passwordvault | 易学教程

PasswordVault security when used from Desktop app

阅读更多关于 PasswordVault security when used from Desktop app

问题 I'd like to use Windows.Security.Credentials.PasswordVault in my desktop app (WPF-based) to securely store a user's password. I managed to access this Windows 10 API using this MSDN article. I did some experiments and it appears that any data written to PasswordVault from one desktop app (not a native UWP app) can be read from any other desktop app. Even packaging my desktop app with Desktop Bridge technology and thus having a Package Identity does not fix this vulnerability. Any ideas how to

PasswordVault security when used from Desktop app

阅读更多关于 PasswordVault security when used from Desktop app

Check if PasswordVault/credential manager has app data at load

阅读更多关于 Check if PasswordVault/credential manager has app data at load

问题 Hey I'm using PasswordVault for storing user credentials in my windows 8 app. What I want the app to do on loading is check to see if the PasswordVault/credential manager already has a stored value for my app. if it don't don't I want it to stay on the page so the user can login, but if the credentials are already there then I would like it to go straight to page 2. I tried using the following code: private Windows.Security.Credentials.PasswordCredential GetCredentialFromLocker() { Windows

To what degree is PasswordVault securing and isolating data?

阅读更多关于 To what degree is PasswordVault securing and isolating data?

问题 I am considering using PasswordVault to store a sensitive piece of data in my Windows Store app. I have already done some basic research around examining the protection this class provides. I wrote two sample applications, the first writes a bit of data to the vault and the second tries to get that data. It appears that even though the second application is using the same key as the first app used in saving the data; the second app cannot retrieve that data. This is good. Does anybody know

Can I add custom properties to PasswordCredential.Properties?

阅读更多关于 Can I add custom properties to PasswordCredential.Properties?

问题 In WinRT API there is Windows.Security.Credentials namespace which contains the PasswordCredential class. Using it we can encrypt sensitive data like user names and passwords but the class itself has a property named "Properties" which looks to me like a handy container for other custom properties somehow related to the stored credential but I can't get it to work. There is a "Read-only" access type for the "Properties" in the documentation but I thought that meant only that I can't change

Best practice for saving sensitive data in Windows 8

阅读更多关于 Best practice for saving sensitive data in Windows 8

What's the best way of saving sensitive data to a local file in Windows 8? I'm developing a C# application that needs to store oAuth tokens/passwords. I've heard it was common in .NET to encrypt/decrypt data, but I don't have any experience with those mechanics. Is encryption still recommended/neccesary given that Windows 8 apps have their own personal/protected storage area similar to Windows Phone? Also, doesn't encrypting/decrypting each time when you request the data causes a performance issue? (would it be better to write a custom/lite algorithm?) UPDATE: Please be aware that while modern

How to access the stored credentials (PasswordVault?) on Win7 and Win8?

阅读更多关于 How to access the stored credentials (PasswordVault?) on Win7 and Win8?

I just discovered that Win8 has a section on the Control Panel called User Accounts and Family Safely with Credential Manager . I'd like to access the credentials stored in there (not to retrieve the passwords but to use them as tokens for a login). So, basically, I'd like to get a piggy-back ride on already installed software. The closest to a solution has been suggested in this discussion and it's not that close. Where do I find the assembly for Windows.Security.Credentials.PasswordVault ? I've been googling for two hours but I only get information on app development while I'll be targeting

Best practice for saving sensitive data in Windows 8

阅读更多关于 Best practice for saving sensitive data in Windows 8

问题 What's the best way of saving sensitive data to a local file in Windows 8? I'm developing a C# application that needs to store oAuth tokens/passwords. I've heard it was common in .NET to encrypt/decrypt data, but I don't have any experience with those mechanics. Is encryption still recommended/neccesary given that Windows 8 apps have their own personal/protected storage area similar to Windows Phone? Also, doesn't encrypting/decrypting each time when you request the data causes a performance

How to access the stored credentials (PasswordVault?) on Win7 and Win8?

阅读更多关于 How to access the stored credentials (PasswordVault?) on Win7 and Win8?

问题 I just discovered that Win8 has a section on the Control Panel called User Accounts and Family Safely with Credential Manager . I'd like to access the credentials stored in there (not to retrieve the passwords but to use them as tokens for a login). So, basically, I'd like to get a piggy-back ride on already installed software. The closest to a solution has been suggested in this discussion and it's not that close. Where do I find the assembly for Windows.Security.Credentials.PasswordVault ?