Skip to content

Instantly share code, notes, and snippets.

@wpoch

wpoch/CryptoHelper.cs

Created June 1, 2011 14:15
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save wpoch/1002362 to your computer and use it in GitHub Desktop.
Save wpoch/1002362 to your computer and use it in GitHub Desktop.
Download ZIP
Una clase Helper para encriptar
Raw
CryptoHelper.cs
using System;
using System.Configuration;
using System.IO;
using System.Security;
using System.Security.Cryptography;
using System.Security.Principal;
using System.Text;
using System.Text.RegularExpressions;
using System.Web;
// ReSharper disable InconsistentNaming
public class CryptoHelper {
private static Hash h = new Hash(Helpers.Hash.Provider.MD5);
private static Symmetric.Provider p = Symmetric.Provider.TripleDES;
private static Symmetric sym = new Symmetric(p);
public static string Encrypt(object secret, string key) {
sym.Key.Text = key;
Data encryptedData = sym.Encrypt(new Data(secret.ToString()));
return encryptedData.Hex;
}
public static string Encrypt(object secret) {
return Encrypt(secret, RandomKeyHelper.Generate());
}
public static string EncryptForPersistance(object secret) {
return Encrypt(secret, RandomKeyHelper.GeneratePersistiveKey());
}
public static string Decrypt(string encrypted, string key) {
var encryptedData = new Data {Hex = encrypted};
sym.Key.Text = key;
Data decryptedData = sym.Decrypt(encryptedData);
return decryptedData.Text;
}
public static string Decrypt(object secret) {
return Decrypt(secret.ToString(), RandomKeyHelper.Generate());
}
public static string DecryptForPersistance(object secret) {
return Decrypt(secret.ToString(), RandomKeyHelper.GeneratePersistiveKey());
}
public static string TryDecrypt(string encrypted, string key) {
try {
return Decrypt(encrypted, key);
} catch (Exception) {
return string.Empty;
}
}
public static string Hash(string toHash) {
var data = new Data(toHash);
return h.Calculate(data).Hex;
}
}
#region " Hash"
/// <summary>
/// Hash functions are fundamental to modern cryptography. These functions map binary
/// strings of an arbitrary length to small binary strings of a fixed length, known as
/// hash values. A cryptographic hash function has the property that it is computationally
/// infeasible to find two distinct inputs that hash to the same value. Hash functions
/// are commonly used with digital signatures and for data integrity.
/// </summary>
public class Hash {
#region Provider enum
/// <summary>
/// Type of hash; some are security oriented, others are fast and simple
/// </summary>
public enum Provider {
/// <summary>
/// Cyclic Redundancy Check provider, 32-bit
/// </summary>
CRC32,
/// <summary>
/// Secure Hashing Algorithm provider, SHA-1 variant, 160-bit
/// </summary>
SHA1,
/// <summary>
/// Secure Hashing Algorithm provider, SHA-2 variant, 256-bit
/// </summary>
SHA256,
/// <summary>
/// Secure Hashing Algorithm provider, SHA-2 variant, 384-bit
/// </summary>
SHA384,
/// <summary>
/// Secure Hashing Algorithm provider, SHA-2 variant, 512-bit
/// </summary>
SHA512,
/// <summary>
/// Message Digest algorithm 5, 128-bit
/// </summary>
MD5
}
#endregion
private readonly HashAlgorithm _Hash;
private readonly Data _HashValue = new Data();
/// <summary>
/// Instantiate a new hash of the specified type
/// </summary>
public Hash(Provider p) {
switch (p) {
case Provider.CRC32:
_Hash = new CRC32();
break;
case Provider.MD5:
_Hash = new MD5CryptoServiceProvider();
break;
case Provider.SHA1:
_Hash = new SHA1Managed();
break;
case Provider.SHA256:
_Hash = new SHA256Managed();
break;
case Provider.SHA384:
_Hash = new SHA384Managed();
break;
case Provider.SHA512:
_Hash = new SHA512Managed();
break;
}
}
/// <summary>
/// Returns the previously calculated hash
/// </summary>
public Data Value {
get { return _HashValue; }
}
/// <summary>
/// Calculates hash on a stream of arbitrary length
/// </summary>
public Data Calculate(ref Stream s) {
_HashValue.Bytes = _Hash.ComputeHash(s);
return _HashValue;
}
/// <summary>
/// Calculates hash for fixed length <see cref="Data"/>
/// </summary>
public Data Calculate(Data d) {
return CalculatePrivate(d.Bytes);
}
/// <summary>
/// Calculates hash for a string with a prefixed salt value.
/// A "salt" is random data prefixed to every hashed value to prevent
/// common dictionary attacks.
