Re: [ADVANCED-DOTNET] Key storage.

2008-03-24 Thread Robert Lee
with this scenario! -Rob -Original Message- From: Discussion of advanced .NET topics. [mailto:[EMAIL PROTECTED] On Behalf Of Steve Johnson Sent: Thursday, March 20, 2008 5:03 PM To: ADVANCED-DOTNET@DISCUSS.DEVELOP.COM Subject: Re: [ADVANCED-DOTNET] Key storage. On Thu, Mar 20, 2008

Re: [ADVANCED-DOTNET] Key storage.

2008-03-20 Thread Steve Johnson
On Thu, Mar 20, 2008 at 2:25 PM, Robert Lee <[EMAIL PROTECTED]> wrote: > > Thanks for the suggestion. I have a routine that creates a key from a > password, using SHA512. The problem is distributing the password, or the > key. > Right. If you go with the derived key approach, you must derive the

Re: [ADVANCED-DOTNET] Key storage.

2008-03-20 Thread Pardee, Roy
ibute just the public key with your app. HTH, -Roy -Original Message- From: Discussion of advanced .NET topics. [mailto:[EMAIL PROTECTED] On Behalf Of Robert Lee Sent: Thursday, March 20, 2008 1:25 PM To: ADVANCED-DOTNET@DISCUSS.DEVELOP.COM Subject: Re: [ADVANCED-DOTNET] Key storage. Stev

Re: [ADVANCED-DOTNET] Key storage.

2008-03-20 Thread James Geall
rom: Discussion of advanced .NET topics. > [mailto:[EMAIL PROTECTED] On Behalf Of Steve Johnson > Sent: Thursday, March 20, 2008 3:39 PM > To: ADVANCED-DOTNET@DISCUSS.DEVELOP.COM > Subject: Re: [ADVANCED-DOTNET] Key storage. > > I would suggest you either derive the key from a st

Re: [ADVANCED-DOTNET] Key storage.

2008-03-20 Thread Robert Lee
Behalf Of Steve Johnson Sent: Thursday, March 20, 2008 3:39 PM To: ADVANCED-DOTNET@DISCUSS.DEVELOP.COM Subject: Re: [ADVANCED-DOTNET] Key storage. I would suggest you either derive the key from a strong password or encrypt the key using a certificate. -- Steve Johnson On Thu, Mar 20, 2008 at 1:27

Re: [ADVANCED-DOTNET] Key storage.

2008-03-20 Thread Robert Lee
Thanks Adwait, I'll look into that more. -Original Message- From: Discussion of advanced .NET topics. [mailto:[EMAIL PROTECTED] On Behalf Of Adwait Ullal Sent: Thursday, March 20, 2008 3:40 PM To: ADVANCED-DOTNET@DISCUSS.DEVELOP.COM Subject: Re: [ADVANCED-DOTNET] Key storage.

Re: [ADVANCED-DOTNET] Key storage.

2008-03-20 Thread Steve Johnson
I would suggest you either derive the key from a strong password or encrypt the key using a certificate. -- Steve Johnson On Thu, Mar 20, 2008 at 1:27 PM, Robert Lee <[EMAIL PROTECTED]> wrote: > Maybe someone can help shed some light on this subject for me. > > > > I am encrypting several value

Re: [ADVANCED-DOTNET] Key storage.

2008-03-20 Thread Adwait Ullal
Rob, Perhaps you can use a tool like aspnet_setreg or an equivalent to store the key in the registry during install? - Adwait -- Adwait Ullal w: http://www.adwait.com p: (408) 898-2581 On 3/20/08, Robert Lee <[EMAIL PROTECTED]> wrote: > > Maybe someone can help shed some light on this subject

[ADVANCED-DOTNET] Key storage.

2008-03-20 Thread Robert Lee
Maybe someone can help shed some light on this subject for me. I am encrypting several values (using AES) before storing them to an xml file, and I have yet to find an example, or explanation of how to get my key into protected storage the first time. The examples I've seen so far create a rand