HMACMD5 Class (System.Security.Cryptography)

Collapse All

Language Filter

This page is specific to

Microsoft Visual Studio 2010/.NET Framework 4

Other versions are also available for the following:

.NET Framework Class Library

HMACMD5 Class

Updated: May 2011

Computes a Hash-based Message Authentication Code (HMAC) using the MD5 hash function.

Inheritance Hierarchy

System..::.Object
  System.Security.Cryptography..::.HashAlgorithm
    System.Security.Cryptography..::.KeyedHashAlgorithm
      System.Security.Cryptography..::.HMAC
        System.Security.Cryptography..::.HMACMD5

Namespace: System.Security.Cryptography
Assembly: mscorlib (in mscorlib.dll)

Syntax

Visual Basic

<ComVisibleAttribute(True)> _
Public Class HMACMD5 _
    Inherits HMAC

[ComVisibleAttribute(true)]
public class HMACMD5 : HMAC

Visual C++

[ComVisibleAttribute(true)]
public ref class HMACMD5 : public HMAC

[<ComVisibleAttribute(true)>]
type HMACMD5 =  
    class
        inherit HMAC
    end

The HMACMD5 type exposes the following members.

Constructors

	Name	Description
	HMACMD5()()()	Initializes a new instance of the HMACMD5 class with a randomly generated key.
	HMACMD5(array<Byte>[]()[])	Initializes a new instance of the HMACMD5 class using the supplied key.

Top

Properties

	Name	Description
	BlockSizeValue	Gets or sets the block size to use in the hash value. (Inherited from HMAC.)
	CanReuseTransform	Gets a value indicating whether the current transform can be reused. (Inherited from HashAlgorithm.)
	CanTransformMultipleBlocks	When overridden in a derived class, gets a value indicating whether multiple blocks can be transformed. (Inherited from HashAlgorithm.)
	Hash	Gets the value of the computed hash code. (Inherited from HashAlgorithm.)
	HashName	Gets or sets the name of the hash algorithm to use for hashing. (Inherited from HMAC.)
	HashSize	Gets the size, in bits, of the computed hash code. (Inherited from HashAlgorithm.)
	InputBlockSize	When overridden in a derived class, gets the input block size. (Inherited from HashAlgorithm.)
	Key	Gets or sets the key to use in the hash algorithm. (Inherited from HMAC.)
	OutputBlockSize	When overridden in a derived class, gets the output block size. (Inherited from HashAlgorithm.)

Top

Methods

	Name	Description
	Clear	Releases all resources used by the HashAlgorithm class. (Inherited from HashAlgorithm.)
	ComputeHash(array<Byte>[]()[])	Computes the hash value for the specified byte array. (Inherited from HashAlgorithm.)
	ComputeHash(Stream)	Computes the hash value for the specified Stream object. (Inherited from HashAlgorithm.)
	ComputeHash(array<Byte>[]()[], Int32, Int32)	Computes the hash value for the specified region of the specified byte array. (Inherited from HashAlgorithm.)
	Dispose()()()	Releases all resources used by the current instance of the HashAlgorithm class. (Inherited from HashAlgorithm.)
	Dispose(Boolean)	Releases the unmanaged resources used by the HMAC class when a key change is legitimate and optionally releases the managed resources. (Inherited from HMAC.)
	Equals(Object)	Determines whether the specified Object is equal to the current Object. (Inherited from Object.)
	Finalize	Allows an object to try to free resources and perform other cleanup operations before it is reclaimed by garbage collection. (Inherited from Object.)
	GetHashCode	Serves as a hash function for a particular type. (Inherited from Object.)
	GetType	Gets the Type of the current instance. (Inherited from Object.)
	HashCore	When overridden in a derived class, routes data written to the object into the default HMAC hash algorithm for computing the hash value. (Inherited from HMAC.)
	HashFinal	When overridden in a derived class, finalizes the hash computation after the last data is processed by the cryptographic stream object. (Inherited from HMAC.)
	Initialize	Initializes an instance of the default implementation of HMAC. (Inherited from HMAC.)
	MemberwiseClone	Creates a shallow copy of the current Object. (Inherited from Object.)
	ToString	Returns a string that represents the current object. (Inherited from Object.)
	TransformBlock	Computes the hash value for the specified region of the input byte array and copies the specified region of the input byte array to the specified region of the output byte array. (Inherited from HashAlgorithm.)
	TransformFinalBlock	Computes the hash value for the specified region of the specified byte array. (Inherited from HashAlgorithm.)