/// </summary>
public Data Calculate(Data d, Data salt) {
var nb = new byte[d.Bytes.Length + salt.Bytes.Length];
salt.Bytes.CopyTo(nb, 0);
d.Bytes.CopyTo(nb, salt.Bytes.Length);
return CalculatePrivate(nb);
}
/// <summary>
/// Calculates hash for an array of bytes
/// </summary>
private Data CalculatePrivate(byte[] b) {
_HashValue.Bytes = _Hash.ComputeHash(b);
return _HashValue;
}
#region " CRC32 HashAlgorithm"
private class CRC32 : HashAlgorithm {
private uint[] crcLookup = {
0x0, 0x77073096, 0xee0e612c, 0x990951ba, 0x76dc419, 0x706af48f, 0xe963a535,
0x9e6495a3, 0xedb8832, 0x79dcb8a4,
0xe0d5e91e, 0x97d2d988, 0x9b64c2b, 0x7eb17cbd, 0xe7b82d07, 0x90bf1d91,
0x1db71064, 0x6ab020f2, 0xf3b97148, 0x84be41de,
0x1adad47d, 0x6ddde4eb, 0xf4d4b551, 0x83d385c7, 0x136c9856, 0x646ba8c0,
0xfd62f97a, 0x8a65c9ec, 0x14015c4f, 0x63066cd9,
0xfa0f3d63, 0x8d080df5, 0x3b6e20c8, 0x4c69105e, 0xd56041e4, 0xa2677172,
0x3c03e4d1, 0x4b04d447, 0xd20d85fd, 0xa50ab56b,
0x35b5a8fa, 0x42b2986c, 0xdbbbc9d6, 0xacbcf940, 0x32d86ce3, 0x45df5c75,
0xdcd60dcf, 0xabd13d59, 0x26d930ac, 0x51de003a,
0xc8d75180, 0xbfd06116, 0x21b4f4b5, 0x56b3c423, 0xcfba9599, 0xb8bda50f,
0x2802b89e, 0x5f058808, 0xc60cd9b2, 0xb10be924,
0x2f6f7c87, 0x58684c11, 0xc1611dab, 0xb6662d3d, 0x76dc4190, 0x1db7106,
0x98d220bc, 0xefd5102a, 0x71b18589, 0x6b6b51f,
0x9fbfe4a5, 0xe8b8d433, 0x7807c9a2, 0xf00f934, 0x9609a88e, 0xe10e9818,
0x7f6a0dbb, 0x86d3d2d, 0x91646c97, 0xe6635c01,
0x6b6b51f4, 0x1c6c6162, 0x856530d8, 0xf262004e, 0x6c0695ed, 0x1b01a57b,
0x8208f4c1, 0xf50fc457, 0x65b0d9c6, 0x12b7e950,
0x8bbeb8ea, 0xfcb9887c, 0x62dd1ddf, 0x15da2d49, 0x8cd37cf3, 0xfbd44c65,
0x4db26158, 0x3ab551ce, 0xa3bc0074, 0xd4bb30e2,
0x4adfa541, 0x3dd895d7, 0xa4d1c46d, 0xd3d6f4fb, 0x4369e96a, 0x346ed9fc,
0xad678846, 0xda60b8d0, 0x44042d73, 0x33031de5,
0xaa0a4c5f, 0xdd0d7cc9, 0x5005713c, 0x270241aa, 0xbe0b1010, 0xc90c2086,
0x5768b525, 0x206f85b3, 0xb966d409, 0xce61e49f,
0x5edef90e, 0x29d9c998, 0xb0d09822, 0xc7d7a8b4, 0x59b33d17, 0x2eb40d81,
0xb7bd5c3b, 0xc0ba6cad, 0xedb88320, 0x9abfb3b6,
0x3b6e20c, 0x74b1d29a, 0xead54739, 0x9dd277af, 0x4db2615, 0x73dc1683,
0xe3630b12, 0x94643b84, 0xd6d6a3e, 0x7a6a5aa8,
0xe40ecf0b, 0x9309ff9d, 0xa00ae27, 0x7d079eb1, 0xf00f9344, 0x8708a3d2,
0x1e01f268, 0x6906c2fe, 0xf762575d, 0x806567cb,
0x196c3671, 0x6e6b06e7, 0xfed41b76, 0x89d32be0, 0x10da7a5a, 0x67dd4acc,
0xf9b9df6f, 0x8ebeeff9, 0x17b7be43, 0x60b08ed5,
0xd6d6a3e8, 0xa1d1937e, 0x38d8c2c4, 0x4fdff252, 0xd1bb67f1, 0xa6bc5767,
0x3fb506dd, 0x48b2364b, 0xd80d2bda, 0xaf0a1b4c,
0x36034af6, 0x41047a60, 0xdf60efc3, 0xa867df55, 0x316e8eef, 0x4669be79,
0xcb61b38c, 0xbc66831a, 0x256fd2a0, 0x5268e236,
0xcc0c7795, 0xbb0b4703, 0x220216b9, 0x5505262f, 0xc5ba3bbe, 0xb2bd0b28,
0x2bb45a92, 0x5cb36a04, 0xc2d7ffa7, 0xb5d0cf31,
0x2cd99e8b, 0x5bdeae1d, 0x9b64c2b0, 0xec63f226, 0x756aa39c, 0x26d930a,
0x9c0906a9, 0xeb0e363f, 0x72076785, 0x5005713,
0x95bf4a82, 0xe2b87a14, 0x7bb12bae, 0xcb61b38, 0x92d28e9b, 0xe5d5be0d,
0x7cdcefb7, 0xbdbdf21, 0x86d3d2d4, 0xf1d4e242,
0x68ddb3f8, 0x1fda836e, 0x81be16cd, 0xf6b9265b, 0x6fb077e1, 0x18b74777,
0x88085ae6, 0xff0f6a70, 0x66063bca, 0x11010b5c,
0x8f659eff, 0xf862ae69, 0x616bffd3, 0x166ccf45, 0xa00ae278, 0xd70dd2ee,
0x4e048354, 0x3903b3c2, 0xa7672661, 0xd06016f7,
0x4969474d, 0x3e6e77db, 0xaed16a4a, 0xd9d65adc, 0x40df0b66, 0x37d83bf0,
0xa9bcae53, 0xdebb9ec5, 0x47b2cf7f, 0x30b5ffe9,
0xbdbdf21c, 0xcabac28a, 0x53b39330, 0x24b4a3a6, 0xbad03605, 0xcdd70693,
0x54de5729, 0x23d967bf, 0xb3667a2e, 0xc4614ab8,
0x5d681b02, 0x2a6f2b94, 0xb40bbe37, 0xc30c8ea1, 0x5a05df1b, 0x2d02ef8d
};
private uint result = 0xffffffff;
public override byte[] Hash {
get {
byte[] b = BitConverter.GetBytes(result);
Array.Reverse(b);
return b;
}
}
protected override void HashCore(byte[] array, int ibStart, int cbSize) {
for (int i = ibStart; i <= cbSize - 1; i++) {
uint lookup = (result & 0xff) ^ array[i];
result = ((result & 0xffffff00)/0x100) & 0xffffff;
result = result ^ crcLookup[lookup];
}
}
protected override byte[] HashFinal() {
byte[] b = BitConverter.GetBytes(result);
Array.Reverse(b);
return b;
}
public override void Initialize() {
result = 0xffffffff;
}
}
#endregion
}
#endregion
#region " Symmetric"
/// <summary>
/// Symmetric encryption uses a single key to encrypt and decrypt.
