Click here to Skip to main content
Click here to Skip to main content
Search within:



 
Comments & Discussions (62)

Encryption/Decryption with .NET

By , 14 Mar 2002
 

Introduction

Encryption and Decryption

The System.Security.Cryptographic namespace within the Microsoft .NET Framework provides a variety of tools to aid in encryption and decryption. The CryptoStream class is used here to demonstrate the encryption and decryption with System.Security.Cryptographic.SymmetricAlgorithm, such as DESCryptoServiceProvider, RC2CryptoServiceProvider, and RijndaelManaged classes.

I have searched the Internet for some samples and all I found were based on the Microsoft sample code in KB Article Q307010 which basically uses input/output files as source and destination. I would like to have the encryption and decryption done in memory without having to specify source and destination files, so that I could use the code on a web server or so.

If you have any questions, please email to: fangfrank@hotmail.com

Frank Fang

Source Code

using System;
using System.Security.Cryptography;
using System.IO;
using System.Text;

namespace FangHome_Crypto
{
    /// <summary>
    /// SymmCrypto is a wrapper of System.Security.Cryptography.SymmetricAlgorithm classes
    /// and simplifies the interface. It supports customized SymmetricAlgorithm as well.
    /// </summary>
    public class SymmCrypto
    {
        /// <remarks>
        /// Supported .Net intrinsic SymmetricAlgorithm classes.
        /// </remarks>
        public enum SymmProvEnum : int
        {
            DES, RC2, Rijndael
        }

        private SymmetricAlgorithm mobjCryptoService;

        /// <remarks>
        /// Constructor for using an intrinsic .Net SymmetricAlgorithm class.
        /// </remarks>
        public SymmCrypto(SymmProvEnum NetSelected)
        {
            switch (NetSelected)
            {
                case SymmProvEnum.DES:
                    mobjCryptoService = new DESCryptoServiceProvider();
                    break;
                case SymmProvEnum.RC2:
                    mobjCryptoService = new RC2CryptoServiceProvider();
                    break;
                case SymmProvEnum.Rijndael:
                    mobjCryptoService = new RijndaelManaged();
                    break;
            }
        }

        /// <remarks>
        /// Constructor for using a customized SymmetricAlgorithm class.
        /// </remarks>
        public SymmCrypto(SymmetricAlgorithm ServiceProvider)
        {
            mobjCryptoService = ServiceProvider;
        }

        /// <remarks>
        /// Depending on the legal key size limitations of a specific CryptoService provider
        /// and length of the private key provided, padding the secret key with space character
        /// to meet the legal size of the algorithm.
        /// </remarks>
        private byte[] GetLegalKey(string Key)
        {
            string sTemp;
            if (mobjCryptoService.LegalKeySizes.Length > 0)
            {
                int lessSize = 0, moreSize = mobjCryptoService.LegalKeySizes[0].MinSize;
                // key sizes are in bits
                while (Key.Length * 8 > moreSize)
                {
                    lessSize = moreSize;
                    moreSize += mobjCryptoService.LegalKeySizes[0].SkipSize;
                }
                sTemp = Key.PadRight(moreSize / 8, ' ');
            }
            else
                sTemp = Key;

            // convert the secret key to byte array
            return ASCIIEncoding.ASCII.GetBytes(sTemp);
        }

        public string Encrypting(string Source, string Key)
        {
            byte[] bytIn = System.Text.ASCIIEncoding.ASCII.GetBytes(Source);
            // create a MemoryStream so that the process can be done without I/O files
            System.IO.MemoryStream ms = new System.IO.MemoryStream();

            byte[] bytKey = GetLegalKey(Key);

            // set the private key
            mobjCryptoService.Key = bytKey;
            mobjCryptoService.IV = bytKey;

            // create an Encryptor from the Provider Service instance
            ICryptoTransform encrypto = mobjCryptoService.CreateEncryptor();

            // create Crypto Stream that transforms a stream using the encryption
            CryptoStream cs = new CryptoStream(ms, encrypto, CryptoStreamMode.Write);

            // write out encrypted content into MemoryStream
            cs.Write(bytIn, 0, bytIn.Length);
            cs.FlushFinalBlock();
            
            // get the output and trim the '\0' bytes
            byte[] bytOut = ms.GetBuffer();
            int i = 0;
            for (i = 0; i < bytOut.Length; i++)
                if (bytOut[i] == 0)
                    break;
                    
            // convert into Base64 so that the result can be used in xml
            return System.Convert.ToBase64String(bytOut, 0, i);
        }

        public string Decrypting(string Source, string Key)
        {
            // convert from Base64 to binary
            byte[] bytIn = System.Convert.FromBase64String(Source);
            // create a MemoryStream with the input
            System.IO.MemoryStream ms = new System.IO.MemoryStream(bytIn, 0, bytIn.Length);

            byte[] bytKey = GetLegalKey(Key);

            // set the private key
            mobjCryptoService.Key = bytKey;
            mobjCryptoService.IV = bytKey;

            // create a Decryptor from the Provider Service instance
            ICryptoTransform encrypto = mobjCryptoService.CreateDecryptor();
 
            // create Crypto Stream that transforms a stream using the decryption
            CryptoStream cs = new CryptoStream(ms, encrypto, CryptoStreamMode.Read);

            // read out the result from the Crypto Stream
            System.IO.StreamReader sr = new System.IO.StreamReader( cs );
            return sr.ReadToEnd();
        }
    }
}

License

This article has no explicit license attached to it but may contain usage terms in the article text or the download files themselves. If in doubt please contact the author via the discussion board below.

