public void TestProtectPassword()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
int length = 100;
var rand = new RandomGenerator();
for (int i = 0; i < length; i++)
{
using (var password = rand.RandomSecureStringPassword(10, 50))
{
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
// base 64
var encryptedBase64 = AesEncryptor.Encrypt1000(stringToEncrypt, password);
var decryptedBase64 = AesEncryptor.Decrypt(encryptedBase64, password);
Assert.AreEqual(stringToEncrypt, decryptedBase64);
// base 36
var encryptedBase36 = AesEncryptor.Encrypt1000(stringToEncrypt, password, true);
var decryptedBase36 = AesEncryptor.Decrypt(encryptedBase36, password, true);
Assert.AreEqual(stringToEncrypt, decryptedBase36);
var protectedPwStr = AsymmetricEncryptor.EncryptToBase64StringAsync(password, publicKey).GetAwaiter().GetResult();
var unprotectedPwdStr = AsymmetricEncryptor.DecryptFromBase64StringAsync(protectedPwStr, privateKey).GetAwaiter().GetResult();
var decryptedString = AesEncryptor.Decrypt(encryptedBase64, unprotectedPwdStr);
Assert.AreEqual(stringToEncrypt, decryptedString);
}
}
}
public void TestAes1000WithCertificateAndSerialization()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
var rand = new RandomGenerator();
//for (int i = 0; i < length; i++)
//{
// var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
// var asymEnc = new AsymmetricEncryptor(AsymmetricStrategyOption.Aes256_1000);
// var asymObj = asymEnc.EncryptObject(stringToEncrypt, cert2.Thumbprint.ToString().ToLower(), publicKey);
// var decrypted = asymEnc.DecryptObject(asymObj, privateKey);
// Assert.AreEqual(stringToEncrypt, decrypted);
//}
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
var encryptor = new AsymmetricEncryptor()
{
AsymmetricStrategy = AsymmetricStrategyOption.Aes256_1000
};
var asymEncObj = encryptor.EncryptObjectAsync(stringToEncrypt, publicKey).GetAwaiter().GetResult();
asymEncObj.PublicMetadata = new Dictionary <string, string>();
asymEncObj.PublicMetadata["keyA"] = "valueA";
asymEncObj.PublicMetadata["keyB"] = "valueB";
asymEncObj.KeyId = cert2.Thumbprint.ToLower();
var asymEncObjDirectSerializedBytes = Serializer.SerializeToByteArray(asymEncObj);
// deserialize
var asymEncObj2 = Serializer.DeserializeFromByteArray(asymEncObjDirectSerializedBytes) as AsymmetricallyEncryptedObject;
Assert.IsNotNull(asymEncObj);
Assert.IsTrue(!string.IsNullOrEmpty(asymEncObj.KeyId));
var asymEncObjBytes2 = asymEncObj.ToByteArray();
var asymEncObj3 = new AsymmetricallyEncryptedObject();
asymEncObj3.LoadFromByteArray(asymEncObjBytes2);
var decrypted = encryptor.DecryptObject(asymEncObj3, privateKey) as string;
Assert.AreEqual(decrypted, stringToEncrypt);
// test deserializing with direct
var asymEncObj4 = new AsymmetricallyEncryptedObject();
asymEncObj4.LoadFromByteArray(asymEncObjDirectSerializedBytes);
var decrypted2 = encryptor.DecryptObject(asymEncObj4, privateKey) as string;
Assert.AreEqual(decrypted2, stringToEncrypt);
}
public void TestAes5WithCertificate()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
int length = 100;
var rand = new RandomGenerator();
for (int i = 0; i < length; i++)
{
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
var asymEnc = new AsymmetricEncryptor(AsymmetricStrategyOption.Aes256_5);
var asymObj = asymEnc.EncryptObjectAsync(stringToEncrypt, publicKey).GetAwaiter().GetResult();
var decrypted = asymEnc.DecryptObject(asymObj, privateKey);
Assert.AreEqual(stringToEncrypt, decrypted);
}
}
public void TestAsymmetricallyEncryptedBackupObject()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
var encryptor = new AsymmetricEncryptor()
{
AsymmetricStrategy = AsymmetricStrategyOption.Aes256_20000
};
var asymEncObj = encryptor.EncryptObjectAsync(stringToEncrypt, publicKey).GetAwaiter().GetResult();
asymEncObj.PublicMetadata = new Dictionary <string, string>();
