_mx30n$D}KU+0>EdO4mxs$<+VEL64}
z(Qpti{3K}tDn9}F7b)S)yTeqFhFUMhvxl&X$8r>vt^BhmvNLFK6FHE+6U)4%Oe${z
z05E1#V#)eIY+_!!S9f{7&3I1EYrpZ8N^t+zV;#asAOk=wl(fOMgRPHTNtAJB0m48u
z86U)YAU*uH%JpoIQiar61)n4M&nc29gC!+a=IcF>&V0LFupeI*$BnGNmGYh$81VY?
z<%Wn-*qB*cTi~5A=P980SIIqTTKF#S1@qAo=ht1FtY`H;5EkCWU%~AXwW1e<f+92M
zo?-NMEmi(`p;z*Pm>sYQdT0TYC@!F#%7tZhgx~F?mo=gBo?KHUP=+b(zCH9p!km<F
zwc9l*_xat*UUk1arK!h_^4pp4rpiE@mrq(_Q@QRmhIdcUQZtkE@-gp?C(PpO0BFHe
z0$ATW7Qe9jyLMzjzc+J~mmu{;Ngq_g#VYF8d#BuTj(nH4pK1nTPu+7|;d<rJx1lH}
zN6T;V{(W#|y{kUbh>)ECpI-9UBCxDHE?)-lC5NldLXpR9S{hz$&$z1m|9rV)0X#34
zCC&0hdk|$9m0`1|k8t?8?mvdK0_<P+_m%S6^Diy246BcM@ImL2%x)_$D{E7KCMCdf
zk>IlBTebZ|$lHL52EW_+QCOm{ulRv=w2QEZ)c}VAi<-~K#m}*PU*SFRp1OlncIK)w
zVOS|B{|-ieR#sL)^ZXLF(9<VRL^LA3m?pp~)>@?<PE{C|*nx278h?-k4vhr=NP_E5
z$8+AGSboUtz*frFyyex103{ZF{98TWW-Brqd~{#SOm9k%%pSVmW4E4L-egh!?)2{_
z(}M?+y@W{_Eh0usT6^4SO`BnUw`p0k$V}(D&D5hG6L>X#B{nt9WHs1J?la<Q)Imel
zMJU6aizW#-VMjz%R5E13Z?$C6sy_!!N}J#Z*tlw!waY*n49D}sk>tF-!{WqqDQA`*
ztpf-*k}EWaV3lgU8nxE}5(ni|vr$lm*AK-dIsT`<b0@W^c(<Bfdqam_Shm7bJtdHx
zkk6FYrwL#hR@ejcI(h6~-jyL7FR>!axtFWEtmTs&oBNZF3xWObtZpR=mtB)*eTt4l
z@nK-KWw|>xm4`+<E7kBnSJRGj?ITjgsS2xmnodi^tw!LD+xe3m+;$$v1mdrx$*mai
z@__b*kG(6+U_eSq+#D^u2FuuhUzrb{6j3~OGq#(g=(T#GdV<g9WF;Y>PcZQ<|1}#N
z9sSA7HjnqJ3m4qJF+s{johMmck9clS>}n{0RYF`}KlK39o}u{J`^gGfo?zG1L&x$i
zQ2IfkwY9SoZ->7iX0-A>J^qGrnsC=>zLzk_NXr~1vg*J`VJ*3&uNlu~TnSO(bI;eb
zHlF9nzEdBZ)>4}CcXNW2!>wt&)bt91l9KXKx%WL8tS97w^LF^v_P1^bwQLFcx6+zp
zTUg<%74lI9&yzQbC!L)&J_1SkYh<q2%40yIs<|jxl&v1+2oPfP$(}GZi|ddn=yt#|
za$3nj`BLboz}_U}UiN;bE~8yJcQ`IH*0%-lkRAs>BCty|{HJ(_5@rwiK`H|i1Nhh)
zOiCrdl)wva16x;f^IU}^1|@m<d-TZp`5(HH;nAZ$6KblekXw=%(ow43lh*w!^0~qg
zvz%)+Po7^vfXNitOP%V6HX<8~=-PXPDNyHwYkUD11C(z=f~W9M$YQF>4*%%Lxz^8_
zTHD#~aU&~vp<l*;IndWYiOM~Q1gjD7lEu9O4>sRDjZG!#o+Zg!UN!(ea@8@pFXJ{D
zvx%{B2$jEYJG>)^>9h9L#H<>iHUVua8zv7PKaKsr6YtSKL{B*vhEAE0K1OzQ4QR)8
z1bgnXQU0amNw>c(EX@34$YjozCv|)2*@2^v-DBTS2h%U7a@E(Hz)hrD0q&AtE6hO(
zM8Uy^wbe!|h?k7lhD=JWMwmL%gM3=n50k*Jrhjjr<Hg3J_mn0Uiug#yUYTv^!~SP9
z;DAy|f`@i!u;txSX9TdbezC=)w}|pSGsi$Kc^OJrD47rTyXC*yJn?LL3Tm|Zy|&fY
zyj~SuXXJr(x>}s<pX+2$%*|N+Xu$}n(^wq0DoqJoiF|1@4Q(d|RWPF-XEb2!Dw`IP
zWX1%?m*aIdE7E@sPr}&^i;M>t5N~XwU`q)3v4TVmwkL3c#M|>Vw);PM-q`Yu!pRJh
z4Gb9`+KXLhe+`|Z8IQ}71p-sIrp%0tpB;;g%UN42ju*w9Z<kP9&e??I7&ls|57QXn
z3&6YCf2az_%>3ByC-$Phz)QJPtC=q|ZfO=Too+;izW`MO01l)7Y$xHiFmaiw4DcB9
zHdtF&Fn5>}aztClFr}-GRzB`KR~w|$<*jZZ_xGJ^?@q~r7Aq&EtCT>4VPs;0wQ4}P
zUSaLafY)BET7H;n+Y-84HZuLG?xT2(`v+FRn53GN+n0Kpxu_|9ynJ+e7XwHYvXf$O
z4`+m+o8#+Ib1T;OvdVZP>OS1L1vI!?6;9kZlnWT_VE;8Ed7O=j7JY_jI8lpS7=6XB
zzUBpdL04-IGA0fUYd_}9tl|)>XC25<=Hww0o1!`f!q#6V3}bs<si`(r$#1?W+B*T;
zp<g=+x)<VlF(0zhbaRQz^5E)YYxsT&yy|82=tEXPhdh-=Hq;#{8a-ET=ha$20{?c4
zZ?Fr>cjx01N)xnbXiv)b9_~iLGn|Qf7vXR^EBz<XvH*efU2eTT84jgk6e%zSc|O@o
z>3T18cyv3s67f5MAq{#=`UQMxs4t>3_~&>5f@al+eqqvelYYm&|KD;K4i|=8<a$ej
z<X8XV%9^#K%p+7ANhdvII$%#&m}A0%lsP1TrA-`)SZEHTSVD1ol8`>hZx!h6PQt*;
zD(2t!u205=77Wx97Zw&L8ZpXmEiRZvMw+sJ+@`CpfoHIOt==Ki;W@9+9%5xtWq`Tv
zhC290y`#4YS)9FO2(+w4MOOGBxZ;GlnerA5`)bA_&T{IiDB363bzMENV}NE_`o=Yq
z8?Dhi^}g~i!M`zH%BToU?AsMrR}^3$D%1;rg}LL_pa0)bT?Jh7@j0T)Kz6TKchxnH
zTQKAQeen6ZlX97!J)NMwzuzNnGUz<1_|N2q)e>>`i@DR=9+{-j9*VE1S%yfo$H}I=
z0aKbP7I(e3VM)^PRaY-D5Y+0VN>;$~biTD>6qGdVARtv@Q}fxMGW$1%sDt|S#qT0l
zP+Yl<#yyl39o7ti!`@?_r@p{Er*lLGSc3Fqndi@nYT~K9zXePUEn;)2QsW>lD!p+}
za(Rvg)%BAUN9?dCuO9BbexD?rgJdYT#`X#bS+sbwMI`?&yjV<sNImj4JPkh7u!5J}
zTogksEp-xyy=w?1%`%#|R(hX+tWVB1RM>n7gU|GtK*GI~r2B=e&P#8-2q&ApM;uT8
zx5!>%>Z4jxxcLY6fi}KP7XOC#CQ2Ci;rYp)?e}cf61LUZf`6vptGCdU(f15sl)Sp?
zQ}n3F-q!viZWvc8HWl>%?p7xzw)@Ymbg2CN_jcB2+yYjn+)IVP+<4QbIU?kaDLjB5
z*8Xng9d-~>+&C7#bM)14BP)LMr`g{wj@<J5T;aS#tM2j^Gq1|^%E?K)W#M}wH|Q$b
zq!t=!y^FHhgMmw4>s?s1d|dEr=iKohgkVxcF69dX@Bd@*)wS8GY-@*>ku&bkx2Y)K
z@CK*|C11(Pd(fWyO!KPF(o5T;fLZkwyfa3Zo#jTEM*{fO7benH?&P%ai0YwlVBnVM
zTa_Q?<DGj|j=bb>kiKH--mg8>DN?c7MqjZy&S4uz-Na~kveR?Af*gl?tJ1}t-3*kP
z{gN%Q`?t>~(+37<nMm95)3aFx6&pA1tr|Nr5LWu!t4QlDE^c4rjuwWi3?#Xb%=dpb
zkFT?LbSxTLSP7_6%gvVcs(V&jXnZO36_49Fnq7<$C>4SURbiQ1Os`;~&d%2i^;1@O
zmd{1qoE*2ps3K6EMWl7nM2u2JTo`$*)>zgveSE~+fW<_-DKyh5TKI`!<ImkI!x7GU
zze#C0zooN_WOk<zo69Lp>mTt<H}Eab3Ho|Qa(>l{NUspByo>JW4KS;)BfGGYq-S8b
z=9pOtZV-rUamJ-*M&BD(1d53mrI&~GykYZ4%eSBz@ho>UH;g>f{9N=|#1V<h*f;e!
z$zBXrsLpHH<QJ1y6_nT{?OC$!kdp~n;jaXW4?ZFG-}&>*qGhp#&i!=Q_@6DdFKr05
zX!BWKSm_9ewpph~=vnGrg$A16$@VlV!k3j@KQ1Tr9rxpHj0C%7)gdAw(`tpm9?z7O
zS4|gFm|<b0=gBIFdAz2j>HFka_`=eRM^g)szC~>%VTs(W*DDqxC)ZBMDX3PgF|AG}
zs!J=@_O2gK#iswBfaVeu3vCr^U#=wkg36-u>4>U(+t?nVH>*}9xsCsR-&y;>zd#pW
zU|bGKqK5l(#eDzu4nGmQYeEar&5Mj#<Ls+%!t)#Np!a5=?6iF)znG9@cM=;`EY!c{
zz?^Y$1kERr)zWcq=9?(a_V??a6>jGIi$1R>0=5oN-B@|04?>Ck*KT;XkM0q^7&=_4
zsI_LEcJ}@^{N-fNZ2l;+yj)G1*K0|t`uM|&h_q;laWtZ9d0~4Cf2Zw-4D{6fN2fpL
zSm1Sowz{nfCnpYF*{Ruw*a=?UvGO0@pOxaUdJD9slimO;J(z~u4C2nhS(v`e*(ib5
zF=VHH`?-pE$heMPIO<f!-h*b3A|;e*)+dyf*^MtdkLiU9j;))UwLJnh{#)LFfI=ss
z>tJ><;)P@d9#3KMu<*rn56hcc72Kzce0)x2)Ll`(yZ{365)Hl0*YsPzFR?Q`C-X1e
zF=c{)1GjG?6)fi<OP3o0Z!aY@{uz%^lnTiXO>!fT`?Yc!E{=M1bZNi;n<Mdvk{_>|
z{3upWPD-dH4W0IEwn-J6j>M^Z>~Ns`gsj+4&x%~7rf8l@?7bLH4DRjOT70Ekh?kwu
z++5wRvLYlr*1Tj54Nwi+M^Kp~8nhq6kJyYUs%wmd_#SO#3ca8|Dal;I+Ji7Vo*`G)
zG~B50p6SJv{CdmlIMnMcqsJ*QZ?cg^$}GQ)IQ`h2XrHH)rS$wM*S5F|`WWMWxbaa(
zr8^62_r+HA>hVUF+%Fh<TvY!c7QR0B{~CM1mIxThUKta7_2T}}QvyV#0P{*xjHJoG
z#GQ6Hu9v{EDeXQU+!gstp7-Y4NxOB9xShwlcaxa+B4cCh8M))7!43&LIGxBVPB-z_
z?ywP`+b!v<@Jm`NZDZ{1eYkFeJ%~e}o0rSfn1uX%{D+9~F&*uv5=UV9lJ|3!AC=-P
zX3D1{q=s7H-822A-1)s4zl+s04R!uJ!W`it%o}Q3*o96pCW42%hK(crMx0R70D|o=
z6Z4IQ-krE+XrkCi9#|#n70QwI3s+yW<!QC&uAa&pW$;J{QO))={pwlGu=J=)i_xn3
z_WK=|y8;f-9PqcaLqS~YCyGSU`n5-vD3f@np-9p|X}wpYoUIuo4?O%d3nQrE7FQlu
zHu{PON26W&&^(8DI7GjA=zK+L>HuJ7QrE9J%TJTQy_J`^t@Ol$MHI6g+|&Q-?uqZ(
zK5Aar1-+rc?CFE5ZGfxI39s<b0D~IW1LCZh+R7Mt5+j8Ir=ULcuE^67gBAd~1WzKE
zn9I~yNT5*x2H3bdn(0cz`Oyq@+2`&}`{c4R=#imaJUUHXaQoM?Cf2VAwUI{qKXbC=
zcFZ53anKRB1KYSXcYlQ(EE?{5(z-5TE76~p7~35;OaIAJ22f&bgY0)wcJEMk6x@Q%
zLEHHPC`^VhOemm2o<m1PhL=^PI*c_yUpWe>y65bxQ-|^YA8QTe6=r+sKcw&68dzOe
z_((UDFen<&0+?MZ93VQ6xJy(~jRUFRsTXKn*X1M!D-CY_3@&^}`T%C`-(Gr#`8qJP
z{saG4dIe6+#Gn@lpDGv~m{cqGTt)2Su>kONKA6X<>w))&w1a?-h&xb=Y^{7_mMi*%
zOx3rs+Klj*w^}RVay;YvL|n{>RB<^cIF>%l1oWhj@jtFw=4fw=_644H@mR{88m0=D
z<;9M${==n~;UrKoGDQ}kNDJnT6obO}XDLDH`xyZY&#%8x3??*8$;!(U_NNlBK0%}<
z2!1!?58Hk~RjuDeB6777PGo+8uQm(LO<R}i<$pd^2SqDyjuoRfB&uPwrZB~(&;fqG
zIorst5$h+P-U<!4R^}p@SbK);9Hh^*w7$sjoB$``!{IY}iymv_7RhTMvw_;z`x12s
zBL{6pDRgu(@>jrlD&BXvWXbiCfXJyl=9u^_!Mhk9A(MCu=GvPE1G6+--!Gg_aDRnl
zJ}o=yyRM3TSppbXX3vAG3QU%0ONGQMP4AQFn3)m8lX|0qA4kAh8`l6ysAG;g_Y+wQ
z%ia7@)k0UKHH%iA`tIY9(Y3qK80HgGuxeYCkvs~8qHY_-D$gz*!MyvPMXgx=l@C6>
z8k0(VirGUi^G6oCpUr$~Uy!9^+EXl9#S0r<N%WusM|m4KAJgopN>k~OS3ZOkV!AFQ
zn9A9mg!9@a5jL@8oK_xwp*KQR6Z(ikwbz<w5B`ttUTtGzx3sTR2ZF)R#&=3r*Ue9P
zk_FZIR6dcLq4NlYDqWq#UeYHo#!HOl#eUuJx@$784+2+fD^OI|9!8XWasgG5l!Zic
zbOi?iKCcfn7=9KVz%Zbe5G=MF+86lMd7fJSv(ZV9V!P$~N{`QqUw4LrYXYlqD^0(m
z#LOa#Ekq7III%rT<;{`J)LVKkJNxI*HX`(&d}n3iE^(*ul)ge!O!NE1=x9cU%2=@>
zuBxgk(Ml#z+T8|TpaY2}hlsLu_<ru67l7_f)m%jr`poQXFB**g(kA*Bs<|Yfy+Bm!
z=Qc4lO(wZAGNjQ_mHU5QfFT{Qq53)BaWb1v`8scpGLm2ZGej+a{jt@^`Wm(iIL2_i
z@6kc=T#IV<uqi1oZ=ZU?Z2x2R@T8;!Bh8Zm4<p5FYzz8pYj(HNkNenh)7J=?!vN}U
zUmWpgoQ}PKuA&S|X$clJ4$_%%S5{5O&3mOnF=e0ku?xi$<1dj#AI}Dgz(UNdOrJE?
zzI_Bu642iiKsA5SrRDJf{o-V;U_x#f;1fNzpLWG27Nk^(C4D(vaD_P3R%#sC9CnIu
z*`PXZtfx_u$1u0w!COVeH2Vr+VOjp&7D7bPdkgBya0bDK!4z)~2Z!Td4+d)Y8?OW4
z00bRgnU;h`TBZCa&ID|TR@)O(Q}In=@M{Qq<}CG=CIzgSwVHqEy}-X%+gF<Jxa9fL
zSGchzzytAMSV<$#{x<Wy9OVy6N4o~G(tEyRP0Y;9;_`Hr#?YmJ^4=q6cjlTia&i>7
zX_F?ynoMF!#JjF43f)_9ob~77JM8zh1qb!?zMW2A%~jM08M58Xq?DEe$w3%O)N`+Q
zCf*#`mU&@=Ypck8mL)egidHe<xzw5oYy=5AOPia+FEd%bQch|<uh{(VTAlz@$SMSf
zEUF&rXJdtiq<}z~hLXFd1mDxj1sl6ZBC;t(`&n6Iy%H|0P!tQTM0LqONbqhyzG{@$
zAbNpXs|6ab^C~&YMcr88k*)~=5&r`J_}twXZ4?GrcdOoEThsUwNdM1qsBR3<jr-&H
z=O<}M{I7#n`PlC*pJ7f2b+!FwXddP2H(-xJ7DY9@NDR$0aV7Wp)Vdsfp}6OfyGS_Y
zyUyUN6%vUH9UbACiL>Vpo8zB*dV0__Z_#$%04o`SMo`9!J-3=8K1#}OW=k+|Xk<}w
zWCUKbZvvW=<vU0t&CJaMW4@p5Mb(E>&Dc+v_rC*{`2}8q-MS)5xiaFgx>_=nt@Oa4
z;&r%V54dqfr`Q$wd!}n$3QdOYLuV_rTre@Xp&Xq;Lf5wHPPe{xkQmBMEbKZKzzN_f
zM>UE5>!WB6AQYzUWHEm2E<r*xw|??=wMI{_#(tJ)c(Q;_?{LbjOxr@>i?!`un>xxu
zzPg+5ewgiZYG-es^y9~shC$uXd5m-rE;8wb@zD5A{v@N)v!o>UKjs(tnn8Y$`D|cr
zUF(tu463rKs-V0CfM-#}@2Kw;b;MsA=pNC_Eh>^5mk~Jo+rgL^?mpe$pA>!fcC@n_
zNc$;^uialm@~hRv)xM9c*{(Ysy(%0o)Xy<4nFlNQpj_k15w)QBQEK|8`Vn5xN!1%W
z4KkdX#5*1cfB(HlPf^8kv2;nPjYZ9_s2PyLCl`(A)GZ6af;b2xBcq0Q!TcnDD<Jr4
zI<sgs8_qR-23fZi*W*}-51g5I+kHm}2-8P2T|lE>l~Yu_0Z)(W09ab;<N;ybBuBkc
zj=b$+-k<$`)mY0C#<c7H>s3SOc@P>LO53j97Fe~ah%pHiy$4-kB?k=yGJ@TG&fF4a
zuWw3!E&hD$f+bb@$6!5_a5elds;0bhagqHjsq&Dst*v-vd7|W!(CkcIWQ$I)^}5R8
z$%@}>E9ugKb1f~h&!iM&x0hi1g(iGHDw)w(q`VA2J%42W9I#z|Lqo(*65hM5tI6%{
zpRDI+e>-bYy?zSPbZBT|T3Q;JhUxZntz7vxFdQrAD*(ud>iP_wKM?3+J9;@kn?Avn
z=2|+1E})~VKQUrC?2_%)52=D*N&JpEXkpKt(oBNJvsYV}Ipk3ZWizGrP{B(SS!V`W
zLfH(zB;w;MDkov*vyI~3FJ?!l=lwVP2UPUlBuKSpjdh^uDh)~*Hn}60qEg%EX#+!`
zIR;h{qlvxSYd~?rG<aX@JPD~$LjN_q!sq;?W1D}C1!th~<OLoYg8-(43sC<<hjt_5
z#K-wF9-nZf|F#IwT!V-(f9OS7u~cQvNzIjP&-GYQA)}EiEU`q=)?l!Dt4h*&!@Bb2
zw<Rr?%_pl?u%&<PLr$`_wWTBSQsv?0wb~dh{F+EFWa$>xzTjJt?^;_5eb*wJ5?!bc
zB0zZ!3hT<W8ZYNPD|XN7{14Uk6iZRg3p=ARM|qi*s|}1Y2~rcK*1q>y1rZMg@EgkN
zJMuDDw4C<o1Uv@lA=(s+frP3MJvlW+$uX$5u?HUBw{#NL0Nx-c>Fev`p<O}Ahxt<T
zN2fZ4%HIc83-mfdzbX@|FtUDw9zn@qFX%C(AC~*Y;9jpK;rih>?Y<Z!Y!FH9w<gIP
zlIj6mWs1m@*l(&Le4;Z@Es7;*dy7L*EU_}r|D9Fk^=~Dx!h$yFd-3w_fwP}f1c-$!
zZ$cNN)wJab;nB1IQz!a~i1xT>`O%SukSfUoMYA*rX1pzXW#h<S*7cgDsO~*3=Ry^U
z&HRa4nTi;grl$pj=>nVWD+00Sn7{uhBd%Z1syz??fKKK3+?i!N54sh|ptFNkM|&;U
z5*$0wpvB?drx4Y39r)*y&kEmqOd&A%fps9A=G(7(GB_fDNc=16qXRYo8Gd|DW7Y-!
z5I^n}Ilc{h-W<j3K@o5)c!KsXVy#=Mit=!nm#gN=6@iYNI#c+sDRR63Gtbc#$^?+f
z(-IJA1c|rqJQbS&;|c_oq%xY}!9lT+k}<P>^k9Goqh?Q`uN;(=%;C(kGR3~PxAUf@
z_!RNbP=`dj^*F>w2ztrRzQsy0h&)>`OJ19L-*-kEy<L6fvx+UD{l&0<eFajkv^lyk
zq_88$dCIUj@XoU&=+lCgZCSX!vikou^%YQ2J@5NV2ntAtASDeFqI9i<lnBxb5(0|o
zA|<Q{5|X>pB@NOcwSshql+qmvyC5JToeTVCzvpxQ=YP%~cF*D7nL9J@yfN?dytg3p
z(_tNe$g4!Ysk0d2I2ai*0DZD5y@%<)jrjq6e{U_8%;_b-uK?|N4JBC{{Iq^)<yy0P
zZaKhOm23ngQ=*q2;Il6_N8ez=4o*&yN&AqjasWG`OfCn6(6|3WKnT<ft_}fSn|{<T
z7XqESJ62=}@&7OV(j>tWVPh(g$TaReTYbIN2p$e_5g>+gCju)BqL&-5Z~Oq@p-DW9
zogfI&LK61LMg8ml3I<4Z{rfwRF0c9r4H5ua$8&XR2MxbFJ9*fpp6l)GeK;D-Y49V4
zJN0bwim9uAPsTl?IpKJL9?(##iFzNOw8{@XLG2&sC0eNf*1xu?Y^GLXyh2Rnv?HiC
zp!f3iPfS->UiYw4>7WVl^<tiOve49kQVv1p?v7HkRT>*07J6_yRy_wbZ6M(M4LEH8
z!=$;I(xz4Z|M5GS^vJU(*B=-fj#ky@o0J(H7M8%!g!ea|!KL)iw`x3X#HHry3Bh5N
zzI=Rboz<T0{LhEuly>R>kNg-`csi@+dO9=N%%|wP)5SDAF~N7<mZ)bUz^|vy#Y@{O
zz*z>EKI|GP*XjT#4thEq#g&0wXbT*%+c9*NL3MiXuMQ(;w`#GJYpzv#>y^pF4)Nx%
zY#HPy$H%oSHBksSU=0RUX(Q*I7JZ$sC|_lkWh{Ckz>3c2qiNGpt$hZU(=rwYV5Yx_
zhdf&gTn^}Qcy*P<cW&-2Uo2hR6vFS29_l@#)U`TA?9_+h6*~>(yHg`$4IFD-0Hhcx
z_z7?XU8j~*O2<#9>}+{?K@v)^1GNl~^4UxMO`-MpaBDtHeyf)IRr*hm#^q9^OssN8
zAlhxwosO2Vei$D>%;MUr0hy<w+xk{iw5Z?zRto;eAg_%AZe;ER8K@f~FmZ5pj^{@P
zrD5ibc6|^VQ#94L$&ymMo`Q`1XrwCuihVq(?qvDwGD(AXP=PiBQK|uXQsb=d23g!-
zWkR9D9t)U<&UBpP^w%q(6vxgP%jQ8^sS)#Ec1K|PK3U(TI(mPh-H7`Rcpr33lW^ap
zt&zoax?%p9exnx+Ar%fbPCv}zA7%gC7WUe1Bkf=m^IMVs9m97*cL_5!HhzGUI2tea
zHP&XtF9mKp6xw-RdJY2dJQz0xaGY2J;wC^q7R;EKFu@a4rvP75TU&d3?#-Z<IFe2(
zWUouiS3l*a*ZM>$C?UbqeB31l3YLWU;;<au#>67!#;y(Xz%PWg_$toK&VtG%c`5P#
zfk8aff$9dk7f*K?doVOR8wN;YcoH<oTuY@!#Ib%as;@UM=Es+l2pj0*mjPLPgW<2W
zdR19~v3M}zAX4YafAZza7u7d!D%~5W9YH8WzV;v0araavbC925h2QI3Q{1f71Tgji
zH5Hig=(2B~>w9>1<gZ_4GD^cmWcEalI0Lntyh+tv%fAW2`F_vtHHo#J|6yj`d493v
z(x%knCFoRNPvNJ4101m*J?$sKQ@Mj1`EzP#>mWVcE(Of>MKlztr*yJ(`TF0lj_fiz
zN&l8Nr1rHGrU_xKoLtB(%#~nKD~OohL@({^*O_mMHZS^1;!01eCg?U(UN_7lR4Plp
zDa=$y<*{iS)KJ`Ia9+Aj&!;Bpc5~|v#ho`7pOZOb!m?X_Q~X<b=b3inhE)&$ujWa3
zMxTYDVc^ozl9I+lz*YyR2r<dYsNCG#FN`JTgK&bO^*xjM!JsujB8J~_{-rPrKR8rG
zK(kw<(P*@$j!soVF8sUz4ya7kQEO#2H~<gq{K#;d#E9_h)GQ8Lagn})>OFLx-6Dro
z3p7rysEKbrAAecBkeoNH(tV>M>S&z?I;=E#VZ;*dGAR%gDK6}u>C1wIi-b^IzrHE%
zUOKvV%4&bKyQ`wBODXkwX3XwwoXMB2Sl)+@i9Y5`mk4X(ImIv!uflR`Vh}I&^!5Ek
zU-Wn>zcevn92pr|0KTGk*_quJz?YpxEEXTY2`%%UgRRrk+lzh#_wc(&1XoqqbcC=&
zkEW)ktf)TdXlb<p%An(uh=$Qu-!!$g+riMIV`ADcs!R9PBzKA2({s~K%|Fej;Tq4E
zr+bd8=?lm^eM0)g>frRSn)ifC7nna81#Xqo9X(Vu(^Qc-8OjFc69P!GPC&xLjTieX
z>4O7yz5y*m;v}WbMSyyHg@q~df||z6Z1OhxSVn3%ful%`(9inYypA86f__N$SCStQ
zHwE3}l}8gLY=WY~hQvWc<|GKNgACOd-w_kNdXGPxTCUGO_n%zogBsHI!BMSMfxuYP
zF$hPg&vQV@sn^dIhC)6Y^i*u2QQPi@*Vyu`^NfE^oxW50(=|KU1ZDcTE{iXQ*AeN^
zAEid<o+RSAj1oNetGEhMS>)ThF5h|N<&G;F>lqA+h@Dt6j#Sk!42+D3`L`cv4%Dlb
zNg;FN+Q(;wXiT#}Rt`l^zU2$_0^-aZmv&^QNT^;I9I32^a0DD|RTJIVxHwYx8v?@-
z)E*}U^%Ix4?({Y!+X}aPyf2%Q;fK*H-(b|v&?~Fk$wI_u);@p8XkuXW^z_?7wk!tO
zVo(TYoYoGeoL?0yeDQiZRY@^Sc2uM7_oULq$P$y}{acCc{ek3}D2MI#_V(zEj7Y!>
z{~{{+NLP2u^~~$-#BHGxXMnt-MG+?_Cs%)AFUisB?d`4Zo`~un7-;^xS6afc*Dw8R
zP~GHE-#3@`zAeYPU-94YsoiN=;re@zR|SX=T;(Ln+_I;tYJsMYAN!Au8Rh2Z1EoGy
zMveZ&xn8;s&TuL$2a?m%BS7EmHD5zRLcqT{1qJaezSSeClb|5t*%hEj4r`GT;^M=H
zEEDpJpyHS(f@*r|0gx1`2r@Z8X@zQ+k|F)mgB@SRzo|17t-6#@1+Qw7dd^QATr4aT
zXPElL#I7)=oQewS>FMd}BM(0Xn3<VbbvKaphEh<l=agN#1oW*^Fq)N{yHwx8D9hd;
z2nAGiecNfAi&`kkPh*^;CcQIWQ>-(*>5xs$R^NO&V5E;RoOx5!ou11L0^DOr{Z?kB
zuB=B(ytI<iFGQU8(OT&`12y$iZ%4LyS+9Ko|FQsM7;Fk_hukQ}L4e=acDjsy+|$L@
z)Z80%o#PJ|uOM;876$so;dhLi+G<(zR4me=q9k#Tk&*E*X$B+*kWo>j+k29<Am(3N
zTT^ZBfUk|@MQieCYHH%E1UOnJUajcZ&53@P75{M4_Iz;oO~Ub#KReYAHW45*%M9Z=
z&1kk;AJQ(kvfI|1lcwax_d)PQwfe?Gjx8V{!12<;$jE(O_G@Kj*65lSeOY{b{JO8A
zn-0R%*S~D7e73!DyVY?=%<7Djo8yrP-;bKW&3~kBed1C{IZ!nT8Ngv>y?gJT_r{@+
zfIzFMwa>U+O@c?;9$?c=V9!w~RCT~tr+K;A0rYw@Wmr^{hOI5eSiT7a2eR(J?@TMA
zx@^%`*)U$;sy!A;^#(9|8xK`9*5X3H&_0=*54I!~y>+BgI^=q~Ki3f>An2^F?AkP>
zPts{z+KS=XNqovxFA17Lff^lIpFe-@KKmqUNhW{cp)qOm|CH*6+fsL*8E<zbm2T_)
zjxT84&@$&*xsNBApjO*ZJ?cydrPtCNuBHDg+uHDf+E^+EV>^4*@aV|H+U3!+qn5>7
zgKHxhNdc~0nPsx?^9e8IK6l4<KF!M6FRI9;DcHT9M7_uh1R`76`{HDU;B$BUB!Jp_
zhZECG`v7qbyE1j$uy$ivWXmuCdW<0yf<M_=Xru<WuZ=o?%p!LWE>El+(nlgmfN5(o
z-Mq{Fci>iEl)<fF9ic93lL7x3Gg0?6rKbH~;sQ&wb8iwo_57VA5w?SEv^o)o!8&|v
zmvlhmZ6H<SIUtYa`xi07-M=##F3l+6Qf$ip<>av#buzZ)l&^ZmnD_dM_MJc(;xmiU
zZb{&%Z|fCr<DBvFdLJ`>){ExDB~v49ZG-q}`A*2#R#KEMimz@mlJkXQPXUy`jg`{a
z7jl2SSOwW~dqONz*galpeC#F~VMrO9AJrZ&;GBiE7@Zg-qn1!1vizKi9~Ckrs3U>n
z^B2gY$nCb#huOiABL&&J>Ls&jf!06CmE$$bKRJja7S0u~ATt#Rxz(CKr-6hbC+k-n
z#IoQ%zb<*JYOh@oxM?()r15w_T)5>0g$hnmrF(5WZ`a<jf5`4T542VW<^4aliyvz>
z*kxbB2>btp+F7M}zBM6eeG9c{Tc6dl886RPd*bglV1hlH6Y6|KfAj&*tUPyJ1=FCb
z&1@nTri^=y`Sq>p$mN>Udrw-uyl}cr`l%H&-og?|F42%H_*qWuNaTP-Yx8)n?ZD>J
zIk#rVTW}Y5FDiIRqkhYipkpv|HU}3ODoJubkWmc(q<lcyy_q5m^gvceuO}MW{`Fmx
zwHqJf@AJnW68vO?ytl|`H>Hk$Hi))Ac5dI0@%u%fuBL`~0XzTWX3`rITi6j7mh<1}
z70$oEO?sC~Mf<>u8dDvvvidOfj<-5wP6E?hl7K`OHrU`72U~J~cmF=_A_j#Qbp3bS
z8D3cG@8O6J#kVBa*a}QDH(G-1R*KQv1DwR9wPbAg^zHo+OJHlN+w?g8g_#-_kg?_I
zNgk*x9IQCjHuP3V$ih}-nr6HUDN^5B-q#6|w&m*bhH=x-#Ee%6L+?*2BlT~YH`cw%
z2kQ9QD`{+<G*wR5SR_AVsOmajvtT|ho20S+KmzQdKR>oZCoFm0dBCi|S*n3uta1_x
zXU}SDfN%L%YR`opHGMrGj$ARtv~Zx>gIsoA2Rj4VNVjBiRT%USeoK5yP9?2j94}OO
z<46`=UU2W%6K~Q+#k8Qv(Sp*<74FS*x?1N6haXWKyzXgMoAMTsiNAXBJ88Z$P~0nC
zhUzsBSN0-&3asMxkicTT$<zLS&KldAu3~eF@AGL}bk9i4-|}9(ag|YcAk+2C;m+dx
zpeV-rOzhUHaDMyl6Yf?$5qDt#Xn_brrJP>zrWw2Cmh0X(Dl}P@@hOH&ECyf724LSA
zdtSr{bcP?$%NdmW*22OPYjFN0amGmY_29aDgwztT+yKwRBRqY2us%u7rXo!5CK&G~
z7+XM^Rhxb7!E%I(#^2E*@^OLMIsf0nWTD^9BEz~cKfLR*nSW;#-cK!}GtBX!X3h`R
zzNK1;CfeNmbJOc}f<Z{n9oIx-;Lsen?ZI7UB_}eq!3p0o;|iMm=XXk+d;$H<nia6R
z)>|yRCQw$Q(l2xfzc<Wz2_pFZk~pPxq7J`zUe${?t<J7(q~SG98Mgn+x(}}_W`L#9
zd(j!t(!?mvR-X}m68U>>Li#CF=?2TpW6Q~p-%{Nk+c+@D>9!dB39&iJzPbUm2npXX
z$inVF<RY-`erGe|$*~$>q5tG}NMDMHMUhimLa~Xv`yo`Q6Yp3x*__l7T>r@@uw>A<
zd!h9#U5E*^^}cFAvq_p3>tX)vSpr5aLwQw`h>>yi<M!|t@+v|V*+LTWXtNM5k%gWP
z3du+GJf}4ptIBTbm^+wo3W?MHj&Io%w5$wFr@A43Gk&Ai?^O-ClJJPmQ0dLxME#wS
zdVgXmC`6&2#eF>`vw#lQn6|jS78LVKbbIG<n-*`NwqT(4tzd1zt}UWO&X}v|@knH6
zKJZIh>YN?R2hlhRmDhGR`--1bI2lsD`n#E<qfpPu8YL3mnh}_|J-&EbrJLE!YD=gw
zjfLAC;Gk%ejh&YkB8&~ad?KIBlPUvM>L10zQJNWC>j2HdQuL5AGi@(~k$(0twLQqu
zNB$WQ;NoKW1M?;6waf_ukMXdd->%C?A2b_1Qf!acq9P50b~fz-CACmitOurn3jhvR
zO{kB8O}KaywQeP9#mI<2V%peY4YH&MkNC3e4%QcX-B=aOBCp&FaJgh<vwy_)p@c3$
zCfOMpmJR5zPV^eSPW}a{WXjwYJHw}DNp}Y{R%M7jxfb4tYQ{+-Hg2oo)HoE*TzK-;
zcDW3|<FUhhouYxk22ypgza)X%y4Z>C-*~Y;+!B?rP~&&X_-{)#N(-y7)1HH+k#2jk
z3IlpqnxUX61gRq0wE^?v0b2g|#XFX>sE?P?%3n6-Zubl{1qj9{!S2dayeWuKIV=)l
zg<9J&jlKhS2Da_q3o4N=fj055yyYjh!)nykS`72J6o2TKH4RRCV_f?>oQZLOqMgH6
zo?ykVq`T-nQDnNbe*qUYO$_%!)#RgvG83+6@wcm6B*=jj2)d^!_cy@;tEhBsFN(!t
zTnn%2+iXqMy50T6Lt?k#Af1H;_`P}RNZcF`Fqe?0Ru-K0U6JjXmq(<mvQGqEirZfP
zyTiSwdF^gge5>htc%30p1!o%v6%Psa_=F|x$Gy*u=D4>Rpb?Mm-8XSB=Z#iZCG5_z
zXqjZ|hzO45>}vF*Ral^j+3d&7WG1xY9v7Fo_tSwfNJ*`qFpK$&K5Qf?tm}F$Yz|^K
zyWngOV1xAuV9p8F>+WMcGLDzV>pY$H*ulzB%T0LnHyDLBKJ@ThkGqGQcxP)6M3o<L
z)Q&w0|Il1Q6WkRcAn>xY3q#`W?v@UC#VGRrL6N1bwG^@^DfA(^YXnoZicBvKz7ZDG
zix-ezm$7tch2Dh}83iPXTP3kB2Fe#4FZPmhMVlIh2E?k<TREw`GbT?lmk){r1^qf$
z`=cNV6556I2Dr`SWEqzd`c$YQscPW)qu}#c;QOL*uhM$TNgy(U&ym-T+B;pGc?MZg
z5NpXF_T*(_H}s8XKNinO8G&Cf?_{?>U2?h$hRO@`CB~HeJss|TaApJM{*b*n{OE8g
zt9?O+92t?X%c^9E>UiO6wL0%1R88`snI)XPNLeR{l<@ud_K|*0WBru`67J&lnV|_M
zb)Y$cCYaIrlX<Zbgx)NGKC&DHMB3}0I@>Sj8G}#x=;p?>-}^LDJV9h?yfm&Hig6MI
zgXe@^Cp;g!v0NGw7RNduBx{kr?1C`3zsVCAr%m}Sj!;zB4GhV}H5NNwS`ZwmtER?f
zG&>d20)>`NuE2cN^3i#0qC&Ei>CFLe5i5%Z?{bD>)L!R;igUWD|LFx@_>uMA5fPOv
zJ+mp(m1lRa@kJhd_lEy#4Y^DSserHx11Ow?5ok*rTjFmZ+7)z13>co)n|j^1Y^y?t
z@D;r`*!!b;iqe-J3qC`V9dxFGiaDuY>^aR>1pjBT8oK7K5bb8XM38XuVa!26zN+<%
zzevNL<7^+;_6|>Bz8m4%!^Q#GDvB|m<QO7;@@<^{(RhDy{(MY2nOIi?7%X35C_-nG
zCv-+DGBmdPDNsZ*Zq>B%M+_KGtAwFp@C<5U%iRRE=k9^HP8Tt?5C<E__0CHl)9}H{
zu*a4!=w;Y|+fZA9lcCO2ApsvSRCb+_#jK?}^cH0r-?MCiVj6fU4(uzqMtFVZv+FJM
z@Lhduavoi@UlFDESFy!~ox2h@-?a&VRnrrOcKDy^)%0qFIM67JFo-Fz27>*6e5%Im
zHef6_=3|R@@N7<)?Jd&kFB0@n`^uit@+P7vb&n<*jRB*Db-L#=9$D%OL3oA4)IWH~
zo{ffOc{3ol_WqA#7D%2-NTnCiA)AQuRu@aW5oI~K2@2V>gT_%qS|1$jSqE#`HPJ9{
z5RmhL4UOH1B3Vi+ZD(#GSPA<}tOKeyxMN|yg{HdIcTsJSr{Ki`a`<-y@O118K*Ool
z>J3!$;+4S?U{A(n3?2NNs|cQti?m<i1sav-69)@*L|FTw=Y|6n@oAlHTR5ixgMntA
zLA<dfR>hTVU=^+pn}PVeBr>nf2?x`z2`JFQDxsX+!?qhB%KT6n$NH#rv#|K}1Fh%x
zKK9+zx0(;wO<{~Tt)ZBvtfa9Lji%_m4c3Ai4LN=>lV+7^cars_-Il<7R&MBJH8>|w
z$&1bcA!>*{9m|s${n4S284_+Gc!Yz4R917*dg-@PqD?mYs<$Z(7r3t34>gQr=cS;z
zbeoe~!!Pf7v=e^L8Ko#PA{69VmAKr8aeYt|`atgw{^<0%f=Gge6@=;F%OqEY6kj(4
wug`$=IKaUDz&W%DUIu<CGKAs3t1dW_Iu2CLU9nfd%NHP84|LVaRGtR>AKw8&v;Y7A