/// Both parties (encryptor and decryptor) must share the same secret key.
/// </summary>
public class Symmetric {
#region Provider enum
public enum Provider {
/// <summary>
/// The Data Encryption Standard provider supports a 64 bit key only
/// </summary>
DES,
/// <summary>
/// The Rivest Cipher 2 provider supports keys ranging from 40 to 128 bits, default is 128 bits
/// </summary>
RC2,
/// <summary>
/// The Rijndael (also known as AES) provider supports keys of 128, 192, or 256 bits with a default of 256 bits
/// </summary>
Rijndael,
/// <summary>
/// The TripleDES provider (also known as 3DES) supports keys of 128 or 192 bits with a default of 192 bits
/// </summary>
TripleDES
}
#endregion
private const int _BufferSize = 2048;
private const string _DefaultIntializationVector = "%1Az=-@qT";
private readonly SymmetricAlgorithm _crypto;
private Data _iv;
private Data _key;
public Symmetric(Provider provider) : this(provider, true) {}
/// <summary>
/// Instantiates a new symmetric encryption object using the specified provider.
/// </summary>
public Symmetric(Provider provider, bool useDefaultInitializationVector) {
switch (provider) {
case Provider.DES:
_crypto = new DESCryptoServiceProvider();
break;
case Provider.RC2:
_crypto = new RC2CryptoServiceProvider();
break;
case Provider.Rijndael:
_crypto = new RijndaelManaged();
break;
case Provider.TripleDES:
_crypto = new TripleDESCryptoServiceProvider();
break;
}
//-- make sure key and IV are always set, no matter what
Key = RandomKey();
if (useDefaultInitializationVector) {
IntializationVector = new Data(_DefaultIntializationVector);
} else {
IntializationVector = RandomInitializationVector();
}
}
/// <summary>
/// Key size in bytes. We use the default key size for any given provider; if you
/// want to force a specific key size, set this property
/// </summary>
public int KeySizeBytes {
get { return _crypto.KeySize/8; }
set {
_crypto.KeySize = value*8;
_key.MaxBytes = value;
}
}
/// <summary>
/// Key size in bits. We use the default key size for any given provider; if you
/// want to force a specific key size, set this property
/// </summary>
public int KeySizeBits {
get { return _crypto.KeySize; }
set {
_crypto.KeySize = value;
_key.MaxBits = value;
}
}
/// <summary>
/// The key used to encrypt/decrypt data
/// </summary>
public Data Key {
get { return _key; }
set {
_key = value;
_key.MaxBytes = _crypto.LegalKeySizes[0].MaxSize/8;
_key.MinBytes = _crypto.LegalKeySizes[0].MinSize/8;
_key.StepBytes = _crypto.LegalKeySizes[0].SkipSize/8;
}
}
/// <summary>
/// Using the default Cipher Block Chaining (CBC) mode, all data blocks are processed using
/// the value derived from the previous block; the first data block has no previous data block
/// to use, so it needs an InitializationVector to feed the first block
/// </summary>
public Data IntializationVector {
get { return _iv; }
set {
_iv = value;
_iv.MaxBytes = _crypto.BlockSize/8;
_iv.MinBytes = _crypto.BlockSize/8;
}
}
/// <summary>
/// generates a random Initialization Vector, if one was not provided
/// </summary>
public Data RandomInitializationVector() {
_crypto.GenerateIV();
var d = new Data(_crypto.IV);
return d;
}
/// <summary>
/// generates a random Key, if one was not provided
/// </summary>
public Data RandomKey() {
_crypto.GenerateKey();
var d = new Data(_crypto.Key);
return d;
}
/// <summary>
/// Ensures that _crypto object has valid Key and IV
/// prior to any attempt to encrypt/decrypt anything
/// </summary>
private void ValidateKeyAndIv(bool isEncrypting) {
if (_key.IsEmpty) {
if (isEncrypting) {
_key = RandomKey();
} else {
throw new CryptographicException("No key was provided for the decryption operation!");
}
}
if (_iv.IsEmpty) {
if (isEncrypting) {
_iv = RandomInitializationVector();
} else {
throw new CryptographicException(
"No initialization vector was provided for the decryption operation!");
}
}
_crypto.Key = _key.Bytes;
_crypto.IV = _iv.Bytes;
}
/// <summary>
/// Encrypts the specified Data using provided key
/// </summary>
public Data Encrypt(Data d, Data key) {
Key = key;
return Encrypt(d);
}
/// <summary>
/// Encrypts the specified Data using preset key and preset initialization vector
/// </summary>
public Data Encrypt(Data d) {
var ms = new MemoryStream();
ValidateKeyAndIv(true);
var cs = new CryptoStream(ms, _crypto.CreateEncryptor(), CryptoStreamMode.Write);