asymEncObj.PublicMetadata["keyA"] = "valueA";
asymEncObj.PublicMetadata["keyB"] = "valueB";
var asymEncObj2 = encryptor.EncryptObjectAsync(stringToEncrypt, publicKey).GetAwaiter().GetResult();
asymEncObj.PublicMetadata = new Dictionary <string, string>();
asymEncObj.PublicMetadata["keyA-2"] = "valueA-2";
asymEncObj.PublicMetadata["keyB-2"] = "valueB-2";
var backup = new AsymmetricallyEncryptedBackupObject()
{
AssociationObjectIdentifier = Guid.NewGuid().ToString(),
AssociationObjectType = "test",
BackupObjects = new Dictionary <string, AsymmetricallyEncryptedObject>()
};
backup.BackupObjects["objA"] = asymEncObj;
backup.BackupObjects["objB"] = asymEncObj2;
var asymBackup = encryptor.EncryptObjectAsync(backup, publicKey).GetAwaiter().GetResult();
var decrypted = encryptor.DecryptObject(asymBackup, privateKey);
Assert.IsTrue(decrypted is AsymmetricallyEncryptedBackupObject);
var asBytes = asymBackup.ToByteArray();
var newAsymmObj = new AsymmetricallyEncryptedObject();
newAsymmObj.LoadFromByteArray(asBytes);
var decrypted2 = encryptor.DecryptObject(newAsymmObj, privateKey);
Assert.IsTrue(decrypted2 is AsymmetricallyEncryptedBackupObject);
// let's decrypt the embedded types
var backupObjFromBytes = decrypted2 as AsymmetricallyEncryptedBackupObject;
Assert.AreEqual(backupObjFromBytes.AssociationObjectIdentifier, backup.AssociationObjectIdentifier);
Assert.AreEqual(backupObjFromBytes.AssociationObjectType, backup.AssociationObjectType);
var objA = backupObjFromBytes.BackupObjects["objA"];
var decryptedObjA = encryptor.DecryptObject(objA, privateKey);
Assert.AreEqual(stringToEncrypt, decryptedObjA);
var objB = backupObjFromBytes.BackupObjects["objB"];
var decryptedObjB = encryptor.DecryptObject(objB, privateKey);
Assert.AreEqual(stringToEncrypt, decryptedObjB);
}
public void TestAsymmetricallyEncryptedBackupObject()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
var encryptor = new AsymmetricEncryptor() { AsymmetricStrategy = AsymmetricStrategyOption.Aes256_200000 };
var asymEncObj = encryptor.EncryptObjectAsync(stringToEncrypt, publicKey).GetAwaiter().GetResult();
asymEncObj.PublicMetadata = new Dictionary<string, string>();
asymEncObj.PublicMetadata["keyA"] = "valueA";
asymEncObj.PublicMetadata["keyB"] = "valueB";
var asymEncObj2 = encryptor.EncryptObjectAsync(stringToEncrypt, publicKey).GetAwaiter().GetResult();
asymEncObj.PublicMetadata = new Dictionary<string, string>();
asymEncObj.PublicMetadata["keyA-2"] = "valueA-2";
asymEncObj.PublicMetadata["keyB-2"] = "valueB-2";
var backup = new AsymmetricallyEncryptedBackupObject()
{
AssociationObjectIdentifier = Guid.NewGuid().ToString(),
AssociationObjectType = "test",
BackupObjects = new Dictionary<string, AsymmetricallyEncryptedObject>()
};
backup.BackupObjects["objA"] = asymEncObj;
backup.BackupObjects["objB"] = asymEncObj2;
var asymBackup = encryptor.EncryptObjectAsync(backup, publicKey).GetAwaiter().GetResult();
var decrypted = encryptor.DecryptObject(asymBackup, privateKey);
Assert.IsTrue(decrypted is AsymmetricallyEncryptedBackupObject);
var asBytes = asymBackup.ToByteArray();
var newAsymmObj = new AsymmetricallyEncryptedObject();
newAsymmObj.LoadFromByteArray(asBytes);
var decrypted2 = encryptor.DecryptObject(newAsymmObj, privateKey);
Assert.IsTrue(decrypted2 is AsymmetricallyEncryptedBackupObject);
// let's decrypt the embedded types
var backupObjFromBytes = decrypted2 as AsymmetricallyEncryptedBackupObject;
Assert.AreEqual(backupObjFromBytes.AssociationObjectIdentifier, backup.AssociationObjectIdentifier);
Assert.AreEqual(backupObjFromBytes.AssociationObjectType, backup.AssociationObjectType);
var objA = backupObjFromBytes.BackupObjects["objA"];
var decryptedObjA = encryptor.DecryptObject(objA, privateKey);
Assert.AreEqual(stringToEncrypt, decryptedObjA);