literal 24969
zcmYg&1ymL5_x4dyLApb_kw!!W1d;BN?nb(#qy&`)2?+sdkrwGj0TDrv?k?%>`u6eu
z{%d`Aox60MIWzOlp8f84o@X1PtSE(fhwKglfxwiJ7FR_eu8SfN*Njka!8i5fMOp9%
znxnL~3j#sJfc*cOj4J&$e0kedMnU5C!X09KOuC+-_#6a+8X+St`phF`ee$J;?qDkC
zd5QP$$x@2zXfz~tZ=7u?n$hCMl44#-qkK}66^Krx{E@r=T3V^+tntmjD*Z}Q|MT?s
zvM;+klXU3cJbFaI7=wOa`Bs4W*q<NQW#?X#;KlgU%S)3xmr_h`4V|=1CO5oDV1F*R
zd$cFyOZ#%#S6A_?pUzs<P#?<mSBPNv&mvK%;s!M>Ev@Q}SmYlcq7zYYadCUYTj~ED
zre_ot7Z>NH<3@vnnWTA7HW0x9m{H+$2qRnX>z<xu3!;HLAtFsfR_Pu6)Y$%vN`dD>
z5o5D>xGM1`c;e5waZ!z|JjmzquMrR}WK?reP5RLNU7-@)YGxMjdfPjA|Mi}}81f7E
z>4o8$Z4$|LMlJzi?i0&D!&_G?!W9k?!NFhS-o`Sh@?c^_7@N@gkCxr}^N>FjT|bcD
zr;*Ce@}<+^9HQF|V`jbWTFM%^{I7#z=Cm7?H*s-Qz99Ukg?u#!d`9rZ)p+=XUuDcX
zEi6BOmyi~u)N?Sqz?9%P7b~}&y7KBu9{bkYAF7l=x1NZFH!Z*u@7Ycq)+L^Cp=DO@
zV}@Txgof?Tiu4DHF>%g)F2TRN|JbUDKi%0Cj1yvtCvJ?18FlTCk*oK0D({Jq8&rDD
zDuzsvRr;!eykNF$BRp}0|EpQ<@Tl9$&l00dFBR*3XLxl)R-0G$F06wj#l_?B<O3|e
zY&PO{ad0%ZZPL`c?2}LNPejsDxqYS}f@jg;Li=D0Yvi)jxQ6BHc+G*_zWp0^H<Mj9
z@+hA%9`6m;qX?s^l&2}@3wQ>H-T@+%)>3|ClJ@XA&3PC_A6a|2l6#V2)~C764^}D8
zMs0nRaGwqyGe#cAfa7LnuH-FQv3p1LyGtzRLAjX3oS1q4?k#D87k9(!RO*Y7J?_-S
zmm9^yKK!n80b?}CQ-v5swF~{MFd8oCj*mpV!-uCX<0kdNE@(!0aprHO+PS%L{lUJz
z2jlqs-n*Iqoy7oWnK*iolVQRu;5c8+!S|RR&U2H7^Ry#ml;5sVk%@^m-fBNj9XS}E
z=l^ET3ho#a07q8ul1r!<3s0SWzR`5L;pCxo^qB$=OrU6t7ia8sTar7s8nN{;Mc#L;
z`!N5%Bfr!H5g!I79|k-@@E?D>>Alvp)l!*@&2=p^W#Q;dMML9OgyfB|wwP@<+DtQJ
zxp%)f4kC<Z>uKwK_Q^l`oS+QvWTp&HO+^+Lb0A{TlrqOdf@9vuypw$^$(T^#adzP{
zax!=O?>ec5ApI{V-zF+`b#>JM+|Fn^DP?W#q`A+*!2>Py(l--MCI5^*ew}t<!y0)q
z|B@P4A))>a17$<QdL%>U#1DGr2(U4C0W(!MBWH?&K}AajsXPvf?N~X>s_?L(pU;O(
z8d}xcvFW^ts3=_gLT|Gg6-O=?QER<M4<uImR$M<96sQSe(9)`Nqsf*QPZ@`YE6#NI
z*|iC_cNb7#!MnO3jZG(5p(1aa7=7b-wW2m~HGbPVNDOQ)%CDq+XCEv4`}9;;(?yVv
zyg#!gNra>oFIn9C_Y#vO6%~YJ5x3wY=)Nhh23{XxDyNM1;wa)t*0sx(6H}}6{#>|H
z+_MA@g<@S|o7YL+&$Qj$-DOQ7q+l_M%J2yAy&A^;D0zY2&c#QmEJzOFB=nWcAKrug
zC<MZHzl(-k$X9gHDtK=Gz{|L5oX);!<x}z(--}aT<nHj55BM~zy2YiKw$(l@h?QRF
zAim)kJh!xWVpO3+XFt4lARiFSyv&XEA#*m`iMPRp>}vlzcZC>@Z0#F#;(UthxGKNE
zD#}V%sJpwo$2%faKgPGx)C9>hS$fwFtZZ$c{h#5UXl|hjuaPusv|n>|#m@U@H-#Iq
z>HL^j5wqAq<2xcLTX__Bz?ux#nB>AUER9eCTTDkv&$#fZGey?^{#6!4$$UM!;bz7A
z;dP`_jou$C-tDssnTR%%(kHq73<oK3{EVV1t_N82WnqCHf2ADKPkve=ZO0u+B~t8$
z8uyKjD2&&p`aF!ep9?KC9k$lTp`PtjrpsWL)Ij)QcCD^MgSwZ`y4JBuGzA64@zhac
zLh(E1K(qk=C)CtFXaUXfQRE2`MY{3<-%0LbH(zo}ZI><U3}U@uHuc^KGmJC1x|qIt
ztfTw>N?1o%*O-gsPhVfm<{xH>g(Cj`4Xm+J)7##{hJAJKgFgkzyz6TILvkAQW82Vg
z^V{8^u|cdL<}C0H)BuE$^Tijzt$KW-u$yjm6p~rEteVB*a&qYT`T5Tx<6>xz@f(io
zl!&6*Z$wDaUF7vz%{bQ(jAt?!n-oPJn{$zTpAswIm?gouwUQ`ZMD}gx=9VQFiBZ+K
zm`V71#H}sPt)~QQNdY}H4nC#h8-G?@X?9L7e2*`D+j@j3m7X4D_piW@3H4KVeR#<*
z$+3`&ZnZI^Wfb)r>KD;Q*i}B5PZT-59xZ-<u<2sFDWklcpxKOe!I2-FruWYug#RA)
z;+>{x?6e-@T^DYdq|lA=DzTDbv4X*Sz6NS)H`027o=_vQdQlTP-+cH$#-FN~$NJl%
zOcV!YC1cgO=F7_?dkOdC@eK{On{<qi=MF1uh9y%OC=%tFC+w?SyCNwBjd+rtPTlbA
zdi4Y$kjg>-{EJReD9LXNmjUrU`>GZ*o{X9rZKv?WR@;#;*AUy^(K(qTUHHjI%Ad#X
zH}ouv+1VAjVl^0Gi{enD1`w2u+Da-Y{Epkq%glT_*1o*=&7@R%tIQ*6?r?Q=_4AfH
zqY>Wgj=|}dr&2qHzF(2K(Uj^*+?%DIG|q<j;UoIYuV3-l+1a_0f2;DKAnrc2f8D<#
zZfZ*RtFtr5j)8%JW?8G&HLv{f@hg%Zw_jMhMAslLf)T(hLF>z|0)$P=@Yfbwz7{K9
zS&@Q*f<S82kupnc{|=3g88h9I;jE$}%w{vZWw*Lg({`-3N49*r1Bnz^K_*mS#N7V8
z5zDi~jW46NG~8$2!V;ZQ+qVPQbt@6UDbhMc8Y8xR5_8IihS)|tJH6Hwf7T90Dr^$U
z^@S1=sYB`wO7?3jD~XyHw#33uzTKumL9k4DY<1Z3Wfd1I?)a#wsg0a<5Z(9vm@el-
zSN-Qf@Rsli<E^0f0dQCId#tRus3@O&D2p`0PEWm7ME*Jo2nuFVillDDdBLr%AH9oZ
zVk|`sNcSKKE5hVUR@kA|ue42?<A<jY4Gn#_x8f=wq4{po9{c$y1Pp}#joVlVghq)0
zg?s&6%VnhCW^ip<^`=3gMvjq5fYa(g-aETFA9lk=A+uy^R8?n9U0w9p4wR_&z|~dj
z_30)N+cllcPhLudgoMVr7-b#d_GqiC6q4hk214h@R7nV2+>W34B#3_B5z>es@8ZMr
zzG|@{eP{D7_chtu$-h7S4VBY8ib{MP%5H)cBxb#m#8I&+V|Skqt#&{#99wwv`_<mw
zL)h`b%yb=8Z&y}7#8r9!^lUI-xdr}SHcHOTSo$KbLH|)R!-S`VTmr{UM2fJF&d%OU
ze6sXT8(vWblMbtjV`t)Ti@=uIceUT~o~MSH<sT8S>7g5ZN{*IMR+>hgI+?kC*?8$c
zmVtx&8<isg-M&g!rS)$2Cxzr0M}C3|W{3;IX-fG8@HQR!$@|>uCb6o<*?kQ4^)W?p
z2#V<4>hzuDxk{HL4Ny0nYo68yw;nH4Joar8$qpXbaATFs4!PMH9Ya($icv6_|92NZ
zD#4v9^gx6$7R{pU(cA?+?bORqsY-=Fu6gT#)7$NTT(>bkT6-97C<g~S$7_+WgUgy$
z>J1DI8lUVghW5%K2o7uy4i2oWtz)`NhS!Ywk_oX5ONI+bEbRG`XI%xvBwuzs;Nz2R
zS#8_nd-#ym1b6;^l6<Jk&EfHt1Fu5;I*lDl@q&(mk`gHii8m%FN&J1Xit<CS*`Lh_
z>F-Rb2`!I;%erFknyky`pwVZk^2lLeMwu%0OO0Ht23ZF^mHC?OjYUS;B)7p8987P5
zu9*KR?28r~tmsbOIBibExG(YE372VY%a0#79P5v-;X_USO9w1sW>5X0mb90G4;OW&
zX+r>2iIrHCfi`oUK{1|0=pl}RLU$DkW>n;S$FdI6dsK9I`S?B+vKB(gQj~Sztgl#w
za)22*_poVi{{2I-AY@(C+ZA61@9_%tu%g`bsDKISEy2M&%8HDlP^3etM(aE4t%NjY
zFtgaA9-eES0}55u(F~REV5S>06b*6Tob$PA-HiyKP@KKGXw!uUgs(|CEMwBY%{uL4
zN6s}}PT;?^MD`Us&a`M`6v@pa$0(OgS35+fw`<6R7!rD|UQ1?)LX|X@(P}=JuMXK#
zP3I^m_^CD<(en+?U+j;fQLZ(cDm6qLhTX6Z5`FZyFGmjH50CYpE<{PL)9i6d&$8Mh
zJX(fSMPlwp#KR|{an0>x9~Cfe1)4ait11mKiQ?m5vvnbF4yly;w?JdaAdsAcLuw?m
zUj4QZqsDnhv=PUIR$93%P${0HsKF!(8U46s@A3J{h$qw#w7*z566CBsLk<x{M`0F|
zwJ#uoLKHKOy3J_$lxSn5^oD)aU3f`LhqiIQNOM@YwUbexTbUhAP?{0>Afh5jK%4p6
z+_@-edMl{IET++&pIns(ugi*;76(-tO|81Mb?qRtu~B$^=j>=J$e={?-1cB~5aEA#
zc$hfe0=X}A^M2Iw-nIL;0<S@$y%i`rW)F$4T^DSm>lhZ>J|Er9(j>X<v*ubG%&o;n
zv{G-vs-2AtTKwc#@R1Puc6NLEMjI1rY&!H9<z9l@$<vn0xd_@!`QitHjx$ew_8e|a
zQyq|$7Rchfei!5`02Pc@kp|1hr6r4jfdS?if`Y-&u`!+Jb%WOL=PJfGU_)=8c%!0R
z|6Ek`rezkjCep*38pnUs_ANDPA783s(2KPpnekLbCTnZ!%todM4<3Z>73o%CHJe?3
z&X){Z4+3&FQ8ru>(&`F{ryOY;=UPm9Zz)=MxPsAH|LuRliz$Si-PvZSFl226GBE_>
z4<9}R7fI!n+YECc&pU%~iW)#&)QE+!C?l23QW?WS<SM1zLadKhVOx}G>!c4@@qV}E
z3)0KY%aieHFz+Nn#1`F$SOtNpch{Vkj0W}klo#tRx!dpGzx&o6*bKEk_(G#$B3o*%
zj~ADa`_0eq)6FbXe5B{Z#g^+7(MG>x!t4#!7Yv|Iuc>)dY#Q?$60sQ%OKqqL1HrBa
zdC71XWQ^Cvr1hC~=ianniOR~#>h3Dr(XWYT9t{S(4<5)INvp-G%P6}~qh6YC1$j)5
z=eaS*iRp19JWHb)veIIUXCc%NU52a`+g)Wnc+Ymcl702WZF7QDm1=Is!>Ck?V3~(3
zVx-P}D{k|?mXy?OJq}`U_&G9xR4mCX?zvnK&jxX!(%?O!o5PL45Af##zh-6KfN-lK
z2i4xwIn*jc+ATRa53ZT_84b6j!ev>})zwv8NW*|_Vr=Y=(e4rbRcgZf_unAXkJC|X
zxz**Qb<Y2cJH;v;V!}ZcFI>j$h@~pMD`RUMk^|+)jsYUgy<J^XvweaRnih$NDw&fK
zYNWnY=MI8;eGlF*+#@O(W_^)nepY_Xy5j@=U)5<YZ%eQ3o)SlO4_Qhm4`MrBzkPda
z#Zq5iAAAc3g=TZfyJ<Q~y+A`|IcC_iyu5rSgz4iG=&f3Bzi@Z2a<xN@RNCDI_d+I{
zWos*|=7ysw!HwCkMMXu`8<pcwd(F7j5e|c!T3K27cbI+8S1))PbKSG*XNlj%TH-M7
zGCQ6P`NHruMjO+^&B-uAR*h!sihGpQu$viUWoiwh+VR~)c6>%_Tr3AXTIU}+Op)&z
zy{MZUsrS5(aZ79j<rYFQRe+&E*kuWWjR+l<LeR7ap^2B5*J$zAdm2B#)@c_G=mBt0
zL}mE`bR|qizZl;@Fyl2r86~H$Tv~Zsx5}QP(qa0eGKRCwaPb@1T#e8@eb<-TUx-zD
zii7e@Q&Uc+;e7h@hy>$Q=QHs$9Ca0yZ}e87UrnwJ?t~z4{(Qj-j<FuEv<qFZoc|F~
zy%?|iXL2$EOqr+MP+rcv>M0-~@Wp;oU?rn)cuhrDH_W^<J|j2xc1itiXk6FC%dG}}
z=LJ;oHM);IP)}a1XsD~tCQqL;B4$pO(-QFR1hu>Zhh`xZ13#YY7Tk)X9Lvec;UbIZ
z%N_7JJCs3t3MD_rts7)_@2VIWU?Hl{HtSS$bnZP~_dDq{lpPPaSbEqLZ2%@W#IEak
zb>p_<R>P5ODU=p*adAe&#rl0OR~`A4b#y|RK6=ou`X)bg__0wnO?h}>XJ;p&pb)X&
zFlzh5=V&tMCOXl~{!0Hy!^?*g_78P*bhevsV9%twPlb3GBDRYheB`{a+oogBx3IWQ
z>hv1CD&k0xh4sTJ4?4um%jvU^`)6^(fr#dVVMD5&+N2*=yg$|tp>Yn)R$p(#jb$wL
z(3ThOvM3ukC9rw<1q#Ky3f1oAy|(x1gHS_EH~RGL%>B8XDK4ZCbYm{2={BS{kON=e
zCD=M>8U1P=_RO&uOl)XK)wjslB;2Ni|1-ed9#9pL&m#Wu^TY#KZ+N<5b{|=JoEN{2
zvaz#k`}LkRXDe0F@~7Xz95a56<CWfmj9m6riatjI?}Apza8MU6o_A4SpQ_N&go{>_
zuTQJZ`}p{|tSI3-p2||EQQGu=)JeZB&X3zgupR}q&wm?kJbbW1<4`tAfR-Q>nVaTI
z7A3SR{qqGPy|54ib`~=`yM$%#*SmtpG=v;Pf!}cYOv;?*f4pmzYc$NBes$j1a?u#L
z#d`el)v>P<^p;#C7^(sID;Lr2DL1b$`_nvyC?Oljv*u;&k5q5CbEjdGPE!mG3Wob#
ziQUDgmc8d$74q8x{p?90U=ajCZ~J?DX&&?56b(LJfk12m4vN5WiK&7os^9r>mj(?7
z(Z<vaJEs2fbWLR*osqBeMr;u=)M&=Kg82mnI}<KFGSgT4xgzSe2_ge&o=ZtzhR5pM
zOX9@atXXjI6K1pmn1=5s|8}g=Q#nFEn%bPK(~Lfr2+eJ5G_XDyudvY^NTj>?2o26o
z7S)CH>17+SVYnA1t*VkFlj!6H9luKk)xnjU{Dv}f`_G^%$+g^vWDzv@6&)S1?-Y{x
zBpQ~$yI2~8o#w<_FMPKHsl+!pVhxusj;5o$ej9N%?8oe%mbO!d)oz_0tP!Fm)GL1a
z`c-vosIL!?Z^vWty=L|>w(zmhfQ^JKW#Dv>$054?BUxUe(xH~+Jqh-h$itU+5}NT;
zmO4g0q(4D0|1_n*$$2|+4>p595u=@FhOLZ@%mjWb#bYnmU)a9{H><_GeE$B)cpdqE
z*!*=eI-{1l`g_-|r2Ccx*cV%VS7*q`gqRt%OlzBu5-H}_V7o(vE;&e$k}YxexI?Ox
zLc~|^V1%U%qDt8rPmq}{9<Pu<B*oR4zUv`I0mYrgFCKWWtgxtr*&2xO1LPTp@(>v=
z$*)~H*{h`6=D&rEPr6UDH`rTQDbtJY7Jt!VH(Q}jyQXbGt{{G2SJEx$1)v%gRZ6qJ
zkA&3(2{J#o=3wK!=vR2i@F-@#-?~CIH5Q7s^5UOC-Aa~Pj$h@?pNE1gu<6(G-t5Iu
z`Si1z-ij8dIce|Wn5w(gnj-iUt=@$+?NG5kYlFSLJyudWd*86DwWODqSN1SEF^BwL
ztrN#955~Z_D%Xy>S#j*g`|tL>dOkizFow0Y4P^li5l$jXSF#p*<UTMunuJ@5ud-^U
zhsP^S*?eVdbX`2}y%i4*m^fr#V665@$No~XgKUXI&0;(l*!@a^wVSA;uIGD2XrW<~
zffr{R8MSArN8#L>Ycx}sHT$}ZcoI`qOuAe{i<Q?hudvYjmu2~?7STP2_YAeT6FV0}
z$8=oJHmc-GjyA><;zmCDU7iGoBza2<`+uez{$6u+d6qM*^!VV}fKOmhzmzp0uI1*&
z>S{peqH6e)*kQ~(8DSny{SIqd+TY3wuv8TpWnW*)e>FLm)vb3u2Iu{0m%Qs@RuKIA
zP=cbLX=uoX1dne-)-0(>NlA6xHuw*U`Ch4Yz8xeIx2lUG8Y~beOzu=^$vq|A=@7gY
zAF{AFg>shMbaHp)0QOE!F&FfPFMce#j(sr>be+~Hcwk}kZh9+C1Kn6?L1xjl&OF4*
zn#aOb3)+T{zB~MyLAm9S364*C{37GyiCka2Fowhj<?-jwpHa0>)ARFXd)Wyfq|P?K
zy73ntZqT}|(dW$Z>f%VQlMYHT>>z9^Ni{WmWGl^M>iPv@0R)&QCBvp0V-+;q*J9D6
zGRt+?eRpHir0GTh<ADMYna!S$Vw~)fH=FU`7ro7cE$0=rfV~HahjaE=HK)Fw972ey
zsxDwSWuxIx)Je0t9qsSW{O!%^`${uw5w7?N`DKxpMgbut8CYyHtm=!~##o#|axkO0
zI36#rP$YC59&LLeV;O%i`bI`RYfVvmM2kDgyv~w}l2izQj0qvkVdm9sO8=haK(PC1
zhp-0s-cXTlj)Xj2YUhfpqUR+U(%87WC*H=y!33sgAFr5F+9_Yk_gZV{=zMU(zx9i_
zl7P4)!gbpJ>lCZ{PH+f+`uQ0XXEjsiKu7TAmve8-kLQ|)A!=Ul6B4pYOL6&<F`)wL
z>$xfF|J$NPipuBp!P>AKc8e8yo`#0T97L;E{VT5xO0Y*YONNn1&5G+>LeshVK((x_
zEWmFw(B;nYB>#q@NF^ZyCkoBLNM$oxit<&@ato}Sa2O|w7{Am5kNU~z?_1P!ccy3O
z!YiKG)t`kN-Q8#e7!R_pQQ7Fz)jU}_xs2hp(idwQ^{1-^#=~bZN_IG`GI;Y5@%wyy
zd{A_=nhdQSpbdNB_6~e*^k2<sG_F6G@;u)k-pVJvWuBMEk^bTN0=mnm+PjSE3+Mrq
zkDTdey`ZTz`xScg+1}pn_TFRLo3y_ypq^8`{!CrH4F$NMfP5KcAdlP{kFSMggnXUo
zP8G}<o<8Yze-{2anAta<K~#)x-m2+OR6?>ghC<wLsD83T@LqLkF$M-RQ^MgBPqOpy
zwm;(9TTlihEOCrgJDL9I!W0)L2)ie?fW*$0UZy!&SY?XDMhWONde?+T(<`RX)B<=o
zeX;4T9{Cn|8+uVPOn&;0(iRt|2g;u5OK~-N91`v%xGI&>FWpCGw)v5$INMuBXnoal
z9;2<UP<^v;NRvG>4}o@?pzi|;;NEkFlT<l-G0-xL8|OSgBTGwcmh-cfTV_E1=DVye
z-ax-dz_Q<#((odD5u6F%AUhJ5i1j;kz$$gUi>KLzPW>1g+Y))B%&zG8_;hWF6C~EK
zQcVC5wThnV6yCt3NWe4&e_(X)&NIVMxDc~Fiv!w+hjlo0hL4k0J8_U$Hhm7e=p30b
zTrRI319|3m)iFF?2e)gNCnAd3yLiY&s>OVbPoH|FLN4HhyDV^9?ZrP%kVQ^gPT9#=
zSoan3(xy4t44?fR38XIctpvxDL;KaRes%U6oh<G-4lcTsy7uaIC8_(5w%tq=sY8@m
z5}IrldUxI9Xr9o1lX$-XQ5L$(4FuQ6<K?5BX>zFntTaF*y5?d|xQ}FH{ylveXBlDe
z)A#JmKXzG{X7k(j91mhns!w-4t5<hDwY)~j%MHn!Ya&Gfyf-!D^#?X!e?Mye=`i(M
z$sgQ8Jdqi*B3F-iUcvWWsrvqYyd}@hDq-C%LZ@MY|8C-1?1IB2ToV_nrbd*c9vAg~
zIDUS~hIn>~lkNN0HWy&Cnk^~BkO(8Xeha_zF5ZW!ON?cKARJT_yv83BqtBD}QviQb
z?n|Ri@Cw?QqZ*6x(fNg>N(=Q=BJ<ZcTYkaSe%Q!5Wp3cr=f3PcUeZo!;PP+$#$C}u
zPfL6KT>!n+<pk}z&)KuDN^+#DVNXfzYc_c%ob4VpX0rx0H4rzdH5|8mb2%Pt@_Ajl
z)2izZmhYp<llcQky^f+@^EPV2&!6VQ`VBblMFwx{@{7fLnwh<G&$hdJ6@{v*FvVKV
zC-HGr+@!7Xc;RvOnvR(E;^JtC61sm(7R1jM4{Dlhu0JIgn0j@(tTeYS(S1WgTzr%z
zPe%C)ZXmKMy~H9T@#d!Iac6#xR@Ldf3Ff%jnbI(iiW3Y)-@Yt2D{z+n_;UKsbq**c
z9>Ow1E7B70S${cAYsSwPRI#<~MAbPhm@&CswYRI0HNdsw@?zpqe#85?0?u$yW73gS
z-hJiEdZ_1i{Yxy7u>(rtCWs3u@5||b`h6l!ecaL^K#`;JVv&$*sz_|*+~j=c&!h9L
z1nptCRt+c1zs}lV{>yP;S>>v%ZN1zR@Xtdkfv7+#y=Q`8<IHjyS@3Q}nkoK)kKt-6
zWD|Rfiz6NhM08nC_Ue`$7tC`1(Udv*sxj2lE0k_;%wIKCd!q6AT-*YdwfSO5oBY7(
zIX>W8HJ?&ZUK~ZuR8)y5NV3JzY8vnnCpS6K6>IZgm++;1JDcLD5Q8Y7I$0i@?pb!{
z%hsPHv(^gt6s`Z$0z75ec3*4qceom?INqQVX>*uBg4W2rBrk|2Fy)4(zka8aziQg`
z5ue}uExmQJA5ne>l-)0|^8T@#l1Uo>0)+^<g{UiIjqNO3Vw2Mi`@Z;D!k*{#F9Y-q
z;cd*yv!dN&``JD&)x*R}^nr1HQowt;q@-od&$>M-&C?LbG}vfk<uU26GE}_1iaE7Q
z{}8<IVhuPDDH2~f*Y?;QZg*Td_y3Q)t!H5prOTS<_l}8O%d<Pc3{yEuyVvVnc%yq*
zF(1j8sSG7LLki`I^kFZ&t=jL`xFuk#^%7HWlTXnDDBieqxB&VR(d^6)dPn%1xpGHe
zT;J_KzY`zUp&nkjV5Clxr%J)kKEuzbKCb@w`PYNTG=qP_x8G#I$A)3*k=M1WQ|sih
zSqNR`MJx=W7lEeR<sTK?*a%vxu2#{juL_2n7cWV+e10-;!h?M>m6cIOT&uqj4*HSX
zf9NnBz+mpOQwDd^e@yp}0F68N6o*1cyfnYSQYoG-reaL_aipG%&a}Co)BCd<KUnY)
zox{D`6{#BvZsY`#o*iuGB~k^wlMin#+fe-@S5*{c_|eEHN!z2bABiaEtFt9V<x<w&
zph{i+Cg<Rt|KBy3X6dcWY_H!Ip80e9>@-vP?bTIpNwdqs^$CYEL@K;;LOjI)3*zPZ
zk#@bf`|6v=bBo7m({(pEFJ=jZg0#IA!6^68h$Y=!v9lbEcnM3pJl>9%e2;Is!1F!W
zqMA)id$SB{&5KjUBS1y8kKT#HI~|Xoy^USe%6WNk!`u69SRWw2IXX`#jp<D1J<k5t
zJZs}Io!n{b+_`X2=eY)sDx38>CcU&2A#A_AeQbtYB$de5J3aM(&98$jLIR*Opn(DG
z%o*PC5CXUsS}&Fc#ah4`fyk?9k*<T&AC=viaoCbkXS=W17IQLE>iOW~%ild@)U>}y
zffFE$klcBIPxU441Wz_V;N@E`9)ak5EsMC_7;TS<`a7Fd-RX;3LGX4N%(kW)`dZkB
zg>luKQU7B%YbNdgx(ZaZ$OgBWpoP@b){+6Y2AJ34u#&`@Mz)I=AZ&bmj2i-@v>Eh&
zV|zyQV=?AbNrIx>Gf(uf0&}|-c06WwJigltdhLJSKOM+ZTe%a`CqET)fAV%IlukX%
zVaM*F(wI(6qAhgu{8K+TlFd9!_N-HcMf@2RUrWm@{ZkAO^%2teBA+?pM`F=Kcqjlk
zKj-DWYBP~h+mDk8(0zg;nmBY4&#rq5!S8d*i)c3DY6f^k-*R`26ysLg^thwn?Zva#
zHpX{`L+OV0e&TcQSbiJs1AG1hR{QvXHEo)vs=Udo(FLd;V0XRhBt_<3a2Ye6Yl+@l
z56Cdr-Cnk?NrXwQhlaZ;27XKb`<1{?1WBr-8Ufq5e)V9K_LAPpmArkNU&y!ia#pa)
z#0*34PM~ULLj#4re)Lu9skbnIRd7XPz}~Iw>@e%n&ei<#(G^(s03|>6ZhV)fl)I)T
z@7rpIih$}HL5+jjymoLs(fczPT0-+f%dE0cIy(_Ma3JMA?U59HEst?2qi%yW90gMQ
zYR-K{geb8=YXmJorfx}Xt-!kHTnH(mP=oc}y?fa{NX8bMG$JAbevM$fn!I)W8qhT|
z!_X}Dd45PvHs(pno{nlWQE4r6+t8`jEB?HU(LU>#UR0zY5Jinj6B47C8(Y~qU1E#t
zj`!?c+U+Y+A_=AT>7pj0Fyii6lh1KP0o2VFWh{-*3ubQs`B}Z!E!f+Os}t)6JxGvG
z(c7URjg|gIC?nM)-hBG8bp))eC_t5XXreekMsoUWLD9T-@@HTmn}2G>_4|gK99m7w
zEL7jIm3Jc~S7tv30~!Pk3+w7jK)~o21!r6D-bVnsCD8{cw^(G@k=O1~5%{TB10?{q
zSTE)E^(W)36ZgFu<^+=Y>;lF&;v3!TCILr(-{`mf?e^^6$=B6DwFwzz2ty!vP%>wG
zv~ieBWZGhA-TP<YlN&Ry7;FKs6H6l&rBE;+^l|a=*Aca~wc9OJms|@YQk0(Jr>;jo
z>7ud)UEfSi_2e%8-Q3jRj!6P)`|ZZ1?1JdMElE85-I?#>Gn>?<jq*swo1>Dlq6%P1
zZTAT$sfkkYxdSh;;`g6DOd_*0GihzZbcKe|H+^H6m~<;`qo=OS+$=c_8_AoOi(0;g
z41aw5k{b1U`E<W)s36+vI;EmH`6Ij8b6RA)hOqB?5dN70>$fA|Xf$b!Aps$iYMJ6x
zL*KGmGGEjw&n;{f9WyW{nP_UexZEell9H8js-3iF!38dy#?OIAe?sQZiCkb_I9=|=
zOh)ofcQ3lfme|lU6^nO%nOm!?bHNmM<SzXc+H=ol;%`N3DV4jfAW?;9JNH$#ncF;c
zv|R=C2a1yc#>{RNQr|tz(;7yXBJbvOC`EJc&I5UdW8I{xUG(vLyE(;x?i4C%SpAyF
zv^&MpZ;tN<N(+oCv=9CsoCc4_Ji=DCv0(+USEERWkjHbX(r%pg(vl-mATKX3+Sj5&
zr_7DuP8%cR@-7E?>Bpb8d|>gX@B#n0lcCQ+T&Phnr)T1xbbO@A77$+m+zH4B&M6*}
zV1#1dEVb5~3-PSQBIn0(ZUFv-<*-zXt<MLA$=$w6kRI#gQSMWrH2z;~A8{R$n2YJH
ztjtpGODKI?y$ilEX0v_1miC$Aj!LlO&E8D2-#5zb#`y~MYVfdvZh+s1+5xJqB(#Hq
zB8r-9^}@|f@uW7cp*7m%+kyBl$Hb2xl5H*SN1KyY_VyYnx!|tQX#xl?`zcWOZEJwF
z6BS4SiZoaWC5HzGkpc*v=$H%-laHZ5z<{r_2=7dXjLgw02_v^P%5%6-=#iAc4Eaim
z8VzcIiJ3k%&d=J#hrF-&$4Wq?wF7#TouC%m-@%$4^|V5D8=TwY4~5%s-2!vuJ!QBr
zd+Sv<xOm>4_ZJ(KMDgFS1*(FGU5DPsZ)Z*-E+Ii~dVIreCAI>f#=Pa=3W~&YvwK*t
zZu#fu-}Bx}o<>2GS5#yG;j^RcERY&%UkiJD|L|~bq|_7%kokA?@&YQCUfy$lvZtc0
zO}fEOlSzPcg^j96v+gDcD8PH%3el*`IcndXzxkif2wGieBP0XMDAuv$TBk)^@9PNv
z1@MS;1#q_a2Ab;XEO_Z=kOrYi1rR&I(D#wqh!d>X_qc^h_6&&32>`EE*=A#q4*2>l
zC%%exaD@zIl+=zxpLGQ^$_0cP-{)4bSnvI8v6K&(tK8vWmt7*9A6&W*v=f2Ja(8Oz
zX$aNDUn!ZUABP*`Im11VkMu@b|A%w*O-KN;>oNO=IEE4(mmv)(RbVv%H_z1NAf5DI
zA<&e=!Fl3N739`F|Fv)QnA5Q7n$qQIA`;hFKJX&!Uk9O9Rz`+s?@e>Q<Wi7aWgApg
zRH)YilgHh2HDVeiBT?*7zw>r=4^*ArttahYwe@6_dz!8C=YNteojEi^6}fCBpqkpV
zj84i;R|SxO(B<*GOw(r4{j@6oTTw=6%cpB42?k68#F)6fuC4D;4i4|5g|;U&c|3wb
zb*{aqz62O$V<6clyw-|5j%S0^__o5l&9sH~3V+)81xUSvqD2*M>P}@D7THdBH0`e`
zlxw;r9e1l&G6?F;lsCQl4TZNu7q^BC!@~4iJdRML0(-kOR8?sk>}_nqYMQ(m&aCkH
z@o*V*yXcv55CXM9eYkQ%wYy(yjt>oeu0=RF^OE#NJe*=~5cb$M>bi)c65(j*{`7`8
zg!!yZJ^*x#PM~^tw&XD3KYh8w+x=qKhc>^sI9?;q;ra8B8jd7y{tI}`#4n~>g0PiD
zp3r8Bge9RwL@A{Qwan9<h9xJYn{;^BUowF_f<8tm{;;CNN1=C-VfF7{|2C6o$=3ku
zyrEF!H1z+Pm&dZ|OeH@0!=#jXh$3r0G!;bw<<IY4V_dt_Q%pVb_sl<$41g#OLS8YT
z+IdkH3NO%0zz3+`LaoxL+y(phdxY>0^+4L<R6K59hY74PpoC)D+S*?B!I^l(b?^N;
zmOtOAQo3gnT<&36cvHB{6ZEUM0%;0{HdVny(pkNZnXRasC%evis}w)Z42Z<=JCGO@
z?5Yo#WQlrQgW$UGfn;1@vpXF@jp{KU@i4Ra+Tnnjl1xe4Nz_M=IkXk>Y++EVXi2LH
zhkR7bZK-{+mTl+NApE@JEpXwISt0!Gar|MW9(IUOdYYj_J<F<b%YlnqVK%NK+dn<P
zzhv)j^?l#lyjjsg9n+O2V(8_wR#c^UBJ^<5HFjS|kB&KdquC6-`&-~`&~KDF%}eGf
zq9)p&j8;3*r6@Ah8#r`HC=ZtyMrj)QsB?QE<&=}P4>n(BwpQzL<h?Kxn0x@$if|e>
zGN<`g`kc8z&69XwvZDpOT$jat5HS7Zb9&?I`Lq%QP1Te3#}}80<7Fx!n#%nl{e+xd
zwE6F`xPVE=J)45!)}PFd1MV`Qn4o|E{(T?Q*h<%}2Hy*>6`|etlk<}tmb_%M&NY8V
zM_DNPM@P{TItlkiW^4c}lU?5SYG6s)`M{{F*_tDdXr6VHMia}N@>*jDNfOBkQ!#`4
z>Hhw*`kq$<?r{EClb_$ua`Xbtl3R%Ksw!YyBZVFTy%KsPvA+9&1OvD3COc7BIeYa@
zN!!6)51~*S6sEA<z1!_T96!~mrA_UDA`)I5NNj4a2OeQJ2I=8xx{v%NiA^`UyM_1X
zeDe{Qn^v|KL{6{IZLcmbRH90CiXN$H;)irD26UJOfHV!ben34t%v9-F07R{*r~oMd
z<c_z%U{*qK2GPOFF_8Ot9E!!CK1s?Rwn@mg#j|jK!>xMw@FCP#5(=s|*4EiJq02WI
zbt7!~?m|7Z|Lr=$+QtUnWQ&{K(uWZloMw7vX=wAAIl9`TV^jZ;@UA8{!4n@I*wAin
zLGU_w(mb$g9iYo^La3WN4iL6+*=V)~dyxiugF)2emxt14ke%}0+^=r40sanv>AoFM
z32?`#4oplSNsf2$jLq{q&0q_iMqr!((#&GaQ_NMXU7~QGxQ5`aJ2PQusG+s^2R@O+
zQs0Eud0oWY04d;6h0Oka#Z`8?lWKhjXU!UqVQUlPD90`A_3)Z{xyN(f4~a)Ck+uX;
zQI?Mztd<c^nFwLmI1O`k<fa58H6O6k&FM~fWY+0}CynnE*jHoZ>{%kAlz&gk11psk
zrX8GUH3j_=Ahw}F<s**?irZL{Aj>|DAt)_CR@6&}$ZFq=K#z8-=UE+Epj6{cCLw6h
zR?3RPie7?J%Chd^t7@G95JXwl$_0r~p2{N^&lAu-k4E~~0xE2K%F>%F9ZYF)m0O@?
zf$h22nf*_ZNHA$NUgeNr5?1keWURu*xI!nFTxom9Btn_1)Iy3fxz|ek#ft|hqRREt
zCd8wG*uwma)vY?|j<7su0kqJXP$Bdz5zU%R^3LMKpsNdKH>^~8TG>jd83u-i?$s*T
z@+D`k{aW5b78I{Qkrm4quAAG>q9fbN4?P3m{?G!bsHxF0P=S`ix+bLJaiWLPH+^x?
zY8dNAey3=1m=<2~aI*5-e%b=>%n9@4!n0xOoqfJX2^9-tX_yiY3dk+qxHg5nFsPBn
z51!u~vh{sLQEFCiSMe~b%I~@ZxtW~uCuUBTA0i(#^C@oO_LhUh6g7aWDEqDO(O*ui
zIpV0|&{`$EP74B})(5#JimYruTQnWCLtEM((S}3EPTbmMfBhPxDB{cEP!9j4)58QD
z8qjRva@zzjGWvh_W)xksuM6F~4oT{lRmE6JaZ`slcUdx8C5o}ritPk_T*e!H<A3;q
z8y+w2lW!PG0h<Os3|N$PKQWMqKu~Kj+I0(Wxj*^^@ujTDJGOt}5_r2-Y!F;ihVHZ*
zONmq{(Pq+z(xH7AebWnfy93ScXLuHXb+z?I6`WLjA&_d>IOqqoFpUr*<<vHF)@b*V
zG!rAWc)E$-@Bl(OyWS@HzY9UyT3mh(T7MOYYy4Gu?xgi;prl7$FXzcRJ+on8jOTq`
zwAxDYseVvh1J<e1MgJK_JHliwa_Hj2V*sO0a9uq9OCa?I&RNV%lzAt4gH4BD5DXs&
zIN+?qR@<NLYNTusSLIIY0|DDv47TvbgWAp+!M0*9co;oGO}uA3CH#X<W+}-{UxE*w
zAT7iOCGX`#(jXo$XyhLnsQvN+bzCMnktSZbQFoVYfQEr?B)(k&7hm^HHGt5a)l=4t
zy9$kWs|?&p>%Jows;4LO=jR9t42Z<8YVk-ehB_Y$Z~W8D)5>O4$D}`@_Gh@yjHXlR
z!O?9%qKwpp|99YffDoHD@BNtcuQ%Hg6H(J09Dy>1D>A>ClMS#STokKw70oy8K<z9^
z4C)bhJAf4k2UXd+zgx}xYP+As@D~YGH^vtHzz2iWR>!8d-8WkaFG%QWf5TCU9Ju-S
z<=2=bZkzqVgr1g@ZewH!rp+V>6GS5;O>G9`S&dXq5(#qiPj|#459txR<MHxQ`XBz9
z;E3!7kbTA6#W7L_Y1D2w>mJ9imIFd`HPW!vctc_A4dUB4sE#%8L~x=X9!#OEvC1M3
z7T0=nbiZ&kBLPLAJdQga3PRJ6n^WD%>~&7qQfAppab&OvX2t}p<`+@dQx)T<L1ynC
zmF;p131qmDz<Y_ig=WrsL(KHiW0!pxEFhsI)%?$JfdQ}GIR4Ch$k}s(F`K+lDRq}n
z^xp9vdS*2}13vVGgq|OBU$wQqT48bMYK3dJc`|d{1EiJ`Ms2por~LwmCwwc!0Qbdk
znI9~@YX=Jmy|cHon9R{`<KQQ-n9ehrqJ2_5@*v-h<bM2S{z<jl$#p$<1+?NCXG*U#
zNvAw_6c|eRyK+}zIY-pn%?Sr|T(O2(_=)N%QJ7vuV;O*fzdbo{5DBkQdMfko7U)72
zHc?A!%I<LU_Laaz-%8$irf(QIZeNS>efQ+=D&>!pNYP`Z7xP78X~wofZazbWbLYI`
zvH&_WXV9Y}e#wP$1E_p@%ekb@?6C0q5K7Ls&_#5|Glek6y%*+IO<ciBJ%@9X*c{sp
zOaMa50%Ax`*&Z<*H<xO<tcDwvztnZF`41OWYu?w@x6TtU#_<S<m$Eisc&2U(e}CDC
zM*(nnnpyhKpQ*769IDxvV$(<4PHZEjUyV0;kZv~Gp-HwgIrdFQs9C-o#DYD*yaPLv
znToYUKQ2`3*~46ZDlxhgCT8u%@=OB5t5tOpGSc=lCPBwj^0gxPwF`X;%C#o|*>yzH
z(RFbw35j+nSEi#*Yt@k>J)5qbb8cW%_#d8qhdXB_El8?;=gneGRpM&loHqtcU&Ozt
zV*e&$o8NjYj^Ny~F$Ks_oYY2^U6jmfdy$jlM~7O?gXeR9w)rgxxp6;)0#3MHbTFK5
z>x*k}GSA}r0=wWJru|IK8tsE%9b)jkTnt6n>a8Ft6}?tZOT2?Op*KfPH<G!yg<nlK
z_`F2}XE%StQUMaticUFYy~L>5-ihZANJ%K$3p0gW3n-+Cdi_ph|2BEwoboyn8tZl(
zAcixdSUAz9fm;JIM$UpQ|1LSDrJVBh#*+k1)4_;Ek45Y>Bodlgcz==JO2g^eX8nVz
z+E$pos>TpYx$JMy(Q{c8I=?LH2iH<TPO@aaR;Upygm+S9kYK|uYHEuX+VaUkFAUzz
z$Wbn`i38-+T+JTsx<5Rz)8OJ>3}M(RD3-axprxoV?9YIp`Vc!+9fYE^na=^x=M~_K
z<eV<&*Dn2RZ{&f|CeiOD=R9UO$kwu$({`-3_UK=%{!sb+@eXkp`}fI$1O`^3LC~Cj
zWnd1-zx&HcYSE<rg5#fj7_;C0@DIDLf8Wivj$nxwfR!_IK-T*L(Wh;Cl4<65OPaBf
zmHa;nAjV`&>Adlq%7kZUpIK{W?JF80$=k_5%uQd~P<+7ld)vc-1wamjm_8sUAcbJG
zB$UWXvgO+}jYNHop{;27$&CD|V(LcV)w8I7A)Y~9_0(5GPd(r(`Cq)VeLWEl&a@&o
z5>nIo+B*ab&;NMUi~WnGF&seLOgA$(ddVFsrFg9BQN?q7fXR_8H|G2TgBp@y&A6Ej
zy0m}8H!8C949MHRe%V+rM4GEQ*eZ^I2<PZI%2pw!GPtgNay(|p*7EA8$JARW{U7+w
z5?!95{QWEW3f@^Ec9^9Hp6iunLd(%}&Te;%eB?ln$}f6$wAH&LZ4HJUmqY1F-M`oA
zrM38|SeumJ9w~y%F8FH@l)oSvp5D?FBtZCoGlI{%#$hX7kZ|9V6rY9jb@-c5kJJrQ
z3;XkyV#^w;3tg9B9OYuLz;VIjHVij{1`OsI+e}_TZRg#Ae?3z^dLZfA@^23D#n4@|
zk31W~kEes$az>|%9ugYrsQlX@#^Vg|x-;3BP_JKq<-fn^R+rJgGJwTOLlnmFoclIF
zro+Qbi+XWFG715^d%PoGG?Kg2K27HJoI18;KC%wV2(5F_4T$w+d?L;(g9N(m8FTy5
z(t2)3wZ~@v4gSOl%wdZ5&CkX4v;~&>o9m>K29#V5Zm-5NvIk!fGH7vC;ZUV5We1DD
zen*5Oiu373qj@LeaFP(f+Ws9MNW<D_U!-=Fz~~MEnpU+A*@^J1j?MRqIS(O9m>-j%
zWxQlN)&b4{a3~PnjuElE+B>@lbs5<>eCOjTkUA&aO7=-w<`dL!wh3jRb++3*3m@<z
z)XO56FlUL<z7!4_Z}SNBBc5xh(<}b6rSM7a^r?2kjjU>>PRn<~E{#-j9Ld^6FhE*~
z0*r^ac%t{0lYhYVvM3XyhzU%(z@3}TG^2;tZgQP$A9*!|7V`$R;O-&-b?rL@^cL`M
z269kQiz+B!rYPpRa=?rPjB0@5xNNlW?@&Q;G1f~;Q5++_<eUq@Uv5{8QykR76ati?
z(Dfh-^M$9m{i3=3GRrQ2db@?ST`w5Clh(szM~u&i@BmD=rLr1`3n+T8C&~w(`!>1O
zL-RCfjVUt)qS5R%7^i|ZWyPJ*3s4*clFo>97uutL4DM8dI(@wQphMVBhvMY(joN~x
z0t(47y&4a!cmuw>Q%bc+nY1%VbU;`h0LpQCyZ~xu&^U1rdka&6R)(NmFjW!y*1U?=
zSw{fEWyV3nk)mk%-3cjM2Mm7);b3bUp1A&+j`1xt!73>*0M+h;1%omG39fj<8{27w
z<$;T}05%TSSaE$?a8bW6J~6!LoB=pt0JRY)u4uS{)qyt-w`x17&|!z(8E~|mVAf*+
zB-A$NjranR?Zn?p)msnxv&}m8J3B4rYYT`!%?&(v`rCRFwbMcouYC2b#CGbYI+PE;
zaCD0JY>zZ)(+(FWrT=00GT2@!j#a<&)N-@eIzx)2Ha0d?(c7U*!*yqi_JFeAhQS(o
zRZtFR?18`yo+IniC&ugo*1ner`6-cfTZPyyR?52P{frW{HGWsVEGoFV3(&i`2HmXM
zeq9%tXtXiaaJPAx{jG^}T!d;2ih?}K_V#eGTw7lM+|MA2>f%h4n<w{8Pr`K_m|Jo;
zd|(_woK$@MBi@@e$}mO`S1o|ycv?EWfX)E7Q00l~VnN}v9ZCO-hs3c%LhA(;&hK2N
z29?1Q^3*rq5F7YYqoP%$n16_)7j>~Do&%XdhKY<@<tL1Y@cF<f!BUfx>lI=$HJs1b
zn*aVq5#WG%+&j4DBqukVYuOohv>LsgzfaE48kZiJtn}p|XSe1oX-f&kpQ)(e-goL>
zaaECOP=EHUHT+TEi#ZwQ){BKnpXjL@2;43G2~8o5f3Wm?QPmW5f-3a)b~P&UaAHS^
z4Lq*Zxov!hDV|TRALXNCps)e-YiHxE@m+p@?!;^?1&+lN{XeUBImPZmS<QSSc+zec
z7V$r{TNc~HlcpR3<)F2CirhK}{+ebhtyK+R0pJ@F5n<nqlnDsWyc<7<^u5Kr`_zPw
z1VaU%t8TKG`RP=XpNN0Q0>i{hP$~gf@qJ1VQ3x{w;L^3MHa0e;;6m%8Wm3_fgY|X3
zZAm!F_aeJ{e%<;j+xK6gIY@b0SmTMt!I_+zFPA-#flvI!<krB=Nyp#UQ-p`1qKnG_
zLh9GAU;K+AIT0i5_<Bn8oC|g^{W(y+4(}fJb12evS}e*y(Jz|SD@~WW@c)6|6(4|f
z`3HW_#?ZhH0p<mXbC3i2p%V6HZFLpt;}VY}h4`GDWt{3@)MK*=G+WSun+1D2cE$oS
z3)>!sC1jq}8*m~CAaYQj)vM#a{y!~%le>1Pz72HX?Ch`eve8hkv*<F`gNnkT@rcy-
zbd4^rR{Yn(;`8mZs~1$O9|c~+Kzl`tObA1m#eCh}l9sR%zd|==H9kLk8os|}XH>?F
zv3_14!lHRo1QYGR=)urtZhum**u3AxIQGsTL&Li-(&C_edIBgsiG9-@hP_Z#&!jkL
zab_Mn*bm<<(rQFlaze_N?AEQYR{tp=8{G)@8^B5kX3l3y^TvB}*o{e_&_|D&m?E^Z
zwHfg-#5~_!q#kwhtEY8PG|#Yl+>8kmdZt=YP7cGSPhD-TDhV2H@BSn5$ik0zr8yRD
z#NxVGzZ?22S_@rlwR7`)(4UkI0tw4lKI<SBo%w6?z3nkyVb^{c;cvS9FrxT8l>Xty
zL=8TO#BU+UA337{(soZuJnp5cmPD-Eb8TuHM-L3_$*h+9oN4myi!n<+hD=0VEX^?z
zW$^C=q>s(gt9R5t1rz>x$d&KLeE-g}tW447W{>6Lt&PRcQnaBQi<8EPFOI(4l+`X?
zVOx3T(-~#ei?tI4{aSi_cN4tc4kCLy=?BkcVE)zBmi*I;(FD{74SOv1HH~^3Tru`e
zqii4%$wT(b(bj$ODC{YQ;SugDCR>Tdir&s>7lB#F-v?_R$l7*fj{c=0R}sVrZQeSP
zqx*qmlw7VFULMJwZB5kNU(kbD>(@|VES=*n69Ewf^lYj|;oKwB2m+W$$aUS29$p9V
z7<O8(Rh-5TBB|e`5t8eZbq^OvPF^ykaVhB~$ef3kvx!Pc1?^v=Y&HEi<3Yb|kE6mT
zqYI55Na4Kgeh;qHo2i~}Hj@^fKec}mq7QlHaf5sS&wKA{o$>MUi6OsWT*7AM05tg=
z4S?<8pj-p%zXjeZTo|88Rky}D$K=O^c*t@+ux<kvCWC9R2x3-^LKwMtDkc_avRnP%
zOvKF8%Pq{LawmZb5ddA`2k)k+9#xG;{7!z@V#Fmcs6wCF6*olx*~|d9F~=~vTaK}9
z?Y0t><Y7-W&VF0$SuC4!Nin_ZB816Rm|=#gf{<!M;91DX$Pn@zIxLaF)^>L9btF+l
zn?cIhJ24Rs8x$!{4BbnX|MXezMs`b8;{iK}RFRXwFfUZnc$!bJg%oUFkYfeWJ})RN
zj600Q9``w2$<0XvoRZao{1)SM8qEH(gv1&`Km{J}Mxy*vDvz0Km8iIj>E+>Av8+j&
zC>I-=-!5{M`h8Yd1g9San>H#!<M=j^YT<|9>o$oK5{gu1!EjQhu`wiYjXzWZyz<p{
z3-&xrv>*_`z|ZWoQ(?cHK<BKdZip|z<@LMt22OX5N#q2L(sLpD-F&M}2-?6}NfV`8
zlPe1=YamQS00$7d>ugS801#X}ry&QXpWjMO0>Pxi9M5fshJ*P1vbzrT+^efY*h1U>
z`vMbPRWPAV6egk5hZKk}{%s_El7cz9yl1``gJW{uY-U20avrOyqYHlR=5+0H?V-a{
zW6?3r$LtEXg@5O9l+Mjv508W)`iBLBWIJnlxgS;63kI!K)YWeqeO;4n{G2rbqyrst
z`PqZky`!U~4@yrq-J4h&e1RDF<f_yGg!0bud{hwq6WS9Wz~vOybY329zONncvT$kj
z`ULY9|9EVu8y*zd^wHN%Qu3(PD&~gO_PEyC3@+_>r1x6UUY;rNL45_X-Y3+}D9l*-
zX0#vxiF$m@@POm7d6UEQ_JiR#vqe1WS!kWP(SBWzdVC06JF-L>zwmA1r8{^=bU&^t
zt~Gz91I2`R(A9Ft_n%IG&g5M*GTFd{_%Dvq1@Q7$PoA8{a9%#I8VBGr$8PR=?usle
z&o|c?Mwsye{V@Hb%!&7hn_Na;<<>U`JGZy|j!8hS6zTKi770u`!mPa0+QH(8`*z{j
zth}yD#w}C%fIg1iB#o`cGy9c_&c!<?W=BAb$(2BEGyT}Jb(Gc6@Hm5Hps%<0)qHzY
z&^a4vz*<`7W5<QH8j$V_Srh9br-`_d<PmsV8o0z$slU3uL#|fsDzxV%D+TrfvLh4g
zG)%><mUn+)qf&lSnm5GsfRC~{zUg-{%Z8!P8bPD;o;g%5_oY2OYo0Yv3=R_Vi0iH2
zVP$7mr<ZqzjR{_2Zf*|GkDS>nk)Jy{GcMIi?_c?1)tmWF3tu~k{R4pJ(j|c<xaW(G
z{4vhIZQ(aLD5$9Hl2NUT&X6~aKnbGe1-v>)NQ5Vx+9^WQN_49@tY>|*^KcgQRd#&>
zN?4{Duj;PJyK#mXMt{;p6>h43sU*~tXa(c}@L3WGX&%BmLe0x+Lcv=vw+XPmEwq1-
zXM~1g<uSUj#$_GBmcj&+&ZG&4Dm&T-{gfyGt7aNY*fd#Rzpn5dc-5bFFxzSP>r&hb
zM4$m|1)U%AD82sDtW?zBm6{^7;3aDr>I1e6wC3p<88q|6mM{KIY26c7%*m@KhWRF_
zrk>x)>=61Ef<Pb#w&yPAZukJLjifoCVD|D&>&f+CR?01q%j!ke)svQpr=L`iB96+n
z11||YI@Ew?V)&>iUtmP)oeh);&z?P#K7$fyh0LTt)5WE%TtBz}&A_7$=nH_YX6Xj%
zi?B#??j&524yt#Uch5xUPCVDj?GJ%I1eo{90uMb<N60hA(&9S*zm~27D$4I^gQBo>
zcS*Q{q<}2#BHc(WEeHZicXu~P*Rq5ljUXc3AuR&ZNOwv|$aneuzjHX8J$v@v_r}cJ
znLE!jFN_w^=*oF7pe_38Kb=#ydQg~UkYFxNOZvy~qQ?=%SAz;y%JJu-!U<XjS4wpt
z2lWXy1(HgJk|W|*Wwj%BiAu+;fwe?EUI60;DHHqEKB8{Ff`03dNEIC|`vG8Iv_&;n
z398KEk<bh3gcd-TuW_s$)hsh=7GAYT*j54%2oMTU=p5fysz5^hjBTFZQSm<VO9!RF
z1{mgmOZ2GR?O5^>)I?AakTX600%&JdSCMy44}caZ&)5MG0qK~?iiW$A0)P$E1O=S%
z`6z&r0X~uXfxygPCIB!4z>LWEfK~{+`KO69OIMllnts@^ajHw|8fT>P4A)Ed8ZJYt
zw|jPt6yCVIN6V{`Cye+pPonp4JWM1gr?|P^kVrLZy*?fQ#ZeTuO18(hN)n;Y0NVfv
z0&L~Ch<ba}AJ4~Rb3KaxpUUZ_hJOVXsJO;amRa1p^NV=5;~kq{o7LkP-SF`m@?0Dc
z<*Ct#RczNb(EKAKvAfSrqX4kot-8Vv<oBF~A7OPQHIxO8R097ONx`8}{EyTC)=If!
zs~`G4HMN*dVa}k^t9m`9`&}3>CxDne;n2L9Qgyie9|=Q|yEz!36+R8fiEp8@MA;&e
z)L8OI5wtx7jLU=H0TTXVOVyA1h&BwLF3|{cDyWZ@_yE*eV6trlxTeCX<8L9GPT*?c
zU3r8SDQDe2h&WY*sP2jTAuw-MKsb0uafrW3<u;~&_JbpVd>CwsGTX35kqTQ2fo(U@
z2c(%RGO`sE#K0__$QZ3fZ->MI_6KiyMzvX&hCQhGq)$JX!(^qpV?jwp*E^&uYNxii
z1Otf0Qo4uTcRY*?v~qwXs22a#NgzRcmWJq$0PT-E6;xX4rrlajvg4)90jBQ`gq1(}
z`!3o4W5>S#j)}@at~faP_%HMig|Rp9vM<eZ>-YxBa_#qnlZ>s4BdWs=gbY7HE-DVz
z>1$sejnHSV;|I*QZfg7gad~+$Q!D{z8pPrnIkIxs_KbGAM7P=f5dtDi0NbRj#O~VK
ze~S-d-Zu&w+I<n_n(bXqJs;ZcBnvS3Vv>GIlfQo#o-UdE=(znY1;u}N>5DoQJx}d?
z^ITyL4$b>vTefryV$*=BtKkSB;yCLYJz28TEIDs?!x(&F)(I!)t+zf_J!aMGC;&rQ
z_N!gIUKcDZ_zf77U8=svBy%7?j^;mQ<b{VH#?03J<1XX8Y-MHDZu50MG=@enub=>9
zMB=uI^yMAJm1RB0Yd_&_?*hQ90FG&h*Zw!mHnUfMYLGV^6{c1moKdrTq3y5RKvr&S
zauO7E;GQT0z?gi%d)vOlA_V{k0VGKa!W30i31aERB7qrd-*W|#&Csug2q|eA@|L?m
zIFO}oHGF$#r;tc1Pp(Gr{TDr8u(1LOUulpZ#Q*yr_ggL^)m>Z&<olvQwGBl-3SgkX
zhzcpKK27bcl*C1L{TD5PfT?}U*%Soek;2f-A#yjj>Zu((D)q^^xvb=Iyn?{T@xu^Y
zQ&8%w{burGS$db<IYBG-xxR(N&(yyk1|M8~|K45ycjnpk)?GE6XPhS+<fcL5HJL6X
zhE7~R{M3%O4y9EkZk)TQP$I&@uX!l*>T*Ev2V$D~`TeR}hbU%a|IOR#fsG`H#m;1T
z{YH*gfm2AMtV2Yk9Kiko&QQbc>_T&xv?25zn%@TgpgmOuJ4FCoim<cs3Bm)tNmLiA
zXg%<5>I@^Bvqq(EyXL*v7}s=Nqm3;8fZjm9%@tw>#qTn}sBt8-@FIZlTi*?SCmP=d
zL58jxEhV#GE7iit$sw$rz?&86er3dIzV-HYOYf^~_FDSF<v=S43=2Mf#4o|syE6K)
zqM)q2r;*$5YrW_Md72We?;}GxZt`|sh9t+3p3^xRezp0UX!-HXhDvpbu-KdcHtG#7
zPIFP=!<Dx?Siq&e;)tKza=uX^O7rmWcm#!F0)KqJhDM=u!W7U@Qxv6#qJq7+$@jCn
zMQzM%EG2}5r~vZAXA+vuEjjf4yQH2TwSl1_C&SLojP>|O<&-GHp;qXqh7n+cM`UHu
z4mj%^#2IsQa^h`mZTYkuXna)KI_K$MT{X*sIot!^3GRvlfTo<1QWp@vg!J_Ods3_Z
zQUb&nf3gO%j`dRJvsju}*1q*!f5f%G>GF9va0=#7W-Nrx;A6X36gAT+M@Tfy9g8u|
z-ADtuhnB7ss5P)_!N0ku%57@W)H=#*J^AYg<jq$IHAO54qvi*}T?E3PHf>WOUXv-H
zwQ|PxV>dpMUDm;aWW6_*R5)@d^1B{SN3ZneT|O$1&=7Q5UW$!l8pQLy0}GXptI)HL
zgLo!F=$oS=DO)XX<UrzGdzPFY9&TA2{uu+^U*S>bWiPa2T$$B52|ZcstLd!8Uj(6r
z@j133yVWWfEfJo69w(d_GHTBMI~iJpe_e%jeRHCCcx>OpA|m{vI`1Rht4|oV)HxJV
zQp;rI<gT5C#ZoWfwX9fZa}x>|SH%gQeo3S156w^ZPZ0dGE#&gX*C--%=AV+ij7%aa
z85zQ6tgLKo{p*d@;kL=eiiD#z;+qot*gZ)O;*zpdqhn6VFnzT+X@@h7;MnX^nX20u
zi#kH02x&OHJy+HL@#m0DMMAW`yErcO1ImH?)^&dfnbq4wmA`cGp5eXCaa3k*yyEY*
z_6I+t%o?kzc+AYq7@3(@LI*THBqm<Y9WLmD(;FF=UitkOxP+N3)4d-dWlCiTNMoOy
zo=c==XZv(+WTqp({fjwo9Xs94$B<|B?-HNH)DqmRJ{`wFIO^nr>FsG6aR$mb@`s08
z>!_*uCnb><6cm8lRo&sAys3{)%J+frqzq`()YK#-B#doLo{x^Ir71mTdHk43Ow6Zk
zc4uW}g%g>Xm>3uwj4{wlOiavS-08hxpsh`Ar&2`oOB!q}K@7IApP*=qdl`7(pRsl(
z{yOK^3E8xH?$_R&&TtO66hHsq`PeBJFDPpxZDL}AoSpP)t<%!hPFXtz{xPR{5#alc
zl%JqbC{R;MusJz9RIrf^j<!^xZra^pFBKNyhdIemhwS+&$K4g({FhGFR9$-_^mEDc
zXsSIfXHq6dw6(Q0G|&C7e5%r?E!TovT*HoDUI$i{`ecNJuRUz&_k?_}Vg5OJS_s6i
z4JszSMs_&bYyONXlQq&OtIM$qzf50%@+WdCxB*3t7bC*L_GR~o8fdsjS(rX2|0Q1P
z=;#pFFar0>4h{}zo{{l?eW<9YUbZk>0~AQS97}jyTrYqtbGCA;+b!D?->CH!s(mkX
ztrp+B2x0g3F2*7lX5a*JyhbLNSN)CTQ9u?sGt=y;k+XG9py$o$6z1tS04RsU;VFJx
zTwE<{wA0hmU?F@WbsQa!IsL>OtzC5j{d26UMLL=emkf@$9la#@7&vVna?}RdoP;^D
z^E^+>hfA4dZXo^WLBW!P8j-TxTr^|fzvjq!-Sv>M%H}gY<T;du1rhlj(4sj-hHT9<
zIJmg*ArOe*E-qkYPmSIL^qa^5UsisT@M}qPK8~G_H$Bqam`FHMi@rj^THjC5m7yVU
zPVrQ-w|e`pER(w4SY%+L4AAAsQoVq}h-L0hDQB<UnJ+jyQ<bt{GRSjKZHd<PdL`Dj
z{Y)&i%2d97!eZBvrEgG|wbzM2xh?w07wCQoYTAEF92T_N_1bd2%SXB!YHZkD@WgJc
z@*5M=wkn_kn|FOWzw+cBeEh8D3h4~A+DcWW8<wEDLMx^d;YZKj@j3W4Dj%VRn2F~5
z>yk$Jn-z!zQ)V-$-i0=5!EQa2A>bnu8a}w&0t`z(hV}IjZuBwvIor^IpD#q~bkE%q
z9zLpGcDcGkym`;?_s$x}f9-)6d=P4AC3WKvPF$cV_vnMd(S{Zu$~6UtuD2w0K@2^_
zAkgc8{2=1T-lgrXm_ek~SWA3A%Y8q9EJ>hq3<uXa?<|B2veqtUot7nVO!wB`U>&-^
zO?Tx``E#0Q>Ffp^wq1j1M3S-qEpn*~Qv#~w_J!DJpZ(f=LJ3UBe3KtET1lh)9dRMw
zBH8=xQ(Oy&Oi_O@WTjplAOL9NUM4f5jW(1JE+0hVJ%!@Xb(hS@h)voI!<VDg)2P=t
zowG7$&aBV_Wh`@XoJoX1N^LCOu^yZXq^N!(ard{nwP4=t6_!1hoI)4ffrL^Kf4)aP
z_n}yr)%UOOXXcSy#TfxPYwO?ftXP{uTEZrtX!I)7%+92x!{n2{-RzKU-@SSnyNsEg
zvwRIdS$3ZdG7V;}Vp2dIxJ98%Ow=4<oIs1W^V%Xqej^B<E@UIn4)@Nd4liT*5I0dz
z#>i1wCju8-U#Y7}x_x+9!SG%SIfG?@7UI6w?qb}>cQ|mIajOLt60>^7`&Xny1kQA|
z*-Exg!(&W{021VC;}F>M0%C}frz!S+1jV_{zOlC(S?gj(5Okj=h%I4xF5z@xL6Wi|
zIy{qUVebYUMnSwB3WR7+R$qyJ;m3YTj%Za<wp{czj?nTG2iu8Hym$7OvynT$V$A<r
z^}nV!0N=AaS#=3nFH2+=f`=8Q$Uwj{*MzvZugBQ&?%*@9g#UTby_X*Hg#CT{Tspe_
zc=**T1V|eH!z~38KyC3L@h!&k*Ekh$C~9?+4Y^;&FjMl);GHj!v4B<c@jk>>F(__d
zZVV)(U1E2>tHPLx+X%ME8j0jxps4()L;@OqiSZP@DYC9_?62~MSB*McemRg6s@rV|
zPQ$Y6l8QVZl?6}S!5aYWXp1Sy^13riEx<V0UltLKw0e-*&}F+jTES{<moq)TbK7>5
z&JIhmC%;}$^0S=Rk_2s;s7I^7R^_^AnEb)QThR4_W@#;pV;m;i6xly(#lF3<Bz+tl
zWryRF*@9zt&=UQDVyEh2m{CeL+{ujwi2HOE7yN}P(ebHsPvg#h@Yk>pqYh;=XS(7)
z7DPg>Hllkv>eVHCx26K#ko`Jz<uZH4wx3QDJ(l0)als6By^0%%2}->~xx8(1aaiV1
z&Vl<-%(DW!Rq2Xa&yDq;lNC%<8g{C=Xx1izH0qHcFoOT2R2_^tmGwvJZ6d&~`cz@u
z^eLAI*C@nB3mk=GPhbNj4Sjpx=o<M3maY>+K_4SIh)_i_pYB`@oVt7Loc9SE#%xv_
zrAhFi!I_1gfj*WQXRAy)AEI7{he&dTyyBAn5zUySS(jU%r@JYqo&8NSD6mxdVj|Jr
zGHb2gfN8i%=c)eD&?g0F$_8G}8O#I|y<*a5wcCxO(^l8=#`=XxkDe*b6()y=+qTYK
z>&@}DU1~=3n?0NVDC%0MwHV^JmSnOLYXA&rpJ9GihOB9>i%UmNWo2Gji86Rz48*ZB
z+R{!b`cO(*OGJS^L*28Sj4sqRvo+;EdyA5Isldea*<$wGpd*rX(k|jP<a1udr~3kU
zdx)<>n8_}ClD$-F$Jab%2E+kDvI7a}hL4@I(B)a$k{pcE#1}9d7<GOMy5^SD(M`RZ
zu`h3+Gn~I4M_diCPwIY%z|a>OrRdn-NGqG%sC6yagJby^8Or%y?MHRFXOpMvn!}QH
zpw0zw92{rq3rjaCjK)V@#zE^TD*XI3qjT?GXedHgpF!B)&yG!-?|SU;cgVB80p#R7
znko!DB2ag)8AWraseaQg+MBQ-Vw$}$=s}c}vJYm<MICOkizkYCdT?YM;%hW~c<S6C
zXGd}2Uc6M02ro>67sg8#CYg?)p2o`ss{o{r>G-c75ytZpliPe8@aM&L`!76{X(sK4
z;Wqg`Ns+zeAuC7SM8CW)uv<hul{aB8hX)KpQZ-D2V?iBdrkcwb+NNsHk_n4?>4k@S
zI%M~}e_q&k(ss#QLFg>h7Dk$a!+hPafDlfKl80FC7XV$k*G6o{=N3cEUP#Jao)!J`
zDj%%Q6Z463L@O(%{<%Td@`bvb4<qf0%W|V9NKI_I5}$|YGO?!0KT4HP;1NShXs1Vf
zWyOr)e2993w|TgQO)G8~Ak7za*d|K1u0#`1rlAGPwv&h|0=734TQ<=5o~j^OpiKR8
zC!Q0JOIF;d!$Zy!IS9Si->18xYT@+};_mwia!N6)Aw>Yz(gajN3LM$>?~^W8G{%oI
zF?(Ke)ga3iZiUq&jc<==nrhCO9><(?Ma9L)?qb-X-T<`QJb4yA4HMXJr=kmHVCMf_
z#?`>w4X(q;GR!xOUb^lJD8>9~|NPA)O~Qxt^N8lkYPViv+B#spH;{3_U-o(DU-1p(
zIjDN`JoinDDoy6RS47>Eg)`CjO)W;G$KB+pjPd&46p8&&m`qlGWoJZ`%aRp92CT}#
z=+5};b)FJE`%Wfe1kCn96sd6RkR$gL)85TEqW%)cjGj$KGfm`qMMktaq@7Y^MtRd6
zDC^5WX1D|iI4{wv7@re5eT?ov{yX=g6)|SDXP<R;rK-L~u$?hH4XK=@Iw^YaTD?hv
zUJ0wGKk5rCTPG}%`e^YJfL;D%NXbQ}Pb!C0*fKvC<$X|e^1kY*)8MC|8y4NbTi_b}
zs=j^Zy4xBZK1QD=$cgreAX-{OABwH0Z~v_TlB$@Idr)=r*d55kqbiK~hwDxuJv*XD
zN2Mo6`wOCAYZ#r&^i$jl(LHpi4<~y!2+L2p3a}WI7!E?9`*cBh$8Skf`15mXsX$Mo
z6GJXwS}ZCY@UIDBA1xxSJxnQyEihgK6OqMTLIImlb*ihvx4_vsJXd<bp3L|*n&PqS
z#Ztv5U-#{HtW`3>T+mU7j=q}ud}zuU7m67G8_{1wh=apqAjy)Et>Pj$VJb-`15gUJ
zDKkF}vnf7mWmvLtkj7sDw7UbB_qS0R<$g?oE;G?mY3P_`#}_@ZlAT#~!^ME_;M4Y>
z;<9n4b1EPz+8pqE4%(;QJ8$xD?iT+l)~LJD>qJd=1BMfG8fpvNvXK0Zf6a_d8%Z{J
z_k08>#a;!aVG&?ll>9!(myuScx$Dhp^Mz~?5in?*c=MY)lz!J=Xf9(J`~?1Z1G4_6
zw!G5yqMf>>HE)}8d6y1!pxR|bI!Ws*Hr-ZTq5><{@i^nCYK;2AyLwpv@3O?s30-^(
z=!2gs&tRWc)kN5qmRZ6+yn09h6*8K4)!y6$3oCg#M0YWZGhQy<NzC$W$R^ufz29MV
zSD>jGN}$7@5faPtj=9<3P<=)e^@flrp^rn~&AtsuAj+X`W?)DP9J@5wB+WrZBgxjS
z0G$cCXm0#nuv(1~k<_D$UT6>rF)`{xki-e*L`Zj868xuBLbxf62^u2(s8@Z2WZMyf
z$jlHyoe`<pVU7RJEZ4Zk&RuX~Jw&6V$m`xw9eJUyOH#MrUt=u`1tK+Dg)vQ)oL7V^
z9pcHvX-=J?kN4~5l;C2yu@o!|R#t3yc%Lu$4eyr^wC|uoz%dH~rpSKRo6ME&NmqZ<
zJ5)YU><D_r`1|%(M?IGjzm39i$0QfWVs5YMFp%aH`5)oj_QK#v4yF)CMuiYu@K?cw
zEt*u^*(q=Gq<$uRkeL<c-4Hl#4kWX=3Pb40$qdTjkzVw%`pWbgNxWYnx>rr*(qX@2
z?Y2h(8;Hs6IN+WBS8-pbWJ4{9M1PQRixUR{D{!%`DdfndDfH9luBV`GV*bH;*y;6C
zB=uI%A){NF9(hcLj2H-`yL5`aJFLGdZ-W5SXG@ThYceP*$^U)!K}2=HodSXpZbWU{
zFS)Y;3z1j*&fRbooB*AeiiGHB2Aa43N_nix1et=wUI$_r&dX%oqVR<_N*yYS@hPHc
zFqGthb#z7q78|RiykhB$ej*V~u=TCvWnmJkxC{b4d2e4)g)eQc{G`%~gzE`#OE^s-
zd3@`FJmAFw7<caofREKb;i&A5J$sRhd`doq8~Ex`h$g$Vhs#s0Wd0=sbusLL3^mQk
z;OF}<fMF#100QX`qmTL=YPT9eu(`C$BCF^Hz0)bZiOA*1w*cdS%B#a86R>$%$7~av
zio^2q7<dbP32A88%r-d_7Kp&jI-Yd@vsf-?8s)p7lFbb4eD0?S|MfbRpU+)#Tjb+P
zJjF8f@GPyjJl-E{N?N26WzYBI7*~3U{FyXG-GaIgW<`iVIcH(qc^>r5?dQPldw~sU
zh>>VXkz-6yV0>`*?}H;P2q$du6v4F$5uV~J)cv~;kN{TjZFnf_9k!W?I^`e3NbbMh
V)X!-<;57<p^3p0&6_T$5{}1};BR&8C

