Home page  
Home | Buy | Support

Products

CipherLite.NET

CipherSafe.NET

Downloads

Resources

Articles

Libraries

Samples

Site Map

BIGGER FONTsmaller font

CipherSafe.NET FAQ's

How complex would it be to integrate CipherSafe.NET™ with my application?

It's very simple. In a typical scenario, it should take no longer than 5-10 minutes to install CipherSafe.NET, configure it, and add code to use it in a .NET-based project, such as C#, Visual Basic.NET, or ASP.NET. It will take about the same time for scripts and languages that can easily use COM Automation, such as VBScript, JavaScript, and Visual Basic. It may take a bit longer for C/C++-based projects because they require a few more lines of code necessary for making COM calls.

How does CipherSafe.NET™ work?

First, you use the CipherSafe.NET™ GUI tool to define the application profile that contains sensitive settings. Then you add a reference to the CipherSafe.NET™ library to your project and call a method to retrieve sensitive application settings. Once the application is deployed, an administrator must either import an already existing application profile or define it from scratch on the server where your application runs. [See a detailed example...]

What are the requirements to use CipherSafe.NET™?

Please, check the product information page.

Which version of .NET Framework does CipherSafe.NET™ require?

CipherSafe.NET™ will work with applications built for .NET Frameworks 1.1 or later.

Does CipherSafe.NET™ work on .NET Framework 2.0 (3.0 and later)?

Yes, CipherSafe.NET™ works on .NET Framework 2.0 and since the later versions of the framework are based on .NET 2.0, it supports them as well.

Can CipherSafe.NET™ run on Windows® Vista™?

Yes, CipherSafe.NET™ can run on Windows® Vista™.

Does CipherSafe.NET™ work on 64-bit Windows®?

CipherSafe.NET™ works on 64-bit Windows® as long as the application using it runs in the 64-bit mode. It will not work if the application runs in the 32-bit mode, unless you use a workaround.

Which languages can use the CipherSafe.NET™ library?

The library can be called from any .NET-compatible language, including C#, Visual Basic.NET, Visual C++.NET. Starting with CipherSafe.NET™ 1.2.5, it can also be accessed via COM Interop using the provided (or a custom-built COM wrapper) from any COM-aware language, such as C++, Visual Basic, VBScript, JavaScript, and others.

Can CipherSafe.NET™ encrypt and decrypt Unicode strings?

Yes, as long as the strings are UTF-8 encoded.

Can CipherSafe.NET™ be used as a general-purpose encryption library?

No, but check our CipherLite.NET, which may be able to do what you need. You can also use some of our code samples, which describe different methods of encryption.

Which types of .NET applications can use CipherSafe.NET™ to manage their profile values?

CipherSafe.NET™ can manage profile values of the following application types:

  • Web applications (virtual directories)
  • Web services
  • Web files (ASP and ASP.NET)
  • Executable files
  • Libraries
  • Windows® directories
  • Windows® scripts (WSH files)

For additional information, please check the product documentation.

Where does CipherSafe.NET™ store encrypted application profiles?

Application profiles can be stored in the Windows® registry or application configuration files (Web.config and app.config).

Are there any advantages for using the Windows® registry to store application profile values?

While application configuration files may work better for some applications, Windows® registry can be more appropriate for others. For example, Windows® registry allows administrators to better automate the process of building and configuring servers (which is important in enterprise environments). Certain types of applications managed by CipherSafe.NET™ (e.g. .NET libraries) do not have the built-in capability of using configuration files. Finally, some software professionals consider the registry to be more secure than configuration files.

Can an application retrieve profile values defined for another application?

Yes, but only if another application is configured to allow decryption by application administrators and if the caller application runs under account of an application administrator (both options can be defined on a per-application basis).

Which encryption algorithm and key size does CipherSafe.NET™ use?

CipherSafe.NET uses the Advanced Encryption Standard (AES) algorithm with 256-bit keys.

Does CipherSafe.NET™ use the same encryption key for all application profiles?

No, CipherSafe.NET™ generates a different cryptographic key for each application. Keys are also dependent on certain machine characteristics and user-defined settings.

How does CipherSafe.NET™ protect encryption keys?

Protection of encryption keys is a complex issue, which cannot be described in one paragraph. To find out how CipherSafe.NET™ handles key management, please check CipherSafe.NET™ User's Guide.

Can I use CipherSafe.NET™ data restored from a drive image on a different system?

Not in a typical scenario (otherwise a hacker would be able to do the same). This is one of those cases where security should be more important than convenience. It is worth mentioning that while CipherSafe.NET™ installation and configuration process requires certain manual steps (just a couple), these steps can be automated. However, if you use the same machine key protected by the Key Manager service on both systems along with the same application directory structure, it may be possible. You can find additional information about this topic in the product documentation.

Which system changes can affect encrypted data values?

This following system changes can make currently defined application profile values and registration information unusable:

  1. Renaming computer.
  2. Modifying system volume, i.e. reformatting the system hard drive.
  3. CPU changes.
  4. System motherboard changes.

What information does Obviex™ use to register licensed copies of the product?

As a measure against unlicensed use, Obviex™ may use the following system information during product registration (normally, this applies to Personal licenses only):

  1. Computer name.
  2. Serial number of the system volume.

Before changing any of these values, unregister the product to avoid running out of licenses. You may also need to re-define application profile values.

If I purchase a product now, how long will I be able to get free upgrades?

After purchasing the product, you are entitled to free upgrades for at least one year. You can also get at least one major upgrade for free, e.g. 1.0 to 1.1. You can find the information about the current upgrade options in the free upgrade matrix.

Can I use an Enterprise Edition license to register a Professional Edition?

Yes, downgrading from Enterprise to Professional Edition is allowed.

Can I use a Professional Edition license to register an Enterprise Edition?

No, this type of upgrade is not allowed.

Can I use a license purchased for a newer version of the product to register a copy of an older version of the product?

Yes, unless you are trying to register an upgraded edition of the product.

Can I get the source code?

In a typical case, no. Because of the intellectual property issues we prefer not to disclose the application source code. However, we do make exceptions for selected customers on a case by case basis. The minimum customer requirements include a purchase of at least $1,000-level license and willingness to sign a non-disclosure agreement (NDA). If you are interested in obtaining the source code, please contact our sales team.

Since Obviex™ is a small company, how can I minimize the risk of using its software? For example, what happens if the company goes out of business or stops supporting the product?

We are not planning to go out of business or stop supporting our software, at least not any time soon. In the unlikely case that we seize the operation, we will make all source code public. If you would like to know about additional risk mitigation techniques adopted by some of our customers, please contact our support team.

I forgot to unregister the product before rebuilding my computer and now I cannot register it because I have no more licenses left. What should I do?

Do not worry. Just send us an e-mail describing your problem, include your activation code, and we will help you out. Of course, if you keep doing this often, we may get suspicious.

My dog ate my product activation code...

Please contact us, and if you are able to provide enough information about your original order, we may be able to locate your activation code and re-send it to you.

Can CipherSafe.NET™ guarantee security of my data?

No. Despite what some software (and hardware) vendors claim, no software (or hardware) can guarantee 100% security. However, CipherSafe.NET™ provides the most secure and practical solution currently available on the market.

Where can I find more information about CipherSafe.NET™?

Please check CipherSafe.NET™ User's Guide. It includes a detailed description of the product, its purpose, architecture, and functionality. If you still have unanswered questions, please drop us an e-mail and will be happy to answer it.

 

Copyright © 2002-2010 Obviex™ | All rights reserved | Legal | Privacy | Contact us