Encryption/Decryption with .NET

hey thanks for the crypto class, saved me a lot of time.

The decrypted strings seem to have one or more chr(0)
tacked on to the end.

encr = c.encrypt(origvalue,key)
decr = c.decrypt(encr,key)

if origvalue = decr then... ( will return false )

yes it will have null-chars on the end. you will also notice if you encode a string that will return a string with a null-char in, it will cut the string after that 0. so if the encrypted message is:
23, 27, 44, 88, 0, 99, 33
99 and 33 will not be in the string that encrypt returns.. this will cause "bad data" exception in decrypting.

also if the null-byte is the last byte of the encrypted message you will not know if the byte should be in the string or not, that will also generate a "bad data" exception. i did workaround code for this but if anyone know any way of get ms.GetBuffer() to only return a fixed array with only values that it has generated it would be nice.

After many hours of battling with others sample code and sifting through countless message board posts I believe I have managed to come up with a fairly functional and stable encryption and decryption class that utilises multiple encryption methods.

The code is shown below and a sample call would look something like
Dim Crypto As New Crypto(Crypto.Providers.DES)
Dim Encrypted as string = Crypto.Encrypt("Test String", "Keystring")
Dim Decrypted as string = Crypto.Decrypt(Encrypted , "Keystring")

Imports System.Security.Cryptography
Imports System.IO
Imports System.Text

'SymmCrypto is a wrapper of System.Security.Cryptography.SymmetricAlgorithm classes
'and simplifies the interface. It supports customized SymmetricAlgorithm as well.
'Original Code from Frank Fang
'Revised by Jerom Howard to remove Bad Data errors, create seperate CryptoIV and
'use the maximum legal keysize for each encryption algorithm

Public Class Crypto
'256 Bit IV Key that is truncated when a smaller keys are required
Private bytIV() As Byte = _
{12, 241, 10, 21, 90, 74, 11, 39, 9, 91, 45, 78, 189, 211, 133, 62, 121, 22, 101, 34, 90, 74, 121, 39, 93, 9, 45, 78, 1, 211, 33, 162}

'Supported .Net intrinsic SymmetricAlgorithm classes.
Public Enum Providers
DES
RC2
Rijndael
End Enum

Private _CryptoService As SymmetricAlgorithm

'Constructor for using an intrinsic .Net SymmetricAlgorithm class.
Public Sub New(ByVal NetSelected As Providers)
Select Case NetSelected
Case Providers.DES
_CryptoService = New DESCryptoServiceProvider()
Case Providers.RC2
_CryptoService = New RC2CryptoServiceProvider()
Case Providers.Rijndael
_CryptoService = New RijndaelManaged()
End Select
End Sub

'Constructor for using a customized SymmetricAlgorithm class.
Public Sub New(ByVal ServiceProvider As SymmetricAlgorithm)
_CryptoService = ServiceProvider
End Sub

'Depending on the legal key size limitations of a specific CryptoService provider
'and length of the private key provided, padding the secret key with a character
'or triming it to meet the legal size of the algorithm.
Private Function GetLegalKey(ByVal Key As String) As Byte()
'key sizes are in bits
Dim sTemp As String
If (_CryptoService.LegalKeySizes.Length > 0) Then
Dim maxSize As Integer = _CryptoService.LegalKeySizes(0).MaxSize
If Key.Length * 8 > maxSize Then
sTemp = Key.Substring(0, (maxSize / 8))
ReDim Preserve bytIV((maxSize / 8) - 1)
Else
Dim moreSize As Integer = _CryptoService.LegalKeySizes(0).MinSize
Do While (Key.Length * 8 > moreSize)
moreSize += _CryptoService.LegalKeySizes(0).SkipSize
Loop
ReDim Preserve bytIV(moreSize / 8)
sTemp = Key.PadRight(moreSize / 8, "X")
End If
Else
sTemp = Key
ReDim Preserve bytIV(Key.Length)
End If

'convert the secret key to byte array
Return ASCIIEncoding.ASCII.GetBytes(sTemp)
End Function

Public Function Encrypt(ByVal Source As String, ByVal Key As String) As String
Dim bytIn As Byte() = System.Text.ASCIIEncoding.ASCII.GetBytes(System.Web.HttpUtility.UrlEncode(Source))
Dim ms As MemoryStream = New MemoryStream()

'set the keys
_CryptoService.Key = GetLegalKey(Key)
_CryptoService.IV = bytIV

'create an Encryptor from the Provider Service instance
Dim encrypto As ICryptoTransform = _CryptoService.CreateEncryptor()

'create Crypto Stream that transforms a stream using the encryption
Dim cs As CryptoStream = New CryptoStream(ms, encrypto, CryptoStreamMode.Write)

'write out encrypted content into MemoryStream
cs.Write(bytIn, 0, bytIn.Length)
cs.FlushFinalBlock()
cs.Close()
Dim bytOut() As Byte = ms.ToArray()
ms.Close()

Return Convert.ToBase64String(bytOut) 'convert into Base64 so that the result can be used in xml
End Function

Public Function Decrypt(ByVal Source As String, ByVal Key As String) As String
'convert from Base64 to binary
Dim bytIn As Byte() = System.Convert.FromBase64String(Source)
Dim ms As MemoryStream = New MemoryStream(bytIn)

Dim bytKey() As Byte = GetLegalKey(Key)
Dim bytTemp(bytIn.Length) As Byte

'set the private key
_CryptoService.Key = bytKey
_CryptoService.IV = bytIV

'create a Decryptor from the Provider Service instance
Dim encrypto As ICryptoTransform = _CryptoService.CreateDecryptor()

'create Crypto Stream that transforms a stream using the decryption
Dim cs As CryptoStream = New CryptoStream(ms, encrypto, CryptoStreamMode.Read)
Try
'read out the result from the Crypto Stream
cs.Read(bytTemp, 0, bytTemp.Length)

cs.FlushFinalBlock()
ms.Close()
cs.Close()
Catch
End Try
Return System.Web.HttpUtility.UrlDecode(Encoding.ASCII.GetString(bytTemp))
End Function

End Class

I always get an error message at

byte[] bytIn = System.Convert.FromBase64String(source);

in the decode routine:

Invalid length for a Base-64 char array.

You should never set the key and the IV knowingly to the same value - the IV (Initialization vector) is normally transmitted with the encrypted data whereas the key remains secret - also you should use a different IV each time you encrypt the data whereas you would normally reuse the same key - in this manner you could encrypt the same piece of data (plaintext) twice and get different crypt text however because you transmit the IV with the encrypted data (crypttext) then the recipient can still decrypt the message.

Hi

I want some clarification.
The problem is
One company supplied their software Cd with a key.
Before installation I have to send the key to the
company by e-mail or postal mail. Then they will send me one more key. Using those key I have to install and it will work also. Once again I can not install that software in some other system not even the same system.
ie we can not use more than one time.

I dont know how it is implemented?
But it is very intresting.
Can you suggest me how to implement?
Do you have any sample code?
pl. write me.

with regards
Mathi
mathimaran@mailcity.com

Encryption/Decryption with .NET

Encryption and Decryption

Revision History

License

Comments and Discussions