diff --git a/windows/security/threat-protection/microsoft-defender-atp/images/insider-rings.png b/windows/security/threat-protection/microsoft-defender-atp/images/insider-rings.png
new file mode 100644
index 0000000000000000000000000000000000000000..770b263605b1298f8ca56e09935a5baa3f76e6ef
GIT binary patch
literal 38213
zcmce7hdW%~_x0$#j4t}9Ve}HB1*1l9K@cTM^xk_Ny$8{2i0IK<j2eUpqSqlr7oFg}
zKHul}FT9WO%$>P+=A3)Z-fOSD_MR9`bwvW)C%7OGh(K8hrVRq2k%K@eXxNy*J8}e1
z%YY{w7bQb?5Qu{H@gGH5o8=gI6U#$cO&)6#my(PO+RG+X2?8;KlwmTuKDqmOz5%-D
zZ4c7hV^ZH((!O=ekTBw~pp$5N$;hC{b8An(e$`*rQoY!8(AA=!V&r`5UfHzLJd4q?
zU?kt)K3ZHH#z>4%M^z4CiEv2!rYazqy_LJlAZXLTXD^U_?%QJ;syyyJF3~7q(_L_M
zX-Jj7?MsX<^S?(tvB(nU|Gfe)Cs#0HhyC}k(Ea~;4DWLUfyG@UK>1jGApAajvB6Ws
zgM`8Rw&QVh85oOKA{JV-29cM2zW0?N$VGyv9{#HW8?tl^inper0+I0Jy|?-bs#_4v
z;`TCdpuJJm2M*4jRPP8bnh7obn6bnJl~%k}(p4(dg%@e7FlNRk7bd^pv}Q_cNRE|X
zLvf)cs!BkcIMp2PKkHHlF>1+Ng=~kK-+)ADuyXREzmNCYZT)a=>a%t?Hv23>D6$?b
zj+KbT0-*p#uFndEL6@wVGU~=x<%#2{;qqg|{D@N!RS1tBI#|LdABzaHZyR(+5zTw~
zdY|un(Y#sI>GHMc(1ZT=1BEzMRH*8REE~BD8<=3}eFHE9O(pqcC4=EIh!U&Z0OruC
zS@auS?66~+{B3ig#oiN%w<KVnd`15j95u%-(fQAcfsOPwi+)8jIlyVNdN-NCfXawS
zZMG;j!$jBY7>+S5bL}93K`S<hP6?=wZ>MFUmoG$?EeejVxb*cHp-l>IX(c68Xe96p
z$GDN=I_sj?P9ndN!rQ;7za6e1VNp^^e;$<ElBTE4!a2}~9^Gf#t_zOv7d=Fn^w#7D
zeeulxF}a*{;UxGxf}xt)a%;u{9DYV7_ETqbSSf|s1lgKbnIc!6dh;claf42$hk%4X
zF5eW-==qIHLnYQZH>Ob2d2wYmrBPsTs~T+>n{w2@G1#UJTQT43$PL$T!=p+tw_@}=
zeL@^JqlrX4CEb2%L<jfS#I34GuKf`WF+mq0lX)YCx0U4=KKw$JWXMyk4H8<zKPsgx
z-;6EyX*IYYFk^(PTp!_tcebXt!Vw9<!SdbCjz~BXvggJNZX_&9fhe{sM8%U~sNkk1
zf7m~^XDUsNzyxbh#p@5VK+gj8X(i?(>9CBnbY^i(YFU@c6L39?$)@6_>dgEo$|*lG
ziOJwL4n(0xMs#;rqLYyG69SvYM~vsV)3{;m&#=(0YP%;?G;2#x8(IS6G*8Jchgp9@
zod>2^Hf%B^N@(_UEC(*L??n%p{F>?VvIESnep%Q(AEKj%d6w;9{>AC6w4yXCxfT&2
zL9T+Ano{I?B|ITs^G*nb$s)!yjobo^=iWo0_@w<r&y$OA+OxQ1k<4joF#U`Sqg+E}
zfHh;jBC9Y|mM3b!PEk8-`Z6yD9s!fb7Z9~>d%c=;O2_ualX~*kyRb>x<urmfaCxY}
z6xpz<9;2XI%x59_Ry7E`@at)(J$rF|872F~uIs1ykQ+9%F$({zYMR%&I3%iLI_9$7
zxM_d&hDTLFFRrO!XBN9H;YiWx+<im~)<j8p4IVdL;JOIc=go3<Ge1|(->Tnb^^`fO
zqKY&tIl^J`@qD5b*B)^w3EweukAx6Q42!@->hQzIgfIrTS&BKNaRe&iY!KKqW5ikZ
z?ZKS?XFTC1qg*=?n6ZyVh1SSGR#vU7UL~epnhui%_1wNhKjg1H#BK7@uuxmYrLYE%
zrsbL0cG2m&$kXENS1FNu6y#>VH}Q9Fp-Sqdbn!~jFnKaT1EpO1XT?RzNrUhC^IiBr
zqWCOUd{j!)A<WYwQ&_PmU;7My;*7hu9*&5&m&c!c<mcr=!D!<o`(4RMQJ+qw0;2`c
zqCP8fdAy`uKW-OkBI?oLugc&KcNV~>%4gV(O+-Nihd&6NB_V3@k)1p~J#6S`^>BHs
zN=(6zrNseZPeMup%3-SYNwBLwg7b_Ng0}CD`V_?{HquON<Y@W%cEm4HBaSSBvMlkC
zlD;)9?wAZ^#_?s1e_g(Zp>A5SAuO8Y%F-kDPjDWXw7^#Q>I#SZBFJe&N%a;gGu#__
zyE)bMu+`<IaM$!m@;EB^z~?HbuJ7XnoN}Xmmx?^cL-aV2zMN#6&x1fJXKaX}HN6Yw
z^XL2Gzar7t+s*Lo%7p37=49eP>Ly1>CfMh`f-(zCH=9ZWP@Pd^`=x|~2%#5)@*1TC
zMIT5a+Du)Ygv>(sy`9Tsx~}S&hTEJnYB)AO1s7ITUideMKFZsP^*g!*TPKFTALZu7
z1y)opQnasGEEvh-3X@|QGvfe|27#>O=&T#**y89Ya+YnH6xZt|xCPL2I^)reC4(j2
z8|PxR>7s*2UnnzagVADQIph|nk_N3M)t}K69^qM}HfiQ(Q0hbJ>L8dgxHzeKdYQU0
z+QTe~Qlu93$YK@}{$#j8T~HLgix<7VI95kq^uX^OSMx^KofbE~Gb6K|Mp>J>!r8YN
z&vwEFMRW9zLyodFK}!9f?Jps-)KzN4MWq+<^fN;pE^84KfifnHE@bb_LYUI<>*1jQ
zj*aPJ{M31?^lG$76Arw2mXjPKpR8iold~|tPYb0WylXD%;#Os&dG2BDv3uj%J%wJ~
z9Sk?HpdM0>>g!y)ZelZx8X*}X9BloJ-cr_x1IaRQr1b$UUN)~G^K4vp(!Iv$<2;{V
zti?J3n5vq9iWCGKP#40^jlx-mj@wq^9dFF$b(WG6^N(Udp9V{(hps$`X6#NR3+k0M
zCIX;a?%uwfdk5HN5npuGD$G+e9ewn9_vgTvoJmc7t#B*%zpeuVzH7cOev>J{t{Anz
zthw*_*M=*dzIZ2eKZ&qJrcyU-RVK$Ie@<n3Dub#Qh8{Cc4_1-)c?F7RqX7cR*@dAw
zu!yTR@<~MuY)r5E+w}Hqw}t&k(n(Z#v@J*a$>0XR!#Ks!`Hl9y2q88*%ZYc6b6U$$
ziB9f6#-)9VG|R}C1@%G!X#P2^U0ObzQuAJ>I@MQvAge_1tVC`$sRjr;o)llabAJ4?
z3hUh=*6lUjr!B|}kr!-qbv5J!sT{L~#dS~M#$*j(t>zALG2~NS1wG*or!_xTFHm5W
z3(|-D{YjdVR|9kUK+;By1MHS$J|~&S&KTf(axXuEtLYSkyw8gN1n_>rRAfkC>d27s
zaEnxpSge5#j>ty>mZGV1C_e`*PAI;qmiT00-^q>B4t`0k#&^DWt}~?!Mj5XUB-E8|
zrDdFqX|PPhQOm;Qyp^nfCUte50#$B@2tJaSs-(+6xgW}=p;_WkjOmt*Eh4^s8Otrx
zDu><2pY3>MvFf`&w<@ynvo@Uh1J<qQC!?rT*KZtSYA?)dICl}K010~X8sFC8kKDmL
zy~m%3Z^K{RY1M?h{bFhHss!p?6xa+@4%rl9x+hSh%#T-ICHS0|EHIvhf~A%dHH|ym
z*QLevVm_sMq^l{(7@Fgzk`!|lyjZmvm>hJXtv*ulbi^|1hzEhdc(d;K3i+6$0<E6c
zEdP!haO&J?wGo{@BuU8?aK?zNpqzxh$r~ry+SvroR~E;gLbQ2g_5H$_mt;ypWa&*H
z2uij_Iy$2vyY1^lDXQ;@8IWL$!9XpeQib_`G8R^qciUmuR5Gfz{x|i3N4^1FJ&rIY
z6j^1%_pTz5;U(GA{jQv<!+J%0y!^j+JN9m&who8#fpI7w$DbH~?}?Z-bID$Qp`;0a
zykVZ4Y=TH*m@g&l#m?>Lx_PnA#%lV9IX6y@Z8CoR{qa3nqXyckI30e^Fia~_?c@(+
zD|B$Psj_EC+rVdpv-Uu&j~u5TQa@OmHT$wu_ZId3AU1}$9$zm3mx+ZF0x~bQ6IgWF
zeETf%na8baq8lC&-)BpC4X8y*P9;p?QwhIum_WNeRPklOWK=T`=|V@m?K?q)^)_u)
z9<B7oKr%vte1!d7@_Wd~QYQpEg3|{G`-?r!1NqE(%u<<_GpW%qC?dU>1wc+&EvJp-
z#J?vmTDlnsxVuDWN{8w(B|nRF>@`v2;P;uW$E!lSMe#ncP{-gQxNc1GR4K&o@2{0R
zdyr>4>Vx8LIS#Z$*|3PX(VzT|7MvsOw#k(-wf8EHMx=?;_O8del-<$`p+Qx27Tf9@
zw#W~)ZKa?VXbyIpuIdH^J-Gs#8Dag#TSGc=#=GRuL*vDzce>qX^yfjFvZq>E9}%s&
z{e_D(-*Y8r_jZ?2@b}HIYt0!qt=Y`nQl4DT$1s~dWwoG8^!{AR;Jn`p__t_)-P<iQ
zU{51;R7W%r@!u*dIMi{<E43zy+MV{LS0dBY{6KPV8eg=vN)Tj@j}@0XZJ>@(hyyU$
z`F9=1VRcd9lRLqEym~=;?0}#<f3TlE-&j0#cePm3!L5;|djsCroqtAVC-QBr2O}15
zOF4>pph6!22UP%=`)!ifnok!`;q8e8(R*`~H1j5vsA387zwV?aR_oZ8K-M7CbXHt6
z56VlHz{I4Tz<?6|Z6M)ml%RX6EPxvaF%~C1Shntb*fOO3jHjw9%GQ83A7@yJJC>Uo
z`z}p8`GxR&*H4=-8*AU39^>X|jRi%#&KZ_hjqj9z%RzAf3rBzY54!C~W?2ULcQEz5
z^TKs`SRK(<sYw?kDfKdPfO6X+NS;Dl_lw(Mf>SugD*f}MgVmO`G2igh+8Xj+u<Phw
z<<`4TBvju;7TT!LlyoDg)?e<zN(g5Z#V4Jq4KuI-PH@u389%BX@_byDF)UJjHL0;W
zP;|<IN>8x3A?9fX=gSh<p=dPHC*Vp=usOhc{OA_H_8>o<L&howlN`8<ymDIRmzFud
z)R_tM_6I|axX-%uTM}*qfE>r5o{=bycf4G4NHk&_1)%d-8eZ$)o)HyS*}R>ZkDzl^
zYrxOc-!i-Z0wsG}73Sa=;L<)5;!Ko3lsU6qc<_fo@1$b-tyqw&4o10}N~9_zEK8O?
z95W`Cm??n2$zE;FzqRk^XPs=NE@omLKtEYkaMMyU)JYS~+`9YV3xo6kKYY&h-36`8
z`|br3Wr>~2lUTge%9q}>O#AAOOCB6J1H{qQ9&tjUTFeQwv_W?B`!jr1HxUQsu)c3>
zlHJwshQ0~jgrZ-9V#hXZSl6)P{%RQ|t6o#M%4*bN01-0(dWdOXY(c8ny$<@-^@Wuy
zXN@Tzea65$nP!1*G0oW+q8_nuG*6S7SwEIB&e5;I|0+=3D&d^+7&s*4Oo%1tp>Ae6
zQD3&YPMpwAC@Y)Bj~8jG4FBq3069UPFWX8<HynO6e5W!7)sSmfkg>A0q+(jCE?b6w
zf0I9OqVVv~?`qe`P)mSfd`!U<lba--_4|PWfd8>2=V(Vdj9ht?8D-{MW!FmT=|78Q
z;(yvV$Udb+R&$^Gn4i{b<=K1rV%EIYg~g#;jsf?(a{CF~k@O{DSHjy=CpITjBdpg}
z-Ys752c9qs=O8iD{E<r@1y-W>jmhLYm%qnX#^h|2l_{$AnM`FvX1y^{^tn#1EFqX5
zewb)i437QvP-11_v;fD=BocWEAx8tZ?>hSG##Tox2zatnV#cPgKK&(e0y3Vf_I5ff
zyAI5Isu%hfu^7GvQoNZYZI<ysy3%Chcf6S+Z0kvJdR&0w+g>L?!$nD99^fVW!;wY8
zy}XI&=*YJJ6;{NLsjuNB4O8h?*GZh3M#*95ky&n)3fM8R{G~uV{*>e;yNFa&>aXLz
z#zCfP8D+)ybJ)9)+5@b^wOA|qrtv0J`i5GH3EWtbn;Hcez7S3fN<=_~GvSx@5@(|y
z_Fpgq65~c6vp7uczNKrCl|MhTPt?@JyBTD%S3m1w=tGC)tSX~E^~j3>^vR?aBlzDo
zQ-BU~8#R>X{rE_qa3&dJ^xs0nNSivd)YXlU)asPPhC4JXKk~M=0Jlj+AufzL1SX#h
zc4P0Bo=z-5d7t{03X>H>nS)1HPKI>?f}1uU)viEir?CgF7zGHt*?m0JPospkWIn1V
z_$U0sbH^8#mWG(8<yK~gUpzjEkeHvH8P)BXVR_Lz5VgMD3L8;fYW)&|pe-Q_EWl{8
z@$k8NxIoZq_L2>8iULvE`rgM_IGFZl>bn%i)SZ2PB+_|eBiwl+zJjdUm=l4#G>%9;
z`KHOPJ?zT};JiST6j%4k?5;PYSu@x-AQ5-!W2v_C9QKeyJ#wv{Cs)b_G%Bzrc12FX
znik8~!-<D<BYDau9!tDZwIJx%d7>rhff@Jak~Gd>ZlAWC(%xn3pD_#Y1@Q7&+kubb
zuU!iD@lxO?;=01pf+#H}k|^`<$Ob96=jf{EP6pZ8Pj-izP?ldoEX<qS4MZhrTB<pU
zQtQC#Exlp0(v^LQyY9(wY6HhmHE(AVDI9zK^wuY2B;7!!gB}s1cxNcty&O!R%fMTy
zdCvM&D|X~trSA8qBciM3u<s{4z`CJ+lG2h=4v#A@*Lf4i@uFh?Y<>3ol|v>2L9I^+
zxflhGfDo>+m^9@8l0!@ILxp(N5c{f7N!KDiz&@7#_Nh5{7K89U2~^7JMwA>iezic>
z9hL=(28^uIDbhpUN9G|@3Q|IZUu9|vf8;>EFkv^nt|0vG*adKgeOj#GmtWQLDtd3k
zZDgSqMQq?dq$K1e5lCA8rVhf~%SPsA%e{1SD&2HjO`}qJd(s&GO;|W#v|STQB+RP(
zX`Pt@g|4m@q<E4VdbP+-Ai8d2#SSu~#(XvQZID%On(5hx>-HOo=78DVS=5xT16J>@
zCjZL9VNhFUfxka44P7@>p9P)IcGVf6?GX($;5(T<2Xj%9C#HD9IOhK8F|Yjlr~8#j
zOFITz<KGn|J@J(eb`_D5Zaj&jhIIG*?5-en4$4=!fr}TRuVG9@ZZ2+Fn8m&&O3AmV
z4@eW+=c{=7{b4QcQfS2n?|c7!f~rzw!oD{_u-CgPDyKHSC()SgUP@jQ#~IE!(2m4T
zx4Oyj%!ns}+X?Qj&KBK8wO0@Pk^)nTQjpE$q?*ZTRH%43!E2(5A-j7FvzXK5uOa5<
zO>S8x`Js!i(isIKWtS{Mo1I8aA1Vk}>E4CwA`lkmJ>LeZN8{>$?~=ICYKW)OGivdp
zM#K!AVA6TbUezQ)$)3H`RnZg^BNxlob>g8AoBb7yHq-$?z>Ud|no`Y#wv6m_8!!s?
zy84lmI8w3FfF8duY}>b#McH-cpM+|W$xzm&K{#Q-zJsgBiKocm8ToV914Mu^KRXr$
zmm>LF1ROxso`FQgHw)3s=l7A~_4sIs+bNY=X5VMZvV>U!<EvQ^z4?}OKIeT#U*09u
zTrM#HM6B+<CL1tnl?^W-dj+lges$WeYiuVV`0iJLq&xAK7>N_+$jKr>#fx!qKhu4d
zIQ=f~NOJ9^Y3V1ctXCQGRtkNp_8)PAAHJX@aCb=!;d0Hsw6;Pv#5Ks7(Se=1=N4lf
z{f(F?`0K7yh9#>-F{F+3;ebpvq8yC^Ah_hv^W(Xfw`S*-nK&-#C@l-3OFq}IrMgnv
zcy1O*XiJOmTES}#jPzk{aHEgM0lu+>Sl*}Sgn(WHI+ifoZ82Z0q44-KwlajMf6tm3
z!&e0fC#grqpVBGpi%k={_bk^oQ$YL7zAYJV{^Zd&sBjip<2{<b;o<%hAgHH;6XbL4
zvztX@lk4ykxm;~ycHF3_4CrDH_k9+nAAf|&aPU)A&v|#E?U^oYZ%fi9R;#D4chih;
zfW^l}fhfGaDiwQZD(x3bu#qDE$;H(W({r639azR6)X=&1#(Bl5s?euzz1m3{Kia%d
zDI4A(dAwz;Mc10;9q+mRFlxgrQK{??c9F^9p36Qbk`I>Ead@dNeW|EMMX@@n)-)^g
zeovZg&eVG@?#VxCs~jU|1~`VxCE_#zNx9BSL-79i7n8ICQNWv58Kvu?G#_Q<w+fIX
z;ghk_-GNjy?9Y4a@O`AYV9VZtV(-6?e{5J+SJJ&we*F>WwYTu?k^(s*k5fe`OCl7J
zhrQ+lBpow$CItj<jD>{hw$g;^7RBHdmA|qWJwzXx%juj0f9<$;{_wW=lS>QDmC4A%
zHXFJ>z53VTP8?%67Z|`>2MuR<sH3t<_ZBQad%f>tzxTBBZ&C0aJ9<yI?>x)r_H<5h
z@Yix)nv>r)>?TDn_b!h-(#nv3Q^4p2o7Os(&1?VqJ8|jV=|1qGkiQY8z!b+)3{_$E
z6nt6uAjsRPnq$&T!SFdC@>qNl0P98&4i_9c^eV0j-Fh-)XvfcFQkp>`#lhi^>B%4n
zQRHO8kJ32u^oupL&RydEY#i)xKXM5Pt&>hEPTlCHDYv*Oo#t;zg45fnd#!6YGsv_Q
zt=1k}feiSaCFt8LQK5bPo`mEvxD3-GyLEdZ+qfDMpkLS0zz{1`w1iu&Dq`Y{elIHU
z<q4X?qK}QbJMQqim-ea=Q(s>xpIosl`N*Se3gCJ}c>0%|`xakM6kd2Fz0q3@a`_`_
zEX74bi&eMzOQv`H#NhI$R6t<i%%z#l_WY+*AqgL(F79ilrJsBF(F?)FQ`adc2g{A4
zf+x}sLEwGYrO+H$B#mf3)+k?v*h&llA`(O%QJTk~@(epoBiOongtNMk2XYOk8rg>|
zv2>QH!Oa{WajmW)WgfCaGJyqskR^WmVn6@5F0Dm|mASjuB|n)52i29_NJy=Ejx)3j
zk~g|PW(r1pRIK_mL~%1w1=2k<iZtzAiCgQfn_=D&RmO@5``FSxM^y?y29Xvb7(6n|
z1~b&c&2RS>`O3_L!4(s0jxEV?L2EZuud~9d4IK?Z`i#|%z?>*p*TMHwZrzlt`YqQP
zHh}KYzaiEJgsAfdDkc$eq9_#8C0zi(p4VDNUT&6eMRJsMazH?dzr2x01tPL67G{@P
zUS2C_`2TDTnQ-F3h|?D~Nz_F5u9V~XmnHaL8p)1%owF0gwy2rvlHugt;y)AFAM}yl
z`2($=VG@Byw563+t}Rqb#TLY}U;AcnjkJP)xf9`H;#2)%;-nZGmQ~>NTwp={*fkpA
zd{Ka9vmGe1GRZRPGQV$JL9*ezW%=c}(~|2p@^UxeqL4U-3T}YeVk(Rx@B4|^P^q7U
z;5+8OgEYT6ht3I%@DUP%Lu0XTdZHo6L^*ki8U+{+C;L1?%})XnDPyRVV9+2>f7WvK
z9}!<=A-_b8YX^=@YeQ!Sd#x|Ip}38DJ~#Jbn!_-l-Y{_~5`)VwJ3N)xRc&kg_t*5e
z>v`r&`PR*1hf)?TMR|)&kG<QI@7<?BZ6^TJvWkSopqa7Y!#j+SnZeNQQ0Y!zd^N{F
z(;)%;<O*VBvppLm8kd{6WX<>^*g3#}D1364+YuMUSH?jtZD@j<ljjBfH(=Ymez+QZ
zFiVIr$_McLwG?sdLcVAUTzJZq&v?jcw-G^JFY1tAsP{H~W(NG>b^;?AE}yKt(buA^
zi*MnrMw9r=hbRFA(hDPt;~9_AmWj#f-{Jq@FjwC~eq$Op0n;F%xMz;Y`1hxPUDLmP
zX#2{eiPpX*57ZP33^EC*Yse;|y~!G3G%1Okh{%UIF?wnLo7V+mWT<U_aC|%*$py4I
zibJR*50=^fU1Zn^HTl0OCE?&w={+U-jy5V_hFp6II7%AY&~q(!gu8Y#@so`AkRe1|
zL**DdSQkK%H%IpJ(ZBW^Bj|AOR{vA%F=<w$V|Gc63XnrqtY+VvNRiDJSo|VquMd0<
z!gWNacKuOh5r}7Ai9?pWM?(M|3`*dot{rS|5-cpdM}ZOZpD&)|y!zz2;qh!uadLis
zEBk6$gC~lE&<!G=BzZAsxh?`(%C-GrzM4W<Ye@wX`=bK=kRkW20rtb(5Hr$O`NyAI
z^PN-E(-n)YAJYqQCt@+cqOw4vdR--85X^^vos;$%?4hYA%B}8Ju1l=bV9O+fev9Af
zLb-c<#X7S`o(_uM(&{Z27W%%=9lUsW*ce02n&(co6BLi<57~MKC!lJ5&WHKRs0rB5
z0mYV;a;tbf7iIf-ywuRMmdm2X#rW*9Km0w6beF{&Krv)>|5Cqpr8mM=IZG#-8Z{2?
zV{M#>`#VUy-M>@gg_40!lsQ$vu_tNw@j^7B7a)DDu1_=Gvkbm}H}C`y7`}Y*F9=Dl
zbI~Z6kMeGQwpPvk@!yl+fzJ~EhLSi3=QtrNhJ2EE?WTCUIbB=p&qe2_(fAUV8x0Pv
zC}xW{0;0jMy?qbUxgG4tH-YGikx|GjE2pl23MjiCesQx2dL$Hw*A{?Echz*HKA({$
zY~VS6MQi{ge(_F5zylM{NL<ZyD5Z`nw%2x``RMg=rkY}4yoWJ2Z(d45!CjpMSveTp
zT3uZ+b37u-y}K%z?s=KKT>~v(UCA#kbqxA1q~fuFGAE!rHShnGI5EqW7Nf?=5>7zJ
z02}et48L%)4x3OA2Qn6^+j5*hwpBgrjnKfM_PTes)V$2JwYI=4^m%!(W7N=@>g-N@
zRC!b{#10MQi0&Is(EA||yBkBCK(+IN?&vGS%Ja=3TTDUrkI3%5kBMz2==@m)H9SM|
zI{$Lm@Bid6U)>vsdte?-Vo$0p#o#6)%>@?gtzI?G{)S0}=r+;fS!+Ktfk=!Mq(pio
zEM4bpPjKSkVX;5)Ki<XaMlkyTO3c@4F1Cn%wlJ!3?pJDGulCUkkQ*kCSrTF1?xA-q
z&_M9NUI0XU=EXJD9|H~!>dg3P=UQ6-K5PU*PrKuD6}*4;?{BWSW<-5dXwrh{yo(Wb
z$U3W6g7IuQ+cNmc={p=WFNxPTQ?uuRf^C>N6`$z^H@f*c*EezfcM`L4J)N)jJn{QL
z)K76gw^>`jKSQuDmx8{--rAB$$x&e8#rYWVt)T#E(m!G{&?v~48pptUd#wIhJY(na
z4xQfcgwk<U)`YXje)PCm=!_jvs8td3A#9-KcEVpR%qlP8puzzP#(@t&DNNG|+En-5
zQ7v{FEk?)L&Tb}Mxb*AhMS<dl=|kPh-gpTdgCv7wDM$^Rk-&;bRD~c8UQx=FrC*I@
z6Gvc#WEszUU`?PUb+%4ypOQC1r#YX}x0S?>43d~DGLf#&dh5#Mahw~f{Q&O&a4XQv
z^7F2lgCq?DZOzn%Lsc|kt^}h6HBj-%G=?P{z=vfji7k7_pmmTzev}gk)dn}23e@`K
zQiEo4($UL57mJaEAIMCWyo80DnITw!9Qe96A5=ega((u@=7bE_iqGhzMPt{cbj3ZG
znm(~1p9ClFO>NPj7i=>*rTA;@tge_;fkn!z9x3hG0eglSpxA+v9cZa$49Csio-7jf
zKa}qk?T^Sq)&n`5cB<`$42%Mh5}{cs7~(_W<btNWx+g49FWnaNBdv)pj(!NHmw3|a
zn%t0FAuDWdX6)6?(x<MY8Kh>7uF3E&@8v`+^GW-LqC*EFkpLgWC<mrCKU!5nU+}63
zU8LBj<atHnd(Es8#N%uI96D_VFmG+Jb~LGt$B*+tg$=K<I9y;@K>6#cok3DXdB<nJ
z$%u*9H9BF0q{ZuE{C;H>)_5vK_v}~XV;Qro5ANNZ3;4|=6BsFp!2)NKZB@EV{gs__
z=oUX6Y^YoFEnKze3%>VFx(vlPYdX2w;+_H|bvB_vFf2qhudo-O1Bb^t4E3WuH+!aY
z`vIy~9>5&Hqh>aqK!qs3CDR8qr6N51T?IeS9GxH4t&xPkS{Ld0QI=8vaSGv9)PSzg
zHBtX^`*)#3STMO5HpCbxQ}q696AMa6&@=Bnm7ouN#{e}YdF4CwVyPj3<afGGr8lG@
zTPHvC^?MCepOroD<^j7Qz_XYrjDGfaR)|g($_1ufIz@|7tE5v*_J_j>RpPXh)7IZ`
zXh3lRg`!tl+8O4ab9va$it)|BK%TWIX2;B2j{>N@|9e7Xk3g7x*>En%>tEN&Kji=o
zNsY(<6f$n9;1h}h_j9y4X)yt~b~*39d;FB!^r4hz_ms;*Ul(XG$y*6KvRjadclqo!
zQU<YeQiRbpmRr4GA`P|b95P3%XNO+U?;%=*59pKPVEDQ!I8Lp(?N+3d1Lv8Pj6i{{
ze)uxg>N7T8_+%KMkvm*{eNB%+6q6+%s}hCfRQTHq=HdEqzNMt~jS<{<d=YrJFyvVw
zIYl~?aAKjY>yj(S7tnQ-3xEY)B9h<V53^L)A{8!BN)k==+h@i80XNium_kH63FztQ
zysqD_V~=uWv99e7kk}OXw59-~bjzlaHWr{45kG2-5F(}lvhJ<pH^D0hfy79qvF@WN
zHx^FTBK~;BFj%p6*sT*sG{AnWIyE{N?t6~R&$a0#f5s?l^)}#p(b>vnj(07PZU}Ix
z2o0CU^1;$mftCpQ80H?xFL&rZEzsT5yT>ro_j@aB^i<;g__yBvfCq#UHsohkRzXCW
zyBn?4Zghb{W8IFR;Yklo62jqR5)_Z+WGaF)#a<RQ$QOn!032-mwo3bY?c&flkhp#C
zOVw4r<M5Uy4G66-dF^OC=@Xy-@@)J`mZgf53riRDmBnqC$_U!m6NT%W13d(^Qe}XV
z^zOAPBh%_!Ft@abC%+@84LPU__N%DU<7~+&%7esrKb*~V*A8sYjcn)w8P;D8_>T2V
zS!9-0D(0KSJ5Mz(yNNScSsnbTR&QUucH3p$wvYXLlud2$Z(ZxCalSArIctrH5M#E#
z^VzQ$7a}5O28*gk;~)H6e)VC~L%`v%GW2Jrro<{!*cM~0_kT~6bX9Wmd;`VpzTn_x
zrw<&himrLa8;r^3arA{h=z}3u*cJ|L4}+DORi)$qa3>_LtqIcq?%=H_022UJNd1a5
zEwS+&I+3teE0Ms3cqOaAvh-3=06;ilC#IQXg|b*s90j@#j>1DFaOKHNBXAIOxNTHb
zybJ(=MjO4k)T85mG=2-@1?CqozuGnHM%UJ(D1i!&q%b%bu-C(mmFzd`R!ntGQ}CAN
z>5`$B;t@(L)-a5rlO16r*NW!R1K0IxF5X{&hz%^(9E8gx=C1{TPkvIHX2pkgC)&zO
zvhf|WZ=W4hi-8FaW~CQIur@aIy55W13Sr{`vZ!>A|MYe%4Q~N_WaG;t+bAk&5G8nK
zDmD4>O;6o5mFitH{62_YeGHEK-s<>{X~J9se-xs{Br^{iDPgoo15{uo&DgG*Abj@J
zNQ`ZvojcwMKU!vz`X4OcT;}EHiv;2rWk;+it>n^JBKwmB8c|cAP@ue;f49w4YuRr>
zLHz{7$v~S7SZWAR7A(aEYClQ?D<#&CMT4vxN2Uh5v;K&RHD7ve$3Ri{npq@OB2rT<
zl2ehmUTtPm2;k8{Ha-xyNPyR0?c`W{c;rYX)-Q?y!sD|DeK2gN%`M3Es}&owmO<9d
zf#}b|ff~8|8$~f7elEFsz5~KG{Mh9-R@=Z~g{$B|Y#}k6y~FI7<QIc7Fsd2VQ3n|)
zIkOC=ZY>Lk0+%MIWrzIx47+;u)+<DbltP4tsJfe>;P6b7dhi`Gz4)!_Q|)NL4zba6
zVyCm7_g;$;eU)ZbGl0wE2VMFlWP%gfpH)H88p}(g2RXv9Nr3}P^+-*j;YLg8>)$fN
zWs@mbw4}uwYcV`K_=jnRRD(><IoYQ$V&O#P8tNE*eB(}w_oT`QS*Ug0H6E}R&^@1^
zSKPyRML=hq)cfxfz$y@95MyG%66^S=s(tKVO1Aq+97!}lfquTa-@B>AMhe91$Y!oM
z05|#}6U9YUL-9R<MwH~ri(1^AqKVN!BT1-bo>P*b+1Jw-@-dhy7<!RR8)#*+@v$Tc
zT<lE55E%m(+9YIxWQA1GxkS{q>p-pp&<e=(C7uzX2mmM7@3-Q8G-%8u5s}@qVVTmR
zho1ODC#}AJU~kJgWZ#m@L}ZSUVLS?^A|2j60SCzEJ0*<hoS)<|Mg<;gRmgI1A4oYy
zJ6+oc9c+_MQJIp?LExiDirrIZW{8>7#bOg@i23KKo3XaM+9CXEBlQ#Xt?ef9ZH4Pm
zq6==EX$d({lpfim0{VbV6;SngirKtj0rhTLOn(JQna<Z|oddM70wa#}Vbv9DC_uv-
z07@%>O>Jw5Wv4dAT$Q@HaqgqAdE;Uu5I-nyGExTJyKLWG8uzRWo{(L@`ng|?PlP*0
z6r0u6VQ+<nezWL{UiI4(MgyqlVPPFRMBT8ln2Lf1%UNDuYIPYsZNT5cyEVoLfD6&z
zm0n$^7KX_=N|I0Et*n5nh8brdGr_8i_<{Nk^Yam=mbTtd)0KdqdnbQbpO7V$<deYy
zv?X|OGRi)HSKkm*fMgpiC+)v%6ujOGOzbEX$nn!Ac718(`h=%?B(#=yFE}8GL^3d?
z<25*=I1Cx;6e#_{NHRUylg&mWN0pKT(w!|LMh*>s!8u0AG+m@AZoeQ&VFIEp(t0&s
zLec;WXbf<2dU0nPMLMF%QI*#>ctBt}1n6LkwZ$g5knXmv5es<0)%kC_kBYRR#JI)U
zx^?(2t>f+_>>x5q7DY82o-isd0E~h9p`vG^CT?8qg@47Hqky%xsh=qo>G9QIbnrS5
z)Uuv&_nnMl=LwMg2YyqT2~tDVS<mR7a{kGhdqF%Y8><pqwViY+c6i`;4t|Zpx%(gB
z3C?Q*;sy@}D4i_P2_jEiFY8)VqKP8-^8h!#t8Pt{9&4}NwWd#wCvwVT78c96k=r(v
zYxNTiN++3BPeFl?RN^^@pBlNHhq=lGJA}a%YCiB@h1v83*^gFEw%%otcov6QQPZA$
zdAS~t!Ty_FhUp_o13C%_Ky1<>)=(_zPdLK{xPT)a53K073{h?OP-d1fiKXZZ;-G?3
zNz1Y%XPBT0f<07RkBoBTj_zX@kwplX^)@rNA^n#jR=6!2w_)Oz``>l077O5}cm5m@
zC1{}#>lKG>qr_$OokTgc3{h|UYs#{|#j(I<jg)=1GFcf~{~w9aQS-~S6KIv>kr)e8
zStw(K_l~(A>c{^gACffyL>t~<7sPg}J>?bQB_rI&B9ehg6QHSBF`|EE|COld^5MIj
zrT;>{jlxO_TVi2h(;O3)!Dr)_2}3Nc>8j#3*Ad52IXv8V&hlrlRx0UD*|7nq^|%%F
z-tAU+aiWJkh5D)K2Xvl7MHv!qDD-|avL|o~k@TCn{Y-E5P^g*ZR!T&k^gjE@%+mt-
z1jCp>8<NaO@zgegwUME(Cz513$D87yzcc_cmT}K4mz~nvWyR2!pKLS37?<h`1(>nv
z4;T#)vYg=cvS8n%d;*ZPfl|UDHiB-JhvWEK?`~JINpl!t|M=YlF_?5Wl0x@pRG2{N
zM5!E?1bzMe+YB<`g;~~GYam}lBy7xL@p4;&-iErcQz>CgcL2MZ1wO|Hv_1XBv8$6A
zS)#4310>W7+IP{FtL|w$?=gO-+n5D-A#7Dy;aOGzUZ}s-zaJYtUzm0tYKdMjyV$TV
zVgp95_nWB7mYA^oi#}4ui0!PJUx>-j58a#eSo!T+s56@+87(fExbCx-nr&FZpTcO7
z|I+$xC|>cKr1DcQppwzjlK1y{6fz_uE>^*uNv2;)+Q48FpXqEr;wW$)MDy%I4SL7Q
z`Dp33@Akr1UhW$>m6LpUYlvM9f$zwrLFJsRT`aQ{7kqQfLx7<=@j>NeY|Omj7Bx5s
z8eeJ^)u*cTCe#(?@n24x=Pibcbn<VN`0*cQe6}qt_MtdNiwxy!<<?dxT70I-u-wNl
zUv$76&{3cLmrS4A)oB$Uw~8pNHhv&czOYDhrs<HKq0`;fT3_DJ1)l{@Wuq_u{A*JC
z*F|Dff=Ge$#pA7eiV3vb3+|jeN(p8hNR*+7_{4eOP7Kg9^1~iq!pIB?$JGLq9`%-1
z-e=z$pqm2VhM(_*(-{9Tahc$>siMCpsJX?0Kmq9rQ1e7r-?{ncTA^fU%T{Hhud}E9
zO#?bjiQl#mDgpNW%O1;7zyC#bYEgqIcdG&kEMD6%7qdwPQ-9O9W#i48f+!dX_0;un
z9RiPb2<c$YyYHkj#Serq3EWd4LnIE>%*sU1-&UNlTBN(j1v<<DhG9aVbSj}KY)GoR
zhz<Ew`QbBlTH@tBZk&5wpsmx<sZTD_2b!Nv8i4kAZxVt-_P)P=dmRN)sz6M20Z_bQ
zBP!Auzbkarl?h`+l|81GvK`>SI(}uKTW}2J1Ql9nt0Z$X!{@A_frFWKJMI_d#{>V~
z>H35+qV_TrT<<Ij{<w_nv61hO!>!8bn|JSWN~-^C$)%SE!&yKFWACzLTfUrm+15U}
zre+}e+?M7?wRbQISv`J(4*76-xdA$uc>bNr+mD=#Pndfy*r4fd{8Ile;)iZy<?(SF
z^f-p~6Ji|E!ByBn%oil6=YPD_G@tgZUWpaUV@#ado+ZCT5pC9v`@4fGPt07zp|RD7
zJg_}xfdc8Wf07>$v;DTuSXSzDYcDViDrl+lY0+ifY+c!4I(Hgj+w9v}@O>O8in$Gq
z@r1#xcse*JMLKMHL_Rpqy;;QRknG&DVm1OWCw$QQvPeUAS|P~EVh0}rr$TIrTRwX@
z=719B9vi!nfXcOYNM+*Tnpfj4=94zf04NgVAFZ9;U6YgDz=)Z9x5Q1mYo7&9!lif-
zQe?0%6?~WfRhurTMg@k|b!2%GK2vO=gSm&xAa6fD9fG2(n6=i~I`I2+9>*A94j@yL
ziBT3?(ZLBU9IPDlnL^e~nyBHCkp}%6w&B~qzd-ooMpA`<R&Yx@Qkj0vr@-IKpNu5_
z`OQZX9zkPwE0kbvPW8Nl6Q6jbFPY}!Tw}u|^fbj!{4DC~h9^|}`~TquW^VfeBvh~L
zampn{pQgd6<YT5nhr|()x=@79<+!X}!_t9hM_!+mp6+=JqXO_OCe@ddIPIT=N@Wi*
z(gpfK3JM8C^@WDE{u?98RV;?-^*nKeeC=dxf$1B+&^iF^0GTA#0yhu>pVZXKMU9C#
zUx;~TfQ=~TV5fdK`gj-_sXAhD@A2OSe8GMcZ?%u6F6e}-%^f2s>x+R#<`TKRB7TZK
z#-x#95}4-js5*!y>>Jh^F~wrHy+Xks*~c6$ow8ES0!ya<`Ih`{GB*{i{Z8+jRmsp8
z-*1%rfEQ8#Rh$2v2M(D2{#^h2!jZDyRJL^R1DuSUcBrI!w5t%H6B^V{IG-sK_cF?r
z;45RNhZIf39;`OugDE6v^$IFJ(8!=i7fWO?qjSQN*s<e^b9)hC(RoO|CioLW5*S~W
zQE6x%a_y;QM_CEc?;wBMgeNdqERcQtSXh^mdCe%O2Zq?gHQla$FtKp3C}}DkU)vN!
zE#|f|(sm0O8>qS+8jxuTw`6V3yfO_lVwIN(VpA`0!fz3C4PAR#q`KItX&_p|y+x{|
zOAO<qI%b{74{S9RFW=he0;d$Cf)<`HAL;Ue(sB7o(l>rQA(L718dU>ENzTawJLyCn
z&$TNWdmSt^xx=>k&Ir#~#k}@y>r|OLlMBh@DzUqy2`DM1UJ5D2AQj$YTxSD`V=M9^
z2jMtE%wr;oWtTygL0<O5uFG5IGQ#wTqrGU#6B)4AX7)kRhmlno)065GHvu_CqgHM~
zyea`VDzF^G(;Ue)UT=tH)~a^hcZ4H9esKU+BPUPJrez*^vVV3(82IyihxTDlBJ&sz
z3yV+}&1J61=F;1|ISM;s-@{7jl@JCdUYzhNjk5)Qp<m#CZ6Al+XF6P53jL%(h4u9)
zo=xls2Ldp5+8`?vEjb%jgggm-&vtS0mID|j!Ph1F-Tvv-hcuJqTcsU(E{HmyyChxk
zOoWADCCgONgO#nU$U!fv)q7J}Uq#G6fe;G_#U>A!5-Ac>C^VAewu#n6%Cl%23ZsEE
z4GbdY-G4_uUKHy_0xsvk&a4|&(UWDOOsivrGisTpZ(uwBUDKvpW&>nXS^M-fI4L=F
zbj{emV9^rM#GeO~hy9(q8Je_dC@yQF)8XPoI1++EVH%M-1^|7=FNukeFFn~xJSr44
za9JZh(1y`O`mTT1A{qHU!U7?oKnJsou!)Y=_+KNWd{ppqlJY4mW%^@qLG)bGF;tkJ
z&~eDzc8k@BdtpqE>gfxzLEgZkBn%w9Fl<6)9PQG|Epwbu5=L_w;$Bu^<;2`C=(S9m
zZy0PNCuwgwV}ZHSVtw&{%AS))v3gC0&aV%Xts!~*Fb@DkA$%H}$_B(RmrAJmsb6P#
z4XKLn4qhEBy<*L$&}6SI9XfP6taP4#u8yx8?RP<>fd+a)Lv!-=PFl{%E2_$P&#`4`
zvr#t9rKi%0wdR&P>lsZ_wLf}70_FS2rQ^RZYj!mb6Y(6Du0(3Oesj)>eSDv>HZLtf
zr)fo9-Hb<L8uV`1mxPSO*#EoUT<eKr(j|>?gTCkl+U0}8@F~r^$Q)aCW<C0!LFD<2
z=IiuD&!-QMXoEU#JMtc_w@_c%WXp)b@7T0}^|eNUQ@<S1O58}S_G}<8VADyp!P5tU
zkwdK>>$FMR({>%lOAG~Gda)#f&VHA9A^FHZQwcr+cO`P;I>`kw;!Zu^&O4Wx(m$It
zxnY3ThS%i`n%pAyXo)0!oL_kLlSH=Rm~-)pQ9bUL#0Xod&$&I&D0b8R!~0hvhgPq^
z3;T}Cd$M=a1qgOoPmZtrle`7m@tLLp=1NT!-m8IFnY^Z(uBhFv$i<plVIiT`dsCAx
z1`Ww;e+id|37*!8wT6^xrx69aCKCfbXA!5Kb8Cmi_JQ-us3^>TH|r0B2n=`Ee{=i=
z6Gz8Iat5ttJck{Z>~iC1pv7jV-h-BveJxsi9>b~`ul0qhTEt7<ZobXyJW+5#Ju+qU
zby(fbL8GiP0`=<)PmV6rq-gq1%F&uuvLnX@(ao!<%r{?)F&bSrkC|Gw=gtnrv!t5P
zfxSUVNI(k;1pG1I_vX@xeN|SNvj}(EC6QJt;?p~wy2F$=1k~=p>0dQ%)K&U5A>E2c
zr`L{tmvm4gKAH)MyIZF1$v^EUE9D6WUIS(H1EDSl;C(~at*yCk$F+sJ^)1S!Wo{mh
zv4q^H)bL38Vr^MO7^8xcp?T~CKR4asY1&XKoP-?oqx#4@IK;d#Iff}sQ!27Y;%+*v
z^=PF41UhWLrFU4qCvSFo!1Z1ZOtK$CyIl6~-F#hjfIzzx>+Y=jWNmhte+S5ifOA>^
zM{<V@*hDMA44?ASB8!V5ofm^SbM1FrkIxmKK7;~`o!OQD!>*&w;SY(BkkBK5*gJQ|
zl)pa(zQc9XfG+5^{|F@7-`n)+&DOc`tZ5+mr>aXi;4<Ez>o->eybpNt^76yu<J6O<
zabCa=_{aoY=j2$?X}>M1?Uc~PF)amdAIu&9#nY_Psk=XU=(Ty>-7kK0j~ACmKI_r$
z^x6OH73Gpf)q$JZ2v?Q$+M>xVfEvK#_@E}xz~5#qs2bSe_c=A*IQauFYrZ~yw7~J2
zWJ2oFrefwPu&{WKn`JuD2>6IW$8YN$kL8NbA40uX?q-P>YhE`!36Z0f=)TuV+J09d
z9ZCMmlrXP`CNfgq;Nj}Q>>%&5mD6B=S*48%Kpojd%n89TAO$m6sAq(OQ_~qk*}nO2
zs>{VmZFZ!CXJy8xya>?fl{uB+)iF-M<R2%{`cCloI2{MZ(<KToUXh+l`d=%)nR{0;
zr0m9N5pSd$oRnBUR+5unA>AKn>bRqc=nx&_ns8t%_OGldg+A!cp3GD^f3@7B@72-p
zD+u^!efK=mu^_P95$+fn8R>H@9h6vF`gY0tNJA6wpMv0vr|)@QA6^*G%-m|}38OvS
z99w2`CshYatZh@gWT|A~^PWfOW7vrz5(gSEt~EJX__7`A=9vfDj~P`v-vr(<aBy&V
z+}*{NjcOTc#SRW)I;=KhC=xQrUQeSuR8-L&?>*ell*lD!XjFd{oRDIu<9_gakep2%
z@~qNFX3X9nJ{R#HmoUB!-*cH=Sd7|#(u!O?GQ|6;)$BF(J1NSTX5^!O>-a6;13th1
ztRg>Nu1LR)4>22E5I+J;Bt}m_dz0@80i0|W95JAwpNR@mwSEnYFeQNrrDUdr<gWzH
zNn%GYG)fvQIm;D8Jlwb8i<Lk8E30#IiEj=IC&z6HoM|8&=)Y>Z7Cmo|*TXHHhRS8k
zpCn0L(6o?-4gHcnTzKaat-rX1tJl7F=r8fUnhu&Qb$4c&w9UoI`2@lNA3ozBsi%tN
zJE4bipdb3LG0h$<5DR_sN1nejZea-AZ=s}}wbibFcdA%pLgwvo{ZA*8>gv4Yu$BPi
zaw&<{k@Y61ei?ZU*wzR10X_j?To>?fk#tKL;u2<Q=E*%&Go9DGveh%pD!RaLk>(_!
zWycb^uUlb^J|BFD?r)DvcYD{Ry+5~ox8G>&!Cr1g8LEk3xBh;Si{E~Edt}m*$$Lq^
z@MY6&h-L6K;)>4x2qMFeuNTI$Ny!w<XwLs)G9rdvx+RTW!*$uoNlJXv;1^?0_wD#1
zntHKUbn<PT&o^=>`NXfRc$B^p%>e(XS<EzTo<p|wCR|2IxAfvuFhqn4HIYeRMbwfe
z_$wI@_YZ$lf8|HuY-hJe;5+i79}X0PyF5T1#<nENx)BiwgzO_)0CbX~W!0~-N;a)U
zx&7J2!7|?0loEdJL^|=^_Q2&4`zYPOC-;I9p*hD%C=79(yxt@fB_)N0#5AUWO*Pp&
zDOkxr&A&xXNpUH(S-J>Zo&C{cZmue~HtQ|24QQ^iNb6t#e$!AcYFV2NzaH_Hd4xuV
znjaRu;iI<acWZK;DpdThsG`h&SRS)*((<ZkLjo%!VjrF7*TI`M{eO|TYFj$7kC7U$
zb^jCbXtgrI!T1aFqU{--4Oz?pXoJ2GhLS;iqMmdoJ%AuT$rGpN=0ZG^{sGOv@7Id3
zc%chx2`e%g)2XRxVNO-g{{9_|JUc1Q^Jp4#WhQB1`fozAP6}bjD9RS6Ba!GqDt0gn
zCn&IX`$IeAeW*6r)pv{k`%>HKaV?S5;GyL0N!*)z%4s`AoJJrlq5#l21HTco?FgGf
zv)H?+H72j@yo+b4l*rfO>?e+FysKeIuA`!B+#c&I|IV-u0O9eE39Ns9eWSc)Gb7~8
zf9-=+25-VOPrl7gd}1(VNFR!$oaUtN-x$6ieT>mmf9%9cEq>V>_s)xiXO{G`Tfi{Z
zSe0|kInJKOt5#P47{f5MUNU5|^|q?&((?AgF{nUp?xf;Eb8m&AT=l8@^2Nsj41NI;
zQWmg|{x4D%sDj4zG_FL$;j;=UpD{i4ix=lXwaP!jsdJHhq7hFuF{9OecWY(h^QT$F
zvam1h|C@wirAqDUtf!6t59cjeYmK)txI|lT4Wpuc!eV*<uNT0G6|Y{n-vt0aiFT*1
zz02R_Y&}QfqWFJKC#23r5A#}9|N4AxEuHqf4JTT;yseM<s#*2cEPEI~jS3$pZmn>#
zbYoqS-u>>78^=!+fO1gC!D6$|(mD{vj_-e~(NFM~eO~hPzx5i4e8Sc6a}$27rUYVv
zVnc`rt=MIOZuC{3aZub0y?{UDrLNCh<(ep?mU59s(MITPaMaK*$qlbmzMoE0;Z?$S
z7boXV6L)}3(fnL~94oShF3ItA%hhKU&nx0;zr+Yw8I|!4g@^*cP9J=Cdi_tXZWNbq
zOqa1oCrn%H81eta3^8=9wdyZM>T$jD*&iej<&?r<GMJD$O`llCUHDE#UHMHQ>3pA=
zfP^B{{cM=2w31v&hpWzU)Mi~I8XMg9PNlXhXT145N~l!K0v0*>*8R<s(QBg$4rTGT
zLLwp?mF&Suk$Ar?05dV4t;w5fvS%0R{70f+YxL*IWq3x_KdJ4XR-+~v1rbiOG|##d
zOgg+Qkb^D!O`p+uyRO3Q-PU7P@4X6>1^`MGZ(mC-I#FXHegb528}*(^X1$&BS(5gc
zK%Pat*2r$$O~JZ~WP$!ep8ZjfI6XV6_nDOFycu~pcekv*fA7R@8o0%}<a6g)<2rl)
zHMpmHt65miP2jNgj_nafAFp^sfQk<y7+AR`dy++yr54M6ib;4tNIu;jf26Z}&nFI#
zyey_VjsTZDk_Ry3_e7o;;uT}J@+)!97xHo5@sV|+?(JYwyatoBqjl+*JbBS?Bs`?Y
z;|re{wep``v^z0K(|4`+YDjbwzO%z%qj+n1d1$gO!oKlM`Q@>nan&=qeMc_lVc6K;
z;DT>*sUlb*C~s5YlhXVX8bN;r0TPNqKtRxXWO^yQ`o<smJ%o$vZmX7eL-C>c32>sK
zW+iFSxyyI><kKf=ALREIO{uauq*%GW?poJ(hP6cD7MYKGgU!{iJKrbiv3^2rNTJ%a
zS6_|8tT=6UKD<8Bs1IDE05)!|_cnOfYb@&3>e+&`g(wC_q|fjFN7Ge@MfpVQrMs8z
z5S9jM=?>{GNu|3xmTm+Dq)Q2Dq`OtX1p(=n?ryjrzkBcV@W%qX-_D#lbLKtoiJ99z
z9S^&f0zU7b&A;9$nZN-j@4f$Jq<Y{|yyNeN@83mN;)^?~O8<X)*unr@B{%Wvw%@g1
z3w25AGuR17NwRT0F!Nq^5?w*hRoy=I84I<Wq9_~sMs6|?hVzJzBVNC}p>N?Js1LO8
zD45)>^@cf(=7|c763Ozjd`WgbSguL1BA1~xwu#I9+%~;MyWH3MhL%V^zT8|sx6<q3
zcx^;S@aP*;xJ$5kM-QM?FZl2Ul7a~dTc1p{wZq$wx=`d3r&}G(GSbox-W;zY`@sY5
zVeLltyPHFTZgRKf7oi;{2%L`nUV^Z(dCa}aaTa`=!Tw^HPD{6+*U_WM95zx$YI>aW
zZzvNfzO@(Ju9$t~7Cg-+>Djc`AacV!6ejB1789C#+%^$Bs$!B^FMwUUJhxixx=m43
z4+1d5byEtI*b&|6y&RU+-{|y>1?@`PuO+YYZte1BFMCPfe_K?#T5+bzFag#S5M!Me
zNF^lH>f}f<`iS#D!53wJIu3i@hYnW&C~{x7YN!GBNIH$eX&gZraQM^B{g4)!b5u6N
zG+qZXmDT9IQ4DKp4>FlQLH=6_Ad-hU>%4(;*dr|@NfyMzI+FZVcePsB>GX}${Dl%I
z#IS1ULtI99-}f>(TH-6@#rufCUlCIqq+(OK+=~E7`n&0BEpCb3De*PPhwWXm{7-;^
zg!hOH3V2fCL0pOB2U-%mKvVOa<JUlDF{L*fQTVgHxY<|ms|}`aZzr4^lYE9P0BzT=
z8=YtjT)Ja&IevV0?adqm)Tz3$xh<&1-X>J8n6!0`wl9C1NcGPYI;iJE9Otlbwis#y
zUtRxaT?DF|4R4cShsQ~sWJT#o17W)KXJ4O%a+e1t!l<TcLCFDD4%4`5Bo*R`E&%gb
zhAQvfv{@IatAh&PE}OL4T_#h;QJUWAS$wAH3pL&njw=+W`X)Xn5`(^t#FfTvj)(_q
z31C-Zq6PsjIZ5JZt3Gb03FRAeZttUjnZqrs=eMN<GG!V!v@E0Pg8N#%uj99K(V0?k
zt!fBlL<m^B<N#cNoUCNoUn5P+R`2dEO6C7Jo$(Qn^PSEN$R*9KGiaKx8eOy7XD6un
zdZELX{-|vuop!p^N;iFt7-#9&`%^I>4s74b&!0Z{Jhh5Te4D=OIDY57xUQ!fX0}3*
zRC6x4H450b)0;PJtscurun#VqmB2^Z5-|em0{4?+jR4ydm1E=+$VBwszpC%cwB705
zH%=U1(QtGV!0P<o4~*)LGOQwkiC?4WEl0WJjrGT>%Fv;IK88>=3=+Y=rH~ob8EPn7
z?d8JM&%(u(Q81H@Z#Z}2t+9Rc!fId-(D9dC?hU5^!7~5rgDW59nwfSdYEd`TnQHx5
z&L(Hi$HQqXPHfU(;Jg5aNOffB&kDF6N6C9yrR3x%dy&L-7IPL!7Kkp&ei81NL6wsU
zSo+;Z=EikCaCU)d9}jnTNzb~O5bwiTl>6tJHhI`gc!_}{iNOwA+w{bkh%;+HD}MiS
zncDtj0}ZvNMzvIW|5i7N-`H3u67ZzGf9%5vviOMJkEUjF2gb^4aNUS5cKQ=@RI~Ko
zdE#t%SoSBMFE(E3)*QcO05W#O=zZh2#$#fmnVI*QA7bF73E-fp+!lBU*$FXl29ldr
zXi^eDB~0_IrFkdK&ZZU0dCfJ-n;!oPiK%h*Bzrx!2w(t`=6Fu+f$YEYM8goK?~N_L
z8&=uJZy0B6tOR+)*)zSr{|h?>CSEwX`!fGR-ET|jb&s(8mE)`)VldI#nyGl?!J_f^
zrthn;=X?1Vvk06v<Z0VS3B~f*Ys20(uA=#T_Qyjk)~|ldZw#M2<mV0U4k343CUu){
zR!q0t&F`zf_C*J^r2Ht=(_L%s_W$Lns$*dx!GEyai6LMjKF(=BHs4<7vFpab_^ME^
zW_UY4cn{ypyQ-6r<rDhbYW*$1X}iB}J7{w_-E6tf%ctRHMgx|2$Q>rO>1V22)kRzM
zb^##BNDjSx+zwj6gn3>pKI%dSP*gq(?tLBx?yMK(2mz{s7OC4x#_Fut!Uq9U)5{l{
zZ(<Npe}>+?5w3IiG6yY~$hOz$ai0EhR!IB4Kezvt@q^hWOU8-M)n}$t02D-uY)#Nd
z)!ue`!wDh|rXQ|gmdiD|P20Wbya=$Y^Z`Rp4M9sa?_k?su$;|+`Ag@GOwX7^t%%kw
z6Z(}**l=XV+w+zeXB9jjtQ@;7J#7nTbK+tGvy5zY-)?8|dAvE|6ZD*aOpH1)&hx$U
zU2NL=O$&R)$+_a0h{gHDS0o!D#R#1^n5*#@y$mHsptEW^;?^LqBiK*@;?8V$6cJK*
zr-{maa`qYmN%6eky@NTP*-rnAefb}HFRBbm6hniFKI_$N>-#R@h@zuc>FyhHb3)k8
zW)*5GJK)ts&zWY9kDZr!|J|&vP(NK-I*lxdJ^b*iG<pu#Gm;<qJeg3fUOYl%Dkh_j
zYQsw=ayjZwWtuus4<Ik;ft*sx=w8AOk2jP}j<=&5LQxp8z1!;FC`CK4G11RsWx$%;
zJw8N}okK07<tGnN1)EYRjg(U59R(T&UEW7U**e@?4>)=}A}Nlr6COd+!h%}V=er&E
zq;@d8{qd7`(s0Ff;Bi~v!l8X<p7q+7xOdG_+pjU7mX>5pR*MW8I>m-;%9q7)|9Vcx
z+IJ*UnyL#j@&ghWPcr|MjocAt(B{#)f91+~%P8fOE?i+{j0lo;W2eK5Fh1ZbnK1hv
zKAIl=S!h-WXH89ny7BT1jm|E{JfG*nKx1JRA>B1R3|FQDx8Etj5=&H2zcj*_<?i{g
z(>K8A^7HYt(6&PThmod^VXyVs-(5n&?`hfQl=MgDm+PISt-q%INn38^kq*@~{L0?#
z^{X@YH9G;S#|S)<l(ZB+{G6f%Q)2F5;-Sw9yTQF%`U>^1{6_-&hF1nD`Pch|$?je9
zeg`)nfo5F|v_jE|f_ijnE`U;XH<GqrQ=vj2@N1nPvA(ate*HSji8VFwF?Kx@1PKw^
zvz<Cs?K{&`DRv;~7I>6E`=nqS2&P9#X^Px%1k!nwJbZ**s&b@}p$oZ!txJe_I1Kf$
zG03##X%2;;F?^23!HNp5WkUZeI_|r+cVq9q#l7UL9;k|y^-bw#zv;9&{qqeG$wlZ`
zoRw90o^g<`m@wire5|)W-?H?JO_9~xQHsf1)*&y9i(WO{2?mWoC%JMeR-&!c0-B*$
zs?Eu@P>Vx8BuR`|eVG^q2woiP?(uQlS0Pt570*xGu5xliB!>9D2OLz%0rIRK%oB0c
z1My`iq~#&cbWTv3J{(vaH&`7DhXE3OnmEGFXpF60i5`1#;Q`x_;9<DCzZb<rdzEBr
zewpP7;(E_GU_(+ah_-nj172S5G2+FPm-lbqcD;Rwz-wS8sug~GUfxfc)~IK|mWe=&
zF%-v_Nn1lg(}d5pO(_796}}G*xb9~Xf<d+Kclq*$kDZqPc^?wzA76@e)uYb0@64GJ
z7atlulcl{YWnm3aUA=17xPA%}n>+ouGIJs@<_DyM?jgfASli#f`w2J-qDg^cWQyP%
zrxhL+5RI%bHa%h2WIl;P3gX9bBuN=0jpTpGXlQOFiclyG$OM-*I_6x6Yy=9Q?0(l-
zjCt&E*I&DDSMlxSVdxk>Su5YE`}~M@rn8--^Qu8Fk`NK*9B@^kxUBa&xOa2%E=fG#
zxniH%VI@}B`92GFzdgz>uV_mOYRwF2v7LT=eDn$0XlU84UZ`&S3eIA+HKAX-5<b2v
ziF(|-%)bXq0-xNw^{q5%;3(W@UF<-m?RgS><(m_Ou9yPfRO@lSgDs0I<D*#OhmH^K
zDi_m23d};j<Hhpw&)vg|iD3;5dM1=KcW<%OREGpS-v*zGEZ;2hv^?htpY&c;<;{`Q
zbe*jy$1HUFJPPQI73#M?S-~P7v_Bvnb#HsY+yiO@S<~5aHa-s>Ch_faU_>UsM8ot<
zeevXzsD|>E^4H6Usr$6lL@<jdcCLL*?vrLjlk)x6%|*IT4G!iWnG>l*<GuMG;r3@L
z&zPNvI1J$>I7EW?PNPI>9v_CRALkEMbajdH0*`!QGXlomhq%DurWN^j_tLN9=1dJ5
z^yD)@HNZ9UUS(%#Tuw>ZBRGXYV$*&WXlay!7@85X^CcpIT(`<NGB!39Zf5uLv(5fa
zB2;!je?#b!<f7AOv%UbAz(kz_Kp{rW4@mb{L6Jkfd3#^Je9-T-qC9GU&em@V*wne!
zXS0HBxNqA5`S3Dn3L-fj9k<cfM`{^JNYqo2c5DVs4oE@If31L7wR4dr%r;*)m<x*l
zgM3)OT)D}SKFxQ2Ag1!&30~8*L{Qby_2C~w#~|Y9Gs<4>Uq|XP>f|tLf`>Ui6k4BM
z)tEfrCNnSkby9WTAFJFP3j_;SCWNrLygVPa@9ekVU4xGY{P+3lnDd?IadDF9n!$bV
z{ep;AA6z&u+wo`XZk$xx9?N?de$ZLvM}RVRmy%}=>A3_;c*x2s%K%-xLJc?Rr!7vF
zU@C+2c(f#va3Hy2+P-w$I;g$NIUY<nsSrxnBtTXCVZ$A^x^*eARwdrCiw6dc1JqLU
z(+Q)KNiczl@2$M04J{r9q|XrDZQX<IwYGXVRiVP<u1HcRMv}B-t6I%Wv6+-)&!zX0
zJN4C(c>Fg1(@BK^!OO(m$%CUi?{V%a9R#eMguISLLx@d-rc<FMi_iDX{FbooD6ZC$
zDS{6tmz|Fb7@QlNMq(!=AK=cm?pqVY2lNQ}Ui46n`+H5I;>**$0@{d^L{D+_=GKq>
zKl3zG2#YPn0dCuM#mp6BX8v(^=gC<uKgg|Za=+WJ|G4s_*)!Ise8~dHxc)k7A5O~D
z1OZ_@L&Bp*2?JbJE)h`g$3LobYy4sCjPBoiM)`&B;Y>QLQNh1{{W`fJP`fqG$jb|5
z%DV^@B^%A=L3nYjub1ynf42uyXc^&uHVH%UPx?-40^=P{E%4dgq+Yu;?LwAFR1UcI
zC+D_z;hMH?_g;HEG<uOIpZ$#GJ&JJTqCWt87dxI9K|Lci4`5i(G0FsAUNnmeB~eFf
zr&r||33o9e81Z9tj`QpF=Z7oSZu_g}E3aAy4{QPpy2luEP-D%{rZ9rW@+yb-%-OFA
zVS(aJ0)$vtXUvtZJ%U5&4E$84as9Se8;a@|*Vn#?5hnRDz!G4QCO10VDm|R@z}A<>
zvLls?UJWs+!X!p+?E54D`xZHTRL)GcT*GI_Um+jHP0Ip=W6$vN%;6N4ouh$XkN8P7
zSa&8J1*qs5!ly_`peYl<W8a5?R5cu7R{>VmY&u*-P>)lF05xW&kJ~=&yF3MT+yV7b
z{_EA^H5_!!6m48YG~+ZnLT(K$IFN0**u~gtd;Z*dY#uivcjD=dA;qCc2R*pXq=OXg
z506|rwQ4-IUpzL*b@OiqJ(zo*Kb>YM>&oQY%Dw^V&(-4D32rNy2)VJ_N_A@kWFqp;
z!U25e$F=L0^F*UMyUo`ncGJ>Ni@w8Evt$D_c~wTwvBJkK)9$7kl2pL<45htxTDsGN
zc}9rlA5xw9$s+mU-BJy+5|L9kK8(0<<!R;xoL)U+t{{k005UY6e14$1Ui8c^MXC~0
z3CniUPt-Gc!sECl@o20KV7#y;V`IzTJ#Y0so+s5dS{SAd1ObLuiE%UO?w+*f0!y&h
z^>kxq8QQ1%BIhqvGsulKN9CZ{b5D(2H3A+WTi}mJmie<u3aEIF^n*RBDTP=7>Pp~N
ze(iR{QomQy{P~=d$lXcU%jBXuySuw_zUgxG7vqRW1H-?1=$x?WX>v3=+3CkwKUtFo
zfhI$k3q+?rvviP*{chQ15Y9sytlwnScr$xj0tD)l#P2}BvD|k@*6w{cP;}dHy4dg>
z-|6p#)2eIWieK}5#>bW^fUwZ)*t%!(rC-_75}^WyDPCeXQyP3N@-&jaa&9}^)#;C%
z&r`>=A(!%7Ot?hwCmmJFnG7(!fIo}2p{v^n?cceuvLIf;vCJADtI30KBN!BG^_Tih
z=!?{{II#Qz8IL-zgC71(=dU$%-irnYoew!{=rTHcTm>}w&qfalJ3F66e_ZJ}HTwSD
zv(L`E_)8UmvvUy4T^zLNdA*dkt*igt<}`Um#E-3|sYS*`ztU+yLaQYt-deKogu46Y
z)As58LbJuh!`uzb^!YX0`ufgC>6YhZVbP+;7^eK8bVus-$)$YDktUo|K!^SRik;4e
z>B*9Hd7ZQ84KIuCcAgT^$GWtnEVX<2Ika3h3CmxN;qH*TNW~*`CtfPfA>zIDxSFTA
zjge92{4J4EBd35zV};%bM<eQaqksfLEkXopTVwgZDyx#*-QS5!gsx=@xqmIi^)T^m
zg-QCb>Q)Zy@!4~GUwMFf{EwZ60<Qxte`G!0i=)uQAsq8J8W_yA9CtZm8svZalt9QD
ziGB3zSJ&Nf^od!+xdzs!L@+-1^?r8~oU@}J4tc&mvRpA7@Wa`4QgbuC-`zu?CYBH!
zv^8gr(Gs>sogdV9?gLD<hAgr9$)3E{Vv|J#m@g<K*yl{c*lw51?OhEl98jaK!2Goc
z;$V?~PkTH%(nayWBLOAp*z@ctCXLHrqnx;Yz094JyLvkd5awVYvMwrzVhs1Dm}t9H
z_9xlr%oy$HqJKP^h1!kTW%|Mv+S)k-ZF~ZE59hxZvY|oMfBtAzzH6omVbhJiS*uSP
zbUNZgi!EGqKYpAIUfoIl5ef`pzdK-zpcVDgi{O!WMNj`tij_L90B^~g(UA!iP-@fs
zF!=ME9cLo7I5J4T#fJOhP8lSP6b^m8<h@oj2w`T%y7i|Gq1rIJbHT*vqL-A!Eu8o(
zs$X(ATy<U~vce9OJ@mi+p>R%Eo~))1L9#ngP@@iNv!aRo)(T-~zclv$SBNq`D;QA7
zgcrzhukVm&mr_8Imy)8{@$^l=Wp6a%+rVHP=L0Lh*tN0(%==&m54LfC^!#<DaoJXN
z`}Z_v>sD^{#cfyNu8OeO6E3LM@AA#d6hRyqs1blzsa(%b=#x<F#axjBkz3ETDv5NG
z0c<;NyWjW|Cm_Js`U_KN%$cOrK{PsOR}4_85Ob1DMQxe*#{IwjcHZ|7Jd3=CLql>M
z7wZ@=7C}QhS)hbI)f?{W)5FeSMxD)s1?a^dZ~?j{ayE`Ids%*b#3|#!WwfLbOn^>=
z4-P#gBKBT!&)+^?x$DpFC(^oKpDIU(ZG0GcEF~i%BJ!mQz8!p`opCbk96Hy>!wXrg
zlw^J|0aS;|-0g$L^>Sy%ioBDditIf7mzf>1gB>FOE)`(!%gM<njU7M4DBiviT$*^S
zj3?EA1KAN`IQ}`&*~3K01ZuW10oERV>vvwF>B9rx!L5V00%c}>ef{a$aQ-S&&C_V=
zRjuO!(PH2XWu|~Na!efez<bZ(_mPNbvE#tX4nB804%2GHi9fo!%b3_7b-3lv0G}3J
zw>r*S%7Z^6816o+G-wKVmCgo?ys<g?W&vdZPJM6EW|v>kLS6Mm&J*MFmZ$!xg3PAG
zm$36pe8Q09rurg8%*^tybVNS;INigXK~H3$*4ewmv18vig3Q5bS?H$kKYZ9|J$?pR
z+x=d9`TJi1Uf$KC_9Ilg-$-~t$fFzshPnJ`u^-Q!IXnLO27Gus>#{~^@Z(3z8x=Pj
z^eGcihCLIw_am^E`Rq5ZL9z<QZBx;|dM^}}0?8<s9=&8-pLEp!8{Wj950}ETPI9iu
znkhvKi;yju2pAZm2wnOqFPbK8JXRC@ia2QR^7GBfhMLPt;0lRr6zP|Z$tdbTDD3L!
zT81O&;ZIVZ6(=5rYBQ)kRh|v2oJNxSjoe-a;Bd{vqeWa@@xwN5F^Eh&mxPh_QYqcg
z(=>(a_U_0<XPnyK5m75?T>m5(7M)4w=;TM-M{{<-4&wSnEgbaU3P=6ilk5Ju=B;9&
z;WvdcH<VU}`wC46j%C{a{y?KX@<diT%viAX{q7$;XTwO#!Prked(?SUXJj%L(R?dF
zDA=z<n1lIah}p^V!F?8Y;p$SI?O4_~Q+ifbatsvvG9WI?Q*twJ#O5=j9MI*QBp;HN
zo_?!RNB1x}YX$V*iF`pSa%w7;t7+#&i&GH&*J;2CCWrJbg7Y&-K}&&8pGfgU$@Vz0
z@2`!TpQfz~y(}&1x5hrNxiiXr_%K)-jMJmF7`T4pnr{!3>@N`u`_3>x;N4;Gn#}<W
zd=t;`vM$3^x9QvVukdj(y@MW|)TT}VShsb~*W|naeL=+_gYP%<53IXyUkvWkjwzfm
zJCTx-k|;r+cfbSf@=6!sOQii8#ZkbOFTwF|W_c<dV1(8Rzb=FRCRy%#l9iO+kxk+X
zStx1OhB<yn4FubV!M#Z%G91WUqg1(BZdf_}9`5MiFaRXLU{eL&NakOAd3-M}EQH(t
zyBK{edQW+9=fQ+cEf)SR|7d_7M|2gB{+GQ^gU?TV(Am(xk5N=7i`Sjj-2_L@uEu{R
z?Bim#xELVNZ2;WI?CY}i_MLs61zf+EgAxDvcHeaURGzvA>dPa-hlWASK4h6>y3{*H
z3>-i{P8;WWH8n<ch%YD13tD)g-TY@%9RiL>VXMNOVg#JeH>G0vFk$q<DKEe^J*x1G
z4LPZPZUJ%^!kV&MvgWN)SH|SO)4T|vxW0PE*=`cL3sg-NA6v&W464Il(%dID6_-Em
zC08N(!rX`V@NH59QE})PG#l$v-nBc4iaqS47980E((q)hzMMN%tbq;8H}2Ou)<%4p
z7W-~LQ}JmeGS{@Q7BG7OH>XT`UvzWJEBfl~iE;d4pK2t-BbR7bivu%6#Q1fS3sCc3
zfSbwlrajzDl|egIckq7hw};&qY~cH-0t(46y=BgOT*i^RAOl=OpX($e_^*&9kAAnL
zA8?WRe-0f}&lW%FY(I)|u92rsN6hf+BsG#UKv3!8FFsTFoK15+R^Lt##JNtcOLenb
z(@QGLvVaT(|83hub$)%Y@w>BRy%x^X(4@E^y(>6oW@jJ#oaOHG6!i?PuYV0&;WYeC
zBJO)>EvV&=J+tDnk-UAq)l*n3{YH%W<=6!94-N`8C1sPYrHQYQ*g`w?^|HSZWl?1%
zChYmd6xx(aLN!>bpgw@Z*>Ph@Arb&j9(=;7H~kjaLu>yBdMsXCkV~dqj<Iu}zm-B_
zrW*hX+5rA}Rl>+z`67`!*mD%%E+FZgpX6HSos0b4=ZX6MQRl@yPM-0-IAuZrCZ9c|
zJEEWcvKjl7RUTJEtMhRVZnYYUI3OV;@!HWT;c%%K!3+Mjv-@oQ1s<AY>7!!_)#ivF
zdveN-BrW4e*GW1lU##89dGGdEncxD7dHh2bB9dfy{)&@$Tp-f|?Trmnc6Rw-esBjF
zndb$Mp9P0z?`zE0JShblIL=uEpj=UHJwT^Q8itW=<NLs|1%fkz|BdIzpw(pNZ6h7z
z>FNVL8afn}zI4xTjgzX@%#fd=x{g$tz`aO{R^0!FLp=r3YqxFQIFSvO3<rv}qo#jL
zlZBOg1J81w2zkDrIp@mE(P$2(!N&{xi5518<cj%VhzG{h!qxx(T!7%^K)mOb{NDv}
zn(1hCY#x^j6P7MFm;2;IL^SNL?sD@(NC*j27;Y=Ssqe(r<=r9T)x>||^u>sMp4Y_y
z+1QZZQ@B7C5W%LgO(iEp;OEOAEKosPm-sJTTp0_uxr_jRuiL2uZhLyl>>_xH&~9I#
z?8@ZLElqUo_<}PE!6uYLR$beach!5rt{1c_$hd{<i6_(XXVwaNm|MfKi%VNQ2dPJ5
zu&xZ-LY)|>UnqCt1%5lx`SLC;d(WRu8XOIj{=UX^d!1Ui9?(G<i*NX5S0<IFPx5Uk
zQnW>Ecyoa|9T-G|D&g75ZRdq6L#Or5IUIKo|I0U|h<KW4LBFr8ev!B`@a`AN88CQ9
zkiH;2xzqLRG~-Z7nR=#n0r}POD^LebVQVhHr^QEZd13fS#u~<k(?KfsBGJ)7$qaZL
z&CwNxZ>AZ5gmfMIkP&vNlp?Lla@1JyceD`D?fLu~zRQWWwYCFow9MvexvHQsbOi>;
z7fi#hL%^3^&0r-P0fEzE{Bqy%yB?E6qXH4gu7B%j)vYDeA43Ou<LBVx?tiE=1F);H
zmg>HRoGe$kKq0hmAr4C-96`ju-Uwc--@_5QWMP43-K^;xm8%gd-N!l8IqXlro|^)X
z(kdYaJR;nzEc$YZ+BbIWtmyc_GhNg%l%OPd*cl;-R6xl2%oSZ$y=4jhK_~eX8jhjD
zsPD*2n@b}Ho!%OXU?jMK+yMG$?1aac&=ptb+Z>&`?QhQ2PUl1*$v}tPfWZX2hI-#8
zidD1agUm78I(-QmilholAdWW}VfQISdqmQ>^nDw`cw(d4h)A$F^>0Gpe>U9A;?u{X
zrTY-1SQ<I0?*a07;1oogDYm25@~P|f-s{XTowS##jNT35AhDWbpo2}WmxJL?mVxhO
zxUy(ku{;4Lfai?m_!VL(gBv3)oz1*nt_Jw1!Vc{&UypICVl7?HD85MG4JZiuR>Qng
zQ@PgIA!$7uP}?~LMcvyD`6`Rk+nA>4d0E_;U)xOc1y`weX(^R`>!d;&Z>_InmE(Y1
zdoEh}IPl?#vvv`r*T$_^0igkvjv=0rDgNsZ?4h$)5Fg2bKSDxc#~Vm!l$~B47xQ#h
z<bX^lJNbdv^jUYjIRzk4wsa5WH^%!8*jSv6gTRI+%Cr=|48(YktGI3nQ{Y(mau+Bl
zH;WDZzLrTuh~A}HkcPcDM)}t!OB&ZTX`Scep2hK7bx=sG<;PFey;F)}n&c?uMPQ(A
zHb&t-o)aL&$_)vf3^XWCgs}6zzWhDHEMO~9C-ozD<hy*Zg$dx(gqIKYdxxgbgqo8W
z+kHvJ0p9br$_gk=QQ%FzWP)@U2=;rUgGXMMiKuD$pwWR@VAt|&kG=T?>X1>z!2yw#
zOHGOqvlYcXU_}aRkKYRmiU)~ua}vr1J#b_Jtq*{b)VaI&?@O?1dSo=hmwpyEL}|W4
zr6YOc?@%l38*OppKa0W&kwFX6DnOKk0vPNa#<Vh?4A)d+rdfR(tqjd2^9#ENg{<dg
z{|YcAW*|{k)&6@Gxg-ZwkYTY0v`y&o?h=q<|7IzxHgAltM&T+CQmlComqZ|sqZsf_
zd)X>xB;lP=fwcg=Z6sG}r<1AmmHMj9f%;_nb6)Md0<g+@)_x*E1gcPge=ktcT>Cm0
z(M8M!8sVDttmNwes;Qv$`}(Z<k*5onwugKKAJbnq0rFdy(*E(TAONQ?m7$<<B=!l8
zWtI^&_yR|8V*Wz}c&mR@9Weq*qZHIGp@^?O$rbX~DOL(UT->nTvCNhPwcRv|4gyZ$
zqxe;NcV(}E?^@ZGU6hQ77t%&Vkf`G=eX%jSsnw8NxmINJDH!-FprQ&h7daK(qico>
zlY^I}*oIJYfO?x8)0}gRDy9JR?_qCqvvvGl!4dKOin#g&AvO;how<<ygwR(!bmtUa
ziX&5=K^QtRP%q$&!jbS-1_+Lcy%~qdGe5Y@Bz#eKuWR^}MEMq;CK`WB^*s1)V$r-8
zq;kLzZBEM7KK{oX%ii`%0VzU2fbI9SuL}58POFWCUVdN+BfgB(<g~T?w5+9mF_@kZ
z91@^k>tG`GU9n3|O;)3CZ8F!U=yw7lH=7D2aIMACrhrnR%6hHc6C#5~37tnv?`Oi>
zIYVmJf8Jdf3E(Q4=(RGe24^3{2rf5C+Gu<yV-YyA#^ZZZ5Q?g2(zp^-!2vt>2;2U`
zl@}`2yGe91mD}*ZX%T{h!<%@3gi6<Yd$ang+Y<~r*{R|&^G4ICW71!j(*}h=6f-xN
z4B<ctRaW|ymg1mr8Vj_z>4ZpK_t`B?OgwNgYNs0;LPFLcRvgofF+E(F;7pWQvE@LG
zG;WMS{zNE&^?e^vAZ8S>ZF6-KjP!`^ot;_X^79?!g|S*0qG`Wh&(~hdkUt3V18q>x
z?@}@|Rn}CDW6;yhxmwjx0{#A+U?8s`aT=3F7XhW{_fyz+;b3GHJPygi)h*ddlRYDC
z2qX0yl?im{$(GBf#VkGwd89RbFgg^n7PDZDXxzMEHo0ROPlF$=hRu&+e0~yX8^q+0
zMCkg81#G28+J*Is0S%MH*nuo$saJjm0*%%<z^3w4K{)$unHDp%Mg(ZKZk>Xf&PE%O
zZ@-Bio0#8MVg#a!&vd9DlG+xRk_vy9=*=BKWg$xDtT%scr*H1CzQE~n&-#`ibs~Tx
z7*IhwlrF2s@>vK?0o~r0;P*QgtV(bL<z<-~74osVd<T3Vq+D9ghtcRvPH*}k-c%oP
z!RSsV16lUy0h}aY=_s|yMRX{L;~vWUi#B~3O1C)K@=CEUOhE0t8D7GLsR5CjN<BdG
z%pG(y=BY*Zx`Ur$;7b`O#Nfl{pc>Pb_fYyFbbVC1dElI6y0qn$(NqVyeW&AOC5;Oh
zt0EC;6!K_8AtDEi#|C-aSfCK43%C#|sUW$J69S?U)d{=*dy`jNbu!V*NK)ob&;6S_
z^WBYLv`3F~WiEVRR?_PbZbm2B!GrS8T>=6rm1nB?hjG;!h<KJcLMtd5ePu=9k3?Yf
z4jS{Z#-OjK@VK&g!Z?kxqsY)`6fbJqC`cm5g`kXjxc`p`VwS|g&To$x7#e9OzgO((
ztq>#!5P~1RV@rX$yDX>QyKwVntSec})Pu?dksAW0buqidP3!~!!}#Vc?ndfwDsnQz
zu`^=&MIITzxYw&?fJ-c_6eCwWKM~()EGSR<#GEQRHlQ*6PB`jeGlT*ZtLD_r)|=q|
z6HrJmG2vlZ<zYe@J5bpOn8{z1`S2&>k+$Q*X6!&0(^z!0o*dhtBEsYaojkJ5Y)&9)
zsPy-B=!RUEIk55!wChkQ$+VEhnY;3;5H>L{suCL{Zm~JvGQvH)-w|*e80a88VletV
z10g?K{y*yo#Dv(vuav;19b$40*2GW=q4nCY{v7>&?BsHw?&a%{&&a2XfMak5wJ01e
z4r80V%qE+}G{>3CqUQiA*jHZ!V3ZTjFf`<JIIB-qtMjd0k6FYF0N6bJAZvYrNgqwJ
zIufhuaVaFXsPsoz3Qq-?tB*^+N4LFkM|3&|hS;nc!fEvBAj&=Y1i;R+N>H9ilYbq2
zKg{I3uB#0h{hSr!5Lge}XB#QllM;9Evg3XmkK^D)r9*tz>l$B5ZV2(gK%a)tQPK~N
z#ogSg46Z(a6Wu7{mgL`<aS0dOkV?i=A~z7UCwayD_yzK6<werd%O(sv=kIza#9E##
zSI6zVo-GD?HpH{PLl$0M@WfNJdk%U8B+hM=bEvWyhpq^p{(J1w_Z|3^LQ1&SHZxW%
z33ZOx3Wj0|4eBWqBxJ;$)yar&Vw)_Km{tkji^?vk=mR3R*TEY$V(asx@nWzgJD|Vs
zN_!DZvtti1SE52XXr#ce9G=4e6hxo)`Uls9L6ltD0_B<Oc~VXRn`hCME=7AJi_{N7
z@@0l(ryV&H8opt(Ij)x*1G*1j%(qwC9Ffc&x6(ltI|Qx%Tkp#e42{g}*AGz1^9oKf
zm-Ij6F^Jm^VR$;8$hUF0?|6uSb8Lit)s)I))jGmqWsT>ZpjW!pAKaL+x&|Om;Y-Qs
z-PPDOH6)5%75U9@XBp_9%>cgm1iA$La9vqJkt1ENkY}~C47A5cJ^m{yuW@bs!HjA5
zPgB=Yis_sC-oFq7SzOEh(x`<((ooZ(lmbwQb`=?L_|-Y6=B;>=5k@t8=Om@*Aae6}
zG!*lj%}+MEpK%2ndX3I#LgF8fXfc7aQM(Eq!}^}%2#kcMn@!F~jHLne+bEJBlSLTi
z_x@q4R>ued1HFQCUW*dlkwv4lJ{7I}>+9N}{O@hUz>6KeH>>D%g7@_W(Iy$CX5);m
zvo}2fFNzid!~ve#N@<mVZYdtO`+3M77Y1vX$-i$Noj=hl9(J>8v*8H~M{Ce2;uDRI
z%E`^2*s0E0>C9YB9-z~$?Htq<wlz@~rdthH6sWtj$}W0Zy7qYbCwdlCM_B3M#>l>l
zLj!)JnaU{zf|jqF5|AD7qk=p9y?Q)@Zx86ks%h{Of6bdbY&OKfb>96HwxToWPiPV9
z*T)r4M+O+wRvZ7k=USHG*Mhp!SQ+_6B+zIkV<$LMoy!nQQUzKEF^hKqMwA<)Gs+Lg
zVvT*MOexUhp1m?4IB-qzR>BRf74~shndIHc?v-bLd8>q91@el%01}drnB7<8i86x+
ztG8Hy5YyP`qkmX5wVn?BC1bD^>_!Pe5@H56Bk%hmNnpQOxHEA}ksxRC(h?3vyvesm
z)PVLgug==Cz|-T0)l~SId7t4*{YZ>Pku0P^#dmtghbQD`>RgTKV*;Jq8u}}$qS2T@
zLpRveslsKj6vo30)j~O?fq)NG;hyhlgJl=oO8(e*tqU0amifs7jb?LpsEX|U7tYh8
z97`SWO@w36!{L}wF658J-xUUPGztG^!tK5CE@-s#?`d-2rWQ((Q&f)ApZ=O&m4Fdj
z6-35FSoG8i;f0_H2HS#6b4m(*WCG3yf2!u#Q=snV6{gnHo9p-}s_2^gxgt9mYm=CL
z2`AY0t9x`Oi<KV`SP*v}IHhUJsxst)<9Yk~<3}>;!MWvur$jm#61k(Oz@>Gxt{I7-
z$*Q*Tq-v9j8k+UgYLje{e~BNUs(xpQ>I3SBR_Z`Uwg}G|q8pQ*AA?KniQhNqruA@L
ze+?25cv0Hol*eV$L5f5m{!=^O?E<c!S{44@u*!TWupsTYwxv{^)<BV`6BE*ziMkf6
z!thDXs9ZZacsx%|FG@`Lu=Z+ACPHd%z+;qc^1g#Z312Y1SL0<AxEV%0brnu76d012
z9LLN+G%zxZ_@Cm!WNaX;1Wy*tjxesuKWo)RGY|>SR4_-R>ChHxI2eLcAD7)+5ZxRG
z4;n8MdbpsjIc<+5mbICp2x|C3mM*A_Mmr=xluh0}r-_x26_I`2y%Mmw`$ZkahKGD)
zpk@;eh>(sD|D!iLw)bPApV1R616D@7t70#7iB<v^I?|lz4Pbnh#E5L-({c6>LER_<
zoP7?SmKZMr0d!+5%oDsJ{hw-*O~&z@+&J<)R9dXMVE{D7%~<+g*&NWcN20vgrS&n`
zM7+bC%nEEh@XobK;Iy?J6+Y3DMycoWZ9u6c^LK9}*RIe#*65qnfG}fuJhm7>#im$V
z$)^yS(~yk)yIeu0+UmgMsRJ}7V%!sY)uPl8B@2`DDth~ym4`dZyR83!+@@zw-9>$Z
z#evbC_TJx<pH9!^g%Bp4f3;exTd<O#9)`jzm}$WM@FcjqV5rp3JoctUSiQIfF0L~y
zvLum=Pi|7hP|ZK4*1(eOz(99S|NVRDGVbA?4|MQmF_Fyfhs1y&-z75e3)RJ)3_f`I
z;imk{_zmgBAPCgIx|HiFsJTSR*N$qzKv8}))GoXa8VX)2mK$5!WXcF3-l&Awk>Fcr
ztO4Y?pYml!6qaw$U~epk$MsyXHHl=ngm*qA3TxXxU$Eo>1HKLbqGBfn{$>>TNLA$P
zxCIVUd-E3+PE+s!Js-dT5V_g-JyZ}lHOa4=hOeYv`yWEKfBx6q1)qWlfMwW<XavvY
z;{<mijnqHoK=GibBW9Z^hn}JMnjn8>Z3=R|)P}&1`odV$00JPyV7kd^8k4B*UDZbh
zZt>_dbCa8qfTD)<{u}5`%>{NPl!jJ4J41#D9Fl`Ph(Sly<{6u>gK6A>+8EorrA9Wc
zn!6kgTwOF1IhGHUM5YAmApoxXtj`WPIh`$Y*d<}}{kIxWj?-=6VX3oTQC%)JX7p@P
z-BNshrxsd5Y{VpcUw(y;Prt`#PG!{c@DuN{LdVh&mkS#L(ERC_TDAdK{SB@R8j6}n
zpH=B^ZW#w4Bq``pB>nUVE(!6Ri{XHPwJGBIjM=;Dx(2q%kVCRFXrk$smnJ~PpI^SJ
z$HvRzeE1T0gp&z+=AX<R;CQXB$qa4P3YgLR5yUQq%h1tQj=zNbi;Ko0%qfgg+_xRS
zgQj;dF6hzkD2+|T>mKv{4nCmi8#3A;w`E(WbfULg|8Cwf#hjJEIFr0XaMu4t)6k*8
z;%?4lP$*RKEO2krH)Pd)+#ibqjD=^qO);Q|4Pz1BVoo8ch6)6h@ssSUxs+J7vrA!=
ziw`^|h!OAzXyQS3u07XW%`|;xuIo(BdVNO>-Hby-?OHwGvRTY|h1alagSEfucRWm`
z6o}1i#GKacpI9u%JB;RK?Vh(GqNOlc^sM(~FqOGuayJF|79k*55tq<>H5^<hIdGv>
z?CEb->8<>O*}X4=x3ky0k(;z%{GL=26DCYOQ~V8<XeKv``8iD#8xaY_g^3Voh;QO&
zr`Xe21S$M73C(w?h=zVZT+0StNVsRbf^<ItwDZT06{;<;y@5L?s08?xu~A+Wa}av-
zr-zihAYtshgV;oKL|3FJmbUT9W7LXCEfKX}RP31aI0z3>?WN{!q1}CspWhx5bzEOZ
zLiFWu_0ETLv0A2_B)QH%0GSyZScJnx0ZK$B*i!nSo;f)LlZ615K3%+llZWB<Qr9Mp
zUEZA)Q&XP+?k%;ktA$-QlQk2+-7gtK^U*eaTxa9$e~Nf7$SAlB0@SwCK$%q>f;sT$
z=kU(DK;y_4R#+=r$jsT^Ea0oiJG9|C+*fA3@oYKOhf!l|;)F%Rt06!4ut}C^qFv6K
zAIAheX<HIyH`q6A1p#Wn?c(PT*wnfWF8lihzsel}p*jyQCvYV_>gSa}7i?4Q@6yYB
zch}R$%i_e}h`<cW=2xHMg@MQ<8@=~9b8cGVl~XpX$YE2jpKF!DTv8^1U|JMti4TVw
zkgf<_e@!tW@x_9>T{{VIZQ-}RH(k$~HMMd#goh*H`93vulbY&WBR8fa4t_|Pq5v{F
z0L!0Kafs2<RXB!NJQ(q+0Vq-Yxb01y(_dZ89%g!bJ&od=7uoK_ChKQsfsSsL6N@hK
zTji5XK?wwFjFL$3-IE$W7J@2frZI$LO7^Feg@{{O5rK+hFP1rjq$?j=zeGmSP+E+w
zpyo7zOQ2CR7NsbEn%cGa&kUd?NWK?;!I@Mr7pWQpBvP_?i>sZ1fbknSaTdH9WsNi6
znr0N~%-Hqh=|>v5pRg6-gh#?d$uAVn`X=$tE28AgKP!Ha^G9-NauF7w#Y2>8XBTJd
zy60+Y)uD#1pMSOl*}`dmkD>2Fg~bWF)DtWPUeUmp0fD78k1Dw5#~?>_`?u&GKK~M#
z(YOPmqbYNo;Ih4^in)J;!Q+FU@MO?9JA5fn)KKh-=(^*6vy2U3B(X#JV;-_lsl7@=
z^j4~6RHR+X<43l(HmsjLuv%PKCpS#AAr~YRv!}kPD}0#$nkxWqXNHqqB9_07kO_~{
z!E1SPlbJ+89TC>6wRCe{ngFN!GcPyeQ@p%$K762|Ca*F*K5%JE%$V@r#N0NjohVxD
zDqwb2ZZ{>TcuC+nk-3;nqk@ASXwP0Z;x)yS;CPT9-0UuVvf0BtDlk(uU|gPU!N(+V
zF<!sti$Ui!e8WEL-on26Cel1PXTV}Q1^)flN#t-6A>>qo7i)O*4`pHKE_hPog{1|v
zW2C%`S~#7^V27KjV=I`fI6XPkQqN4qM;eKi`2tvHZ||x8_nTpMC@N4opZ^7dyU#cH
zV{igqnEFKH`@A>T!$gJOx!76w@naM%+evG>-ob_aj4>mtCsZ3>>keu`rx;-fm{09%
zsVXN)1Y~2&OvdYts9R8k%G+p=T%{&w7yAbNFJ6osaGIG?9fug<!f~I-K@nwl07}z#
zaMz`6AcPr`f_PFC{_7kWtfue<0l`9s_j^{|Zn2->QZH5|gCrgqpmX3?l?HF{Os75i
zZBD7zJ~4!BzX}Mdr{rPW|Cld}he7A@d+K^)vzf)r8yy#Vvi}Fl+wpYZ=E9bop3)LA
zrzcgkj$VJE_+#95e2U5kp^r;KI*#<SEm;ZEc%~=a8F1pCY{sZ^VbY+7t`uyk!1@}`
z&uJ7%h-s%>dNFm!$5_Td2*{pc?-~PW72O8b2j;|-f2hh)IZ8z1mX!+tru!1Ob0r|;
z$P#o?h4rPywa!?1G`<;*rx@6}A4}G1-JTFBzU>Z4fXo5!Q9rUbZ^JRuI5|>r>gPw)
zQ2Obmo1b6NT__MTglkQS0m+JYHDC(ey)R)%s*$!<3O<vxuEENubUJ_TrGdj_b(YzJ
zjrNVcUP*03lUfT1gDZtyhnWLcM)y=4ymEKvcJ?FkkqnP5MjccDbPb?=pMP>VJRYR1
zG~&NEr;X{E(FLzZ%1%i}qK*<1=FWPyymK<(Pz+kiG7l*|{+#Hmwaa74JDV#agLc#F
zoQPOimke^jM9@fiVJKSehyLu4C=T!ewE+VFrs=7}^qJ^3MR3C!gmpJy7C~q&DX92U
z%TA=9LkRq_oBQ@G6Olk6<~`h)h#E2)K`hnGFqI$7F#|iUtw;en(_u{<_T$d#ti&ok
z7b%#qubCvGgxmM0e^>V4tF>G)eI)xTHARn%jN<>5oPH#D8y?yJ({f>%F~^YvpwoLX
z;2(0qC3ZSDSDifSx-y49`$JP=@s0H$$Sj{IWZSH~IPzMZIXu$3lrh5ww}zgVbi*w9
zmejw^hPWqzT1O_;o?V$2o$%&eHKkpF+p8XE6!9If;ecTm1^19niO#>ro=M-P%|{nS
z<81SD6!dCC@hYVb-2<F<`*f9o5_t4UdFVVNK~QrQk!thvEid|Rx!q#B*XysUN=daJ
zWJFx+2E!fwvjB!X%rGCY3eGD$l(%zfy2MV18htg-0m#%;Ent_bKlt=KqG&6f!5l=&
zBZ=RAWhh)Ls&N3<N$xp>r;O-0L?miG3TF%jA%1@zQc-?_(Eo$I=d0>(3AJtnBBNCt
zY(;o7qcH%iwWcMhfCTlNd+K^69V~Fk#Drq{XR5Qq`$X`+etdB(TeU9Bss;MiFxl8-
z6#IU<KdQT8D%pS-;a1~Pb7z}M(eQDN*Q^S$VFB)pumA9xl?Txs)MAFo^0@cZv8hhq
z=66&*TmWow7r~+WH~mqLFWS8DvroSC%d?tTl4*}`NYnyPwrp>%mKq8*>NdLgW9bMb
z0XI@Gv3GlT-nD#;!mQC4mr+T=+zGuJsL$I~-vGb3I+IH_$4#M@o8VRnYbw$=SbwWC
zqdh1i{?R8u6iK++PudR~Z4T>^j5(jll`;)dLht{oQZ=s~o+d8!TJ8hd;H>>87rs<>
z^mEa$_@XFf3d4lMXH?6&_R~2%$D8T=Z%}=9tS53M{nxC-FH-&kp|msp&qYqRqY$6r
z$vpZeo}jVTehnKO8;L6{Zv6mK&_+z4W5d?-T9Yc~UiEwR{;SHmi;6E5<G(-U=RQRZ
z!;v)=|2#^~`b&Kc3@c4cq8a!Es{2bP!igDBq2U6}racji&$)#iif=X6mOWo($^lc2
zZR_=5YM4$iqrA^*74rGl#O%_Blr>BBYLs6fG5>JrZLlEepFqGWiMT%-v*qLw(2hjw
zm(({A|F07*HJ*sI8Zk_~ku}%4QBSi#oc07}U>lLZl>u7V1MJeyUc>!680M26G<-;x
z2e?7`Ds3Y?D-M}Ld=ddIWzkPC+MiKn+<fU*3=r(0@brl#13nCvt<21iN;DCE<NtWy
z2xWj{f?bB1hy0-<E90Yjxnt+}*fA1O$dQp`xXbn@V!-~Err;7CS}Y``WJ^6WJNEOd
z&w?%$^ku%ZAqO+}s^7!RNk+doC2l~wk8FFM7jzL6wf~SH2sarHu5Xs6o85MZuv~P*
z$7;tXM-mZW=kGy<qw@yOhGc;_azsRfn|h|&U~`Oue+J>FZ9nt6)4bqwGkq=|at!P3
z@sn@dGPiTbZ~i1Eb)kv`k|+1LvLQ-JdCB4PSF-gTybc^VWGI5oA=3lwob*Zv0R<B^
z2hzL`z}~Jr7&514Z2MV};Y|!XxcBekpA@g;OLztbt6xKy9gz%}eg0jMws?6tg;y~Q
zK`pKQPktw2?Cdlk<qn~O+)LlD0b`e_vM89D2$^D~)!;^Vz@|b`^(g9GAOm(Uo&@eI
zWtMUC-cg4Vb!-!<7jML~i<q6#?VG+v8g9JS7dxF6r&C1m)|Wq+u_O|t$<yOjz3ur^
z#qBG2Q-MnDy}nwPExsS{UQh0XG2(G$=H6VWlm9m6MPAYbddn#*_e(dY(+cni^%3Fs
z7IaWMKl!usAGY9L1d{P_w849WK;Z9+GLqUD8Ab!Y&d_{z(rtghN|eK73P#L^+k<Nc
z3oAGP4!~H_3xpUFC7?WP*$fMTXga2G0ylZVfB9Xs?!c*<f4$<ku0#?kc^l6*S~5A-
zvK0U@i^O-d?RW@?ub4toig+uHGjSTTinT^bq`|KMKT-V9VL*?slXhw3HRfMV&YnwN
zF3#%P`XYdbMb76huHDLlU+ionaWW}Uk&id8Z*%SX84~<hvq9^~0Cy{K(p#f4`0l@t
zm<7`VoGkbI?!RS19e0OcGKCD(E(zd(tGblZzQ<f~uwrX_^ldq-=MgJ0eU9hF0_eN1
zQb&Ttz%Kmd9>`^29L9{-+y3!2Z8kquT^ta>FSa@z1kOA(uF!=rL>Cq!C=DH_FllpT
zPW0}e_76(6DgNx*b2HYqJ4*F({SzndviTT*n8a~_^grx=UiC#|A<P92&@q0);4m48
z>lP2?Ar5;Rl_D(Tx{8FCdgkeK(6kFY#u{Mm*ALa~UMOw3!QR1h)Fu-D<tes~hky8G
zf<$+`K%(Qz?V>>39q^(H%9rq`{E#vARTF*ERF$P~M;#dK%Q89BU0V==;6)S=;rd}A
zmH)N(mn=bYM%5RzIae6~T^|Si2}!T+u}ws0A;icduCvi4axyWI84Tb~1WvRg`a?n2
zY8<=7P+`RGymw!R!<y6npjqVr(Lox;*^UN|5)a6#o6?j@9LDK*<nE6W6)R;+z@QGR
z?E_ITqaWp}pc5cM1x$!^RW^o<9T6=imaFLBV1D`GaLis_^076knV%x^*NnY#l%RNX
z?~^h|-lD5NAgTBqco1*`_56ysH6w}qle>;NSo2)}4G)E-UAim(18HSWeiY$(`K4JU
zx0&nO$u1Sen<Yv&B}CAo+dDj`PNyQKdf5RSK*GdX@i)yYlu`YJ^Hv1O4OmXyPOqIh
zt4V}NwZ#eEUSJEJ{Oq*~2&nz}tyt^iDHov6eoemRE*3=atN4fkT&sy!)V`89xqUxA
zPx^27D<W6r;va0#SC!u{aAHSuH{6}APJgMalQ*R8D;y{+w<Db9egM0=yGaCxXXGO7
z2s{kQ9;&hPJDqu#AvGTkIJ%pTUcSCmx@p@qMrzr~btSN!p0x@Sit-fMqLf53wz)e7
zk=jB`9>!9w)Cj?$u{bV6<C{y<3YS%FYlZ9AqnogOqjchpzx%NonbNkSmWuuWbfa(>
zT1nzX=rN1xS|wwHR04D)Y*`%V?mNR92nif;Yw&3Kd0?3cxnW&ta~Vf&W+cD~y;slV
ztH8{BSJwGnMmkPJa_Js{LH|YMMRRis(<xla43%C~)PZx*utFL3l3uMa$zc-_R`MD4
zAJRemo@p_R?*hF5p@$KK9sfL|4JFZp&1CC=*Z%6rnlb;&<kCNIGPWV>0i3XiL=z*0
zYrkOrN(0021-*1LH@L=xBt{?%d>}X#E;?)kII0-Yg|=wme<iCZD=fpKDarum`nN(K
zE+dPm5!+JbC7`N(T~zq$CZ^MjgbTlbmx-N2VKBa4`TYlV2uBJKYIiN{jo!kpY0JbV
zlm*C=xb1%hGy+H>oKmtAG2wlKapPtB#&*rC&i6*@GZY=BtlLPxp10LT1_1TS%#>%!
z`B>7p5Gh^S<_b{sqpRwF#_{Pwka+4(F3ICQW`CB^7)Bhh@TPxd5FvhCJ)BLQLphg<
z`J`EuB@WkI!_xa*ajJ|q1xQsmISpl`5M08ui=4#G>#$^`TI9mA$|ff*_XrUtQ_z-y
zdnK~`7s&3;GPxiP+YdfYSm%tmEzi`=QC%wPQ?^dR@*HFQ?rne){I^%-?}c2kRUL5i
zp_SUt5=pNO&<9K36Kw%8p>g!oY05Kqh@YpfEpqy&?LUkRqri8&e6K*+CPR?}J0gZa
zDcFxX3Q5kt?v{I5P;i;K_8$E^z00p~sbst$W07!TXIH|n{+t^JT*_MHq+$LQzySGF
zw!M1R{vzW0A6*V}L;{|THWmK5@R~xDfg85zez{cbwFPPC9b))Fiv^T|yp&!?{gmB>
za41BG<>r_(kf^Bgdh1V2SwY8W<00=WxEhp`2Ho8XG~5{=L$pBjSKjoy*~;noSv_GI
zjvP?8cV21@+%(3B4iWd40Wx9Kb*y`K4H4q4^b{r!JIzUvo2#>;0d-1IOX6Wb12RN%
zs`vX}9Qv-%aU6KK5K9u&lyHhbd?$VV=>07<2}Mc6%qmK1AZ2D_byqb&V=mF8*nPYP
zL9LlO@gV-a$g_mdmfDD1N>;H0luN3J?iZx5Zx`RCs12nt<9}Ma@_#7T_dgh9n~;4w
znr2E4vS*1bW0}EdkYqddEyUOrF_U5JgA*E&v1ex_lR6|ZcG)GzmZVLSj#T*EegB5<
zyq+KCr{{G)_v^avYk9xl*TrR$2t()fgg3k;s{d)ggER{)a;U7hLuU(n1f|ojPR#oO
zgaN9m^UhVUH&Z^f4H%Zy<|h1%MzP(!7it)c!;Ku-TR*!cwFF+|mYL>3{@%t@*J#}$
zN+pz({V8<{Mmg}ntD`HNF_tv+^&sFqC1OoCn{C|c)b_*Z(IuIi2QR#Qwx$cVHM7-T
zErC6cjqz7rKCF!Pv4smfERwr`DzPibmKGCVW3YIp^Ryv=PsLrY_obg4J>5ARSgnW+
zoikupW`o2A^l4s*f6qTJb0KOy0|I939`luoxl$$|s`X^+Lr3Z_8BAzPOe*o&FA-}M
zOVjXjm8H`ITB9GuG^2_pm#czxHp+@w8vK9L9kho0eZ0Z79ChpD1%-EN1J{1Ed<~Ok
z{4m+O#;G;%%wTH{fE{3Xt=LeFKWTXS_WcL5N%kEFIu~Pg)(<qKd8$(MmZA?(BTCGq
zDWp6Z7I<th6$gYAhi})v&fn+`aTu=}VL+0Q?fCFM0=sLchl$RJwFInm`?+|HUf5d6
z(%pZ5`fJ<GDk(oZ)oE?vUM+TZy6vJ@Zmonj0zFnA`uX9i>l4p_<gh_ou9gy+?YBBy
z{U;&^nJ?iNT{5N%zPv#>O6N2g>c{{581RX1Bv_gIsuyPQ&``3ydP^+?Z~i?KDST&L
z>&f>uA8{$7Oxim>(KBU{LDNc`*vSgIf`G4?o=<lBv;`<dka{h>qn-c`-`4&@CTYPp
zeyK(0kBFMBvoqu!GINda8o845czdVwoJ!UwCc>!EZ)FpSxTd2-EzIevDlXDT^6g(;
zum98a%0IF*-wtX+HCMKZRe<JsT9GSsZ_BWmZ6*7?)y~AIJ*5GM^MUh%!zNTPXa<s7
zfL%VC7m0T+IM07-?k|P2c6H8Lr#FHqg;l?AxW$d<ddcnj(B0ivldrE^_~*zvK6cd{
zZo>-<1>73uW7(<JTjwxS0!!c0vLkL^M4$-@Obx*?ZHd++)Lhz2T6bB_x`gV;8<Dz^
zNCA*eT3juMRh@{kv~3wf0<W3XD5gnw32W_#5}BMv*pNH~4?#XlAq3~i{1DvW?wrKr
ztSi_=L9>|KT<6l}+iK))EhdCdj}Nr+JKag97WRiHI`R(H_<4q2J-unoL`BDYjdr}#
z(7j}T-6)F4b~!3xOMOtttpkI75A*fQJomIUn)eXU4OW~;&ru>^vaYv6ohCq%`~eQ#
zw5+o>#<lF))rGaa>}`VOWwqr~@*A@r3+-Y%la>wj89!x!eaGp2c0F5dZiU84`Pq)5
z5+8~Y6p|}WSbISgq-U#Pd|=?#b8>q^MZ96v`Qmi%lNee}FPP;eTx~OC6o^yAWV~Ec
z8Mz*@6A-LX(K?#WxWl$9QNTEp<hzlE+Dcex+WcX*@AQNY=_*EtF;X7gI6CFUkw3#p
z^4vK*G!I@3KgnOF&$`};={I35y4sG|fF{<uMH<Kx5f}}MoWE(fjpO+sDS_YBoJhBG
z&On3HBQu=jDcNNX=Pw;?<Cj}j71(PkWj7Y7tC*57qQT8^>4|QkY+wh%n|dLs8sE=8
zJ<OGl(e{Moc%adaCk<?fyCPaI?Peyb9#ER5fVlf1RhW7&6&PjzHfdp-#M~q?KM+QH
zIdcCw&coUh8vA$%Viv%K;7N$jJChEYFq;X98*p*|-k3sBH_wE_Kg~LT`fq6jv9aAT
zIC(AiUU8;tg7B{QFVAb5`jg&~wDA?A=E)Sf3RwfLGnsz6!o6+y#(YgiL-omke4XDX
z<GiwR61JZ9Ukhp;z_%cUzZtnA{QKCqq`qr+euo@a<(J@+`)6$OjJH=Q%uKgVVbI1H
zhviLY*-`5Mc$H?JGYKZ_{<#<*vbEJ(-Z+;&8_E~Y{c3ACm5QH^(u_bhp{UPSS6!;t
zKS^7yMrKUd`*@9j7<fJQdcgRs^re4;O`1J@K7Rbw3-KVKMb~u17$Ty(f#`{<+T7|X
zdGx4Bl~=i)+C;4msD^0`5Crh+%Dlo$gk#3JD{GuP-Oy5T@K#k9*OvKMekWI;C@N)-
zTw#&W!fLd&ZKEx_X@%k<lCHf5C9i?~oaH4-kvu%9t-NDC?q*^)2gq$J&Il)tLKN>L
z%MaB#fsmRAoD{2_J~(D+(qt&<+{lX#5<^SD&{AS(MVOR;bmR$kcfnOWIgG_#q9TMX
zgw(j)2J^25wv0fA`T791D<QkGKm4MlVJSXe+@h>nM<$<T-|7>s9qOvirkI^PtZZaT
z;eoS1iqp+|_&HWOS|-S3rvEUl8`h_KDI6~ygcKEqXex@Obk%_oM(MN?5s}SGxU!i*
zNE@%SK<WlUl#W&m$bWR-{s1WMAKNFrX7;Uac*X#q8(S0-O5Yn|rvXyqf9~&dy@Im6
zd(=V6%%t*RF`#9HePyAYZjGWWg=<?)_<_a3)b5sm)3a_@zYx(Tp4go&B*7&^Op40}
z&GVro=TU&v$u5oZg*`sUM>aa?mF+7J6M}hOc=?Ec5J(02-|wuYcg4t9aT-BO+55cM
zFQ%b5wpY%&d6dTWj?<i7VpfAK+f$-Ni4=?>5#LB4>U>%$4W8w=;Yq7PYO1Nw@ot6l
z#ycG6=TXnTlKWJ1O@&tXI=V-EluC+I`rF%ZsHq{c!a6=9j1LY-ae%Wo!2Opdt>cwc
zm$(C5iul(9hlU!%K5?00xGtHfO*X}VJ<9qp7cG9AN=$uywr5pD9xAb1>Bzh%f(+cT
z*TerY2T3Bw)jbM%<J0gs8cvsjDGfh&yXy}JtubL=vfTk36c7MV2`Z<f3ql)yr3WGy
z-i0Yno-1+=Y%#0<?2>Bzz^`cdx?vu)C2fmJVINTcZC_w7M8pRhW9pQZ)MjIA)=NTE
z*EYHm9o)B4r$nnAcrWsQu_3XYaued)U8K7rzctUJR3V7*??FeOc~%joH7}k?E;y;{
zOIMk-{biqiLT%RRV`!~|(qeqWe0YoGt&2+^(Enz^4ueDs#=YM04mi&KWG#g`Xmi?v
z4}RZ#FHQf--yU91VOa69Fq^Z&oWi2v*?WGEDh5cP?xWICT+t>(KA+APg$JZ(8@X7E
zlsQx;ZQ30Wn}+xfYIXk28Tv{=SEcy_<VtL8<Qc7ap~&rYXWVHp%Rv!D!+MRpe|IFz
zGdkH)ALtD%Ru=jB?n9Rnym{`73=x^zG!<+(gq#k2=Hj8*L7fDY(ksmda4m^1Mhq<R
zSFkcGf?niWOEe#ivujp(LQdmGpg%z>);3mcYgBgEz3L^uDf>lcd$qV<&<He9tj1dR
z0Wir)M}rSiE2|_FGk=dAg?nDdFa#V_vVBKFz<aVsx`WK60%|(vRD0{qWvJ3!iU7br
zFm*QJoM0XO`d40!W&j6MQ9nllK?UPPqz28_mX(&qv*27=Js7fw!m&i+K=-S4SvTnx
zP@C_+ouTYE-FbI%HbmO{J=_#s4zoYQgnK!M>(SBpMzJa-VKSlr6Di$$HH=jos_Jpe
zj2lpxC%r94#)DFptd&8P_Qf|ozDtHkJ|<dbsoN4Pg`b=rPT1pak;iPYgeBdc{MRz_
zEKU3B55$Iljr>K63_^(r;&`Yw6c>8VY7!9q0UVX5V5}8u0$f^ch<f?cnM|-M&6pQ&
z>uTWgz~c{0qxEcSPN$m-u5-4JW+Alr@@KN9q7uH-+Bj;0Zg|pB57ew80Z8MdYQSAD
zX59m1O@o#*J*#V!2bb*?@dP89SIL?zGZ)bl9OVgkd`#eS)(Ffs(t=`Vl&lq<saSb@
zY{YV^j#B!-n1MZXUhqiEgWjPDLe&s?t7~SvyZRg2O<ddz0oKtCei*;gi`nLO^}Jka
zab~ym{t;{4XTuM9<3r89D)gjx3=23Da3h28ncH->vlxg7jjakf4^F>zqUzjk*hN?m
z&3W2Ag;j9|7P*&zPW*ZxrVeA6VFEE8pn*MPMbff@e*p)C0e<z;9AbqQ!2q2FC<e9g
zXvh8NEk{R<k7Vs-F!C{OHpLlfd;D^Ql4g)tpq{`>`<X#YD-#AbVTOsAK?$OEjuDkz
zb)y4*lnpC`+CXws;?MgNVE`I4_==PvYMd@nVZ#;*PBhObI+li%Z(fK{0p|cfr*`%Z
za%_~cMzd_gxWQlIxPn*K?J|7$YlLH&Ksl}pP0PED(BektO@y>mR1FgtjwiNVYyv*D
z-M`htM$P|2{UTfjh#&0oE)QaC&BMW$rUVvgpXKP^*W2(91f9wN8p+>hM177E@scs7
z5svXP>pK(fM|H~|Z;$ADvpf^@&G(C-HOjcah{{JuV<*Tb`*Qs3P{7DhR>OEbBy`hj
zal<C?To<c68C>NkXbvOBgI7dwT>a3l#KDFCala4Q^G3`gY6oORPQjs0A1?%B<q|mX
zriCMP1n`SMGI3JbEXzkA6_EDs_7XX=(uvT0gWl1MTm%nbipuT^fugq{)cF4%HB9Yx
nmi#fo?<Wlhmizzy|H}~vz53GklA<qz5b#5rVNp#c9)$k^nUYmO

