CodeProject: .NET Encryption Simplified. Free source code and programming help

Report Article

Discuss

Send to a friend

144 votes for this Article.

Popularity: 10.08 Rating: 4.67 out of 5

Introduction

Microsoft's .NET framework has robust support for encryption in the System.Security.Cryptography namespace. Everything you need to perform encryption is available in that class, but it's difficult to understand unless you have a firm grasp of cryptographic theory. Over the last four months, I've struggled with the concepts and theory behind encrypting and decrypting data. I've wrapped all my derived knowledge into a class I call Encryption. This class is heavily documented, string oriented, and most of all, simple! It's ideal for learning more about encryption.

Background

There are three essential cryptographic concepts represented in the Encryption namespace. It's important that every developer understands these concepts before proceeding any further:

Hashing
Hashes aren't encryption, per se, but they are fundamental to all other encryption operations. A hash is a data fingerprint - a tiny set of bytes that represents the uniqueness of a much larger block of bytes. Like fingerprints, no two should ever be alike, and a matching fingerprint is conclusive proof of identity. A full discussion of hashes is outside the scope of this article, but I highly recommend Steve Friedl's Illustrated Guide to Cryptographic Hashes for more background.
Symmetric Encryption
In symmetric encryption, a single key is used for encrypting and decrypting the data. This type of encryption is quite fast, but has a severe problem: in order to share a secret with someone, they have to know your key. This implies a very high level of trust between people sharing secrets; if an unscrupulous person has your key-- or if your key is intercepted by a spy-- they can decrypt all the messages you send using that key!
Asymmetric Encryption
Asymmetric encryption solves the trust problem inherent in symmetric encryption by using two different keys: a public key for encrypting messages, and a private key for decrypting messages. This makes it possible to communicate in secrecy with people you don't fully trust. If an unscrupulous person has your public key, who cares? The public key is only good for encryption; it's useless for decryption. They can't decrypt any of your messages! However, asymmetric encryption is very slow. It's not recommended for use on more than roughly 1 kilobyte of data.

These three concepts are heavily intertwined and always seen together in modern cryptography. They have different strengths and weaknesses; combining them offers a much higher level of security than can be achieved using a single method alone. For example, when digitally transmitting a check to your bank, all three of these methods are used:

Image reprinted from Entrust's Introduction to Cryptography and Digital Signatures PDF.

A hash of the check is calculated.
The hash is encrypted with our public key using asymmetric encryption.
The encrypted hash is appended to the document.
The document is encrypted using a unique one-time symmetric encryption key.
The one-time symmetric encryption key is encrypted with the recipient's public key using asymmetric encryption.
The encrypted key and encrypted document are transmitted to the recipient.

In order to open the check, these steps are simply performed in the reverse order by the recipient. Note that if any of these steps were missing, the transaction would have significant weaknesses that could be exploited!

Encryption.Hash

Let's start with the simplest operation-- Hashing the string "Hash Browns":

Dim h As New Encryption.Hash(Encryption.Hash.Provider.CRC32)
Dim d As New Encryption.Data("Hash Browns")
h.Calculate(d)
Console.WriteLine(".ToHex = '" & h.Value.ToHex & "'")
Console.WriteLine(".ToBase64 = '" & h.Value.ToBase64 & "'")
Console.WriteLine(".ToString = '" & h.Value.ToString & "'")

The unique data fingerprint of the string "Hash Browns" using the CRC32 algorithm is 32 bits or 4 bytes in length. We have a custom data type, Encryption.Data, to aid us in converting those 4 bytes to and from familiar string representations:

.ToHex = 'FDBFBC6D'

.ToBase64 = '/b+8bQ=='

.ToString = 'y¿¼m'

It doesn't make much sense to display an array of raw bytes using the .ToString method; that's shown only for illustrative purposes. You'll want raw byte values displayed either as Hexadecimal or Base64 encoded. If necessary, you can get to the raw byte representation via the Encryption.Data.Bytes array.

The CRC32 hash is not a good choice for security work; it's optimized for speed and detection of machine transmission errors. It would be relatively easy for a knowledgeable human hacker to generate a string that produces the same CRC32 hash. Let's take a look at a slower, but more secure hash: SHA1.

