AspEncrypt is an Active Server component that brings security to your application through encryption. With AspEncrypt, you can encrypt data, send S/MIME-based secure mail, compute one-way hash values, generate and verify digital signatures, issue and manage X.509 digital certificates, and more. This component can be used in an ASP/ASP.NET or VB environment on Windows 95/98/NT/2000/XP/2003/2008/Vista.

As of August 17, 2007, a native 64-bit version of AspEncrypt is available. Download your copy here.

• Support for the Advanced Encryption Standard cipher (AES) also known as Rijndael. For more information, see Article PS040625142 at the Persits support site.
• Two new methods, EncryptTextWide and DecryptTextWide added to the CryptoKey object to support encryption of Unicode strings.
• A new property, RawBits, added to the CryptoKey object which returns the raw key bits of a symmetric key.

Upgrades to AspEncrypt 2.3 are free for registered users.

  Where is AspEncrypt to be Used?

Any application that deals with sensitive data can benefit from AspEncrypt, for example:

• An e-commerce web site that stores sensitive information such as clients' credit cards in an encrypted form.
• An online information system that periodically sends its subscribers confidential information via email; the message body is encrypted using the recipient's digital certificate.
• A password-protected web-based application that stores user passwords encrypted with a one-way hash function; even if the user database is stolen, it is still computationally infeasible to recover original passwords from their hash values.
• A corporate Certification Authority (CA) that issues and manages digital certificates for the employees.
• An enterprise-wide secure document repository that enables users to upload documents with a browser, keeps the documents encrypted, generates digital signatures to maintain file integrity, and dispenses the documents to eligible users upon request.

AspEncrypt is a powerful tool which will help your application perform complex cryptographic tasks in just a few lines of code, such as:

• Encrypt and decrypt files and messages using industry-standard ciphers such as RC2 or DES.
• Generate and manage password-derived and random cryptographic keys.
• Calculate one-way hash functions of files and messages.
• Generate and validate RSA digital signatures.
• Issue and manage X.509 digital certificates.
• Create and manage certificate stores.
• Generate certificate-based PKCS#7 signatures and envelopes.

When used in conjunction with the AspEmail mail component, AspEncrypt will help you generate secure email in the widely supported S/MIME format using the PKCS#7 Public Key Cryptography Standard:

• Send encrypted email messages.
• Send signed email messages.
• Send messages that are first signed and then encrypted.

AspEncrypt can be used in conjunction with AspUpload, the industry-standard file upload component, to make your web-based file management system truly secure:

• Allow your users to upload files with a browser securely. AspEncrypt will take care of encrypting the files as they are being uploaded.
• Allow your users to download files from a secure location on the web server. AspEncrypt will decrypt the files as they are being downloaded.

Starting with Version 2.0, AspEncrypt provides a client-side ActiveX sub-component, called XEncrypt, which will enable your Web-based application to perform all cryptographic operations directly on the user's machine for better security, flexibility and performance. In particular, operations involving the user's private key such as digital signing and data decryption can be performed without jeopardizing the security of the private key.

Other new AspEncrypt 2.0 features include:

• PKCS#7 format support. Create certificate-based detached digital signatures and data envelopes in the industry-wide cryptographic standard.
• PKCS#12 format support. You can now use certificates stored together with their private keys in .pfx (.p12) files.
• CM.OpenContextEx method added which enables you to explicitly specify a Cryptographic Service Provider and not rely on the default provider.
• Key.Padding and Key.Mode properties added to the CryptoKey object which enable you to retrieve and set cipher mode and padding.
• Cert.KeyUsage and Cert.BasicConstraints properties added to the CryptoCert object.
• Key.EncryptBinary/DecryptBinary and Hash.AddBinary methods added to handle binary data.
• A few minor bugs fixed.
• Two new chapters have been added to the Tasks section:
  • Use AspEncrypt as a Client-side ActiveX Control
  • Generate PKCS#7 Signatures and Envelopes

This web site contains everything you need to get your AspEncrypt-based application up and running in no time.

• The Tasks section of this site contains ready-to-run solutions to several most common cryptography tasks.
• The Crypto 101 section is a tutorial for crypto-newbies.
• The Object Reference section contains detailed description of the AspEncrypt objects.
• The Live Demo section enables you to see AspEncrypt in action. Compute hash values on-line, encrypt a file from your hard drive, obtain an instant digital certificate, send yourself an encrypted email message, and more.

An exact replica of this site will be created on your hard drive when you run the AspEncrypt.exe setup program downloadable from the Download & Buy section.