Solved

Provide credentials in .net application without storing in code

Posted on 2009-05-20
1
282 Views
Last Modified: 2012-05-07
Hi,
I am in the process of developing a .net business application which processes  sensitive data - the problem is that some of the users of the app are not on a domain which means I cannot use integrated security.  We have too small an IT staff to create and maintain user logins on sql server, we are running sqlserver 2005 standard edition.

I cannot store the credentials in the code, maintainability and risk are the reasons. I need a secure and easy to maintain method of providing credentials to applications. Some ideas I have would be using a udl or a web service to pass the credentials.

Can you suggest the most secure method of providing credentials, the credentials would be specific  to the applications,  when using integrated security is not possible.

Thanks in advance.
0
Comment
Question by:BradAndMindy
1 Comment
 
LVL 83

Accepted Solution

by:
CodeCruiser earned 500 total points
ID: 24438820
You can store the credentials in code but encrypt them.
http://www.devarticles.com/c/a/VB.Net/String-Encryption-With-Visual-Basic-.NET/

0

Featured Post

Master Your Team's Linux and Cloud Stack

Come see why top tech companies like Mailchimp and Media Temple use Linux Academy to build their employee training programs.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This article describes relatively difficult and non-obvious issues that are likely to arise when creating COM class in Visual Studio and deploying it by professional MSI-authoring tools. It is assumed that the reader is already familiar with the cla…
For those of you who don't follow the news, or just happen to live under rocks, Microsoft Research released a beta SDK (http://www.microsoft.com/en-us/download/details.aspx?id=27876) for the Xbox 360 Kinect. If you don't know what a Kinect is (http:…
This video shows how to quickly and easily add an email signature for all users on Exchange 2016. The resulting signature is applied on a server level by Exchange Online. The email signature template has been downloaded from: www.mail-signatures…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question