[Mono-dev] Mono.Security + SecureString
alan.mcgovern at gmail.com
Wed Dec 12 07:59:40 EST 2007
It'd break API compatibility, therefore it's a no-go.
On Dec 12, 2007 12:55 PM, Vladimir Giszpenc <vgiszpenc at dsci.com> wrote:
> As you know, in .Net Framework 2.0 Microsoft added the SecureString class
> keep passwords and other private data hidden. They did not add
> to the hashing or encryption/decryption providers to allow developers to
> take advantage of this new class. Mono does not use it in PKCS12 or
> anywhere else it could. It would be great if Mono took the lead and made
> touching private data a thing of the past. I could list a few places
> password is accepted, but I am sure the security gurus know these classes
> way better than I do.
> I realize that this is an enhancement request, but security helps to sell
> technology. It would be nice to be able to say that Mono is more secure
> than .Net (or Java).
> Mono-devel-list mailing list
> Mono-devel-list at lists.ximian.com
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Mono-devel-list