cs.Write(d.Bytes, 0, d.Bytes.Length);
cs.Close();
ms.Close();
return new Data(ms.ToArray());
}
/// <summary>
/// Encrypts the stream to memory using provided key and provided initialization vector
/// </summary>
public Data Encrypt(Stream s, Data key, Data iv) {
IntializationVector = iv;
Key = key;
return Encrypt(s);
}
/// <summary>
/// Encrypts the stream to memory using specified key
/// </summary>
public Data Encrypt(Stream s, Data key) {
Key = key;
return Encrypt(s);
}
/// <summary>
/// Encrypts the specified stream to memory using preset key and preset initialization vector
/// </summary>
public Data Encrypt(Stream s) {
var ms = new MemoryStream();
var b = new byte[_BufferSize + 1];
ValidateKeyAndIv(true);
var cs = new CryptoStream(ms, _crypto.CreateEncryptor(), CryptoStreamMode.Write);
int i = s.Read(b, 0, _BufferSize);
while (i > 0) {
cs.Write(b, 0, i);
i = s.Read(b, 0, _BufferSize);
}
cs.Close();
ms.Close();
return new Data(ms.ToArray());
}
/// <summary>
/// Decrypts the specified data using provided key and preset initialization vector
/// </summary>
public Data Decrypt(Data encryptedData, Data key) {
Key = key;
return Decrypt(encryptedData);
}
/// <summary>
/// Decrypts the specified stream using provided key and preset initialization vector
/// </summary>
public Data Decrypt(Stream encryptedStream, Data key) {
Key = key;
return Decrypt(encryptedStream);
}
/// <summary>
/// Decrypts the specified stream using preset key and preset initialization vector
/// </summary>
public Data Decrypt(Stream encryptedStream) {
var ms = new MemoryStream();
var b = new byte[_BufferSize + 1];
ValidateKeyAndIv(false);
var cs = new CryptoStream(encryptedStream, _crypto.CreateDecryptor(), CryptoStreamMode.Read);
int i;
i = cs.Read(b, 0, _BufferSize);
while (i > 0) {
ms.Write(b, 0, i);
i = cs.Read(b, 0, _BufferSize);
}
cs.Close();
ms.Close();
return new Data(ms.ToArray());
}
/// <summary>
/// Decrypts the specified data using preset key and preset initialization vector
/// </summary>
public Data Decrypt(Data encryptedData) {
var ms = new MemoryStream(encryptedData.Bytes, 0, encryptedData.Bytes.Length);
var b = new byte[encryptedData.Bytes.Length];
ValidateKeyAndIv(false);
var cs = new CryptoStream(ms, _crypto.CreateDecryptor(), CryptoStreamMode.Read);
try {
cs.Read(b, 0, encryptedData.Bytes.Length - 1);
} catch (CryptographicException ex) {
throw new CryptographicException("Unable to decrypt data. The provided key may be invalid.", ex);
} finally {
cs.Close();
}
return new Data(b);
}
}
#endregion
#region " Asymmetric"
/// <summary>
/// Asymmetric encryption uses a pair of keys to encrypt and decrypt.
/// There is a "public" key which is used to encrypt. Decrypting, on the other hand,
/// requires both the "public" key and an additional "private" key. The advantage is
/// that people can send you encrypted messages without being able to decrypt them.
/// </summary>
/// <remarks>
/// The only provider supported is the <see cref="RSACryptoServiceProvider"/>
/// </remarks>
public class Asymmetric {
private const string _ElementCoefficient = "InverseQ";
private const string _ElementExponent = "Exponent";
private const string _ElementModulus = "Modulus";
private const string _ElementParent = "RSAKeyValue";
private const string _ElementPrimeExponentP = "DP";
private const string _ElementPrimeExponentQ = "DQ";
private const string _ElementPrimeP = "P";
private const string _ElementPrimeQ = "Q";
private const string _ElementPrivateExponent = "D";
private const string _KeyCoefficient = "PrivateKey.InverseQ";
//-- http://forum.java.sun.com/thread.jsp?forum=9&thread=552022&tstart=0&trange=15
private const string _KeyExponent = "PublicKey.Exponent";
private const string _KeyModulus = "PublicKey.Modulus";
private const string _KeyPrimeExponentP = "PrivateKey.DP";
private const string _KeyPrimeExponentQ = "PrivateKey.DQ";
private const string _KeyPrimeP = "PrivateKey.P";
private const string _KeyPrimeQ = "PrivateKey.Q";
private const string _KeyPrivateExponent = "PrivateKey.D";
private string _KeyContainerName = "Encryption.AsymmetricEncryption.DefaultContainerName";
private readonly int _KeySize = 1024;
private readonly RSACryptoServiceProvider _rsa;
#region " PublicKey Class"
/// <summary>
/// Represents a public encryption key. Intended to be shared, it
/// contains only the Modulus and Exponent.
