Stack Overflow
Stack Overflow

Questions tagged [dpapi]

DPAPI is the API in Windows that allows a program to store "secrets", like passwords. It is used by Microsoft in IE and storing WiFi passwords and private keys for EFS, and also by Chrome for Windows and Safari for Windows, to store website credentials.

150 questions
0
votes
1 answer

DPAPI master key migration to a new computerch

First of all, if this question should go into another stackexchange site please let me know. I have a computer that I used for a lot of years, so it has a lot of stored password, cookies, etc in my Google Chrome folder. I recently bought a new…
user8396910
0
votes
0 answers

Setting permissions specific to a process in windows

There is some confidential data of user that I am encrypting using DPAPI. This encrypted data is being stored in a file and is placed in %LOCALAPPDATA% folder. How can I prevent other processes from accessing that file, since any other process…
Wander3r
  • 1,801
  • 17
  • 27
0
votes
1 answer

Where should a Windows service, running as Local System, store a private key in the file system?

I need to generate and store a sensitive file (assume that it is not a traditional PKCS format) private key and keep it accessible to the running service. Normally, when running as a service account (AD User), I would store the file under the user's…
Ran Dom
  • 315
  • 5
  • 13
0
votes
1 answer

CRYPTPROTECT flags for CryptProtectData function

Stepped into DPAPI inner functionement question... I'm (potentially) in a context pre-logon which means no user has logged on already. Since the CryptProtectData function uses current user credentials, how will it be acting ? I was so wondering if…
Kianii
  • 141
  • 1
  • 9
0
votes
1 answer

Secure Crypto keys using DPAPI

I am writing an asp.net application that encrypts sensitive data which is decrypted by another asp.net application running on different user accounts in the same domain. I have read a lot of articles saying to use DPAPI to pass the key management to…
netguy
  • 641
  • 1
  • 5
  • 11
0
votes
1 answer

How to check and read my Master Key generated using DP API

The query is regarding the DP API functionality. I am using DP API Protect and Unprotect method to encrypt my string with a secret entropy. As per the information available on internet , a Master key is generated by DP API initially which is stored…
Isha
  • 1
  • 2
0
votes
1 answer

DPAPI Key Storage and Restoration

In light of the upcoming GDPR regulations, the company I work for is looking at upgrading their encryption algorithms and encrypting significantly more data than before. As the one appointed to take care of this, I have replaced our old CAST-128…
Brandon Heat
  • 1
  • 1
  • 7
0
votes
0 answers

"Key not valid for use in specified state" (DPAPI) error when access from different machine

We use Cryptography.ProtectedData.protect and Cryptography.ProtectedData.Unprotect for Encryption. The scope is DataProtectionScope.LocalMachine. The application is hosted on a shared drive. When a user access the application from their own…
John Sheridan
  • 83
  • 1
  • 2
  • 10
0
votes
1 answer

DPAPI - Encrypted data that is created by User A, can't be decrypted by UserB

I have developed a main application to control lights . Now I want to deploy this application in client site. I’ll be sending a file containing an encrypted file(key) and username(which is defadmin always) to the client to login into the application…
user7274707
  • 9
  • 5
0
votes
1 answer

Encryption with DPAPI without revealing length of unencrypted data?

Using the Windows Data Protection API, it is possible to encrypt data in memory, as the following code exemplifies: byte[] toEncrypt = UnicodeEncoding.ASCII.GetBytes("ThisIsSomeData16"); Console.WriteLine("Original data: " +…
Verbal Kint
  • 425
  • 1
  • 3
  • 20
0
votes
2 answers

.NET DPAPI and AES Encryption: Sense-Check

I am just about to write a new encryption system for a website I'm currently working on, and wanted to see if i could get someone to sense-check it before I get started if possible! Update: Should have been clearer with my original question. I need…
Andy-Delosdos
  • 3,560
  • 1
  • 12
  • 25
0
votes
0 answers

Decrypt encrypted value using DPAPI

I have encrypted value and I tried to decrypt it using asp_regiis.exe.
Gilbert
  • 11
  • 6
0
votes
1 answer

Classic ASP vs. ASP.NET encryption options

I'm working on a web site where the new pages are ASP.NET and the legacy pages are Classic ASP. Being new to development in the Windows env, I've been studying the latest technology, i.e. .NET and I become like a deer in headlights when ever legacy…
harrije
  • 407
  • 4
  • 12
  • 21
0
votes
0 answers

Decrypting DPAPI-protected data for use with DirectoryEntry - Is the data vulnerable to attack?

I'm querying a domain controller by LDAP by means of the DirectoryEntry class, and I need to store the username and password for this query on the machine that's running the application. Storing these in strings is not feasible as that's a big…
Maritim
  • 2,111
  • 4
  • 29
  • 59
0
votes
1 answer

Decrypt Data which was encrypted with MS DPAPI with JNA

is it possible to decrypt data which was encrypted with MS DPAPI? For example i want to decrypt a digital certificate from the windows registry. byte[] byteArray = (byte[]) Advapi32Util.registryGetValue(WinReg.HKEY_LOCAL_MACHINE,…
Opa114
  • 518
  • 4
  • 12
  • 28
1 2 3
9
10