Top

Fields

	Name	Description
	HashSizeValue	Represents the size, in bits, of the computed hash code. (Inherited from HashAlgorithm.)
	HashValue	Represents the value of the computed hash code. (Inherited from HashAlgorithm.)
	KeyValue	The key to use in the hash algorithm. (Inherited from KeyedHashAlgorithm.)
	State	Represents the state of the hash computation. (Inherited from HashAlgorithm.)

Top

Remarks

HMACMD5 is a type of keyed hash algorithm that is constructed from the MD5 hash function and used as a Hash-based Message Authentication Code (HMAC). The HMAC process mixes a secret key with the message data, hashes the result with the hash function, mixes that hash value with the secret key again, then applies the hash function a second time. The output hash will be 128 bits in length.

An HMAC can be used to determine whether a message sent over an insecure channel has been tampered with, provided that the sender and receiver share a secret key. The sender computes the hash value for the original data and sends both the original data and hash value as a single message. The receiver recalculates the hash value on the received message and checks that the computed HMAC matches the transmitted HMAC.

Any change to the data or the hash value will result in a mismatch, because knowledge of the secret key is required to change the message and reproduce the correct hash value. Therefore, if the original and computed hash values match, the message is authenticated.

MD5 (Message Digest Algorithm 5) is a cryptographic hash algorithm developed at RSA Laboratories. HMACMD5 accepts keys of any size, and produces a hash sequence 128 bits in length.

Examples

The following code example shows how to sign a file by using the HMACMD5 object and then how to verify the file.

Visual Basic

Imports System
Imports System.IO
Imports System.Security.Cryptography

Public Class HMACMD5example

    Public Shared Sub Main(ByVal Fileargs() As String)
        Dim dataFile As String
        Dim signedFile As String
        'If no file names are specified, create them.
        If Fileargs.Length < 2 Then
            dataFile = "text.txt"
            signedFile = "signedFile.enc"

            If Not File.Exists(dataFile) Then
                ' Create a file to write to.
                Using sw As StreamWriter = File.CreateText(dataFile)
                    sw.WriteLine("Here is a message to sign")
                End Using
            End If

        Else
            dataFile = Fileargs(0)
            signedFile = Fileargs(1)
        End If
        Try
            ' Create a random key using a random number generator. This would be the
            '  secret key shared by sender and receiver.
            Dim secretkey() As Byte = New [Byte](63) {}
            'RNGCryptoServiceProvider is an implementation of a random number generator.
            Using rng As New RNGCryptoServiceProvider()
                ' The array is now filled with cryptographically strong random bytes.
                rng.GetBytes(secretkey)

                ' Use the secret key to encode the message file.
                SignFile(secretkey, dataFile, signedFile)

                ' Take the encoded file and decode
                VerifyFile(secretkey, signedFile)
            End Using
        Catch e As IOException
            Console.WriteLine("Error: File not found", e)
        End Try

    End Sub 'Main

    ' Computes a keyed hash for a source file and creates a target file with the keyed hash
    ' prepended to the contents of the source file. 
    Public Shared Sub SignFile(ByVal key() As Byte, ByVal sourceFile As String, ByVal destFile As String)
        ' Initialize the keyed hash object.
        Using myhmac As New HMACMD5(key)
            Using inStream As New FileStream(sourceFile, FileMode.Open)
                Using outStream As New FileStream(destFile, FileMode.Create)
                    ' Compute the hash of the input file.
                    Dim hashValue As Byte() = myhmac.ComputeHash(inStream)
                    ' Reset inStream to the beginning of the file.
                    inStream.Position = 0
                    ' Write the computed hash value to the output file.
                    outStream.Write(hashValue, 0, hashValue.Length)
                    ' Copy the contents of the sourceFile to the destFile.
                    Dim bytesRead As Integer
                    ' read 1K at a time
                    Dim buffer(1023) As Byte
                    Do
                        ' Read from the wrapping CryptoStream.
                        bytesRead = inStream.Read(buffer, 0, 1024)
                        outStream.Write(buffer, 0, bytesRead)
                    Loop While bytesRead > 0
                End Using
            End Using
        End Using
        Return

