A CAPTCHA Control for ASP.NET 2

Farshid Zavareh

Rate me:

4.86/5 (55 votes)

14 Mar 2008LGPL35 min read

358.8K

5.6K

174

A CAPTCHA control that is simple, secure, and easy to use.

captchanet_2_ver2.zip
- App_Code
  - CaptchaImage.cs
  - Cryptography
- Captcha.ashx
- Control
  - Captcha.ascx
  - Captcha.ascx.cs
- Default.aspx
- Default.aspx.cs
- ReadMe.txt
captchanet_2_src.zip
- CaptchaImage.cs
- Encryptor
  - Encryptor.cs
  - RandomText.cs
- Captcha.ashx
- Captcha.ascx
- Captcha.ascx.cs
- Default.aspx
- Default.aspx.cs
- ReadMe.txt

using System;
using System.Security.Cryptography;
using System.Text;
using System.IO;

namespace SecureCaptcha.Security.Cryptography
{
    /// <summary>
    /// Provides methods for encrypting and decrypting clear texts.
    /// </summary>
    public static class Encryptor
    {
        /*
         * This code is written using an article at the URL bellow. Check it for full
         * code and comments.
         * From: The Code Project
         * Article: Simple encrypting and decrypting data in C#
         * By: DotNetThis
         * At: http://www.codeproject.com/dotnet/DotNetCrypto.asp
         */
        /// <summary>
        /// Encrypts a clear text using specified password and salt.
        /// </summary>
        /// <param name="clearText">The text to encrypt.</param>
        /// <param name="password">The password to create key for.</param>
        /// <param name="salt">The salt to add to encrypted text to make it more secure.</param>
        public static string Encrypt(string clearText, string password, byte[] salt)
        {
            // Turn text to bytes
            byte[] clearBytes = Encoding.Unicode.GetBytes(clearText);
            PasswordDeriveBytes pdb = new PasswordDeriveBytes(password, salt);

            MemoryStream ms = new MemoryStream();
            Rijndael alg = Rijndael.Create();

            alg.Key = pdb.GetBytes(32);
            alg.IV = pdb.GetBytes(16);

            CryptoStream cs = new CryptoStream(ms, alg.CreateEncryptor(), CryptoStreamMode.Write);

            cs.Write(clearBytes, 0, clearBytes.Length);
            cs.Close();

            byte[] EncryptedData = ms.ToArray();

            return Convert.ToBase64String(EncryptedData);
        }
        /// <summary>
        /// Decrypts an encrypted text using specified password and salt.
        /// </summary>
        /// <param name="cipherText">The text to decrypt.</param>
        /// <param name="password">The password used to encrypt text.</param>
        /// <param name="salt">The salt added to encrypted text.</param>
        public static string Decrypt(string cipherText, string password,
            byte[] salt)
        {
            // Convert text to byte
            byte[] cipherBytes = Convert.FromBase64String(cipherText);

            PasswordDeriveBytes pdb = new PasswordDeriveBytes(password, salt);

            MemoryStream ms = new MemoryStream();
            Rijndael alg = Rijndael.Create();

            alg.Key = pdb.GetBytes(32);
            alg.IV = pdb.GetBytes(16);

            CryptoStream cs = new CryptoStream(ms, alg.CreateDecryptor(), CryptoStreamMode.Write);

            cs.Write(cipherBytes, 0, cipherBytes.Length);
            cs.Close();

            byte[] DecryptedData = ms.ToArray();

            return Encoding.Unicode.GetString(DecryptedData);
        }
    }
}

By viewing downloads associated with this article you agree to the Terms of Service and the article's licence.

If a file you wish to view isn't highlighted, and is a text file (not binary), please let us know and we'll add colourisation support for it.

License

This article, along with any associated source code and files, is licensed under The GNU Lesser General Public License (LGPLv3)

Written By

Farshid Zavareh

Australia

I'm a Computer Science student at Monash University, Australia.

See my blog at http://blog.farshidzavareh.com

A CAPTCHA Control for ASP.NET 2

License

Comments and Discussions