A list of licenses authors might use can be found here

About the Author

 Frank Fang
Web Developer
United States United States
Member
No Biography provided

Article Top
 
Sign Up to vote   Poor Excellent
Add a reason or comment to your vote: x
Votes of 3 or less require a comment

Comments and Discussions

 
You must Sign In to use this message board.
Search this forum  
    Spacing  Noise  Layout  Per page   
View All ThreadsFirst Prev Next
QuestionInvalid LengthmemberNaeem Hassan25 Jan '07 - 1:10 
while decrypting the encrypted text with same key sometimes "Invalid Length" exception occoured. It is observed it only appear whenever the "byteIn" lenth is become odd number in Decrypt Method. Can you fix it?Cry | :((
Sign In·Permalink
AnswerRe: Invalid Lengthmembersweemeng.koh23 Sep '07 - 13:19 
compared to http://blogs.msdn.com/shawnfa/archive/2005/11/10/491431.aspx[^], found that following corrupts encrypted text sometimes and invalid length occurs when decrypt,
 
byte[] bytOut = ms.GetBuffer();
int i = 0;
for (i = 0; i < bytOut.Length; i++)
if (bytOut[i] == 0) break;
return System.Convert.ToBase64String(bytOut, 0, i);
 
this can be fixed by replacing with followings,
 
byte[] bytOut = ms.ToArray();
return System.Convert.ToBase64String(bytOut);
 
so far only tested with Rijndael.
Sign In·Permalink
AnswerRe: Invalid LengthmemberbluebeetleRCC15 Aug '08 - 5:27 
I can confirm this with AES as well.
 
Use ms.ToArray() -- do NOT scan for the first zero byte!!
 
The ms buffer is zero padded, yes, which means the unused portion of the buffer will be filled with zeros. However, there is a reasonable probability that a zero will appear within the used portion as well! So, if you just iterate the buffer and cut it at the first zero you are running the risk of throwing out relevant data (unlikely for small streams (but it happens), more likely for larger streams).
 
This can explain why a source like "I LOVE COFFEE!" might fail but "I LOVE COFFEE?" and other variants might not. Any given particular key and source text combination has a (usually small, for small sources) chance of producing this failure.
 
If, as in my case, your stream contains dynamic data (I was encrypting a timestamp, which, of course, changed ever time it was encrypted) then the failure will seem intermittent and will really drive you crazy!
 
While digging around for a solution to this (having first stupidly missed the one on this site) I discovered that there are a lot of people making this mistake -- if there is any way (except comments) to more visibly mark or correct the error in the code above that would be worthwhile, I think (it's easy to see this working well and only later, with bigger/more dynamic sources notice the flaw). (Overall this is a very good article and a lot of people have (apparently) been using it as reference.)
 
Also, I found that you can see the same behavior (with Aes, at least) in web apps on a web farm. This is not related to the buffer truncation, but can produce the same errors. It is caused by different machineKey values among servers in the same web farm.
 
If you are getting "Invalid Length" or "Padding is Invalid" errors, be sure first you aren't truncating the buffer (use ToArray() as above). If they are still appearing, they may be web-farm related; if so, I think you can cure this somewhere in the IIS config, by setting all the farm's machineKey attributes to the same value.
Sign In·Permalink
AnswerRe: Invalid Lengthmembernathan2240529 May '09 - 4:24 
I have come up with a working solution. It is located at
 
http://constotech.blogspot.com/2009/05/net-encryption-using-symmetricalgorithm.html[^]
Sign In·Permalink
Last Visit: 31 Dec '99 - 18:00     Last Update: 25 May '13 - 10:51Refresh1

General General    News News    Suggestion Suggestion    Question Question    Bug Bug    Answer Answer    Joke Joke    Rant Rant    Admin Admin   

About Article
A .NET SymmetricAlgorithm security class wrapper for in memory encryption/decryption with a private key
Type Article
Licence 
First Posted 14 Mar 2002
Views 349,175
Bookmarked 89 times

, +
Top News

Old Japanese Man Creates Amazing Art Using Excel (Wait, Excel?)

Get the Insider News free each morning.
Related Videos
French C# Tutorial Lesson 24 - Refactoring
Creating a Java Application Using a Package
Encrypt/Decrypt Files in VB.NET (Using Rijndael)
'Encryption/Decryption with .NET' Modified (Frank Fangs' Code) CCW and VB
EnDe 1.00 (beta)
Simple String Encryption and Decryption with Source Code
A C++ Implementation of the Blowfish Encryption/Decryption method
Secutirty at your Hands: Encryption of Configuration file in Whidbey
Vernam encryption/decryption of files
ASP.NET data encryption / decryption made easy
XCrypt - encryption & decryption class wrapper
Easy String Compression and Encryption
A C++ Implementation of the Rijndael Encryption/Decryption method
Encrypting Query Strings
RSA Private Key Encryption
.NET Encryption Simplified
Simple encrypting and decrypting data in C#
Cryptography : Symmetric Encryption by Symmetric Algorithm Classes – Part 1
ARACrypt - a crypto class
Encrypt & Decrypt Strings in Silverlight
RC4 Encryption Algorithm: C# Version
Securing image URLs in a website
Encryption/Decryption Function in .NET using the TripleDESCryptoServiceProvider Class
Permalink | Advertise | Privacy | Mobile
Web01 | 2.6.130523.1 | Last Updated 15 Mar 2002
Article Copyright 2002 by Frank Fang
Everything else Copyright © CodeProject, 1999-2013
Terms of Use
Layout: fixed | fluid