PRO9RAMMING » . . : Programming & Scripting : . . » C#
CipherLite.NET

Post Reply 
 
Thread Rating:
  • 0 Votes - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
CipherLite.NET
01-29-2010, 06:54 AM
Post: #1
Back_track Online
using System.Pro9ramming;
*******
 		Posts: 726
Joined: Jun 2009
Reputation: 9
Keyman
CipherLite.NET
CipherLite.NET™

CipherLite.NET™ can be used to encrypt and decrypt database connection strings and other sensitive .NET application settings stored in configuration (.config) files. In addition to encryption, CipherLite.NET™ provides facilities for hashing data and verifying data hashes.

How does it work?

CipherLite.NET™ comes with a GUI tool allowing application administrators to encrypt application settings (the tool can also be used to decrypt data). Once encrypted, application settings can be stored in the application configuration files (Windows® registry or other storage media). Applications can retrieve encrypted values from the configuration files and decrypt them with the help of the CipherLite.NET™ library. [See a detailed example...]

In addition to encryption and decryption, CipherLite.NET™ offers a capability to generate password (and other) hashes, which can be used for user authentication or other purposes.

Technology

CipherLite.NET™ is a .NET application. It encrypts and decrypts data using the Rijndael (AES) symmetric key algorithm, as well as DPAPI. The product supports several hashing algorithms including MD5, SHA-1, SHA-256, SHA-384, SHA-512, HMAC SHA-1, and others.

Disclaimer

As with any other security product, you must understand the limitations of CipherLite.NET™. The major problem with CipherLite.NET™ is that when used for symmetric key encryption (with the Rijndael/AES key) it requires the caller application to keep the password used to generate the cryptographic key. Depending on how you choose to implement password management, your data can be at risk. For example, when embedding the password in the application source code, be aware that if your application is reverse engineered, the password can be easily discovered. This is especially true if the application assembly is not obfuscated. Also, having an administrator, who performs encryption, to know the password can cause anything from inconvenience to security threat. If you are looking for a different approach to protecting secret data, check our CipherSafe.NET™ product, which addresses some of these issues.

Requirements

CipherLite.NET™ imposes the following requirements:

* The product will run on Windows® NT 4.0 SP 6a or higher (i.e. 2000, XP) with .NET Framework 1.0 and later; it will not run on non-Windows platforms, Windows® 95, 98, or ME, or systems without .NET runtime.
* Product installation program requires Microsoft® Installer (MSI) 2.0 or higher.


http://www.obviex.com/Downloads/

Lite versions are free
Visit this user's website Find all posts by this user
Quote this message in a reply
Post Reply 


Forum Jump:


 Quick Theme:


Contact Us | PRO9RAMMING | Return to Top | Return to Content | Lite (Archive) Mode | RSS Syndication