Dim h As New Encryption.Hash(Encryption.Hash.Provider.SHA1)
Dim d As New Encryption.Data("Hash Browns")
Dim salt As New Encryption.Data("NaCl")
h.Calculate(d, salt)
Console.WriteLine(h.Value.ToHex)
Console.WriteLine(h.Value.ToBase64)

SHA1 produces a much longer and more tamper-resistant 160-bit hash code.

.ToHex = '95CF26B3BB0.F377347B6D414951456A16DD0CF5F'

.ToBase64 = 'lc8ms7sPN3NHttQUlRRWoW3Qz18='

Notice the salt I added? Hashes are commonly used to avoid plain-text storage of passwords in a database. You calculate the hash of the password and store the hash instead of the actual password. When the user types in their password, hash it, then compare it against the stored hash in the database. It's clever, but there is a vulnerability: you can still mount a dictionary attack by hashing the English dictionary and matching it against the hashes stored in the database. We can prevent this by adding a salt-- a unique string-- to every password before hashing it. You'd typically salt with some arbitrary value from the same record, such as the record ID, user's birthday, or a GUID. It doesn't really matter what your salt is, as long as it makes the values unique. By adding the salt as shown above, we are effectively hashing the string "NaClHash Browns" instead of "Hash Browns". Good luck finding "NaClHash" in a dictionary!

Also note that string representations aren't particularly efficient; it takes 40 characters to represent the 160 bit (20 byte) hash in string using Hexadecimal, and 28 characters to represent that same hash using Base64 encoding. If you don't need to display your data in semi-human readable format, stick to binary formats. But the textual representations sure are convenient for use in XML or .config files!

We're not limited to Encryption.Data byte arrays of fixed length. We can also calculate the hash of an IO.Stream of any arbitrary size:

Dim sr As New IO.StreamReader("c:\test.txt")
Dim h As New Encryption.Hash(Encryption.Hash.Provider.MD5)
Console.WriteLine(".ToHex = '" & h.Calculate(sr.BaseStream).ToHex & "'")
sr.Close()

So the file test.txt has an MD5 hash of:

.ToHex = '92C7C0F251D98DEA2ACC49B21CF08070'

Let's see what happens if we add a single space character to test.txt, and hash it again:

.ToHex = 'FADECF02C2ABDC7B65EBF2382E8AC756'

One of the defining properties of a hash is that small changes in the source bytes produce big differences in the resulting hash bytes.

All hashes have the same purpose: to digitally fingerprint code. However, there are different speed and security tradeoffs for each Hash.Provider:

Provider	Length (bits)	Security	Speed
`Hash.Provider.CRC32`	32	low	fast
`Hash.Provider.SHA1`	160	moderate	medium
`Hash.Provider.SHA256`	256	high	slow
`Hash.Provider.SHA384`	384	high	slow
`Hash.Provider.SHA512`	512	extreme	slow
`Hash.Provider.MD5`	128	moderate	medium

Encryption.Symmetric

Symmetric encryption is the most familiar kind of encryption; you have a single secret key which is used to both encrypt and decrypt:

Dim sym As New Encryption.Symmetric(Encryption.Symmetric.Provider.Rijndael)
Dim key As New Encryption.Data("My Password")
Dim encryptedData As Encryption.Data
encryptedData = sym.Encrypt(New Encryption.Data("Secret Sauce"), key)
Dim base64EncryptedString as String = encryptedData.ToBase64

We now have some Rijndael encrypted bytes, expressed as a Base64 string. Let's decrypt them:

Dim sym As New Encryption.Symmetric(Encryption.Symmetric.Provider.Rijndael)
Dim key As New Encryption.Data("My Password")
Dim encryptedData As New Encryption.Data
encryptedData.Base64 = base64EncryptedString
Dim decryptedData As Encryption.Data
decryptedData = sym.Decrypt(encryptedData, key)
Console.WriteLine(decryptedData.ToString)

Like the Encryption.Hash class, this also works for any arbitrarily-sized IO.Stream as well as the fixed size Encryption.Data:

Dim sym As New Encryption.Symmetric(Encryption.Symmetric.Provider.TripleDES)
Dim key As New Encryption.Data("My Password")
Dim fs As New IO.FileStream("c:\test.txt", IO.FileMode.Open, 
                            IO.FileAccess.Read)
Dim br As New IO.BinaryReader(fs)
Dim encryptedData As Encryption.Data
encryptedData = sym.Encrypt(br.BaseStream, key)
br.Close()
Dim sym2 As New Encryption.Symmetric(Encryption.Symmetric.Provider.TripleDES)
Dim decryptedData As Encryption.Data
decryptedData = sym2.Decrypt(encryptedData, key)

There are a few things to remember when using the Encryption.Symmetric class:

All symmetric encryption is currently performed in memory. Be careful when encrypting extremely large files!
.NET always chooses the largest available key size by default. If you want to manually specify a smaller key size, use the .KeySizeBytes or .KeySizeBits properties.
The key is optional in the .Encrypt method. If you don't provide a key, a key of appropriate length will be auto generated for you and it can be retrieved via the .Key property. It won't be fun to pronounce, because it'll be a randomly generated array of bytes, but it'll sure be hard to guess!
The .InitializationVector property is completely optional. The symmetric algorithms are block-oriented and seed the next block with the results from the previous block. This means the very first block has no seed, so that's where the IV comes in. It's annoying to have to remember both a password and an initialization vector to decrypt your data, and I don't think this is a serious weakness, so I recommend accepting the default initialization vector.

.NET provides four different Symmetric.Provider algorithms; I would avoid the ones with shorter keys and known weaknesses:

Provider	Length (bits)	Known Vulnerabilities
`Symmetric.Provider.DES`	64	yes
`Symmetric.Provider.RC2`	40-128	yes
`Symmetric.Provider.Rijndael`	128, 192, 256	no
`Symmetric.Provider.TripleDES`	128, 192	no

Encryption.Asymmetric

Asymmetric encryption requires the use of two keys: one public, one private, together known as a "keyset". Let's generate a new keyset and encrypt some data:

Dim asym As New Encryption.Asymmetric
Dim pubkey As New Encryption.Asymmetric.PublicKey
Dim privkey As New Encryption.Asymmetric.PrivateKey
asym.GenerateNewKeyset(pubkey, privkey)
Dim secret As String = "ancient chinese"
Dim encryptedData As Encryption.Data
encryptedData = asym.Encrypt(New Encryption.Data(secret), pubkey)
Dim decryptedData As Encryption.Data
Dim asym2 As New Encryption.Asymmetric
decryptedData = asym2.Decrypt(encryptedData, privkey)

Note that we used the public key to encrypt, and the private key to decrypt.

Although you can certainly generate as many new public/private keysets as you want, you'll typically load an existing keyset. To facilitate loading and saving of keys, the Encryption.Asymmetric.PublicKey and Encryption.Asymmetric.PrivateKey classes support XML serialization via the .ToXml and .FromXml methods. They also support exporting to config file format via the .ToConfigSection method, which returns a string suitable for cutting and pasting into the <appSettings> section of your *.config file:

