Encryption and Decryption of Password using VB.NET

The following VB.NET code explains how to encrypt and decrypt using MD5 algorithm.

Prerequisites

1. Import the System.Security.Cryptography in the top of your form.

2. create a new class EncryptDecryptClass

3. Copy the below code in EncryptDecryptClass.

4. Create an Object for EncryptDecryptClass

5. Using that object call the functions EncryptPasswordMD5 and DecryptPasswordMD5



Public Class EncryptDecryptClass


Private Shared m_strPassPhrase As String = "MyPriv@Password!$$" '---- any text string is good here
Private Shared m_strHashAlgorithm As String = "MD5" '--- we are doing MD5 encryption - can be "SHA1"
Private Shared m_strPasswordIterations As Integer = 2 '--- can be any number
Private Shared m_strInitVector As String = "@1B2c3D4e5F6g7H8" '--- must be 16 bytes
Private Shared m_intKeySize As Integer = 256 '--- can be 192 or 128



'Encrypt Function:

Friend Shared Function EncryptPasswordMD5(ByVal plainText As String, ByVal p_strSaltValue As String) As String

Dim strReturn As String = String.Empty

' Convert strings into byte arrays.
' Let us assume that strings only contain ASCII codes.
' If strings include Unicode characters, use Unicode, UTF7, or UTF8
' encoding.

Try
Dim initVectorBytes As Byte()
initVectorBytes = System.Text.Encoding.ASCII.GetBytes(m_strInitVector)

Dim saltValueBytes As Byte()
saltValueBytes = System.Text.Encoding.ASCII.GetBytes(p_strSaltValue)

' Convert our plaintext into a byte array.
' Let us assume that plaintext contains UTF8-encoded characters.
Dim plainTextBytes As Byte()
plainTextBytes = System.Text.Encoding.UTF8.GetBytes(plainText)

' First, we must create a password, from which the key will be derived.
' This password will be generated from the specified passphrase and
' salt value. The password will be created using the specified hash
' algorithm. Password creation can be done in several iterations.

Dim password As Rfc2898DeriveBytes

password = New Rfc2898DeriveBytes(m_strPassPhrase, _
saltValueBytes, _
m_strPasswordIterations)

' Use the password to generate pseudo-random bytes for the encryption
' key. Specify the size of the key in bytes (instead of bits).
Dim keyBytes As Byte()
Dim intKeySize As Integer = 0

intKeySize = CType((m_intKeySize / 8), Integer)

keyBytes = password.GetBytes(intKeySize)

' Create uninitialized Rijndael encryption object.
Dim symmetricKey As System.Security.Cryptography.RijndaelManaged
symmetricKey = New System.Security.Cryptography.RijndaelManaged

' It is reasonable to set encryption mode to Cipher Block Chaining
' (CBC). Use default options for other symmetric key parameters.
symmetricKey.Mode = System.Security.Cryptography.CipherMode.CBC

'symmetricKey.Padding = PaddingMode.Zeros


' Generate encryptor from the existing key bytes and initialization
' vector. Key size will be defined based on the number of the key
' bytes.
Dim encryptor As System.Security.Cryptography.ICryptoTransform
encryptor = symmetricKey.CreateEncryptor(keyBytes, initVectorBytes)

' Define memory stream which will be used to hold encrypted data.
Dim memoryStream As System.IO.MemoryStream
memoryStream = New System.IO.MemoryStream

' Define cryptographic stream (always use Write mode for encryption).
Dim cryptoStream As System.Security.Cryptography.CryptoStream
cryptoStream = New System.Security.Cryptography.CryptoStream(memoryStream, _
encryptor, _
System.Security.Cryptography.CryptoStreamMode.Write)
' Start encrypting.
cryptoStream.Write(plainTextBytes, 0, plainTextBytes.Length)

' Finish encrypting.
cryptoStream.FlushFinalBlock()

' Convert our encrypted data from a memory stream into a byte array.
Dim cipherTextBytes As Byte()
cipherTextBytes = memoryStream.ToArray()

' Close both streams.
memoryStream.Close()
cryptoStream.Close()

' Convert encrypted data into a base64-encoded string.
Dim cipherText As String
cipherText = Convert.ToBase64String(cipherTextBytes)

' Return encrypted string.
strReturn = cipherText

Catch ex As Exception
strReturn = Nothing
End Try

Return strReturn

End Function




'Decrypt Function:

Friend Shared Function DecryptPasswordMD5(ByVal cipherText As String, ByVal p_strSaltValue As String) As String

Dim strReturn As String = String.Empty

' Convert strings defining encryption key characteristics into byte
' arrays. Let us assume that strings only contain ASCII codes.
' If strings include Unicode characters, use Unicode, UTF7, or UTF8
' encoding.

Try

Dim initVectorBytes As Byte()
initVectorBytes = System.Text.Encoding.ASCII.GetBytes(m_strInitVector)

Dim saltValueBytes As Byte()
saltValueBytes = System.Text.Encoding.ASCII.GetBytes(p_strSaltValue)

' Convert our ciphertext into a byte array.
Dim cipherTextBytes As Byte()
cipherTextBytes = Convert.FromBase64String(cipherText)

' First, we must create a password, from which the key will be
' derived. This password will be generated from the specified
' passphrase and salt value. The password will be created using
' the specified hash algorithm. Password creation can be done in
' several iterations.

