CodeProject: Symmetric Cryptography and Hashing in C#. Free source code and programming help

Announcements

	Windows 7 Comp Win a laptop!
	Monthly Competition

Articles

Desktop Development

Web Development

Enterprise Systems

Content Management Server

Microsoft BizTalk Server

SQL Reporting Services

Platforms, Frameworks & Libraries

Windows Communication Foundation

Windows Presentation Foundation

Windows Workflow Foundation

Cryptography & Security

Threads, Processes & IPC

WinHelp / HTMLHelp

Uncategorised Quick Answers

Graphics / Design

Expression

Usability

Development Lifecycle

Debug Tips

Design and Architecture

Uncategorised Technical Blogs

Services

Code-signing Certificates

Job Board

CodeProject VS2008 Addin

Feature Zones

Product Showcase

Code Signing Resources

WhitePapers / Webcasts

ASP.NET Web Hosting

Advanced Search
Add to IE Search

Discuss

Report

12 votes for this article.

Popularity: 3.64 Rating: 3.38 out of 5

Introduction

Cryptography is a way of protecting data from being viewed or modified by unauthorized individuals. It is used to achieve Confidentiality, Data Integrity, and Authentication (CIA). There are two basic types of cryptography: asymmetric and symmetric cryptography. In symmetric cryptography, there are two different keys for encryption and decryption. However, in symmetric cryptography, we use the same keys for both encrypting and decrypting data. We shall look at symmetric cryptography, specifically a C# .NET implementation. The discussion of asymmetric cryptography is beyond the scope of this article.

The symmetric cryptography class can be used for two-way encryption of data. It is clearly written with three constructors, and overridable public methods to support polymorphism. It supports four algorithms: Rijndael, RC2, DES, and TripleDES. In addition, I have included a Hash class in the same namespace. The Hash class follows similar pattern and supports the following algorithms: MD5, SHA1, SHA256, SHA384, and SHA512.

Background

I have seen a number of codes and articles on symmetric cryptography, but they all seem to have the problem of generating illegal or invalid encryption key. To enable us do this right, we must remember that a legal key size must be:

Greater than or equal to minimum size for a chosen cryptographic algorithm.
Equal to a valid size for a chosen cryptographic algorithm.
8 bytes for DES; 16 or 24 bytes for TripleDES; 16, 24, or 32 for Rijndael.

Knowing and understanding these facts will help us to write a working generic code for all the algorithms.

Using the code

In this edition, I used the PasswordDeriveBytes method in the System.Security namespace for best security and also included a SALT property, in line with the best practices. Below is a console application showing how to use the Cryptography component or class:

using System;

using CodeProject.Chidi.Cryptography;

namespace CodeProject.Chidi.TestConsole

{

 /// <summary>


 /// For testing components.


 /// </summary>


 class clsTest

 {

  /// <summary>


  /// The main entry point for the application.


  /// </summary>


  [STAThread]

  static void Main(string[] args)

  {

   SymCryptography cryptic = new SymCryptography();

   string plainText = "Chidi Ezeukwu";

   cryptic.Key = "wqdj~yriu!@*k0_^fa7431%p$#=@hd+&";

   Console.WriteLine("The Encryption Component Test\n");

   Console.WriteLine("=============================\n");

   Console.WriteLine("Plain text: " + plainText);

   Console.WriteLine("Key: " + cryptic.Key + "\n");


   Console.WriteLine("Using default encryption algorithm:");

   string TestEnc = cryptic.Encrypt(plainText);

   string TestDec = cryptic.Decrypt(TestEnc);

   Console.WriteLine("Encrypted text: " + TestEnc+ "\n");

   Console.WriteLine("Using RC2 algorithm:");

   cryptic = new SymCryptography("rc2");

   TestEnc = cryptic.Encrypt(plainText);

   Console.WriteLine("Encrypted text: " + TestEnc + "\n");

   Console.WriteLine("Using DES algorithm:");

   cryptic = new SymCryptography("DES");

   TestEnc = cryptic.Encrypt(plainText);

   Console.WriteLine("Encrypted text: " + TestEnc + "\n");


   Console.WriteLine("Using TripleDES algorithm:");

   cryptic = new SymCryptography("TripleDES");

   TestEnc = cryptic.Encrypt(plainText);

   Console.WriteLine("Encrypted text: " + TestEnc + "\n");


   Hash hash = new Hash("SHA1");

   string TestHash = hash.Encrypt(plainText);

   Console.WriteLine("Using SHA1 hashing algorithm:");

   Console.WriteLine("Hashed text: " + TestHash + "\n");

   Console.Read();

  }

 }

}

The source code:

using System;
using System.IO;
using System.Text;
using System.Security.Cryptography;


namespace CodeProject.Chidi.Cryptography
{
 #region Symmetric cryptography class...

