共享但安全内存在3个不同的应用程序（Windows） [英] Shared but Secure Memory between 3 Different Apps (Windows)

问题描述

我们正在编写一组包含IE工具栏，Firefox工具栏和Windows桌面客户端的Windows应用程序。

We are writing a set of application for windows which contains IE toolbar, Firefox toolbar and Windows Desktop client.

在使用任何这些组件之前，用户提供了他的密码并说他需要保存这个代码1小时或他选择的任何选项。

Before using any of these components user provides his secret code and says that he need to save this code for 1hr or whatever option he chooses.

现在我们面临的挑战是，我们必须使用相同的密码解密他的数据，而他在所有3组件中使用。目前我们正在写该密钥一个具有AES加密的普通文件，其中包含源代码中的特定密钥，以及从该文件获得的所有3个组件访问密钥。

Now the challenge for us is that we have to use the same secret code to decrypt his data while he uses in all 3 component, Currently we are writing that secret key in a plain file with AES encryption with a specific key buried in the source code and all 3 component access that key from that file.

现在请根据以下限制/要求为我提供更好的建议。

Now please suggest me better way in light of following limitations/requirement.

2. IE使用受保护模式，因此无法访问高优先级资源


3. 的用户用他自己的安全密钥加密，因此我们必须让他的密钥解密他的数据。并且当他退出时，我们松开此密钥以确保安全性。


4. 所有3个组件都在低特权进程中运行。

1. All 3 components are fully/partially written in .Net.
2. IE uses the protected mode so no high privileged resource can be accessed
3. the data of the user is encrypted with his own security key hence it is must for us to have his key to decrypt his data. and when he quits we loose this key to ensure the security.
4. All 3 components runs in low privileged processes.

有人可以帮助我。

>

推荐答案

您是否尝试过DPAPI？

Have you tried DPAPI?

http://msdn.microsoft.com/en-us/library/system.security.cryptography .protecteddata.aspx

http://msdn.microsoft.com/en-us/library/ms229741（v = VS.85）.aspx

这篇关于共享但安全内存在3个不同的应用程序（Windows）的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！