Tuesday May 3rd

Monday May 2nd

How to: Use strings in a secure manner with SecureString class

The classic System.String type doesn’t provide enough security for storing sensitive data like passwords, credit card numbers or personal information. If a String object contains sensitive information, there is a risk the information could be revealed after it is used because your application cannot delete the data from computer memory. Starting with the .NET Framework 2.0 the SecureString class is available. It was designed to provide encryption for sensitive data and other useful functions.


i had no idea this existed, and i just wrote a damned payment system

Anybody attacking a .NET product will do it by attaching a debugger, so this is all pretty pointless.

Since the key and the ciphertext is in memory, they can just use your own code to decrypt it.

Commenting on Stories is limited for now and will open up to those recommended by the community. Learn how
Loading DotNetKicks...
brought to you by the Kicks Network