 /// <SUMMARY>Contains methods and properties for 

 ///  two-way encryption and decryption</SUMMARY>

 /// Chidi C. Ezeukwu

 /// <WRITTEN>May 24, 2004</WRITTEN>

 /// <UPDATED>Aug 07, 2004</UPDATED>

 public class SymCryptography
 {
  #region Private members...

  private string mKey = string.Empty;
  private string mSalt = string.Empty;
  private ServiceProviderEnum mAlgorithm;
  private SymmetricAlgorithm mCryptoService;

  private void SetLegalIV()
  {
   // Set symmetric algorithm

   switch(mAlgorithm)
   {
    case ServiceProviderEnum.Rijndael:
     mCryptoService.IV = new byte[] {0xf, 0x6f, 0x13, 0x2e, 0x35, 
 0xc2, 0xcd, 0xf9, 0x5, 0x46, 0x9c, 0xea, 0xa8, 0x4b, 0x73,0xcc};
     break;
    default:
     mCryptoService.IV = new byte[] {0xf, 0x6f, 0x13, 0x2e,
      0x35, 0xc2, 0xcd, 0xf9};
     break;
   }
  }

  #endregion

  #region Public interfaces...

  public enum ServiceProviderEnum: int
  {
   // Supported service providers

   Rijndael,
   RC2,
   DES,
   TripleDES
  }
    
  public SymCryptography()
  {
   // Default symmetric algorithm

   mCryptoService = new RijndaelManaged();
   mCryptoService.Mode = CipherMode.CBC;
   mAlgorithm = ServiceProviderEnum.Rijndael;
  }

  public SymCryptography(ServiceProviderEnum serviceProvider)
  { 
   // Select symmetric algorithm

   switch(serviceProvider)
   {
    case ServiceProviderEnum.Rijndael:
     mCryptoService = new RijndaelManaged();
     mAlgorithm = ServiceProviderEnum.Rijndael;
     break;
    case ServiceProviderEnum.RC2:
     mCryptoService = new RC2CryptoServiceProvider();
     mAlgorithm = ServiceProviderEnum.RC2;
     break;
    case ServiceProviderEnum.DES:
     mCryptoService = new DESCryptoServiceProvider();
     mAlgorithm = ServiceProviderEnum.DES;
     break;
    case ServiceProviderEnum.TripleDES:
     mCryptoService = new TripleDESCryptoServiceProvider();
     mAlgorithm = ServiceProviderEnum.TripleDES;
     break;
   }
   mCryptoService.Mode = CipherMode.CBC;
  }

  public SymCryptography(string serviceProviderName)
  {
   try
   {
    // Select symmetric algorithm

    switch(serviceProviderName.ToLower())
    {
     case "rijndael":
      serviceProviderName = "Rijndael"; 
      mAlgorithm = ServiceProviderEnum.Rijndael;
      break;
     case "rc2":
      serviceProviderName = "RC2";
      mAlgorithm = ServiceProviderEnum.RC2;
      break;
     case "des":
      serviceProviderName = "DES";
      mAlgorithm = ServiceProviderEnum.DES;
      break;
     case "tripledes":
      serviceProviderName = "TripleDES";
      mAlgorithm = ServiceProviderEnum.TripleDES;
      break;
    }

    // Set symmetric algorithm

    mCryptoService = (SymmetricAlgorithm)
      CryptoConfig.CreateFromName(serviceProviderName);
    mCryptoService.Mode = CipherMode.CBC;
   }
   catch
   {
    throw;
   }
  }

  public virtual byte[] GetLegalKey()
  {
   // Adjust key if necessary, and return a valid key

   if (mCryptoService.LegalKeySizes.Length > 0)
   {
    // Key sizes in bits

    int keySize = mKey.Length * 8;
    int minSize = mCryptoService.LegalKeySizes[0].MinSize;
    int maxSize = mCryptoService.LegalKeySizes[0].MaxSize;
    int skipSize = mCryptoService.LegalKeySizes[0].SkipSize;
    
    if (keySize > maxSize)
    {
     // Extract maximum size allowed

     mKey = mKey.Substring(0, maxSize / 8);
    }
    else if (keySize < maxSize)
    {
     // Set valid size

     int validSize = (keySize <= minSize)? minSize : 
          (keySize - keySize % skipSize) + skipSize;
     if (keySize < validSize)
     {
      // Pad the key with asterisk to make up the size

      mKey = mKey.PadRight(validSize / 8, '*');
     }
    }
   }
   PasswordDeriveBytes key = new PasswordDeriveBytes(mKey,
        ASCIIEncoding.ASCII.GetBytes(mSalt));
   return key.GetBytes(mKey.Length);
  }

  public virtual string Encrypt(string plainText)
  {
   byte[] plainByte = ASCIIEncoding.ASCII.GetBytes(plainText);
   byte[] keyByte = GetLegalKey();

   // Set private key

   mCryptoService.Key = keyByte;
   SetLegalIV();
   
   // Encryptor object

   ICryptoTransform cryptoTransform = mCryptoService.CreateEncryptor();
   
   // Memory stream object

   MemoryStream ms = new MemoryStream();

   // Crpto stream object

   CryptoStream cs = new CryptoStream(ms, cryptoTransform, 
        CryptoStreamMode.Write);

   // Write encrypted byte to memory stream

   cs.Write(plainByte, 0, plainByte.Length);
   cs.FlushFinalBlock();

   // Get the encrypted byte length

   byte[] cryptoByte = ms.ToArray();

   // Convert into base 64 to enable result to be used in Xml

   return Convert.ToBase64String(cryptoByte, 0, cryptoByte.GetLength(0));
  }
  
  public virtual string Decrypt(string cryptoText)
  {
   // Convert from base 64 string to bytes

   byte[] cryptoByte = Convert.FromBase64String(cryptoText);
   byte[] keyByte = GetLegalKey();

   // Set private key

   mCryptoService.Key = keyByte;
   SetLegalIV();

   // Decryptor object

   ICryptoTransform cryptoTransform = mCryptoService.CreateDecryptor();
   try
   {
    // Memory stream object

    MemoryStream ms = new MemoryStream(cryptoByte, 0, cryptoByte.Length);

    // Crpto stream object

    CryptoStream cs = new CryptoStream(ms, cryptoTransform, 
        CryptoStreamMode.Read);

    // Get the result from the Crypto stream

    StreamReader sr = new StreamReader(cs);
    return sr.ReadToEnd();
   }
   catch
   {
    return null;
   }
  }

  public string Key
  {
   get
   {
    return mKey;
   }
   set
   {
    mKey = value;
   }
  }

  public string Salt
  {
   // Salt value

   get
   {
    return mSalt;
   }
   set
   {
    mSalt = value;
   }
  }
  #endregion
 }
 #endregion

 #region Hash Class...
 
 /// <SUMMARY>CHashProtector is a password protection 

 /// one way encryption algorithm</SUMMARY>

 /// Chidi C. Ezeukwu

 /// <WRITTEN>May 16, 2004</WRITTEN>

 /// <UPDATED>Aug 07, 2004</UPDATED>

  
 public class Hash
 {
  #region Private member variables...

  private string mSalt;
  private HashAlgorithm mCryptoService;

  #endregion

  #region Public interfaces...

  public enum ServiceProviderEnum: int
  {
   // Supported algorithms

   SHA1, 
   SHA256, 
   SHA384, 
   SHA512, 
   MD5
  }

  public Hash()
  {
   // Default Hash algorithm

   mCryptoService = new SHA1Managed();
  }

  public Hash(ServiceProviderEnum serviceProvider)
  { 
   // Select hash algorithm

   switch(serviceProvider)
   {
    case ServiceProviderEnum.MD5:
     mCryptoService = new MD5CryptoServiceProvider();
     break;
    case ServiceProviderEnum.SHA1:
     mCryptoService = new SHA1Managed();
     break;
    case ServiceProviderEnum.SHA256:
     mCryptoService = new SHA256Managed();
     break;
    case ServiceProviderEnum.SHA384:
     mCryptoService = new SHA384Managed();
     break;
    case ServiceProviderEnum.SHA512:
     mCryptoService = new SHA512Managed();
     break;
   }
  }

  public Hash(string serviceProviderName)
  {
   try
   {
    // Set Hash algorithm

    mCryptoService = (HashAlgorithm)CryptoConfig.CreateFromName(
      serviceProviderName.ToUpper());
   }
   catch
   {
    throw;
   }
  }

  public virtual string Encrypt(string plainText)
  {
   byte[] cryptoByte =  mCryptoService.ComputeHash(
       ASCIIEncoding.ASCII.GetBytes(plainText + mSalt));
   
   // Convert into base 64 to enable result to be used in Xml

   return Convert.ToBase64String(cryptoByte, 0, cryptoByte.Length);
  }

  public string Salt
  {
   // Salt value

   get
   {
    return mSalt;
   }
   set
   {
    mSalt = value;
   }
  }
  #endregion
 }
 #endregion

}

I wish to express my sincere gratitude to Frank Fang; his selfless efforts inspired me to write the first edition of this article and code. I learned a lot from his few mistakes. I am also grateful to Furty for his comments that actually gave birth to the second edition. He wants me to follow best practices, and make the encrypted text harder to decode. Certainly, he is not a friend of hackers. :)

Finally, I can�t prove that there is no error in this code, that is impossible; I can only prove that a bug exists. However, I have found none at this time. Please test as much as you can and report as many errors as you can find. Thanks!

Points of Interest

Writing this code has helped me to understand more clearly the underlying concept of the .NET cryptographic APIs. As you may have observed, I did a simple arithmetic to get a valid size for any key you wish to use! If your key is less than minimum size, it will be filled up with asterisk(*), if it is more than maximum size, then it will be truncated to the maximum allowable size. Just try it out.

License

This article has no explicit license attached to it but may contain usage terms in the article text or the download files themselves. If in doubt please contact the author via the discussion board below.

A list of licenses authors might use can be found here

About the Author

Chidi Ezeukwu

Member

I hold a masters degree in Applied Computer Science from the Vrije Universiteit Brussels (VUB), Belgium. I also hold a bachelors degree in Electronic Engineering.

I am a Microsoft Certified Solution Developer (MCSD.NET) with more than 7 years hands-on experience in enterprise software systems design and development.

When I am not programming, I like dancing, watching movies, playing soccer or scrabble.

Occupation:	Web Developer
Location:	Canada

Other popular Cryptography & Security articles:

Understanding .NET Code Access Security
A full length article on .NET Code Access Security
Hiding a text file in a bmp file
How to hide a text file in a bmp file
.NET Encryption Simplified
A simple, string-oriented class for symmetric encryption, asymmetric encryption, and hashing.
Using XML Digital Signatures for Application Licensing
Use XML Digital Signatures for a request- and signing-based licensing mechanism for your applications.
Strong Names Explained
.NET Strong Name technology explained

Article Top

You must Sign In to use this message board.

FAQ
Noise Tolerance Layout Per page

Msgs 1 to 16 of 16 (Total in Forum: 16) (Refresh)

FirstPrevNext

Return "Null" for 1st Decrypted value

Member 4403813

10:01 20 Oct '08

Hi Chidi,

I tried your code to decrypt the DES encrypted value with the secret key I have. I have 15 characters for the secret key and in your code, it will extract any xtra character greater that the legal key size. So 15 characters for secret key becomes 8 characters and it decrypts the encrypted value but return "null" for the value. For the second encrypted value, it returns an error for the "System.FormatException: Invalid character in a Base-64 string". Can you tell why is it and how do I solve it? Thanks

Tony Selke

8:13 27 Sep '07

You may also be interested in looking at the following, related Code Project articles:

Generic SymmetricAlgorithm Helper[^]
This is a generic helper class that exposes simplified Encrypt and Decrypt functionality for strings, byte arrays and streams for any SymmetricAlgorithm derivative (DES, RC2, Rijndael, TripleDES, etc.).

