0

I recently came across SecureString, but as most of you know, you would be unable to use it because most of the functions you want to use accept string as parameter, not SecureString.

How to use SecureString then?

If I need to pass string across multiple programs, is it safer to byte array compared to plain string if string is sensitive information?

TPR
  • 2,567
  • 10
  • 41
  • 65

1 Answers1

0

If the data is sensitive, encrypt it.

See the System.Security.Cryptography namespace.

There are many encryption algorithms supported, but is impossible to suggest to you which one to use, as the specific security requirements for your situation are not known.

Oded
  • 489,969
  • 99
  • 883
  • 1,009
  • so I shouldn't pass plain strings between programs on the same computer? – TPR Jun 15 '12 at 21:18
  • @TPR - It is only a problem if someone has access to the computer memory. `SecureString` will help with memory dumps. – Oded Jun 16 '12 at 16:59