    End Sub 'SignFile
    ' end SignFile

    ' Compares the key in the source file with a new key created for the data portion of the file. If the keys 
    ' compare the data has not been tampered with.
    Public Shared Function VerifyFile(ByVal key() As Byte, ByVal sourceFile As String) As Boolean
        Dim err As Boolean = False
        ' Initialize the keyed hash object. 
        Using hmac As New HMACMD5(key)
            ' Create an array to hold the keyed hash value read from the file.
            Dim storedHash(hmac.HashSize / 8) As Byte
            ' Create a FileStream for the source file.
            Using inStream As New FileStream(sourceFile, FileMode.Open)
                ' Read in the storedHash.
                inStream.Read(storedHash, 0, storedHash.Length - 1)
                ' Compute the hash of the remaining contents of the file.
                ' The stream is properly positioned at the beginning of the content, 
                ' immediately after the stored hash value.
                Dim computedHash As Byte() = hmac.ComputeHash(inStream)
                ' compare the computed hash with the stored value
                Dim i As Integer
                For i = 0 To storedHash.Length - 2
                    If computedHash(i) <> storedHash(i) Then
                        err = True
                    End If
                Next i
            End Using
        End Using
        If err Then
            Console.WriteLine("Hash values differ! Signed file has been tampered with!")
            Return False
        Else
            Console.WriteLine("Hash values agree -- no tampering occurred.")
            Return True
        End If

    End Function 'VerifyFile 
End Class 'HMACMD5example 'end VerifyFile
'end class

using System;
using System.IO;
using System.Security.Cryptography;

public class HMACMD5example
{

    public static void Main(string[] Fileargs)
    {
        string dataFile;
        string encodedFile;
        //If no file names are specified, create them.
        if (Fileargs.Length < 2)
        {
            dataFile = @"text.txt";
            encodedFile = "encodedFile.enc";

            if (!File.Exists(dataFile))
            {
                // Create a file to write to.
                using (StreamWriter sw = File.CreateText(dataFile))
                {
                    sw.WriteLine("Here is a message to encode");
                }
            }

        }
        else
        {
            dataFile = Fileargs[0];
            encodedFile = Fileargs[1];
        }
        try
        {
            // Create a random key using a random number generator. This would be the
            //  secret key shared by sender and receiver.
            byte[] secretkey = new Byte[64];
            //RNGCryptoServiceProvider is an implementation of a random number generator.
            using (RNGCryptoServiceProvider rng = new RNGCryptoServiceProvider())
            {
                // The array is now filled with cryptographically strong random bytes.
                rng.GetBytes(secretkey);

                // Use the secret key to encode the message file.
                SignFile(secretkey, dataFile, encodedFile);

                // Take the encoded file and decode
                DecodeFile(secretkey, encodedFile);
            }
        }
        catch (IOException e)
        {
            Console.WriteLine("Error: File not found", e);
        }

    }  //end main
    // Computes a keyed hash for a source file, creates a target file with the keyed hash
    // prepended to the contents of the source file. 
    public static void SignFile(byte[] key, String sourceFile, String destFile)
    {
        // Initialize the keyed hash object.
        using (HMACMD5 myhmacMd5 = new HMACMD5(key))
        {
            using (FileStream inStream = new FileStream(sourceFile, FileMode.Open))
            {
                using (FileStream outStream = new FileStream(destFile, FileMode.Create))
                {
                    // Compute the hash of the input file.
                    byte[] hashValue = myhmacMd5.ComputeHash(inStream);
                    // Reset inStream to the beginning of the file.
                    inStream.Position = 0;
                    // Write the computed hash value to the output file.
                    outStream.Write(hashValue, 0, hashValue.Length);
                    // Copy the contents of the sourceFile to the destFile.
                    int bytesRead;
                    // read 1K at a time
                    byte[] buffer = new byte[1024];
                    do
                    {
                        // Read from the wrapping CryptoStream.
                        bytesRead = inStream.Read(buffer, 0, 1024);
                        outStream.Write(buffer, 0, bytesRead);
                    } while (bytesRead > 0);
                }
            }
        }
        return;
    } // end SignFile


    // Verifies the data by comparing the hash passed 
    // in the file with the computed hash for the data.
    public static bool VerifyFile(byte[] key, String sourceFile)
    {
        bool err = false;
        // Initialize the keyed hash object. 
        using (HMACMD5 hmacmD5 = new HMACMD5(key))
        {
            // Create an array to hold the keyed hash value read from the file.
            byte[] storedHash = new byte[hmacmD5.HashSize / 8];
            // Create a FileStream for the source file.
            using (FileStream inStream = new FileStream(sourceFile, FileMode.Open))
            {
                // Read in the storedHash.
                inStream.Read(storedHash, 0, storedHash.Length);
                // Compute the hash of the remaining contents of the file.
                // The stream is properly positioned at the beginning of the content, 
                // immediately after the stored hash value.
                byte[] computedHash = hmacmD5.ComputeHash(inStream);
                // compare the computed hash with the stored value

                for (int i = 0; i < storedHash.Length; i++)
                {
                    if (computedHash[i] != storedHash[i])
                    {
                        err = true;
                    }
                }
            }
        }
        if (err)
        {
            Console.WriteLine("Hash values differ! Encoded file has been tampered with!");
            return false;
        }
        else
        {
            Console.WriteLine("Hash values agree -- no tampering occurred.");
            return true;
        }