literal 0
HcmV?d00001


From a9435b4e9571b0d487a33e0e7109644ee39b6699 Mon Sep 17 00:00:00 2001
From: Ben <bealfasi@microsoft.com>
Date: Mon, 26 Oct 2020 15:04:56 +0200
Subject: [PATCH 13/44] Update find-machines-by-ip.md

---
 .../microsoft-defender-atp/find-machines-by-ip.md              | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
index 86fc568017..a930d0de5a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/find-machines-by-ip.md
@@ -66,8 +66,7 @@ Authorization | String | Bearer {token}. **Required**.
 Empty
 
 ## Response
-If successful and machines were found - 200 OK with list of the machines in the response body.
-If no machine found - 404 Not Found.
+If successful - 200 OK with list of the machines in the response body.
 If the timestamp is not in the past 30 days - 400 Bad Request.
 
 ## Example

From c5ec2ab97f5a5da3a994aee44cc61fb8bd958989 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 26 Oct 2020 12:35:57 -0700
Subject: [PATCH 14/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...age-updates-baselines-microsoft-defender-antivirus.md | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 2b26a44de5..db120e40bf 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
-ms.date: 10/21/2020
+ms.date: 10/26/2020
 ---
 
 # Manage Microsoft Defender Antivirus updates and apply baselines
@@ -23,7 +23,7 @@ ms.date: 10/21/2020
 
 **Applies to:**
 
-- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559)
+- [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2146631)
 
 There are two types of updates related to keeping Microsoft Defender Antivirus up to date:
 
@@ -69,10 +69,7 @@ For more information, see [Manage the sources for Microsoft Defender Antivirus p
 
 For information how to update or how to install the platform update, see [Update for Windows Defender antimalware platform](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform).
 
-All our updates contain:
-- performance improvements
-- serviceability improvements
-- integration improvements (Cloud, Microsoft 365 Defender)  
+All our updates contain performance improvements, serviceability improvements, and integration improvements (Cloud, Microsoft 365 Defender).
 <br/>
 
 

From a55333fbda5dd615d8495bfcd7dafb2225d169f1 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 26 Oct 2020 12:40:07 -0700
Subject: [PATCH 15/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...es-baselines-microsoft-defender-antivirus.md | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index db120e40bf..a758ef64e1 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -74,6 +74,23 @@ All our updates contain performance improvements, serviceability improvements, a
 
 
 <details>
+<summary> October-2020 (Platform: - | Engine: 1.1.17500.x)</summary>
+
+&ensp;Security intelligence update version: **1.325.x.x**  
+&ensp;Released: **date**  
+&ensp;Platform: **4.xx.xxxx.x**  
+&ensp;Engine: **1.1.17500.x**  
+&ensp;Support phase: **Security and Critical Updates**
+    
+### What's new
+- item
+- item
+- item
+
+### Known Issues
+No known issues  
+<br/>
+</details><details>
 <summary> September-2020 (Platform: 4.18.2009.7 | Engine: 1.1.17500.4)</summary>
 
 &ensp;Security intelligence update version: **1.325.10.0**  

From aab00aa3a85b6b611d028629f4d85f2d48a583cf Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 26 Oct 2020 12:58:55 -0700
Subject: [PATCH 16/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index a758ef64e1..452386c7e5 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -74,11 +74,11 @@ All our updates contain performance improvements, serviceability improvements, a
 
 
 <details>
-<summary> October-2020 (Platform: - | Engine: 1.1.17500.x)</summary>
+<summary> October-2020 (Platform: 4.18.2010.x | Engine: 1.1.17500.x)</summary>
 
 &ensp;Security intelligence update version: **1.325.x.x**  
 &ensp;Released: **date**  
-&ensp;Platform: **4.xx.xxxx.x**  
+&ensp;Platform: **4.18.2010.x**  
 &ensp;Engine: **1.1.17500.x**  
 &ensp;Support phase: **Security and Critical Updates**
     

From 7d7589a9f2337384defd10c26ebe5d11be4650e6 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 26 Oct 2020 13:27:11 -0700
Subject: [PATCH 17/44] fix chars

---
 .../microsoft-defender-atp/deployment-rings.md | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index 4825c6f7ed..93de514d52 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -54,15 +54,15 @@ Pilot | Ring 2: 50-100  systems <br>
 Full deployment | Ring 3: Roll out service to the rest of environment in larger increments.
 
 
-## Evaluate
+### Evaluate
 Identify a small number of test machines in your environment to onboard to the service. Ideally, these machines would be less than 50 endpoints. 
 
-### Exit criteria
+#### Exit criteria
 - Devices show up in the device inventory list
 - Alerts appear in dashboard
 
 
-## Pilot
+### Pilot
 Microsoft Defender ATP supports a variety of endpoints that you can onboard to the service. In this ring, identify several devices to onboard and based on the exit criteria you define, decide to proceed to the next deployment ring.
 
 The following table shows the supported endpoints and the corresponding tool you can use to onboard devices to the service. 
@@ -76,13 +76,13 @@ The following table shows the supported endpoints and the corresponding tool you
 | **Android**  | [Microsoft Endpoint Manager](android-intune.md)               | 
 
 
-### Exit criteria
+#### Exit criteria
 - Devices show up in the device inventory list
 - [Run a detection test](run-detection-test.md)
 - [Run a simulated attack on a device](attack-simulations.md)
 
 
-## Full deployment
+### Full deployment
 At this stage, you can use the [Plan deployment](deployment-strategy.md) material to help you plan your deployment. 
 
 
@@ -92,7 +92,7 @@ Use the following material to select the appropriate Microsoft Defender ATP arch
 |:-----|:-----|
 |[![Thumb image for Microsoft Defender ATP deployment strategy](images/mdatp-deployment-strategy.png)](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)<br/> [PDF](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)  \| [Visio](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.vsdx) | The architectural material helps you plan your deployment for the following architectures: <ul><li> Cloud-native </li><li> Co-management </li><li> On-premise</li><li>Evaluation and local onboarding</li>
 
-### Exit criteria?
+#### Exit criteria?
 - Devices show up in the device inventory list
 
 
@@ -103,14 +103,14 @@ For Windows and/or Windows Servers you select several machines to test ahead of
 
 For more information see:
 - [What is the Security Update Validation Program](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/what-is-the-security-update-validation-program/ba-p/275767)
-- [Software Update Validation Program and Microsoft Malware Protection Center Establishment � TwC Interactive Timeline Part 4](https://www.microsoft.com/security/blog/2012/03/28/software-update-validation-program-and-microsoft-malware-protection-center-establishment-twc-interactive-timeline-part-4/)
+- [Software Update Validation Program and Microsoft Malware Protection Center Establishment - TwC Interactive Timeline Part 4](https://www.microsoft.com/security/blog/2012/03/28/software-update-validation-program-and-microsoft-malware-protection-center-establishment-twc-interactive-timeline-part-4/)
 
 
 ### Non-Windows endpoints
-With macOS and Linux, you could take a couple of systems and run in the �InsidersFast� channel.
+With macOS and Linux, you could take a couple of systems and run in the "InsidersFast" channel.
 
 >[!NOTE]
->Ideally at least one security admin and one developer so that you are able to find compatibility, performance and reliability issues before the build makes it into the �Production� channel.
+>Ideally at least one security admin and one developer so that you are able to find compatibility, performance and reliability issues before the build makes it into the "Production" channel.
 
 The choice of the channel determines the type and frequency of updates that are offered to your device. Devices in insiders-fast are the first ones to receive updates and new features, followed later by insiders-slow and lastly by prod.
 

From dbcbd9f0da293bb11e367e0c5a5ba854b748774a Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 26 Oct 2020 13:31:45 -0700
Subject: [PATCH 18/44] udpate note

---
 .../microsoft-defender-atp/deployment-rings.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index 93de514d52..5c91f850f6 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -69,7 +69,7 @@ The following table shows the supported endpoints and the corresponding tool you
 
 | Endpoint     | Deployment tool                       |
 |--------------|------------------------------------------|
-| **Windows**  |  [Local script (up to 10 devices)](configure-endpoints-script.md) <br> NOTE: If you want to deploy more than 10 devices in a production environment, use the Group Policy method instead.<br>  [Group Policy](configure-endpoints-gp.md) <br>  [Microsoft Endpoint Manager/ Mobile Device Manager](configure-endpoints-mdm.md) <br>   [Microsoft Endpoint Configuration Manager](configure-endpoints-sccm.md) <br> [VDI scripts](configure-endpoints-vdi.md)   |
+| **Windows**  |  [Local script (up to 10 devices)](configure-endpoints-script.md) <br> NOTE: If you want to deploy more than 10 devices in a production environment, use the Group Policy method instead or the other supported tools listed below.<br>  [Group Policy](configure-endpoints-gp.md) <br>  [Microsoft Endpoint Manager/ Mobile Device Manager](configure-endpoints-mdm.md) <br>   [Microsoft Endpoint Configuration Manager](configure-endpoints-sccm.md) <br> [VDI scripts](configure-endpoints-vdi.md)   |
 | **macOS**    | [Local script](mac-install-manually.md) <br> [Microsoft Endpoint Manager](mac-install-with-intune.md) <br> [JAMF Pro](mac-install-with-jamf.md) <br> [Mobile Device Management](mac-install-with-other-mdm.md) |
 | **Linux Server** | [Local script](linux-install-manually.md) <br> [Puppet](linux-install-with-puppet.md) <br> [Ansible](linux-install-with-ansible.md)|
 | **iOS**      | [App-based](ios-install.md)                                |

From 120045609b25dbdb9c10c57c3e2ff507179f532a Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 26 Oct 2020 13:54:19 -0700
Subject: [PATCH 19/44] add topic anchor

---
 .../microsoft-defender-atp/deployment-rings.md                | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index 5c91f850f6..11d30fcdb4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -30,8 +30,8 @@ ms.topic: article
 Deploying Microsoft Defender ATP can be done using a ring-based deployment approach. 
 
 The deployment rings can be applied in the following scenarios:
-- New deployments
-- Existing deployments
+- [New deployments](#new-deployments)
+- [Existing deployments](#existing-deployments)
 
 ## New deployments
 

From 13818943279cb8a0be6c7763aefe3b780a4ef115 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 26 Oct 2020 13:55:09 -0700
Subject: [PATCH 20/44] add keywords

---
 .../microsoft-defender-atp/deployment-rings.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index 11d30fcdb4..b9a48bb7c4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -1,7 +1,7 @@
 ---
 title: Deploy Microsoft Defender ATP in rings
 description: Learn how deploy Microsoft Defender ATP in rings
-keywords: deploy, rings, setup, onboard, phase, deployment, deploying, adoption, configuring
+keywords: deploy, rings, evaluate, pilot, insider fast, insider slow, setup, onboard, phase, deployment, deploying, adoption, configuring
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
 ms.mktglfcycl: deploy

From fccd7ef17ae8917c689f40ea2b965e9b829240a0 Mon Sep 17 00:00:00 2001
From: Peter Smith <pesmith@microsoft.com>
Date: Mon, 26 Oct 2020 16:26:12 -0700
Subject: [PATCH 21/44] Update to include the 2004 'Direction' value

We added a Direction value (inbound and outbound) to help a bunch of customers
---
 windows/client-management/mdm/vpnv2-csp.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index df6b648e6e..7196ffe3dd 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -240,6 +240,16 @@ This is only applicable for App ID based Traffic Filter rules.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
+<a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-direction"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/Direction**  
+Added in Windows 10, version 2004. Specifies the traffic direction to apply this policy to. Default is Outbound. The value can be one of the following:
+
+-   Outbound - The rule applies to all outbound traffic
+-   Inbound - The rule applies to all inbound traffic
+
+If no inbound filter is provided, then by default all unsolicated inbound traffic will be blocked.
+
+Value type is chr. Supported operations include Get, Add, Replace, and Delete.
+
 <a href="" id="vpnv2-profilename-edpmodeid"></a>**VPNv2/**<em>ProfileName</em>**/EdpModeId**  
 Enterprise ID, which is required for connecting this VPN profile with an WIP policy. When this is set, the networking stack looks for this Enterprise ID in the app token to determine if the traffic is allowed to go over the VPN. If the profile is active, it also automatically triggers the VPN to connect. We recommend having only one such profile per device.
 

From edd51193c80009ebccf4b168c56763eda51fbd0d Mon Sep 17 00:00:00 2001
From: Peter Smith <pesmith@microsoft.com>
Date: Mon, 26 Oct 2020 16:41:11 -0700
Subject: [PATCH 22/44] Includes the body of the updated Windows, version 2004
 DDF file

We've added several new features; adding them here. This is cut-n-pasted from the downloadable DDF file.
---
 .../client-management/mdm/vpnv2-ddf-file.md   | 225 +++++++++++++++++-
 1 file changed, 223 insertions(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/vpnv2-ddf-file.md b/windows/client-management/mdm/vpnv2-ddf-file.md
index aa531d9602..d29d533690 100644
--- a/windows/client-management/mdm/vpnv2-ddf-file.md
+++ b/windows/client-management/mdm/vpnv2-ddf-file.md
@@ -19,7 +19,7 @@ This topic shows the OMA DM device description framework (DDF) for the **VPNv2**
 
 Looking for the DDF XML files? See [CSP DDF files download](configuration-service-provider-reference.md#csp-ddf-files-download).
 
