Encrypting config files for deployment .NET

views:

586

answers:

Encrypting config files for deployment .NET

Hi,

I have a windows service that reads from app.config

I want some settings to be encrypted, however, I don't want to use the ProtectedConfigurationProvider classes provided in .NET because they encrypt files based on the machine they are running on using DPAPI.

What I wanted was a way for our administrator to deploy the config file already encrypted to many machines and have each machine decrypt them when needed.

I don't want to hardcode a password into the assembly either so I'm not sure how I can go about this.

Perhaps your central server can maintains a database of the private keys for all the end points, then it could use the specific machine key for that.

A shared private key for all the machines is not going to be that secure.

Sam Saffron 2009-02-18 05:59:04

there has to be a solution. your right though, a shared private key is the wrong way to go

2009-02-18 06:07:14

You can use user-level RSA keys and export them to each machine. then the config file can be encrypted ahead of time, and the target machines already have the key.

Maslow 2010-10-27 15:16:41

ansaurus

tags:

views:

answers:

Encrypting config files for deployment .NET

related questions