Hiding/Encrypting Sensitive Information in C# Windows Forms Application

Question

0.00/5 (No votes)

See more:

I am creating an application that requires that I upload files to my server from the client's computer. I have decided to use an ftp class which allows me to upload/download files from my server easily.

The problem I am having now is making sure that my sensitive ftp information is encrypted and hidden from the user. This is a windows forms application in C#, what is the best way to hide this information from being found by any means?

Posted 10-Jul-13 5:12am

UNOWN301

Add a Solution

2 solutions

Add a Solution

Add your solution here

Treat my content as plain text, not as HTML

Preview 0

…

Existing Members

Sign in to your account

...or Join us

Download, Vote, Comment, Publish.

Your Email
Password
Forgot your password?

Your Email
This email is in use. Do you need your password?
Optional Password

I have read and agree to the Terms of Service and Privacy Policy
Please subscribe me to the CodeProject newsletters

When answering a question please:

Read the question carefully.
Understand that English isn't everyone's first language so be lenient of bad spelling and grammar.
If a question is poorly phrased then either ask for clarification, ignore it, or edit the question and fix the problem. Insults are not welcome.
Don't tell someone to read the manual. Chances are they have and don't get it. Provide an answer or move on to the next question.

Let's work to help developers, not make them feel stupid.

This content, along with any associated source code and files, is licensed under The Code Project Open License (CPOL)

Thanks7872 · Answer 1 · 2013-07-10T07:49:00

Refer these links.

Use SFTPBlackbox from C# .NET to upload and download files via SFTP (SSH File Transfer Protocol)[^]

SecureFTPConnection Class[^]

Chilkat FTP-2 .NET Component[^]

sftp client code in C# without using any dll[^]

An FTP secure client library for C#[^]

Regards.. :laugh:

Ravi Bhavnani · Answer 2 · 2013-07-10T06:07:00

Solution 1

By "sensitive FTP information", I assume you mean the FTP credentials? If so, I would download the credentials (which should be encrypted using public/private keys) from a known location. This will allow you to update the credentials without requiring modifications to your app.

/ravi

Posted 10-Jul-13 6:07am

Ravi Bhavnani

Comments

UNOWN301 10-Jul-13 12:22pm

Ya, this was my first inclination. Having the credentials in a remote location does allow me to update them without modifying the app, however it doesn't really add too much extra security because someone can simply decompile my code, see my decryption code and then implement it themselves...right?

Ravi Bhavnani 10-Jul-13 12:27pm

If you want more security, you could use SSL. That way even with Fiddler casual users won't be able to view the key encrypted credentials.

/ravi