The CryptoStream wraps an ordinary stream and uses an ICryptoTransform. The CryptoStream have the following key advantages:
– You can use automatic encryption without worrying about the block size required by the algorithm, because the CryptoStream uses buffered access.
– CryptoStream wraps an ordinary .NET stream-derived class and you can easily use …
The ICryptoTransform interface represents blockwise cryptographic transformation which could be an encryption, ecryption, hashing, Base64 encoding/decoding, or formatting operation. You can create an ICryptoTransform object for a given algorithm by using the:
– CreateEncryptor() method – if you want to encrypt data.
– CreateDecryptor() method – if you want to encrypt data.
The next code …
The .NET abstract encryption classes provide the following:
1. They define the basic members that encryption implementations need to support.
2. They offer some functionality through the static Create() method, which you can use to indirectly create …
How to generate cryptographically strong random numbers in C#
You can create strong random number values with the System.Security.Cryptography.RandomNumberGenerator class. You use these random key or salt values when you want to store salted password hashes. A salted password hash is a hash created from a password and a so-called salt where salt is a random value. This guarantees that even if two users select …
Windows supports several types of certificate stores that are called store locations. You can create a separate store for each Windows service of a machine, and every user has a separate certificate store. Certificates are kept securely in those stores. The local machine store is encrypted with a key managed by the local security authority of …
X509 certificates play an important role in the world of the Web, because they establish SSL communication and perform certificate authentication to secure traffic between the web server and its clients. Our site provides more details in the articles How does Secure Sockets Layer (SSL) technology work, How do certificates work and How does SSL work …
How to use the Roles API with Windows authentication in ASP.NET in C#
The roles API ships a provider that integrates with Windows roles for Windows authentication: the WindowsTokenRoleProvider. This provider retrieves the Windows group membership information for the currently logged-on user and provides it for your application. When using the WindowsTokenRoleProvider, you have to configure your application using Windows authentication and then configure the WindowsTokenRoleProvider as follows:
<configuration>
How to perform authorization checks for Role-Based authorization in ASP.NET in C#
When you enable the roles API, by following the approach described in the article How to use Roles API for Role-Based Authorization in ASP.NET, the RoleManagerModule automatically creates a RolePrincipal instance. This instance contains both the authenticated user’s identity and the roles of the user. The RolePrincipal is a custom implementation of IPrincipal, which is the …
You can use declaratively the PrincipalPermission attribute, in your code, when you want to validate the current user’s credentials. You can attach it to a given class or method and the CLR checks it automatically when the corresponding code runs. In this case time you cannot catch the exception within the function on which the attribute …
How to use PrincipalPermission objects to evaluate authorization roles in ASP.NET in C#
You can use the PrincipalPermission approach described in the article How to use the PrincipalPermission Class to check authorization in ASP.NET in C# to evaluate more complex authentication rules.
For example, your application can have three users User1 , User2 and User3. By using the approach described in the article How to use IsInRole method …