encryption

问题 I have an application written in Classic ASP that encrypts data via CAPICOM and stores it in a database. The encryption code looks something like this (Classic ASP, VB. Simplified a bit for brevity): set encryptObject = Server.CreateObject("CAPICOM.EncryptedData") encryptObject.Algorithm.Name = 4 ' 4 is AES encryptObject.Algorithm.KeyLength = ' 0 is MAX encryptObject.SetSecret(sharedSecret) ' sharedSecret was set earlier encryptObject.Content = stringToEncrypt encryptedString = encryptObject

问题 Much searching and reading has not told me whether the capicom.encrypteddata class module (it's VB6, but that shouldn't matter in answering this question) is using 2-key 3DES or 3-key 3DES. ( .Algorithm.Name = CAPICOM_ENCRYPTION_ALGORITHM_3DES ) Anyone know which one it is using? A source of this information would also be helpful. I suspect, since I don't think high enough key lengths are supported, that it is 2DES. But I haven't found acceptable confirmation. 回答1: CAPICOM is a thin wrapper

问题 Much searching and reading has not told me whether the capicom.encrypteddata class module (it's VB6, but that shouldn't matter in answering this question) is using 2-key 3DES or 3-key 3DES. ( .Algorithm.Name = CAPICOM_ENCRYPTION_ALGORITHM_3DES ) Anyone know which one it is using? A source of this information would also be helpful. I suspect, since I don't think high enough key lengths are supported, that it is 2DES. But I haven't found acceptable confirmation. 回答1: CAPICOM is a thin wrapper

问题 I'm trying to encrypt a web app's web.config, but this application exists on 2 different environments (stage, production), each of which should use a different key container. So I'm using this encryption header on my stage config: <configProtectedData defaultProvider="ApplicationProvider"> <providers> <add name="ApplicationProvider" type="System.Configuration.RsaProtectedConfigurationProvider, System.Configuration, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a,

问题 I'm trying to encrypt a web app's web.config, but this application exists on 2 different environments (stage, production), each of which should use a different key container. So I'm using this encryption header on my stage config: <configProtectedData defaultProvider="ApplicationProvider"> <providers> <add name="ApplicationProvider" type="System.Configuration.RsaProtectedConfigurationProvider, System.Configuration, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a,

问题 So I am creating a business management system so the project files will be saved locally on the computer but many can access the computer. In order that no one can just open the files and access all the data, I want the file to be able to open just threw my app. In order to do it, I thought that in order to open the file there will be some constant password, that I will pass the stream so this is the only way the file can open. Is this possible? what should I change in order to do it in the

问题 So I am creating a business management system so the project files will be saved locally on the computer but many can access the computer. In order that no one can just open the files and access all the data, I want the file to be able to open just threw my app. In order to do it, I thought that in order to open the file there will be some constant password, that I will pass the stream so this is the only way the file can open. Is this possible? what should I change in order to do it in the

问题 I am trying to protect dlls I'm using in my WPF application from a simple copy. My solution is to encrypt the code section of these dlls and decrypt when it loads into my application. There is a working way to do that using Assembly: using (FileStream fs = new FileStream(@"Mydll.dll", FileMode.Open, FileAccess.Read)) { byte[] file = new byte[fs.Length]; fs.Read(file, 0, (int) fs.Length); assemblyCashCode = Assembly.Load(file); Type[] types = assemblyCashCode.GetExportedTypes(); Type t =

问题 I am trying to protect dlls I'm using in my WPF application from a simple copy. My solution is to encrypt the code section of these dlls and decrypt when it loads into my application. There is a working way to do that using Assembly: using (FileStream fs = new FileStream(@"Mydll.dll", FileMode.Open, FileAccess.Read)) { byte[] file = new byte[fs.Length]; fs.Read(file, 0, (int) fs.Length); assemblyCashCode = Assembly.Load(file); Type[] types = assemblyCashCode.GetExportedTypes(); Type t =

问题 I am developing a .net web api project and need to store usernames and passwords salted and hashed in a users table. How would I authenticate the user if the username and password fields are random hashed in the users table and the salts are stored in the same row for the user? Am I missing something? It seems as if I would have no way to find the user to do a password comparison. 回答1: They are not random hashed per se. They are hashed against the same key. As a result, to authenticate, you