MachineKeyCompatibilityMode MachineKeyCompatibilityMode MachineKeyCompatibilityMode MachineKeyCompatibilityMode Enum

Definition

Specifies which encryption methods can be used.

public enum class MachineKeyCompatibilityMode
public enum MachineKeyCompatibilityMode
type MachineKeyCompatibilityMode = 
Public Enum MachineKeyCompatibilityMode
Inheritance
MachineKeyCompatibilityModeMachineKeyCompatibilityModeMachineKeyCompatibilityModeMachineKeyCompatibilityMode

Fields

Framework20SP1 Framework20SP1 Framework20SP1 Framework20SP1 0

Use the encryption methods that were implemented in .NET Framework versions earlier than version 2.0 Service Pack 2. Initialization vectors (IVs) are used for all encryption operations except for storing encrypted passwords in the ASP.NET membership database.

Framework20SP2 Framework20SP2 Framework20SP2 Framework20SP2 1

Use the stronger encryption methods that are available in .NET Framework version 2.0 SP2 and later versions. Initialization vectors (IVs) are used for all encryption operations.

Framework45 Framework45 Framework45 Framework45 2

Use encryption methods that are available in .NET Framework version 4.5 and later versions. Compared to the encryption methods that are used for Framework20SP1 and Framework20SP2, the ciphertext that is generated by the default cryptographic routines is slightly smaller and is more resilient against certain classes of theoretical attacks. They also integrate with Windows 8 directory key management in order to get required cryptographic keys. This option also enables you to specify custom cryptographic routines by writing a class that derives from DataProtector and specifying the class name in the DataProtectorType property.

The following configuration requirements apply to this option:

  1. If the DataProtectorType property has a value, the ApplicationName property must also have a value.

  2. The Validation attribute must specify a system-defined validation algorithm (such as MD5, SHA1, HMACSHA256, HMACSHA384, or HMACSHA512) or a custom validation algorithm in a class that derives from the KeyedHashAlgorithm class. The values AES and 3DES are not validation algorithms.

When you specify this option, forms authentication tickets are always both encrypted and signed, regardless of the value specified for the Protection property. View state is also both encrypted and signed if a page's EnableViewStateMac property is true or the ViewStateEncryptionMode property is Always.

Remarks

You use the MachineKeyCompatibilityMode values when you set the CompatibilityMode property.

Applies to