<appSettings>
  <add key="PublicKey.Modulus" 
    value="3uWxbWSnlL2ntr/gcJ0NQeiWRfzj/72zIDuBW/TmegeodMdPUvI5vXur0fKp
    6RbSU112oPf9o7hoAF8bdR9YOiJg6axZYKh+BxEH6pUPLbrtn1dPCUgTxlMeo0IhKvi
    h1Q90Bz+ZxCp/V8Hcf86p+4LPeb1o9EOa01zd0yUwvkE=" />
  <add key="PublicKey.Exponent" 
    value="AQAB" />
  <add key="PrivateKey.P" 
    value="76iHZusdN1TYrTqf1gExNMMWbiHS7zSB/bi/xeUR0F3fjvnvsayn6s5ShM0jx
    YHVVkRyVoH16PwLW6Tt2gpdYw==" />
  <add key="PrivateKey.Q" 
    value="7hiVRmx0z1KERw+Zy86MmlvuODUsn2kuM06kLsSHbznSkYl5lekH9RFxFemNk
    GGMBg8OT5+EVtWAOdto8KTJCw==" />
  <add key="PrivateKey.DP" 
    value="ksvo/EqBn9XRzvH826npSQdCYv1G5gyEnzQeC4qPidEmUb6Yan12cWYlt4CsK
    5umYGwWmRSL20Ufc+gnZQo6Pw==" />
  <add key="PrivateKey.DQ" 
    value="QliLUCJsslDWF08blhUqTOENEpCOrKUMgLOLQJT3AGFmcbOTM9jJpNqFXovEL
    NVhxVZwsHNM1z2LC5Q+O8BPXQ==" />
  <add key="PrivateKey.InverseQ" 
    value="pjEtLwYB4yeDpdORNFxhFVXWZCqoky86bmAnrrG4+FvwkH/2dNe65Wmp62JvZ
    7dwgPBIA+uA/LF+C1LXcXe9Aw==" />
  <add key="PrivateKey.D" 
    value="EmuZBhlTYA9sVMX2nlfcSJ4YDSChFvluXDOOtTK/+UW4vi3aeFhcPTSDNo5/T
    Cv+pbULoLHd3DHZJm61rjAw8jV5n09Trufg/Z3ybzUrAOzT3iTR2rvg7mNS2IBmaTyJg     
    emNKQDeFW81UOELVszUXNjhVex+k67Ma4omR6iTHSE=" />
</appSettings>

The private key is a superset of the public key; it can be used for both encryption and decryption, whereas the public key can only be used for encryption. Once a key is placed in the <appSettings> section of your .config file, it will be used automatically; you no longer have to specify a private key in the .Decrypt method:

Dim encryptedData As Encryption.Data
Dim decryptedData As Encryption.Data
Dim asym As New Encryption.Asymmetric
Dim asym2 As New Encryption.Asymmetric
Dim secret As String = "Michael Bolton"
encryptedData = asym.Encrypt(New Encryption.Data(secret))
decryptedData = asym2.Decrypt(encryptedData)
Console.WriteLine(decryptedData.ToString)

Note that we didn't specify any keys here; everything was automatically absorbed from the <appSettings> section of the config file.

There are a few caveats when using Encryption.Asymmetric:

Microsoft's implementation of asymmetric encryption offers no choice of providers: you'll get RSA and you'll like it! You do get a choice of key sizes, though-- anywhere from 384 bits to 16,384 bits in steps of 8 bits. If you don't specify a size in the constructor, you'll get 1,024 bits by default. That should be more than enough for most uses.
Asymmetric encryption is designed for small inputs. This is partly because asymmetric encryption is brutally slow, but it's also by design: depending on the key size you choose, you'll get an exception if you try to encrypt something too big! There are workarounds, but I don't recommend them. Follow best practices as defined at the top of this article; use asymmetric encryption to protect short stuff, like symmetric passwords or hashes.

The Annoying File Dependency in Encryption.Asymmetric

Unfortunately, Microsoft chose to provide some System.Security.Cryptography functionality through the existing COM-based CryptoAPI. Typically this is no big deal; lots of things in .NET are delivered via COM interfaces. However, there is one destructive side effect in this case: asymmetric encryption, which in my opinion should be an entirely in-memory operation, has a filesystem "key container" dependency:

Even worse, this weird little "key container" file usually goes to the current user's folder! I have specified a machine folder as documented in this Microsoft knowledge base article. Every time we perform an asymmetric encryption operation, a file is created and then destroyed in the C:\Documents and Settings\All Users\Application Data\Microsoft\Crypto\RSA\MachineKeys folder. It is simply unavoidable, which you can see for yourself by opening this folder and watching what happens to it when you make asymmetric encryption calls. Make sure whatever account .NET is running as (ASP.NET, etc.) has permission to this folder!

Conclusion

Encryption is a deep, complicated subject. I hope this article and the accompanying classes made it at least a little more approachable.

Please don't hesitate to provide feedback, good or bad! If you enjoyed this article, you may also like my other articles as well.

History

Tuesday, April 19^th, 2005
- Published.
Sunday, May 1^st, 2005
- Minor bugfixes to article code.
- Corrected issue with byte array nulls and Encoding.GetString in C#.
Monday, January 29^th, 2007
- Straight port to .NET 2.0 and Visual Studio 2005.

License

This article has no explicit license attached to it but may contain usage terms in the article text or the download files themselves. If in doubt please contact the author via the discussion board below.

A list of licenses authors might use can be found here

About the Author

wumpus1

My name is Jeff Atwood. I live in Berkeley, CA with my wife, two cats, and far more computers than I care to mention. My first computer was the Texas Instruments TI-99/4a. I've been a Microsoft Windows developer since 1992; primarily in VB. I am particularly interested in best practices and human factors in software development, as represented in my recommended developer reading list. I also have a coding and human factors related blog at www.codinghorror.com.

Occupation:	Web Developer
Location:	United States

Other popular Cryptography & Security articles:

Understanding .NET Code Access Security
A full length article on .NET Code Access Security
Hiding a text file in a bmp file
How to hide a text file in a bmp file
Strong Names Explained
.NET Strong Name technology explained
Using XML Digital Signatures for Application Licensing
Use XML Digital Signatures for a request- and signing-based licensing mechanism for your applications.
SharpPrivacy - OpenPGP for C#
SharpPrivacy is an OpenPGP implementation in C#. It can be used to encrypt and sign data, created OpenPGP compatible keys, and a lot more. This article explains how to use the library in your own .NET application or webpage to encrypt, sign, decrypt or verify OpenPGP messages.

Article Top

You must Sign In to use this message board.

Msgs 1 to 25 of 135 (Total in Forum: 135) (Refresh)

FirstPrevNext

Problem with Key

jfsanchez2k

10:49 28 Nov '08

I had a problem using Keys that are not exactly compatible with "StepBytes"

in method ValidateKeyAndIv()

_crypto.Key = _key.Bytes

giving me an error:
"specified key is not valid size for this algorithm".

I found a solution:
The property Data.Bytes() validates _maxBytes and _MinBytes, so I added a validation for _stepBytes.
Now it should read like this:

        Public Property Bytes() As Byte()
            Get
                If _MaxBytes > 0 Then
                    If _b.Length > _MaxBytes Then
                        Dim b(_MaxBytes - 1) As Byte
                        Array.Copy(_b, b, b.Length)
                        _b = b
                    End If
                End If
                If _MinBytes > 0 Then
                    If _b.Length < _MinBytes Then
                        Dim b(_MinBytes - 1) As Byte
                        Array.Copy(_b, b, _b.Length)
                        _b = b
                    End If
                End If
                If _StepBytes > 0 Then
                    Dim _stepCheck As Integer = _b.Length Mod Me.StepBytes
                    If _stepCheck > 0 Then
                        Dim b(_b.Length - _stepCheck + _StepBytes - 1) As Byte
                        Array.Copy(_b, b, _b.Length)
                        _b = b
                    End If
                End If
                Return _b
            End Get
            Set(ByVal Value As Byte())
                _b = Value
            End Set
        End Property

Thank you for this library.

problem using the Encryption class

Hasan Jaffal

1:32 25 Jun '08

hello i have a problem

i use this code in vb.net 2005 to crypte a file

 Dim FileText As String = My.Computer.FileSystem.ReadAllText(Application.StartupPath & "/../../Licence/decrypted.lic")
Dim C As Crypto.Symmetric.Provider = Crypto.Symmetric.Provider.DES
        Dim sym As New Crypto.Symmetric(C)
         sym.Key.Text = "powermap"

 Dim encryptedData As Crypto.Data
             encryptedData = sym.Encrypt(New Crypto.Data(FileText))
        
        My.Computer.FileSystem.WriteAllText(Application.StartupPath amp; "/../../Licence/licence.lic", encryptedData.Text, False)

and then this code to decrypt it

 Dim FileText As String = My.Computer.FileSystem.ReadAllText(Application.StartupPath & "/../../Licence/licence.lic")

Dim C As Crypto.Symmetric.Provider = Crypto.Symmetric.Provider.DES
Dim sym As New Crypto.Symmetric(C)
sym.Key.Text = "powermap"

Dim decryptedData As Crypto.Data
        Dim encryptedData As New Crypto.Data(FileText)
        Dim sym2 As New Crypto.Symmetric(C)
        sym2.Key.Text = sym.Key.Text
        decryptedData = sym2.Decrypt(encryptedData)
        MsgBox(decryptedData.Text)

it gives me an exception, and it says the provided key is invalid

" I love deadlines. I like the whooshing sound they make as they fly by. "

2.00/5 (2 votes)

No decryption for Hash

adharbert

10:23 2 Jun '08

Am I missing something or was that left out? Andrew D. Harbert
Sign In·View Thread·PermaLink	5.00/5 (1 vote)

Re: No decryption for Hash

Jason Barrera

16:08 5 Jun '08

There is no "decryption" for a hash. They are in a sort, 1 way encryption. -Jason Barrera
Sign In·View Thread·PermaLink	5.00/5 (1 vote)

Re: No decryption for Hash

CoolVini

23:30 11 Jun '08

Hash is somthing like to get a string for example, add make the sum of all the chars. Is not sum, but let say that is somthing like sum.

At the end, you try to do that.
Everything that put as input to the hash create function, return a diferent number.
So if for example you have a "password" that create the hash value of "223221", you keep the hash valie, and do not know the word password.

Now if some type any other word, then the hash valie is NOT "223221".
But if some type the correct "password" you get the correct hash.

So even you, do not know the password, you can verify it.
----------

Other think that you can do, is to understand that somthing has change in a compare utility, for example, how you can know very fast and very easy, that some one has really change a text whith out try to compare it char by char ?, you create a hash.

1.00/5 (1 vote)

?bug in Text property of Data class in case encoding is Unicode

heryerdeyim

3:13 18 Apr '08

Sub Test()
  Dim data as New Data("abc",System.Text.Encoding.Unicode)
  'now data._b is {97,0,98,0,99,0}

  Windows.Forms.MessageBox.Show(data.Text)
  'will not show "abc" because of null handling in Text Property of Data class.
End Sub



    ''' 
    ''' Sets or returns text representation of bytes using the default text encoding
    ''' 

    Public Property Text() As String
      Get
        If _b Is Nothing Then
          Return ""
        Else
          '-- need to handle nulls here; oddly, C# will happily convert
          '-- nulls into the string whereas VB stops converting at the
          '-- first null!
          Dim i As Integer = Array.IndexOf(_b, CType(0, Byte))
          If i >= 0 Then
            Return Me.Encoding.GetString(_b, 0, i)
          Else
            Return Me.Encoding.GetString(_b)
          End If
        End If
      End Get
      Set(ByVal Value As String)
        _b = Me.Encoding.GetBytes(Value)
      End Set
    End Property

License and terms of use?

Edwin2008

7:00 31 Mar '08

Jeff,

First of thanks for creating these classes, they have been very usefull within my projects.

However I have been using the C# version posted by kalyankrishna1 (member-id 143594) on this message board.
I have maintained all the comments from the VB classes in the C# classes.

I have not found any Terms of use or license agreements, so I would like if there are any and what are they?

Thanks,

Edwin Geveke
Senior Application Architect
Descartes Systems Group

2.00/5 (1 vote)

Encryption - Decryption Solution

Bill Havens

5:51 12 Mar '08

Hello and thank you for the nice job on this article about encryption. I'm a VB.Net developer and I am working on finding a way to do the following but have absolutely no experience with encryption.

Test the utilization of a given site key (once password-encrypted):
Step 1: Decrypt the key
Step 2: Decode the key, leaving the resulting values in binary (non-decoded) form.
Step 3: Decode the IV to binary form.
Step 4: Decode the Cipher Text supplied in examples in 6.5.2 below. Cipher Text is Base-64 encoded and must be decoded prior to decrypting.
Step 5: Decrypt the Cipher Text supplied using the values from Steps 1 and 2.
Step 6: The clear text output should match the expected clear text.

Can anyone help me with this?

