Embedding Key in System

[groups]

Hi,

I would like to encrypt a piece of data on a server so that the
application can read it with no user intervention (i.e. entering a
password), but so that someone with physical access, or administrator
access, could not.
Is there some way of embedding a key into a .Net executable in a way
that disassembling the App will not reveal?
Any advice would be greatly appreciated.

Thanks,
Micky

 

[Adam]

No, there is no way to do this. Embedding a key in an assembly is one
of the worst possible approaches to securing data, only slightly better
than storing it in plaintext in a file called encryptionkey.txt.

I would advise you to buy the book Writing Secure Code and choosing one
of the alternatives that it offers.