deepti
Reputation: 729
md5 encryption in asp.net
I'm using md5 encryption for my company salary data.
That page should only be viewed when user enter correct password. iam storing that encrypted password in database.
while retrieving iam comparing the encrypted password.
Is there any way i can use that password as key?
i want to achieve following
- If the user is saving the salary data, this password hash will encrypt the data
- If the user is viewing salary info, this password should be used to decrypt the data
or do i have to use some algorithm like Triple Des?
Upvotes: 1
Views: 2850
Answers (2)
Cyberdrew
Reputation: 1842
MD5 is a one way encryption, use Triple DES to encrypt the data and MD5 to encrypt the password. Here is what I use:
public static string Crypt(this string data, string password, bool encrypt)
{
var u8Salt = new byte[] { 0x26, 0x19, 0x81, 0x4E, 0xA0, 0x6D, 0x95, 0x34, 0x26, 0x75, 0x64, 0x05, 0xF6 };
var iPass = new Rfc2898DeriveBytes(password, u8Salt);
var iAlg = Aes.Create();
iAlg.Key = iPass.GetBytes(32);
iAlg.IV = iPass.GetBytes(16);
var iTrans = (encrypt) ? iAlg.CreateEncryptor() : iAlg.CreateDecryptor();
var iMem = new MemoryStream();
var iCrypt = new CryptoStream(iMem, iTrans, CryptoStreamMode.Write);
var u8Data = encrypt ? Encoding.Unicode.GetBytes(data) : Convert.FromBase64String(data);
try
{
iCrypt.Write(u8Data, 0, u8Data.Length);
iCrypt.Close();
return encrypt ? Convert.ToBase64String(iMem.ToArray()) : Encoding.Unicode.GetString(iMem.ToArray());
}
catch
{
return null;
}
}
Upvotes: 1
LukeH
Reputation: 269628
Yes, you need to use a (reversible) encryption algorithm, not a (one-way) hash algorithm.
Upvotes: 1
Related Questions
- MD5CryptoServiceProvider in ASP.NET Core
- Decrypt md5 in vb.net
- Password encryption - c#
- ASP.NET Hash password using MD5
- SQL and C# Encryption
- C# MD5CryptoServiceProvider
- Secure Password Programming with .NET
- How to encrypt stored information, using C#?
- Any one way Encryption Method better than MD5 ? (.NET)
- MD5 or other Encryption in Silverlight C#