-The XML below is for Windows 10, version 1709.
+The XML below is for Windows 10, version 2004.
 
 ```xml
 <?xml version="1.0" encoding="UTF-8"?>
@@ -32,7 +32,7 @@ The XML below is for Windows 10, version 1709.
     <VerDTD>1.2</VerDTD>
     <Node>
         <NodeName>VPNv2</NodeName>
-        <Path>./Device/Vendor/MSFT</Path>
+        <Path>./Vendor/MSFT</Path>
         <DFProperties>
             <AccessType>
                 <Get />
@@ -830,6 +830,33 @@ The XML below is for Windows 10, version 1709.
                             </DFType>
                         </DFProperties>
                     </Node>
+                    <Node>
+                        <NodeName>Direction</NodeName>
+                        <DFProperties>
+                            <AccessType>
+                                <Get />
+                                <Add />
+                                <Delete />
+                                <Replace />
+                            </AccessType>
+                            <Description>
+                                Outbound - The traffic filter allows traffic to reach destinations matching this rule. This is the default.
+                                Inbound - The traffic filter allows traffic coming from external locations matching this rule.
+                            </Description>
+                            <DFFormat>
+                                <chr />
+                            </DFFormat>
+                            <Occurrence>
+                                <ZeroOrOne />
+                            </Occurrence>
+                            <Scope>
+                                <Dynamic />
+                            </Scope>
+                            <DFType>
+                                <MIME>text/plain</MIME>
+                            </DFType>
+                        </DFProperties>
+                    </Node>
                 </Node>
             </Node>
             <Node>
@@ -1625,6 +1652,76 @@ The XML below is for Windows 10, version 1709.
                         </DFType>
                     </DFProperties>
                 </Node>
+                <Node>
+                    <NodeName>WebAuth</NodeName>
+                    <DFProperties>
+                        <AccessType>
+                            <Add />
+                            <Get />
+                        </AccessType>
+                        <Description>Nodes under WebAuth can be used to enable WebToken based authentication for 3rd Party Plugin VPN Profiles.</Description>
+                        <DFFormat>
+                            <node />
+                        </DFFormat>
+                        <Occurrence>
+                            <ZeroOrOne />
+                        </Occurrence>
+                        <Scope>
+                            <Dynamic />
+                        </Scope>
+                        <DFType>
+                            <DDFName></DDFName>
+                        </DFType>
+                    </DFProperties>
+                    <Node>
+                        <NodeName>Enabled</NodeName>
+                        <DFProperties>
+                            <AccessType>
+                                <Add />
+                                <Delete />
+                                <Get />
+                                <Replace />
+                            </AccessType>
+                            <Description>Enables the WebToken based authentication flow.</Description>
+                            <DFFormat>
+                                <bool />
+                            </DFFormat>
+                            <Occurrence>
+                                <One />
+                            </Occurrence>
+                            <Scope>
+                                <Dynamic />
+                            </Scope>
+                            <DFType>
+                                <MIME>text/plain</MIME>
+                            </DFType>
+                        </DFProperties>
+                    </Node>
+                    <Node>
+                        <NodeName>ClientId</NodeName>
+                        <DFProperties>
+                            <AccessType>
+                                <Add />
+                                <Delete />
+                                <Get />
+                                <Replace />
+                            </AccessType>
+                            <Description>The client ID to specify when communicating with the Web Account provider in retrieving the token.</Description>
+                            <DFFormat>
+                                <chr />
+                            </DFFormat>
+                            <Occurrence>
+                                <One />
+                            </Occurrence>
+                            <Scope>
+                                <Dynamic />
+                            </Scope>
+                            <DFType>
+                                <MIME>text/plain</MIME>
+                            </DFType>
+                        </DFProperties>
+                    </Node>
+                </Node>
             </Node>
             <Node>
                 <NodeName>NativeProfile</NodeName>
@@ -2225,6 +2322,33 @@ The XML below is for Windows 10, version 1709.
                   </DFType>
                 </DFProperties>
               </Node>
+              <Node>
+                <NodeName>PlumbIKEv2TSAsRoutes</NodeName>
+                <DFProperties>
+                    <AccessType>
+                        <Add />
+                        <Delete />
+                        <Get />
+                        <Replace />
+                    </AccessType>
+                    <Description>
+                        True: Plumb traffic selectors as routes onto VPN interface
+                        False: Do not plumb traffic selectors as routes
+                    </Description>
+                    <DFFormat>
+                        <bool />
+                    </DFFormat>
+                    <Occurrence>
+                        <ZeroOrOne />
+                    </Occurrence>
+                    <Scope>
+                        <Dynamic />
+                    </Scope>
+                    <DFType>
+                        <MIME>text/plain</MIME>
+                    </DFType>
+                </DFProperties>
+            </Node>
             </Node>
         </Node>
     </Node>
@@ -3718,6 +3842,76 @@ The XML below is for Windows 10, version 1709.
                         </DFType>
                     </DFProperties>
                 </Node>
+                <Node>
+                    <NodeName>WebAuth</NodeName>
+                    <DFProperties>
+                        <AccessType>
+                            <Add />
+                            <Get />
+                        </AccessType>
+                        <Description>Nodes under WebAuth can be used to enable WebToken based authentication for 3rd Party Plugin VPN Profiles.</Description>
+                        <DFFormat>
+                            <node />
+                        </DFFormat>
+                        <Occurrence>
+                            <ZeroOrOne />
+                        </Occurrence>
+                        <Scope>
+                            <Dynamic />
+                        </Scope>
+                        <DFType>
+                            <DDFName></DDFName>
+                        </DFType>
+                    </DFProperties>
+                    <Node>
+                        <NodeName>Enabled</NodeName>
+                        <DFProperties>
+                            <AccessType>
+                                <Add />
+                                <Delete />
+                                <Get />
+                                <Replace />
+                            </AccessType>
+                            <Description>Enables the WebToken based authentication flow.</Description>
+                            <DFFormat>
+                                <bool />
+                            </DFFormat>
+                            <Occurrence>
+                                <One />
+                            </Occurrence>
+                            <Scope>
+                                <Dynamic />
+                            </Scope>
+                            <DFType>
+                                <MIME>text/plain</MIME>
+                            </DFType>
+                        </DFProperties>
+                    </Node>
+                    <Node>
+                        <NodeName>ClientId</NodeName>
+                        <DFProperties>
+                            <AccessType>
+                                <Add />
+                                <Delete />
+                                <Get />
+                                <Replace />
+                            </AccessType>
+                            <Description>The client ID to specify when communicating with the Web Account provider in retrieving the token.</Description>
+                            <DFFormat>
+                                <chr />
+                            </DFFormat>
+                            <Occurrence>
+                                <One />
+                            </Occurrence>
+                            <Scope>
+                                <Dynamic />
+                            </Scope>
+                            <DFType>
+                                <MIME>text/plain</MIME>
+                            </DFType>
+                        </DFProperties>
+                    </Node>
+                </Node>
             </Node>
             <Node>
                 <NodeName>NativeProfile</NodeName>
@@ -4318,6 +4512,33 @@ The XML below is for Windows 10, version 1709.
                   </DFType>
                 </DFProperties>
               </Node>
+              <Node>
+                <NodeName>PlumbIKEv2TSAsRoutes</NodeName>
+                <DFProperties>
+                    <AccessType>
+                        <Add />
+                        <Delete />
+                        <Get />
+                        <Replace />
+                    </AccessType>
+                    <Description>
+                        True: Plumb traffic selectors as routes onto VPN interface
+                        False: Do not plumb traffic selectors as routes
+                    </Description>
+                    <DFFormat>
+                        <bool />
+                    </DFFormat>
+                    <Occurrence>
+                        <ZeroOrOne />
+                    </Occurrence>
+                    <Scope>
+                        <Dynamic />
+                    </Scope>
+                    <DFType>
+                        <MIME>text/plain</MIME>
+                    </DFType>
+                </DFProperties>
+            </Node>
             </Node>
         </Node>
     </Node>

From 4045c1cc76c8313a094ddc5a8a6ba2d7bb0b3782 Mon Sep 17 00:00:00 2001
From: julihooper <65675989+julihooper@users.noreply.github.com>
Date: Thu, 29 Oct 2020 09:55:20 -0700
Subject: [PATCH 23/44] Update respond-machine-alerts.md

Adding a Note for what min requirements are for collecting MpSupport logs via CIP feature.
---
 .../microsoft-defender-atp/respond-machine-alerts.md            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
index 98a8d61680..89647f9832 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/respond-machine-alerts.md
@@ -110,7 +110,7 @@ The package contains the following folders:
 | System Information| Contains a SystemInformation.txt file which lists system information such as OS version and network cards.                                                                                     |
 | Temp Directories| Contains a set of text files that lists the files located in %Temp% for every user in the system. </br></br> This can help to track suspicious files that an attacker may have dropped on the system. </br></br> <div class="alert"><b>NOTE:</b> If the file contains the following message: “The system cannot find the path specified”, it means that there is no temp directory for this user, and might be because the user didn’t log in to the system.</div>                                                                                                                                         |
 | Users and Groups| Provides a list of files that each represent a group and its members.                                                                                                                   |
-|WdSupportLogs| Provides the MpCmdRunLog.txt and MPSupportFiles.cab                                                                                                                   |
+|WdSupportLogs| Provides the MpCmdRunLog.txt and MPSupportFiles.cab  </br></br> <div class="alert"><b>NOTE:</b> This folder will only be created on Windows 10, version 1709 or later with February 2020 update rollup or more recent installed:</br> Win10 1709 (RS3) Build 16299.1717 : [KB4537816](https://support.microsoft.com/en-us/help/4537816/windows-10-update-kb4537816) </br> Win10 1803 (RS4) Build 17134.1345 : [KB4537795](https://support.microsoft.com/en-us/help/4537795/windows-10-update-kb4537795) </br> Win10 1809 (RS5) Build 17763.1075 : [KB4537818](https://support.microsoft.com/en-us/help/4537818/windows-10-update-kb4537818) </br> Win10 1903/1909 (19h1/19h2) Builds 18362.693 and 18363.693 : [KB4535996](https://support.microsoft.com/en-us/help/4535996/windows-10-update-kb4535996) </div>                                                                                                                    |
 | CollectionSummaryReport.xls| This file is a summary of the investigation package collection, it contains the list of data points, the command used to extract the data, the execution status, and the error code in case of failure. You can use this report to track if the package includes all the expected data and identify if there were any errors. |
 
 ## Run Microsoft Defender Antivirus scan on devices

From f992bbbfa82ca9abc38b028a76d2c151b883005c Mon Sep 17 00:00:00 2001
From: Herman Arnedo Mahr <37333944+hermanarnedo@users.noreply.github.com>
Date: Thu, 29 Oct 2020 22:24:55 +0100
Subject: [PATCH 24/44] Update
 enroll-a-windows-10-device-automatically-using-group-policy.md

**Device Credential** is not supported for enrollment type when you have a ConfigMgr Agent on your device.
---
 ...oll-a-windows-10-device-automatically-using-group-policy.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy.md b/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy.md
index 7a91385e10..a6ac91e10f 100644
--- a/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy.md
+++ b/windows/client-management/mdm/enroll-a-windows-10-device-automatically-using-group-policy.md
@@ -118,7 +118,8 @@ Requirements:
 
     > [!NOTE]
     > In Windows 10, version 1903, the MDM.admx file was updated to include an option to select which credential is used to enroll the device. **Device Credential** is a new option that will only have an effect on clients that have installed Windows 10, version 1903 or later. 
-    > The default behavior for older releases is to revert to **User Credential**.
+    > The default behavior for older releases is to revert to **User Credential**. 
+    > **Device Credential** is not supported for enrollment type when you have a ConfigMgr Agent on your device. 
 
     When a group policy refresh occurs on the client, a task is created and scheduled to run every 5 minutes for the duration of one day. The task is called " Schedule created by enrollment client for automatically enrolling in MDM from AAD." 
 

From 54374628474721770b4554dd0390b218c681bab2 Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 29 Oct 2020 14:28:36 -0700
Subject: [PATCH 25/44] Update windowsdefenderapplicationguard-csp.md

---
 .../mdm/windowsdefenderapplicationguard-csp.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
index 6e88afcf72..377215d1a7 100644
--- a/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
+++ b/windows/client-management/mdm/windowsdefenderapplicationguard-csp.md
@@ -125,7 +125,7 @@ The following list shows the supported values:
 - 1 - Non-enterprise content embedded on enterprise sites are stopped from opening in Internet Explorer or Microsoft Edge outside of Microsoft Defender Application Guard.
 
 > [!NOTE]
-> This policy setting is no longer supported in the new Microsoft Edge browser. The policy will be deprecated eventually. 
+> This policy setting is no longer supported in the new Microsoft Edge browser. The policy will be deprecated and removed in a future release. 
 
 <!--ADMXMapped-->
 ADMX Info:  

From 955b4d373ee3db7215b3d5bddcd88cfcafbc1a7e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 29 Oct 2020 14:42:30 -0700
Subject: [PATCH 26/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...-baselines-microsoft-defender-antivirus.md | 22 +++++++++++--------
 1 file changed, 13 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 1c395b1018..8d8ba61c53 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
-ms.date: 10/26/2020
+ms.date: 10/29/2020
 ---
 
 # Manage Microsoft Defender Antivirus updates and apply baselines
@@ -69,23 +69,27 @@ For more information, see [Manage the sources for Microsoft Defender Antivirus p
 
 For information how to update or how to install the platform update, see [Update for Windows Defender antimalware platform](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform).
 
-All our updates contain performance improvements, serviceability improvements, and integration improvements (Cloud, Microsoft 365 Defender).
+All our updates contain 
+- performance improvements;
+- serviceability improvements; and 
+- integration improvements (Cloud, Microsoft 365 Defender).
 <br/>
 
 
 <details>
-<summary> October-2020 (Platform: 4.18.2010.x | Engine: 1.1.17500.x)</summary>
+<summary> October-2020 (Platform: 4.18.2010.x | Engine: 1.1.17600.5)</summary>
 
-&ensp;Security intelligence update version: **1.325.x.x**  
-&ensp;Released: **date**  
+&ensp;Security intelligence update version: **1.32x.x.x**  
+&ensp;Released: **October 29, 2020**  
 &ensp;Platform: **4.18.2010.x**  
-&ensp;Engine: **1.1.17500.x**  
+&ensp;Engine: **1.1.17600.5**  
 &ensp;Support phase: **Security and Critical Updates**
     
 ### What's new
-- item
-- item
-- item
+- New descriptions for special threat categories
+- Improved emulation capabilities
+- Improved host address allow/block capabilities
+- Disallow clearing exclusions using local PowerShell if a no-override policy is active
 
 ### Known Issues
 No known issues  

From 8192754fd8301d8058323f82d9e6272576cd591b Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 29 Oct 2020 14:53:53 -0700
Subject: [PATCH 27/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 ...s-baselines-microsoft-defender-antivirus.md | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 8d8ba61c53..4872b527aa 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -106,7 +106,7 @@ No known issues
 ### What's new
 - Admin permissions are required to restore files in quarantine
 - XML formatted events are now supported
-- CSP support for ignoring exclusion merge
+- CSP support for ignoring exclusion merges
 - New management interfaces for:
    - UDP Inspection
    - Network Protection on Server 2019
@@ -336,7 +336,7 @@ During the technical support (only) phase, commercially reasonable support incid
 The below table provides the Microsoft Defender Antivirus platform and engine versions that are shipped with the latest Windows 10 releases:    
 
 |Windows 10 release  |Platform version  |Engine version |Support phase |
-|-|-|-|-|
+|:---|:---|:---|:---|
 |2004  (20H1) |4.18.2004.6 |1.1.17000.2 | Technical upgrade Support (Only) |
 |1909  (19H2) |4.18.1902.5 |1.1.16700.3 | Technical upgrade Support (Only) |
 |1903  (19H1) |4.18.1902.5 |1.1.15600.4 | Technical upgrade Support (Only) |
@@ -351,10 +351,10 @@ Windows 10 release info: [Windows lifecycle fact sheet](https://support.microsof
 
 ## See also
 
-Article | Description 
----|---
-[Manage how protection updates are downloaded and applied](manage-protection-updates-microsoft-defender-antivirus.md) | Protection updates can be delivered through a number of sources.
-[Manage when protection updates should be downloaded and applied](manage-protection-update-schedule-microsoft-defender-antivirus.md) | You can schedule when protection updates should be downloaded.
-[Manage updates for endpoints that are out of date](manage-outdated-endpoints-microsoft-defender-antivirus.md) | If an endpoint misses an update or scheduled scan, you can force an update or scan at the next logon.
-[Manage event-based forced updates](manage-event-based-updates-microsoft-defender-antivirus.md) | You can set protection updates to be downloaded at startup or after certain cloud-delivered protection events.
-[Manage updates for mobile devices and virtual machines (VMs)](manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md)| You can specify settings, such as whether updates should occur on battery power, that are especially useful for mobile devices and virtual machines.
+| Article | Description  |
+|:---|:---|
+|[Manage how protection updates are downloaded and applied](manage-protection-updates-microsoft-defender-antivirus.md) | Protection updates can be delivered through a number of sources. |
+|[Manage when protection updates should be downloaded and applied](manage-protection-update-schedule-microsoft-defender-antivirus.md) | You can schedule when protection updates should be downloaded. |
+|[Manage updates for endpoints that are out of date](manage-outdated-endpoints-microsoft-defender-antivirus.md) | If an endpoint misses an update or scheduled scan, you can force an update or scan at the next logon. |
+|[Manage event-based forced updates](manage-event-based-updates-microsoft-defender-antivirus.md) | You can set protection updates to be downloaded at startup or after certain cloud-delivered protection events. |
+|[Manage updates for mobile devices and virtual machines (VMs)](manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md)| You can specify settings, such as whether updates should occur on battery power, that are especially useful for mobile devices and virtual machines. |

From 54c4107321155fc8949cbef81b1833633a179c0a Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Thu, 29 Oct 2020 15:10:29 -0700
Subject: [PATCH 28/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 4872b527aa..9b48b566fb 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -355,6 +355,6 @@ Windows 10 release info: [Windows lifecycle fact sheet](https://support.microsof
 |:---|:---|
 |[Manage how protection updates are downloaded and applied](manage-protection-updates-microsoft-defender-antivirus.md) | Protection updates can be delivered through a number of sources. |
 |[Manage when protection updates should be downloaded and applied](manage-protection-update-schedule-microsoft-defender-antivirus.md) | You can schedule when protection updates should be downloaded. |
-|[Manage updates for endpoints that are out of date](manage-outdated-endpoints-microsoft-defender-antivirus.md) | If an endpoint misses an update or scheduled scan, you can force an update or scan at the next logon. |
+|[Manage updates for endpoints that are out of date](manage-outdated-endpoints-microsoft-defender-antivirus.md) | If an endpoint misses an update or scheduled scan, you can force an update or scan the next time a user signs in. |
 |[Manage event-based forced updates](manage-event-based-updates-microsoft-defender-antivirus.md) | You can set protection updates to be downloaded at startup or after certain cloud-delivered protection events. |
 |[Manage updates for mobile devices and virtual machines (VMs)](manage-updates-mobile-devices-vms-microsoft-defender-antivirus.md)| You can specify settings, such as whether updates should occur on battery power, that are especially useful for mobile devices and virtual machines. |

From 870fe5bfbc1a14ef2d43253048d4200590eac89f Mon Sep 17 00:00:00 2001
From: Daniel Simpson <dansimp@microsoft.com>
Date: Thu, 29 Oct 2020 19:35:42 -0700
Subject: [PATCH 29/44] acrolinx fixes

---
 .../threat-protection/fips-140-validation.md  | 1261 ++++++++---------
 1 file changed, 630 insertions(+), 631 deletions(-)

diff --git a/windows/security/threat-protection/fips-140-validation.md b/windows/security/threat-protection/fips-140-validation.md
index 262058bf1d..a03d84b411 100644
--- a/windows/security/threat-protection/fips-140-validation.md
+++ b/windows/security/threat-protection/fips-140-validation.md
@@ -1,15 +1,14 @@
 ---
-title: FIPS 140 Validation
+title: Federal Information Processing Standard (FIPS) 140 Validation
 description: This topic provides information on how Microsoft products and cryptographic modules comply with the U.S. Federal government standard FIPS 140.
 ms.prod: w10
 audience: ITPro
-author: dulcemontemayor
+author: dansimp
 ms.author: dansimp
 manager: dansimp
 ms.collection: M365-identity-device-management
 ms.topic: article
 ms.localizationpriority: medium
-ms.date: 11/05/2019
 ms.reviewer: 
 ---
 
@@ -43,7 +42,7 @@ Each of the cryptographic modules has a defined security policy that must be met
  
 ### Step 3: Enable the FIPS security policy
 
-Windows provides the security policy setting, “System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing,” which is used by some Microsoft products to determine whether to operate in a FIPS 140-2 approved mode.  When this policy is enabled, the validated cryptographic modules in Windows will also operate in FIPS approved mode.  The policy may be set using Local Security Policy, as part of Group Policy, or through a Modern Device Management (MDM) solution.   For more information on the policy, see [System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing](https://docs.microsoft.com/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing).  
+Windows provides the security policy setting, “System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing,” which is used by some Microsoft products to determine whether to operate in a FIPS 140-2 approved mode.  When this policy is enabled, the validated cryptographic modules in Windows will also operate in FIPS approved mode.  The policy may be set using Local Security Policy, as part of Group Policy, or through a Modern Device Management (MDM) solution.   For more information on the policy, see [System cryptography: Use FIPS-compliant algorithms for encryption, hashing, and signing](https://docs.microsoft.com/windows/security/threat-protection/security-policy-settings/system-cryptography-use-fips-compliant-algorithms-for-encryption-hashing-and-signing).  
 
 ### Step 4: Ensure only FIPS validated cryptographic algorithms are used
 
@@ -73,7 +72,7 @@ This caveat identifies required configuration and security rules that must be fo
 
 ### What is the relationship between FIPS 140-2 and Common Criteria?
 
-These are two separate security standards with different, but complementary, purposes. FIPS 140-2 is designed specifically for validating software and hardware cryptographic modules, while Common Criteria is designed to evaluate security functions in IT software and hardware products. Common Criteria evaluations often rely on FIPS 140-2 validations to provide assurance that basic cryptographic functionality is implemented properly.
+These are two separate security standards with different, but complementary, purposes. FIPS 140-2 is designed specifically for validating software and hardware cryptographic modules, while Common Criteria are designed to evaluate security functions in IT software and hardware products. Common Criteria evaluations often rely on FIPS 140-2 validations to provide assurance that basic cryptographic functionality is implemented properly.
 
 ### How does FIPS 140 relate to Suite B?
 
@@ -304,11 +303,11 @@ Validated Editions: Home, Pro, Enterprise, Education, S, Surface Hub, Mobile
 </table>
 
 
-<sup>\[1\]</sup> Applies only to Home, Pro, Enterprise, Education and S
+<sup>\[1\]</sup> Applies only to Home, Pro, Enterprise, Education, and S.
 
-<sup>\[2\]</sup> Applies only to Pro, Enterprise, Education, S, Mobile and Surface Hub
+<sup>\[2\]</sup> Applies only to Pro, Enterprise, Education, S, Mobile, and Surface Hub
 
-<sup>\[3\]</sup> Applies only to Pro, Enterprise Education and S
+<sup>\[3\]</sup> Applies only to Pro, Enterprise, Education, and S
 
 ##### Windows 10 Anniversary Update (Version 1607)
 
@@ -397,11 +396,11 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile
 </table>
 
 
-<sup>\[1\]</sup> Applies only to Home, Pro, Enterprise and Enterprise LTSB
+<sup>\[1\]</sup> Applies only to Home, Pro, Enterprise, and Enterprise LTSB
 
-<sup>\[2\]</sup> Applies only to Pro, Enterprise, Enterprise LTSB and Mobile
+<sup>\[2\]</sup> Applies only to Pro, Enterprise, Enterprise LTSB, and Mobile
 
-<sup>\[3\]</sup> Applies only to Pro, Enterprise and Enterprise LTSB
+<sup>\[3\]</sup> Applies only to Pro, Enterprise, and Enterprise LTSB
 
 ##### Windows 10 November 2015 Update (Version 1511)
 
@@ -491,13 +490,13 @@ Validated Editions: Home, Pro, Enterprise, Enterprise LTSB, Mobile, Surface Hub
 </table>
 
 
-<sup>\[4\]</sup> Applies only to Home, Pro, Enterprise, Mobile and Surface Hub
+<sup>\[4\]</sup> Applies only to Home, Pro, Enterprise, Mobile, and Surface Hub
 
-<sup>\[5\]</sup> Applies only to Home, Pro, Enterprise, Mobile and Surface Hub
+<sup>\[5\]</sup> Applies only to Home, Pro, Enterprise, Mobile, and Surface Hub
 
-<sup>\[6\]</sup> Applies only to Home, Pro and Enterprise
+<sup>\[6\]</sup> Applies only to Home, Pro, and Enterprise
 
-<sup>\[7\]</sup> Applies only to Pro, Enterprise, Mobile and Surface Hub
+<sup>\[7\]</sup> Applies only to Pro, Enterprise, Mobile, and Surface Hub
 
 <sup>\[8\]</sup> Applies only to Enterprise and Enterprise LTSB
 
@@ -700,7 +699,7 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1892">#1892</a></td>
 <td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258); DSA (Cert. ); ECDSA (Cert. ); HMAC (Cert. ); KAS (Cert. ); KBKDF (Cert. ); PBKDF (vendor affirmed); RSA (Certs.  and ); SHS (Cert. ); Triple-DES (Cert. )<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258); DSA (Cert.); ECDSA (Cert.); HMAC (Cert.); KAS (Cert); KBKDF (Cert.); PBKDF (vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
 </td>
 </tr>
@@ -710,9 +709,9 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1891">#1891</a></td>
 <td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#259">#259</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1110">#1110</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258 and ); ECDSA (Cert. ); HMAC (Cert. ); KAS (Cert. ); KBKDF (Cert. ); PBKDF (vendor affirmed); RNG (Cert. ); RSA (Certs.  and ); SHS (Cert. ); Triple-DES (Cert. )<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#258 and); ECDSA (Cert.); HMAC (Cert.); KAS (Cert.); KBKDF (Cert.); PBKDF (vendor affirmed); RNG (Cert.); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. , key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="even">
 <td>Boot Manager</td>
@@ -760,9 +759,9 @@ Validated Editions: RT, Home, Pro, Enterprise, Phone
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1893">#1893</a></td>
 <td><em>FIPS Approved algorithms:</em> DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#686">#686</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>); Triple-DES MAC (Triple-DES Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, vendor affirmed)<br />
 <br />
-<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#1902); Triple-DES (Cert. ); Triple-DES MAC (Triple-DES Cert. , vendor affirmed)<br />
+<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a>, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#1902); Triple-DES (Cert.); Triple-DES MAC (Triple-DES Cert., vendor affirmed)<br />
 <br />
-<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert. , key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
+<em>Other algorithms:</em> DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman; MD5; RC2; RC2 MAC; RC4; Triple-DES (Cert., key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
 <tr class="even">
 <td>Enhanced Cryptographic Provider (RSAENH.DLL)</td>
@@ -803,9 +802,9 @@ Validated Editions: Windows 7, Windows 7 SP1
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1329">1329</a></td>
 <td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a>); AES GCM (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); AES GMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#24">#24</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#386">#386</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#141">#141</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#677">#677</a>); KAS (SP 800-56A, vendor affirmed, key agreement; key establishment methodology provides 80 to 256 bits of encryption strength); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#649">#649</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4#559 and ); SHS (Cert. ); Triple-DES (Cert. )<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4#559 and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. , key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
+<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4</td>
 </tr>
 <tr class="odd">
 <td>Kernel Mode Cryptographic Primitives Library (cng.sys)</td>
@@ -829,7 +828,7 @@ Validated Editions: Windows 7, Windows 7 SP1
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1319">1319</a></td>
 <td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a>); RSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">#1081</a>)<br />
 <br />
-<em>Other algorithms:</em> MD5#1168 and ); HMAC (Cert. ); RSA (Cert. ); SHS (Cert. )<br />
+<em>Other algorithms:</em> MD5#1168 and); HMAC (Cert.); RSA (Cert.); SHS (Cert.)<br />
 <br />
 <em>Other algorithms:</em> MD5</td>
 </tr>
@@ -946,7 +945,7 @@ Validated Editions: Ultimate Edition
 <td>Kernel Mode Security Support Provider Interface (ksecdd.sys)</td>
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/140sp/140sp1000.pdf">6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742, and 6.0.6002.22869</a>6.0.6001.18709, 6.0.6001.18272, 6.0.6001.18796, 6.0.6001.22202, 6.0.6001.22450, 6.0.6001.22987, 6.0.6001.23069, 6.0.6002.18005, 6.0.6002.18051, 6.0.6002.18541, 6.0.6002.18643, 6.0.6002.22152, 6.0.6002.22742, and 6.0.6002.22869</td>
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1000">1000</a></td>
-<td><p>FIPS Approved algorithms: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)#739 and ); ECDSA (Cert. ); HMAC (Cert. ); RNG (Cert.  and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs.  and ); SHS (Cert. ); Triple-DES (Cert. )</p>
+<td><p>FIPS Approved algorithms: AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#82">#82</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)#739 and); ECDSA (Cert.); HMAC (Cert.); RNG (Cert.  and SP 800-90 AES-CTR, vendor-affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)</p>
 <p><em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</p></td>
 </tr>
 <tr class="even">
@@ -1649,9 +1648,9 @@ Validated Editions: Server, Storage Server
 <td><a href="http://csrc.nist.gov/groups/stm/cmvp/documents/140-1/1401val2013.htm#1892">1892</a></td>
 <td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a>); DSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">#687</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#687); ECDSA (Cert. ); HMAC (Cert. #); KAS (Cert. ); KBKDF (Cert. ); PBKDF (vendor affirmed); RSA (Certs.  and ); SHS (Cert. ); Triple-DES (Cert. )<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#687); ECDSA (Cert.); HMAC (Cert. #); KAS (Cert.); KBKDF (Cert.); PBKDF (vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. , key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="odd">
 <td><b>Kernel Mode Cryptographic Primitives Library (cng.sys)</b></td>
@@ -1659,9 +1658,9 @@ Validated Editions: Server, Storage Server
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1891">1891</a></td>
 <td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a>); DRBG (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#259">#259</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">#341</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">#1345</a>); KAS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a>); KBKDF (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a>); PBKDF (vendor affirmed); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#1110">#1110</a>); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#1110); RSA (Certs.  and ); SHS (Cert. ); Triple-DES (Cert. )<br />
+<em>Other algorithms:</em> AES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a>, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)#1110); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
-<em>Other algorithms:</em> AES (Cert. , key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
+<em>Other algorithms:</em> AES (Cert., key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); DES; Legacy CAPI KDF; MD2; MD4; MD5; HMAC MD5; RC2; RC4; RSA (encrypt/decrypt)</td>
 </tr>
 <tr class="even">
 <td>Boot Manager</td>
@@ -1841,7 +1840,7 @@ Validated Editions: Server, Storage Server
 <td><a href="https://csrc.nist.gov/projects/cryptographic-module-validation-program/certificate/1007">1007</a></td>
 <td><em>FIPS Approved algorithms:</em> AES (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#757">#757</a>); ECDSA (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a>); HMAC (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#413">#413</a>); RNG (Cert. <a href="http://csrc.nist.gov/groups/stm/cavp/documents/rng/rnghistoricalval.html#435">#435</a> and SP800-90 AES-CTR, vendor affirmed); RSA (Certs. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a> and <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a>); SHS (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">#753</a>); Triple-DES (Cert. <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a>)<br />
 <br />
-<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping: key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#83); HMAC (Cert. ); RNG (Cert.  and SP800-90 AES-CTR, vendor affirmed); RSA (Certs.  and ); SHS (Cert. ); Triple-DES (Cert. )<br />
+<em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping: key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)#83); HMAC (Cert.); RNG (Cert.  and SP800-90 AES-CTR, vendor affirmed); RSA (Certs.  and); SHS (Cert.); Triple-DES (Cert.)<br />
 <br />
 <em>Other algorithms:</em> AES (GCM and GMAC; non-compliant); DES; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD2; MD4; MD5; HMAC MD5; RC2; RC4; RNG (SP 800-90 Dual-EC; non-compliant); RSA (key wrapping: key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)</td>
 </tr>
@@ -2165,7 +2164,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Key Lengths: 128, 192, 256 (bits)</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4903">#4903</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4903">#4903</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -2484,7 +2483,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 </ul></li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">#4897</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">#4897</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
@@ -2520,7 +2519,7 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>Plain Text Lengths: 128, 192, 256, 320, 2048 (bits)</li>
 </ul>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">Val#4897</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4898">#4898</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4898">#4898</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -2559,288 +2558,288 @@ The following tables are organized by cryptographic algorithms with their modes,
 <li>AAD Length: 0-65536</li>
 </ul>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">Val#4897</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4894">#4894</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4894">#4894</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB128</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>OFB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CTR</b> ( int only; 128 , 192 , 256 )</p></td>
+<td><p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB128</b> (e/d; 128, 192, 256);</p>
+<p><b>OFB</b> (e/d; 128, 192, 256);</p>
+<p><b>CTR</b> (int only; 128, 192, 256)</p></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4627">#4627</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><p><b>KW</b> ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 2048 )</p>
+<td><p><b>KW</b> (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 256, 192, 320, 2048)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4626">#4626</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CCM</b> (KS: 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 (Tag Length(s): 16 )</p>
+<td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a></p>
 <p> </p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile BitLocker(R) Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4625">#4625</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB128</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CTR</b> ( int only; 128 , 192 , 256 )</p>
-<p><b>CCM</b> (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )</p>
-<p><b>CMAC</b> (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )</p>
-<p><b>GCM</b> (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )</p>
-<p>(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )</p>
-<p>IV Generated: ( External ) ; PT Lengths Tested: ( 0 , 1024 , 8 , 1016 ) ; AAD Lengths tested: ( 0 , 1024 , 8 , 1016 ) ; 96BitIV_Supported</p>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB128</b> (e/d; 128, 192, 256);</p>
+<p><b>CTR</b> (int only; 128, 192, 256)</p>
+<p><b>CCM</b> (KS: 128, 192, 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16)</p>
+<p><b>CMAC</b> (Generation/Verification) (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 16 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 16 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 16 Max: 16)</p>
+<p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)</p>
+<p>(KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)</p>
+<p>IV Generated: (External); PT Lengths Tested: (0, 1024, 8, 1016); AAD Lengths tested: (0, 1024, 8, 1016); 96BitIV_Supported</p>
 <p>GMAC_Supported</p>
-<p><b>XTS</b>( (KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) )</p></td>
+<p><b>XTS</b>((KS: XTS_128((e/d)(f)) KS: XTS_256((e/d)(f))</p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">#4624</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4434">#4434</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4433">#4433</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CTR</b> ( int only; 128 , 192 , 256 )</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CTR</b> (int only; 128, 192, 256)</p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4431">#4431</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CTR</b> ( int only; 128 , 192 , 256 )</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CTR</b> (int only; 128, 192, 256)</p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4430">#4430</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB128</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>OFB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CTR</b> ( int only; 128 , 192 , 256 )</p></td>
-<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4074">#4074</a></p>
+<td><p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB128</b> (e/d; 128, 192, 256);</p>
+<p><b>OFB</b> (e/d; 128, 192, 256);</p>
+<p><b>CTR</b> (int only; 128, 192, 256)</p></td>
+<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4074">#4074</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 ); <b>CBC</b> ( e/d; 128 , 192 , 256 ); <b>CFB8</b> ( e/d; 128 , 192 , 256 ); <b>CFB128</b> ( e/d; 128 , 192 , 256 ); <b>CTR</b> ( int only; 128 , 192 , 256 )</p>
-<p><b>CCM</b> (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )</p>
-<p><b>CMAC (Generation/Verification )</b> (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )</p>
-<p><b>GCM</b> (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-<b>IV Generated:</b>  ( Externally ) ; PT Lengths Tested:  ( 0 , 1024 , 8 , 1016 ) ; AAD Lengths tested:  ( 0 , 1024 , 8 , 1016 ) ; IV Lengths Tested:  ( 0 , 0 ) ; 96BitIV_Supported<br />
+<td><p><b>ECB</b> (e/d; 128, 192, 256); <b>CBC</b> (e/d; 128, 192, 256); <b>CFB8</b> (e/d; 128, 192, 256); <b>CFB128</b> (e/d; 128, 192, 256); <b>CTR</b> (int only; 128, 192, 256)</p>
+<p><b>CCM</b> (KS: 128, 192, 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16)</p>
+<p><b>CMAC (Generation/Verification)</b> (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
+<p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)<br />
+(KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)<br />
+<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); AAD Lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested: (0, 0); 96BitIV_Supported<br />
 GMAC_Supported</p>
-<p><b>XTS( (KS: XTS_128</b>( (e/d) (f) ) <b>KS: XTS_256</b>( (e/d) (f) )</p></td>
+<p><b>XTS((KS: XTS_128</b>((e/d)(f)) <b>KS: XTS_256</b>((e/d)(f))</p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">#4064</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
 <p> </p></td>
 <td>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4063">#4063</a><br />
 Version 10.0.14393</td>
 </tr>
 <tr class="even">
-<td><p><b>KW</b>  ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 192 , 256 , 320 , 2048 )</p>
+<td><p><b>KW</b>  (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 192, 256, 320, 2048)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4062">#4062</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CCM</b> (KS: 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 (Tag Length(s): 16 )</p>
+<td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4061">#4061</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><p><b>KW</b>  ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 2048 )</p>
+<td><p><b>KW</b>  (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 256, 192, 320, 2048)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3652">#3652</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CCM</b> (KS: 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 (Tag Length(s): 16 )</p>
+<td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3653">#3653</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
 <p> </p></td>
 <td>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3630">#3630</a><br />
 Version 10.0.10586</td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 ); <b>CBC</b> ( e/d; 128 , 192 , 256 ); <b>CFB8</b> ( e/d; 128 , 192 , 256 ); <b>CFB128</b> ( e/d; 128 , 192 , 256 ); <b>CTR</b> ( int only; 128 , 192 , 256 )</p>
-<p><b>CCM</b> (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )</p>
-<p><b>CMAC (Generation/Verification )</b> (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )</p>
-<p><b>GCM</b> (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-<b>IV Generated:</b>  ( Externally ) ; PT Lengths Tested:  ( 0 , 1024 , 8 , 1016 ) ; AAD Lengths tested:  ( 0 , 1024 , 8 , 1016 ) ; IV Lengths Tested:  ( 0 , 0 ) ; 96BitIV_Supported<br />
+<td><p><b>ECB</b> (e/d; 128, 192, 256); <b>CBC</b> (e/d; 128, 192, 256); <b>CFB8</b> (e/d; 128, 192, 256); <b>CFB128</b> (e/d; 128, 192, 256); <b>CTR</b> (int only; 128, 192, 256)</p>
+<p><b>CCM</b> (KS: 128, 192, 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16)</p>
+<p><b>CMAC (Generation/Verification)</b> (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
+<p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)<br />
+(KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)<br />
+<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); AAD Lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested: (0, 0); 96BitIV_Supported<br />
 GMAC_Supported</p>
-<p><b>XTS( (KS: XTS_128</b>( (e/d) (f) ) <b>KS: XTS_256</b>( (e/d) (f) )</p></td>
+<p><b>XTS((KS: XTS_128</b>((e/d) (f)) <b>KS: XTS_256</b>((e/d) (f))</p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">#3629</a><br />
 <br />
 </p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><p>KW  ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 2048 )</p>
+<td><p>KW  (AE, AD, AES-128, AES-192, AES-256, FWD, 128, 256, 192, 320, 2048)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3507">#3507</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CCM</b> (KS: 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 (Tag Length(s): 16 )</p>
+<td><p><b>CCM</b> (KS: 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3498">#3498</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 ); <b>CBC</b> ( e/d; 128 , 192 , 256 ); <b>CFB8</b> ( e/d; 128 , 192 , 256 ); <b>CFB128</b> ( e/d; 128 , 192 , 256 ); <b>CTR</b> ( int only; 128 , 192 , 256 )</p>
-<p><b>CCM</b> (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )</p>
-<p><b>CMAC(Generation/Verification )</b> (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )</p>
-<p><b>GCM</b> (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-<b>IV Generated:</b>  ( Externally ) ; PT Lengths Tested:  ( 0 , 1024 , 8 , 1016 ) ; AAD Lengths tested:  ( 0 , 1024 , 8 , 1016 ) ; IV Lengths Tested:  ( 0 , 0 ) ; 96BitIV_Supported<br />
+<td><p><b>ECB</b> (e/d; 128, 192, 256); <b>CBC</b> (e/d; 128, 192, 256); <b>CFB8</b> (e/d; 128, 192, 256); <b>CFB128</b> (e/d; 128, 192, 256); <b>CTR</b> (int only; 128, 192, 256)</p>
+<p><b>CCM</b> (KS: 128, 192, 256) (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16)</p>
+<p><b>CMAC(Generation/Verification)</b> (KS: 128; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
+<p><b>GCM</b> (KS: AES_128(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)<br />
+(KS: AES_256(e/d) Tag Length(s): 128 120 112 104 96)<br />
+<b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 1024, 8, 1016); AAD Lengths tested:  (0, 1024, 8, 1016); IV Lengths Tested:  (0, 0); 96BitIV_Supported<br />
 GMAC_Supported</p>
-<p><b>XTS( (KS: XTS_128</b>( (e/d) (f) ) <b>KS: XTS_256</b>( (e/d) (f) )</p></td>
+<p><b>XTS((KS: XTS_128</b>((e/d)(f)) <b>KS: XTS_256</b>((e/d)(f))</p></td>
 <td>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">#3497</a><br />
 Version 10.0.10240</td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
 <p> </p></td>
 <td>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3476">#3476</a><br />
 Version 10.0.10240</td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
 <p> </p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2853">#2853</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CCM (KS: 256 )</b> (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 (Tag Length(s): 16 )</p>
+<td><p><b>CCM (KS: 256)</b> (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 32 (Nonce Length(s): 12 (Tag Length(s): 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">Val#2832</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 BitLocker� Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2848">#2848</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><p><b>CCM (KS: 128 , 192 , 256 )</b> (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )</p>
-<p><b>CMAC (Generation/Verification ) (KS: 128</b>; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )</p>
-<p><b>GCM (KS: AES_128</b>( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )</p>
-<p><b>(KS: AES_256</b>( e/d ) Tag Length(s): 128 120 112 104 96 )</p>
-<p><b>IV Generated:</b>  ( Externally ) ; PT Lengths Tested:  ( 0 , 128 , 1024 , 8 , 1016 ) ; AAD Lengths tested:  ( 0 , 128 , 1024 , 8 , 1016 ) ; IV Lengths Tested:  ( 8 , 1024 ) ; 96BitIV_Supported ;<br />
+<td><p><b>CCM (KS: 128, 192, 256)</b> (Assoc. Data Len Range: 0-0, 2^16) (Payload Length Range: 0 - 0 (Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16)</p>
+<p><b>CMAC (Generation/Verification) (KS: 128</b>; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 192; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16) (KS: 256; Block Size(s): Full/Partial; Msg Len(s) Min: 0 Max: 2^16; Tag Len(s) Min: 0 Max: 16)</p>
+<p><b>GCM (KS: AES_128</b>(e/d) Tag Length(s): 128 120 112 104 96) (KS: AES_192(e/d) Tag Length(s): 128 120 112 104 96)</p>
+<p><b>(KS: AES_256</b>(e/d) Tag Length(s): 128 120 112 104 96)</p>
+<p><b>IV Generated:</b>  (Externally); PT Lengths Tested:  (0, 128, 1024, 8, 1016); AAD Lengths tested:  (0, 128, 1024, 8, 1016); IV Lengths Tested:  (8, 1024); 96BitIV_Supported;<br />
 <b>OtherIVLen_Supported<br />
 GMAC_Supported</b></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">2832</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CCM (KS: 128 , 192 , 256</b> ) <b>(Assoc. Data Len Range</b>: 0 - 0 , 2^16 ) <b>(Payload Length Range</b>: 0 - 32 ( <b>Nonce Length(s)</b>: 7 8 9 10 11 12 13 <b>(Tag Length(s)</b>: 4 6 8 10 12 14 16 )<br />
+<td><p><b>CCM (KS: 128, 192, 256</b>) <b>(Assoc. Data Len Range</b>: 0-0, 2^16) <b>(Payload Length Range</b>: 0 - 32 (<b>Nonce Length(s)</b>: 7 8 9 10 11 12 13 <b>(Tag Length(s)</b>: 4 6 8 10 12 14 16)<br />
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a></p>
-<p><b>CMAC</b> (Generation/Verification ) <b>(KS: 128;</b> Block Size(s): ; <b>Msg Len(s)</b> Min: 0 Max: 2^16 ; <b>Tag Len(s)</b> Min: 16 Max: 16 ) <b>(KS: 192</b>; Block Size(s): ; <b>Msg Len(s)</b> Min: 0 Max: 2^16 ; <b>Tag Len(s)</b> Min: 16 Max: 16 ) <b>(KS: 256</b>; Block Size(s): ; <b>Msg Len(s)</b> Min: 0 Max: 2^16 ; <b>Tag Len(s)</b> Min: 16 Max: 16 )<br />
+<p><b>CMAC</b> (Generation/Verification) <b>(KS: 128;</b> Block Size(s); <b>Msg Len(s)</b> Min: 0 Max: 2^16; <b>Tag Len(s)</b> Min: 16 Max: 16) <b>(KS: 192</b>; Block Size(s); <b>Msg Len(s)</b> Min: 0 Max: 2^16; <b>Tag Len(s)</b> Min: 16 Max: 16) <b>(KS: 256</b>; Block Size(s); <b>Msg Len(s)</b> Min: 0 Max: 2^16; <b>Tag Len(s)</b> Min: 16 Max: 16)<br />
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a></p>
-<p><b>GCM(KS: AES_128</b>( e/d ) Tag Length(s): 128 120 112 104 96 ) <b>(KS: AES_192</b>( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-<b>(KS: AES_256</b>( e/d ) Tag Length(s): 128 120 112 104 96 )<br />
-<b>IV Generated:</b> ( Externally ) ; <b>PT Lengths Tested:</b> ( 0 , 128 , 1024 , 8 , 1016 ) ; <b>AAD Lengths tested:</b> ( 0 , 128 , 1024 , 8 , 1016 ) ; <b>IV Lengths Tested:</b> ( 8 , 1024 ) ; <b>96BitIV_Supported<br />
+<p><b>GCM(KS: AES_128</b>(e/d) Tag Length(s): 128 120 112 104 96) <b>(KS: AES_192</b>(e/d) Tag Length(s): 128 120 112 104 96)<br />
+<b>(KS: AES_256</b>(e/d) Tag Length(s): 128 120 112 104 96)<br />
+<b>IV Generated:</b> (Externally); <b>PT Lengths Tested:</b> (0, 128, 1024, 8, 1016); <b>AAD Lengths tested:</b> (0, 128, 1024, 8, 1016); <b>IV Lengths Tested:</b> (8, 1024); <b>96BitIV_Supported<br />
 GMAC_Supported</b></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2216">#2216</a></td>
 </tr>
 <tr class="even">
-<td><p><b>CCM (KS: 256 ) (Assoc. Data Len Range:</b> 0 - 0 , 2^16 <b>) (Payload Length Range:</b> 0 - 32 ( <b>Nonce Length(s)</b>: 12 <b>(Tag Length(s)</b>: 16 )</p>
+<td><p><b>CCM (KS: 256) (Assoc. Data Len Range:</b> 0 - 0, 2^16 <b>) (Payload Length Range:</b> 0 - 32 (<b>Nonce Length(s)</b>: 12 <b>(Tag Length(s)</b>: 16)</p>
 <p>AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">Val#2196</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 BitLocker® Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2198">#2198</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB128</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CTR</b> ( int only; 128 , 192 , 256 )</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB128</b> (e/d; 128, 192, 256);</p>
+<p><b>CTR</b> (int only; 128, 192, 256)</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Next Generation Symmetric Cryptographic Algorithms Implementations (SYMCRYPT) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">#2197</a></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
 <p> </p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Symmetric Algorithm Implementations (RSA32) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2196">#2196</a></td>
 </tr>
 <tr class="odd">
-<td><b>CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range:</b> 0 – 0 , 2^16 <b>) (Payload Length Range:</b> 0 - 32 <b>( Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s):</b> 4 6 8 10 12 14 16 <b>)</b><br />
+<td><b>CCM (KS: 128, 192, 256) (Assoc. Data Len Range:</b> 0 – 0, 2^16 <b>) (Payload Length Range:</b> 0 - 32 <b>(Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s):</b> 4 6 8 10 12 14 16 <b>)</b><br />
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a></td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1187">#1187</a></p>
 <p>Windows 7 Ultimate and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1178">#1178</a></p></td>
 </tr>
 <tr class="even">
-<td><b>CCM (KS: 128 , 256 ) (Assoc. Data Len Range:</b> 0 - 8 <b>) (Payload Length Range:</b> 4 - 32 <b>( Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s):</b> 4 6 8 14 16 <b>)</b><br />
+<td><b>CCM (KS: 128, 256) (Assoc. Data Len Range:</b> 0 - 8 <b>) (Payload Length Range:</b> 4 - 32 <b>(Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s):</b> 4 6 8 14 16 <b>)</b><br />
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a></td>
 <td>Windows 7 Ultimate and SP1 and Windows Server 2008 R2 and SP1 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1177">#1177</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p>
 <p> </p></td>
 <td>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a></td>
 </tr>
 <tr class="even">
 <td><p><b>GCM</b></p>
 <p><b>GMAC</b></p></td>
-<td>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a> , vendor-affirmed</td>
+<td>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">#1168</a>, vendor-affirmed</td>
 </tr>
 <tr class="odd">
-<td><b>CCM (KS: 128 , 256 ) (Assoc. Data Len Range:</b> 0 - 8 <b>) (Payload Length Range:</b> 4 - 32 <b>( Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s):</b> 4 6 8 14 16 <b>)</b></td>
+<td><b>CCM (KS: 128, 256) (Assoc. Data Len Range:</b> 0 - 8 <b>) (Payload Length Range:</b> 4 - 32 <b>(Nonce Length(s):</b> 7 8 12 13 <b>(Tag Length(s):</b> 4 6 8 14 16 <b>)</b></td>
 <td>Windows Vista Ultimate SP1 and Windows Server 2008 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#760">#760</a></td>
 </tr>
 <tr class="even">
-<td><b>CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range:</b> 0 - 0 , 2^16 <b>) (Payload Length Range:</b> 1 - 32 <b>( Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s):</b> 4 6 8 10 12 14 16 <b>)</b></td>
+<td><b>CCM (KS: 128, 192, 256) (Assoc. Data Len Range:</b> 0 - 0, 2^16 <b>) (Payload Length Range:</b> 1 - 32 <b>(Nonce Length(s):</b> 7 8 9 10 11 12 13 <b>(Tag Length(s):</b> 4 6 8 10 12 14 16 <b>)</b></td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#757">#757</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#756">#756</a></p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CBC</b> ( e/d; 128 , 256 );</p>
-<p><b>CCM</b> (<b>KS: 128 , 256</b> ) (<b>Assoc. Data Len Range</b>: 0 - 8 ) (<b>Payload Length Range</b>: 4 - 32 ( <b>Nonce Length(s)</b>: 7 8 12 13 (<b>Tag Length(s)</b>: 4 6 8 14 16 )</p></td>
+<td><p><b>CBC</b> (e/d; 128, 256);</p>
+<p><b>CCM</b> (<b>KS: 128, 256</b>) (<b>Assoc. Data Len Range</b>: 0 - 8) (<b>Payload Length Range</b>: 4 - 32 (<b>Nonce Length(s)</b>: 7 8 12 13 (<b>Tag Length(s)</b>: 4 6 8 14 16)</p></td>
 <td><p>Windows Vista Ultimate BitLocker Drive Encryption <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#715">#715</a></p>
 <p>Windows Vista Ultimate BitLocker Drive Encryption <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#424">#424</a></p></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CFB8</b> ( e/d; 128 , 192 , 256 );</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CFB8</b> (e/d; 128, 192, 256);</p></td>
 <td><p>Windows Vista Ultimate SP1 and Windows Server 2008 Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#739">#739</a></p>
 <p>Windows Vista Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#553">#553</a></p></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CTR</b> ( int only; 128 , 192 , 256 )</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p>
+<p><b>CTR</b> (int only; 128, 192, 256)</p></td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2023">#2023</a></td>
 </tr>
 <tr class="even">
-<td><p><b>ECB</b> ( e/d; 128 , 192 , 256 );</p>
-<p><b>CBC</b> ( e/d; 128 , 192 , 256 );</p></td>
+<td><p><b>ECB</b> (e/d; 128, 192, 256);</p>
+<p><b>CBC</b> (e/d; 128, 192, 256);</p></td>
 <td><p>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2024">#2024</a></p>
 <p>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#818">#818</a></p>
 <p>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#781">#781</a></p>
@@ -2891,7 +2890,7 @@ Deterministic Random Bit Generator (DRBG)
 </ul></li>
 </ul>
 <p>Prerequisite: AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4903">#4903</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1733">#1733</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1733">#1733</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -2930,74 +2929,74 @@ Deterministic Random Bit Generator (DRBG)
 </ul></li>
 </ul>
 <p>Prerequisite: AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4897">#4897</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b> [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4627">Val#4627</a> ) ]</td>
+<td><b>CTR_DRBG:</b> [Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4627">Val#4627</a>)]</td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">#1556</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG:</b> [ Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a> ) ]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a>)]</td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">#1555</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG</b>: [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4434">Val#4434</a> ) ]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4434">Val#4434</a>)]</td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1433">#1433</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>: [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4433">Val#4433</a> ) ]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4433">Val#4433</a>)]</td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1432">#1432</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG</b>: [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4431">Val#4431</a> ) ]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4431">Val#4431</a>)]</td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">#1430</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>: [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4430">Val#4430</a> ) ]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4430">Val#4430</a>)]</td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">#1429</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b> [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4074">Val#4074</a> ) ]</td>
-<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">#1222</a></p>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4074">Val#4074</a>)]</td>
+<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">#1222</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG:</b> [ Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a> ) ]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a>)]</td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">#1217</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b> [ Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a> ) ]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a>)]</td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">#955</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG:</b> [ Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a> ) ]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a>)]</td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">#868</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG:</b> [ Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">Val#2832</a> ) ]</td>
+<td><b>CTR_DRBG:</b>[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2832">Val#2832</a>)]</td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">#489</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>: [ Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a> ) ]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_Use_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2197">Val#2197</a>)]</td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Next Generation Symmetric Cryptographic Algorithms Implementations (SYMCRYPT) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_DRBG</b>: [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2023">Val#2023</a> ) ]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#2023">Val#2023</a>)]</td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">#193</a></td>
 </tr>
 <tr class="even">
-<td><b>CTR_DRBG</b>: [ Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: ( AES-256 ) ( AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a> ) ]</td>
+<td><b>CTR_DRBG</b>:[Prediction Resistance Tested: Not Enabled; BlockCipher_No_df: (AES-256) (AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#1168">Val#1168</a>)]</td>
 <td>Windows 7 Ultimate and SP1 and Windows Server 2008 R2 and SP1 RNG Library <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">#23</a></td>
 </tr>
 <tr class="odd">
@@ -3133,16 +3132,16 @@ Deterministic Random Bit Generator (DRBG)
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1301">#1301</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1301">#1301</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:</b></p>
-<p><b>PQG(gen)</b>PARMS TESTED:   [ (2048,256)SHA( 256 ); (3072,256) SHA( 256 ) ]</p>
-<p><b>PQG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]</p>
-<p><b>KeyPairGen</b>:   [ (2048,256) ; (3072,256) ]</p>
-<p><b>SIG(gen)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ); ]</p>
-<p><b>SIG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]</p>
+<p><b>PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)]</p>
+<p><b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
+<p><b>KeyPairGen</b>:   [(2048,256); (3072,256)]</p>
+<p><b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ]</p>
+<p><b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
 <p>DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">#1223</a></p>
@@ -3150,16 +3149,16 @@ Deterministic Random Bit Generator (DRBG)
 </tr>
 <tr class="even">
 <td><b>FIPS186-4:<br />
-PQG(ver)PARMS TESTED:</b>   [ (1024,160) SHA( 1 ); ]<br />
-<b>SIG(ver)PARMS TESTED:</b>   [ (1024,160) SHA( 1 ); ]<br />
+PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
+<b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">#1188</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-PQG(ver)PARMS TESTED:</b>   [ (1024,160) SHA( 1 ); ]<br />
-<b>SIG(ver)PARMS TESTED:</b>   [ (1024,160) SHA( 1 ); ]<br />
+PQG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
+<b>SIG(ver)PARMS TESTED:</b>   [(1024,160) SHA(1); ]<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">#1187</a></p>
 <p>Version 8.00.6246</p></td>
@@ -3167,12 +3166,12 @@ SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
 PQG(gen)</b>PARMS TESTED: [<br />
-(2048,256)SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-<b>PQG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-KeyPairGen:    [ (2048,256) ; (3072,256) ]<br />
-<b>SIG(gen)</b>PARMS TESTED:   [ (2048,256)<br />
-SHA( 256 ); (3072,256) SHA( 256 ); ]<br />
-<b>SIG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]</p>
+(2048,256)SHA(256); (3072,256) SHA(256)]<br />
+<b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
+KeyPairGen:    [(2048,256); (3072,256)]<br />
+<b>SIG(gen)</b>PARMS TESTED:   [(2048,256)<br />
+SHA(256); (3072,256) SHA(256); ]<br />
+<b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">#1098</a></p>
@@ -3180,9 +3179,9 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-PQG(gen)</b>PARMS TESTED:   [ (2048,256)SHA( 256 ); (3072,256) SHA( 256 ) ] <b>PQG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 )]<br />
-KeyPairGen:    [ (2048,256) ; (3072,256) ] <b>SIG(gen)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ); ]<br />
-<b>SIG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]</p>
+PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)] <b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
+KeyPairGen:    [(2048,256); (3072,256)] <b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ]<br />
+<b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val# 955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">#1024</a></p>
@@ -3190,10 +3189,10 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-PQG(gen)</b>PARMS TESTED:   [ (2048,256)SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-<b>PQG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-KeyPairGen:    [ (2048,256) ; (3072,256) ]<br />
-<b>SIG(gen)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ); ] <b>SIG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]</p>
+PQG(gen)</b>PARMS TESTED:   [(2048,256)SHA(256); (3072,256) SHA(256)]<br />
+<b>PQG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
+KeyPairGen:    [(2048,256); (3072,256)]<br />
+<b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ] <b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val# 868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">#983</a></p>
@@ -3202,12 +3201,12 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
 PQG(gen)</b>PARMS TESTED:   [<br />
-(2048,256)SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-<b>PQG(ver</b>)PARMS TESTED:   [ (2048,256)<br />
-SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-KeyPairGen:    [ (2048,256) ; (3072,256) ]<br />
-<b>SIG(gen)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ); ]<br />
-<b>SIG(ver)</b>PARMS TESTED:   [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]</p>
+(2048,256)SHA(256); (3072,256) SHA(256)]<br />
+<b>PQG(ver</b>)PARMS TESTED:   [(2048,256)<br />
+SHA(256); (3072,256) SHA(256)]<br />
+KeyPairGen:    [(2048,256); (3072,256)]<br />
+<b>SIG(gen)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256); ]<br />
+<b>SIG(ver)</b>PARMS TESTED:   [(2048,256) SHA(256); (3072,256) SHA(256)]</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val# 2373</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">#855</a></p>
@@ -3220,10 +3219,10 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p>
 <p><b>FIPS186-4:<br />
-PQG(gen)PARMS TESTED</b>: [ (2048,256)SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-<b>PQG(ver)PARMS TESTED</b>: [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
-<b>SIG(gen)PARMS TESTED</b>: [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ); ]<br />
-<b>SIG(ver)PARMS TESTED</b>: [ (2048,256) SHA( 256 ); (3072,256) SHA( 256 ) ]<br />
+PQG(gen)PARMS TESTED</b>: [(2048,256)SHA(256); (3072,256) SHA(256)]<br />
+<b>PQG(ver)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
+<b>SIG(gen)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256); ]<br />
+<b>SIG(ver)PARMS TESTED</b>: [(2048,256) SHA(256); (3072,256) SHA(256)]<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/dsahistoricalval.htm#687">Historical DSA List Val#687</a>.</p></td>
@@ -3445,7 +3444,7 @@ SHS: SHA-1 (BYTE)</p></td>
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1733">#1733</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1252">#1252</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1252">#1252</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
@@ -3615,7 +3614,7 @@ SHS: SHA-1 (BYTE)</p></td>
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1247">#1247</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1247">#1247</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -3649,12 +3648,12 @@ SHS: SHA-1 (BYTE)</p></td>
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1246">#1246</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1246">#1246</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 TestingCandidates )<br />
+PKG: CURVES</b>(P-256 P-384 TestingCandidates)<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1136">#1136</a></p>
@@ -3662,10 +3661,10 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="even">
 <td><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>PKV: CURVES</b>( P-256 P-384 P-521 )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )<br />
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1135">#1135</a></p>
@@ -3673,10 +3672,10 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>PKV: CURVES</b>( P-256 P-384 P-521 )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )<br />
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
 SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">#1133</a></p>
@@ -3684,10 +3683,10 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="even">
 <td><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>PKV: CURVES</b>( P-256 P-384 P-521 )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-<b>SigVer: CURVES</b>( P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) )<br />
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+<b>SigVer: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512))<br />
 <b>SHS:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
 <b>DRBG:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">Val# 1430</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1073">#1073</a></p>
@@ -3695,10 +3694,10 @@ PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>PKV: CURVES</b>( P-256 P-384 P-521 )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-<b>SigVer: CURVES</b>( P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) )<br />
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512) <em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+<b>SigVer: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 384) P-521: (SHA-1, 512))<br />
 <b>SHS:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
 <b>DRBG:</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">Val# 1429</a></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1072">#1072</a></p>
@@ -3706,21 +3705,21 @@ PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 TestingCandidates )<br />
-<b>PKV: CURVES</b>( P-256 P-384 )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-1, 256) P-384: (SHA-1, 256, 384) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-1, 256) P-384: (SHA-1, 256, 384) )</p>
+PKG: CURVES</b>(P-256 P-384 TestingCandidates)<br />
+<b>PKV: CURVES</b>(P-256 P-384)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 256, 384) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-1, 256) P-384: (SHA-1, 256, 384))</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">Val# 1222</a></p></td>
-<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#920">#920</a></p>
+<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#920">#920</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>PKV: CURVES</b>( P-256 P-384 P-521 )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )</p>
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>PKV: CURVES</b>(P-256 P-384 P-521)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">#911</a></p>
@@ -3728,9 +3727,9 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )</p>
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val# 955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">#760</a></p>
@@ -3738,9 +3737,9 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-SigVer: CURVES( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )</p>
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+SigVer: CURVES(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val# 868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">#706</a></p>
@@ -3748,9 +3747,9 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )</p>
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))</p>
 <p>SHS: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">#505</a></p>
@@ -3758,16 +3757,16 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-2:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 )<br />
+PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-<b>SIG(ver):CURVES</b>( P-256 P-384 P-521 )<br />
+<b>SIG(ver):CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p>
 <p><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )<br />
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#341">Historical ECDSA List Val#341</a>.</p></td>
@@ -3775,16 +3774,16 @@ Some of the previously validated components for this validation have been remove
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-2:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 )<br />
+PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
-<b>SIG(ver): CURVES</b>( P-256 P-384 P-521 )<br />
+<b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a></p>
 <p><b>FIPS186-4:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 ExtraRandomBits )<br />
-<b>SigGen: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
-<b>SigVer: CURVES</b>( P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512) )<br />
+PKG: CURVES</b>(P-256 P-384 P-521 ExtraRandomBits)<br />
+<b>SigGen: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512)<br />
+<b>SigVer: CURVES</b>(P-256: (SHA-256) P-384: (SHA-384) P-521: (SHA-512))<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#295">Historical ECDSA List Val#295</a>.</p></td>
@@ -3792,10 +3791,10 @@ Some of the previously validated components for this validation have been remove
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 )<br />
+PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
-<b>SIG(ver): CURVES</b>( P-256 P-384 P-521 )<br />
+<b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
 <b>DRBG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#142">Historical ECDSA List Val#142</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#141">Historical ECDSA List Val#141</a>.</td>
@@ -3804,9 +3803,9 @@ Some of the previously validated components for this validation have been remove
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 )<br />
+PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-<b>SIG(ver): CURVES</b>( P-256 P-384 P-521 )<br />
+<b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#83">Historical ECDSA List Val#83</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#82">Historical ECDSA List Val#82</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#83">#83</a></p>
@@ -3814,10 +3813,10 @@ Some of the previously validated components for this validation have been remove
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-PKG: CURVES</b>( P-256 P-384 P-521 )<br />
+PKG: CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
 <b>RNG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val# 321</a><br />
-<b>SIG(ver): CURVES</b>( P-256 P-384 P-521 )<br />
+<b>SIG(ver): CURVES</b>(P-256 P-384 P-521)<br />
 <b>SHS</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
 <b>RNG</b>: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/ecdsahistoricalval.html#60">Historical ECDSA List Val#60</a>.</td>
@@ -3886,7 +3885,7 @@ Some of the previously validated components for this validation have been remove
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3270">#3270</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3270">#3270</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -3979,160 +3978,160 @@ Some of the previously validated components for this validation have been remove
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3267">#3267</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3267">#3267</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3062">#3062</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1(Key Sizes Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p></td>
+<td><p><b>HMAC-SHA1(Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3061">#3061</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested:</b> KSBS ) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2946">#2946</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested:</b> KSBS ) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2945">#2945</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested:</b> KSBS ) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2943">#2943</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested:</b> KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested:</b> KSBS ) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested:</b> KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested:</b> KSBS) SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2942">#2942</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS )<br />
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA256</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA384</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p></td>
-<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2661">#2661</a></p>
+<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2661">#2661</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA256</b> ( Key Size Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA384</b> ( Key Size Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
-<p><b>HMAC-SHA512</b> ( Key Size Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p></td>
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p>
+<p><b>HMAC-SHA512</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">#2651</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS )<br />
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p>
-<p><b>HMAC-SHA256</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p>
-<p><b>HMAC-SHA384</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p>
-<p><b>HMAC-SHA512</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA512</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">#2381</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS )<br />
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
 SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p>
-<p><b>HMAC-SHA256</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p>
-<p><b>HMAC-SHA384</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
 <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886"> SHSVal# 2886</a></p>
-<p><b>HMAC-SHA512</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA512</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">#2233</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS )<br />
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p>
-<p><b>HMAC-SHA256</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p>
-<p><b>HMAC-SHA384</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p>
-<p><b>HMAC-SHA512</b> ( Key Size Ranges Tested:  KSBS )<br />
+<p><b>HMAC-SHA512</b> (Key Size Ranges Tested:  KSBS)<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">#1773</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
-<p><b>HMAC-SHA256</b> ( Key Size Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
-<p><b>HMAC-SHA384</b> ( Key Size Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
-<p><b>HMAC-SHA512</b> ( Key Size Ranges Tested: KSBS ) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p></td>
+<td><p><b>HMAC-SHA1</b> (Key Sizes Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
+<p><b>HMAC-SHA256</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
+<p><b>HMAC-SHA384</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p>
+<p><b>HMAC-SHA512</b> (Key Size Ranges Tested: KSBS) SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2764">Val#2764</a></p></td>
 <td><p>Windows CE and Windows Mobile, and Windows Embedded Handheld Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2122">#2122</a></p>
 <p>Version 5.2.29344</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p></td>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 BitLocker® Cryptographic Implementations #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1347">1347</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Enhanced Cryptographic Provider (RSAENH) #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1346">1346</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS )</b></p>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS)</b></p>
 <p><b>SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS )</b></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS)</b></p>
 <p><b>SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS )</b></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS)</b></p>
 <p><b>SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS )</b></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS)</b></p>
 <p><b>SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Next Generation Symmetric Cryptographic Algorithms Implementations (SYMCRYPT) #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">1345</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