var objB = backupObjFromBytes.BackupObjects["objB"];
var decryptedObjB = encryptor.DecryptObject(objB, privateKey);
Assert.AreEqual(stringToEncrypt, decryptedObjB);
}
public void TestAes5WithDualCertificate()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
var cert2Dual = LoadCertificate2();
var publicKey2 = new X509CertificatePublicKey(cert2Dual);
var privateKey2 = new X509Certificate2KeyEncryptionKey(cert2Dual);
int length = 100;
var rand = new RandomGenerator();
for (int i = 0; i < length; i++)
{
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
var asymEnc = new AsymmetricEncryptor(AsymmetricStrategyOption.Aes256_5);
var asymObj = asymEnc.EncryptObject(stringToEncrypt, publicKey, publicKey2);
var decrypted = asymEnc.DecryptObject(asymObj, privateKey, privateKey2);
Assert.AreEqual(stringToEncrypt, decrypted);
}
}
public void TestAes1000WithCertificateAndSerialization()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
int length = 100;
var rand = new RandomGenerator();
//for (int i = 0; i < length; i++)
//{
// var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
// var asymEnc = new AsymmetricEncryptor(AsymmetricStrategyOption.Aes256_1000);
// var asymObj = asymEnc.EncryptObject(stringToEncrypt, cert2.Thumbprint.ToString().ToLower(), publicKey);
// var decrypted = asymEnc.DecryptObject(asymObj, privateKey);
// Assert.AreEqual(stringToEncrypt, decrypted);
//}
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
var encryptor = new AsymmetricEncryptor() { AsymmetricStrategy = AsymmetricStrategyOption.Aes256_1000 };
var asymEncObj = encryptor.EncryptObjectAsync(stringToEncrypt, publicKey).GetAwaiter().GetResult();
asymEncObj.PublicMetadata = new Dictionary<string, string>();
asymEncObj.PublicMetadata["keyA"] = "valueA";
asymEncObj.PublicMetadata["keyB"] = "valueB";
asymEncObj.KeyId = cert2.Thumbprint.ToLower();
var asymEncObjDirectSerializedBytes = Serializer.SerializeToByteArray(asymEncObj);
// deserialize
var asymEncObj2 = Serializer.DeserializeFromByteArray(asymEncObjDirectSerializedBytes) as AsymmetricallyEncryptedObject;
Assert.IsNotNull(asymEncObj);
Assert.IsTrue(!string.IsNullOrEmpty(asymEncObj.KeyId));
var asymEncObjBytes2 = asymEncObj.ToByteArray();
var asymEncObj3 = new AsymmetricallyEncryptedObject();
asymEncObj3.LoadFromByteArray(asymEncObjBytes2);
var decrypted = encryptor.DecryptObject(asymEncObj3, privateKey) as string;
Assert.AreEqual(decrypted, stringToEncrypt);
// test deserializing with direct
var asymEncObj4 = new AsymmetricallyEncryptedObject();
asymEncObj4.LoadFromByteArray(asymEncObjDirectSerializedBytes);
var decrypted2 = encryptor.DecryptObject(asymEncObj4, privateKey) as string;
Assert.AreEqual(decrypted2, stringToEncrypt);
}
public void TestProtectPasswordDualKey()
{
var cert2 = LoadCertificate();
var publicKey = new X509CertificatePublicKey(cert2);
var privateKey = new X509Certificate2KeyEncryptionKey(cert2);
var cert2Dual = LoadCertificate2();
var publicKey2 = new X509CertificatePublicKey(cert2Dual);
var privateKey2 = new X509Certificate2KeyEncryptionKey(cert2Dual);
int length = 100;
var rand = new RandomGenerator();
for (int i = 0; i < length; i++)
{
using (var password = rand.RandomSecureStringPassword(10, 50))
{
var stringToEncrypt = Guid.NewGuid().ToString("N") + ":* d’une secrétairE chargée des affaires des étudiants de la section";
// base 64
var encryptedBase64 = AesEncryptor.Encrypt1000(stringToEncrypt, password);
var decryptedBase64 = AesEncryptor.Decrypt(encryptedBase64, password);
Assert.AreEqual(stringToEncrypt, decryptedBase64);
// base 36
var encryptedBase36 = AesEncryptor.Encrypt1000(stringToEncrypt, password, true);
var decryptedBase36 = AesEncryptor.Decrypt(encryptedBase36, password, true);
Assert.AreEqual(stringToEncrypt, decryptedBase36);
var protectedPwStr = AsymmetricEncryptor.EncryptToBase64StringAsync(password, publicKey, publicKey2).GetAwaiter().GetResult();
var unprotectedPwdStr = AsymmetricEncryptor.DecryptFromBase64String(protectedPwStr, privateKey, privateKey2);
var decryptedUnprotectedPw = AesEncryptor.Decrypt(encryptedBase64, unprotectedPwdStr);
Assert.AreEqual(stringToEncrypt, decryptedUnprotectedPw);
}
}
}
public void TestMethod1()
{
var cert2 = LoadCertificate();
var key = new X509Certificate2KeyEncryptionKey(cert2);
var guid = new Guid();
var bytesToHash = Serializer.SerializeToByteArray(guid);
//var algorithms = new string[] { "MD5", "SHA1", "SHA256" };
foreach (var algorithm in BasicHasherAlgorithms.AllAlgorithms)
{
byte[] thisCopy = new byte[bytesToHash.Count()];
bytesToHash.CopyTo(thisCopy, 0);
Assert.IsTrue(bytesToHash.SequenceEqual(thisCopy));
var hashBytes = BasicHasher.GetHashBytes(bytesToHash, algorithm);
var hashAsHex1 = hashBytes.ToHexString();
Console.WriteLine("Hash is: " + hashAsHex1);
var res = key.SignAsync(hashBytes, algorithm).GetAwaiter().GetResult();
Assert.IsNotNull(res.Item1);
Assert.IsNotNull(res.Item2);
var hex = res.Item1.ToHexString();
Console.WriteLine("hex len\t" + hex.Length.ToString());
var b64 = Convert.ToBase64String(res.Item1);
Console.WriteLine("b64 len\t" + b64.Length.ToString());
//var item2AsByte = Format.HexStringToByteArray(res.Item2);
//Assert.IsTrue(item2AsByte.SequenceEqual(res.Item1));
//// check digest
//var digest2 = BasicHasher.GetHashBytes(bytesToHash, algorithm);
//Assert.IsTrue(digest2.SequenceEqual(hashBytes));
var isValid = key.VerifyAsync(hashBytes, res.Item1, algorithm).GetAwaiter().GetResult();
Assert.IsTrue(isValid);
//var isValid2 = key.VerifyAsync(hashBytes, res.Item2, algorithm).GetAwaiter().GetResult();
//Assert.IsTrue(isValid2);
//Assert.IsTrue(bytesToHash.SequenceEqual(thisCopy));
var hashHex = BasicHasher.GetHash(bytesToHash, algorithm);
Console.WriteLine("Hash is now: " + hashHex);
var asBytes = Format.HexStringToByteArray(hashHex);
Assert.IsTrue(asBytes.SequenceEqual(hashBytes));
var isValidHex = key.VerifyAsync(hashHex, res.Item2).GetAwaiter().GetResult();
Assert.IsTrue(isValidHex);
var hexSigned = key.SignAsync(hashHex).GetAwaiter().GetResult();
isValidHex = key.VerifyAsync(hashHex, hexSigned.Item2).GetAwaiter().GetResult();
Assert.IsTrue(isValidHex);
Console.WriteLine(algorithm + " passed");
}
//var res = key.SignAsync(bytesToHash, "MD5").GetAwaiter().GetResult();
//Assert.IsNotNull(res.Item1);
//Assert.IsNotNull(res.Item2);
//var isValid = key.VerifyAsync(bytesToHash, res.Item1, "MD5").GetAwaiter().GetResult();
//Assert.IsTrue(isValid);
//var isValid2 = key.VerifyAsync(bytesToHash, res.Item2, "MD5").GetAwaiter().GetResult();
//Assert.IsTrue(isValid2);
//var md5HashHex = BasicHasher.GetMd5Hash(bytesToHash); //ChecksumHash.GetMD5Hash(bytesToMd5Hash);
//var isValidHex = key.VerifyAsync(md5HashHex, res.Item2).GetAwaiter().GetResult();
//Assert.IsTrue(isValidHex);
//var signedHex = key.SignAsync(md5HashHex).GetAwaiter().GetResult();
//isValidHex = key.VerifyAsync(md5HashHex, signedHex.Item2).GetAwaiter().GetResult();
//Assert.IsTrue(isValidHex);
//// sha1
//res = key.SignAsync(bytesToHash, "SHA1").GetAwaiter().GetResult();
//Assert.IsNotNull(res.Item1);
//Assert.IsNotNull(res.Item2);
//isValid = key.VerifyAsync(bytesToHash, res.Item1, "SHA1").GetAwaiter().GetResult();
//Assert.IsTrue(isValid);
//isValid2 = key.VerifyAsync(bytesToHash, res.Item2, "SHA1").GetAwaiter().GetResult();
//Assert.IsTrue(isValid2);
//var sha1HashHex = BasicHasher.GetSha1Hash(bytesToHash);
//isValidHex = key.VerifyAsync(sha1HashHex, res.Item2).GetAwaiter().GetResult();
//Assert.IsTrue(isValidHex);
//var sha1HexSigned = key.SignAsync(sha1HashHex).GetAwaiter().GetResult();
//isValidHex = key.VerifyAsync(sha1HashHex, sha1HexSigned.Item2).GetAwaiter().GetResult();
//Assert.IsTrue(isValidHex);
}
