Skip to content

Provide System.Security.Cryptography.ProtectedData package readme #93660

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jozkee merged 4 commits into from
Oct 19, 2023
Merged

Provide System.Security.Cryptography.ProtectedData package readme #93660

jozkee merged 4 commits into from
Oct 19, 2023

Conversation

@eNeRGy164
Copy link
Contributor

@eNeRGy164 eNeRGy164 commented Oct 18, 2023

Fill out details for the System.Security.Cryptography.ProtectedData NuGet package readme.

See #92228

@ghost ghost added area-System.Security community-contribution Indicates that the PR has been added by a community member labels Oct 18, 2023
@ghost
Copy link

ghost commented Oct 18, 2023

Tagging subscribers to this area: @dotnet/area-system-security, @bartonjs, @vcsjones
See info in area-owners.md if you want to be subscribed.

Issue Details

Fill out details for the System.Security.Cryptography.ProtectedData NuGet package readme.

See #92228

Author: eNeRGy164
Assignees: -
Labels:

area-System.Security
Milestone: -

vcsjones
vcsjones reviewed Oct 18, 2023
View reviewed changes
bartonjs
bartonjs reviewed Oct 18, 2023
View reviewed changes
src/libraries/System.Security.Cryptography.ProtectedData/src/PACKAGE.md Outdated

System.Security.Cryptography.ProtectedData offers a simplified interface for utilizing Microsoft Windows DPAPI's [CryptProtectData](https://learn.microsoft.com/windows/win32/api/dpapi/nf-dpapi-cryptprotectdata) and [CryptUnprotectData](https://learn.microsoft.com/windows/win32/api/dpapi/nf-dpapi-cryptunprotectdata) functions.

This library is primarily aimed at ensuring the security of critical data, like user credentials or sensitive information, either while storing or transmitting.
Copy link
Member

@bartonjs bartonjs Oct 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I'd delete this paragraph entirely.

The plain truth is that it's primarily aimed at people already using it. It's reasonable for storing sensitive data locally, not generally suitable for transmission (except for a domain user sending it to themselves on another computer; or for "give this back to me"), but since it's not cross-plat it's not something that we really push... so... it's there for people who were using ProtectedData in .NET Framework.

Copy link
Member

@danmoseley danmoseley Oct 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should we give explicit guidance like that? Sounds almost like "don't introduce new use, consider XYZ instead"

Copy link
Contributor Author

@eNeRGy164 eNeRGy164 Oct 18, 2023

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Removing this statement doesn't hurt the documentation, so I'm fine with it.

There is already a note about the better cross-plat support in System.Security.Cryptography.

@ViktorHofer
Copy link
Member

ViktorHofer commented Oct 19, 2023

@adamsitnik / @jozkee please approve the PR if ready.

jozkee
jozkee approved these changes Oct 19, 2023
View reviewed changes
Copy link
Member

@jozkee jozkee left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

@jozkee jozkee merged commit 3f41ed3 into dotnet:PackageReadmesContinued Oct 19, 2023
@eNeRGy164 eNeRGy164 deleted the system-security-cryptography-protect-data branch October 19, 2023 22:07
ViktorHofer pushed a commit that referenced this pull request Oct 20, 2023
@eNeRGy164 @ViktorHofer
Provide System.Security.Cryptography.ProtectedData package readme (#9…
a9cc342 
…3660)

* Provide Cryptography.ProtectedData package readme

* Processing review comments

* Remove paragraph and improve sentence

* Improve code sample
@vcsjones vcsjones mentioned this pull request Oct 22, 2023
Closed
@ghost ghost locked as resolved and limited conversation to collaborators Nov 19, 2023
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@vcsjones vcsjones vcsjones left review comments

@danmoseley danmoseley danmoseley left review comments

@bartonjs bartonjs bartonjs left review comments

@jozkee jozkee jozkee approved these changes

Assignees

No one assigned

Labels

area-System.Security community-contribution Indicates that the PR has been added by a community member

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@eNeRGy164 @ViktorHofer @vcsjones @danmoseley @bartonjs @jozkee