-<p><b>Tinker HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
+<p><b>Tinker HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a></p></td>
 <td>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1364">#1364</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a></p></td>
 <td>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1227">#1227</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p></td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#686">#686</a></p>
 <p>Windows 7 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#677">#677</a></p>
 <p>Windows Server 2008 R2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#687">#687</a></p>
@@ -4140,108 +4139,108 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1(Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p></td>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a></p></td>
 <td>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#675">#675</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a></p></td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#452">#452</a></td>
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
 <td>Windows Vista Ultimate SP1 and Windows Server 2008 BitLocker Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#415">#415</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS )</b>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS)</b>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
 <td><p>Windows Server 2008 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#408">#408</a></p>
 <p>Windows Vista Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#407">#407</a></p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS )SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS)SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p></td>
 <td>Windows Vista Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#297">#297</a></td>
 </tr>
 <tr class="even">
-<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#785">Val#785</a></td>
+<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#785">Val#785</a></td>
 <td><p>Windows XP Professional SP3 Kernel Mode Cryptographic Module (fips.sys) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#429">#429</a></p>
 <p>Windows XP, vendor-affirmed</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a></p></td>
 <td>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#428">#428</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a></p></td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#289">#289</a></td>
 </tr>
 <tr class="odd">
-<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#610">Val#610</a></td>
+<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#610">Val#610</a></td>
 <td>Windows Server 2003 SP2 Kernel Mode Cryptographic Module (fips.sys) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#287">#287</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a></p></td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#413">#413</a></p>
 <p>Windows Vista Ultimate SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#412">#412</a></p></td>
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">Val#737</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">Val#737</a></p></td>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#737">Val#737</a></p></td>
 <td>Windows Vista Ultimate BitLocker Drive Encryption <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#386">#386</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 ( Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#618">Val#618</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#618">Val#618</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a></p></td>
 <td>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#298">#298</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 ( Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS )SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS)SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a></p></td>
 <td>Windows CE 6.0 and Windows CE 6.0 R2 and Windows Mobile Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#267">#267</a></td>
 </tr>
 <tr class="even">
-<td><p><b>HMAC-SHA1 ( Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a></p></td>
 <td>Windows CE and Windows Mobile 6.0 and Windows Mobil 6.5 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#260">#260</a></td>
 </tr>
 <tr class="odd">
 <td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#495">Val#495</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#495">Val#495</a></p></td>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#495">Val#495</a></p></td>
 <td>Windows Vista BitLocker Drive Encryption <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#199">#199</a></td>
 </tr>
 <tr class="even">
-<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">Val#364</a></td>
+<td><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">Val#364</a></td>
 <td><p>Windows Server 2003 SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#99">#99</a></p>
 <p>Windows XP, vendor-affirmed</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
-<p><b>HMAC-SHA256 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
-<p><b>HMAC-SHA384 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
-<p><b>HMAC-SHA512 ( Key Size Ranges Tested: KSBS ) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p></td>
+<td><p><b>HMAC-SHA1 (Key Sizes Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
+<p><b>HMAC-SHA256 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
+<p><b>HMAC-SHA384 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p>
+<p><b>HMAC-SHA512 (Key Size Ranges Tested: KSBS) SHS</b><a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a></p></td>
 <td>Windows CE 5.00 and Windows CE 5.01 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#31">#31</a></td>
 </tr>
 </tbody>
@@ -4325,7 +4324,7 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1252">#1252</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1733">#1733</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#149">#149</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#149">#149</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -4778,11 +4777,11 @@ SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1301">#1301</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#146">#146</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#146">#146</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Full Validation   Key Regeneration ) <b>SCHEMES</b> [ <b>FullUnified</b> ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ]</p>
+<td><p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Full Validation   Key Regeneration) <b>SCHEMES</b> [<b>FullUnified</b> (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC)]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
 DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1135">Val#1135</a><br />
 DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">Val#1556</a></p></td>
@@ -4790,15 +4789,15 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation ) <b>SCHEMES</b> [ <b>dhEphem</b> ( KARole(s): Initiator / Responder )<br />
-( <b>FB:</b> SHA256 ) ( <b>FC:</b> SHA256 ) ]<br />
-[ <b>dhOneFlow</b> ( <b>FB:</b> SHA256 ) ( <b>FC:</b> SHA256 ) ] [ <b>dhStatic</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>FB:</b> SHA256 HMAC ) ( <b>FC:</b> SHA256   HMAC ) ]<br />
+<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) <b>SCHEMES</b> [<b>dhEphem</b> (KARole(s): Initiator / Responder)<br />
+(<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
+[<b>dhOneFlow</b> (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)] [<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b> SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
 DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1223">Val#1223</a><br />
 DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val#1555</a></p>
-<p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation ) <b>SCHEMES</b> [ <b>EphemeralUnified</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ <b>OnePassDH</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
-[ <b>StaticUnified</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
+<p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[<b>OnePassDH</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
+[<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 <br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
 ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1133">Val#1133</a><br />
@@ -4807,29 +4806,29 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation ) <b>SCHEMES</b> [ <b>dhEphem</b> ( KARole(s): Initiator / Responder )<br />
-( <b>FB:</b> SHA256 ) ( <b>FC:</b> SHA256 ) ]<br />
-[ <b>dhOneFlow</b> ( KARole(s): Initiator / Responder ) ( <b>FB:</b> SHA256 ) ( <b>FC:</b> SHA256 ) ] [ <b>dhStatic</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>FB:</b> SHA256 HMAC ) ( <b>FC:</b> SHA256   HMAC ) ]<br />
+<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) <b>SCHEMES</b> [<b>dhEphem</b> (KARole(s): Initiator / Responder)<br />
+(<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
+[<b>dhOneFlow</b> (KARole(s): Initiator / Responder) (<b>FB:</b> SHA256) (<b>FC:</b> SHA256)] [<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b> SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
 DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1188">Val#1188</a><br />
 DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">Val#1430</a></p>
-<p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration ) <b>SCHEMES</b> [ <b>EphemeralUnified</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ <b>OnePassDH</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
-[ <b>StaticUnified</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512) ) ]</p></td>
+<p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[<b>OnePassDH</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
+[<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]</p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#115">#115</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="even">
-<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation ) <b>SCHEMES</b> [ <b>dhEphem</b> ( KARole(s): Initiator / Responder )<br />
-( <b>FB:</b> SHA256 ) ( <b>FC:</b> SHA256 ) ]<br />
-[ <b>dhHybridOneFlow</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>FB:</b>SHA256 HMAC ) ( <b>FC:</b> SHA256   HMAC ) ]<br />
-[ <b>dhStatic</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>FB:</b>SHA256 HMAC ) ( <b>FC:</b> SHA256   HMAC ) ]<br />
+<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) <b>SCHEMES</b> [<b>dhEphem</b> (KARole(s): Initiator / Responder)<br />
+(<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
+[<b>dhHybridOneFlow</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b>SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
+[<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FB:</b>SHA256 HMAC) (<b>FC:</b> SHA256   HMAC)]<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
 DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1187">Val#1187</a><br />
 DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">Val#1429</a></p>
-<p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration ) <b>SCHEMES</b> [ <b>EphemeralUnified</b> ( <b>No_KC</b> ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ <b>OnePassDH</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
-[ <b>StaticUnified</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC:</b> P-256   SHA256   HMAC ) ( <b>ED:</b> P-384   SHA384   HMAC ) ( <b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
+<p><b>ECC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b>) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[<b>OnePassDH</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
+[<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC:</b> P-256   SHA256   HMAC) (<b>ED:</b> P-384   SHA384   HMAC) (<b>EE:</b> P-521   HMAC (SHA512, HMAC_SHA512))]<br />
 <br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
 ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#1072">Val#1072</a><br />
@@ -4838,70 +4837,70 @@ DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Full Validation   Key Regeneration )<br />
-<b>SCHEMES  [ FullUnified  ( No_KC</b>  &amp;lt; KARole(s): Initiator / Responder &amp;gt; &amp;lt; KDF: CONCAT &amp;gt; ) ( <b>EC:</b>  P-256   SHA256   HMAC ) ( <b>ED:</b>  P-384   SHA384   HMAC ) ]</p>
+<td><p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Full Validation   Key Regeneration)<br />
+<b>SCHEMES  [FullUnified  (No_KC</b>  &amp;lt; KARole(s): Initiator / Responder &amp;gt; &amp;lt; KDF: CONCAT &amp;gt;) (<b>EC:</b>  P-256   SHA256   HMAC) (<b>ED:</b>  P-384   SHA384   HMAC)]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#920">Val#920</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">Val#1222</a></p></td>
-<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#93">#93</a></p>
+<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#93">#93</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation )<br />
-<b>SCHEMES</b>  [ dhEphem  ( KARole(s): Initiator / Responder )<br />
-( <b>FB:</b> SHA256 ) ( <b>FC:</b> SHA256 ) ]<br />
-[ dhOneFlow ( KARole(s): Initiator / Responder ) ( <b>FB:</b>  SHA256 ) ( <b>FC:</b>  SHA256 ) ] [ <b>dhStatic (No_KC</b>  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( FB:  SHA256 HMAC ) ( FC:  SHA256   HMAC ) ]</p>
+<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation)<br />
+<b>SCHEMES</b>  [dhEphem  (KARole(s): Initiator / Responder)<br />
+(<b>FB:</b> SHA256) (<b>FC:</b> SHA256)]<br />
+[dhOneFlow (KARole(s): Initiator / Responder) (<b>FB:</b>  SHA256) (<b>FC:</b>  SHA256)] [<b>dhStatic (No_KC</b>  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">Val#1098</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val#1217</a></p>
-<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration ) <b>SCHEMES</b>  [ EphemeralUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ OnePassDH  ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
-[ StaticUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]</p>
+<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) <b>SCHEMES</b>  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
+[StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1098">Val#1098</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#911">Val#911</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val#1217</a> HMAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">Val#2651</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">#92</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation ) SCHEMES  [ dhEphem  ( KARole(s): Initiator / Responder )<br />
-( FB: SHA256 ) ( FC: SHA256 ) ]<br />
-[ dhOneFlow ( KARole(s): Initiator / Responder ) ( FB:  SHA256 ) ( FC:  SHA256 ) ] [ dhStatic ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( FB:  SHA256 HMAC ) ( FC:  SHA256   HMAC ) ]</p>
+<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) SCHEMES  [dhEphem  (KARole(s): Initiator / Responder)<br />
+(FB: SHA256) (FC: SHA256)]<br />
+[dhOneFlow (KARole(s): Initiator / Responder) (FB:  SHA256) (FC:  SHA256)] [dhStatic (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#1024">Val#1024</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val#955</a></p>
-<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration ) SCHEMES  [ EphemeralUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ OnePassDH  ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
-[ StaticUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]</p>
+<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) SCHEMES  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
+[StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#760">Val#760</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val#955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#72">#72</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation ) SCHEMES  [ dhEphem  ( KARole(s): Initiator / Responder )<br />
-( FB: SHA256 ) ( FC: SHA256 ) ]<br />
-[ dhOneFlow ( KARole(s): Initiator / Responder ) ( FB:  SHA256 ) ( FC:  SHA256 ) ] [ dhStatic ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( FB:  SHA256 HMAC ) ( FC:  SHA256   HMAC ) ]</p>
+<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) SCHEMES  [dhEphem  (KARole(s): Initiator / Responder)<br />
+(FB: SHA256) (FC: SHA256)]<br />
+[dhOneFlow (KARole(s): Initiator / Responder) (FB:  SHA256) (FC:  SHA256)] [dhStatic (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#983">Val#983</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val#868</a></p>
-<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration ) SCHEMES  [ EphemeralUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ OnePassDH  ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
-[ StaticUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]</p>
+<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) SCHEMES  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
+[StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#706">Val#706</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val#868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">#64</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation ) SCHEMES  [ dhEphem  ( KARole(s): Initiator / Responder )<br />
-( FB: SHA256 ) ( FC: SHA256 ) ]<br />
-[ dhOneFlow ( KARole(s): Initiator / Responder ) ( FB:  SHA256 ) ( FC:  SHA256 ) ] [ dhStatic ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( FB:  SHA256 HMAC ) ( FC:  SHA256   HMAC ) ]</p>
+<td><p><b>FFC:</b> (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation) SCHEMES  [dhEphem  (KARole(s): Initiator / Responder)<br />
+(FB: SHA256) (FC: SHA256)]<br />
+[dhOneFlow (KARole(s): Initiator / Responder) (FB:  SHA256) (FC:  SHA256)] [dhStatic (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (FB:  SHA256 HMAC) (FC:  SHA256   HMAC)]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#855">Val#855</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a></p>
-<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration ) SCHEMES  [ EphemeralUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ OnePassDH  ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]<br />
-[ StaticUnified ( No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt; ) ( EC:  P-256   SHA256   HMAC ) ( ED:  P-384   SHA384   HMAC ) ( EE:  P-521   HMAC (SHA512, HMAC_SHA512) ) ]</p>
+<p><b>ECC:</b>  (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG   DPV   KPG   Partial Validation   Key Regeneration) SCHEMES  [EphemeralUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[OnePassDH  (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]<br />
+[StaticUnified (No_KC  &amp;lt; KARole(s): Initiator / Responder &amp;gt;) (EC:  P-256   SHA256   HMAC) (ED:  P-384   SHA384   HMAC) (EE:  P-521   HMAC (SHA512, HMAC_SHA512))]</p>
 <p>SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#505">Val#505</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#47">#47</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><p><b>FFC</b>: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Partial Validation ) SCHEMES [ <b>dhEphem</b> ( KARole(s): Initiator / Responder )<br />
-( <b>FA</b>: SHA256 ) ( <b>FB</b>: SHA256 ) ( <b>FC</b>: SHA256 ) ]<br />
-[ <b>dhOneFlow</b> ( KARole(s): Initiator / Responder ) ( <b>FA</b>: SHA256 ) ( <b>FB</b>: SHA256 ) ( <b>FC</b>: SHA256 ) ]<br />
-[ <b>dhStatic</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>FA</b>: SHA256 HMAC ) ( <b>FB</b>: SHA256 HMAC ) ( <b>FC</b>: SHA256 HMAC ) ]<br />
+<td><p><b>FFC</b>: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Partial Validation) SCHEMES [<b>dhEphem</b> (KARole(s): Initiator / Responder)<br />
+(<b>FA</b>: SHA256) (<b>FB</b>: SHA256) (<b>FC</b>: SHA256)]<br />
+[<b>dhOneFlow</b> (KARole(s): Initiator / Responder) (<b>FA</b>: SHA256) (<b>FB</b>: SHA256) (<b>FC</b>: SHA256)]<br />
+[<b>dhStatic</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>FA</b>: SHA256 HMAC) (<b>FB</b>: SHA256 HMAC) (<b>FC</b>: SHA256 HMAC)]<br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a> DSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/dsa#687">Val#687</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p>
-<p><b>ECC</b>: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Partial Validation Key Regeneration ) <b>SCHEMES</b> [ <b>EphemeralUnified</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( EC: P-256 SHA256 HMAC ) ( <b>ED</b>: P-384 SHA384 HMAC ) ( <b>EE</b>: P-521 HMAC (SHA512, HMAC_SHA512) ) ) ]<br />
-[ <b>OnePassDH( No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC</b>: P-256 SHA256 ) ( <b>ED</b>: P-384 SHA384 ) ( <b>EE</b>: P-521 (SHA512, HMAC_SHA512) ) ) ]<br />
-[ <b>StaticUnified</b> ( <b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt; ) ( <b>EC</b>: P-256 SHA256 HMAC ) ( <b>ED</b>: P-384 SHA384 HMAC ) ( <b>EE</b>: P-521 HMAC (SHA512, HMAC_SHA512) ) ]<br />
+<p><b>ECC</b>: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Partial Validation Key Regeneration) <b>SCHEMES</b> [<b>EphemeralUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (EC: P-256 SHA256 HMAC) (<b>ED</b>: P-384 SHA384 HMAC) (<b>EE</b>: P-521 HMAC (SHA512, HMAC_SHA512)))]<br />
+[<b>OnePassDH(No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC</b>: P-256 SHA256) (<b>ED</b>: P-384 SHA384) (<b>EE</b>: P-521 (SHA512, HMAC_SHA512)))]<br />
+[<b>StaticUnified</b> (<b>No_KC</b> &amp;lt; KARole(s): Initiator / Responder&amp;gt;) (<b>EC</b>: P-256 SHA256 HMAC) (<b>ED</b>: P-384 SHA384 HMAC) (<b>EE</b>: P-521 HMAC (SHA512, HMAC_SHA512))]<br />
 <br />
 SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a> ECDSA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/ecdsa#341">Val#341</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#36">#36</a></td>
@@ -4960,7 +4959,7 @@ SP 800-108 Key-Based Key Derivation Functions (KBKDF)
 </ul>
 </div>
 <p>K prerequisite: DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1733">#1733</a>, KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#149">#149</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#160">#160</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#160">#160</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -5017,11 +5016,11 @@ SP 800-108 Key-Based Key Derivation Functions (KBKDF)
 </ul>
 </div>
 <p>K prerequisite: KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#146">#146</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#157">#157</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#157">#157</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><b>CTR_Mode:</b> ( Llength( Min0 Max0 ) MACSupported( [HMACSHA1] [HMACSHA256] [HMACSHA384] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )<br />
+<td><b>CTR_Mode:</b> (Llength(Min0 Max0) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA384]) LocationCounter([BeforeFixedData]) rlength([32]))<br />
 <br />
 KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#128">Val#128</a><br />
 DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1556">Val#1556</a><br />
@@ -5030,7 +5029,7 @@ MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><b>CTR_Mode:</b> ( Llength( Min20 Max64 ) MACSupported( [CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )<br />
+<td><b>CTR_Mode:</b> (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))<br />
 <br />
 KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#127">Val#127</a><br />
 AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4624">Val#4624</a><br />
@@ -5040,37 +5039,37 @@ MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CTR_Mode:</b>  ( Llength( Min20 Max64 ) MACSupported( [HMACSHA1] [HMACSHA256] [HMACSHA384] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )</p>
+<td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA384]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
 <p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#93">Val#93</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1222">Val#1222</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2661">Val#2661</a></p></td>
-<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#102">#102</a></p>
+<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#102">#102</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
-<td><p><b>CTR_Mode:</b>  ( Llength( Min20 Max64 ) MACSupported( [CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )</p>
+<td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
 <p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#92">Val#92</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#4064">Val#4064</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val#1217</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2651">Val#2651</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#101">#101</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CTR_Mode:</b>  ( Llength( Min20 Max64 ) MACSupported( [CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )</p>
+<td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
 <p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#72">Val#72</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3629">Val#3629</a> DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val#955</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2381">Val#2381</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#72">#72</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><p><b>CTR_Mode:</b>  ( Llength( Min20 Max64 ) MACSupported( [CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )</p>
+<td><p><b>CTR_Mode:</b>  (Llength(Min20 Max64) MACSupported([CMACAES128] [CMACAES192] [CMACAES256] [HMACSHA1] [HMACSHA256] [HMACSHA384] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
 <p>KAS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kas#64">Val#64</a> AES <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/aes#3497">Val#3497</a> RBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val#868</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#2233">Val#2233</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#66">#66</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>CTR_Mode:</b>  ( Llength( Min0 Max0 ) MACSupported( [HMACSHA1] [HMACSHA256] [HMACSHA512] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )</p>
+<td><p><b>CTR_Mode:</b>  (Llength(Min0 Max0) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
 <p>DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val#489</a> MAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1773">Val#1773</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/kdf#30">#30</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><p><b>CTR_Mode</b>: ( Llength( Min0 Max4 ) MACSupported( [HMACSHA1] [HMACSHA256] [HMACSHA512] ) LocationCounter( [BeforeFixedData] ) rlength( [32] ) )</p>
+<td><p><b>CTR_Mode</b>: (Llength(Min0 Max4) MACSupported([HMACSHA1] [HMACSHA256] [HMACSHA512]) LocationCounter([BeforeFixedData]) rlength([32]))</p>
 <p>DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a> HMAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#1345">Val#1345</a></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="http://csrc.nist.gov/groups/stm/cavp/documents/kbkdf800-108/kbkdfval.htm#3">#3</a></td>
 </tr>
@@ -5092,12 +5091,12 @@ Random Number Generator (RNG)
 </tr>
 <tr class="even">
 <td><p><b>FIPS 186-2 General Purpose</b></p>
-<p><b>[ (x-Original); (SHA-1) ]</b></p></td>
+<p><b>[(x-Original); (SHA-1)]</b></p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations #<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#1110">1110</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS 186-2<br />
-[ (x-Original); (SHA-1) ]</b></td>
+[(x-Original); (SHA-1)]</b></td>
 <td><p>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#1060">#1060</a></p>
 <p>Windows CE 6.0 and Windows CE 6.0 R2 and Windows Mobile Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#292">#292</a></p>
 <p>Windows CE and Windows Mobile 6.0 and Windows Mobile 6.5 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#286">#286</a></p>
@@ -5105,16 +5104,16 @@ Random Number Generator (RNG)
 </tr>
 <tr class="even">
 <td><p><b>FIPS 186-2<br />
-[ (x-Change Notice); (SHA-1) ]</b></p>
+[(x-Change Notice); (SHA-1)]</b></p>
 <p><b>FIPS 186-2 General Purpose<br />
-[ (x-Change Notice); (SHA-1) ]</b></p></td>
+[(x-Change Notice); (SHA-1)]</b></p></td>
 <td><p>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 RNG Library <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#649">#649</a></p>
 <p>Windows Vista Ultimate SP1 and Windows Server 2008 RNG Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#435">#435</a></p>
 <p>Windows Vista RNG implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">#321</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS 186-2 General Purpose<br />
-[ (x-Change Notice); (SHA-1) ]</b></td>
+[(x-Change Notice); (SHA-1)]</b></td>
 <td><p>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#470">#470</a></p>
 <p>Windows XP Professional SP3 Kernel Mode Cryptographic Module (fips.sys) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#449">#449</a></p>
 <p>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#447">#447</a></p>
@@ -5123,7 +5122,7 @@ Random Number Generator (RNG)
 </tr>
 <tr class="even">
 <td><b>FIPS 186-2<br />
-[ (x-Change Notice); (SHA-1) ]</b></td>
+[(x-Change Notice); (SHA-1)]</b></td>
 <td><p>Windows XP Professional SP3 Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#448">#448</a></p>
 <p>Windows Server 2003 SP2 Enhanced DSS and Diffie-Hellman Cryptographic Provider <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#314">#314</a></p></td>
 </tr>
@@ -5228,7 +5227,7 @@ Random Number Generator (RNG)
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1733">#1733</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2676">#2676</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2676">#2676</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -5263,7 +5262,7 @@ Random Number Generator (RNG)
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2674">#2674</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2674">#2674</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -5637,7 +5636,7 @@ Random Number Generator (RNG)
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2668">#2668</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2668">#2668</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -5707,34 +5706,34 @@ Random Number Generator (RNG)
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2667">#2667</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2667">#2667</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 )) (2048 SHA( 1 , 256 , 384 ))<br />
-<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> Sig(Ver): (1024 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) )) (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) ))<br />
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> SIG(Ver) (1024 SHA(1, 256, 384)) (2048 SHA(1, 256, 384))<br />
+<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48)))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Pro, Enterprise, Education Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2524">#2524</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))<br />
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2523">#2523</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-186-4KEY(gen):</b> FIPS186-4_Fixed_e ( 10001 ) ;<br />
-<b>PGM(ProbPrimeCondition):</b> 2048 , 3072 <b>PPTT:</b>( C.3 )<br />
-<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))<br />
-<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> Sig(Ver): (1024 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 62 ) )) (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))<br />
+186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
+<b>PGM(ProbPrimeCondition):</b> 2048, 3072 <b>PPTT:</b>(C.3)<br />
+<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
+<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1555">Val# 1555</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2522">#2522</a></p>
@@ -5743,11 +5742,11 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 <tr class="even">
 <td><b>FIPS186-4:<br />
 186-4KEY(gen):<br />
-PGM(ProbRandom:</b> ( 2048 , 3072 ) <b>PPTT:</b>( C.2 )<br />
-<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))<br />
-<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> Sig(Ver): (1024 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 62 ) )) (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))<br />
+PGM(ProbRandom:</b> (2048, 3072) <b>PPTT:</b>(C.2)<br />
+<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
+<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3790">Val#3790</a></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2521">#2521</a></p>
 <p>Version 10.0.15063</p></td>
@@ -5755,14 +5754,14 @@ SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <tr class="odd">
 <td><p><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a><br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p>
 <p><b>FIPS186-4:<br />
-ALG[ANSIX9.31]</b> Sig(Gen): (2048 SHA( 1 )) (3072 SHA( 1 ))<b><br />
-<em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em></b> Sig(Ver): (1024 SHA( 1 )) (2048 SHA( 1 )) (3072 SHA( 1 ))<br />
-<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))<br />
+ALG[ANSIX9.31]</b> Sig(Gen): (2048 SHA(1)) (3072 SHA(1))<b><br />
+<em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em></b> Sig(Ver): (1024 SHA(1)) (2048 SHA(1)) (3072 SHA(1))<br />
+<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3652">Val#3652</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2415">#2415</a></p>
 <p>Version 7.00.2872</p></td>
@@ -5770,27 +5769,27 @@ SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-p
 <tr class="even">
 <td><p><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a><br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p>
 <p><b>FIPS186-4:<br />
-ALG[ANSIX9.31]</b> Sig(Gen): (2048 SHA( 1 )) (3072 SHA( 1 ))<b><br />
-<em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em></b> Sig(Ver): (1024 SHA( 1 )) (2048 SHA( 1 )) (3072 SHA( 1 ))<br />
-<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))<br />
+ALG[ANSIX9.31]</b> Sig(Gen): (2048 SHA(1)) (3072 SHA(1))<b><br />
+<em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em></b> Sig(Ver): (1024 SHA(1)) (2048 SHA(1)) (3072 SHA(1))<br />
+<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3651">Val#3651</a></p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2414">#2414</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a> , SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a> , SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a> , SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a> , SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a> , SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a></p>
 <p><b>FIPS186-4:<br />
-186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001) ;<br />
-<b>PGM(ProbRandom:</b> ( 2048 , 3072 ) <b>PPTT:</b>( C.2 )<br />
-<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))<br />
+186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
+<b>PGM(ProbRandom:</b> (2048, 3072) <b>PPTT:</b>(C.2)<br />
+<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3649">Val# 3649</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1430">Val# 1430</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2412">#2412</a></p>
@@ -5798,13 +5797,13 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a></p>
 <p><b>FIPS186-4:<br />
-186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001) ;<br />
-<b>PGM(ProbRandom:</b> ( 2048 , 3072 ) <b>PPTT:</b>( C.2 )<br />
-<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 )) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
-</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))<br />
+186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
+<b>PGM(ProbRandom:</b> (2048, 3072) <b>PPTT:</b>(C.2)<br />
+<b>ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512)) <b><em>SIG(gen) with SHA-1 affirmed for use with protocols only.</em><br />
+</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3648">Val#3648</a><br />
 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1429">Val# 1429</a></p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2411">#2411</a></p>
@@ -5812,231 +5811,231 @@ DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 1 , 256 , 384 )) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
-SIG(Ver) (1024 SHA( 1 , 256 , 384 )) (2048 SHA( 1 , 256 , 384 ))<br />
-<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) )) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
-Sig(Ver): (1024 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) )) (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(1, 256, 384)) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
+SIG(Ver) (1024 SHA(1, 256, 384)) (2048 SHA(1, 256, 384))<br />
+<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) SIG(gen) with SHA-1 affirmed for use with protocols only.<br />
+Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48)))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a></p></td>
-<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2206">#2206</a></p>
+<td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2206">#2206</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-186-4KEY(gen):</b> FIPS186-4_Fixed_e ( 10001 ) ;<br />
-<b>PGM(ProbPrimeCondition):</b> 2048 , 3072 PPTT:( C.3 )</p>
+186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
+<b>PGM(ProbPrimeCondition):</b> 2048, 3072 PPTT:(C.3)</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2195">#2195</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3346">Val#3346</a></p></td>
 <td><p>soft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2194">#2194</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 256 , 384 , 512 )) (3072 SHA( 256 , 384 , 512 ))<br />
-<b>SIG(Ver)</b> (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
+<b>SIG(Ver)</b> (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2193">#2193</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-[RSASSA-PSS]: Sig(Gen):</b> (2048 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))</p>
-<p><b>Sig(Ver):</b> (1024 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 62 ) )) (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))</p>
+[RSASSA-PSS]: Sig(Gen):</b> (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
+<p><b>Sig(Ver):</b> (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3347">Val# 3347</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1217">Val# 1217</a></p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#2192">#2192</a></p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-186-4KEY(gen)</b>:  FIPS186-4_Fixed_e ( 10001 ) ;<br />
-<b>PGM(ProbPrimeCondition</b>): 2048 , 3072 PPTT:( C.3 )</p>
+186-4KEY(gen)</b>:  FIPS186-4_Fixed_e (10001);<br />
+<b>PGM(ProbPrimeCondition</b>): 2048, 3072 PPTT:(C.3)</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#955">Val# 955</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1889">#1889</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3048">Val#3048</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1871">#1871</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 256 , 384 , 512 )) (3072 SHA( 256 , 384 , 512 ))<br />
-<b>SIG(Ver)</b> (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
+<b>SIG(Ver)</b> (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1888">#1888</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-[RSASSA-PSS]: Sig(Gen)</b>: (2048 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))<br />
-<b>Sig(Ver):</b> (1024 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 62 ) )) (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))</p>
+[RSASSA-PSS]: Sig(Gen)</b>: (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
+<b>Sig(Ver):</b> (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#3047">Val# 3047</a></p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1887">#1887</a></p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-186-4KEY(gen):</b> FIPS186-4_Fixed_e ( 10001 ) ;<br />
-PGM(ProbPrimeCondition): 2048 , 3072 PPTT:( C.3 )</p>
+186-4KEY(gen):</b> FIPS186-4_Fixed_e (10001);<br />
+PGM(ProbPrimeCondition): 2048, 3072 PPTT:(C.3)</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#868">Val# 868</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1798">#1798</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">Val#2871</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1784">#1784</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2871">Val#2871</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1783">#1783</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))<br />
-Sig(Ver): (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))</p>
+[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
+Sig(Ver): (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2886">Val# 2886</a></p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1802">#1802</a></p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-186-4KEY(gen):</b> FIPS186-4_Fixed_e ;<br />
-<b>PGM(ProbPrimeCondition):</b> 2048 , 3072 PPTT:( C.3 )</p>
+186-4KEY(gen):</b> FIPS186-4_Fixed_e;<br />
+<b>PGM(ProbPrimeCondition):</b> 2048, 3072 PPTT:(C.3)</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#489">Val# 489</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1487">#1487</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry RSA32 Algorithm Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1494">#1494</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5</b>] SIG(gen) (2048 SHA( 256 , 384 , 512 )) (3072 SHA( 256 , 384 , 512 ))<br />
-SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 ))</p>
+ALG[RSASSA-PKCS1_V1_5</b>] SIG(gen) (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
+SIG(Ver) (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
 <td><p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1493">#1493</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="odd">
 <td><p><b>FIPS186-4:<br />
-[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))<br />
- Sig(Ver): (1024 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 62 ) )) (2048 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) )) (3072 SHA( 1 SaltLen( 20 ) , 256 SaltLen( 32 ) , 384 SaltLen( 48 ) , 512 SaltLen( 64 ) ))</p>
+[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))<br />
+ Sig(Ver): (1024 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(62))) (2048 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64))) (3072 SHA(1 SaltLen(20), 256 SaltLen(32), 384 SaltLen(48), 512 SaltLen(64)))</p>
 <p>SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#2373">Val#2373</a></p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 Cryptography Next Generation Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1519">#1519</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
 <td><p><b>FIPS186-4:<br />
-ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA( 256 , 384 , 512-256 )) (3072 SHA( 256 , 384 , 512-256 ))<br />
-SIG(Ver) (1024 SHA( 1 , 256 , 384 , 512-256 )) (2048 SHA( 1 , 256 , 384 , 512-256 )) (3072 SHA( 1 , 256 , 384 , 512-256 ))<br />
-<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA( 256 , 384 , 512 )) (3072 SHA( 256 , 384 , 512 ))<br />
-Sig(Ver): (1024 SHA( 1 , 256 , 384 , 512 )) (2048 SHA( 1 , 256 , 384 , 512 )) (3072 SHA( 1 , 256 , 384 , 512 , 512 ))<br />
+ALG[RSASSA-PKCS1_V1_5]</b> SIG(gen) (2048 SHA(256, 384, 512-256)) (3072 SHA(256, 384, 512-256))<br />
+SIG(Ver) (1024 SHA(1, 256, 384, 512-256)) (2048 SHA(1, 256, 384, 512-256)) (3072 SHA(1, 256, 384, 512-256))<br />
+<b>[RSASSA-PSS]:</b> Sig(Gen): (2048 SHA(256, 384, 512)) (3072 SHA(256, 384, 512))<br />
+Sig(Ver): (1024 SHA(1, 256, 384, 512)) (2048 SHA(1, 256, 384, 512)) (3072 SHA(1, 256, 384, 512, 512))<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a></p>
 <p>Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1134">Historical RSA List Val#1134</a>.</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1134">#1134</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-4:<br />
-186-4KEY(gen):</b> FIPS186-4_Fixed_e , FIPS186-4_Fixed_e_Value<br />
-<b>PGM(ProbPrimeCondition):</b> 2048 , 3072 <b>PPTT:</b>( C.3 )<br />
+186-4KEY(gen):</b> FIPS186-4_Fixed_e, FIPS186-4_Fixed_e_Value<br />
+<b>PGM(ProbPrimeCondition):</b> 2048, 3072 <b>PPTT:</b>(C.3)<br />
 SHA <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1903">#1903</a> DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1133">#1133</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048 , 3072 , 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#258">#258</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1902">#1902</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1132">Historical RSA List Val#1132</a>.</td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1132">#1132</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1774">Val#1774</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1052">Historical RSA List Val#1052</a>.</td>
 <td>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1052">#1052</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048 , 3072 , 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#193">Val# 193</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1773">Val#1773</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#1051">Historical RSA List Val#1051</a>.</td>
 <td>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#1051">#1051</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#568">Historical RSA List Val#568</a>.</td>
 <td>Windows Server 2008 R2 and SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#568">#568</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
+<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#567">Historical RSA List Val#567</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#560">Historical RSA List Val#560</a>.</td>
 <td><p>Windows Server 2008 R2 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#567">#567</a></p>
 <p>Windows 7 and SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#560">#560</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048 , 3072 , 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 DRBG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#23">Val# 23</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#559">Historical RSA List Val#559</a>.</td>
 <td>Windows 7 and SP1 and Server 2008 R2 and SP1 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#559">#559</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#1081">Val#1081</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#557">Historical RSA List Val#557</a>.</td>
 <td>Windows 7 and SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#557">#557</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#816">Val#816</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#395">Historical RSA List Val#395</a>.</td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#395">#395</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>,<br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#783">Val#783</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#371">Historical RSA List Val#371</a>.</td>
 <td>Windows XP Professional SP3 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#371">#371</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
+<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#358">Historical RSA List Val#358</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#357">Historical RSA List Val#357</a>.</td>
 <td><p>Windows Server 2008 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#358">#358</a></p>
 <p>Windows Vista SP1 CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#357">#357</a></p></td>
@@ -6044,81 +6043,81 @@ Some of the previously validated components for this validation have been remove
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#753">Val#753</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#355">Historical RSA List Val#355</a>. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#354">Historical RSA List Val#354</a>.</td>
 <td><p>Windows Server 2008 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#355">#355</a></p>
 <p>Windows Vista SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#354">#354</a></p></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048 , 3072 , 4096 PubKey Values: 65537<br />
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#353">Historical RSA List Val#353</a>.</td>
 <td>Windows Vista SP1 and Windows Server 2008 RSA Key Generation Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#353">#353</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048 , 3072 , 4096 PubKey Values: 65537 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
+ALG[ANSIX9.31]:</b> Key(gen)(MOD: 2048, 3072, 4096 PubKey Values: 65537 RNG: <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rng#321">Val# 321</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#258">Historical RSA List Val#258</a>.</td>
 <td>Windows Vista RSA key generation implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#258">#258</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
+<b>ALG[RSASSA-PSS]:</b> SIG(gen); 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#257">Historical RSA List Val#257</a>.</td>
 <td>Windows Vista CNG algorithms <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#257">#257</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
-ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
+ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#618">Val#618</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#255">Historical RSA List Val#255</a>.</td>
 <td>Windows Vista Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#255">#255</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#613">Val#613</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#245">Historical RSA List Val#245</a>.</td>
 <td>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#245">#245</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#589">Val#589</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#230">Historical RSA List Val#230</a>.</td>
 <td>Windows CE 6.0 and Windows CE 6.0 R2 and Windows Mobile Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#230">#230</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#578">Val#578</a>,<br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#578">Val#578</a>, SHA-512<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#578">Val#578</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#222">Historical RSA List Val#222</a>.</td>
 <td>Windows CE and Windows Mobile 6 and Windows Mobile 6.1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#222">#222</a></td>
 </tr>
 <tr class="even">
 <td><b>FIPS186-2:<br />
 ALG[RSASSA-PKCS1_V1_5]:</b><br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">Val#364</a><br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#364">Val#364</a><br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#81">Historical RSA List Val#81</a>.</td>
 <td>Windows Server 2003 SP1 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#81">#81</a></td>
 </tr>
 <tr class="odd">
 <td><b>FIPS186-2:<br />
 ALG[ANSIX9.31]:</b><br />
-SIG(ver); 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#305">Val#305</a><br />
-<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048 , 3072 , 4096 , SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
-SIG(ver): 1024 , 1536 , 2048 , 3072 , 4096 , SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
+SIG(ver); 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="http://csrc.nist.gov/groups/stm/cavp/documents/shs/shaval.htm#305">Val#305</a><br />
+<b>ALG[RSASSA-PKCS1_V1_5]:</b> SIG(gen) 2048, 3072, 4096, SHS: SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
+SIG(ver): 1024, 1536, 2048, 3072, 4096, SHS: SHA-1<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-256<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-384<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>, SHA-512<a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#305">Val#305</a>,<br />
 Some of the previously validated components for this validation have been removed because they are now non-compliant per the SP800-131A transition. See <a href="http://csrc.nist.gov/groups/stm/cavp/documents/dss/rsahistoricalval.html#52">Historical RSA List Val#52</a>.</td>
 <td>Windows CE 5.00 and Windows CE 5.01 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/rsa#52">#52</a></td>
 </tr>
@@ -6209,7 +6208,7 @@ Some of the previously validated components for this validation have been remove
 <li>Supports Empty Message</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
@@ -6495,106 +6494,106 @@ Version 6.3.9600</td>
 <li>Keying Option: 1</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2556">#2556</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2556">#2556</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
-<td><b>TECB</b>( KO 1 e/d, ) ; <b>TCBC</b>( KO 1 e/d, ) ; <b>TCFB8</b>( KO 1 e/d, ) ; <b>TCFB64</b>( KO 1 e/d, )</td>
+<td><b>TECB</b>(KO 1 e/d,); <b>TCBC</b>(KO 1 e/d,); <b>TCFB8</b>(KO 1 e/d,); <b>TCFB64</b>(KO 1 e/d,)</td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2459">#2459</a></p>
 <p>Version 10.0.15063</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,)</p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2384">#2384</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,)</p></td>
 <td><p>Windows Embedded Compact Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2383">#2383</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, ) ;</p>
-<p><b>CTR</b> ( int only )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,);</p>
+<p><b>CTR</b> (int only)</p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2382">#2382</a></p>
 <p>Version 7.00.2872</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,)</p></td>
 <td><p>Windows Embedded Compact Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2381">#2381</a></p>
 <p>Version 8.00.6246</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB8</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB64</b>( KO 1 e/d, )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,);</p>
+<p><b>TCFB8</b>(KO 1 e/d,);</p>
+<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
 <td><p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2227">#2227</a><br />
 <br />
 </p>
 <p>Version 10.0.14393</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB8</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB64</b>( KO 1 e/d, )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,);</p>
+<p><b>TCFB8</b>(KO 1 e/d,);</p>
+<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
 <td><p>Microsoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub and Surface Hub SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#2024">#2024</a><br />
 <br />
 </p>
 <p>Version 10.0.10586</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB8</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB64</b>( KO 1 e/d, )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,);</p>
+<p><b>TCFB8</b>(KO 1 e/d,);</p>
+<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
 <td><p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1969">#1969</a><br />
 <br />
 </p>
 <p>Version 10.0.10240</p></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>( KO 1 e/d, ) ;</p>
-<p><b>TCBC</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB8</b>( KO 1 e/d, ) ;</p>
-<p><b>TCFB64</b>( KO 1 e/d, )</p></td>
+<td><p><b>TECB</b>(KO 1 e/d,);</p>
+<p><b>TCBC</b>(KO 1 e/d,);</p>
+<p><b>TCFB8</b>(KO 1 e/d,);</p>
+<p><b>TCFB64</b>(KO 1 e/d,)</p></td>
 <td><p>Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1692">#1692</a></p>
 <p>Version 6.3.9600</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCBC</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCFB8</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCFB64</b>( e/d; KO 1,2 )</p></td>
+<td><p><b>TECB</b>(e/d; KO 1, 2);</p>
+<p><b>TCBC</b>(e/d; KO 1, 2);</p>
+<p><b>TCFB8</b>(e/d; KO 1, 2);</p>
+<p><b>TCFB64</b>(e/d; KO 1, 2)</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Next Generation Symmetric Cryptographic Algorithms Implementations (SYMCRYPT) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1387">#1387</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCBC</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCFB8</b>( e/d; KO 1,2 )</p></td>
+<td><p><b>TECB</b>(e/d; KO 1, 2);</p>
+<p><b>TCBC</b>(e/d; KO 1, 2);</p>
+<p><b>TCFB8</b>(e/d; KO 1, 2)</p></td>
 <td>Windows 8, Windows RT, Windows Server 2012, Surface Windows RT, Surface Windows 8 Pro, and Windows Phone 8 Symmetric Algorithm Implementations (RSA32) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1386">#1386</a></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCBC</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCFB8</b>( e/d; KO 1,2 )</p></td>
+<td><p><b>TECB</b>(e/d; KO 1, 2);</p>
+<p><b>TCBC</b>(e/d; KO 1, 2);</p>
+<p><b>TCFB8</b>(e/d; KO 1, 2)</p></td>
 <td>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a></td>
 </tr>
 <tr class="odd">
-<td><p><b>TECB</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCBC</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCFB8</b>( e/d; KO 1,2 )</p></td>
+<td><p><b>TECB</b>(e/d; KO 1, 2);</p>
+<p><b>TCBC</b>(e/d; KO 1, 2);</p>
+<p><b>TCFB8</b>(e/d; KO 1, 2)</p></td>
 <td>Windows Vista SP1 and Windows Server 2008 Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#656">#656</a></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCBC</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCFB8</b>( e/d; KO 1,2 )</p></td>
+<td><p><b>TECB</b>(e/d; KO 1, 2);</p>
+<p><b>TCBC</b>(e/d; KO 1, 2);</p>
+<p><b>TCFB8</b>(e/d; KO 1, 2)</p></td>
 <td>Windows Vista Symmetric Algorithm Implementation <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#549">#549</a></td>
 </tr>
 <tr class="odd">
@@ -6603,8 +6602,8 @@ Version 6.3.9600</td>
 <p>Windows 7 and SP1 and Windows Server 2008 R2 and SP1 <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#846">#846</a>, vendor-affirmed</p></td>
 </tr>
 <tr class="even">
-<td><p><b>TECB</b>( e/d; KO 1,2 ) ;</p>
-<p><b>TCBC</b>( e/d; KO 1,2 )</p></td>
+<td><p><b>TECB</b>(e/d; KO 1, 2);</p>
+<p><b>TCBC</b>(e/d; KO 1, 2)</p></td>
 <td><p>Windows Embedded Compact 7 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1308">#1308</a></p>
 <p>Windows Embedded Compact 7 Cryptographic Primitives Library (bcrypt.dll) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#1307">#1307</a></p>
 <p>Windows Server 2003 SP2 Enhanced Cryptographic Provider (RSAENH) <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/tdes#691">#691</a></p>
@@ -6707,7 +6706,7 @@ Version 6.3.9600</td>
 <li>Padding Algorithms: PKCS 1.5</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1518">#1518</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1518">#1518</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
@@ -6988,7 +6987,7 @@ Version 6.3.9600</td>
 </ul></li>
 </ul>
 <p>Prerequisite: DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1503">#1503</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1503">#1503</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -6998,7 +6997,7 @@ Version 6.3.9600</td>
 <li>Modulus Size: 2048 (bits)</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1502">#1502</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1502">#1502</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
@@ -7009,7 +7008,7 @@ Version 6.3.9600</td>
 <li>Padding Algorithms: PKCS 1.5</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1501">#1501</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1501">#1501</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
@@ -7022,7 +7021,7 @@ Version 6.3.9600</td>
 </ul></li>
 </ul>
 <p>Prerequisite: DRBG <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/drbg#1730">#1730</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1499">#1499</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1499">#1499</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
@@ -7032,7 +7031,7 @@ Version 6.3.9600</td>
 <li>Modulus Size: 2048 (bits)</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1498">#1498</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1498">#1498</a></p>
 <p>Version 10.0.16299</p>
 <p> </p></td>
 </tr>
@@ -7044,7 +7043,7 @@ Version 6.3.9600</td>
 <li>Padding Algorithms: PKCS 1.5</li>
 </ul></li>
 </ul></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1497">#1497</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1497">#1497</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="odd">
@@ -7110,20 +7109,20 @@ Version 6.3.9600</td>
 </ul></li>
 </ul>
 <p>Prerequisite: SHS <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/shs#4009">#4009</a>, HMAC <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/hmac#3267">#3267</a></p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1496">#1496</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1496">#1496</a></p>
 <p>Version 10.0.16299</p></td>
 </tr>
 <tr class="even">
 <td><p>FIPS186-4 ECDSA</p>
 <p>Signature Generation of hash sized messages</p>
-<p>ECDSA SigGen Component: CURVES( P-256 P-384 P-521 )</p></td>
+<p>ECDSA SigGen Component: CURVES(P-256 P-384 P-521)</p></td>
 <td><p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1284">#1284</a><br />
 Version 10.0. 15063</p>
 <p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1279">#1279</a><br />
 Version 10.0. 15063</p>
 <p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#922">#922</a><br />
 Version 10.0.14393</p>
-<p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#894">#894</a><br />
+<p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#894">#894</a><br />
 Version 10.0.14393icrosoft Windows 10 November 2015 Update; Microsoft Surface Book, Surface Pro 4, Surface Pro 3, Surface 3, Surface Pro 2, and Surface Pro w/ Windows 10 November 2015 Update; Windows 10 Mobile for Microsoft Lumia 950 and Microsoft Lumia 635; Windows 10 for Microsoft Surface Hub 84” and Surface Hub 55” MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#666">#666</a><br />
 Version 10.0.10586</p>
 <p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#288">#288</a><br />
@@ -7139,7 +7138,7 @@ Version 10.0.15063</p>
 Version 10.0.15063</p>
 <p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1280">#1280</a><br />
 Version 10.0.15063</p>
-<p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#893">#893</a><br />
+<p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#893">#893</a><br />
 Version 10.0.14393</p>
 <p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update MsBignum Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#888">#888</a><br />
 Version 10.0.14393</p>
@@ -7158,7 +7157,7 @@ Version 6.3.9600</p></td>
 Version 10.0.15063</p>
 <p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1281">#1281</a><br />
 Version 10.0.15063</p>
-<p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4 and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#895">#895</a><br />
+<p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, and Surface Pro 3 w/ Windows 10 Anniversary Update Virtual TPM Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#895">#895</a><br />
 Version 10.0.14393</p>
 <p>Microsoft Windows 10 Anniversary Update, Windows Server 2016, Windows Storage Server 2016; Microsoft Surface Book, Surface Pro 4, Surface Pro 3 and Surface 3 w/ Windows 10 Anniversary Update; Microsoft Lumia 950 and Lumia 650 w/ Windows 10 Mobile Anniversary Update Cryptography Next Generation (CNG) Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#887">#887</a><br />
 Version 10.0.14393</p>
@@ -7170,7 +7169,7 @@ Version  10.0.10240</p></td>
 <tr class="odd">
 <td><p>SP800-135</p>
 <p>Section 4.1.1, IKEv1 Section 4.1.2, IKEv2 Section 4.2, TLS</p></td>
-<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update and Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1496">#1496</a></p>
+<td><p>Windows 10 Home, Pro, Enterprise, Education, Windows 10 S Fall Creators Update; Windows Server, Windows Server Datacenter (version 1709); SymCrypt Cryptographic Implementations  <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1496">#1496</a></p>
 <p>Version 10.0.16299</p>
 <p>Windows 10 Creators Update (version 1703) Home, Pro, Enterprise, Education, Windows 10 S, Windows 10 Mobile SymCrypt Cryptographic Implementations <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#1278">#1278</a><br />
 Version 10.0.15063</p>
@@ -7184,7 +7183,7 @@ Version 10.0.14393</p>
 Version 10.0.10586</p>
 <p>Microsoft Windows 10, Microsoft Surface Pro 3 with Windows 10, Microsoft Surface 3 with Windows 10, Microsoft Surface Pro 2 with Windows 10, Microsoft Surface Pro with Windows 10 BCryptPrimitives and NCryptSSLp <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#575">#575</a><br />
 Version  10.0.10240</p>
-<p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 BCryptPrimitives and NCryptSSLp <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#323">#323</a><br />
+<p>Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Surface Pro 3, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry, and Microsoft StorSimple 8100 BCryptPrimitives and NCryptSSLp <a href="https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/validation/validation-list/component#323">#323</a><br />
 Version 6.3.9600</p></td>
 </tr>
 </tbody>

From 08af59293939817e1e09369356adb3111322cbd9 Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 30 Oct 2020 08:42:27 -0700
Subject: [PATCH 30/44] Update vpnv2-csp.md

---
 windows/client-management/mdm/vpnv2-csp.md | 200 ++++++++++-----------
 1 file changed, 99 insertions(+), 101 deletions(-)

diff --git a/windows/client-management/mdm/vpnv2-csp.md b/windows/client-management/mdm/vpnv2-csp.md
index 7196ffe3dd..5f3d865cbd 100644
--- a/windows/client-management/mdm/vpnv2-csp.md
+++ b/windows/client-management/mdm/vpnv2-csp.md
@@ -2,14 +2,14 @@
 title: VPNv2 CSP
 description: Learn how the VPNv2 configuration service provider (CSP) allows the mobile device management (MDM) server to configure the VPN profile of the device.
 ms.assetid: 51ADA62E-1EE5-4F15-B2AD-52867F5B2AD2
-ms.reviewer: 
+ms.reviewer: pesmith
 manager: dansimp
 ms.author: dansimp
 ms.topic: article
 ms.prod: w10
 ms.technology: windows
 author: manikadhiman
-ms.date: 11/01/2017
+ms.date: 10/30/2020
 ---
 
 # VPNv2 CSP
@@ -19,19 +19,19 @@ The VPNv2 configuration service provider allows the mobile device management (MD
 
 Here are the requirements for this CSP:
 
--   VPN configuration commands must be wrapped in an Atomic block in SyncML.
--   For best results, configure your VPN certificates first before pushing down VPN profiles to devices. If you are using Windows Information Protection (WIP) (formerly known as Enterprise Data Protection), then you should configure VPN first before you configure WIP policies.
--   Instead of changing individual properties, follow these steps to make any changes:
+- VPN configuration commands must be wrapped in an Atomic block in SyncML.
+- For best results, configure your VPN certificates first before pushing down VPN profiles to devices. If you are using Windows Information Protection (WIP) (formerly known as Enterprise Data Protection), then you should configure VPN first before you configure WIP policies.
+- Instead of changing individual properties, follow these steps to make any changes:
 
-    -   Send a Delete command for the ProfileName to delete the entire profile.
-    -   Send the entire profile again with new values wrapped in an Atomic block.
+  - Send a Delete command for the ProfileName to delete the entire profile.
+  - Send the entire profile again with new values wrapped in an Atomic block.
 
     In certain conditions you can change some properties directly, but we do not recommend it.
 
 The XSDs for all EAP methods are shipped in the box and can be found at the following locations:
 
--   C:\\Windows\\schemas\\EAPHost
--   C:\\Windows\\schemas\\EAPMethods
+- `C:\\Windows\\schemas\\EAPHost`
+- `C:\\Windows\\schemas\\EAPMethods`
 
 The following diagram shows the VPNv2 configuration service provider in tree format.
 
@@ -45,7 +45,8 @@ Unique alpha numeric identifier for the profile. The profile name must not inclu
 
 Supported operations include Get, Add, and Delete.
 
-> **Note**  If the profile name has a space or other non-alphanumeric character, it must be properly escaped according to the URL encoding standard.
+> [!NOTE]
+> If the profile name has a space or other non-alphanumeric character, it must be properly escaped according to the URL encoding standard.
 
 <a href="" id="vpnv2-profilename-apptriggerlist"></a>**VPNv2/**<em>ProfileName</em>**/AppTriggerList**  
 Optional node. List of applications set to trigger the VPN. If any of these apps are launched and the VPN profile is currently the active profile, this VPN profile will be triggered to connect.
@@ -64,8 +65,8 @@ App identity, which is either an app’s package family name or file path. The t
 <a href="" id="vpnv2-profilename-apptriggerlist-apptriggerrowid-app-type"></a>**VPNv2/**<em>ProfileName</em>**/AppTriggerList/**<em>appTriggerRowId</em>**/App/Type**  
 Returns the type of **App/Id**. This value can be either of the following:
 
--   PackageFamilyName - When this is returned, the App/Id value represents the PackageFamilyName of the app. The PackageFamilyName is the unique name of the Microsoft Store application.
--   FilePath - When this is returned, the App/Id value represents the full file path of the app. For example, `C:\Windows\System\Notepad.exe`.
+- PackageFamilyName - When this is returned, the App/Id value represents the PackageFamilyName of the app. The PackageFamilyName is the unique name of the Microsoft Store application.
+- FilePath - When this is returned, the App/Id value represents the full file path of the app. For example, `C:\Windows\System\Notepad.exe`.
 
 Value type is chr. Supported operation is Get.
 
@@ -99,8 +100,8 @@ Value type is int. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-routelist-routerowid-exclusionroute"></a>**VPNv2/**<em>ProfileName</em>**/RouteList/**<em>routeRowId</em>**/ExclusionRoute**  
 Added in Windows 10, version 1607. A boolean value that specifies if the route being added should point to the VPN Interface or the Physical Interface as the Gateway. Valid values:
 
--   False (default) - This route will direct traffic over the VPN
--   True - This route will direct traffic over the physical interface.
+- False (default) - This route will direct traffic over the VPN
+- True - This route will direct traffic over the physical interface.
 
 Supported operations include Get, Add, Replace, and Delete.
 
@@ -117,16 +118,16 @@ Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-domainnameinformationlist-dnirowid-domainname"></a>**VPNv2/**<em>ProfileName</em>**/DomainNameInformationList/**<em>dniRowId</em>**/DomainName**  
 Used to indicate the namespace to which the policy applies. When a Name query is issued, the DNS client compares the name in the query to all of the namespaces under DomainNameInformationList to find a match. This parameter can be one of the following types:
 
--   FQDN - Fully qualified domain name
--   Suffix - A domain suffix that will be appended to the shortname query for DNS resolution. To specify a suffix, prepend a **.** to the DNS suffix.
+- FQDN - Fully qualified domain name
+- Suffix - A domain suffix that will be appended to the shortname query for DNS resolution. To specify a suffix, prepend a **.** to the DNS suffix.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-domainnameinformationlist-dnirowid-domainnametype"></a>**VPNv2/**<em>ProfileName</em>**/DomainNameInformationList/**<em>dniRowId</em>**/DomainNameType**  
 Returns the namespace type. This value can be one of the following:
 
--   FQDN - If the DomainName was not prepended with a **.** and applies only to the fully qualified domain name (FQDN) of a specified host.
--   Suffix - If the DomainName was prepended with a **.** and applies to the specified namespace, all records in that namespace, and all subdomains.
+- FQDN - If the DomainName was not prepended with a **.** and applies only to the fully qualified domain name (FQDN) of a specified host.
+- Suffix - If the DomainName was prepended with a **.** and applies to the specified namespace, all records in that namespace, and all subdomains.
 
 Value type is chr. Supported operation is Get.
 
@@ -138,9 +139,8 @@ Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-domainnameinformationlist-dnirowid-webproxyservers"></a>**VPNv2/**<em>ProfileName</em>**/DomainNameInformationList/**<em>dniRowId</em>**/WebProxyServers**  
 Optional. Web Proxy Server IP address if you are redirecting traffic through your intranet.
 
-> **Note**  Currently only one web proxy server is supported.
-
- 
+> [!NOTE]
+> Currently only one web proxy server is supported.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -166,9 +166,8 @@ Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-trafficfilterlist"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList**  
 An optional node that specifies a list of rules. Only traffic that matches these rules can be sent via the VPN Interface.
 
-> **Note**  Once a TrafficFilterList is added, all traffic are blocked other than the ones matching the rules.
-
- 
+> [!NOTE]
+> Once a TrafficFilterList is added, all traffic are blocked other than the ones matching the rules.
 
 When adding multiple rules, each rule operates based on an OR with the other rules. Within each rule, each property operates based on an AND with each other.
 
@@ -183,9 +182,9 @@ App identity for the app-based traffic filter.
 
 The value for this node can be one of the following:
 
--   PackageFamilyName - This App/Id value represents the PackageFamilyName of the app. The PackageFamilyName is the unique name of a Microsoft Store application.
--   FilePath - This App/Id value represents the full file path of the app. For example, `C:\Windows\System\Notepad.exe`.
--   SYSTEM – This value enables Kernel Drivers to send traffic through VPN (for example, PING or SMB).
+- PackageFamilyName - This App/Id value represents the PackageFamilyName of the app. The PackageFamilyName is the unique name of a Microsoft Store application.
+- FilePath - This App/Id value represents the full file path of the app. For example, `C:\Windows\System\Notepad.exe`.
+- SYSTEM – This value enables Kernel Drivers to send traffic through VPN (for example, PING or SMB).
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -205,18 +204,16 @@ Value type is int. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-localportranges"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/LocalPortRanges**  
 A list of comma separated values specifying local port ranges to allow. For example, `100-120, 200, 300-320`.
 
-> **Note**  Ports are only valid when the protocol is set to TCP=6 or UDP=17.
-
- 
+> [!NOTE]
+> Ports are only valid when the protocol is set to TCP=6 or UDP=17.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-remoteportranges"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/RemotePortRanges**  
 A list of comma separated values specifying remote port ranges to allow. For example, `100-120, 200, 300-320`.
 
-> **Note**  Ports are only valid when the protocol is set to TCP=6 or UDP=17.
-
- 
+> [!NOTE]
+> Ports are only valid when the protocol is set to TCP=6 or UDP=17.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -233,8 +230,8 @@ Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-routingpolicytype"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/RoutingPolicyType**  
 Specifies the routing policy if an App or Claims type is used in the traffic filter. The scope of this property is for this traffic filter rule alone. The value can be one of the following:
 
--   SplitTunnel - For this traffic filter rule, only the traffic meant for the VPN interface (as determined by the networking stack) goes over the interface. Internet traffic can continue to go over the other interfaces.
--   ForceTunnel - For this traffic rule all IP traffic must go through the VPN Interface only.
+- SplitTunnel - For this traffic filter rule, only the traffic meant for the VPN interface (as determined by the networking stack) goes over the interface. Internet traffic can continue to go over the other interfaces.
+- ForceTunnel - For this traffic rule all IP traffic must go through the VPN Interface only.
 
 This is only applicable for App ID based Traffic Filter rules.
 
@@ -243,8 +240,8 @@ Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-trafficfilterlist-trafficfilterid-direction"></a>**VPNv2/**<em>ProfileName</em>**/TrafficFilterList/**<em>trafficFilterId</em>**/Direction**  
 Added in Windows 10, version 2004. Specifies the traffic direction to apply this policy to. Default is Outbound. The value can be one of the following:
 
--   Outbound - The rule applies to all outbound traffic
--   Inbound - The rule applies to all inbound traffic
+- Outbound - The rule applies to all outbound traffic
+- nbound - The rule applies to all inbound traffic
 
 If no inbound filter is provided, then by default all unsolicated inbound traffic will be blocked.
 
@@ -265,21 +262,22 @@ Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-alwayson"></a>**VPNv2/**<em>ProfileName</em>**/AlwaysOn**  
 An optional flag to enable Always On mode. This will automatically connect the VPN at sign-in and will stay connected until the user manually disconnects.
 
-> **Note**  Always On only works for the active profile. The first profile provisioned that can be auto triggered will automatically be set as active.
+> [!NOTE]
+> Always On only works for the active profile. The first profile provisioned that can be auto triggered will automatically be set as active.
 
 Preserving user Always On preference
 
 Windows has a feature to preserve a user’s AlwaysOn preference.  In the event that a user manually unchecks the “Connect    automatically” checkbox, Windows will remember this user preference for this profile name by adding the profile name to the value AutoTriggerDisabledProfilesList.  
 Should a management tool remove/add the same profile name back and set AlwaysOn to true, Windows will not check the box if the profile name exists in the below registry value in order to preserve user preference.
-Key: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Config
+Key: `HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Config`
 Value: AutoTriggerDisabledProfilesList
 Type: REG_MULTI_SZ
 
 
 Valid values:
 
--   False (default) - Always On is turned off.
--   True - Always On is turned on.
+- False (default) - Always On is turned off.
+- True - Always On is turned on.
 
 Value type is bool. Supported operations include Get, Add, Replace, and Delete.
 
@@ -288,15 +286,15 @@ Lockdown profile.
 
 Valid values:
 
--   False (default) - this is not a LockDown profile.
--   True - this is a LockDown profile.
+- False (default) - this is not a LockDown profile.
+- True - this is a LockDown profile.
 
 When the LockDown profile is turned on, it does the following things:
 
--   First, it automatically becomes an "always on" profile.
--   Second, it can never be disconnected.
--   Third, if the profile is not connected, then the user has no network.
--   Fourth, no other profiles may be connected or modified.
+- First, it automatically becomes an "always on" profile.
+- Second, it can never be disconnected.
+- Third, if the profile is not connected, then the user has no network.
+- Fourth, no other profiles may be connected or modified.
 
 A Lockdown profile must be deleted before you can add, remove, or connect other profiles.
 
@@ -307,14 +305,14 @@ Device tunnel profile.
 
 Valid values:
 
--   False (default) - this is not a device tunnel profile.
--   True - this is a device tunnel profile.
+- False (default) - this is not a device tunnel profile.
+- True - this is a device tunnel profile.
 
 When the DeviceTunnel profile is turned on, it does the following things:
 
--   First, it automatically becomes an "always on" profile.
--   Second, it does not require the presence or logging in of any user to the machine in order for it to connect.
--   Third, no other device tunnel profile maybe be present on the same machine.
+- First, it automatically becomes an "always on" profile.
+- Second, it does not require the presence or logging in of any user to the machine in order for it to connect.
+- Third, no other device tunnel profile maybe be present on the same machine.
 
 A device tunnel profile must be deleted before another device tunnel profile can be added, removed, or connected.
 
@@ -325,8 +323,8 @@ Allows registration of the connection's address in DNS.
 
 Valid values:
 
--   False = Do not register the connection's address in DNS (default).
--   True = Register the connection's addresses in DNS.
+- False = Do not register the connection's address in DNS (default).
+- True = Register the connection's addresses in DNS.
 
 <a href="" id="vpnv2-profilename-dnssuffix"></a>**VPNv2/**<em>ProfileName</em>**/DnsSuffix**  
 Optional. Specifies one or more comma separated DNS suffixes. The first in the list is also used as the primary connection specific DNS suffix for the VPN Interface. The entire list will also be added into the SuffixSearchList.
@@ -445,22 +443,23 @@ Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 <a href="" id="vpnv2-profilename-nativeprofile-routingpolicytype"></a>**VPNv2/**<em>ProfileName</em>**/NativeProfile/RoutingPolicyType**  
 Optional for native profiles. Type of routing policy. This value can be one of the following:
 
--   SplitTunnel - Traffic can go over any interface as determined by the networking stack.
--   ForceTunnel - All IP traffic must go over the VPN interface.
+- SplitTunnel - Traffic can go over any interface as determined by the networking stack.
+- ForceTunnel - All IP traffic must go over the VPN interface.
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
 <a href="" id="vpnv2-profilename-nativeprofile-nativeprotocoltype"></a>**VPNv2/**<em>ProfileName</em>**/NativeProfile/NativeProtocolType**  
 Required for native profiles. Type of tunneling protocol used. This value can be one of the following:
 
--   PPTP
--   L2TP
--   IKEv2
--   Automatic
+- PPTP
+- L2TP
+- IKEv2
+- Automatic
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
-> **Note** The **Automatic** option means that the device will try each of the built-in tunneling protocols until one succeeds. It will attempt protocols in following order: SSTP, IKEv2, PPTP and then L2TP. This order is not customizable. 
+> [!NOTE]
+> The **Automatic** option means that the device will try each of the built-in tunneling protocols until one succeeds. It will attempt protocols in following order: SSTP, IKEv2, PPTP and then L2TP. This order is not customizable. 
 
 <a href="" id="vpnv2-profilename-nativeprofile-authentication"></a>**VPNv2/**<em>ProfileName</em>**/NativeProfile/Authentication**  
 Required node for native profile. It contains authentication information for the native VPN profile.
@@ -512,12 +511,12 @@ Added in Windows 10, version 1607.
 
 The following list contains the valid values:
 
--   MD596
--   SHA196
--   SHA256128
--   GCMAES128
--   GCMAES192
--   GCMAES256
+- MD596
+- SHA196
+- SHA256128
+- GCMAES128
+- GCMAES192
+- GCMAES256
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -526,14 +525,14 @@ Added in Windows 10, version 1607.
 
 The following list contains the valid values:
 
--   DES
--   DES3
--   AES128
--   AES192
--   AES256
--   GCMAES128
--   GCMAES192
--   GCMAES256
+- DES
+- DES3
+- AES128
+- AES192
+- AES256
+- GCMAES128
+- GCMAES192
+- GCMAES256
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -542,13 +541,13 @@ Added in Windows 10, version 1607.
 
 The following list contains the valid values:
 
--   DES
--   DES3
--   AES128
--   AES192
--   AES256
--   AES\_GCM_128
--   AES\_GCM_256
+- DES
+- DES3
+- AES128
+- AES192
+- AES256
+- AES\_GCM_128
+- AES\_GCM_256
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -557,10 +556,10 @@ Added in Windows 10, version 1607.
 
 The following list contains the valid values:
 
--   MD5
--   SHA196
--   SHA256
--   SHA384
+- MD5
+- SHA196
+- SHA256
+- SHA384
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -569,12 +568,12 @@ Added in Windows 10, version 1607.
 
 The following list contains the valid values:
 
--   Group1
--   Group2
--   Group14
--   ECP256
--   ECP384
--   Group24
+- Group1
+- Group2
+- Group14
+- ECP256
+- ECP384
+- Group24
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -583,13 +582,13 @@ Added in Windows 10, version 1607.
 
 The following list contains the valid values:
 
--   PFS1
--   PFS2
--   PFS2048
--   ECP256
--   ECP384
--   PFSMM
--   PFS24
+- PFS1
+- PFS2
+- PFS2048
+- ECP256
+- ECP384
+- PFSMM
+- PFS24
 
 Value type is chr. Supported operations include Get, Add, Replace, and Delete.
 
@@ -1318,8 +1317,7 @@ Servers
       </Add>
 ```
 
-## Related topics
-
+## See also
 
 [Configuration service provider reference](configuration-service-provider-reference.md)
 

From 8e7f2e1b7ea7ea32c7569734753c224d18f4962c Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Fri, 30 Oct 2020 08:45:05 -0700
Subject: [PATCH 31/44] Update vpnv2-ddf-file.md

---
 windows/client-management/mdm/vpnv2-ddf-file.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/client-management/mdm/vpnv2-ddf-file.md b/windows/client-management/mdm/vpnv2-ddf-file.md
index d29d533690..ea97295698 100644
--- a/windows/client-management/mdm/vpnv2-ddf-file.md
+++ b/windows/client-management/mdm/vpnv2-ddf-file.md
@@ -2,14 +2,14 @@
 title: VPNv2 DDF file
 description: This topic shows the OMA DM device description framework (DDF) for the VPNv2 configuration service provider.
 ms.assetid: 4E2F36B7-D2EE-4F48-AD1A-6BDE7E72CC94
-ms.reviewer: 
+ms.reviewer: pesmith
 manager: dansimp
 ms.author: dansimp
 ms.topic: article
 ms.prod: w10
 ms.technology: windows
 author: manikadhiman
-ms.date: 12/05/2017
+ms.date: 10/30/2020
 ---
 
 # VPNv2 DDF file

From 3965c127243c72fcd4f6a9eb768a4afbf0c25364 Mon Sep 17 00:00:00 2001
From: Tudor Dobrila <tudor.dobrila@microsoft.com>
Date: Fri, 30 Oct 2020 11:32:25 -0700
Subject: [PATCH 32/44] Release notes 101.10.72

---
 .../threat-protection/microsoft-defender-atp/mac-whatsnew.md  | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
index f14a0d3752..bccb1bed4f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/mac-whatsnew.md
@@ -43,6 +43,10 @@ ms.topic: conceptual
 > 2. Refer to this documentation for detailed configuration information and instructions: [New configuration profiles for macOS Catalina and newer versions of macOS](mac-sysext-policies.md).
 > 3. Monitor this page for an announcement of the actual release of MDATP for Mac agent update.
 
+## 101.10.72
+
+- Bug fixes
+
 ## 101.09.61
 
 - Added a new managed preference for [disabling the option to send feedback](mac-preferences.md#show--hide-option-to-send-feedback)

From cc1d0620d126f4a56902766a9e65df9c5580f8f2 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 30 Oct 2020 13:12:33 -0700
Subject: [PATCH 33/44] enhancements

---
 windows/security/threat-protection/TOC.md     |  3 ++-
 .../deployment-rings.md                       | 27 +++++++++----------
 2 files changed, 15 insertions(+), 15 deletions(-)

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 4cfb2a5ce5..7cb35259d5 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -19,7 +19,8 @@
 ### [Deployment phases](microsoft-defender-atp/deployment-phases.md)
 ### [Phase 1: Prepare](microsoft-defender-atp/prepare-deployment.md)
 ### [Phase 2: Set up](microsoft-defender-atp/production-deployment.md)
-### [Phase 3: Onboard](microsoft-defender-atp/onboarding.md)
+### [Phase 3: Onboard]()
+#### [Onboarding overview](microsoft-defender-atp/onboarding.md)
 #### [Deployment rings](microsoft-defender-atp/deployment-rings.md)
 #### [Onboarding using Microsoft Endpoint Configuration Manager](microsoft-defender-atp/onboarding-endpoint-configuration-manager.md)
 #### [Onboarding using Microsoft Endpoint Manager](microsoft-defender-atp/onboarding-endpoint-manager.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
index b9a48bb7c4..8ad96f8300 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/deployment-rings.md
@@ -1,6 +1,6 @@
 ---
 title: Deploy Microsoft Defender ATP in rings
-description: Learn how deploy Microsoft Defender ATP in rings
+description: Learn how to deploy Microsoft Defender ATP in rings
 keywords: deploy, rings, evaluate, pilot, insider fast, insider slow, setup, onboard, phase, deployment, deploying, adoption, configuring
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -50,16 +50,20 @@ Table 1 provides an example of the deployment rings you might use.
 |**Deployment ring**|**Description**|
 |:-----|:-----|
 Evaluate | Ring 1: Identify 50 systems for pilot testing 
-Pilot | Ring 2: 50-100  systems <br> 	
-Full deployment | Ring 3: Roll out service to the rest of environment in larger increments.
+Pilot | Ring 2: Identify the next 50-100  endpoints in production environment <br> 	
+Full deployment | Ring 3: Roll out service to the rest of environment in larger increments
 
 
-### Evaluate
-Identify a small number of test machines in your environment to onboard to the service. Ideally, these machines would be less than 50 endpoints. 
 
-#### Exit criteria
+### Exit criteria
+An example set of exit criteria for these rings can include:
 - Devices show up in the device inventory list
 - Alerts appear in dashboard
+- [Run a detection test](run-detection-test.md)
+- [Run a simulated attack on a device](attack-simulations.md)
+
+### Evaluate
+Identify a small number of test machines in your environment to onboard to the service. Ideally, these machines would be fewer than 50 endpoints. 
 
 
 ### Pilot
@@ -76,10 +80,6 @@ The following table shows the supported endpoints and the corresponding tool you
 | **Android**  | [Microsoft Endpoint Manager](android-intune.md)               | 
 
 
-#### Exit criteria
-- Devices show up in the device inventory list
-- [Run a detection test](run-detection-test.md)
-- [Run a simulated attack on a device](attack-simulations.md)
 
 
 ### Full deployment
@@ -92,16 +92,15 @@ Use the following material to select the appropriate Microsoft Defender ATP arch
 |:-----|:-----|
 |[![Thumb image for Microsoft Defender ATP deployment strategy](images/mdatp-deployment-strategy.png)](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)<br/> [PDF](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.pdf)  \| [Visio](https://github.com/MicrosoftDocs/windows-itpro-docs/raw/public/windows/security/threat-protection/microsoft-defender-atp/downloads/mdatp-deployment-strategy.vsdx) | The architectural material helps you plan your deployment for the following architectures: <ul><li> Cloud-native </li><li> Co-management </li><li> On-premise</li><li>Evaluation and local onboarding</li>
 
-#### Exit criteria?
-- Devices show up in the device inventory list
+
 
 
 ## Existing deployments
 
 ### Windows endpoints
-For Windows and/or Windows Servers you select several machines to test ahead of time (before patch Tuesday) by using the **Security Update Validation program (SUVP)**.
+For Windows and/or Windows Servers, you select several machines to test ahead of time (before patch Tuesday) by using the **Security Update Validation program (SUVP)**.
 
-For more information see:
+For more information, see:
 - [What is the Security Update Validation Program](https://techcommunity.microsoft.com/t5/windows-it-pro-blog/what-is-the-security-update-validation-program/ba-p/275767)
 - [Software Update Validation Program and Microsoft Malware Protection Center Establishment - TwC Interactive Timeline Part 4](https://www.microsoft.com/security/blog/2012/03/28/software-update-validation-program-and-microsoft-malware-protection-center-establishment-twc-interactive-timeline-part-4/)
 

From 7794bdbef89d069ef1e2d7068bfbc93de77c53f0 Mon Sep 17 00:00:00 2001
From: Office Content Publishing
 <34616516+officedocspr@users.noreply.github.com>
Date: Sat, 31 Oct 2020 23:33:31 -0700
Subject: [PATCH 34/44] Uploaded file: store-for-business-content-updates.md -
 2020-10-31 23:33:31.1281

---
 .../includes/store-for-business-content-updates.md   | 12 ++++++++++++
 1 file changed, 12 insertions(+)
 create mode 100644 store-for-business/includes/store-for-business-content-updates.md

diff --git a/store-for-business/includes/store-for-business-content-updates.md b/store-for-business/includes/store-for-business-content-updates.md
new file mode 100644
index 0000000000..168974c2fa
--- /dev/null
+++ b/store-for-business/includes/store-for-business-content-updates.md
@@ -0,0 +1,12 @@
+<!-- This file is generated automatically each week. Changes made to this file will be overwritten.-->
+

+
+
+## Week of October 26, 2020
+
+
+| Published On |Topic title | Change |
+|------|------------|--------|
+| 10/27/2020 | [Add unsigned app to code integrity policy (Windows 10)](/microsoft-store/add-unsigned-app-to-code-integrity-policy) | modified |
+| 10/27/2020 | [Device Guard signing (Windows 10)](/microsoft-store/device-guard-signing-portal) | modified |
+| 10/27/2020 | [Sign code integrity policy with Device Guard signing (Windows 10)](/microsoft-store/sign-code-integrity-policy-with-device-guard-signing) | modified |

From bf80138e9ac9c3e10d1cf355956877ff84f3ea71 Mon Sep 17 00:00:00 2001
From: amirsc3 <42802974+amirsc3@users.noreply.github.com>
Date: Mon, 2 Nov 2020 16:53:57 +0200
Subject: [PATCH 35/44] Update commercial-gov.md

Fixing typo to avoid customer confusion. Some customers have opened support tickets because they could not understand from the above phrase which "patch" is referred to in this note.
---
 .../threat-protection/microsoft-defender-atp/commercial-gov.md  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md
index d4c8c750c8..66906b90f1 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md
@@ -40,7 +40,7 @@ The following OS versions are supported:
 - Windows Server, 2019 (with [KB4490481](https://support.microsoft.com/en-us/help/4490481))
 
 >[!NOTE]
->A patch must be deployed before device onboarding in order to configure Microsoft Defender ATP to the correct environment.
+>The above mentioned patch level must be deployed before device onboarding in order to configure Microsoft Defender ATP to the correct environment.
 
 The following OS versions are supported via Azure Security Center:
 - Windows Server 2008 R2 SP1

From ea7e28f4a430989b1f3261aa00cbb2e3cddae10e Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 2 Nov 2020 08:52:41 -0800
Subject: [PATCH 36/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index 9b48b566fb..f1016b125c 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -13,7 +13,7 @@ ms.author: deniseb
 ms.custom: nextgen
 ms.reviewer: 
 manager: dansimp
-ms.date: 10/29/2020
+ms.date: 11/20/2020
 ---
 
 # Manage Microsoft Defender Antivirus updates and apply baselines
@@ -89,7 +89,7 @@ All our updates contain
 - New descriptions for special threat categories
 - Improved emulation capabilities
 - Improved host address allow/block capabilities
-- Disallow clearing exclusions using local PowerShell if a no-override policy is active
+- New option in Defender CSP to Ignore merging of local user exclusions
 
 ### Known Issues
 No known issues  

From 1a39cfe8a82c3b420cab097d32bba2a78cade73d Mon Sep 17 00:00:00 2001
From: Denise Vangel-MSFT <deniseb@microsoft.com>
Date: Mon, 2 Nov 2020 11:42:06 -0800
Subject: [PATCH 37/44] Update
 manage-updates-baselines-microsoft-defender-antivirus.md

---
 .../manage-updates-baselines-microsoft-defender-antivirus.md    | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
index f1016b125c..0beba73e43 100644
--- a/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
+++ b/windows/security/threat-protection/microsoft-defender-antivirus/manage-updates-baselines-microsoft-defender-antivirus.md
@@ -79,7 +79,7 @@ All our updates contain
 <details>
 <summary> October-2020 (Platform: 4.18.2010.x | Engine: 1.1.17600.5)</summary>
 
-&ensp;Security intelligence update version: **1.32x.x.x**  
+&ensp;Security intelligence update version: **1.327.7.0**  
 &ensp;Released: **October 29, 2020**  
 &ensp;Platform: **4.18.2010.x**  
 &ensp;Engine: **1.1.17600.5**  

From ee532821ad7be217dfc5ddbfca6c4fdc85f99957 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 2 Nov 2020 11:54:30 -0800
Subject: [PATCH 38/44] update loc tag as per request

---
 .../microsoft-defender-smartscreen-overview.md                  | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
index b39153d62c..386550279a 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
@@ -9,7 +9,7 @@ ms.pagetype: security
 author: mjcaparas
 ms.author: macapara
 audience: ITPro
-ms.localizationpriority: medium
+ms.localizationpriority: high
 ms.date: 11/27/2019
 ms.reviewer: 
 manager: dansimp

From 644d5672a7f6260ed491cb7e678873d228f947a1 Mon Sep 17 00:00:00 2001
From: Gary Moore <v-gmoor@microsoft.com>
Date: Mon, 2 Nov 2020 13:48:09 -0800
Subject: [PATCH 39/44] Removed "/en-us"

---
 .../microsoft-defender-atp/commercial-gov.md                  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md
index 66906b90f1..b4b47744f4 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/commercial-gov.md
@@ -34,10 +34,10 @@ This offering is currently available to US Office 365 GCC High customers and is
 The following OS versions are supported:
 
 - Windows 10, version 1903 
-- Windows 10, version 1809 (OS Build 17763.404 with [KB4490481](https://support.microsoft.com/en-us/help/4490481))
+- Windows 10, version 1809 (OS Build 17763.404 with [KB4490481](https://support.microsoft.com/help/4490481))
 - Windows 10, version 1803 (OS Build 17134.799 with [KB4499183](https://support.microsoft.com/help/4499183))
 - Windows 10, version 1709 (OS Build 16299.1182 with [KB4499147](https://support.microsoft.com/help/4499147)) 
-- Windows Server, 2019 (with [KB4490481](https://support.microsoft.com/en-us/help/4490481))
+- Windows Server, 2019 (with [KB4490481](https://support.microsoft.com/help/4490481))
 
 >[!NOTE]
 >The above mentioned patch level must be deployed before device onboarding in order to configure Microsoft Defender ATP to the correct environment.

From c6b904db8394d5c1aba067499716eb7498e81e22 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 2 Nov 2020 13:55:49 -0800
Subject: [PATCH 40/44] update supported endpoint

---
 .../microsoft-defender-atp/configure-endpoints-vdi.md         | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
index 03c9870858..95305f3a79 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-endpoints-vdi.md
@@ -39,9 +39,9 @@ ms.date: 04/16/2020
 Microsoft Defender ATP supports non-persistent VDI session onboarding. 
 
 >[!Note]
->To onboard non-persistent VDI sessions, VDI devices must be on Windows 10.
+>To onboard non-persistent VDI sessions, VDI devices must be Windows 10 or Windows Server 2019.
 >
->While other Windows versions might work, only Windows 10 is supported.
+>While other Windows versions might work, only Windows 10 and Windows Server 2019 are supported.
 
 There might be associated challenges when onboarding VDIs. The following are typical challenges for this scenario:
 

From ed0bb185ad3f2d2ed63858f4cbb75364a85c97f6 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 2 Nov 2020 16:42:49 -0800
Subject: [PATCH 41/44] fix scores

---
 .../basic-permissions.md                      | 18 ++++-----
 .../microsoft-defender-atp/common-errors.md   | 14 +++----
 .../microsoft-defender-atp/configure-siem.md  |  6 +--
 .../data-storage-privacy.md                   | 12 +++---
 .../exposed-apis-create-app-partners.md       | 40 +++++++++----------
 .../exposed-apis-full-sample-powershell.md    | 12 +++---
 .../get-machine-log-on-users.md               | 12 +++---
 .../get-started-partner-integration.md        | 16 ++++----
 .../get-user-related-alerts.md                | 10 ++---
 .../get-user-related-machines.md              | 12 +++---
 .../investigate-incidents.md                  |  5 ++-
 .../microsoft-defender-atp/machineaction.md   | 12 +++---
 .../microsoft-defender-atp/management-apis.md |  8 ++--
 ...oft-defender-advanced-threat-protection.md |  9 ++---
 .../microsoft-defender-atp/onboard.md         |  6 +--
 .../partner-applications.md                   | 18 ++++++---
 .../partner-integration.md                    | 13 +++---
 .../prepare-deployment.md                     | 22 +++++-----
 .../run-advanced-query-sample-powershell.md   | 14 +++----
 .../run-advanced-query-sample-python.md       | 12 +++---
 .../microsoft-defender-atp/service-status.md  |  4 +-
 .../troubleshoot-live-response.md             |  6 +--
 .../troubleshoot-onboarding-error-messages.md | 14 +++----
 ...microsoft-defender-smartscreen-overview.md | 10 ++---
 24 files changed, 156 insertions(+), 149 deletions(-)

diff --git a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
index 82b023af7d..4fd549fcdb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/basic-permissions.md
@@ -30,9 +30,9 @@ ms.topic: article
 
 Refer to the instructions below to use basic permissions management. 
 
-You can use either of the following:
+You can use either of the following solutions:
 - Azure PowerShell
--  Azure Portal
+-  Azure portal
 
 For granular control over permissions, [switch to role-based access control](rbac.md).
 
@@ -42,21 +42,21 @@ You can assign users with one of the following levels of permissions:
 - Read-only access
 
 ### Before you begin
-- Install Azure PowerShell. For more information see, [How to install and configure Azure PowerShell](https://azure.microsoft.com/documentation/articles/powershell-install-configure/).<br>
+- Install Azure PowerShell. For more information, see, [How to install and configure Azure PowerShell](https://azure.microsoft.com/documentation/articles/powershell-install-configure/).<br>
 
     > [!NOTE]
     > You need to run the PowerShell cmdlets in an elevated command-line.
 
-- Connect to your Azure Active Directory. For more information see, [Connect-MsolService](https://msdn.microsoft.com/library/dn194123.aspx).
+- Connect to your Azure Active Directory. For more information, see, [Connect-MsolService](https://msdn.microsoft.com/library/dn194123.aspx).
 
 **Full access** <br>
 Users with full access can log in, view all system information and resolve alerts, submit files for deep analysis, and download the onboarding package.
 Assigning full access rights requires adding the users to the "Security Administrator" or "Global Administrator" AAD built-in roles.
 
-**Read only access** <br>
-Users with read only access can log in, view all alerts, and related information.
+**Read-only access** <br>
+Users with read-only access can log in, view all alerts, and related information.
 They will not be able to change alert states, submit files for deep analysis or perform any state changing operations.
-Assigning read only access rights requires adding the users to the "Security Reader" AAD built-in role.
+Assigning read-only access rights requires adding the users to the "Security Reader" Azure AD built-in role.
 
 Use the following steps to assign security roles:
 
@@ -64,12 +64,12 @@ Use the following steps to assign security roles:
   ```text
   Add-MsolRoleMember -RoleName "Security Administrator" -RoleMemberEmailAddress "secadmin@Contoso.onmicrosoft.com"
   ```
-- For **read only** access, assign users to the security reader role by using the following command:
+- For **read-only** access, assign users to the security reader role by using the following command:
   ```text
   Add-MsolRoleMember -RoleName "Security Reader" -RoleMemberEmailAddress "reader@Contoso.onmicrosoft.com"
   ```
 
-For more information see, [Add or remove group memberships](https://technet.microsoft.com/library/321d532e-407d-4e29-a00a-8afbe23008dd#BKMK_ManageGroups).
+For more information, see, [Add, or remove group memberships](https://technet.microsoft.com/library/321d532e-407d-4e29-a00a-8afbe23008dd#BKMK_ManageGroups).
 
 ## Assign user access using the Azure portal
 For more information, see [Assign administrator and non-administrator roles to uses with Azure Active Directory](https://docs.microsoft.com/azure/active-directory/fundamentals/active-directory-users-assign-role-azure-portal).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/common-errors.md b/windows/security/threat-protection/microsoft-defender-atp/common-errors.md
index d34460c4bf..fdb92321bb 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/common-errors.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/common-errors.md
@@ -22,9 +22,9 @@ ms.topic: article
 
 
 * The error codes listed in the following table may be returned by an operation on any of Microsoft Defender ATP APIs.
-* Note that in addition to the error code, every error response contains an error message which can help resolving the problem.
-* Note that the message is a free text that can be changed.
-* At the bottom of the page you can find response examples.
+* In addition to the error code, every error response contains an error message, which can help resolving the problem.
+* The message is a free text that can be changed.
+* At the bottom of the page, you can find response examples.
 
 Error code |HTTP status code |Message 
 :---|:---|:---
@@ -40,7 +40,7 @@ MaximumBatchSizeExceeded | BadRequest (400) | Maximum batch size exceeded. Recei
 MissingRequiredParameter | BadRequest (400) | Parameter {the missing parameter} is missing.
 OsPlatformNotSupported | BadRequest (400) | OS Platform {the client OS Platform} is not supported for this action.
 ClientVersionNotSupported | BadRequest (400) | {The requested action} is supported on client version {supported client version} and above.
-Unauthorized | Unauthorized (401) | Unauthorized (usually invalid or expired authorization header).
+Unauthorized | Unauthorized (401) | Unauthorized (invalid or expired authorization header).
 Forbidden | Forbidden (403) | Forbidden (valid token but insufficient permission for the action).
 DisabledFeature | Forbidden (403) | Tenant feature is not enabled.
 DisallowedOperation | Forbidden (403) | {the disallowed operation and the reason}.
@@ -48,11 +48,11 @@ NotFound | Not Found (404) | General Not Found error message.
 ResourceNotFound | Not Found (404) | Resource {the requested resource} was not found.
 InternalServerError | Internal Server Error (500) | (No error message, try retry the operation or contact us if it does not resolved)
 
-## Body parameters are case sensitive
+## Body parameters are case-sensitive
 
-The submitted body parameters are currently case sensitive.
+The submitted body parameters are currently case-sensitive.
 <br>If you experience an **InvalidRequestBody** or **MissingRequiredParameter** errors, it might be caused from a wrong parameter capital or lower-case letter.
-<br>It is recommended to go to the requested Api documentation page and check that the submitted parameters match the relevant example.
+<br>We recommend that you go to the requested API documentation page and check that the submitted parameters match the relevant example.
 
 ## Correlation request ID
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md b/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md
index b5d1923c6e..0d53517158 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/configure-siem.md
@@ -35,7 +35,7 @@ ms.topic: article
 >- [Microsoft Defender ATP Detection](api-portal-mapping.md) is composed from the suspicious event occurred on the Device and its related Alert details.
 >-The Microsoft Defender ATP Alert API is the latest API for alert consumption and contain a detailed list of related evidence for each alert. For more information, see [Alert methods and properties](alerts.md) and [List alerts](get-alerts.md).
 
-Microsoft Defender ATP supports security information and event management (SIEM) tools to pull detections. Microsoft Defender ATP exposes alerts through an HTTPS endpoint hosted in Azure. The endpoint can be configured to pull detections from your enterprise tenant in Azure Active Directory (AAD) using the OAuth 2.0 authentication protocol for an AAD application that represents the specific SIEM connector installed in your environment.
+Microsoft Defender ATP supports security information and event management (SIEM) tools to pull detections. Microsoft Defender ATP exposes alerts through an HTTPS endpoint hosted in Azure. The endpoint can be configured to pull detections from your enterprise tenant in Azure Active Directory (Azure AD) using the OAuth 2.0 authentication protocol for an Azure AD application that represents the specific SIEM connector installed in your environment.
 
 
 Microsoft Defender ATP currently supports the following specific SIEM solution tools through a dedicated SIEM integration model:
@@ -45,14 +45,14 @@ Microsoft Defender ATP currently supports the following specific SIEM solution t
 
 Other SIEM solutions (such as Splunk, RSA NetWitness) are supported through a different integration model based on the new Alert API. For more information, view the [Partner application](https://securitycenter.microsoft.com/interoperability/partners) page and select the Security Information and Analytics section for full details.
 
-To use either of these supported SIEM tools you'll need to:
+To use either of these supported SIEM tools, you'll need to:
 
 - [Enable SIEM integration in Microsoft Defender ATP](enable-siem-integration.md)
 - Configure the supported SIEM tool:
      - [Configure HP ArcSight to pull Microsoft Defender ATP detections](configure-arcsight.md)
      - Configure IBM QRadar to pull Microsoft Defender ATP detections For more information, see [IBM Knowledge Center](https://www.ibm.com/support/knowledgecenter/SS42VS_DSM/com.ibm.dsm.doc/c_dsm_guide_MS_Win_Defender_ATP_overview.html?cp=SS42VS_7.3.1).
 
-For more information on the list of fields exposed in the Detection API see, [Microsoft Defender ATP Detection fields](api-portal-mapping.md).
+For more information on the list of fields exposed in the Detection API, see, [Microsoft Defender ATP Detection fields](api-portal-mapping.md).
 
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
index 6e76ce4bee..82693ece17 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/data-storage-privacy.md
@@ -29,7 +29,7 @@ ms.topic: conceptual
 
 This section covers some of the most frequently asked questions regarding privacy and data handling for Microsoft Defender ATP.
 > [!NOTE]
-> This document explains the data storage and privacy details related to Microsoft Defender ATP. For more information related to Microsoft Defender ATP and other products and services like Microsoft Defender Antivirus and Windows 10, see [Microsoft Privacy Statement](https://go.microsoft.com/fwlink/?linkid=827576). See also [Windows 10 privacy FAQ](https://go.microsoft.com/fwlink/?linkid=827577) for more information.
+> This document explains the data storage and privacy details related to Microsoft Defender ATP. For more information related to Microsoft Defender ATP and other products and services like Microsoft Defender Antivirus and Windows 10, see [Microsoft Privacy Statement](https://go.microsoft.com/fwlink/?linkid=827576). For more information, see [Windows 10 privacy FAQ](https://go.microsoft.com/fwlink/?linkid=827577).
 
 ## What data does Microsoft Defender ATP collect?
 
@@ -47,7 +47,7 @@ This data enables Microsoft Defender ATP to:
 Microsoft does not use your data for advertising.
 
 ## Data protection and encryption
-The Microsoft Defender ATP service utilizes state of the art data protection technologies which are based on Microsoft Azure infrastructure. 
+The Microsoft Defender ATP service utilizes state-of-the-art data protection technologies, which are based on Microsoft Azure infrastructure. 
 
 There are various aspects relevant to data protection that our service takes care of. Encryption is one of the most critical and it includes data encryption at rest, encryption in flight, and key management with Key Vault. For more information on other technologies used by the Microsoft Defender ATP service, see [Azure encryption overview](https://docs.microsoft.com/azure/security/security-azure-encryption-overview). 
 
@@ -79,20 +79,20 @@ Access to data for services deployed in Microsoft Azure Government data centers
 
 
 ## Is data shared with other customers?
-No. Customer data is isolated from other customers and is not shared. However, insights on the data resulting from Microsoft processing, and which don’t contain any customer specific data, might be shared with other customers. Each customer can only access data collected from its own organization and generic data that Microsoft provides.
+No. Customer data is isolated from other customers and is not shared. However, insights on the data resulting from Microsoft processing, and which don’t contain any customer-specific data, might be shared with other customers. Each customer can only access data collected from its own organization and generic data that Microsoft provides.
 
 ## How long will Microsoft store my data? What is Microsoft’s data retention policy?
 **At service onboarding**<br>
-You can choose the data retention policy for your data. This determines how long Window Defender ATP will store your data. There’s a flexibility of choosing in the range of 1 month to six months to meet your company’s regulatory compliance needs.
+You can choose the data retention policy for your data. This determines how long Window Defender ATP will store your data. There’s a flexibility of choosing in the range of one month to six months to meet your company’s regulatory compliance needs.
 
 **At contract termination or expiration**<br>
 Your data will be kept and will be available to you while the license is under grace period or suspended mode. At the end of this period, that data will be erased from Microsoft’s systems to make it unrecoverable, no later than 180 days from contract termination or expiration.
 
 
 ## Can Microsoft help us maintain regulatory compliance?
-Microsoft provides customers with detailed information about Microsoft's security and compliance programs, including audit reports and compliance packages, to help customers assess Microsoft Defender ATP services against their own legal and regulatory requirements. Microsoft Defender ATP has achieved a number of certifications including ISO, SOC, FedRAMP High, and PCI and continues to pursue additional national, regional and industry-specific certifications.
+Microsoft provides customers with detailed information about Microsoft's security and compliance programs, including audit reports and compliance packages, to help customers assess Microsoft Defender ATP services against their own legal and regulatory requirements. Microsoft Defender ATP has achieved a number of certifications including ISO, SOC, FedRAMP High, and PCI and continues to pursue additional national, regional, and industry-specific certifications.
 
-By providing customers with compliant, independently-verified services, Microsoft makes it easier for customers to achieve compliance for the infrastructure and applications they run.
+By providing customers with compliant, independently verified services, Microsoft makes it easier for customers to achieve compliance for the infrastructure and applications they run.
 
 For more information on the Microsoft Defender ATP certification reports, see [Microsoft Trust Center](https://servicetrust.microsoft.com/). 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
index 6e860b794b..22c4b8dd35 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-create-app-partners.md
@@ -26,21 +26,21 @@ ms.topic: article
 
 - Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink)
 
-This page describes how to create an AAD application to get programmatic access to Microsoft Defender ATP on behalf of your customers.
+This page describes how to create an Azure Active Directory (Azure AD) application to get programmatic access to Microsoft Defender ATP on behalf of your customers.
 
 Microsoft Defender ATP exposes much of its data and actions through a set of programmatic APIs. Those APIs will help you automate work flows and innovate based on Microsoft Defender ATP capabilities. The API access requires OAuth2.0 authentication. For more information, see [OAuth 2.0 Authorization Code Flow](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-code).
 
 In general, you’ll need to take the following steps to use the APIs:
-- Create a **multi-tenant** AAD application.
+- Create a **multi-tenant** Azure AD application.
 - Get authorized(consent) by your customer administrator for your application to access Microsoft Defender ATP resources it needs.
 - Get an access token using this application.
 - Use the token to access Microsoft Defender ATP API.
 
-The following steps with guide you how to create an AAD application, get an access token to Microsoft Defender ATP and validate the token.
+The following steps with guide you how to create an Azure AD application, get an access token to Microsoft Defender ATP and validate the token.
 
 ## Create the multi-tenant app
 
-1. Log on to your [Azure tenant](https://portal.azure.com) with user that has **Global Administrator** role.
+1. Sign in to your [Azure tenant](https://portal.azure.com) with user that has **Global Administrator** role.
 
 2. Navigate to **Azure Active Directory** > **App registrations** > **New registration**. 
 
@@ -59,15 +59,15 @@ The following steps with guide you how to create an AAD application, get an acce
 
 4. Allow your Application to access Microsoft Defender ATP and assign it with the minimal set of permissions required to complete the integration.
 
-   - On your application page, click **API Permissions** > **Add permission** > **APIs my organization uses** > type **WindowsDefenderATP** and click on **WindowsDefenderATP**.
+   - On your application page, select **API Permissions** > **Add permission** > **APIs my organization uses** > type **WindowsDefenderATP** and select on **WindowsDefenderATP**.
 
-   - **Note**: WindowsDefenderATP does not appear in the original list. You need to start writing its name in the text box to see it appear.
+   - **Note**: WindowsDefenderATP does not appear in the original list. Start writing its name in the text box to see it appear.
 
    ![Image of API access and API selection](images/add-permission.png)
    
    ### Request API permissions
 
-   To determine which permission you need, please look at the **Permissions** section in the API you are interested to call. For instance:
+   To determine which permission you need, review the **Permissions** section in the API you are interested to call. For instance:
 
    - To [run advanced queries](run-advanced-query-api.md), select 'Run advanced queries' permission
    
@@ -75,20 +75,20 @@ The following steps with guide you how to create an AAD application, get an acce
 
    In the following example we will use **'Read all alerts'** permission:
 
-   Choose **Application permissions** > **Alert.Read.All** > Click on **Add permissions**
+   Choose **Application permissions** > **Alert.Read.All** > select on **Add permissions**
 
    ![Image of API access and API selection](images/application-permissions.png)
 
 
-5. Click **Grant consent**
+5. Select **Grant consent**
 
-	- **Note**: Every time you add permission you must click on **Grant consent** for the new permission to take effect.
+	- **Note**: Every time you add permission you must select on **Grant consent** for the new permission to take effect.
 
 	![Image of Grant permissions](images/grant-consent.png)
 
 6. Add a secret to the application.
 
-	- Click **Certificates & secrets**, add description to the secret and click **Add**.
+	- Select **Certificates & secrets**, add description to the secret and select **Add**.
 
     **Important**: After click Add, **copy the generated secret value**. You won't be able to retrieve after you leave!
 
@@ -96,7 +96,7 @@ The following steps with guide you how to create an AAD application, get an acce
 
 7. Write down your application ID:
 
-   - On your application page, go to **Overview** and copy the following:
+   - On your application page, go to **Overview** and copy the following information:
 
    ![Image of created app id](images/app-id.png)
 
@@ -104,7 +104,7 @@ The following steps with guide you how to create an AAD application, get an acce
 
     You need your application to be approved in each customer tenant where you intend to use it. This is because your application interacts with Microsoft Defender ATP application on behalf of your customer.
 
-    A user with **Global Administrator** from your customer's tenant need to click the consent link and approve your application.
+    A user with **Global Administrator** from your customer's tenant need to select the consent link and approve your application.
 
     Consent link is of the form:
 
@@ -114,7 +114,7 @@ The following steps with guide you how to create an AAD application, get an acce
 
     Where 00000000-0000-0000-0000-000000000000 should be replaced with your Application ID
 
-	After clicking on the consent link, login with the Global Administrator of the customer's tenant and consent the application.
+	After clicking on the consent link, sign in with the Global Administrator of the customer's tenant and consent the application.
 
 	![Image of consent](images/app-consent-partner.png)
 
@@ -123,11 +123,11 @@ The following steps with guide you how to create an AAD application, get an acce
 - **Done!** You have successfully registered an application! 
 - See examples below for token acquisition and validation.
 
-## Get an access token examples:
+## Get an access token example:
 
-**Note:** to get access token on behalf of your customer, use the customer's tenant ID on the following token acquisitions.
+**Note:** To get access token on behalf of your customer, use the customer's tenant ID on the following token acquisitions.
 
-<br>For more details on AAD token, refer to [AAD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds)
+<br>For more information on AAD token, see [AAD tutorial](https://docs.microsoft.com/azure/active-directory/develop/active-directory-v2-protocols-oauth-client-creds)
 
 ### Using PowerShell
 
@@ -158,14 +158,14 @@ return $token
 >The below code was tested with Nuget Microsoft.IdentityModel.Clients.ActiveDirectory
 
 - Create a new Console Application
-- Install Nuget [Microsoft.IdentityModel.Clients.ActiveDirectory](https://www.nuget.org/packages/Microsoft.IdentityModel.Clients.ActiveDirectory/)
+- Install NuGet [Microsoft.IdentityModel.Clients.ActiveDirectory](https://www.nuget.org/packages/Microsoft.IdentityModel.Clients.ActiveDirectory/)
 - Add the below using
 
     ```
     using Microsoft.IdentityModel.Clients.ActiveDirectory;
     ```
 
-- Copy/Paste the below code in your application (do not forget to update the 3 variables: ```tenantId, appId, appSecret```)
+- Copy/Paste the below code in your application (do not forget to update the three variables: ```tenantId, appId, appSecret```)
 
     ```
     string tenantId = "00000000-0000-0000-0000-000000000000"; // Paste your own tenant ID here
@@ -221,7 +221,7 @@ Sanity check to make sure you got a correct token:
 
 - Choose the API you want to use, for more information, see [Supported Microsoft Defender ATP APIs](exposed-apis-list.md)
 - Set the Authorization header in the Http request you send to "Bearer {token}" (Bearer is the Authorization scheme)
-- The Expiration time of the token is 1 hour (you can send more then one request with the same token)
+- The Expiration time of the token is 1 hour (you can send more than one request with the same token)
 
 - Example of sending a request to get a list of alerts **using C#** 
     ```
diff --git a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
index bdb9fddc2c..ca41b7420b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/exposed-apis-full-sample-powershell.md
@@ -1,5 +1,5 @@
 ---
-title: Advanced Hunting with Powershell API Guide
+title: Advanced Hunting with PowerShell API Guide
 ms.reviewer: 
 description: Use these code samples, querying several Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP) APIs.
 keywords: apis, supported apis, advanced hunting, query
@@ -28,7 +28,7 @@ ms.date: 09/24/2018
 
 Full scenario using multiple APIs from Microsoft Defender ATP.
 
-In this section we share PowerShell samples to 
+In this section, we share PowerShell samples to 
 - Retrieve a token 
 - Use token to retrieve the latest alerts in Microsoft Defender ATP
 - For each alert, if the alert has medium or high priority and is still in progress, check how many times the device has connected to suspicious URL.
@@ -43,15 +43,15 @@ In this section we share PowerShell samples to
   Set-ExecutionPolicy -ExecutionPolicy Bypass
   ```
 
-For more details, refer to [PowerShell documentation](https://docs.microsoft.com/powershell/module/microsoft.powershell.security/set-executionpolicy)
+For more information, see [PowerShell documentation](https://docs.microsoft.com/powershell/module/microsoft.powershell.security/set-executionpolicy)
 
 ## Get token
 
 Run the below:
 
-- $tenantId: ID of the tenant on behalf of which you want to run the query (i.e., the query will be run on the data of this tenant)
-- $appId: ID of your AAD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
-- $appSecret: Secret of your AAD app
+- $tenantId: ID of the tenant on behalf of which you want to run the query (that is, the query will be run on the data of this tenant)
+- $appId: ID of your Azure AD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
+- $appSecret: Secret of your Azure AD app
 - $suspiciousUrl: The URL
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
index ea5713e42e..51dbfaed23 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-machine-log-on-users.md
@@ -1,6 +1,6 @@
 ---
-title: Get machine log on users API
-description: Learn how to use the Get machine log on users API to retrieve a collection of logged on users on a device in Microsoft Defender Advanced Threat Protection.
+title: Get machine logon users API
+description: Learn how to use the Get machine logon users API to retrieve a collection of logged on users on a device in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, device, log on, users
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -16,7 +16,7 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Get machine log on users API
+# Get machine logon users API
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -45,8 +45,8 @@ Delegated (work or school account) | User.Read.All | 'Read user profiles'
 
 >[!Note]
 > When obtaining a token using user credentials:
->- The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information)
->- Response will include users only if the device is visible to the user, based on device group settings (See [Create and manage device groups](machine-groups.md) for more information)
+>- The user needs to have at least the following role permission: 'View Data'. For more information, see [Create and manage roles](user-roles.md) )
+>- Response will include users only if the device is visible to the user, based on device group settings. For more information, see [Create and manage device groups](machine-groups.md).
 
 ## HTTP request
 ```http
@@ -64,7 +64,7 @@ Authorization | String | Bearer {token}. **Required**.
 Empty
 
 ## Response
-If successful and device exist - 200 OK with list of [user](user.md) entities in the body. If device was not found - 404 Not Found.
+If successful and device exists - 200 OK with list of [user](user.md) entities in the body. If device was not found - 404 Not Found.
 
 
 ## Example
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md b/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md
index 09c65fdff1..8bea8e41dc 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-started-partner-integration.md
@@ -1,7 +1,7 @@
 ---
 title: Become a Microsoft Defender ATP partner
 ms.reviewer: 
-description: Learn the steps and requirements so that you can integrate your solution with Microsoft Defender ATP and be a partner
+description: Learn the steps and requirements to integrate your solution with Microsoft Defender ATP and be a partner
 keywords: partner, integration, solution validation, certification, requirements, member, misa, application portal
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -29,7 +29,7 @@ ms.topic: conceptual
 To become a Microsoft Defender ATP solution partner, you'll need to follow and complete the following steps.
 
 ## Step 1: Subscribe to a Microsoft Defender ATP Developer license
-Subscribing to the [Microsoft Defender ATP Developer license](https://winatpregistration-prd.trafficmanager.net/Developer/UserAgreement?Length=9) allows you to use a Microsoft Defender ATP tenant with up to 10 devices for developing solutions to integrate with Microsoft Defender ATP. 
+Subscribe to the [Microsoft Defender ATP Developer license](https://winatpregistration-prd.trafficmanager.net/Developer/UserAgreement?Length=9). Subscribing allows you to use a Microsoft Defender ATP tenant with up to 10 devices to developing solutions that integrate with Microsoft Defender ATP. 
 
 ## Step 2: Fulfill the solution validation and certification requirements
 The best way for technology partners to certify that their integration works is to have a joint customer approve the suggested integration design (the customer can use the **Recommend a partner** option in the [Partner Application page](https://securitycenter.microsoft.com/interoperability/partners) in the Microsoft Defender Security Center) and have it tested and demoed to the Microsoft Defender ATP team.
@@ -42,16 +42,16 @@ Once the Microsoft Defender ATP team has reviewed and approves the integration,
 ## Step 4: Get listed in the Microsoft Defender ATP partner application portal
 Microsoft Defender ATP supports third-party applications discovery and integration using the in-product [partner page](partner-applications.md) that is embedded within the Microsoft Defender ATP management portal. 
 
-To have your company listed as a partner in the in-product partner page, you will need to provide the following:
+To have your company listed as a partner in the in-product partner page, you will need to provide the following information:
 
 1. A square logo (SVG).
 2. Name of the product to be presented.
 3. Provide a 15-word product description.
-4. Link to the landing page for the customer to complete the integration or blog post that will include sufficient information for customers. Please note that any press release including the Microsoft Defender ATP product name should be reviewed by the marketing and engineering teams. You should allow at least 10 days for review process to be performed.
-5.	If you use a multi-tenant Azure AD approach, we will need the AAD application name to track usage of the application.
-6. We'd like to request that you include the User-Agent field in each API call made to Microsoft Defender ATP public set of APIs or Graph Security APIs. This will be used for statistical purposes, troubleshooting, and partner recognition. In addition, this step is a requirement for membership in Microsoft Intelligent Security Association (MISA).
+4. Link to the landing page for the customer to complete the integration or blog post that will include sufficient information for customers. Any press release including the Microsoft Defender ATP product name should be reviewed by the marketing and engineering teams. Wait for at least 10 days for the review process to be done.
+5.	If you use a multi-tenant Azure AD approach, we will need the Azure AD application name to track usage of the application.
+6. Include the User-Agent field in each API call made to Microsoft Defender ATP public set of APIs or Graph Security APIs. This will be used for statistical purposes, troubleshooting, and partner recognition. In addition, this step is a requirement for membership in Microsoft Intelligent Security Association (MISA).
     Follow these steps:
-    1.	Identify a name adhering to the following nomenclature that includes your company name and the Microsoft Defender ATP integrated product with the version of the product that includes this integration. 
+    1.	Identify a name adhering to the following nomenclature that includes your company name and the Microsoft Defender ATP-integrated product with the version of the product that includes this integration. 
       - ISV Nomenclature: `MdatpPartner-{CompanyName}-{ProductName}/{Version}`
       - Security partner Nomenclature: `MdatpPartner-{CompanyName}-{ProductName}/{TenantID}` 
 
@@ -59,7 +59,7 @@ To have your company listed as a partner in the in-product partner page, you wil
     For more information, see [RFC 2616 section-14.43](https://tools.ietf.org/html/rfc2616#section-14.43). For example, User-Agent: `MdatpPartner-Contoso-ContosoCognito/1.0.0`
 
 
-Partnership with Microsoft Defender ATP help our mutual customers to further streamline, integrate, and orchestrate defenses. We are happy that you chose to become a Microsoft Defender ATP partner and to achieve our common goal of effectively protecting customers and their assets by preventing and responding to modern threats together.
+Partnerships with Microsoft Defender ATP help our mutual customers to further streamline, integrate, and orchestrate defenses. We are happy that you chose to become a Microsoft Defender ATP partner and to achieve our common goal of effectively protecting customers and their assets by preventing and responding to modern threats together.
 
