Enterprise Library Test Guide - Willy .Net

More documents

Recommendations

Info

Testing the Cryptography Application Block 49 Code test case Implemented? Feature that is implemented Verify that there is Yes The SymmetricCryptographer.Dispose method clears a way to properly dispose of code example. a symmetric algorithm. This is shown in the following the symmetric and protected virtual void Dispose(…) hash algorithms { after they are if(algorithm != null) used. { algorithm.Clear(); algorithm = null; } } The HashCryptographer class implements a hash algorithm within a using statement. The using statement obtains resources, executes a statement, and disposes of the resources. In this case, the resource is the hash algorithm. This is shown in the following code example. public byte[] ComputeHash(byte[] plaintext) { … using (HashAlgorithm algorithm = GetHashAlgorithm()) {} … } Verify that the SymmetricAlgorithmProvider class and the KeyedHashAlgorithmProvider class support both machine mode and user mode encryption. Yes In the configuration source, the scope property supports both machine mode and user mode. This is shown in the following configuration example. The CryptographySettings class reads the configuration information and injects it into either the Keyed- HashAlgorithmProvider class or the SymmetricAlgorithmProvider class (whichever is applicable). In addition, the constructor for either of these classes accepts a DataProtectionScope enumeration as a parameter. This parameter defines whether the scope of the protection is CurrentUser or LocalMachine mode. This is shown in the following code example. public KeyedHashAlgorithmProvider ( Type algorithmType, bool saltEnabled, string protectedKeyFileName, DataProtectionScope protectedKeyFileProtectionScope ) continued
50 Enterprise Library Test Guide Code test case Implemented? Feature that is implemented Verify that the application block can either use an absolute path or a relative path to read the key file. Yes In the configuration source, the ProtectedKeyFilename property supports both relative and absolute paths. This is shown in the following configuration example. Verify that the application block validates the input at all the entry points, such as the Cryptographer façade. Verify that the application block reads the symmetric key only once from the input stream and then caches it so that it can be used for the cryptography operations. Verify that the symmetric key is cached in memory in a thread safe manner. Yes Yes Yes The following code is an example of how the application block checks whether the input is valid. If the input is invalid, the application block throws an exception. public static string DecryptSymmetric(string symmetricInstance, string ciphertextBase64) { if (string.IsNullOrEmpty(symmetricInstance)) throw new ArgumentException(…); if (string.IsNullOrEmpty(ciphertextBase64)) throw new ArgumentException(…); } The KeyManager.Read method reads an encrypted key from the input stream and then caches it. This is shown in the following code example. public static ProtectedKey Read(…) { if (cache[completeFileName] != null) return cache[completeFileName]; } The ProtectedKeyCache class locks the cache before it stores the key. This is shown in the following code example. public ProtectedKey this[string keyFileName] { set { lock (cache) { cache[keyFileName] = value; } } }
Page 1 and 2:
Enterprise Library Test Guide
Page 3 and 4:
ISBN 0-7356-2389-9 Information in t
Page 5 and 6: iv Contents Testing the Logging App
Page 8 and 9: Introduction Enterprise Library Tes
Page 10 and 11: Introduction This section provides
Page 12 and 13: Introduction Performing Code Revie
Page 14 and 15: Introduction Setting Up the Crypto
Page 16: Introduction Acknowledgments The f
Page 19 and 20: 12 Enterprise Library Test Guide Pr
Page 21 and 22: 14 Enterprise Library Test Guide De
Page 23 and 24: 16 Enterprise Library Test Guide Co
Page 25 and 26: 18 Enterprise Library Test Guide Th
Page 27 and 28: 20 Enterprise Library Test Guide Te
Page 30 and 31: Testing the Caching Application Blo
Page 32 and 33: Testing the Application Block 25 Pr
Page 34 and 35: Testing the Application Block 27 Af
Page 36 and 37: Testing the Application Block 29 Co
Page 44 and 45: Testing the Application Block 37 Te
Page 46 and 47: Testing the Application Block 39 Te
Page 48 and 49: Testing the Cryptography Applicatio
Page 62 and 63: Testing the Data Access Application
Page 74 and 75: Testing the Exception Handling Appl
Page 76 and 77: Testing the Enterprise Library Core
Page 90: Testing the Enterprise Library Core
Page 93 and 94: 86 Enterprise Library Test Guide Ta
Page 95 and 96: 88 Enterprise Library Test Guide De
Page 108 and 109:
Testing the Security Application Bl
Page 110 and 111:
Page 112 and 113:
Page 114 and 115:
Page 116 and 117:
Page 118 and 119:
Page 120 and 121:
Page 122 and 123:
Page 124 and 125:
Page 126 and 127:
Page 128:
Page 131 and 132:
124 Enterprise Library Test Guide E
Page 133 and 134:
126 Enterprise Library Test Guide A
Page 135 and 136:
128 Enterprise Library Test Guide T
Page 137 and 138:
130 Enterprise Library Test Guide N
Page 139 and 140:
132 Enterprise Library Test Guide I
Page 141 and 142:
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
144 Enterprise Library Test Guide C
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
150 Enterprise Library Test Guide D
Page 159 and 160:
152 Enterprise Library Test Guide U
Page 161 and 162:
Page 163 and 164:
156 Enterprise Library Test Guide D
Page 166 and 167:
Testing for Globalization Best Prac
Page 168 and 169:
Page 170 and 171:
Page 172:
Page 175 and 176:
168 Enterprise Library Test Guide S
Page 177 and 178:
Page 179 and 180:
Page 181 and 182:
Page 183 and 184:
Page 185 and 186:
Page 187 and 188:
180 Enterprise Library Test Guide l
Page 189 and 190:
182 Enterprise Library Test Guide
Page 191 and 192:
Page 193 and 194:
Page 195 and 196:
Page 197 and 198:
Page 199 and 200:
Page 201 and 202:
194 Enterprise Library Test Guide O
Page 203 and 204:
Page 205 and 206:
Page 207 and 208:
200 Enterprise Library Test Guide P
Page 209 and 210:
Page 211 and 212:
Page 213 and 214:
Page 215 and 216:
Page 217 and 218:
Page 219 and 220:
Page 221 and 222:
Page 223 and 224:
216 Enterprise Library Test Guide Y
Page 225 and 226:
Page 227 and 228:
Page 229 and 230:
Page 231 and 232:
Page 233 and 234:
Page 235 and 236:
228 Enterprise Library Test Guide t
Page 237 and 238:
230 Enterprise Library Test Guide F
Page 239 and 240:
Page 241 and 242:
234 Enterprise Library Test Guide R
Page 243 and 244:
236 Enterprise Library Test Guide L
Page 245 and 246:
Page 247 and 248:
240 Enterprise Library Test Guide G
Page 249 and 250:
Page 251 and 252:
Page 253 and 254:
Page 255 and 256:
248 Enterprise Library Test Guide t
Page 257 and 258:
Page 259 and 260:
252 Enterprise Library Test Guide V
Page 261 and 262:
Page 263 and 264:
Page 265 and 266:
258 Index requirements, 55 scalabil
Page 267 and 268:
260 Index initialization cost, 171
Page 269:
262 Index Total Transactions value,
show all

Enterprise Library Test Guide - Willy .Net

Create successful ePaper yourself

Delete template?

Save as template?