Hashing | C# Online Compiler

Hashing by Endre Stokseth

using System;
using System.Security.Cryptography;
using Microsoft.AspNetCore.Cryptography.KeyDerivation;
					
public class Program
{
	 public static void Main()
    {
        // String
        String password = "admin123";

        var hashes = Hash.CreatePasswordHash(password);
		var hashPW = Convert.ToBase64String(hashes.passwordHash);
		var hashSalt = Convert.ToBase64String(hashes.passwordSalt);
		
		Console.WriteLine("Hash!...");
		Console.WriteLine("password: " + password);
        Console.WriteLine("passwordHash: " + hashPW);
		Console.WriteLine("passwordSalt: " + hashSalt);
		 
		Console.WriteLine("Verify!...");
		bool isAutenticated = Hash.VerifyPasswordHash(password, Convert.FromBase64String(hashPW), Convert.FromBase64String(hashSalt));
        Console.WriteLine("OK: " + isAutenticated);
    }
}

static class Hash
    {
        static public (byte[] passwordHash, byte[] passwordSalt) CreatePasswordHash(string password)
        {
            byte[] passwordSalt = CreateSalt();

            // derive a 256-bit subkey (use HMACSHA1 with 10,000 iterations)
            byte[] passwordHash = KeyDerivation.Pbkdf2(
                password: password,
                salt: passwordSalt,
                prf: KeyDerivationPrf.HMACSHA256,
                iterationCount: 10000,
                numBytesRequested: 256 / 8);			

            return (passwordHash, passwordSalt);
        }

        static public bool VerifyPasswordHash(string password, byte[] passwordHashFromDB, byte[] passwordSaltFromDB)
        {
            // derive a 256-bit subkey (use HMACSHA1 with 10,000 iterations)
            byte[] passwordHash = KeyDerivation.Pbkdf2(
                password: password,
                salt: passwordSaltFromDB,
                prf: KeyDerivationPrf.HMACSHA256,
                iterationCount: 10000,
                numBytesRequested: 256 / 8);

            return CryptographicOperations.FixedTimeEquals(passwordHash, passwordHashFromDB);
        }


        static private byte[] CreateSalt()
        {
            // generate a 128-bit salt using a secure PRNG
            byte[] salt = new byte[128 / 8];
            using (var rng = RandomNumberGenerator.Create())
            {
                rng.GetBytes(salt);
            }            

            return salt;
        }
    }

​x
 
using System;
using System.Security.Cryptography;
using Microsoft.AspNetCore.Cryptography.KeyDerivation;
                    
public class Program
{
     public static void Main()
    {
        // String
        String password = "admin123";
​
        var hashes = Hash.CreatePasswordHash(password);
        var hashPW = Convert.ToBase64String(hashes.passwordHash);
        var hashSalt = Convert.ToBase64String(hashes.passwordSalt);
        
        Console.WriteLine("Hash!...");
        Console.WriteLine("password: " + password);
        Console.WriteLine("passwordHash: " + hashPW);
        Console.WriteLine("passwordSalt: " + hashSalt);
         
        Console.WriteLine("Verify!...");
        bool isAutenticated = Hash.VerifyPasswordHash(password, Convert.FromBase64String(hashPW), Convert.FromBase64String(hashSalt));
        Console.WriteLine("OK: " + isAutenticated);
    }
}
​
static class Hash
    {
        static public (byte[] passwordHash, byte[] passwordSalt) CreatePasswordHash(string password)
        {
            byte[] passwordSalt = CreateSalt();
​
            // derive a 256-bit subkey (use HMACSHA1 with 10,000 iterations)
            byte[] passwordHash = KeyDerivation.Pbkdf2(
                password: password,
                salt: passwordSalt,
                prf: KeyDerivationPrf.HMACSHA256,
                iterationCount: 10000,
                numBytesRequested: 256 / 8);            
​
            return (passwordHash, passwordSalt);
        }
​
        static public bool VerifyPasswordHash(string password, byte[] passwordHashFromDB, byte[] passwordSaltFromDB)
        {
            // derive a 256-bit subkey (use HMACSHA1 with 10,000 iterations)
            byte[] passwordHash = KeyDerivation.Pbkdf2(
                password: password,
                salt: passwordSaltFromDB,
                prf: KeyDerivationPrf.HMACSHA256,
                iterationCount: 10000,
                numBytesRequested: 256 / 8);
​
            return CryptographicOperations.FixedTimeEquals(passwordHash, passwordHashFromDB);
        }
​
​
        static private byte[] CreateSalt()
        {
            // generate a 128-bit salt using a secure PRNG
            byte[] salt = new byte[128 / 8];
            using (var rng = RandomNumberGenerator.Create())
            {
                rng.GetBytes(salt);
            }            
​
            return salt;
        }
    }

View IL Code