Dim password As Rfc2898DeriveBytes

password = New Rfc2898DeriveBytes(m_strPassPhrase, _
saltValueBytes, _
m_strPasswordIterations)

' Use the password to generate pseudo-random bytes for the encryption
' key. Specify the size of the key in bytes (instead of bits).
Dim keyBytes As Byte()
Dim intKeySize As Integer

intKeySize = CType((m_intKeySize / 8), Integer)

keyBytes = password.GetBytes(intKeySize)

' Create uninitialized Rijndael encryption object.
Dim symmetricKey As System.Security.Cryptography.RijndaelManaged
symmetricKey = New System.Security.Cryptography.RijndaelManaged

' It is reasonable to set encryption mode to Cipher Block Chaining
' (CBC). Use default options for other symmetric key parameters.
symmetricKey.Mode = System.Security.Cryptography.CipherMode.CBC

'symmetricKey.Padding = PaddingMode.Zeros

' Generate decryptor from the existing key bytes and initialization
' vector. Key size will be defined based on the number of the key
' bytes.
Dim decryptor As System.Security.Cryptography.ICryptoTransform
decryptor = symmetricKey.CreateDecryptor(keyBytes, initVectorBytes)

' Define memory stream which will be used to hold encrypted data.
Dim memoryStream As System.IO.MemoryStream
memoryStream = New System.IO.MemoryStream(cipherTextBytes)

' Define memory stream which will be used to hold encrypted data.
Dim cryptoStream As System.Security.Cryptography.CryptoStream
cryptoStream = New System.Security.Cryptography.CryptoStream(memoryStream, _
decryptor, _
System.Security.Cryptography.CryptoStreamMode.Read)

' Since at this point we don't know what the size of decrypted data
' will be, allocate the buffer long enough to hold ciphertext;
' plaintext is never longer than ciphertext.
Dim plainTextBytes As Byte()
ReDim plainTextBytes(cipherTextBytes.Length)

' Start decrypting.
Dim decryptedByteCount As Integer
decryptedByteCount = cryptoStream.Read(plainTextBytes, _
0, _
plainTextBytes.Length)

' Close both streams.
memoryStream.Close()
cryptoStream.Close()

' Convert decrypted data into a string.
' Let us assume that the original plaintext string was UTF8-encoded.
Dim plainText As String
plainText = System.Text.Encoding.UTF8.GetString(plainTextBytes, _
0, _
decryptedByteCount)

' Return decrypted string.
strReturn = plainText

Catch ex As Exception
strReturn = Nothing
End Try

Return strReturn


End Function

End Class



Now let us create the class CommonFunctionsClsForm1:

Copy the following functions EncryptPassword and DecryptPassword




Public Class CommonFunctionsCls

Public Function EncryptPassword(ByVal Password As String) As String

'Encrypt the Password
Dim sEncryptedPassword As String = ""
Dim sEncryptKey As String = "P@SSW@RD@09" 'Should be minimum 8 characters

Try
sEncryptedPassword = EncryptDecryptClass.EncryptPasswordMD5(Password, sEncryptKey)

Catch ex As Exception
Return sEncryptedPassword
End Try

Return sEncryptedPassword
End Function


Public Function DecryptPassword(ByVal Password As String) As String
'Encrypt the Password
Dim sDecryptedPassword As String = ""
Dim sEncryptKey As String = "P@SSW@RD@09" 'Should be minimum 8 characters

Try
sDecryptedPassword = EncryptDecryptClass.DecryptPasswordMD5(Password, sEncryptKey)

Catch ex As Exception
Return sDecryptedPassword
End Try

Return sDecryptedPassword
End Function

End Class




1. Now let us create a sample Form Form1

2. Drag and Drop two text boxes and name them as txtPassword and txtResult

3. Drag and drop a button btnEncrypt

4. Drag and drop a button btnDecrypt

5. Enter some password in txtPassword

6. Click on btnEncrypt/btnDecrypt to Encrypt/Decrypt viceversa

7. the result will be displayed on txtResult text box



Public Class Form1

'Object Creation
Dim FuncCls As New CommonFunctionsCls()

Private Sub btnEncrypt_Click(ByVal sender As System.Object, ByVal e As System.EventArgs) Handles btnEncrypt.Click


txtResult.Text = FuncCls.EncryptPassword(txtPassword.Text.Trim)

End Sub

Private Sub btnDecrypt_Click(ByVal sender As System.Object, ByVal e As System.EventArgs) Handles btnDecrypt.Click

txtResult.Text = FuncCls.DecryptPassword(txtPassword.Text.Trim)
End Sub
End Class



Comments

Author: Chowdary13 Feb 2011 Member Level: Bronze   Points : 1

Dim DecryptedPass As String
DecryptedPass = DecryptPasswordMD5(authDataSet.Tables("authentication").Rows(0)("Password"), "P@$$WORD99")

In DecryptPasswordMD5 function at decryptedByteCount which is below showing error "Padding is Invalid and cannot be remove. Please go thur the image attached

decryptedByteCount = cryptoStream.Read(plainTextBytes, _
0, _
plainTextBytes.Length)

Author: Chowdary14 Feb 2011 Member Level: Bronze   Points : 1

Dim DecryptedPass As String
DecryptedPass = DecryptPasswordMD5(authDataSet.Tables("authentication").Rows(0)("Password"), "P@$$WORD99")

In DecryptPasswordMD5 function at decryptedByteCount which is below showing error "Padding is Invalid and cannot be remove. Please go thur the image attached

decryptedByteCount = cryptoStream.Read(plainTextBytes, _
0, _
plainTextBytes.Length)

Guest Author: suchith02 May 2013

In the title mentioned as using md5 algorithm, where md5 functionality is used? i think need to use this class MD5CryptoServiceProvider under System.Security.Cryptography



  • Do not include your name, "with regards" etc in the comment. Write detailed comment, relevant to the topic.
  • No HTML formatting and links to other web sites are allowed.
  • This is a strictly moderated site. Absolutely no spam allowed.
  • Name:
    Email: