Similarly, if you only intend to run your app against mysql, you might consider using the encryption functions available in mysql:
http://dev.mysql.com/doc/refman/5.0/en/encryption-functions.html -Mike Bernhard Fischer wrote: > Daniel, > > I would prefer to not store the key at all ;o) > > check out http://aspnet.4guysfromrolla.com/articles/112002-1.aspx > > Bernhard > >> Hi list. >> >> My question is not really related to mono. >> >> I'm writing an application that stores passwords in a mysql database. >> I'm using System.Security.Cryptography namespace, and DES simetric >> algorithm. When i create a new instance of DESCryptoServiceProvider the >> key and IV (initialization vector) are generated randomly. After, i use >> these key and IV to crypt and decrypt passwords in the login screen of >> my application. >> >> Well, this system is safe enough to me, but i have the problem that >> where i can to store these key and IV to future use? I could to write IV >> and key in hard code in my custom class, but this is not elegant. Is a >> good idea to store them in the web.config? If not ¿where can be a good >> and safe place to store it? >> >> Any help will be appreciated. >> >> Best regards. >> _______________________________________________ >> Mono-list maillist - [email protected] >> http://lists.ximian.com/mailman/listinfo/mono-list >> > > _______________________________________________ > Mono-list maillist - [email protected] > http://lists.ximian.com/mailman/listinfo/mono-list _______________________________________________ Mono-list maillist - [email protected] http://lists.ximian.com/mailman/listinfo/mono-list
