Re: cleanup of data from memory

From: Hernan de Lahitte (hernan_at_lagash.com)
Date: 07/08/04

• Next message: Lei Jiang: "Re: How to test if my code have "FullTrust" permission?"
• Previous message: Hernan de Lahitte: "Re: cleanup of data from memory"
• In reply to: Hernan de Lahitte: "Re: cleanup of data from memory"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Wed, 7 Jul 2004 21:13:05 -0300

Oops, sorry I forgot the link.
http://weblogs.asp.net/hernandl/archive/2004/07/07/174736.aspx

-- 
Hernan de Lahitte
Lagash Systems S.A.
http://weblogs.asp.net/hernandl
This posting is provided "AS IS" with no warranties, and confers no rights.
"Hernan de Lahitte" <hernan@lagash.com> wrote in message
news:OM1vpeIZEHA.3016@tk2msftngp13.phx.gbl...
> I just posted a SecureString class (like the Whidbey countrerpart) but for
> v1.1
> You will found classes for ProtectedMemory and ProtectedData (wrappers for
> the DPAPI functions) as well.
>
> Hope this help.
>
> -- 
> Hernan de Lahitte
> Lagash Systems S.A.
> http://weblogs.asp.net/hernandl
>
>
> This posting is provided "AS IS" with no warranties, and confers no
rights.
>
> "Srini" <Srini@discussions.microsoft.com> wrote in message
> news:76F4A7F5-7DAC-4EE0-A199-F824C7D5A70B@microsoft.com...
> > By using all the security APIs and encryption algorithms we are able to
> encrypt the data.
> >
> > What about the following scenario?
> >
> > After we encrypt the data we release the BYTE[] or memory stream or
> something else without doing anytihng to the memory conatined by them.
What
> if some other process gets that memory later on ond because the
> un-encrypted(confidential data)
> > is stil sitting there in that memory that new process has gotten access
to
> our data. Is there a specific procedure that we need to follow(is it the
> application responsibility to reset the memory contents bofore it releases
> it)? or does the OS clean/reset the memory before it allocates it to some
> other process?
> >
> > Is there anything in .NET to prevent this from happening.
> >
> > Thanks for the help.
> > Srini
> >
>
>

---

• Next message: Lei Jiang: "Re: How to test if my code have "FullTrust" permission?"
• Previous message: Hernan de Lahitte: "Re: cleanup of data from memory"
• In reply to: Hernan de Lahitte: "Re: cleanup of data from memory"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Automatically Logout... ... Recall that with slidingExpiration turned on, your cookie will be updated ... This posting is provided "AS IS" with no warranties, and confers no rights. ... > "Hernan de Lahitte" schrieb im Newsbeitrag ... (microsoft.public.dotnet.framework.aspnet.security) Re: Failed to start monitoring changes ... Connection Firewall or any other firewall turned on? ... Hernan de Lahitte - MSDE ... > I connect to a remote SQL Server using SQL authentication, ... (microsoft.public.dotnet.security) Re: Product Key dilemma ... This posting is provided "AS IS" with no warranties, ... > "Hernan de Lahitte" wrote in message ... >>> product key should be an encrypted string representing some information. ... (microsoft.public.dotnet.security) Re: MD5 implementation ... > How do I get a string in the .NET version that I can compare to the PHP ... > "Hernan de Lahitte" wrote in message ... >> Lagash Systems S.A. ... (microsoft.public.dotnet.framework.aspnet.security) Re: File shredding/Scrubbing/Wiping Security classes for C#/.Net ... Hernan de Lahitte ... Lagash Systems S.A. ... Shadowfax Dev Team ... (microsoft.public.dotnet.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.dotnet.security  > 2004-07