Reputation: 3999
How should I secure the Private Key when using Asymmetric RSA encryption?
I am using the RSACryptoServiceProvider and C#. I have a web server (A) that will be encrypting data and storing it in a database. I have another server (B) that will be reading the encrypted data and decrypting it. The private key will only ever live on server B.
I would like to limit private key access to my application and a very short list of domain users.
What is the best way to store the key so that it is safe from compromise by an unauthorized person?
Upvotes: 1
Views: 458
Answers (1)
Reputation: 67326
You can use Windows RSA Key containers to store the key. The key can be installed / created by the aspnet_regiis.exe tool that ships with the .NET framework.
Here is a walkthrough.
The two options to look out for are:
-pi (installs a key to the RSA container)
-pa (managements permissions for the key)
Upvotes: 2
Related Questions
- RSA private key encryption
- C# RSA Decrypt Using Private Key
- How to encrypt with private key and decrypt with public key in c# RSA
- Encrypting Data using RSA Public and Private Key in C#
- RSA Encryption of large data in C#
- RSA Encryption - Encrypt with private key
- How to encrypt data with RSA private key in C#
- Using AsymmetricAlgorithm Private and Public key with RSA C#
- PRIVATE key encryption in .Net
- .NET Private Key Rsa Encryption