Michael Coles: Sergeant SQL : encryption, SQL CLRhttp://sqlblog.com/blogs/michael_coles/archive/tags/encryption/SQL+CLR/default.aspxTags: encryption, SQL CLRenCommunityServer 2.1 SP2 (Build: 61129.1)Let's Encrypt a BLOBhttp://sqlblog.com/blogs/michael_coles/archive/2009/04/08/let-s-encrypt-a-blob.aspxWed, 08 Apr 2009 04:01:00 GMT21093a07-8b3d-42db-8cbf-3350fcbf5496:13148Mike C2http://sqlblog.com/blogs/michael_coles/comments/13148.aspxhttp://sqlblog.com/blogs/michael_coles/commentrss.aspx?PostID=13148http://sqlblog.com/blogs/michael_coles/rsscomments.aspx?PostID=13148<P>SQL Server 2008 has an impressive array of encryption features -- cell-level symmetric and asymmetric encryption, key management, EKM, TDE, and more.&nbsp;But they do have some limitations. Symmetric encryption functions, for instance, can only encrypt slightly less than 8,000 bytes of data (the additional information like random IV and authenticator hash added to the result take up some space in the varbinary(8000) result).&nbsp;If the result of your encryption returns more than 8,000 bytes of data the encryption functions will return NULL.</P> <P>If you run into a situation where you need to encrypt BLOB data in the database--graphics, documents, XML, or other sensitive data--the built-in functions will make your life a bit more difficult.&nbsp;When this happens&nbsp;you can either chop up your data into small chunks, all slightly less than 8K, and encrypt them separately; or you can use the CLR. Fortunately SQL CLR and the .NET System.Security.Cryptography namespace make it easy to encrypt your BLOB data. </P> <P>In this post I'm going to write a couple of functions to encrypt and decrypt data by passphrase using CLR. These functions work similarly to the EncryptByPassPhrase and DecryptByPassPhrase functions, except for two differences:</P> <OL> <LI>These CLR functions&nbsp;use the AES algorithm with a 256-bit key to encrypt and decrypt your data</LI> <LI>These functions can encrypt and decrypt BLOB data up to 2.1 GB in size</LI></OL> <P>(See <A href="http://technet.microsoft.com/en-us/library/ms190357.aspx">http://technet.microsoft.com/en-us/library/ms190357.aspx</A>&nbsp;and <A href="http://technet.microsoft.com/en-us/library/ms188910.aspx">http://technet.microsoft.com/en-us/library/ms188910.aspx</A>&nbsp;for more information about EncryptByPassPhrase and DecryptByPassPhrase).&nbsp;</P> <P>The CLR functions are EncryptAesByPassPhrase and DecryptAesByPassPhrase. The EncrytAesByPassPhrase function has this signature:</P> <P><STRONG>EncryptAesByPassPhrase (<EM>PassPhrase</EM> nvarchar(4000), <EM>Plaintext</EM> varbinary(max), <EM>AddAuthenticator</EM> bit, <EM>Authenticator</EM> nvarchar(4000))</STRONG></P> <P>The function generates a 256-bit AES encryption key and IV based on your <EM>PassPhrase</EM> (and the SHA-1 hash of your&nbsp;<EM>Authenticator</EM> if you include one and set the <EM>AddAuthenticator</EM> bit to 1). It then uses the encryption key and IV to encrypt your <EM>Plaintext</EM>. The result is a <EM>varbinary(max)</EM>, and the first 16 bytes of the result are&nbsp;a salt/IV value required to regenerate your key on decryption calls.&nbsp;The DecryptAesByPassPhrase function looks like this:</P> <P><STRONG>DecryptAesByPassPhrase (<EM>PassPhrase</EM> nvarchar(4000), <EM>Ciphertext</EM> varbinary(max), <EM>AddAuthenticator</EM> bit, <EM>Authenticator</EM> nvarchar(4000))</STRONG></P> <P>The parameters mirror the EncryptAesByPassPhrase parameters, except that you need to pass DecryptAesByPassPhrase the encrypted <EM>Ciphertext</EM> in place of the <EM>Plaintext</EM>. The result is the <EM>Plaintext</EM> in varbinary(max) form. If the <EM>Plaintext</EM> should be another data type (varchar, nvarchar, etc.) you need to explicitly cast it.</P> <P>Here's what the encryption function looks like in C#. I've added comments inline.</P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;">[Microsoft.SqlServer.Server.<SPAN style="COLOR:#2b91af;">SqlFunction<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;">(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>IsDeterministic = <SPAN style="COLOR:blue;">false</SPAN>,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>DataAccess = <SPAN style="COLOR:#2b91af;">DataAccessKind</SPAN>.None<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;">)]<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;">[<SPAN style="COLOR:blue;">return</SPAN>: <SPAN style="COLOR:#2b91af;">SqlFacet</SPAN>(MaxSize = -1)]<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;">public</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> <SPAN style="COLOR:blue;">static</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN> EncryptAesByPassPhrase<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;">(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SqlString</SPAN> PassPhrase,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>[<SPAN style="COLOR:#2b91af;">SqlFacet</SPAN>(MaxSize = -1)] <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN> Plaintext,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SqlBoolean</SPAN> AddAuthenticator,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SqlString</SPAN> Authenticator<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;">)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;">{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">try<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Automatically return NULL if passphrase or plaintext is NULL<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">if</SPAN> (PassPhrase.IsNull || Plaintext.IsNull)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">return</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN>.Null;<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Generate hash for authenticator<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SHA1Managed</SPAN> Sha1 = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">SHA1Managed</SPAN>();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">string</SPAN> AuthHash = <SPAN style="COLOR:#a31515;">""</SPAN>;<SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// If authenticator not used, use empty string<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Convert the authenticator hash to Base64 to append it to passphrase without conversion problem<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">if</SPAN> (AddAuthenticator.IsTrue &amp;&amp; !Authenticator.IsNull)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;</SPAN>AuthHash = <SPAN style="COLOR:#2b91af;">Convert</SPAN>.ToBase64String<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>Sha1.ComputeHash<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">Encoding</SPAN>.Unicode.GetBytes(Authenticator.Value)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">string</SPAN> AuthPass = PassPhrase.Value + AuthHash;<SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Append authenticator to passphrase<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Next derive a key from the passphrase + authenticator, with random 16-bit Salt<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">Rfc2898DeriveBytes</SPAN> KeyGenerator = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">Rfc2898DeriveBytes</SPAN>(AuthPass, 16);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Create a Rijndael/AES encryption object<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">Rijndael</SPAN> Aes = <SPAN style="COLOR:#2b91af;">Rijndael</SPAN>.Create();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>Aes.IV = KeyGenerator.GetBytes(Aes.BlockSize &gt;&gt; 3);<SPAN style="mso-spacerun:yes;">&nbsp; </SPAN><SPAN style="COLOR:green;">// Assign the IV<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>Aes.Key = KeyGenerator.GetBytes(Aes.KeySize &gt;&gt; 3);<SPAN style="mso-spacerun:yes;">&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Assign the Key<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Now get the raw plain text<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">byte</SPAN>[] rawData = Plaintext.Value;<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Use a MemoryStream wrapping a CryptoStream with a Rijndael encryptor to encrypt the data<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">using</SPAN> (<SPAN style="COLOR:#2b91af;">MemoryStream</SPAN> memoryStream = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">MemoryStream</SPAN>())<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">using<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">CryptoStream</SPAN> cryptoStream = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">CryptoStream<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>memoryStream,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>Aes.CreateEncryptor(),<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">CryptoStreamMode</SPAN>.Write<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;</SPAN>)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// First write out the 16-byte salt so we can regenerate the same key next time<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>memoryStream.Write(KeyGenerator.Salt, 0, 16);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Now write out the encrypted data<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>cryptoStream.Write(rawData, 0, rawData.Length);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>cryptoStream.Close();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Convert the encrypted data in memory to an array and return as a SqlBytes object<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">byte</SPAN>[] encrypted = memoryStream.ToArray();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">return</SPAN> <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN>(encrypted);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">catch<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Return NULL if an encryption error occurs<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">return</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN>.Null;<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 10pt;"><SPAN style="FONT-SIZE:10pt;LINE-HEIGHT:115%;FONT-FAMILY:'Courier New';mso-no-proof:yes;">}</SPAN></P> <P>The DecryptAesByPassPhrase function looks like this:</P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">[Microsoft.SqlServer.Server.<SPAN style="COLOR:#2b91af;">SqlFunction<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>IsDeterministic = <SPAN style="COLOR:blue;">true</SPAN>,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>DataAccess = <SPAN style="COLOR:#2b91af;">DataAccessKind</SPAN>.None<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">)]<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">[<SPAN style="COLOR:blue;">return</SPAN>: <SPAN style="COLOR:#2b91af;">SqlFacet</SPAN>(MaxSize = -1)]<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';">public</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"> <SPAN style="COLOR:blue;">static</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN> DecryptAesByPassPhrase<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SqlString</SPAN> PassPhrase,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>[<SPAN style="COLOR:#2b91af;">SqlFacet</SPAN>(MaxSize = -1)] <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN> Ciphertext,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SqlBoolean</SPAN> AddAuthenticator,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SqlString</SPAN> Authenticator<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">try<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Automatically return NULL if passphrase or plaintext is NULL<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">if</SPAN> (PassPhrase.IsNull || Ciphertext.IsNull)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">return</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN>.Null;<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Get the ciphertext into a byte array<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">byte</SPAN>[] rawData = Ciphertext.Value;<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Get the 16-byte salt from the byte array<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">byte</SPAN>[] Salt = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:blue;">byte</SPAN>[16];<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">for</SPAN> (<SPAN style="COLOR:blue;">int</SPAN> i = 0; i &lt; 16; i++)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>Salt[i] = rawData[i];<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Generate hash for authenticator<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">SHA1Managed</SPAN> Sha1 = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">SHA1Managed</SPAN>();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">string</SPAN> AuthHash = <SPAN style="COLOR:#a31515;">""</SPAN>;<SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// If no authenticator, use empty string<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Convert the authenticator hash to Base64 to append it to passphrase without conversion problem<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">if</SPAN> (AddAuthenticator.IsTrue &amp;&amp; !Authenticator.IsNull)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>AuthHash = <SPAN style="COLOR:#2b91af;">Convert</SPAN>.ToBase64String(Sha1.ComputeHash(<SPAN style="COLOR:#2b91af;">Encoding</SPAN>.Unicode.GetBytes(Authenticator.Value)));<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">string</SPAN> AuthPass = PassPhrase.Value + AuthHash;<SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Append authenticator to passphrase<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Next derive a key from the passphrase + authenticator, with 16-bit Salt<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">Rfc2898DeriveBytes</SPAN> keyGenerator = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">Rfc2898DeriveBytes</SPAN>(AuthPass, Salt);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Create a Rijndael/AES encryption object<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">Rijndael</SPAN> aes = <SPAN style="COLOR:#2b91af;">Rijndael</SPAN>.Create();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>aes.IV = keyGenerator.GetBytes(aes.BlockSize &gt;&gt; 3); <SPAN style="COLOR:green;">// Assign the IV<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>aes.Key = keyGenerator.GetBytes(aes.KeySize &gt;&gt; 3);<SPAN style="mso-spacerun:yes;">&nbsp; </SPAN><SPAN style="COLOR:green;">// Assign the key<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Wrap a CryptoStream in a MemoryStream to decrypt the data<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">using</SPAN> (<SPAN style="COLOR:#2b91af;">MemoryStream</SPAN> memoryStream = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">MemoryStream</SPAN>())<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">using<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">CryptoStream</SPAN> cryptoStream = <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">CryptoStream<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>memoryStream,<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>aes.CreateDecryptor(),<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:#2b91af;">CryptoStreamMode</SPAN>.Write<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>)<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Decrypt and write out the decrypted data with the CryptoStream<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// ...ignore the leading 16 bytes, the Salt<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>cryptoStream.Write(rawData, 16, rawData.Length - 16);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>cryptoStream.Close();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// Put the decrypted MemoryStream in a byte array and return as SqlBytes<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">byte</SPAN>[] decrypted = memoryStream.ToArray();<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">return</SPAN> <SPAN style="COLOR:blue;">new</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN>(decrypted);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">catch<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>{<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:green;">// If there's an exception return NULL<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:blue;">return</SPAN> <SPAN style="COLOR:#2b91af;">SqlBytes</SPAN>.Null;<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';"><SPAN style="mso-spacerun:yes;">&nbsp;&nbsp;&nbsp; </SPAN>}<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';">}</SPAN></P> <P> <P>Here's a quick sample that encrypts a 20,000 byte string and then decrypts it again using the functions:</P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;">-- Create a 20,000 byte