Thanks
Cool

1.00/5 (2 votes)

Thanks to Jeff

Pam Minich

16:37 6 Mar '08

The encryption module is a very elegant piece of code and was a godsend on a project where I only needed to encrypt and decrypt credit card numbers. Great work and thanks for making it public! Pam
Sign In·View Thread·PermaLink

probably a very simple error

Elsys

18:33 29 Feb '08

I referenced your code in a dll to a C++ project since I dont have the money to buy the code converter and simply use the header as a classheader. And because I dont really wish to re-learn VB.NET (Bad experiences and it made it alot harder for me to learn C++ dont want to take two steps forward and one back) Anyway so I referenced your dll and I am experiencing three errors which boggle the imagination.

class does not have a copy-constructor... it does from what I read of your code and understood but because of this error below.

candidate function(s) not accessible
the compiler is unable to access the copy constructor resulting in the first error. I checked through all your methods and functions to be sure the ones I was using and their base functions were declared public as is syntax in C++/CLI

A host of conversion problems but since these conversions should work provided the middle error is fixed since the class itself is based on input and output through System.string aka System::String;

I hope to hear from you on this issue and I am really looking foward to using your code in my project. It is really well put together just not as optomized for C++ as I would like. I guess if I get really fed up I'll just have to rewrite it though some of the value declarations are impossible to rework the way its written. Thats part of the reason I opted to use a dll reference.

2.00/5 (1 vote)

Re: probably a very simple error

Member 3644181

5:47 26 Jun '08

I experienced the same problems as you did when I tried this DLL in a C++/CLI project.

The problem for me seemed to be that C++/CLI didn't like the Optional Boolean parameter in the Symmetric class constructor. I solved it by passing a boolean.

For example, this gave me the same errors you had:

Symmetric^ sym = gcnew Symmetric(Symmetric::Provider::Rijndael);

but this did work:

Symmetric^ sym = gcnew Symmetric(Symmetric::Provider::Rijndael, true);

Hope this helps you!

4.00/5 (1 vote)

encryption project

kvsinfotech

20:45 25 Feb '08

i would like to design login page which must include encryption coding for password checking.

i did coding but how to run the application how to test that .

coding :// This sample demonstrates using a key based on the cryptographic service provider (CSP) version
// of the Data Encryption Standard (DES)algorithm to encrypt a string to a byte array, and then
// to decrypt the byte array back to a string.

using System;
using System.IO;
using System.Text;
using System.Security.Cryptography;

class CryptoMemoryStream
{
// Main method.
public static void Main()
{
// Create a new DES key.
DESCryptoServiceProvider key = new DESCryptoServiceProvider();

// Encrypt a string to a byte array.
byte[] buffer = Encrypt("This is some plaintext!", key);

// Decrypt the byte array back to a string.
string plaintext = Decrypt(buffer, key);

// Display the plaintext value to the console.
Console.WriteLine(plaintext);
}

// Encrypt the string.
public static byte[] Encrypt(string PlainText, SymmetricAlgorithm key)
{
// Create a memory stream.
MemoryStream ms = new MemoryStream();

// Create a CryptoStream using the memory stream and the
// CSP DES key.
CryptoStream encStream = new CryptoStream(ms, key.CreateEncryptor(), CryptoStreamMode.Write);

// Create a StreamWriter to write a string
// to the stream.
StreamWriter sw = new StreamWriter(encStream);

// Write the plaintext to the stream.
sw.WriteLine(PlainText);

// Close the StreamWriter and CryptoStream.
sw.Close();
encStream.Close();

// Get an array of bytes that represents
// the memory stream.
byte[] buffer = ms.ToArray();

// Close the memory stream.
ms.Close();

// Return the encrypted byte array.
return buffer;
}

// Decrypt the byte array.
public static string Decrypt(byte[] CypherText, SymmetricAlgorithm key)
{
// Create a memory stream to the passed buffer.
MemoryStream ms = new MemoryStream(CypherText);

// Create a CryptoStream using the memory stream and the
// CSP DES key.
CryptoStream encStream = new CryptoStream(ms, key.CreateDecryptor(), CryptoStreamMode.Read);

// Create a StreamReader for reading the stream.
StreamReader sr = new StreamReader(encStream);

// Read the stream as a string.
string val = sr.ReadLine();

// Close the streams.
sr.Close();
encStream.Close();
ms.Close();

return val;
}
please guide me how to do that applicaiton . Its great if it could be early .

thanks.
Anuradha

2.00/5 (1 vote)

how to create web browser using c#.net

chandrakant

23:31 17 Jan '08

please give me idea about how to design a web browser in c#.net
Sign In·View Thread·PermaLink	3.00/5 (2 votes)

Re: how to create web browser using c#.net

Andreas Saurwein Franci Gonalves

16:19 11 Apr '08

Two possible answers: 1) you dont 2) learn C#, programming, psychology, sociology, security, continue reading all relevant RFCs, then think about a basic design that is not already implemented and better than any existing. Leon[^] - Enterprise Anti-Spam Server
Sign In·View Thread·PermaLink	2.00/5 (2 votes)

CRC

paul8891

6:43 17 Oct '07

CRC32: How do I get a numeric representation? How do I decode numeric representation Thanks Paul
Sign In·View Thread·PermaLink

Problem CryptographicException: Keyset does not exist

chriswue

11:31 2 Oct '07

Hi,

when I tried the library on my system, the asymmetric test always failed with:

System.Security.Cryptography.CryptographicException: Keyset does not exist

at System.Security.Cryptography.CryptographicException.ThrowCryptogaphicException(Int32 hr)
at System.Security.Cryptography.SafeProvHandle._FreeCSP(IntPtr pProvCtx)
at System.Security.Cryptography.SafeProvHandle.ReleaseHandle()
at System.Runtime.InteropServices.SafeHandle.InternalFinalize()
at System.Runtime.InteropServices.SafeHandle.Dispose(Boolean disposing)
at System.Runtime.InteropServices.SafeHandle.Finalize()

After 3h torturing google about that exception with no result, I discovered that setting PersistKeyInCsp to false AND setting a KeyContainerName in GetRSAProvider caused the problem.
According to http://msdn2.microsoft.com/en-us/library/tswxhw92.aspx it seems you should only set PersistKeyInCsp to false if you want to clear the key from the container. And you should call Clear() then.

After I removed that, it worked just fine. Problem appeared under XP SP2 and Vista.
I mention this just in case somebody else runs into this problem.

4.40/5 (2 votes)

Re: Problem CryptographicException: Keyset does not exist

Member 3895175

12:22 7 Apr '08

THANK YOU!
Sign In·View Thread·PermaLink	2.33/5 (2 votes)

Tony Selke

8:01 27 Sep '07

You may also be interested in looking at the following, related Code Project articles:

Generic SymmetricAlgorithm Helper[^]
This is a generic helper class that exposes simplified Encrypt and Decrypt functionality for strings, byte arrays and streams for any SymmetricAlgorithm derivative (DES, RC2, Rijndael, TripleDES, etc.).

Making TripleDES Simple in VB.NET and C#[^]
This is a simple wrapper class that provides an easy interface for encrypting and decrypting byte arrays and strings using the 3DES algorithm.

2.00/5 (1 vote)

Decode Hash

jean3333

6:24 22 Aug '07

I think I'm getting this: Step 1: Take string and encode to byte array. Step 2: Take encoded byte array and hash. Step 3: Take hashed bytes and convert to hex string representation. OK. I'd like to stored the hex string representation in a registry key and retrieve and decode it. So how do I go backward to get the original string?
Sign In·View Thread·PermaLink	2.00/5 (1 vote)

Default KeyContainerName

William.Wong

23:38 6 Aug '07

Hi all,

Having a default key container name may result in having two RSACryptoServiceProvider instances working on the same container. When the the garbage collection runs to collect those RSACryptoServiceProvider, it will throw the following exception:


System.Security.Cryptography.CryptographicException was unhandled
  Message="Keyset does not exist\r\n"
  Source="mscorlib"
  StackTrace:
       at System.Security.Cryptography.CryptographicException.ThrowCryptogaphicException(Int32 hr)
       at System.Security.Cryptography.SafeKeyHandle._FreeHKey(IntPtr pKeyCtx)
       at System.Security.Cryptography.SafeKeyHandle.ReleaseHandle()
       at System.Runtime.InteropServices.SafeHandle.InternalFinalize()
       at System.Runtime.InteropServices.SafeHandle.Dispose(Boolean disposing)
       at System.Runtime.InteropServices.SafeHandle.Finalize()

May I propose to change t