/// </summary>
public class PublicKey {
public string Exponent;
public string Modulus;
public PublicKey() {}
public PublicKey(string KeyXml) {
LoadFromXml(KeyXml);
}
/// <summary>
/// Load public key from App.config or Web.config file
/// </summary>
public void LoadFromConfig() {
Modulus = Utils.GetConfigString(_KeyModulus);
Exponent = Utils.GetConfigString(_KeyExponent);
}
/// <summary>
/// Returns *.config file XML section representing this public key
/// </summary>
public string ToConfigSection() {
var sb = new StringBuilder();
{
sb.Append(Utils.WriteConfigKey(_KeyModulus, Modulus));
sb.Append(Utils.WriteConfigKey(_KeyExponent, Exponent));
}
return sb.ToString();
}
/// <summary>
/// Writes the *.config file representation of this public key to a file
/// </summary>
public void ExportToConfigFile(string filePath) {
var sw = new StreamWriter(filePath, false);
sw.Write(ToConfigSection());
sw.Close();
}
/// <summary>
/// Loads the public key from its XML string
/// </summary>
public void LoadFromXml(string keyXml) {
Modulus = Utils.GetXmlElement(keyXml, "Modulus");
Exponent = Utils.GetXmlElement(keyXml, "Exponent");
}
/// <summary>
/// Converts this public key to an RSAParameters object
/// </summary>
public RSAParameters ToParameters() {
var r = new RSAParameters();
r.Modulus = Convert.FromBase64String(Modulus);
r.Exponent = Convert.FromBase64String(Exponent);
return r;
}
/// <summary>
/// Converts this public key to its XML string representation
/// </summary>
public string ToXml() {
var sb = new StringBuilder();
{
sb.Append(Utils.WriteXmlNode(_ElementParent));
sb.Append(Utils.WriteXmlElement(_ElementModulus, Modulus));
sb.Append(Utils.WriteXmlElement(_ElementExponent, Exponent));
sb.Append(Utils.WriteXmlNode(_ElementParent, true));
}
return sb.ToString();
}
/// <summary>
/// Writes the Xml representation of this public key to a file
/// </summary>
public void ExportToXmlFile(string filePath) {
var sw = new StreamWriter(filePath, false);
sw.Write(ToXml());
sw.Close();
}
}
#endregion
#region " PrivateKey Class"
/// <summary>
/// Represents a private encryption key. Not intended to be shared, as it
/// contains all the elements that make up the key.
/// </summary>
public class PrivateKey {
public string Coefficient;
public string Exponent;
public string Modulus;
public string PrimeExponentP;
public string PrimeExponentQ;
public string PrimeP;
public string PrimeQ;
public string PrivateExponent;
public PrivateKey() {}
public PrivateKey(string keyXml) {
LoadFromXml(keyXml);
}
/// <summary>
/// Load private key from App.config or Web.config file
/// </summary>
public void LoadFromConfig() {
Modulus = Utils.GetConfigString(_KeyModulus);
Exponent = Utils.GetConfigString(_KeyExponent);
PrimeP = Utils.GetConfigString(_KeyPrimeP);
PrimeQ = Utils.GetConfigString(_KeyPrimeQ);
PrimeExponentP = Utils.GetConfigString(_KeyPrimeExponentP);
PrimeExponentQ = Utils.GetConfigString(_KeyPrimeExponentQ);
Coefficient = Utils.GetConfigString(_KeyCoefficient);
PrivateExponent = Utils.GetConfigString(_KeyPrivateExponent);
}
/// <summary>
/// Converts this private key to an RSAParameters object
/// </summary>
public RSAParameters ToParameters() {
var r = new RSAParameters();
r.Modulus = Convert.FromBase64String(Modulus);
r.Exponent = Convert.FromBase64String(Exponent);
r.P = Convert.FromBase64String(PrimeP);
r.Q = Convert.FromBase64String(PrimeQ);
r.DP = Convert.FromBase64String(PrimeExponentP);
r.DQ = Convert.FromBase64String(PrimeExponentQ);
r.InverseQ = Convert.FromBase64String(Coefficient);
r.D = Convert.FromBase64String(PrivateExponent);
return r;
}
/// <summary>
/// Returns *.config file XML section representing this private key
/// </summary>
public string ToConfigSection() {
var sb = new StringBuilder();
{
sb.Append(Utils.WriteConfigKey(_KeyModulus, Modulus));
sb.Append(Utils.WriteConfigKey(_KeyExponent, Exponent));
sb.Append(Utils.WriteConfigKey(_KeyPrimeP, PrimeP));
sb.Append(Utils.WriteConfigKey(_KeyPrimeQ, PrimeQ));
sb.Append(Utils.WriteConfigKey(_KeyPrimeExponentP, PrimeExponentP));
sb.Append(Utils.WriteConfigKey(_KeyPrimeExponentQ, PrimeExponentQ));
sb.Append(Utils.WriteConfigKey(_KeyCoefficient, Coefficient));
sb.Append(Utils.WriteConfigKey(_KeyPrivateExponent, PrivateExponent));
}
return sb.ToString();
}
/// <summary>
/// Writes the *.config file representation of this private key to a file
/// </summary>
public void ExportToConfigFile(string strFilePath) {
var sw = new StreamWriter(strFilePath, false);
sw.Write(ToConfigSection());
sw.Close();
}
/// <summary>
/// Loads the private key from its XML string
/// </summary>
public void LoadFromXml(string keyXml) {
Modulus = Utils.GetXmlElement(keyXml, "Modulus");
Exponent = Utils.GetXmlElement(keyXml, "Exponent");
PrimeP = Utils.GetXmlElement(keyXml, "P");
PrimeQ = Utils.GetXmlElement(keyXml, "Q");
PrimeExponentP = Utils.GetXmlElement(keyXml, "DP");
PrimeExponentQ = Utils.GetXmlElement(keyXml, "DQ");
Coefficient = Utils.GetXmlElement(keyXml, "InverseQ");
