Home | Contact Us | FAQ | Search & Site Map | Link to Us
Sign In | Join | Other 45 Sites in Network
HomeAnnouncementsFree MagazinesWhite PapersSubmit Content
Discussion GroupsASP.NETWindows FormsLanguages.NET FrameworkVisual Studio.NET
Articles.NET FrameworkASP.NETToolsWindows Forms
.NET DirectoryOpen Source ProjectsUser GroupsWeb Resources
Related Topics
Visual Basic 6SQL ServerMS AccessOther DB ProductsMS Server ProductsMore Topics ...
.NET Forum / .NET Framework / Security / August 2007

Tip: Looking for answers? Try searching our database.

Backing up and restoring encryption key

Thread view: 
Enable EMail Alerts  Start New Thread
Thread rating: 
Matt P - 30 Aug 2007 13:34 GMT
I am using User Level DPAPI encryption in a C# .net 2.0 Application. If i
need to move the application to another machine how can i move the encryption
key over.

The encrypted data is stored in a database on another machine.

I was under the impression that as long as i use the same username and
password on another machine i would still be able to decrypt my data, but
when i tried it failed.

Is it possible to backup the user key and restore it?
Reply to this Message
Dominick Baier - 30 Aug 2007 18:43 GMT
You have to use romaing profiles to be able to share the key between machines
- this of course only works in domains..

-----
Dominick Baier (http://www.leastprivilege.com)

Developing More Secure Microsoft ASP.NET 2.0 Applications (http://www.microsoft.com/mspress/books/9989.asp)

> I am using User Level DPAPI encryption in a C# .net 2.0 Application.
> If i need to move the application to another machine how can i move
[quoted text clipped - 7 lines]
>
> Is it possible to backup the user key and restore it?
Reply to this Message
Matt P - 31 Aug 2007 09:04 GMT
Thanks Dominick.

From a disaster standpoint, i am wondering if it is possible to backup the
keys and store them somewhere safe, i.e. off site.

> You have to use romaing profiles to be able to share the key between machines
> - this of course only works in domains..
[quoted text clipped - 15 lines]
> >
> > Is it possible to backup the user key and restore it?
Reply to this Message
Dominick Baier - 31 Aug 2007 21:58 GMT
Not that i am aware of. And this is not the intended usage of DPAPI - if
you need "real" keys - use RSACryptoServiceProvider or certificates

-----
Dominick Baier (http://www.leastprivilege.com)

Developing More Secure Microsoft ASP.NET 2.0 Applications (http://www.microsoft.com/mspress/books/9989.asp)

> Thanks Dominick.
>
[quoted text clipped - 20 lines]
>>>
>>> Is it possible to backup the user key and restore it?
Reply to this Message

Free Magazines

Get these publications absolutely FREE for up to 12 months. There are no hidden fees and no obligation. Simply choose a title, complete the application form and submit it. Read more ...

Oracle MagazineNetwork ComputingComputer WorldBio-IT WorldeWeekInformation WeekInfosecurity
 
Sign In
Join
My Latest Posts
My Monitored Threads
My Blog
My Photo Gallery
My Profile
My Homepage
Start New Thread
Enable EMail Alerts
Rate this Thread



©2008 Advenet LLC   Privacy Policy - Terms of Use
This website includes both content owned or controlled by Advenet as well as content owned or controlled by third parties.