Encrypting connection strings in .Net

From: Boris Jurado (boris_jurado_at_hotmail.com)
Date: 05/27/04

  • Next message: Alek Davis: "Re: Encrypting connection strings in .Net" 
    Date: 27 May 2004 13:34:42 -0700

    Hi,

    I have a Web Application, that connects to a SQL Data Base, the
    connection string is hard coded right now. I want to move this
    connection string to my web.config file. What I want to do is encrypt
    the string before I put it in the .config file.

    I don't want to generate my own key, or develop some algoritm. I would
    like to know if Windows have some way to generate an encryption key
    that I can use to encrypt my connection string and let the
    responsability of this key to the OS and no my application.

    Any example, link, hint or explanation is such wellcome.

    Thank you very much!!!

  • Next message: Alek Davis: "Re: Encrypting connection strings in .Net"

    Relevant Pages

    • Re: Encryption of Connection String
      ... Do you know what level of encryption IS applied to the connection string? ... > to the SQL Server via SQL authentication the password is only ... Thus you might have made all this effort to encrypt the ... > Authentication is always the preferred option unless you are using ...
      (microsoft.public.sqlserver.security)
    • ConnectionString encryption decryption
      ... Decrypt function used to encrypt and decrypt the connection string pass to ... at System.EnterpriseServices.Thunk.Proxy.CoCreateObject(Type serverType, ...
      (microsoft.public.dotnet.general)
    • Re: Help Encrypting Connection String
      ... but I have to do it on SQL Server instead of SQL ... If I'm retrieving the connection string in my own code, ... > in 2.0 you can encrypt nearly all config section out of the box using the ... >> the config file, but .NET 2.0 has more options. ...
      (microsoft.public.dotnet.framework.aspnet.security)
    • Re: connectionstring & web farm
      ... You can encrypt separately on each machine, but you will have to encrypt ... "hard coded" unless you put source on the web server. ... Registry is an option that is more secure than config, ... web applications which all are using the same connection string. ...
      (microsoft.public.dotnet.framework.aspnet)
    • Re: ASP.NET 2.0 Encrypted Connection String
      ... > appSettings in a different file using the convenient external linking ... > My connection string information is stored under the appSettings ... > in this code to encrypt my appSettings: ... > Public Sub EncryptAppSettings ...
      (microsoft.public.dotnet.framework.aspnet.security)