In my Windows service, I need to get credentials for a third-party REST API, which is stored in my SQL Server 2012 database located on the same network. Each of my clients may have different API credentials assigned to them. For instance:
Customer Name | API ID | API Password In Plain Text
-----------------------------------------------------
Customer 1 1234 somepassword
Customer 2 1234 somepassword
Customer 3 5678 anotherpassword
In the first iteration of this service, all clients used the same API credentials and were encrypted in the app.config of the Windows service using SectionInformation.ProtectSection .
Am I just using one encryption / decryption method provided by the .NET platform and store this value in the database? For example, one of the solutions given here is: Encrypting and decrypting a string in C # ? Any suggestions or other solutions I can explore?
source
share