Hi there o/, A friend and me are working on a Java Game with a client/server - architecture. It is working well, but i ran into a problem. We use TCP Sockets for networking between server and client. Our network protocol isnt encrypted and can just be read by anone who bothers to watch the stream. We thought about how we could apply s...
I'm building a web service which takes credentials for other services and polls these on the users behalf. Ie - consider an email aggregation service - polls your accounts at various different email providers, and collates them in a single list. In this scenario, passwords provided by the user must be able to be decrypted by the webapp...
I am working on the security design for a new application at my company. We are using the Windows Identity Foundation framework. I have a logon application that issues a token to a user who successfully authenticates. The token is then used to access the new application. Of course, this happens transparently to the user. The WIF fra...
I have created an application in which I have used base64 encoding and save the user password into NSUSerDefaults, But somehow another iPhone developer breaks that password. I wonder how could he got NSUserDefaults Data? Does someone knows how to stop this critical thing and also how he had got the NSUserDefaults Data. Also what is the b...
we need to encrypt the emails that contain PDFs that are coming from our laboratory management system to our clients. we do not have access to our clients machines. we dont want to issue everyone passwords because 1. they might forget it, 2. we dont want them to have to enter the password every time they view the PDF. is there a free or ...
I am trying to create a view to transparently handle encryption of a BLOB column. I am using the approach described here. Background NOTE There was a comment by @tc, asking why I am trying to encrypt this, since the encryption key is then stored (in plain text) in the code. I have a requirement to encrypt the data a...
I've created this program that can encrypt a found file and then it can be decrypted later via the CryptDecrypt function. The function succeeds but instead of decrypting the file back to plain text it makes the file look even more encrypted. I've put both the CryptEncrypt function and CryptDecrypt function so you can have a more less vie...
I am currently in the process of coming up with a PKCS#11 library with minimal functions such that my legacy HSM is able to support the Oracle database 11g transparent data encryption (TDE). I do not want to come up with the complete PKCS#11 library with all the functions since all I need is to support Oracle database. In addition, codin...
I've created this program that can encrypt and decrypt a found file. I've got the encryption part working fine, and its seems to me that the encryption key is exported as a tmp file. The problem is when I'm importing the session key for decryption that is where the CryptImportKey fails and so does CryptDecrypt fails too. Can someone plea...
How can I encrypt & decrypt binary files in C using OpenSSL? I have a test program that encrypts and then decrypts the input it's given. I executed my test program for text files, and the output is the same as the input, but when I execute my test program on a binary file the output is not the same as the input. ...
I'm creating an application that encrypts data with a key that is created each time the user logs into the app. However, there are times when data will be received via a BroadcastReceiver that needs encrypting, but the user is not logged in and so the encryption key is not available. Security is pretty important and so using a key stored...
In a similar vein to my previous question - I'm not a very experienced PHP Programmer. I know nothing about Sessions or Security (other that what I learnt an hour ago about md5 and sha1 with salt). I have a login system, and I wish to create a session that stores and encrypted string of a user's username mixed with a timestamp. I know ...
I have to implement something similar to PayPal IPN / Return URL. In my scenario , PayPal Gateway => My Server && Online Store => My Customer I have to push a very small piece of information through the Return URL in an encrypted format. I would like to generate something like Public Key and Private Key for each customer, and give the P...
Hi All, Why is it that I see the same hash value generated when I use different algorithms for viewstate encryption. I have added below lines to the web.config file pages viewstateEncryptionMode="Always" enableViewStateMac="true".../> machineKey validationKey="AutoGenerate,IsolateApps" decryptionKey="AutoGenerate,IsolateApps" validat...
Okay, I'm totally new to Python, so I decided to make a simple app. Here is my encryption function: from Crypto.Cipher import AES def encPass(login, password): keyPhr=os.environ['HOME']+login hashObj = hashlib.md5() hashObj.update(keyPhr) keyPhr=hashObj.hexdigest() keyObj=AES.new(keyPhr) encPwd=keyObj.encrypt(pas...
If a general fault is raised on my service endpoint the fault response is undesirably and unexpectedly encrypted. I have created an endpoint with a custom binding for interoperability reasons with a java spring framework set up with transport security with signature only over soap 1.1. <service behaviorConfiguration="MyProject.We...
I have a simple application which takes a text and password, generates a text writes it in a file then tries to retrieve it and decrypt it. Before the encryption the 'pad' is generated which is a string generated from the password with the length of the text. The problem comes in when I try to retrieve the text, because no matter how I t...
I need to hash a message into a string of 30 chars. What's the best and most secure hash function for this usage? ...
I use some code to encrypt & decrypt string in C# but i want a good one that can generate encrypted string that contain only letters or numbers not any other ( + , / , ...) Is there good one for that ? ...
How can I encrypt the source code of PHP Files? I have used some proprietary software which have their source code encrypted. Plus the encryption code also makes the execution faster. How can this be done? ...