Improve security for hidden burn variables. #4299

Closed
wixbot opened this Issue Jan 30, 2014 · 3 comments

Comments

Projects
None yet
2 participants
@wixbot
Collaborator

wixbot commented Jan 30, 2014

In my managed BA, I have a password in a SecureString. I'd like a SecureStringVariables property in the managed Engine so that I never have to convert that SecureString to a managed string.

The engine should encrypt hidden variables while in memory and call SecureZeroMemory before freeing them so that they are not in memory after the process exits.

Originally opened by rseanhall

@wixbot

This comment has been minimized.

Show comment
Hide comment
@wixbot

wixbot Jan 30, 2014

Collaborator

Would really want this piped through to the engine. That might be breaking.

Originally posted by barnson

Collaborator

wixbot commented Jan 30, 2014

Would really want this piped through to the engine. That might be breaking.

Originally posted by barnson

@wixbot

This comment has been minimized.

Show comment
Hide comment
@wixbot

wixbot Feb 6, 2014

Collaborator

Originally changed by rseanhall
AssignedTo set to shall

Collaborator

wixbot commented Feb 6, 2014

Originally changed by rseanhall
AssignedTo set to shall

@wixbot

This comment has been minimized.

Show comment
Hide comment
@wixbot

wixbot May 22, 2014

Collaborator

Pull request wixtoolset/wix3#6 accepted.

Originally posted by rseanhall
Release changed from v3.x to v3.9
Resolution set to fixed
Status changed from Open to Resolved

Collaborator

wixbot commented May 22, 2014

Pull request wixtoolset/wix3#6 accepted.

Originally posted by rseanhall
Release changed from v3.x to v3.9
Resolution set to fixed
Status changed from Open to Resolved

@wixbot wixbot added this to the v3.9 milestone Dec 20, 2015

@wixbot wixbot closed this Dec 20, 2015

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment