| Description |
1 online resource (xi, 589 pages) : illustrations |
| Contents |
1 Understanding Encryption and Application Security 5 -- Exploring Encryption 6 -- Encryption Algorithms and Standards 6 -- Other Forms of Encryption 10 -- Using Certificates with Encryption 13 -- Certificate Authorities 14 -- Certificate Chains 14 -- Digital Signatures 14 -- Message Enveloping 15 -- Secure Sockets Layer (SSL) 16 -- Security and Audit Logs 16 -- Why Do You Need Audit Logs? 17 -- What Information Needs to Be Included? 17 -- 2 Getting Started with the CryptoAPI 19 -- CryptoAPI and Cryptographic Service Providers 20 -- Opening the CSP 21 -- Closing the CSP 25 -- Listing the Available CSPs 26 -- Listing the CSP Types 27 -- Getting the Default CSP 28 -- Setting the Default CSP 28 -- CSP Types and Encryption Algorithms 29 -- Listing CSPs and CSP Types 30 -- Designing the Interface 30 -- Listing the CSPs 32 -- Building a List of the CSP Types 34 -- 3 Symmetric and Password Encryption 37 -- Generating Hashes of Strings and Messages 38 -- Creating a Hash Object 38 -- Destroying a Hash Object 40 -- Duplicating a Hash Object 41 -- Hashing Data 42 -- Hashing a Session Key 42 -- Getting Hash Information 43 -- Setting Hash Information 45 -- Generating Symmetric Keys 46 -- Deriving a Key 47 -- Generating a Key 48 -- Destroying a Key 50 -- Duplicating a Key 51 -- Understanding Basic Encryption and Decryption 52 -- Encrypting Data 53 -- Decrypting Data 54 -- Building a Simple Encryption Application 55 -- Declaring API Functions, Constants, and Variables 55 -- Exposing Properties 60 -- Acquiring a Handle for the CSP 61 -- Deriving a Password-Based Key 64 -- Destroying a Password-Based Key 66 -- Performing Data Encryption 67 -- Performing Data Decryption 69 -- Designing the User Interface 70 -- Performing the Encryption 71 -- Performing the Decryption 74 -- Building a File Encryption/Decryption Utility 77 -- Making Additional Declarations 77 -- Hashing the Data File 78 -- Encrypting the Data File 80 -- Decrypting the Data File 81 -- Designing the User Interface 83 -- Performing the Data File Encryption 85 -- Performing the Data File Decryption 89 -- 4 Public/Private Key Communications 93 -- Block Versus Stream Algorithms 94 -- Salt Values: What Are They and Why Use Them? 95 -- Generating Salt Values 96 -- Extracting Salt Values from Session Keys 97 -- Setting Salt Values in Session Keys 100 -- Generating, Saving, and Retrieving Public/Private Keys 103 -- Exporting and Importing Keys 104 -- Exporting Keys 104 -- Importing Keys 107 -- Building a Secure Messaging Utility 108 -- Creating the Initial Project 108 -- Making Additional Declarations 109 -- Adding New Properties 110 -- Getting the User Public/Private Key Pair 111 -- Exporting the Public Key 113 -- Importing the Public Key 114 -- Creating and Exporting the Session Key 115 -- Importing the Session Key 117 -- Terminating the Class 118 -- Designing the User Interface 119 -- Performing Form Initialization, Cleanup, and Other Miscellaneous Functions 121 -- Performing the Initial Server Key Exchange 123 -- Performing the Client Key Exchange 125 -- Finishing the Server Key Exchange 126 -- Sending and Receiving Encrypted Messages 127 -- Listening for Connection Requests 130 -- Connecting to the Server 131 -- Receiving the Connection Request 132 -- Handling Data Arrival 133 -- Closing the Socket Connection 135 -- 5 Requesting and Retrieving Certificates 139 -- Digital Certificates Explained 140 -- Requesting a Certificate from a Certificate Authority 141 -- Verifying the Key Owner's Identity 142 -- Acquiring Certificates 143 -- Generating a Certificate Request 143 -- Retrieving Certificates 151 -- Building a Certificate Request Utility 155 -- Creating the Certificate Request Class 156 -- Creating the Class Properties 159 -- Class Initialization and Termination 161 --n Requesting Certificates 162 -- Retrieving Certificates 164 -- Checking on Request Status 165 -- Designing the Form 166 -- Form Initialization and Shutdown 168 -- Performing the Certificate Request 169 -- Checking the Status and Getting the Certificate 171 -- Running the Sample Application 171 -- 6 Working with Certificates 175 -- Managing Certificate Stores 176 -- Opening Certificate Stores 177 -- Closing Certificate Stores 178 -- Duplicating the Store Handle 179 -- Managing Certificates and Certificate Contexts 179 -- Creating a Certificate Context 179 -- Duplicating a Certificate Context 180 -- Finding a Certificate 180 -- Enumerating Certificates 183 -- Getting an Issuer Certificate 183 -- Serializing a Certificate 184 -- Verifying a Certificate 186 -- Deleting a Certificate 186 -- Freeing a Certificate Context 187 -- Getting Information from Certificates 187 -- Enumerating Certificate Properties 188 -- Getting Property Values 189 -- Setting Certificate Properties 192 -- Getting the Subject Name 193 -- Building a Certificate Maintenance Utility 195 -- Creating the Project 195 -- Listing the Certificates 198 -- Converting Strings 207 -- Extracting the Key Spec 208 -- Extracting the Provider Type 209 -- Extracting the Container Name 210 -- Extracting the CSP Name 211 -- Designing the Form 212 -- Listing the Certificates 214 -- 7 Working with Certificate Revocation Lists 217 -- Verifying Certificates Against a CA 218 -- Extracting a Certificate Serial Number 219 -- Formatting the Serial Number 222 -- CertAdmin COM Object 223 -- Verifying a Certificate 223 -- Building and Maintaining a Certificate Revocation List 226 -- Creating a CRL Context 226 -- Adding a CRL to a Certificate Store 227 -- Duplicating a CRL 229 -- Freeing a CRL Context 229 -- Deleting a CRL 229 -- Getting a CRL from a Certificate Store 230 -- Verifying Certificates Against a CRL 231 -- Managing a Certificate Revocation List 233 -- Creating the Project 233 -- Adding New Properties 237 -- Converting Bytes to Hex String 238 -- Checking Certificates Against the CA 239 -- Creating a CRL from a File 241 -- Checking Certificates Against a CRL 243 -- Adding a CRL to a Certificate Store 244 -- Modifying the Certificate Listing 246 -- Modifying the Form 249 -- Using the CA to Verify Certificates 251 -- Using the CRL to Verify Certificates 252 -- Importing the CRL to the Certificate Store 254 -- 8 Using Digital Signatures 257 -- What Are Digital Signatures? 259 -- Signing Messages and Verifying Signatures 261 -- Encryption Algorithms and Pointers 261 -- Signing a Message 262 -- Verifying a Message Signature 266 -- Verifying a Detached Message Signature 269 -- Determining the Number of Signers 270 -- Enveloping Messages 270 -- Encrypting a Message 270 -- Decrypting a Message 273 -- Signing and Encrypting a Message 275 -- Decrypting and Verifying a Message 276 -- Decoding a Message 277 -- Building a Signing Utility 279 -- Creating the Project 279 -- Retrieving the Signing Certificate 282 -- Determining the Certificate Type 284 -- Signing the Message 286 -- Verifying the Signature 289 -- Retrieving the Exchange Certificate 291 -- Encrypting the Message 293 -- Decrypting the Message 296 -- Releasing the Signature Certificate 299 -- Designing the Form 300 -- Getting the Signer Certificate 302 -- Performing the Signing 302 -- Performing the Signature Verification 304 -- Performing the Encryption 305 -- Performing the Decryption 307 -- 9 DCOM Through SSL 309 -- RDS and HTTP 310 -- Standard DCOM Versus RDS DCOM 310 -- RDS DataSpace Object 313 -- RDSServer DataFactory Object 313 -- RDS DataControl Object 314 -- Interacting with Custom Server Controls 314 -- Enabling RDS Use 315 -- DCOM Tunneling Through TCP/IP 316 -- Client Configuration 317 -- Server Configuration for DCOM 319 -- Building a DCOM-HTTPS Application 323 -- Creating the Server Object 323 -- Creating the Client Application 329 -- 10 Understanding Windows 2000 Security and Security Descriptors 339 -- Windows 2000 Security Overview 340 -- Fundamental Security Data Structures 341 -- Understanding Process and Thread Security Tokens 341 -- Understanding the Security Identifier 346 -- Understanding ACE, DACL, and SACL Structures 354 -- Determining the Size Required for an ACL 355 -- Adding an Access-Allowed ACE to a DACL 357 -- Security Descriptors 360 -- Retrieving a Security Descriptor 366 -- Using the Security_Attributes Structure 369 -- Trustee-Based Access Control 370 -- Using the TRUSTEE Structure 371 -- EXPLICIT_ACCESS Structure 375 -- Using SetEntriesInAcl to Create and Modify Access Control Lists 379 -- Impersonating a Client 381 -- 11 Using NT Login Authentication 385 -- Validating a Domain Login 386 -- Modifying Access Permissions 386 -- Checking a Login Against a Domain 389 -- Granting Account Permissions 398 -- Granting Permissions on NT 4.0 398 -- Granting Permissions on Windows 2000 400 -- Building a Login Validation Utility 402 -- Creating the DLLs 402 -- Creating the User Interface 403 -- Checking the User Logon 405 -- 12 Working with Active Directory Security (ADSI) and an LDAP Server 407 -- Active Directory and Security 408 -- Opening an ADSI Session 408 -- IADs Object Interface 412 -- IADsContainer Object Interface 414 -- IADsNamespaces Object Interface 416 -- ADSI Security and Authentication 417 -- Active Directory Object Schemas 420 -- IADsClass Object Interface 420 -- IADsProperty Object Interface 421 -- IADsSyntax Object Interface 422 -- Network Groups and Users 423 -- IADsCollection Object Interface 423 -- IADsDomain Object Interface 424 -- IADsGroup Object Interface 425 |
| Summary |
Using client-proven methods, and over 15 years of programming experience, expert author Davis Chapman empowers developers to create powerful, secure applications. Developing Secure Applications with Visual Basic first provides you with an understanding of encryption, and then guides you through adding security features to your own applications using the Microsoft CryptoAPI, and the new security features of Windows 2000. Developers who have been confused by the high-end, academic style of other encryption books and cryptography theory will delight with Chapman's understandable style and hands-on methods. This book covers security topics developers want and need to know including File Encryption, Encrypted Communications, Working with Certificates, Digital Signatures, SChannel Communications (SSL), Secure E-Mail, and much more |
| Analysis |
Microsoft |
| Notes |
Title from title screen |
|
Master and use copy. Digital master created according to Benchmark for Faithful Digital Reproductions of Monographs and Serials, Version 1. Digital Library Federation, December 2002. http://purl.oclc.org/DLF/benchrepro0212 MiAaHDL |
|
Copyright © Sams 2000 |
|
digitized 2011 HathiTrust Digital Library committed to preserve pda MiAaHDL |
| SUBJECT |
Microsoft Visual Basic for applications
|
|
BASIC (Computer program language)
|
|
Microsoft Visual Basic for applications fast |
| Subject |
Data encryption (Computer science)
|
|
Digital signatures.
|
|
COMPUTERS -- Internet -- Security.
|
|
COMPUTERS -- Networking -- Security.
|
|
COMPUTERS -- Security -- General.
|
|
Digital signatures
|
|
Data encryption (Computer science)
|
|
Visual Basic (Computer program language)
|
|
BASIC (Computer program language)
|
|
Datensicherung
|
|
VisualBASIC
|
|
Engineering & Applied Sciences.
|
|
Computer Science.
|
| Form |
Electronic book
|
| LC no. |
99066271 |
| ISBN |
0768656907 |
|
9780768656909 |
|
9780672318368 |
|
0672318369 |
|
9781281068491 |
|
1281068497 |
|