Making TripleDES Simple in VB.NET and C#[^]
This is a simple wrapper class that provides an easy interface for encrypting and decrypting byte arrays and strings using the 3DES algorithm.

2.00/5 (1 vote)

Generating Fixed-Length Hashes / Encryptions

Tim McCurdy

6:47 2 Aug '06

Is there a way to generate a Hash and / or Encryption that will always result to a fixed length string? For example, I want to store a hash in the database for passwords but I need to know the length of the column to make.
Sign In·View Thread·PermaLink	1.50/5 (2 votes)

System.FormatException: Invalid length for a Base-64 char array.

vicms

23:20 23 Jun '05

I'm trying to use this class to encrypt some data that will be passed as QueryString to a web page. The problem is on the receiving web page, when I do :
Dim data as string = crypt.Decrypt(request.querystring("encryptedmessage"))

it always fails with:
Exception Details: System.FormatException: Invalid length for a Base-64 char array.
Source Error:
Line 180: {
Line 181: // Convert from base 64 string to bytes
Line 182: byte[] cryptoByte = Convert.FromBase64String(cryptoText);
Line 183: byte[] keyByte = GetLegalKey();
Line 184:

3.00/5 (2 votes)

Re: System.FormatException: Invalid length for a Base-64 char array.

DevGuruDude

10:57 28 Nov '06

any "+" chars in the encryption string are likely being treated as spaces. so do something like this: dim enCrypted as string = request.querystring("encryptedmessage")) enCrypted = enCrypted.Replace(" ", "+") dim data as string = crypt.Decrypt(enCrypted)
Sign In·View Thread·PermaLink	5.00/5 (2 votes)

Need similar solution. Will pay $150

thomastom

14:32 2 Jun '05

I have a similar problem where I need a VB6 CryptoAPI project converted to work with C# on both the desktop framework and the compact framework 1.1

VB6 project can be found here http://engo.com/VB6Encrypt.zip

My contact info is in the Readme.txt file

We exchange data between enviroments so the encryption/decryption must be the same.

This is worth $150 to me for the 1st person to provide this.

Thanks

Tom

1.00/5 (1 vote)

is the key generation standard?

taherz

7:38 8 Jan '05

i encrypted some string using your class and saved it to a file.. everything was ok

i used another class for c++: <a href="http://www.codeproject.com/cpp/aes.asp">http://www.codeproject.com/cpp/aes.asp</a>[<a href="http://www.codeproject.com/cpp/aes.asp" target="_blank" title="New Window">^</a>] to load the encrypted file and decrypt it from c++.. im setting everything like setting CBC mode and tried all combinations of blocksizes and keysizes which are 16,24,32.. and had the IV equal with both classes:

<code>mCryptoService.IV = new byte[] {0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41, 0x41};</code>

and the IV is: "AAAAAAAAAAAAAAAA" in the c++ class.. now he creates the key like this

<code>oRijndael.MakeKey("1234567890123456", "AAAAAAAAAAAAAAAA", keysize, blocksize);</code>

i even made sure it is in CBC mode:

<code>oRijndael.Encrypt(szDataIn, szDataOut, 48, CRijndael::CBC);</code>

i even tried 2 other implementations of AES in c++.. i never get the decrypted data back.. what i get back is only illegal characters..

do you have your own method of creating the key? it should be standard right? i mean all AES classes must generate say key when they get the original key and the IV.. or am doing something wrong here? thanks for the help in advance!

Support for Unicode

Jakob Røjel

20:12 21 Dec '04

Since my last name contains a special Danish character (Ø) , I always test with special characters. So I modified the code to read (on the appropriate places) UnicodeEncoding.Unicode.GetBytes(mSalt)); UnicodeEncoding.Unicode.GetBytes(plainText); new StreamReader(cs,System.Text.Encoding.Unicode); UnicodeEncoding.Unicode.GetBytes(plainText + mSalt)); /Jakob
Sign In·View Thread·PermaLink	2.00/5 (1 vote)

GetLegalIV

Steven Campbell

3:25 11 Aug '04

The purpose of an IV is to be a random vector that causes the result of the encryption to differ each time you do the operation. By hardcoding the IV, you have weakened your encryption substantially, to the point of being useless. (The IV should be randomly generated each time). my blog
Sign In·View Thread·PermaLink	1.57/5 (3 votes)

Re: GetLegalIV

Furty

18:47 11 Aug '04

Steven Campbell wrote:
By hardcoding the IV, you have weakened your encryption substantially, to the point of being useless.

