企业库加密应用程序模块提供了2种方式让用户保护自己的数据:
使用企业库加密应用程序模块的优势:
下面介绍如何使用Microsoft Enterprise Library 5.0中的加密应用程序模块.
1.下载安装好MicrosoftEnterprise Library 5.0,然后在运行EntLibConfig.exe
2. 选择Blocks菜单 ,单击 Add CryptographySettings .
下面分别样式如何创建Hash Providers 和 Symmetric CryptographyProviders 加密策略:
(A) Hash Providers 策略使用步骤:
(1) 点击HashProviders 区块右上角的加号按钮, Add Hash Providers, 然后点击Add Hash Algorithm Provider,在弹出的对话框中选择System.Core下的MD5Cng,
表示我们要用MD5的加密方法获取离散值.
(2) 点击 File 菜单,单击 Save,保存为一个App.config文件,可以先保存到桌面,之后要用到它. 用记事本打开App.config,可以看到如下内容.
代码
<configuration>
<configSections>
<section name="securityCryptographyConfiguration" type="Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.Configuration.CryptographySettings,Microsoft.Practices.EnterpriseLibrary.Security.Cryptography, Version=5.0.414.0,Culture=neutral, PublicKeyToken=31bf3856ad364e35" requirePermission="true" />
</configSections>
<securityCryptographyConfiguration>
<hashProviders>
<add name="MD5Cng" type="Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.HashAlgorithmProvider,Microsoft.Practices.EnterpriseLibrary.Security.Cryptography, Version=5.0.414.0,Culture=neutral, PublicKeyToken=31bf3856ad364e35"
algorithmType="System.Security.Cryptography.MD5Cng,System.Core, Version=3.5.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"
saltEnabled="true" />
</hashProviders>
</securityCryptographyConfiguration>
</configuration>
(3) 要使用缓存应用程序模块, 需要导入相应的Dll文件,在此我们要导入的是Microsoft.Practices.EnterpriseLibrary.Caching.dll ,将App.config文件添加到项目中,
并添加usingMicrosoft.Practices.EnterpriseLibrary.Security.Cryptography引用:
添加引用:
usingMicrosoft.Practices.EnterpriseLibrary.Security.Cryptography;
(4) 测试:
usingSystem;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using Microsoft.Practices.EnterpriseLibrary.Security.Cryptography;
namespace test
{
classProgram
{
staticvoid Main(string[]args)
{
//获取离散码
stringhash = Cryptographer.CreateHash("MD5Cng", "SensitiveData");
//打印显示
Console.WriteLine(hash);
Console.WriteLine("------------------------------------------------");
//验证
boolequal = Cryptographer.CompareHash("MD5Cng", "SensitiveData",hash);
//打印结果
if(equal)
{
Console.WriteLine("正确");
}
else
{
Console.WriteLine("错误");
}
}
}
}
运行结果:
(B) Symmetric CryptographyProviders策略实现步骤:
(1) 点击symmetriccryptography provider 区块右上角的加号按钮,然后点击 Add Symmetric Cryptography Providers, 在此我们能看到3个选项,下面介绍一下:
- Add Custom SymmetricCrypto Provider :顾名思义,用户自定义的加密策略,较麻烦,要自己写相应的加密类.
- Add DPAPI Symmetric Crypto Provider : 添加一个数据加密API生成的对称密钥进行加密.
- Add Sysmmetric Algorithm Provider : 较高级的对称加密方法,需要用户生成Key文件对数据进行保护.
在此我介绍的是第二种方法,因此请单击选择 Add DPAPI Symmetric Crypto Provider.
(2) 点击 File 菜单,单击 Save更新原有的App.config文件,打开可看到以下内容.
代码
<configuration>
<configSections>
<section name="securityCryptographyConfiguration" type="Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.Configuration.CryptographySettings,Microsoft.Practices.EnterpriseLibrary.Security.Cryptography, Version=5.0.414.0,Culture=neutral, PublicKeyToken=31bf3856ad364e35" requirePermission="true" />
</configSections>
<securityCryptographyConfiguration defaultHashInstance="MD5Cng">
<hashProviders>
<add name="MD5Cng" type="Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.HashAlgorithmProvider,Microsoft.Practices.EnterpriseLibrary.Security.Cryptography, Version=5.0.414.0,Culture=neutral, PublicKeyToken=31bf3856ad364e35"
algorithmType="System.Security.Cryptography.MD5Cng,System.Core, Version=3.5.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089"
saltEnabled="true" />
</hashProviders>
<symmetricCryptoProviders>
<add type="Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.DpapiSymmetricCryptoProvider,Microsoft.Practices.EnterpriseLibrary.Security.Cryptography, Version=5.0.414.0,Culture=neutral, PublicKeyToken=31bf3856ad364e35"
name="DPAPISymmetric Crypto Provider" />
</symmetricCryptoProviders>
</securityCryptographyConfiguration>
</configuration>
(3) 测试:
using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using Microsoft.Practices.EnterpriseLibrary.Security.Cryptography;
namespace test
{
class Program
{
static void Main(string[] args)
{
////获取离散码
//string hash = Cryptographer.CreateHash("MD5Cng", "SensitiveData");
////打印显示
//Console.WriteLine(hash);
//Console.WriteLine("------------------------------------------------");
////验证
//bool equal = Cryptographer.CompareHash("MD5Cng", "SensitiveData", hash);
////打印结果
//if (equal)
//{
// Console.WriteLine("正确");
//}
//else
//{
// Console.WriteLine("错误");
//}
string Encrypt = Cryptographer.EncryptSymmetric("DPAPI Symmetric Crypto Provider", "SensitiveData");
Console.WriteLine("密文:" + Encrypt);
Console.WriteLine("------------------------------------------------");
Encrypt = Cryptographer.DecryptSymmetric("DPAPI Symmetric Crypto Provider", Encrypt);
Console.WriteLine("原文:" + Encrypt);
}
}
}
运行结果:
出处:http://www.cnblogs.com/huangcong/archive/2010/05/28/1746634.html 请
本文版权归作者和博客园共有,欢迎转载,但未经作者同意必须保留此段声明,且在文章页面明显位置给出原文连接,否则保留追究法律责任的权利。