#954 – Store Confidential Data Only Within SecureString Instances

November 20, 2013 3 Comments

You can use the SecureString class to securely store confidential text-based data.

The most important guideline, for security purposes, when using the SecureString class is:

Never store confidential data in a managed object (other than an instance of a SecureString)

If you transfer data from a SecureString into some managed object (e.g. a string or a byte array), the data will be less secure, due to the security issues with storing data in managed objects.

If you must work with confidential data in memory within your application, the proper procedure is to extract and decrypt the string data, but to store it in an unmanaged data structure (e.g. a BSTR).  The data will be vulnerable while in memory within the unmanaged object, but you can then explicitly delete the data when done working with it, limiting the amount of time during which the data is vulnerable.

Advertisement

Filed under Security Tagged with , ,

About Sean
Software developer in the Twin Cities area, passionate about software development and sailing.

3 Responses to #954 – Store Confidential Data Only Within SecureString Instances

  1. sshumakov says:
    November 20, 2013 at 6:47 am

    HI, great article :). As far as I know WPF or WinForms controls like TextBox provide Text property which is of string type.

    How confidential data provided by user using UI should be handled? Is there any commonly accepted solution for this?

    Reply

  2. Pingback: #956 – PasswordBox Stores Password as a SecureString | 2,000 Things You Should Know About WPF

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

%d bloggers like this: