c# - Azure Table Storage Client Side Encryption WITHOUT Using KeyVault -

-

i've got sensitive information want encrypted , stored in azure table storage. honestly, naive approach, using same aes key values sufficient near approach having enough data encrypted in order meaningful cryptanalysis. but, know best practice limit usage of same symmetric key.

recently, microsoft released client side encryption azure table storage via azure keyvault. allows generate rsa key , store in keyvault , client library generate new symmetric key every row in table storage , encrypts symmetric key rsa key. perfect because there no way differential cryptanalysis on ciphertext since used different keys. nice because library plumbing, have grab rsa key keyvault, decorate designated properties encryptpropertyattribute , handles else.

therein lies rub... find keyvault kind of obtuse use , manage. have use powershell set oauth authentication between app , keyvault , looks tremendous amount of overhead storing single rsa key. if have hundreds of keys store, can imagine more useful.

is there way use of microsoft's client side encryption code without storing rsakey in keyvault?

it took me while find it, yes, can store rsa key outside of keyvault. need use rsakey constructor overload takes in rsacryptoserviceprovider grab wherever deem prudent. grab mine out of web.config. however, make sure production rsacsp not store in source control , add directly in azure web app configuration screen. 

ikey tablestoragekey = gettablestoragekey() _tablerequestoptions = new tablerequestoptions {     encryptionpolicy = new tableencryptionpolicy(tablestoragekey, null) };  ...  private ikey gettablestoragekey() {     using (var rsacsp = new rsacryptoserviceprovider(2048))     {         try         {             //it doesn't matter rsacsp from, have mine in webconfig             xmldocument doc = new xmldocument();             doc.load(appdomain.currentdomain.setupinformation.configurationfile);             xmlelement node = doc.selectsinglenode("/configuration/mytablestoragersakey") xmlelement;              rsacsp.fromxmlstring(node.outerxml);              return new rsakey("mytablestoragersakey", rsacsp);         }                 {             rsacsp.persistkeyincsp = false;         }      } }

Comments

Post a Comment

Popular posts from this blog

html - Firefox flex bug applied to buttons? -

-
i'm trying apply flex button on firefox i'm having problem on chrome doesn't happens. this css: .button { display: inline-flex; align-items: center; } as can see in fiddle, "caret" word moved new line, happens if element <button> tag, <div> works expected. http://codepen.io/anon/pen/xblmgx is firefox bug or there css i'm missing? nevermind, looks "mr firefox" doesn't idea... <button> not implementable (by browsers) in pure css, bit of black box, perspective of css. means don't react in same way e.g. <div> would. this isn't specific flexbox -- e.g. don't render scrollbars if put "overflow:scroll" on button, , don't render table if put "display:table" on it. stepping further, isn't specific <button> . consider <fieldset> , <table> have special rendering behavior: data:text/html,<fieldset style="d...
Read more

html - Missing border-right in select on Firefox -

-
Image
when put select div width , padding-left, options have no border on right. more, happend if select have width 118px , parent have 15px of padding left! have idea, going on? my code: <!doctype html> <html> <head lang="en"> </head> <body> <div style="width: 1000px; padding-left: 15px;"> <select style="width: 118px;"> <option>a</option> <option>b</option> <option>c</option> </select> </div> </body> </html> and result: here plunker: click it happend on firefox on windows. tested on 40.0.2 version -webkit-box-sizing: border-box; -moz-box-sizing: border-box; -ms-box-sizing: border-box; box-sizing: border-box; source: https://stackoverflow.com/a/11390432/4431269 source of problem: https://bugzilla.mozilla.org/show_bug.cgi?id=924068 and use of google ! edit: (source of problem, explained) after rea...
Read more

python - build a suggestions list using fuzzywuzzy -

-
i building suggestion engine database. i'm using fuzzywuzzy module match user input string existing database shown below. if request.method == "get": display_dict = {} user_input = request.get["user_input"] # user input match_dict = {} food_items_obj = food_items.objects.all() # fetch objects table items in food_items_obj : match = fuzz.ratio(user_input.lower(),items.name.lower()) # try match user input existing names match_dict[match] = items.name # put 1 dictionary matched_dict = ordereddict(sorted(match_dict.items(),reverse = true)) # sort dictionary if max(matched_dict.keys()) == 100: # if exact match put in dict , return display_dict[100] = matched_dict[100] else : # if not found try best matching words.. ###########this part need help! ############# k,v in matched_dict.items(): if user_input in v : display_dict[k]...
Read more