Storing a cryto key in .Net

M

Morten Brun

Hi

I am looking for some good suggestions to store a cryto key with my
new Asp.Net application using Triple Des to encrypt data. The database
is on SQL2000 server..

My first idea was to store the key within the program, but as programs
can be easily obfuscated this is probably a bad idea.

Any suggestion will be highly appreciated.

Morten
 
R

Ram Sunkara [msft]

Use DPAPI.



Make a command line executable that writes a DPAPI blob into your
application configuration file. Let your application decrypt the DPAPI blob
as when required to encrypt or decrypt.



Deploying your application will now include running this executable in all
the target machines.



Put this command line executable in share and give execute only permissions
to all the authorized users, explicitly deny coping this executable.



Ram-
 
M

Morten Brun

Hi Ram

Thanks your suggestion, which unfortunately does not fit my purpose,
however have found some good MSDN articles on DAPI so there might be a
solution in this.

Morten
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

storing data in a desktop app 24
I need help in understanding these files on my phone, Could someone help me understand these files? Urgent help needed. Please help. 1
storing Public Key in MS Access 0
CryptographicException: Bad Data - when storing public key only in key store on encrypting machine 0
Storing integer values in a void* 2
storing PublicKey in MS Access 4
Store private key in cookie? 3
Protecting .NET assemblies (runtime) 16

Members online

Total: 34 (members: 2, guests: 32)
Robots: 380

Forum statistics

Threads
473,755
Messages
2,569,536
Members
45,020
Latest member
GenesisGai

Latest Threads

Top