I have to disagree with the severity of this statement - having a hard-coded initialization vector will provide a hacker with a starting point for brute force attacks, but it by no means renders the cryptography algorithm useless. In fact, the subject of both IVs and SALTs have similar problems - if I know your SALT I also know how to hash my dictionary attacks..

Ideally both the SALT and IV would be randomly generated for each encryption session for maximum strength but the problem then arises on how to distribute these 2 additional fields with the encrypted data.

The most common method for transmitting this data in the commercial products I've looked into are to save the raw SALT and/or IV bytes as binary data at the beginning of the data stream along with other header info such as the algorithm used, the key sizes, etc. The problem with this methodology is that so long as I can encrypt my own test data with your software I will eventually be able to figure our your headers and once again have the SALT and IV - so we're back to square one..

So how do we send the SALT and IV bytes securely?

Possibly the simplest way is to use 3 passphrases for each encryption job: 1 that gets hashed to become the SALT, 1 that gets hased to become the IV, and the last one gets hashed to become the key.

Another method is to envelope the SALT and IV (even the key) with an Assymetric algorithm, but this requires distribution of a public key, so it's not a simple matter of remembering passphrases.

Anyways, there's enough food for thought Smile

4.57/5 (3 votes)

Re: GetLegalIV

Chidi Ezeukwu

14:53 12 Aug '04

Thanks to Steven and Furty! I understand that IV is not a second private key, and that it is only relevant for encryption.

I think Steven is right on the hardcoding of IV. However, I beg to differ with him on the point that the code is useless. You still need to know the key and SALT to be able to decrypt.

I will update the code at a later time. Thanks a lot for your comments.

Winners are ex-losers who got mad. - Van Crouch

Re: GetLegalIV

Steven Campbell

4:07 13 Aug '04

There must be a much higher standard for security and encryption code, because it always represents an area that has been identified as sensitive in nature. It is a potential weak point in the system, and one at which any attacks are likely to be directed.

A false sense of security because of poorly implemented cryptography is almost as bad as not having no encryption at all. This is why I am so critical of the code -- code that deals with security must be of a higher standard. Furthermore, when you publish code, you are presenting it up there as an example of best practices.

The whole idea of using a weak key + a salt to create a strong key is questionable at best. It requires you to store and protect 2 pieces of information, when you would be better off just storing a strong key to begin with. I suggest breaking off the code that "strengthens keys" into a separate class, and leave your encryption code uncluttered by that stuff.

Another problem point in the code:
* padding keys. Besides weakening the key, the code that does this in your code is completely pointless, because you are specifying the length when you use PasswordDeriveBytes!

my blog

Re: GetLegalIV

Anonymous

5:59 13 Aug '04

Thanks Steven. I will take all your comments into consideration in the next edition.
Sign In·View Thread·PermaLink

Re: GetLegalIV

Steven Campbell

17:33 27 Oct '04

Actually, I was mistaken. You do need to keep the IV! Oops. my blog
Sign In·View Thread·PermaLink

byte[] GetLegalKey(string key)

Furty

16:37 30 May '04

The method you are using the generate the Key bytes does not follow best practices - for the best security you should be using the PasswordDeriveBytes method, which SALTs passwords properly, and is located in the System.Security namespace. Hope this helps.
Sign In·View Thread·PermaLink	3.00/5 (2 votes)

Re: byte[] GetLegalKey(string key)

Chidi Ezeukwu

17:39 30 May '04

Of course, it helps. Although my primary aim was to write a working code that generates a valid key for all the algorithms, I will try to modify the code in line with the best practices. Thanks Furty! Winners are ex-losers who got mad. - Van Crouch
Sign In·View Thread·PermaLink	3.50/5 (4 votes)

Last Visit: 23:36 8 Nov '09 Last Update: 23:36 8 Nov '09

General News Question Answer Joke Rant Admin

PermaLink | Privacy | Terms of Use
Last Updated: 12 Aug 2004
Editor: Nishant Sivakumar