RE: "correct" way to encrypt a connection string
- From: stcheng@xxxxxxxxxxxxxxxxxxxx (Steven Cheng[MSFT])
- Date: Thu, 14 Dec 2006 09:33:18 GMT
Hello Dave,
As for connectionstring encryption, if you're using ASP.NET 2.0, the
built-in web.config encryption (DPAPI or RSA provider) is certainly the
preferred appraoch. Here are
#How To: Encrypt Configuration Sections in ASP.NET 2.0 Using DPAPI
http://msdn.microsoft.com/library/en-us/dnpag2/html/PAGHT000005.asp?frame=tr
ue
How To: Encrypt Configuration Sections in ASP.NET 2.0 Using RSA
http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnpag2/html
/paght000006.asp
also, this encryption can be applied to normal .net 2.0 application's
app.config file has I've mentioned in the following thread:
http://groups.google.com/group/microsoft.public.dotnet.general/browse_thread
/thread/1bbeeb01ae5ca5c6/70dd27a4598ab060
Sincerely,
Steven Cheng
Microsoft MSDN Online Support Lead
This posting is provided "AS IS" with no warranties, and confers no rights.
.
- Prev by Date: Re: accessing SQL membership provider from a non asp.net application
- Next by Date: Re: ASP.Net security problem after publishing
- Previous by thread: accessing SQL membership provider from a non asp.net application
- Next by thread: RE: "correct" way to encrypt a connection string
- Index(es):
Relevant Pages
|
|
