SecureStore
DiffieHellmanExample
SecureStore | DiffieHellmanExample | |
---|---|---|
5 | 1 | |
89 | 0 | |
- | - | |
6.0 | 0.0 | |
2 months ago | almost 3 years ago | |
C# | C# | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
SecureStore
-
SecureStore VS dotenv-vault - a user suggested alternative
2 projects | 4 Nov 2023
-
appsettings.json secrets for local and for deployments
Have you looked into NeoSmart's SecureStore? It uses a versionable json file with encrypted strings as secrets, and can be unlocked via a password or a keyfile that you deploy to your application. I've used it before, and it's pretty easy to use and implement. https://github.com/neosmart/SecureStore
-
How do I put secrets in production build?
A similar but actually secure alternative to user secrets in-prod is using SecureStore: https://github.com/neosmart/SecureStore
-
.NET Framework 4.6.2 - Where to put environment variables
Have you looked into SecureStore (https://github.com/neosmart/SecureStore) for managing secrets? You can commit the json file to git, but you keep the key separate.
-
How do you store sensitive data in a production environment?
I tend to use secure store for this. https://github.com/neosmart/SecureStore. json file hold the encrypted stuff and I use a key file that goes out with deployment but never checked in. I can think of a thousand holes for all solutions. Most fall on how to you protect the key or the environment. At that point all is lost.
DiffieHellmanExample
-
.NET Diffie Hellman Key Exchange with certificate authentication check
So I made my own implementation based on .NET 5 classes:https://github.com/JohannesDeml/DiffieHellmanExample
What are some alternatives?
OkcAgent - A utility that makes OpenKeychain available in your Termux shell
SecurityDriven.Inferno - :white_check_mark: .NET crypto done right. Professionally audited.
Electron.NET - :electron: Build cross platform desktop apps with ASP.NET Core (Razor Pages, MVC, Blazor).
crypthash-net - CryptHash.NET is a .NET multi-target library to encrypt/decrypt/hash/encode/decode strings and files, with an optional .NET Core multiplatform console utility.
Licensing.ActivationKeys - This free, open-source .NET library allows you to license your non-free applications through activation keys.
win-acme - A simple ACME client for Windows (for use with Let's Encrypt et al.)
dotenv-vault - sync .env files—from the creator of `dotenv`.
SecureFolderFS - Powerful, secure, modern way to keep your files protected.
open-kms - Open KMS SDK
encpass.sh - Lightweight solution for using encrypted passwords in shell scripts
infisical - ♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure and prevent secret leaks.