Hi,
I am writing a Windows Forms application which requires the users to log in. I have done this before. The method I used last time was storing the usernames / passwords in a file which could be encrypted / decrypted as required by the program. But I hard coded the key into the program like this:
private RijndaelManaged rm = new RijndaelManaged();
byte[] key =
{ 12, 84, 46, 77, 09, 27, 99, 65, 92, 84,
52, 57, 35, 95, 75, 57 };
byte[] IV =
{ 12, 84, 46, 77, 09, 27, 99, 65, 92, 84,
52, 57, 35, 95, 75, 57 };
This is obviously a bad idea. How can I store / distribute keys securely outside the program?