PrivateExponent = Utils.GetXmlElement(keyXml, "D");
}
/// <summary>
/// Converts this private key to its XML string representation
/// </summary>
public string ToXml() {
var sb = new StringBuilder();
{
sb.Append(Utils.WriteXmlNode(_ElementParent));
sb.Append(Utils.WriteXmlElement(_ElementModulus, Modulus));
sb.Append(Utils.WriteXmlElement(_ElementExponent, Exponent));
sb.Append(Utils.WriteXmlElement(_ElementPrimeP, PrimeP));
sb.Append(Utils.WriteXmlElement(_ElementPrimeQ, PrimeQ));
sb.Append(Utils.WriteXmlElement(_ElementPrimeExponentP, PrimeExponentP));
sb.Append(Utils.WriteXmlElement(_ElementPrimeExponentQ, PrimeExponentQ));
sb.Append(Utils.WriteXmlElement(_ElementCoefficient, Coefficient));
sb.Append(Utils.WriteXmlElement(_ElementPrivateExponent, PrivateExponent));
sb.Append(Utils.WriteXmlNode(_ElementParent, true));
}
return sb.ToString();
}
/// <summary>
/// Writes the Xml representation of this private key to a file
/// </summary>
public void ExportToXmlFile(string filePath) {
var sw = new StreamWriter(filePath, false);
sw.Write(ToXml());
sw.Close();
}
}
#endregion
/// <summary>
/// Instantiates a new asymmetric encryption session using the default key size;
/// this is usally 1024 bits
/// </summary>
public Asymmetric() {
_rsa = GetRSAProvider();
}
/// <summary>
/// Instantiates a new asymmetric encryption session using a specific key size
/// </summary>
public Asymmetric(int keySize) {
_KeySize = keySize;
_rsa = GetRSAProvider();
}
/// <summary>
/// Sets the name of the key container used to store this key on disk; this is an
/// unavoidable side effect of the underlying Microsoft CryptoAPI.
/// </summary>
/// <remarks>
/// http://support.microsoft.com/default.aspx?scid=http://support.microsoft.com:80/support/kb/articles/q322/3/71.asp&NoWebContent=1
/// </remarks>
public string KeyContainerName {
get { return _KeyContainerName; }
set { _KeyContainerName = value; }
}
/// <summary>
/// Returns the current key size, in bits
/// </summary>
public int KeySizeBits {
get { return _rsa.KeySize; }
}
/// <summary>
/// Returns the maximum supported key size, in bits
/// </summary>
public int KeySizeMaxBits {
get { return _rsa.LegalKeySizes[0].MaxSize; }
}
/// <summary>
/// Returns the minimum supported key size, in bits
/// </summary>
public int KeySizeMinBits {
get { return _rsa.LegalKeySizes[0].MinSize; }
}
/// <summary>
/// Returns valid key step sizes, in bits
/// </summary>
public int KeySizeStepBits {
get { return _rsa.LegalKeySizes[0].SkipSize; }
}
/// <summary>
/// Returns the default public key as stored in the *.config file
/// </summary>
public PublicKey DefaultPublicKey {
get {
var pubkey = new PublicKey();
pubkey.LoadFromConfig();
return pubkey;
}
}
/// <summary>
/// Returns the default private key as stored in the *.config file
/// </summary>
public PrivateKey DefaultPrivateKey {
get {
var privkey = new PrivateKey();
privkey.LoadFromConfig();
return privkey;
}
}
/// <summary>
/// Generates a new public/private key pair as objects
/// </summary>
public void GenerateNewKeyset(ref PublicKey publicKey, ref PrivateKey privateKey) {
string PublicKeyXML = string.Empty;
string PrivateKeyXML = string.Empty;
GenerateNewKeyset(ref PublicKeyXML, ref PrivateKeyXML);
publicKey = new PublicKey(PublicKeyXML);
privateKey = new PrivateKey(PrivateKeyXML);
}
/// <summary>
/// Generates a new public/private key pair as XML strings
/// </summary>
public void GenerateNewKeyset(ref string publicKeyXML, ref string privateKeyXML) {
RSA rsa = RSA.Create();
publicKeyXML = rsa.ToXmlString(false);
privateKeyXML = rsa.ToXmlString(true);
}
/// <summary>
/// Encrypts data using the default public key
/// </summary>
public Data Encrypt(Data d) {
PublicKey PublicKey = DefaultPublicKey;
return Encrypt(d, PublicKey);
}
/// <summary>
/// Encrypts data using the provided public key
/// </summary>
public Data Encrypt(Data d, PublicKey publicKey) {
_rsa.ImportParameters(publicKey.ToParameters());
return EncryptPrivate(d);
}
/// <summary>
/// Encrypts data using the provided public key as XML
/// </summary>
public Data Encrypt(Data d, string publicKeyXML) {
LoadKeyXml(publicKeyXML, false);
return EncryptPrivate(d);
}
private Data EncryptPrivate(Data d) {
try {
return new Data(_rsa.Encrypt(d.Bytes, false));
} catch (CryptographicException ex) {
if (ex.Message.ToLower().IndexOf("bad length") > -1) {
throw new CryptographicException(
"Your data is too large; RSA encryption is designed to encrypt relatively small amounts of data. The exact byte limit depends on the key size. To encrypt more data, use symmetric encryption and then encrypt that symmetric key with asymmetric RSA encryption.",
ex);
}
throw;
}
}
/// <summary>
/// Decrypts data using the default private key
/// </summary>
public Data Decrypt(Data encryptedData) {
var PrivateKey = new PrivateKey();
PrivateKey.LoadFromConfig();
return Decrypt(encryptedData, PrivateKey);
}
/// <summary>
/// Decrypts data using the provided private key
/// </summary>
