claude baillargeon

Why should I use the Cryptography Application Block We shouldn't keep the keys in the code, but in an external file. I do not understand that. It is so easy to get the key with the EntLib configuration tool even if the external file is encrypted with DPAPI.

What is the most secure way to encrypt my files (in a disconnected mode - without network or Internet)

Thanks

Claude




Re: .NET Base Class Library Cryptography Application Block Key Management

Peter Ritchie

See http://www.codeplex.com/entlib for Enterprise Library questions.




Re: .NET Base Class Library Cryptography Application Block Key Management

Martin Xie - MSFT

Cryptography Application Block is flexible and extensible, we can customize encryption arithmetic and solve application encryption issues easily by it.

Cryptography Application Block helps to incorporate cryptography functionality such as encrypting and validating to keep data tamper-proof. The block implements all best practices of cryptography and developers can leverage different cryptography providers by changing the configuration settings even without modifying application code thus maximizing utilization of a specific cryptography algorithm.

Cryptography Application Block in Enterprise Library 2.0

Cryptography Application Block on MSDN.






Re: .NET Base Class Library Cryptography Application Block Key Management

claude baillargeon

I fully understand that. But the key management isn't so clear. I could easily decrypt the key file with the Enterprise Library configuration tool. My end-users will be able to do the same and then be able to decrypt my files.

Could someone let me know how to fully protect my keys !

Thanks.






Re: .NET Base Class Library Cryptography Application Block Key Management

Martin Xie - MSFT

As Peter mentioned, Enterprise Library community is the preferred feedback and support channel for such issues.

You'll need to post it there for better responses.

Thank you Claude for your understanding!

[ As we can see in this document, Microsoft recommends the Enterprise Library Community.]






Re: .NET Base Class Library Cryptography Application Block Key Management

claude baillargeon

Forget the Enterprise Library part of my question. It is not really my problem. Private Key management is a more abstract question that was not introduce by the EntLib team.

Should I keep the key in code and obfuscate my code We used to do that with our VB6 code. I was looking for a cleaner way for our .Net code. We are shipping software to our 12,000 brokers. Our software is a winform app that works without any connectivity.