Re: Password

Tech-Archive recommends: Repair Windows Errors & Optimize Windows Performance

From: David Lowndes (davidl_at_example.invalid)
Date: 04/30/04 

Date: Fri, 30 Apr 2004 17:38:13 +0100

>I'm using a password to access certain dialogs and was wondering what people have done when using passwords. I was thinking of storing and retrieving it from the registry or a text file. Would appreciate opinions on these or alternative methods.
>

Macca,

Wherever you store it, you want to encrypt it. For newer operating
systems you could use DPAPI (see MSDN), for older OS's you'll need to
roll your own using some encryption library.

Dave 

--
MVP VC++ FAQ: http://www.mvps.org/vcfaq

Relevant Pages

  • RE: Decryption using private key from cert store failing with err
    ... I had already looked up the error in MSDN and none of the reasons seemed ... > "The data to be decrypted is invalid. ... when a block cipher is ... If you want to make a simple test, you may encrypt this ...
    (microsoft.public.platformsdk.security)
  • Re: Web.config Security
    ... You can encrypt portions of your web.config using the aspnet_setreg utility ... (search for it on msdn). ... you need to set up strong ACLs on this ... Microsoft MVP - Windows Client ...
    (microsoft.public.security)
  • Re: usb token
    ... from the diagram (from the same msdn page), ... is randomly generated and used to encrypt the message. ... It's a clearer picture to me now that i realised that the session key ... private key stored in the token is used for encrypting the seesion ...
    (comp.security.misc)
  • Re: Encryption Key Question
    ... Here's a very quick explanation of how DPAPI works in Windows. ... > used to encrypt the user's secrets. ... the master key can not be decrypted. ... > that there are no universal solutions in security. ...
    (Security-Basics)
  • Re: DPAPI implemented in Crypt32.dll
    ... The DPAPI API for encrypting data is CryptProtectData. ... > Encrypt / Decrypt is called from my Visual Basic 6 code. ...
    (microsoft.public.win2000.security)