Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Convert String to SecureString

Tags:

c#

.net

security

securestring

People also ask

What is SecureString?

SecureString is a string type that provides a measure of security. It tries to avoid storing potentially sensitive strings in process memory as plain text.

What is a SecureString Powershell?

Description. The ConvertTo-SecureString cmdlet converts encrypted standard strings into secure strings. It can also convert plain text to secure strings. It is used with ConvertFrom-SecureString and Read-Host .

How secure is ConvertFrom-SecureString?

SecureString uses Windows' Data protection API. It is likely to be strong enough to be unbreakable in practical situations - save rubber hose cryptanalysis. There might be ways to protect data, if you explain in more a detail what you are trying to achieve.

There is also another way to convert between SecureString and String.

1. String to SecureString

SecureString theSecureString = new NetworkCredential("", "myPass").SecurePassword;

2. SecureString to String

string theString = new NetworkCredential("", theSecureString).Password;

Here is the link


You don't. The whole reason for using the SecureString object is to avoid creating a string object (which is loaded into memory and kept there in plaintext until garbage collection). However, you can add characters to a SecureString by appending them.

var s = new SecureString();
s.AppendChar('d');
s.AppendChar('u');
s.AppendChar('m');
s.AppendChar('b');
s.AppendChar('p');
s.AppendChar('a');
s.AppendChar('s');
s.AppendChar('s');
s.AppendChar('w');
s.AppendChar('d');

below method helps to convert string to secure string

private SecureString ConvertToSecureString(string password)
{
    if (password == null)
        throw new ArgumentNullException("password");

    var securePassword = new SecureString();

    foreach (char c in password)
        securePassword.AppendChar(c);

    securePassword.MakeReadOnly();
    return securePassword;
}

You can follow this:

string password = "test";
SecureString sec_pass = new SecureString();
Array.ForEach(password.ToArray(), sec_pass.AppendChar);
sec_pass.MakeReadOnly();

Here is a cheap linq trick.

            SecureString sec = new SecureString();
            string pwd = "abc123"; /* Not Secure! */
            pwd.ToCharArray().ToList().ForEach(sec.AppendChar);
            /* and now : seal the deal */
            sec.MakeReadOnly();

Related questions

Check if a value is in an array (C#)
is vs typeof
converting a base 64 string to an image and saving it
Difference in C# between different getter styles
How do I intercept a method call in C#?
Mixing C# & VB In The Same Project
Why are private fields private to the type, not the instance?
Why "decimal" is not a valid attribute parameter type?
Should I take ILogger, ILogger<T>, ILoggerFactory or ILoggerProvider for a library?
Making a property deserialize but not serialize with json.net
How do I run a Python script from C#?
How to read request body in an asp.net core webapi controller?
Check if Key Exists in NameValueCollection
Why CancellationToken is separate from CancellationTokenSource?
Why aren't variables declared in "try" in scope in "catch" or "finally"?
How to configure the web.config to allow requests of any length
C# 3.0 auto-properties — useful or not? [closed]
How to check if a class inherits another class without instantiating it? [duplicate]
How to send HTML-formatted email? [duplicate]
async await return Task

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!