As a security frame work, OCSF provides each application with checking of the integrity of the OCSF environment in which the application is running. OCSF requires all code including OCSF binaries and the invoking application to be program controlled. Non-program controlled binaries causes the environment to become "dirty" and the result will be failure of attaching OCSF Service Providers. In addition, Cryptographic Service Providers and Policy Modules have additional checks to verify their validity.