 ## Related topics
 - [Technical partner opportunities](partner-integration.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
index 95225803d9..5ccd353fa2 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-alerts.md
@@ -1,5 +1,5 @@
 ---
-title: Get user related alerts API
+title: Get user-related alerts API
 description: Retrieve a collection of alerts related to a given user ID using Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP).
 keywords: apis, graph api, supported apis, get, user, related, alerts
 search.product: eADQiWindows 10XVcnh
@@ -16,7 +16,7 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Get user related alerts API
+# Get user-related alerts API
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -46,7 +46,7 @@ Delegated (work or school account) | Alert.ReadWrite | 'Read and write alerts'
 
 >[!Note]
 > When obtaining a token using user credentials:
->- The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information)
+>- The user needs to have at least the following role permission: 'View Data'. For more information, see [Create and manage roles](user-roles.md).
 >- Response will include only alerts, associated with devices, that the user have access to, based on device group settings (See [Create and manage device groups](machine-groups.md) for more information)
 
 ## HTTP request
@@ -54,7 +54,7 @@ Delegated (work or school account) | Alert.ReadWrite | 'Read and write alerts'
 GET /api/users/{id}/alerts
 ```
 
-**Note that the id is not the full UPN, but only the user name. (e.g., to retrieve alerts for user1@contoso.com use /api/users/user1/alerts)**
+**The ID is not the full UPN, but only the user name. (for example, to retrieve alerts for user1@contoso.com use /api/users/user1/alerts)**
 
 ## Request headers
 
@@ -67,7 +67,7 @@ Authorization | String | Bearer {token}. **Required**.
 Empty
 
 ## Response
-If successful and user exist - 200 OK. If the user do not exist - 404 Not Found. 
+If successful and user exists - 200 OK. If the user does not exist - 404 Not Found. 
 
 
 ## Example
diff --git a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
index f3b126e12f..4fe938bf97 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/get-user-related-machines.md
@@ -1,6 +1,6 @@
 ---
-title: Get user related machines API
-description: Learn how to use the Get user related machines API to retrieve a collection of devices related to a user ID in Microsoft Defender Advanced Threat Protection.
+title: Get user-related machines API
+description: Learn how to use the Get user-related machines API to retrieve a collection of devices related to a user ID in Microsoft Defender Advanced Threat Protection.
 keywords: apis, graph api, supported apis, get, user, user related alerts
 search.product: eADQiWindows 10XVcnh
 ms.prod: w10
@@ -16,7 +16,7 @@ ms.collection: M365-security-compliance
 ms.topic: article
 ---
 
-# Get user related machines API
+# Get user-related machines API
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
@@ -46,15 +46,15 @@ Delegated (work or school account) | Machine.ReadWrite | 'Read and write machine
 
 >[!Note]
 > When obtaining a token using user credentials:
->- The user needs to have at least the following role permission: 'View Data' (See [Create and manage roles](user-roles.md) for more information)
->- Response will include only devices that the user can access, based on device group settings (See [Create and manage device groups](machine-groups.md) for more information)
+>- The user needs to have at least the following role permission: 'View Data'. For more information, see [Create and manage roles](user-roles.md) )
+>- Response will include only devices that the user can access, based on device group settings. For more information, see [Create and manage device groups](machine-groups.md).
 
 ## HTTP request
 ```
 GET /api/users/{id}/machines
 ```
 
-**Note that the id is not the full UPN, but only the user name. (e.g., to retrieve machines for user1@contoso.com use /api/users/user1/machines)**
+**The ID is not the full UPN, but only the user name. (for example, to retrieve machines for user1@contoso.com use /api/users/user1/machines)**
 
 
 ## Request headers
diff --git a/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md b/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md
index 06ed19033e..871b6e1473 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/investigate-incidents.md
@@ -68,7 +68,8 @@ Select **Investigations** to see all the automatic investigations launched by th
 ![Image of investigations tab in incident details page](images/atp-incident-investigations-tab.png)
 
 ## Going through the evidence
-Microsoft Defender Advanced Threat Protection automatically investigates all the incidents' supported events and suspicious entities in the alerts, providing you with auto-response and information about the important files, processes, services, and more. This helps quickly detect and block potential threats in the incident. 
+Microsoft Defender Advanced Threat Protection automatically investigates all the incidents' supported events and suspicious entities in the alerts, providing you with autoresponse and information about the important files, processes, services, and more. 
+
 Each of the analyzed entities will be marked as infected, remediated, or suspicious. 
 
 ![Image of evidence tab in incident details page](images/atp-incident-evidence-tab.png)
@@ -81,7 +82,7 @@ The **Graph** tells the story of the cybersecurity attack. For example, it shows
 
 ![Image of the incident graph](images/atp-incident-graph-tab.png)
 
-You can click the circles on the incident graph to view the details of the malicious files, associated file detections, how many instances has there been worldwide, whether it’s been observed in your organization, if so, how many instances.
+You can click the circles on the incident graph to view the details of the malicious files, associated file detections, how many instances have there been worldwide, whether it’s been observed in your organization, if so, how many instances.
 
 ![Image of incident details](images/atp-incident-graph-details.png)
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/machineaction.md b/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
index 19f660b07e..90bf8cebb8 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/machineaction.md
@@ -25,7 +25,7 @@ ms.topic: article
 
 - Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-exposedapis-abovefoldlink) 
 
-- See [Response Actions](respond-machine-alerts.md) for more information
+- For more information, see [Response Actions](respond-machine-alerts.md). 
 
 | Method                                                            | Return Type                        | Description                                                 |
 |:------------------------------------------------------------------|:-----------------------------------|:------------------------------------------------------------|
@@ -47,17 +47,17 @@ ms.topic: article
 
 | Property            | Type           | Description                                                                                                                                                                                                    |
 |:--------------------|:---------------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
-| id                  | Guid           | Identity of the [Machine Action](machineaction.md) entity.                                                                                                                                                     |
+| ID                  | Guid           | Identity of the [Machine Action](machineaction.md) entity.                                                                                                                                                     |
 | type                | Enum           | Type of the action. Possible values are: "RunAntiVirusScan", "Offboard", "CollectInvestigationPackage", "Isolate", "Unisolate", "StopAndQuarantineFile", "RestrictCodeExecution" and "UnrestrictCodeExecution" |
-| scope				  | string         | Scope of the action. "Full" or "Selective" in case of Isolation, "Quick" or "Full" in case of Anti-Virus scan.						                                                                            |
+| scope				  | string         | Scope of the action. "Full" or "Selective" for Isolation, "Quick" or "Full" for Anti-Virus scan.						                                                                            |
 | requestor           | String         | Identity of the person that executed the action.                                                                                                                                                               |
 | requestorComment    | String         | Comment that was written when issuing the action.                                                                                                                                                              |
-| status              | Enum           | Current status of the command. Possible values are: "Pending", "InProgress", "Succeeded", "Failed", "TimeOut" and "Cancelled".                                                                                 |
-| machineId           | String         | Id of the [machine](machine.md) on which the action was executed.                                                                                                                                              |
+| status              | Enum           | Current status of the command. Possible values are: "Pending", "InProgress", "Succeeded", "Failed", "TimeOut" and "Canceled".                                                                                 |
+| machineId           | String         | ID of the [machine](machine.md) on which the action was executed.                                                                                                                                              |
 | machineId           | String         | Name of the [machine](machine.md) on which the action was executed.                                                                                                                                            |
 | creationDateTimeUtc | DateTimeOffset | The date and time when the action was created.                                                                                                                                                                 |
 | lastUpdateTimeUtc   | DateTimeOffset | The last date and time when the action status was updated.                                                                                                                                                     |
-| relatedFileInfo     | Class          | Contains two Properties. string ```fileIdentifier```, Enum ```fileIdentifierType``` with the possible values: "Sha1" ,"Sha256" and "Md5".                                                                         |
+| relatedFileInfo     | Class          | Contains two Properties. string ```fileIdentifier```, Enum ```fileIdentifierType``` with the possible values: "Sha1", "Sha256" and "Md5".                                                                         |
 
 
 ## Json representation
diff --git a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
index 0a71770ee3..c3176ac54a 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/management-apis.md
@@ -55,12 +55,12 @@ The Microsoft Defender ATP APIs can be grouped into three:
 
 ## Microsoft Defender ATP APIs
 
-Microsoft Defender ATP offers a layered API model exposing data and capabilities in a structured, clear and easy to use model, exposed through a standard Azure  AD-based authentication and authorization model allowing access in context of users or SaaS applications. The API model was designed to expose entities and capabilities in a consistent form. 
+Microsoft Defender ATP offers a layered API model exposing data and capabilities in a structured, clear, and easy to use model, exposed through a standard Azure  AD-based authentication and authorization model allowing access in context of users or SaaS applications. The API model was designed to expose entities and capabilities in a consistent form. 
 
 Watch this video for a quick overview of Microsoft Defender ATP's APIs. 
 >[!VIDEO https://www.microsoft.com/en-us/videoplayer/embed/RE4d73M]
 
-The **Investigation API** exposes the richness of Microsoft Defender ATP - exposing calculated or 'profiled' entities (for example, device, user, and file) and discrete events (for example, process creation and file creation) which typically describes a behavior related to an entity, enabling access to data via investigation interfaces allowing a query-based access to data. For more information see, [Supported APIs](exposed-apis-list.md).
+The **Investigation API** exposes the richness of Microsoft Defender ATP - exposing calculated or 'profiled' entities (for example, device, user, and file) and discrete events (for example, process creation and file creation) which typically describes a behavior related to an entity, enabling access to data via investigation interfaces allowing a query-based access to data. For more information, see, [Supported APIs](exposed-apis-list.md).
 
 The **Response API** exposes the ability to take actions in the service and on devices, enabling customers to ingest indicators, manage settings, alert status, as well as take response actions on devices programmatically such as isolate devices from the network, quarantine files, and others. 
 
@@ -69,11 +69,11 @@ Microsoft Defender ATP raw data streaming API provides the ability for customers
 
 The Microsoft Defender ATP event information is pushed directly to Azure storage for long-term data retention, or to Azure Event Hubs for consumption by visualization services or additional data processing engines. 
 
-For more information see, [Raw data streaming API](raw-data-export.md).
+For more information, see, [Raw data streaming API](raw-data-export.md).
 
 
 ## SIEM API
-When you enable security information and event management (SIEM) integration it allows you to pull detections from Microsoft Defender Security Center using your SIEM solution or by connecting directly to the detections REST API. This activates the SIEM connector access details section with pre-populated values and an application is created under you Azure Active Directory (AAD) tenant. For more information see, [SIEM integration](enable-siem-integration.md)
+When you enable security information and event management (SIEM) integration, it allows you to pull detections from Microsoft Defender Security Center using your SIEM solution or by connecting directly to the detections REST API. This activates the SIEM connector access details section with pre-populated values and an application is created under your Azure Active Directory (Azure AD) tenant. For more information, see, [SIEM integration](enable-siem-integration.md)
 
 ## Related topics
 - [Access the Microsoft Defender Advanced Threat Protection APIs ](apis-intro.md)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
index d45c5c585e..c25bf6630c 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/microsoft-defender-advanced-threat-protection.md
@@ -33,8 +33,7 @@ Microsoft Defender Advanced Threat Protection is an enterprise endpoint security
 
 Microsoft Defender ATP uses the following combination of technology built into Windows 10 and Microsoft's robust cloud service:
 
--   **Endpoint behavioral sensors**: Embedded in Windows 10, these sensors
-    collect and process behavioral signals from the operating system and sends this sensor data to your private, isolated, cloud instance of Microsoft Defender ATP.
+-   **Endpoint behavioral sensors**: Embedded in Windows 10, these sensors collect and process behavioral signals from the operating system and send this sensor data to your private, isolated, cloud instance of Microsoft Defender ATP.
 
 
 -   **Cloud security analytics**: Leveraging big-data, device-learning, and
@@ -46,7 +45,7 @@ Microsoft Defender ATP uses the following combination of technology built into W
 -   **Threat intelligence**: Generated by Microsoft hunters, security teams,
     and augmented by threat intelligence provided by partners, threat
     intelligence enables Microsoft Defender ATP to identify attacker
-    tools, techniques, and procedures, and generate alerts when these
+    tools, techniques, and procedures, and generate alerts when they
     are observed in collected sensor data.
 
 
@@ -86,7 +85,7 @@ This built-in capability uses a game-changing risk-based approach to the discove
 <a name="asr"></a>
 
 **[Attack surface reduction](overview-attack-surface-reduction.md)**<br>
-The attack surface reduction set of capabilities provide the first line of defense in the stack. By ensuring configuration settings are properly set and exploit mitigation techniques are applied, these set of capabilities resist attacks and exploitation. This set of capabilities also includes [network protection](network-protection.md) and [web protection](web-protection-overview.md), which regulate access to malicious IP addresses, domains, and URLs. 
+The attack surface reduction set of capabilities provides the first line of defense in the stack. By ensuring configuration settings are properly set and exploit mitigation techniques are applied, the capabilities resist attacks and exploitation. This set of capabilities also includes [network protection](network-protection.md) and [web protection](web-protection-overview.md), which regulate access to malicious IP addresses, domains, and URLs. 
 
 <a name="ngp"></a>
 
@@ -135,7 +134,7 @@ Integrate Microsoft Defender Advanced Threat Protection into your existing workf
 - Microsoft Cloud App Security
 
 **[Microsoft Threat Protection](https://docs.microsoft.com/microsoft-365/security/mtp/microsoft-threat-protection)**<br>
- With Microsoft Threat Protection, Microsoft Defender ATP and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate and automatically respond to sophisticated attacks.
+ With Microsoft Threat Protection, Microsoft Defender ATP and various Microsoft security solutions form a unified pre- and post-breach enterprise defense suite that natively integrates across endpoint, identity, email, and applications to detect, prevent, investigate, and automatically respond to sophisticated attacks.
 
 
 ## Related topic
diff --git a/windows/security/threat-protection/microsoft-defender-atp/onboard.md b/windows/security/threat-protection/microsoft-defender-atp/onboard.md
index dc8e5dab0c..78edeae3ef 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/onboard.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/onboard.md
@@ -1,7 +1,7 @@
 ---
 title: Configure and manage Microsoft Defender ATP capabilities
 ms.reviewer: 
-description: Configure and manage Microsoft Defender ATP capabilities such as attack surface reduction, next-generation protection, and security controls 
+description: Configure and manage Microsoft Defender ATP capabilities such as attack surface reduction, and next-generation protection
 keywords: configure, manage, capabilities, attack surface reduction, next-generation protection, security controls, endpoint detection and response, auto investigation and remediation, security controls, controls
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -32,12 +32,12 @@ Configure and manage all the Microsoft Defender ATP capabilities to get the best
 ## In this section 
 Topic | Description 
 :---|:---
-[Configure attack surface reduction capabilities](configure-attack-surface-reduction.md) |  By ensuring configuration settings are properly set and exploit mitigation techniques are applied, these set of capabilities resist attacks and exploitations. 
+[Configure attack surface reduction capabilities](configure-attack-surface-reduction.md) |  By ensuring configuration settings are properly set and exploit mitigation techniques are applied, these set of capabilities resist attacks and exploitation. 
 [Configure next-generation protection](../microsoft-defender-antivirus/configure-microsoft-defender-antivirus-features.md) | Configure next-generation protection to catch all types of emerging threats.
 [Configure Microsoft Threat Experts capabilities](configure-microsoft-threat-experts.md) | Configure and manage how you would like to get cybersecurity threat intelligence from Microsoft Threat Experts.
 [Configure Microsoft Threat Protection integration](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/threat-protection-integration)| Configure other solutions that integrate with Microsoft Defender ATP.
 [Management and API support](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/management-apis)| Pull alerts to your SIEM or use APIs to create custom alerts. Create and build Power BI reports. 
-[Configure Microsoft Defender Security Center settings](preferences-setup.md) |  Configure portal related settings such as general settings, advanced features, enable the preview experience and others.
+[Configure Microsoft Defender Security Center settings](preferences-setup.md) |  Configure portal-related settings such as general settings, advanced features, enable the preview experience and others.
 
 
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
index 19b0432ed6..822b5afaab 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/partner-applications.md
@@ -30,9 +30,15 @@ ms.topic: conceptual
 Microsoft Defender ATP supports third-party applications to help enhance the detection, investigation, and threat intelligence capabilities of the platform.
 
 
-The support for third-party solutions help to further streamline, integrate, and orchestrate defenses from other vendors with Microsoft Defender ATP; enabling security teams to effectively respond better to modern threats.
+The support for third-party solutions helps to further streamline, integrate, and orchestrate defenses from other vendors with Microsoft Defender ATP; enabling security teams to effectively respond better to modern threats.
 
-Microsoft Defender ATP seamlessly integrates with existing security solutions — providing out of the box integration with SIEM, ticketing and IT service management solutions, managed security service providers (MSSP), IoC indicators ingestions and matching, automated device investigation and remediation based on external alerts, and integration with Security orchestration and automation response (SOAR) systems. 
+Microsoft Defender ATP seamlessly integrates with existing security solutions. The integration provides integration with the following solutions such as:
+- SIEM
+- Ticketing and IT service management solutions
+- Managed security service providers (MSSP)
+- IoC indicators ingestions and matching
+- Automated device investigation and remediation based on external alerts
+- Integration with Security orchestration and automation response (SOAR) systems
 
 ## Supported applications
 
@@ -49,7 +55,7 @@ Logo |Partner name   | Description
 ![Image of Micro Focus ArcSight logo](images/arcsight-logo.png) | [Micro Focus ArcSight](https://go.microsoft.com/fwlink/?linkid=2113548) | Use Micro Focus ArcSight to pull Microsoft Defender ATP detections
 ![Image of RSA NetWitness logo](images/rsa-netwitness-logo.png) | [RSA NetWitness](https://go.microsoft.com/fwlink/?linkid=2118566) | Stream Microsoft Defender ATP Alerts to RSA NetWitness leveraging Microsoft Graph Security API
 ![Image of SafeBreach logo](images/safebreach-logo.png) | [SafeBreach](https://go.microsoft.com/fwlink/?linkid=2114114)| Gain visibility into Microsoft Defender ATP security events that are automatically correlated with SafeBreach simulations
-![Image of Skybox Vulnerability Control logo](images/skybox-logo.png) | [Skybox Vulnerability Control](https://go.microsoft.com/fwlink/?linkid=2127467) | Skybox Vulnerability Control cuts through the noise of vulnerability management, correlating business, network and threat context to uncover your riskiest vulnerabilities
+![Image of Skybox Vulnerability Control logo](images/skybox-logo.png) | [Skybox Vulnerability Control](https://go.microsoft.com/fwlink/?linkid=2127467) | Skybox Vulnerability Control cuts through the noise of vulnerability management, correlating business, network, and threat context to uncover your riskiest vulnerabilities
 ![Image of Splunk logo](images/splunk-logo.png) | [Splunk](https://go.microsoft.com/fwlink/?linkid=2129805) | The Microsoft Defender ATP Add-on allows Splunk users to ingest all of the alerts and supporting information to their Splunk
 ![Image of XM Cyber logo](images/xmcyber-logo.png) | [XM Cyber](https://go.microsoft.com/fwlink/?linkid=2136700) | Prioritize your response to an alert based on risk factors and high value assets
 
@@ -60,7 +66,7 @@ Logo |Partner name   | Description
 :---|:---|:---
 ![Image of CyberSponse CyOps logo](images/cybersponse-logo.png) | [CyberSponse CyOps](https://go.microsoft.com/fwlink/?linkid=2115943) | CyOps integrates with Microsoft Defender ATP to automate customers' high-speed incident response playbooks
 ![Image of Delta Risk ActiveEye logo](images/delta-risk-activeeye-logo.png) | [Delta Risk ActiveEye](https://go.microsoft.com/fwlink/?linkid=2127468) | Delta Risk, a leading provider of SOC-as-a-Service and security services, integrate Microsoft Defender ATP with its cloud-native SOAR platform, ActiveEye.
-![Image of Demisto, a Palo Alto Networks Company logo](images/demisto-logo.png) | [Demisto, a Palo Alto Networks Company](https://go.microsoft.com/fwlink/?linkid=2108414) | Demisto integrates with Microsoft Defender ATP to enable security teams to orchestrate and automate endpoint security monitoring, enrichment and response
+![Image of Demisto, a Palo Alto Networks Company logo](images/demisto-logo.png) | [Demisto, a Palo Alto Networks Company](https://go.microsoft.com/fwlink/?linkid=2108414) | Demisto integrates with Microsoft Defender ATP to enable security teams to orchestrate and automate endpoint security monitoring, enrichment, and response
 ![Image of Microsoft Flow & Azure Functions logo](images/ms-flow-logo.png) | [Microsoft Flow & Azure Functions](https://go.microsoft.com/fwlink/?linkid=2114300) | Use the Microsoft Defender ATP connectors for Azure Logic Apps & Microsoft Flow to automating security procedures
 ![Image of Rapid7 InsightConnect logo](images/rapid7-logo.png) | [Rapid7 InsightConnect](https://go.microsoft.com/fwlink/?linkid=2116040) | InsightConnect integrates with Microsoft Defender ATP to accelerate, streamline, and integrate your time-intensive security processes
 ![Image of ServiceNow logo](images/servicenow-logo.png) | [ServiceNow](https://go.microsoft.com/fwlink/?linkid=2135621) | Ingest alerts into ServiceNow Security Operations solution based on Microsoft Graph API integration
@@ -93,7 +99,7 @@ Logo |Partner name   | Description
 ![Image of Better Mobile logo](images/bettermobile-logo.png) | [Better Mobile](https://go.microsoft.com/fwlink/?linkid=2086214)| AI based MTD solution to stop mobile threats & phishing. Private internet browsing to protect user privacy 
 ![Image of Corrata logo](images/corrata-logo.png)| [Corrata](https://go.microsoft.com/fwlink/?linkid=2081148) | Mobile solution — Protect your mobile devices with granular visibility and control from Corrata 
 ![Image of Lookout logo](images/lookout-logo.png)| [Lookout](https://go.microsoft.com/fwlink/?linkid=866935)| Get Lookout Mobile Threat Protection telemetry for Android and iOS mobile devices
-![Image of Symantec Endpoint Protection Mobile logo](images/symantec-logo.png) | [Symantec Endpoint Protection Mobile](https://go.microsoft.com/fwlink/?linkid=2090992)| SEP Mobile helps businesses predict, detect and prevent security threats and vulnerabilities on mobile devices 
+![Image of Symantec Endpoint Protection Mobile logo](images/symantec-logo.png) | [Symantec Endpoint Protection Mobile](https://go.microsoft.com/fwlink/?linkid=2090992)| SEP Mobile helps businesses predict, detect, and prevent security threats and vulnerabilities on mobile devices 
 ![Image of Zimperium logo](images/zimperium-logo.png)| [Zimperium](https://go.microsoft.com/fwlink/?linkid=2118044)|Extend your Microsoft Defender ATP to iOS and Android with Machine Learning-based Mobile Threat Defense
 
 
@@ -121,7 +127,7 @@ Microsoft Defender ATP offers unique automated investigation and remediation cap
   
 Integrating the automated investigation and response capability with other solutions such as IDS and firewalls help to address alerts and minimize the complexities surrounding network and device signal correlation, effectively streamlining the investigation and threat remediation actions on devices.  
 
-External alerts can be pushed into Microsoft Defender ATP and is presented side-by-side with additional device-based alerts from Microsoft Defender ATP. This view provides a full context of the alert — with the real process and the full story of attack.  
+External alerts can be pushed into Microsoft Defender ATP and is presented side by side with additional device-based alerts from Microsoft Defender ATP. This view provides a full context of the alert — with the real process and the full story of attack.  
 
 ## Indicators matching
 You can use threat-intelligence from providers and aggregators to maintain and use indicators of compromise (IOCs).
diff --git a/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md b/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
index efb88424f7..7aa19efe08 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/partner-integration.md
@@ -31,26 +31,27 @@ ms.topic: conceptual
 
 Partners can easily extend their existing security offerings on top of the open framework and a rich and complete set of APIs to build extensions and integrations with Microsoft Defender ATP. 
 
-The APIs span functional areas including detection, management, response, vulnerabilities and intelligence wide range of use cases. Based on the use case and need, partners can either stream or query data from Microsoft Defender ATP. 
+The APIs span functional areas including detection, management, response, vulnerabilities, and intelligence-wide range of use cases. Based on the use case and need, partners can either stream or query data from Microsoft Defender ATP. 
 
 
 ## Scenario 1: External alert correlation and Automated investigation and remediation
 Microsoft Defender ATP offers unique automated investigation and remediation capabilities to drive incident response at scale. 
 
-Integrating the automated investigation and response capability with other solutions such as network security products or other endpoint security products will help to address alerts and minimize the complexities surrounding network and device signal correlation, effectively streamlining the investigation and threat remediation actions on devices.
+Integrating the automated investigation and response capability with other solutions such as network security products or other endpoint security products will help to address alerts. The integration also minimizes the complexities surrounding network and device signal correlation, effectively streamlining the investigation and threat remediation actions on devices.
 
 Microsoft Defender ATP adds support for this scenario in the following forms:
-- External alerts can be pushed into Microsoft Defender ATP and presented side-by-side with additional device-based alerts from Microsoft Defender ATP. This view provides the full context of the alert - with the real process and the full story of attack.
+
+- External alerts can be pushed into Microsoft Defender ATP and presented side by side with additional device-based alerts from Microsoft Defender ATP. This view provides the full context of the alert - with the real process and the full story of attack.
 
 - Once an alert is generated, the signal is shared across all Microsoft Defender ATP protected endpoints in the enterprise. Microsoft Defender ATP takes immediate automated or operator-assisted response to address the alert.
 
 ## Scenario 2: Security orchestration and automation response (SOAR) integration
-Orchestration solutions can help build playbooks and integrate the rich data model and actions that Microsoft Defender ATP APIs exposes to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others.
+Orchestration solutions can help build playbooks and integrate the rich data model and actions that Microsoft Defender ATP APIs expose to orchestrate responses, such as query for device data, trigger device isolation, block/allow, resolve alert and others.
 
 ## Scenario 3: Indicators matching 
-Indicator of compromise (IoCs) matching is an essential feature in every endpoint protection solution. This capability is available in Microsoft Defender ATP and gives the ability to set a list of indicators for prevention, detection and exclusion of entities. One can define the action to be taken as well as the duration for when to apply the action.
+Indicator of compromise (IoCs) matching is an essential feature in every endpoint protection solution. This capability is available in Microsoft Defender ATP and gives the ability to set a list of indicators for prevention, detection, and exclusion of entities. One can define the action to be taken as well as the duration for when to apply the action.
 
-The above scenarios serve as examples of the extensibility of the platform. You are not limited to these and we certainly encourage you leverage the open framework to discover and explore other scenarios.
+The above scenarios serve as examples of the extensibility of the platform. You are not limited to the examples and we certainly encourage you to leverage the open framework to discover and explore other scenarios.
 
 Follow the steps in [Become a Microsoft Defender ATP partner](get-started-partner-integration.md) to integrate your solution in Microsoft Defender ATP.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md b/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
index c0279badc8..fe2d128e37 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/prepare-deployment.md
@@ -1,6 +1,6 @@
 ---
 title: Prepare Microsoft Defender ATP deployment
-description: Prepare stakeholder sign-off, timelines, environment considerations, and adoption order when deploying Microsoft Defender ATP
+description: Prepare stakeholder approval, timelines, environment considerations, and adoption order when deploying Microsoft Defender ATP
 keywords: deploy, prepare, stakeholder, timeline, environment, endpoint, server, management, adoption
 search.product: eADQiWindows 10XVcnh
 search.appverid: met150
@@ -71,14 +71,14 @@ You are currently in the preparation phase.
 Preparation is key to any successful deployment. In this article, you'll be guided on the points you'll need to consider as you prepare to deploy Microsoft Defender ATP.
 
 
-## Stakeholders and Sign-off
+## Stakeholders and approval
 The following section serves to identify all the stakeholders that are involved
-in the project and need to sign-off, review, or stay informed.
+in the project and need to approve, review, or stay informed.
 
 Add stakeholders
 to the table below as appropriate for your organization.
 
--   SO = Sign-off on this project
+-   SO = Approve project
 
 -   R = Review this project and provide input
 
@@ -90,14 +90,14 @@ to the table below as appropriate for your organization.
 | Enter name and email | **Head of Cyber Defense Operations Center (CDOC)** *A representative from the CDOC team in charge of defining how this change is aligned with the processes in the customers security operations team.*       | SO     |
 | Enter name and email | **Security Architect** *A representative from the Security team in charge of defining how this change is aligned with the core Security architecture in the organization.*                         | R      |
 | Enter name and email | **Workplace Architect** *A representative from the IT team in charge of defining how this change is aligned with the core workplace architecture in the organization.*                             | R      |
-| Enter name and email | **Security Analyst** *A representative from the CDOC team who can provide input on the detection capabilities, user experience and overall usefulness of this change from a security operations perspective.* | I      |
+| Enter name and email | **Security Analyst** *A representative from the CDOC team who can provide input on the detection capabilities, user experience, and overall usefulness of this change from a security operations perspective.* | I      |
 
 
 ## Environment 
 
 
 This section is used to ensure your environment is deeply understood by the
-stakeholders which will help identify potential dependencies and/or changes
+stakeholders, which will help identify potential dependencies and/or changes
 required in technologies or processes.
 
 | What                                  | Description |
@@ -112,14 +112,14 @@ required in technologies or processes.
 ## Role-based access control
 
 Microsoft recommends using the concept of least privileges. Microsoft Defender
-ATP leverages built-in roles within Azure Active Directory. Microsoft recommend
+ATP leverages built-in roles within Azure Active Directory. Microsoft recommends
 [review the different roles that are
 available](https://docs.microsoft.com/azure/active-directory/active-directory-assign-admin-roles-azure-portal)
 and choose the right one to solve your needs for each persona for this
 application. Some roles may need to be applied temporarily and removed after the
 deployment has been completed.
 
-| Personas                     | Roles | Azure AD Role (if required) | Assign to |
+| Personas                     | Roles | Azure AD Role (if necessary) | Assign to |
 |------------------------------|-------|-----------------------------|-----------|
 | Security Administrator       |       |                             |           |
 | Security Analyst             |       |                             |           |
@@ -157,13 +157,13 @@ structure required for your environment.
 |--------|-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|---------------------|
 | Tier 1 | **Local security operations team / IT team**<br>This team usually triages and investigates alerts contained within their geolocation and escalates to Tier 2 in cases where an active remediation is required.                                              |                     |
 | Tier 2 | **Regional security operations team**<br>This team can see all the devices for their region and perform remediation actions.                                                                                                                        |        View data               |
-| Tier 3 | **Global security operations team**<br>This team consists of security experts and are authorized to see and perform all actions from the portal. | View data <br>  Alerts investigation Active remediation actions <br> Alerts investigation Active remediation actions <br> Manage portal system settings <br> Manage security settings |
+| Tier 3 | **Global security operations team**<br>This team consists of security experts and is authorized to see and perform all actions from the portal. | View data <br>  Alerts investigation Active remediation actions <br> Alerts investigation Active remediation actions <br> Manage portal system settings <br> Manage security settings |
 
 
 
 ## Adoption Order
 In many cases, organizations will have existing endpoint security products in
-place. The bare minimum every organization should have is an antivirus solution. But in some cases, an organization might also have implanted an EDR solution already.
+place. The bare minimum every organization should have been an antivirus solution. But in some cases, an organization might also have implanted an EDR solution already.
 
 Historically, replacing any security solution used to be time intensive and difficult
 to achieve due to the tight hooks into the application layer and infrastructure
@@ -179,7 +179,7 @@ how the endpoint security suite should be enabled.
 | Endpoint Detection & Response (EDR)     | Microsoft Defender ATP endpoint detection and response capabilities provide advanced attack detections that are near real-time and actionable. Security analysts can prioritize alerts effectively, gain visibility into the full scope of a breach, and take response actions to remediate threats. <br> [Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-endpoint-detection-response)                                                                                                                                                                                                                                             | 1                   |
 |Threat & Vulnerability Management (TVM)|Threat & Vulnerability Management is a component of Microsoft Defender ATP, and provides both security administrators and security operations teams with unique value, including: <br> - Real-time endpoint detection and response (EDR) insights correlated with endpoint vulnerabilities <br> - Invaluable device vulnerability context during incident investigations <br> -  Built-in remediation processes through Microsoft Intune and Microsoft System Center Configuration Manager <br> [Learn more](https://techcommunity.microsoft.com/t5/Windows-Defender-ATP/Introducing-a-risk-based-approach-to-threat-and-vulnerability/ba-p/377845).| 2 |
 | Next-generation protection (NGP)        | Microsoft Defender Antivirus is a built-in antimalware solution that provides next-generation protection for desktops, portable computers, and servers. Microsoft Defender Antivirus includes: <br> -Cloud-delivered protection for near-instant detection and blocking of new and emerging threats. Along with machine learning and the Intelligent Security Graph, cloud-delivered protection is part of the next-gen technologies that power Microsoft Defender Antivirus.   <br> -  Always-on scanning using advanced file and process behavior monitoring and other heuristics (also known as "real-time protection"). <br> - Dedicated protection updates based on machine-learning, human and automated big-data analysis, and in-depth threat resistance research. <br> [Learn more](https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-antivirus/microsoft-defender-antivirus-in-windows-10).                                                                                                                                                                                                                                                                                                                                                                       |3                   |
-| Attack Surface Reduction (ASR)          | Attack surface reduction capabilities in Microsoft Defender ATP helps protect the devices and applications in the organization from new and emerging threats. <br> [Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-attack-surface-reduction)                                                                                                                                                                                                                                                                                                                                                                                       | 4                   |
+| Attack Surface Reduction (ASR)          | Attack surface reduction capabilities in Microsoft Defender ATP help protect the devices and applications in the organization from new and emerging threats. <br> [Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/overview-attack-surface-reduction)                                                                                                                                                                                                                                                                                                                                                                                       | 4                   |
 | Auto Investigation & Remediation (AIR)  | Microsoft Defender ATP uses Automated investigations to significantly reduce the volume of alerts that need to be investigated individually. The Automated investigation feature leverages various inspection algorithms, and processes used by analysts (such as playbooks) to examine alerts and take immediate remediation action to resolve breaches. This significantly reduces alert volume, allowing security operations experts to focus on more sophisticated threats and other high value initiatives. <br>[Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/automated-investigations-windows-defender-advanced-threat-protection) | Not applicable      |
 | Microsoft Threat Experts (MTE)          | Microsoft Threat Experts is a managed hunting service that provides Security Operation Centers (SOCs) with expert level monitoring and analysis to help them ensure that critical threats in their unique environments don't get missed. <br>[Learn more.](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-atp/microsoft-threat-experts)                                                                                                                                                                                                                                                                                                                     | Not applicable      |
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
index c95d5dc155..dfb227ec23 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-powershell.md
@@ -1,5 +1,5 @@
 ---
-title: Advanced Hunting with Powershell API Basics
+title: Advanced Hunting with PowerShell API Basics
 ms.reviewer: 
 description: Learn the basics of querying the Microsoft Defender Advanced Threat Protection API, using PowerShell.
 keywords: apis, supported apis, advanced hunting, query
@@ -27,7 +27,7 @@ ms.topic: article
 
 Run advanced queries using PowerShell, see [Advanced Hunting API](run-advanced-query-api.md).
 
-In this section we share PowerShell samples to retrieve a token and use it to run a query.
+In this section, we share PowerShell samples to retrieve a token and use it to run a query.
 
 ## Before you begin
 You first need to [create an app](apis-intro.md).
@@ -40,7 +40,7 @@ You first need to [create an app](apis-intro.md).
   Set-ExecutionPolicy -ExecutionPolicy Bypass
   ```
 
->For more details, see [PowerShell documentation](https://docs.microsoft.com/powershell/module/microsoft.powershell.security/set-executionpolicy)
+>For more information, see [PowerShell documentation](https://docs.microsoft.com/powershell/module/microsoft.powershell.security/set-executionpolicy)
 
 ## Get token
 
@@ -64,9 +64,9 @@ $aadToken = $response.access_token
 ```
 
 where
-- $tenantId: ID of the tenant on behalf of which you want to run the query (i.e., the query will be run on the data of this tenant)
-- $appId: ID of your AAD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
-- $appSecret: Secret of your AAD app
+- $tenantId: ID of the tenant on behalf of which you want to run the query (that is, the query will be run on the data of this tenant)
+- $appId: ID of your Azure AD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
+- $appSecret: Secret of your Azure AD app
 
 ## Run query
 
@@ -88,7 +88,7 @@ $results = $response.Results
 $schema = $response.Schema
 ```
 
-- $results contains the results of your query
+- $results contain the results of your query
 - $schema contains the schema of the results of your query
 
 ### Complex queries
diff --git a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
index ad9c61aa16..55f4d1ec1b 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/run-advanced-query-sample-python.md
@@ -28,13 +28,13 @@ ms.topic: article
 
 Run advanced queries using Python, see [Advanced Hunting API](run-advanced-query-api.md).
 
-In this section we share Python samples to retrieve a token and use it to run a query.
+In this section, we share Python samples to retrieve a token and use it to run a query.
 
 >**Prerequisite**: You first need to [create an app](apis-intro.md).
 
 ## Get token
 
-- Run the following:
+- Run the following commands:
 
 ```
 
@@ -67,9 +67,9 @@ aadToken = jsonResponse["access_token"]
 ```
 
 where
-- tenantId: ID of the tenant on behalf of which you want to run the query (i.e., the query will be run on the data of this tenant)
-- appId: ID of your AAD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
-- appSecret: Secret of your AAD app
+- tenantId: ID of the tenant on behalf of which you want to run the query (that is, the query will be run on the data of this tenant)
+- appId: ID of your Azure AD app (the app must have 'Run advanced queries' permission to Microsoft Defender ATP)
+- appSecret: Secret of your Azure AD app
 
 ## Run query
 
@@ -96,7 +96,7 @@ results = jsonResponse["Results"]
 ```
 
 - schema contains the schema of the results of your query
-- results contains the results of your query
+- results contain the results of your query
 
 ### Complex queries
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/service-status.md b/windows/security/threat-protection/microsoft-defender-atp/service-status.md
index b95ecdb603..1373591e5d 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/service-status.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/service-status.md
@@ -29,7 +29,7 @@ ms.topic: article
 
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-servicestatus-abovefoldlink)
 
-The **Service health** provides information on the current status of the Microsoft Defender ATP service. You'll be able to verify that the service health is healthy or if there are current issues. If there are issues, you'll see details related to the issue such as when the issue was detected, what the preliminary root cause is, and the expected resolution time.
+**Service health** provides information on the current status of the Microsoft Defender ATP service. You'll be able to verify that the service health is healthy or if there are current issues. If there are issues, you'll see information such as when the issue was detected, what the preliminary root cause is, and the expected resolution time.
 
 You'll also see information on historical issues that have been resolved and details such as the date and time when the issue was resolved. When there are no issues on the service, you'll see a healthy status.
 
@@ -51,7 +51,7 @@ The **Current status** tab shows the current state of the Microsoft Defender ATP
 - Next steps
 - Expected resolution time
 
-Updates on the progress of an issue is reflected on the page as the issue gets resolved. You'll see updates on information such as an updated estimate resolution time or next steps.
+Updates on the progress of an issue are reflected on the page as the issue gets resolved. You'll see updates on information such as an updated estimate resolution time or next steps.
 
 When an issue is resolved, it gets recorded in the **Status history** tab.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md
index e6ed78f7f8..2305bcbf00 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-live-response.md
@@ -57,11 +57,11 @@ If while trying to take an action during a live response session, you encounter
 
 ## Slow live response sessions or delays during initial connections
 Live response leverages Microsoft Defender ATP sensor registration with WNS service in Windows. 
-If you are having connectivity issues with live response, please confirm the following:
-1. `notify.windows.com` is not blocked in your environment. For more information see, [Configure device proxy and Internet connectivity settings](configure-proxy-internet.md#enable-access-to-microsoft-defender-atp-service-urls-in-the-proxy-server).
+If you are having connectivity issues with live response, confirm the following details:
+1. `notify.windows.com` is not blocked in your environment. For more information, see, [Configure device proxy and Internet connectivity settings](configure-proxy-internet.md#enable-access-to-microsoft-defender-atp-service-urls-in-the-proxy-server).
 2. WpnService (Windows Push Notifications System Service) is not disabled.
 
-Please refer to the articles below to fully understand the WpnService service behavior and requirements:
+Refer to the articles below to fully understand the WpnService service behavior and requirements:
 - [Windows Push Notification Services (WNS) overview](https://docs.microsoft.com/windows/uwp/design/shell/tiles-and-notifications/windows-push-notification-services--wns--overview)
 - [Enterprise Firewall and Proxy Configurations to Support WNS Traffic](https://docs.microsoft.com/windows/uwp/design/shell/tiles-and-notifications/firewall-allowlist-config)
 - [Microsoft Push Notifications Service (MPNS) Public IP ranges](https://www.microsoft.com/en-us/download/details.aspx?id=44535)
diff --git a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
index 16f93645cd..73945ccbcd 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/troubleshoot-onboarding-error-messages.md
@@ -36,15 +36,15 @@ If you receive an error message, Microsoft Defender Security Center will provide
 
 ## No subscriptions found
 
-If while accessing Microsoft Defender Security Center you get a **No subscriptions found** message, it means the Azure Active Directory (AAD) used to login the user to the portal, does not have a Microsoft Defender ATP license.
+If while accessing Microsoft Defender Security Center you get a **No subscriptions found** message, it means the Azure Active Directory (Azure AD) used to log in the user to the portal, does not have a Microsoft Defender ATP license.
 
 Potential reasons:
 - The Windows E5 and Office E5 licenses are separate licenses.
-- The license was purchased but not provisioned to this AAD instance.
+- The license was purchased but not provisioned to this Azure AD instance.
     - It could be a license provisioning issue.
-    - It could be you inadvertently provisioned the license to a different Microsoft AAD than the one used for authentication into the service.
+    - It could be you inadvertently provisioned the license to a different Microsoft Azure AD than the one used for authentication into the service.
 
-For both cases you should contact Microsoft support at [General Microsoft Defender ATP Support](https://support.microsoft.com/getsupport?wf=0&tenant=ClassicCommercial&oaspworkflow=start_1.0.0.0&locale=en-us&supportregion=en-us&pesid=16055&ccsid=636419533611396913) or
+For both cases, you should contact Microsoft support at [General Microsoft Defender ATP Support](https://support.microsoft.com/getsupport?wf=0&tenant=ClassicCommercial&oaspworkflow=start_1.0.0.0&locale=en-us&supportregion=en-us&pesid=16055&ccsid=636419533611396913) or
 [Volume license support](https://www.microsoft.com/licensing/servicecenter/Help/Contact.aspx).
 
 ![Image of no subscriptions found](images/atp-no-subscriptions-found.png)
@@ -63,16 +63,16 @@ You can choose to renew or extend the license at any point in time. When accessi
 ## You are not authorized to access the portal
 
 If you receive a **You are not authorized to access the portal**, be aware that Microsoft Defender ATP is a security monitoring, incident investigation and response product, and as such, access to it is restricted and controlled by the user.
-For more information see, [**Assign user access to the portal**](https://docs.microsoft.com/windows/threat-protection/windows-defender-atp/assign-portal-access-windows-defender-advanced-threat-protection).
+For more information, see, [**Assign user access to the portal**](https://docs.microsoft.com/windows/threat-protection/windows-defender-atp/assign-portal-access-windows-defender-advanced-threat-protection).
 
 ![Image of not authorized to access portal](images/atp-not-authorized-to-access-portal.png)
 
 ## Data currently isn't available on some sections of the portal
-If the portal dashboard, and other sections show an error message such as "Data currently isn't available":
+If the portal dashboard and other sections show an error message such as "Data currently isn't available":
 
 ![Image of data currently isn't available](images/atp-data-not-available.png)
 
-You'll need to allow the `securitycenter.windows.com` and all sub-domains under it. For example `*.securitycenter.windows.com`.
+You'll need to allow the `securitycenter.windows.com` and all subdomains under it. For example, `*.securitycenter.windows.com`.
 
 
 ## Portal communication issues
diff --git a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
index 386550279a..56d43dafc5 100644
--- a/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
+++ b/windows/security/threat-protection/microsoft-defender-smartscreen/microsoft-defender-smartscreen-overview.md
@@ -39,15 +39,15 @@ Microsoft Defender SmartScreen protects against phishing or malware websites and
 
 ## Benefits of Microsoft Defender SmartScreen
 
-Microsoft Defender SmartScreen provide an early warning system against websites that might engage in phishing attacks or attempt to distribute malware through a socially-engineered attack. The primary benefits are:
+Microsoft Defender SmartScreen provide an early warning system against websites that might engage in phishing attacks or attempt to distribute malware through a socially engineered attack. The primary benefits are:
 
 - **Anti-phishing and anti-malware support.** Microsoft Defender SmartScreen helps to protect users from sites that are reported to host phishing attacks or attempt to distribute malicious software. It can also help protect against deceptive advertisements, scam sites, and drive-by attacks. Drive-by attacks are web-based attacks that tend to start on a trusted site, targeting security vulnerabilities in commonly used software. Because drive-by attacks can happen even if the user does not click or download anything on the page, the danger often goes unnoticed. For more info about drive-by attacks, see [Evolving Microsoft Defender SmartScreen to protect you from drive-by attacks](https://blogs.windows.com/msedgedev/2015/12/16/SmartScreen-drive-by-improvements/#3B7Bb8bzeAPq8hXE.97)
 
 - **Reputation-based URL and app protection.** Microsoft Defender SmartScreen evaluates a website's URLs to determine if they're known to distribute or host unsafe content. It also provides reputation checks for apps, checking downloaded programs and the digital signature used to sign a file. If a URL, a file, an app, or a certificate has an established reputation, users won't see any warnings. If, however, there's no reputation, the item is marked as a higher risk and presents a warning to the user.
 
-- **Operating system integration.** Microsoft Defender SmartScreen is integrated into the Windows 10 operating system, meaning that it checks any files an app (including 3rd-party browsers and email clients) attempts to download and run.
+- **Operating system integration.** Microsoft Defender SmartScreen is integrated into the Windows 10 operating system. It checks any files an app (including 3rd-party browsers and email clients) attempts to download and run.
 
-- **Improved heuristics and diagnostic data.** Microsoft Defender SmartScreen is constantly learning and endeavoring to stay up-to-date, so it can help to protect you against potentially malicious sites and files.
+- **Improved heuristics and diagnostic data.** Microsoft Defender SmartScreen is constantly learning and endeavoring to stay up to date, so it can help to protect you against potentially malicious sites and files.
 
 - **Management through Group Policy and Microsoft Intune.** Microsoft Defender SmartScreen supports using both Group Policy and Microsoft Intune settings. For more info about all available settings, see [Available Microsoft Defender SmartScreen Group Policy and mobile device management (MDM) settings](microsoft-defender-smartscreen-available-settings.md).
 
@@ -60,7 +60,7 @@ Microsoft Defender SmartScreen provide an early warning system against websites
 
 If you believe a warning or block was incorrectly shown for a file or application, or if you believe an undetected file is malware, you can [submit a file](https://www.microsoft.com/wdsi/filesubmission/) to Microsoft for review. For more info, see [Submit files for analysis](https://docs.microsoft.com/windows/security/threat-protection/intelligence/submission-guide). 
 
-When submitting Microsoft Defender Smartscreen products, make sure to select **Microsoft Defender SmartScreen** from the product menu.
+When submitting Microsoft Defender SmartScreen products, make sure to select **Microsoft Defender SmartScreen** from the product menu.
 
 ![Windows Security, Microsoft Defender SmartScreen controls](images/Microsoft-defender-smartscreen-submission.png)
 
@@ -72,7 +72,7 @@ When submitting Microsoft Defender Smartscreen products, make sure to select **M
 When Microsoft Defender SmartScreen warns or blocks a user from a website, it's logged as [Event 1035 - Anti-Phishing](https://technet.microsoft.com/scriptcenter/dd565657(v=msdn.10).aspx).
 
 ## Viewing Windows event logs for Microsoft Defender SmartScreen
-Microsoft Defender SmartScreen events appear in the Microsoft-Windows-SmartScreen/Debug log in Event Viewer.
+Microsoft Defender SmartScreen events appear in the Microsoft-Windows-SmartScreen/Debug login Event Viewer.
 
 Windows event log for SmartScreen is disabled by default, users can use Event Viewer UI to enable the log or use the command line to enable it:
 

From c28ac2bf0bf295e1501068b0f319a052e96fd177 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 2 Nov 2020 16:59:48 -0800
Subject: [PATCH 42/44] Update
 use-applocker-and-software-restriction-policies-in-the-same-domain.md

---
 ...software-restriction-policies-in-the-same-domain.md | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md b/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md
index 828934ca43..4e49ccf26f 100644
--- a/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md
+++ b/windows/security/threat-protection/windows-defender-application-control/applocker/use-applocker-and-software-restriction-policies-in-the-same-domain.md
@@ -69,7 +69,7 @@ The following table compares the features and functions of Software Restriction
 </tr>
 <tr class="odd">
 <td align="left"><p>Enforcement mode</p></td>
-<td align="left"><p>SRP works in the “deny list mode” where administrators can create rules for files that they do not want to allow in this Enterprise whereas the rest of the file are allowed to run by default.</p>
+<td align="left"><p>SRP works in the “deny list mode” where administrators can create rules for files that they do not want to allow in this Enterprise whereas the rest of the file is allowed to run by default.</p>
 <p>SRP can also be configured in the “allow list mode” so that by default all files are blocked and administrators need to create allow rules for files that they want to allow.</p></td>
 <td align="left"><p>AppLocker by default works in the “allow list mode” where only those files are allowed to run for which there is a matching allow rule.</p></td>
 </tr>
@@ -146,12 +146,12 @@ The following table compares the features and functions of Software Restriction
 <tr class="odd">
 <td align="left"><p>Support for rule exceptions</p></td>
 <td align="left"><p>SRP does not support rule exceptions.</p></td>
-<td align="left"><p>AppLocker rules can have exceptions which allow you to create rules such as “Allow everything from Windows except for regedit.exe”.</p></td>
+<td align="left"><p>AppLocker rules can have exceptions, which allow you to create rules such as “Allow everything from Windows except for regedit.exe”.</p></td>
 </tr>
 <tr class="even">
 <td align="left"><p>Support for audit mode</p></td>
 <td align="left"><p>SRP does not support audit mode. The only way to test SRP policies is to set up a test environment and run a few experiments.</p></td>
-<td align="left"><p>AppLocker supports audit mode which allows you to test the effect of their policy in the real production environment without impacting the user experience. Once you are satisfied with the results, you can start enforcing the policy.</p></td>
+<td align="left"><p>AppLocker supports audit mode, which allows you to test the effect of their policy in the real production environment without impacting the user experience. Once you are satisfied with the results, you can start enforcing the policy.</p></td>
 </tr>
 <tr class="odd">
 <td align="left"><p>Support for exporting and importing policies</p></td>
@@ -160,8 +160,8 @@ The following table compares the features and functions of Software Restriction
 </tr>
 <tr class="even">
 <td align="left"><p>Rule enforcement</p></td>
-<td align="left"><p>Internally, SRP rules enforcement happens in the user-mode which is less secure.</p></td>
-<td align="left"><p>Internally, AppLocker rules for .exe and .dll files are enforced in the kernel-mode which is more secure than enforcing them in the user-mode.</p></td>
+<td align="left"><p>Internally, SRP rules enforcement happens in the user-mode, which is less secure.</p></td>
+<td align="left"><p>Internally, AppLocker rules for .exe and .dll files are enforced in the kernel-mode, which is more secure than enforcing them in the user-mode.</p></td>
 </tr>
 </tbody>
 </table>

From 3d4b6d88fdfeadfda1cd644a407fcf0fd1d2b10a Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 2 Nov 2020 17:56:17 -0800
Subject: [PATCH 43/44] acrolinx updates

---
 windows/security/threat-protection/TOC.md     |  2 +-
 .../intelligence/developer-info.md            | 29 -------------------
 .../virus-information-alliance-criteria.md    | 28 +++++++++++-------
 .../intelligence/virus-initiative-criteria.md | 14 ++++-----
 .../intelligence/worms-malware.md             | 10 +++----
 .../web-protection-monitoring.md              | 29 ++++++++++---------
 6 files changed, 47 insertions(+), 65 deletions(-)
 delete mode 100644 windows/security/threat-protection/intelligence/developer-info.md

diff --git a/windows/security/threat-protection/TOC.md b/windows/security/threat-protection/TOC.md
index 7cb35259d5..c2913b23a2 100644
--- a/windows/security/threat-protection/TOC.md
+++ b/windows/security/threat-protection/TOC.md
@@ -753,7 +753,7 @@
 #### [Virus information alliance](intelligence/virus-information-alliance-criteria.md)
 #### [Microsoft virus initiative](intelligence/virus-initiative-criteria.md)
 #### [Coordinated malware eradication](intelligence/coordinated-malware-eradication.md)
-### [Information for developers](intelligence/developer-info.md)
+### [Information for developers]()
 #### [Software developer FAQ](intelligence/developer-faq.md)
 #### [Software developer resources](intelligence/developer-resources.md)
 
diff --git a/windows/security/threat-protection/intelligence/developer-info.md b/windows/security/threat-protection/intelligence/developer-info.md
deleted file mode 100644
index eb0ac99896..0000000000
--- a/windows/security/threat-protection/intelligence/developer-info.md
+++ /dev/null
@@ -1,29 +0,0 @@
----
-title: Information for developers
-ms.reviewer: 
-description: This page provides answers to common questions we receive from software developers and other useful resources
-keywords: software, developer, faq, dispute, false-positive, classify, installer, software, bundler, blocking
-search.product: eADQiWindows 10XVcnh
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-ms.author: ellevin
-author: levinec
-ms.localizationpriority: medium
-manager: dansimp
-audience: ITPro
-ms.collection: M365-security-compliance  
-ms.topic: article
----
-
-# Information for developers
-
-Learn about the common questions we receive from software developers and get other developer resources such as detection criteria and file submissions.
-
-## In this section
-
-Topic | Description
-:---|:---
-[Software developer FAQ](developer-faq.md) | Provides answers to common questions we receive from software developers.
-[Developer resources](developer-resources.md) | Provides information about how to submit files and the detection criteria. Learn how to check your software against the latest security intelligence and cloud protection from Microsoft.
diff --git a/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md b/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md
index 5aded1e416..fa58868aa8 100644
--- a/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md
+++ b/windows/security/threat-protection/intelligence/virus-information-alliance-criteria.md
@@ -18,21 +18,28 @@ ms.topic: article
 
 The Virus Information Alliance (VIA) is a public antimalware collaboration program for security software providers, security service providers, antimalware testing organizations, and other organizations involved in fighting cybercrime.
 
-Members of the VIA program collaborate by exchanging technical information on malicious software with Microsoft, with the goal of improving protection for Microsoft customers.
+Members of the VIA program collaborate by exchanging technical information on malicious software with Microsoft. The goal is to improve protection for Microsoft customers.
 
 ## Better protection for customers against malware
 
-The VIA program gives members access to information that will help improve protection for Microsoft customers. For example, the program provides malware telemetry and samples to security product teams to identify gaps in their protection and prioritize new threat coverage.
+The VIA program gives members access to information that will help them improve protection. For example, the program provides malware telemetry and samples to security teams so they can identify gaps and prioritize new threat coverage.
 
-Malware prevalence data is provided to antimalware testers to assist them in selecting sample sets and setting scoring criteria that represent the real-world threat landscape. Service organizations, such as a CERT, can leverage our data to help assess the impact of policy changes or to help shut down malicious activity.
+Malware prevalence data is provided to antimalware testers to assist them in selecting sample sets. The data also helps set scoring criteria that represent the real-world threat landscape. Service organizations, such as a CERT, can leverage our data to help assess the impact of policy changes or to help shut down malicious activity.
 
 Microsoft is committed to continuous improvement to help reduce the impact of malware on customers. By sharing malware-related information, Microsoft enables members of this community to work towards better protection for customers.
 
 ## Becoming a member of VIA
 
-Microsoft has well-defined, objective, measurable, and tailored membership criteria for prospective members of the Virus Information Alliance (VIA). The criteria is designed to ensure that Microsoft is able to work with security software providers, security service providers, antimalware testing organizations, and other organizations involved in the fight against cybercrime to protect a broad range of customers.
+Microsoft has well-defined, objective, measurable, and tailored membership criteria for prospective members of the Virus Information Alliance (VIA).
 
-Members will receive information to facilitate effective malware detection, deterrence, and eradication. This includes technical information on malware as well as metadata on malicious activity. Information shared through VIA is governed by the VIA membership agreement and a Microsoft non-disclosure agreement, where applicable.
+The criteria is designed to ensure that Microsoft can work with the following groups to protect a broad range of customers:
+
+- Security software providers
+- Security service providers
+- Antimalware testing organizations
+- Other organizations involved in the fight against cybercrime
+
+Members will receive information to facilitate effective malware detection, deterrence, and eradication. This information includes technical information on malware as well as metadata on malicious activity. Information shared through VIA is governed by the VIA membership agreement and a Microsoft non-disclosure agreement, where applicable.
 
 VIA has an open enrollment for potential members.
 
@@ -43,11 +50,12 @@ To be eligible for VIA your organization must:
 1. Be willing to sign a non-disclosure agreement with Microsoft.
 
 2. Fit into one of the following categories:
-   * Your organization develops antimalware technology that can run on Windows and your organization’s product is commercially available.
-   * Your organization provides security services to Microsoft customers or for Microsoft products.
-   * Your organization publishes antimalware testing reports on a regular basis.
-   * Your organization has a research or response team dedicated to fighting malware to protect your organization, your customers, or the general public.
+
+    - Your organization develops antimalware technology that can run on Windows and your organization’s product is commercially available.
+    - Your organization provides security services to Microsoft customers or for Microsoft products.
+    - Your organization publishes antimalware testing reports on a regular basis.
+    - Your organization has a research or response team dedicated to fighting malware to protect your organization, your customers, or the general public.
 
 3. Be willing to sign and adhere to the VIA membership agreement.
 
-If your organization meets these criteria and is interested in joining, [apply for membership now](https://www.microsoft.com/wdsi/alliances/apply-alliance-membership). If you have questions, [contact us for more information](https://www.microsoft.com/wdsi/alliances/collaboration-inquiry).
+If your organization meets these criteria and is interested in joining, [apply for membership now](https://www.microsoft.com/wdsi/alliances/apply-alliance-membership). For questions, [contact us for more information](https://www.microsoft.com/wdsi/alliances/collaboration-inquiry).
diff --git a/windows/security/threat-protection/intelligence/virus-initiative-criteria.md b/windows/security/threat-protection/intelligence/virus-initiative-criteria.md
index a896140ce6..5f8f3c8139 100644
--- a/windows/security/threat-protection/intelligence/virus-initiative-criteria.md
+++ b/windows/security/threat-protection/intelligence/virus-initiative-criteria.md
@@ -19,13 +19,13 @@ ms.topic: article
 
 The Microsoft Virus Initiative (MVI) helps organizations to get their products working and integrated with Windows.
 
-MVI members receive access to Windows APIs and other technologies including IOAV, AMSI and Cloud files. Members also get malware telemetry and samples and invitations to security related events and conferences.
+MVI members receive access to Windows APIs and other technologies including IOAV, AMSI, and Cloud files. Members also get malware telemetry and samples and invitations to security-related events and conferences.
 
 ## Become a member
 
-A request for membership is made by an individual as a representative of an organization that develops and produces antimalware or antivirus technology. Your organization must meet the following eligibility requirements to qualify for the MVI program:
+You can request membership if you're a representative for an organization that develops and produces antimalware or antivirus technology. Your organization must meet the following requirements to qualify for the MVI program:
 
-1. Offer an antimalware or antivirus product that is one of the following:
+1. Offer an antimalware or antivirus product that meets one of the following criteria:
 
    * Your organization's own creation.
    * Developed by using an SDK (engine and other components) from another MVI Partner company and your organization adds a custom UI and/or other functionality.
@@ -34,7 +34,7 @@ A request for membership is made by an individual as a representative of an orga
 
 3. Be active and have a positive reputation in the antimalware industry.
 
-   * Activity can include participation in industry conferences or being reviewed in an industry standard report such as AV Comparatives, OPSWAT or Gartner.
+   * Activity can include participation in industry conferences or being reviewed in an industry standard report such as AV Comparatives, OPSWAT, or Gartner.
 
 4. Be willing to sign a non-disclosure agreement (NDA) with Microsoft.
 
@@ -49,14 +49,14 @@ A request for membership is made by an individual as a representative of an orga
 Test Provider | Lab Test Type |	Minimum Level / Score
 ------------- |---------------|----------------------
 AV-Comparatives | Real-World Protection Test </br> https://www.av-comparatives.org/testmethod/real-world-protection-tests/ |“Approved” rating from AV Comparatives
-AV-Test | Must pass tests for Windows. Certifications for Mac and Linux are not accepted </br> https://www.av-test.org/en/about-the-institute/certification/ | Achieve "AV-TEST Certified" (for home users) or "AV-TEST Approved” (for corporate users)
+AV-Test | Must pass tests for Windows. Certifications for Mac and Linux aren't accepted </br> https://www.av-test.org/en/about-the-institute/certification/ | Achieve "AV-TEST Certified" (for home users) or "AV-TEST Approved” (for corporate users)
 ICSA Labs |	Endpoint Anti-Malware Detection </br> https://www.icsalabs.com/technology-program/anti-virus/criteria |PASS/Certified
 NSS Labs | Advanced Endpoint Protection AEP 3.0, which covers automatic threat prevention and threat event reporting capabilities </br> https://www.nsslabs.com/tested-technologies/advanced-endpoint-protection/ |“Neutral” rating from NSS
-SKD Labs | Certification Requirements Product: Anti-virus or Antimalware </br> http://www.skdlabs.com/html/english/ </br> http://www.skdlabs.com/cert/ |SKD Labs Star Check Certification Requirements Pass >= 98.5 % with On Demand, On Access and Total Detection tests 
+SKD Labs | Certification Requirements Product: Anti-virus or Antimalware </br> http://www.skdlabs.com/html/english/ </br> http://www.skdlabs.com/cert/ |SKD Labs Star Check Certification Requirements Pass >= 98.5% with On Demand, On Access and Total Detection tests 
 SE Labs | Protection A rating or Small Business EP A rating or Enterprise EP Protection A rating </br> https://selabs.uk/en/reports/consumers |Home or Enterprise “A” rating
 VB 100 |	VB100 Certification Test V1.1 </br> https://www.virusbulletin.com/testing/vb100/vb100-methodology/vb100-methodology-ver1-1/ | VB100 Certification
 West Coast Labs |	Checkmark Certified </br> http://www.checkmarkcertified.com/sme/  | “A” Rating on Product Security Performance
 
 ## Apply now
 
-If your organization meets these criteria and is interested in joining, [apply for membership now](https://www.microsoft.com/wdsi/alliances/apply-alliance-membership). If you have questions, [contact us for more information](https://www.microsoft.com/wdsi/alliances/collaboration-inquiry).
+If your organization meets these criteria and is interested in joining, [apply for membership now](https://www.microsoft.com/wdsi/alliances/apply-alliance-membership). For questions, [contact us for more information](https://www.microsoft.com/wdsi/alliances/collaboration-inquiry).
diff --git a/windows/security/threat-protection/intelligence/worms-malware.md b/windows/security/threat-protection/intelligence/worms-malware.md
index 04c8f8280f..ca62c08fd9 100644
--- a/windows/security/threat-protection/intelligence/worms-malware.md
+++ b/windows/security/threat-protection/intelligence/worms-malware.md
@@ -22,19 +22,19 @@ A worm is a type of malware that can copy itself and often spreads through a net
 
 ## How worms work
 
-Worms represent a large category of malware. Different worms use different methods to infect devices.  Depending on the variant, they can steal sensitive information, change security settings, send information to malicious hackers, stop users from accessing files, and other malicious activities.
+Worms represent a large category of malware. Different worms use different methods to infect devices. Depending on the variant, they can steal sensitive information, change security settings, send information to malicious hackers, stop users from accessing files, and other malicious activities.
 
-Jenxcus (also known as Dunihi), Gamarue (also known as Androm), and Bondat have consistently remained at the top of the list of malware that infect users running Microsoft security software. Although these worms share some commonalities, it is interesting to note that they also have distinct characteristics.
+Jenxcus (also known as Dunihi), Gamarue (also known as Androm), and Bondat have consistently remained at the top of the list of malware that infects users running Microsoft software. Although these worms share some commonalities, it's interesting to note that they also have distinct characteristics.
 
 * **Jenxcus** has capabilities of not only infecting removable drives but can also act as a backdoor that connects back to its server. This threat typically gets into a device from a drive-by download attack, meaning it's installed when users just visit a compromised web page.
 
-* **Gamarue** typically arrives through spam campaigns, exploits, downloaders, social networking sites, and removable drives. When Gamarue infects a device, it becomes a distribution channel for other malware. We’ve seen it distribute other malware such as infostealers, spammers, clickers, downloaders, and rogues.
+* **Gamarue** typically arrives through spam campaigns, exploits, downloaders, social networking sites, and removable drives. When Gamarue infects a device, it becomes a distribution channel for other malware. We’ve seen it distribute other malware such as info stealers, spammers, clickers, downloaders, and rogues.
 
 * **Bondat** typically arrives through fictitious Nullsoft Scriptable Install System (NSIS), Java installers, and removable drives. When Bondat infects a system, it gathers information about the machine such as device name, Globally Unique Identifier (GUID), and OS build. It then sends that information to a remote server.
 
-Both Bondat and Gamarue have clever ways of obscuring themselves to evade detection. By hiding what they are doing, they try to avoid detection by security software.
+Both Bondat and Gamarue have clever ways of obscuring themselves to evade detection. By hiding what they're doing, they try to avoid detection by security software.
 
-* [**WannaCrypt**](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=Ransom:Win32/WannaCrypt) also deserves a mention here. Unlike older worms that often spread just because they could, modern worms often spread to drop a payload (e.g. ransomware).
+* [**WannaCrypt**](https://www.microsoft.com/wdsi/threats/malware-encyclopedia-description?Name=Ransom:Win32/WannaCrypt) also deserves a mention here. Unlike older worms that often spread just because they could, modern worms often spread to drop a payload (like ransomware).
 
 This image shows how a worm can quickly spread through a shared USB drive.
 
diff --git a/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md b/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
index bcceac7999..071d86602f 100644
--- a/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
+++ b/windows/security/threat-protection/microsoft-defender-atp/web-protection-monitoring.md
@@ -21,16 +21,15 @@ ms.topic: article
 
 [!INCLUDE [Microsoft 365 Defender rebranding](../../includes/microsoft-defender.md)]
 
-
 >Want to experience Microsoft Defender ATP? [Sign up for a free trial.](https://www.microsoft.com/microsoft-365/windows/microsoft-defender-atp?ocid=docs-wdatp-main-abovefoldlink&rtc=1)
 
 Web protection lets you monitor your organization’s web browsing security through reports under **Reports > Web protection** in the Microsoft Defender Security Center. The report contains cards that provide web threat detection statistics.
 
-- **Web threat protection detections over time** — this trending card displays the number of web threats detected by type during the selected time period (Last 30 days, Last 3 months, Last 6 months)
+- **Web threat protection detections over time** - this trending card displays the number of web threats detected by type during the selected time period (Last 30 days, Last 3 months, Last 6 months)
  
     ![Image of the card showing web threats protection detections over time](images/wtp-blocks-over-time.png)
 
-- **Web threat protection summary** — this card displays the total web threat detections in the past 30 days, showing distribution across the different types of web threats. Selecting a slice opens the list of the domains that were found with malicious or unwanted websites.
+- **Web threat protection summary** - this card displays the total web threat detections in the past 30 days, showing distribution across the different types of web threats. Selecting a slice opens the list of the domains that were found with malicious or unwanted websites.
 
     ![Image of the card showing web threats protection summary](images/wtp-summary.png)
 
@@ -38,23 +37,27 @@ Web protection lets you monitor your organization’s web browsing security thro
 >It can take up to 12 hours before a block is reflected in the cards or the domain list.
 
 ## Types of web threats
+
 Web protection categorizes malicious and unwanted websites as:
-- **Phishing** — websites that contain spoofed web forms and other phishing mechanisms designed to trick users into divulging credentials and other sensitive information
-- **Malicious** — websites that host malware and exploit code
-- **Custom indicator** — websites whose URLs or domains you've added to your [custom indicator list](manage-indicators.md) for blocking
+
+- **Phishing** - websites that contain spoofed web forms and other phishing mechanisms designed to trick users into divulging credentials and other sensitive information
+- **Malicious** - websites that host malware and exploit code
+- **Custom indicator** - websites whose URLs or domains you've added to your [custom indicator list](manage-indicators.md) for blocking
 
 ## View the domain list
-Select a specific web threat category in the **Web threat protection summary** card to open the **Domains** page and display the list of the domains under that threat category. The page provides the following information for each domain:
 
-- **Access count** — number of requests for URLs in the domain
-- **Blocks** — number of times requests were blocked
-- **Access trend** — change in number of access attempts
-- **Threat category** — type of web threat
-- **Devices** — number of devices with access attempts
+Select a specific web threat category in the **Web threat protection summary** card to open the **Domains** page. This page displays the list of the domains under that threat category. The page provides the following information for each domain:
 
-Select a domain to view the list of devices that have attempted to access URLs in that domain as well as the list of URLs.
+- **Access count** - number of requests for URLs in the domain
+- **Blocks** - number of times requests were blocked
+- **Access trend** - change in number of access attempts
+- **Threat category** - type of web threat
+- **Devices** - number of devices with access attempts
+
+Select a domain to view the list of devices that have attempted to access URLs in that domain and the list of URLs.
 
 ## Related topics
+
 - [Web protection overview](web-protection-overview.md)
 - [Web content filtering](web-content-filtering.md)
 - [Web threat protection](web-threat-protection.md)

From 40c4692859753f354534805943c264910b8acabf Mon Sep 17 00:00:00 2001
From: Beth Levin <elizabeth.levin@microsoft.com>
Date: Mon, 2 Nov 2020 18:02:39 -0800
Subject: [PATCH 44/44] remove developer info

---
 windows/security/threat-protection/intelligence/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/security/threat-protection/intelligence/TOC.md b/windows/security/threat-protection/intelligence/TOC.md
index 18ea7845de..9919f7d8d2 100644
--- a/windows/security/threat-protection/intelligence/TOC.md
+++ b/windows/security/threat-protection/intelligence/TOC.md
@@ -48,7 +48,7 @@
 
 ### [Coordinated malware eradication](coordinated-malware-eradication.md)
 
-## [Information for developers](developer-info.md)
+## [Information for developers]()
 
 ### [Software developer FAQ](developer-faq.md)