System.Security.Cryptography vs. Windows.Security.Cryptography
Solution 1
The Windows.Security.Cryptography and its sub-namespaces are probably the way to go.
See http://msdn.microsoft.com/en-us/library/windows/apps/windows.security.cryptography.core.cryptographicengine.derivekeymaterial.aspx for a way to derive key material using a couple of various algorithms.
Solution 2
1) System.Security.Cryptography is not available on Windows Store Apps, so you will have to use Windows.Security.Cryptography. See link below for a good explanation on reusing class libraries for different target frameworks with .NET portable libraries. If needed, you could always inject an abstraction using your favorite IoC container.
http://www.hanselman.com/blog/HiddenGemsInVisualStudio11BetaNETPortableClassLibraries.aspx
2) I don't see an implementation of Rfc2898DeriveBytes in Windows.Security.Cryptography or something similar. See below.
Related videos on Youtube
04 : 40
28 : 24
12 : 33
11 : 55
17 : 56
01 : 08 : 35
22 : 18
13 : 34
29 : 12
08 : 02
02 : 28
09 : 14
01 : 55 : 26
Razick
I work in the financial industry in Austin, Texas and work with web development as a hobby. I have developed with PHP and MySQL in the past but am currently learning ASP.NET Core with Blazor Web Assembly (C#).
Updated on June 25, 2022Comments
-
Razick almost 2 years
I am a new Windows 8 developer, I have some code that was designed for Linux but also ran on Windows as long as GTK# was installed.
I am currently porting that application to Windows 8 as a Modern UI (Metro) app. It is going well, except, when I try to import my key derivation code (which takes the user's password and derives a key 256 bit key from it), Visual Studio Ultimate 2013 indicates that it doesn't recognize
using System.Security.Cryptography.After looking into the Windows 8 developer website, I found that a new class,
Windows.Security.Cryptographyis available, however, it doesn't seem to be recognized by Visual Studio either.So, now that you have the background, I have a few questions:
- Is System.Security.Cryptography available in Windows 8? If so, is the RT version supported? How can I make Visual Studio recognize it?
- How is Windows.System.Security different, and is there a compatible class/method to Rfc2898DeriveBytes? By compatible, I mean given the same password and salt is there a way to get the same key as a result.
For clarification as to what I want to do, my key derivation code is posted below:
public class GetKey { // constructor public GetKey (bool use=true, string password="none") { if (use == true) { this.genSalt(); byte[] salt = this.salt; Rfc2898DeriveBytes pwdKey = new Rfc2898DeriveBytes(password, salt, 4000); this.key = pwdKey.GetBytes(32); this.iv = pwdKey.GetBytes(16); } } // properties private byte[] key; private byte[] iv; private byte[] salt; // methods public void retrieveKey(string password) { try { byte[] salt = this.salt; Rfc2898DeriveBytes pwdKey = new Rfc2898DeriveBytes(password, salt, 4000); this.key = pwdKey.GetBytes(32); this.iv = pwdKey.GetBytes(16); } catch (Exception e) { GenericDialog win = new GenericDialog("Unknown Error: " + e.Message, "Error Notice", "Unknown Error"); win.Show(); } } public void genSalt() { string sSalt = UtilityClass.randString(16); byte[] salt = UtilityClass.ToByteArray(sSalt); this.salt = salt; } public byte[] returnKey() { return this.key; } public byte[] returnIv() { return this.iv; } public byte[] returnSalt() { return this.salt; } public bool setSalt(string salt) { try { this.salt = Convert.FromBase64String(salt); } catch { GenericDialog win = new GenericDialog("Decryption failed because the salt was invalid.", "Error Notice", "Invalid Salt"); win.Show(); return false; } return true; } }-
Jim O'Neil over 11 yearsyes, you'll need to add the reference to System.Security and then System.Security.Cryptography will resolve but for Windows 8 desktop apps only not Windows Store (nee Metro).
-
Kraang Prime over 7 yearsI really hate how MSDN isn't clear what flippin' reference I need to add in order to activate this 'using' .