public Data Decrypt(Data encryptedData, PrivateKey PrivateKey) {
_rsa.ImportParameters(PrivateKey.ToParameters());
return DecryptPrivate(encryptedData);
}
/// <summary>
/// Decrypts data using the provided private key as XML
/// </summary>
public Data Decrypt(Data encryptedData, string PrivateKeyXML) {
LoadKeyXml(PrivateKeyXML, true);
return DecryptPrivate(encryptedData);
}
private void LoadKeyXml(string keyXml, bool isPrivate) {
try {
_rsa.FromXmlString(keyXml);
} catch (XmlSyntaxException ex) {
string s = null;
if (isPrivate) {
s = "private";
} else {
s = "public";
}
throw new XmlSyntaxException(
string.Format("The provided {0} encryption key XML does not appear to be valid.", s), ex);
}
}
private Data DecryptPrivate(Data encryptedData) {
return new Data(_rsa.Decrypt(encryptedData.Bytes, false));
}
/// <summary>
/// gets the default RSA provider using the specified key size;
/// not_e that Microsoft's CryptoAPI has an underlying file system dependency that is unavoidable
/// </summary>
/// <remarks>
/// http://support.microsoft.com/default.aspx?scid=http://support.microsoft.com:80/support/kb/articles/q322/3/71.asp&NoWebContent=1
/// </remarks>
private RSACryptoServiceProvider GetRSAProvider() {
RSACryptoServiceProvider rsa = null;
CspParameters csp = null;
try {
csp = new CspParameters();
csp.KeyContainerName = _KeyContainerName;
rsa = new RSACryptoServiceProvider(_KeySize, csp);
rsa.PersistKeyInCsp = false;
RSACryptoServiceProvider.UseMachineKeyStore = true;
return rsa;
} catch (CryptographicException ex) {
if (ex.Message.ToLower().IndexOf("csp for this implementation could not be acquired") > -1) {
throw new Exception(
// ReSharper disable PossibleNullReferenceException
string.Format("Unable to obtain Cryptographic Service Provider. Either the permissions are incorrect on the 'C:\\Documents and Settings\\All Users\\Application Data\\Microsoft\\Crypto\\RSA\\MachineKeys' folder, or the current security context '{0}' does not have access to this folder.", WindowsIdentity.GetCurrent().Name), ex);
// ReSharper restore PossibleNullReferenceException
} else {
throw;
}
} finally {
if ((rsa != null)) {}
if ((csp != null)) {}
}
}
}
#endregion
#region " Data"
/// <summary>
/// represents Hex, Byte, Base64, or String data to encrypt/decrypt;
/// use the .Text property to set/get a string representation
/// use the .Hex property to set/get a string-based Hexadecimal representation
/// use the .Base64 to set/get a string-based Base64 representation
/// </summary>
public class Data {
/// <summary>
/// Determines the default text encoding across ALL Data instances
/// </summary>
public static Encoding DefaultEncoding = Encoding.GetEncoding("Windows-1252");
private byte[] _b;
private int _MaxBytes;
private int _MinBytes;
private int _StepBytes;
/// <summary>
/// Determines the default text encoding for this Data instance
/// </summary>
public Encoding Encoding = DefaultEncoding;
/// <summary>
/// Creates new, empty encryption data
/// </summary>
public Data() {
_StepBytes = 0;
}
/// <summary>
/// Creates new encryption data with the specified byte array
/// </summary>
public Data(byte[] b) {
_StepBytes = 0;
_b = b;
}
/// <summary>
/// Creates new encryption data with the specified string;
/// will be converted to byte array using default encoding
/// </summary>
public Data(string s) {
_StepBytes = 0;
Text = s;
}
/// <summary>
/// Creates new encryption data using the specified string and the
/// specified encoding to convert the string to a byte array.
/// </summary>
public Data(string s, Encoding encoding) {
_StepBytes = 0;
Encoding = encoding;
Text = s;
}
/// <summary>
/// returns true if no data is present
/// </summary>
public bool IsEmpty {
get {
if (_b == null) {
return true;
}
if (_b.Length == 0) {
return true;
}
return false;
}
}
/// <summary>
/// allowed step interval, in bytes, for this data; if 0, no limit
/// </summary>
public int StepBytes {
get { return _StepBytes; }
set { _StepBytes = value; }
}
/// <summary>
/// allowed step interval, in bits, for this data; if 0, no limit
/// </summary>
public int StepBits {
get { return _StepBytes*8; }
set { _StepBytes = value/8; }
}
/// <summary>
/// minimum number of bytes allowed for this data; if 0, no limit
/// </summary>
public int MinBytes {
get { return _MinBytes; }
set { _MinBytes = value; }
}
/// <summary>
/// minimum number of bits allowed for this data; if 0, no limit
/// </summary>
public int MinBits {
get { return _MinBytes*8; }
set { _MinBytes = value/8; }
}
/// <summary>
/// maximum number of bytes allowed for this data; if 0, no limit
/// </summary>
public int MaxBytes {
get { return _MaxBytes; }
set { _MaxBytes = value; }
}
/// <summary>
/// maximum number of bits allowed for this data; if 0, no limit
/// </summary>
public int MaxBits {
get { return _MaxBytes*8; }
set { _MaxBytes = value/8; }
}
/// <summary>
/// Returns the byte representation of the data;
/// This will be padded to MinBytes and trimmed to MaxBytes as necessary!