string<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;">DECLARE</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> @c <SPAN style="COLOR:blue;">varchar</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:fuchsia;">max</SPAN><SPAN style="COLOR:gray;">)</SPAN> <SPAN style="COLOR:gray;">=</SPAN> <SPAN style="COLOR:fuchsia;">REPLICATE</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:fuchsia;">CAST</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:red;">'0123456789'</SPAN> <SPAN style="COLOR:blue;">AS</SPAN> <SPAN style="COLOR:blue;">varchar</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:fuchsia;">max</SPAN><SPAN style="COLOR:gray;">)),</SPAN> 2000<SPAN style="COLOR:gray;">);<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;">DECLARE</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> @v <SPAN style="COLOR:blue;">varbinary</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:fuchsia;">max</SPAN><SPAN style="COLOR:gray;">);</SPAN> <SPAN style="COLOR:green;">-- a varbinary(max) variable to hold the result<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;">-- First encrypt by passphrase<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;">SET</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> @v <SPAN style="COLOR:gray;">=</SPAN> dbo<SPAN style="COLOR:gray;">.</SPAN>EncryptAesByPassPhrase<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;">(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:1;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:red;">'This is my passphrase'</SPAN><SPAN style="COLOR:gray;">,</SPAN> <o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:1;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:fuchsia;">CAST</SPAN><SPAN style="COLOR:gray;">(</SPAN>@c <SPAN style="COLOR:blue;">AS</SPAN> <SPAN style="COLOR:blue;">varbinary</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:fuchsia;">max</SPAN><SPAN style="COLOR:gray;">)),<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:1;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>1<SPAN style="COLOR:gray;">,<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:1;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:red;">'MyAuthenticator'<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;">);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;">-- Then decrypt by passphrase<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;">DECLARE</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> @d <SPAN style="COLOR:blue;">varchar</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:fuchsia;">max</SPAN><SPAN style="COLOR:gray;">);<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;">SET</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> @d <SPAN style="COLOR:gray;">=</SPAN> <SPAN style="COLOR:fuchsia;">CAST<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;">(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:1;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>dbo<SPAN style="COLOR:gray;">.</SPAN>DecryptAesByPassPhrase<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:1;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN></SPAN><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;">(<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:2;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:red;">'This is my passphrase'</SPAN><SPAN style="COLOR:gray;">,<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:2;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>@v<SPAN style="COLOR:gray;">,<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:2;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN>1<SPAN style="COLOR:gray;">,<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:2;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:red;">'MyAuthenticator'<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><SPAN style="mso-tab-count:1;">&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; </SPAN><SPAN style="COLOR:gray;">)</SPAN> <SPAN style="COLOR:blue;">AS</SPAN> <SPAN style="COLOR:blue;">varchar</SPAN><SPAN style="COLOR:gray;">(</SPAN><SPAN style="COLOR:fuchsia;">max</SPAN><SPAN style="COLOR:gray;">)<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;">);<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;">-- Get the length of the result<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;FONT-FAMILY:'Courier New';mso-no-proof:yes;">SELECT</SPAN><SPAN style="FONT-SIZE:10pt;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> <SPAN style="COLOR:fuchsia;">DATALENGTH</SPAN><SPAN style="COLOR:gray;">(</SPAN>@d<SPAN style="COLOR:gray;">);<o:p></o:p></SPAN></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:gray;FONT-FAMILY:'Courier New';mso-no-proof:yes;"><o:p>&nbsp;</o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 0pt;LINE-HEIGHT:normal;mso-layout-grid-align:none;"><SPAN style="FONT-SIZE:10pt;COLOR:green;FONT-FAMILY:'Courier New';mso-no-proof:yes;">-- Get the actual result<o:p></o:p></SPAN></P> <P class=MsoNormal style="MARGIN:0in 0in 10pt;"><SPAN style="FONT-SIZE:10pt;COLOR:blue;LINE-HEIGHT:115%;FONT-FAMILY:'Courier New';mso-no-proof:yes;">SELECT</SPAN><SPAN style="FONT-SIZE:10pt;LINE-HEIGHT:115%;FONT-FAMILY:'Courier New';mso-no-proof:yes;"> @d<SPAN style="COLOR:gray;">;</SPAN></SPAN></P> <P> <P>The sample project with these two functions in it for Visual Studio 2008 is in the attached file.</P> <P>This is just a very simple example of the type of encryption functionality you can use from SQL CLR. I'll demonstrate some more SQL CLR-enabled cryptography in a future post.</P><img src="http://sqlblog.com/aggbug.aspx?PostID=13148" width="1" height="1">.NETc sharpc#cryptographydot netencryptionprogrammingSQL CLRSQL Server 2008