I was working on some encryption in C#. I wanted to hide my key and thought of Embedded resources. I am not sure whether a hacker can get it using IL disassembler.
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I was working on some encryption in C#. I wanted to hide my key and thought of Embedded resources. I am not sure whether a hacker can get it using IL disassembler.
Yes, they most certainly can. And this is not specific to .Net resources, the same applies to resources in unmanaged applications. Resources are meant for convenient storage, not for security.
And if you don’t understand such basic concepts yet, I think you shouldn’t be implementing seriously meant encryption. Doing encryption correctly is hard.
In general, if your program can access some data (e.g. the key) and the program can run on attacker’s machine, you should expect that the attacker will have access to it too.