/// </summary>
public byte[] Bytes {
get {
if (_MaxBytes > 0) {
if (_b.Length > _MaxBytes) {
var b = new byte[_MaxBytes];
Array.Copy(_b, b, b.Length);
_b = b;
}
}
if (_MinBytes > 0) {
if (_b.Length < _MinBytes) {
var b = new byte[_MinBytes];
Array.Copy(_b, b, _b.Length);
_b = b;
}
}
return _b;
}
set { _b = value; }
}
/// <summary>
/// Sets or returns text representation of bytes using the default text encoding
/// </summary>
public string Text {
get {
if (_b == null) {
return "";
}
//-- need to handle nulls here; oddly, C# will happily convert
//-- nulls into the string whereas VB stops converting at the
//-- first null!
int i = Array.IndexOf(_b, (byte) 0);
if (i >= 0) {
return Encoding.GetString(_b, 0, i);
}
return Encoding.GetString(_b);
}
set { _b = Encoding.GetBytes(value); }
}
/// <summary>
/// Sets or returns Hex string representation of this data
/// </summary>
public string Hex {
get { return Utils.ToHex(_b); }
set { _b = Utils.FromHex(value); }
}
/// <summary>
/// Sets or returns Base64 string representation of this data
/// </summary>
public string Base64 {
get { return Utils.ToBase64(_b); }
set { _b = Utils.FromBase64(value); }
}
/// <summary>
/// Returns text representation of bytes using the default text encoding
/// </summary>
public new string ToString() {
return Text;
}
/// <summary>
/// returns Base64 string representation of this data
/// </summary>
public string ToBase64() {
return Base64;
}
/// <summary>
/// returns Hex string representation of this data
/// </summary>
public string ToHex() {
return Hex;
}
}
#endregion
#region " Utils"
/// <summary>
/// Friend class for shared utility methods used by multiple Encryption classes
/// </summary>
internal class Utils {
/// <summary>
/// converts an array of bytes to a string Hex representation
/// </summary>
internal static string ToHex(byte[] ba) {
if (ba == null || ba.Length == 0) {
return "";
}
const string HexFormat = "{0:X2}";
var sb = new StringBuilder();
foreach (byte b in ba) {
sb.Append(string.Format(HexFormat, b));
}
return sb.ToString();
}
/// <summary>
/// converts from a string Hex representation to an array of bytes
/// </summary>
internal static byte[] FromHex(string hexEncoded) {
if (hexEncoded == null || hexEncoded.Length == 0) {
return null;
}
try {
int l = Convert.ToInt32(hexEncoded.Length/2);
var b = new byte[l];
for (int i = 0; i <= l - 1; i++) {
b[i] = Convert.ToByte(hexEncoded.Substring(i*2, 2), 16);
}
return b;
} catch (Exception ex) {
throw new FormatException(
"The provided string does not appear to be Hex encoded:" + Environment.NewLine + hexEncoded +
Environment.NewLine, ex);
}
}
/// <summary>
/// converts from a string Base64 representation to an array of bytes
/// </summary>
internal static byte[] FromBase64(string base64Encoded) {
if (base64Encoded == null || base64Encoded.Length == 0) {
return null;
}
try {
return Convert.FromBase64String(base64Encoded);
} catch (FormatException ex) {
throw new FormatException(
"The provided string does not appear to be Base64 encoded:" + Environment.NewLine + base64Encoded +
Environment.NewLine, ex);
}
}
/// <summary>
/// converts from an array of bytes to a string Base64 representation
/// </summary>
internal static string ToBase64(byte[] b) {
if (b == null || b.Length == 0) {
return "";
}
return Convert.ToBase64String(b);
}
/// <summary>
/// retrieve an element from an XML string
/// </summary>
internal static string GetXmlElement(string xml, string element) {
Match m = Regex.Match(xml, "<" + element + ">(?<Element>[^>]*)</" + element + ">", RegexOptions.IgnoreCase);
if (m == null) {
throw new Exception("Could not find <" + element + "></" + element + "> in provided Public Key XML.");
}
return m.Groups["Element"].ToString();
}
internal static string GetConfigString(string key) {
return GetConfigString(key, true);
}
/// <summary>
/// Returns the specified string value from the application .config file
/// </summary>
internal static string GetConfigString(string key, bool isRequired) {
var s = ConfigurationManager.AppSettings.Get(key);
if (s == null) {
if (isRequired) {
throw new ConfigurationErrorsException("key <" + key + "> is missing from .config file");
}
return "";
}
return s;
}
internal static string WriteConfigKey(string key, string value) {
string s = "<add key=\"{0}\" value=\"{1}\" />" + Environment.NewLine;
return string.Format(s, key, value);
}
internal static string WriteXmlElement(string element, string value) {
string s = "<{0}>{1}</{0}>" + Environment.NewLine;
return string.Format(s, element, value);
}
internal static string WriteXmlNode(string element) {
return WriteXmlNode(element, false);
}
internal static string WriteXmlNode(string element, bool isClosing) {
string s;
if (isClosing) {
s = "</{0}>" + Environment.NewLine;
} else {
s = "<{0}>" + Environment.NewLine;
}
return string.Format(s, element);
}
}
#endregion
// ReSharper restore InconsistentNaming
Raw
RandomKeyHelper.cs
public class RandomKeyHelper
{
private const string LETTERS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ!_*()[]{}¿'|°$%&";
public static string Generate()
{
var key = "clave dinamica basada en la session de 128 chars";
return key;
}
public static string GeneratePersistiveKey()
{
var key = "clave inferida a traves del usuario actual (por ejemplo MD5) que no cambia para un usuario. 128 chars";
return key;
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment