ansaurus

Question

What's the best way to encrypt short strings in .NET?

Answer 1

+7 A:

TripleDes ?

You can use the System.Security.Cryptography.TripleDESCryptoServiceProvider

Small amount of code to encrypy/decrypt... does exactly what it says on the tin :)

Eoin Campbell 2009-05-10 16:46:43

I agree with you DES is best option for him.

Syed Tayyab Ali 2009-05-10 16:50:23

My only concern with DES is how to do a key exchange securely.

James Black 2009-05-10 22:54:15

This issue (key exchange) applies to any symmetric cipher (of course there are also issues with asymmetric), and the OP explicitly requested symmetric. http://en.wikipedia.org/wiki/Key_exchange is a good place to start, but it's a complex topic.

Matthew Flaschen 2009-05-11 05:08:20

Shouldn't be a problem. It is for exchanging banking details between two internal offices.

2009-05-11 06:51:33

Answer 2

+2 A:

check this encryption tutorial.

Syed Tayyab Ali 2009-05-10 16:49:36

Answer 3

+1 A:

You could just use RSA encryption, since these are short strings, which will make key exchange simpler.

How much you can encrypt with RSA is based on the key length.

I am a fan of the rsa library from bouncy castle.

James Black 2009-05-10 16:52:49

Answer 4

+1 A:

See my post here:

http://stackoverflow.com/questions/202011/encrypt-decrypt-string-in-c

NotDan 2009-05-10 16:53:15

Answer 5

A:

Rot 26, nobody will figure it out.. it's hiding in plain sight!

Mystere Man 2009-05-10 16:55:04

LOL .

Greg B 2009-05-10 17:28:25

Answer 6

+4 A:

TripleDES is a very good option, but you can also consider AesCryptoServiceProvider (AES), which is a modern symmetric cipher.

Matthew Flaschen 2009-05-10 16:58:34

Answer 7

+1 A:

.net security classes:

Hash

* MD5
* MD5Cng
* SHA1
* SHA1Managed
* SHA1Cng
* SHA256
* SHA256Managed
* SHA256Cng
* SHA384
* SHA384Managed
* SHA384Cng
* SHA512
* SHA512Managed
* SHA512Cng

Symmetric Encryption: Uses the same key for encryption and decryption.

* DES
* DESCryptoServiceProvider
* TripleDES
* TripleDESCryptoServiceProvider
* Aes
* AesCryptoServiceProvider
* AesManaged
* RC2
* RC2CryptoServiceProvider
* Rijandel
* RijandelManaged

Asymmetric Encryption: Uses different keys for encryption and decryption.

* DSA
* DSACryptoServiceProvider
* ECDsa
* ECDsaCng
* ECDiffieHellman
* ECDiffieHellmanCng
* RSA
* RSACryptoServideProvider

Ronnie 2009-05-10 16:58:36

That's a very good dump of class names, but most of those have no relevance to the submitter (who wants a /symmetric/ /encryption/ algorithm), not a hash or an asymmetric cipher.

Matthew Flaschen 2009-05-10 17:15:40

Answer 8

+2 A:

Here is encrypt & decrypt function with des3 encryption

''' <summary>
''' Encrypts a memory string (i.e. variable).
''' </summary>
''' <param name="data">String to be encrypted.</param>
''' <param name="key">Encryption key.</param>
''' <param name="iv">Encryption initialization vector.</param>
''' <returns>Encrypted string.</returns>
Public Shared Function Encrypt(ByVal data As String, ByVal key As String, ByVal iv As String) As String
    Dim bdata As Byte() = Encoding.ASCII.GetBytes(data)
    Dim bkey As Byte() = HexToBytes(key)
    Dim biv As Byte() = HexToBytes(iv)

    Dim stream As MemoryStream = New MemoryStream
    Dim encStream As CryptoStream = New CryptoStream(stream, des3.CreateEncryptor(bkey, biv), CryptoStreamMode.Write)

    encStream.Write(bdata, 0, bdata.Length)
    encStream.FlushFinalBlock()
    encStream.Close()

    Return BytesToHex(stream.ToArray())
End Function

''' <summary>
''' Decrypts a memory string (i.e. variable).
''' </summary>
''' <param name="data">String to be decrypted.</param>
''' <param name="key">Original encryption key.</param>
''' <param name="iv">Original initialization vector.</param>
''' <returns>Decrypted string.</returns>
Public Shared Function Decrypt(ByVal data As String, ByVal key As String, ByVal iv As String) As String
    Dim bdata As Byte() = HexToBytes(data)
    Dim bkey As Byte() = HexToBytes(key)
    Dim biv As Byte() = HexToBytes(iv)

    Dim stream As MemoryStream = New MemoryStream
    Dim encStream As CryptoStream = New CryptoStream(stream, des3.CreateDecryptor(bkey, biv), CryptoStreamMode.Write)

    encStream.Write(bdata, 0, bdata.Length)
    encStream.FlushFinalBlock()
    encStream.Close()

    Return Encoding.ASCII.GetString(stream.ToArray())
End Function

Vikram 2009-05-10 17:00:31

Answer 9

A:

Why not just use a SecureString?

Mike Post 2009-05-10 22:38:56

How does that handle serialization/deserialization?

Matthew Flaschen 2009-05-13 05:34:15

Now that I dig deeper, I see that you can't serialize SecureString objects. Bummer.

Mike Post 2009-05-13 07:27:19

Answer 10

A:

DES is pretty much obsolete at this point. Here is the Wikipedia. If you are changing the key a lot, it might be adequate, but if you are relying on a key for a while, AES seems like a better choice.

Of course it is a question of how much protection you need. But AES is build right in there too.

I have used AES for small strings, and it works nice.

What I have read about TripleDES is that since DES is easily crackable, TripleDES is still not substantial.

John Christman 2009-05-11 01:18:15

Actually, Wikipedia (http://en.wikipedia.org/wiki/TripleDES#Security) and NIST (http://csrc.nist.gov/publications/nistpubs/800-57/SP800-57-Part1.pdf) (p. 66), say that TripleDES is expected to be secure until 2030.

Matthew Flaschen 2009-05-13 05:42:22

ansaurus

tags:

views:

answers:

What's the best way to encrypt short strings in .NET?

related questions