    } //end DecodeFile

} //end class

Visual C++

using namespace System;
using namespace System::IO;
using namespace System::Security::Cryptography;

// Computes a keyed hash for a source file, creates a target file with the keyed hash
// prepended to the contents of the source file, then decrypts the file and compares
// the source and the decrypted files.
void EncodeFile( array<Byte>^key, String^ sourceFile, String^ destFile )
{

   // Initialize the keyed hash object.
   HMACMD5^ myhmacMD5 = gcnew HMACMD5( key );
   FileStream^ inStream = gcnew FileStream( sourceFile,FileMode::Open );
   FileStream^ outStream = gcnew FileStream( destFile,FileMode::Create );

   // Compute the hash of the input file.
   array<Byte>^hashValue = myhmacMD5->ComputeHash( inStream );

   // Reset inStream to the beginning of the file.
   inStream->Position = 0;

   // Write the computed hash value to the output file.
   outStream->Write( hashValue, 0, hashValue->Length );

   // Copy the contents of the sourceFile to the destFile.
   int bytesRead;

   // read 1K at a time
   array<Byte>^buffer = gcnew array<Byte>(1024);
   do
   {

      // Read from the wrapping CryptoStream.
      bytesRead = inStream->Read( buffer, 0, 1024 );
      outStream->Write( buffer, 0, bytesRead );
   }
   while ( bytesRead > 0 );

   myhmacMD5->Clear();

   // Close the streams
   inStream->Close();
   outStream->Close();
   return;
} // end EncodeFile



// Decrypt the encoded file and compare to original file.
bool DecodeFile( array<Byte>^key, String^ sourceFile )
{

   // Initialize the keyed hash object. 
   HMACMD5^ hmacMD5 = gcnew HMACMD5( key );

   // Create an array to hold the keyed hash value read from the file.
   array<Byte>^storedHash = gcnew array<Byte>(hmacMD5->HashSize / 8);

   // Create a FileStream for the source file.
   FileStream^ inStream = gcnew FileStream( sourceFile,FileMode::Open );

   // Read in the storedHash.
   inStream->Read( storedHash, 0, storedHash->Length );

   // Compute the hash of the remaining contents of the file.
   // The stream is properly positioned at the beginning of the content, 
   // immediately after the stored hash value.
   array<Byte>^computedHash = hmacMD5->ComputeHash( inStream );

   // compare the computed hash with the stored value
   bool err = false;
   for ( int i = 0; i < storedHash->Length; i++ )
   {
      if ( computedHash[ i ] != storedHash[ i ] )
      {
         err = true;
      }
   }
   if (err)
        {
            Console::WriteLine("Hash values differ! Encoded file has been tampered with!");
            return false;
        }
        else
        {
            Console::WriteLine("Hash values agree -- no tampering occurred.");
            return true;
        }

} //end DecodeFile


int main()
{
   String^ usageText = "Usage: HMACMD5 inputfile.txt encryptedfile.hsh\nYou must specify the two file names. Only the first file must exist.\n";
   array<String^>^Fileargs = Environment::GetCommandLineArgs();

   //If no file names are specified, write usage text.
   if ( Fileargs->Length < 3 )
   {
      Console::WriteLine( usageText );
   }
   else
   {
      try
      {

         // Create a random key using a random number generator. This would be the
         //  secret key shared by sender and receiver.
         array<Byte>^secretkey = gcnew array<Byte>(64);

         //RNGCryptoServiceProvider is an implementation of a random number generator.
         RNGCryptoServiceProvider^ rng = gcnew RNGCryptoServiceProvider;

         // The array is now filled with cryptographically strong random bytes.
         rng->GetBytes( secretkey );

         // Use the secret key to encode the message file.
         EncodeFile( secretkey, Fileargs[ 1 ], Fileargs[ 2 ] );

         // Take the encoded file and decode
         DecodeFile( secretkey, Fileargs[ 2 ] );
      }
      catch ( IOException^ e ) 
      {
         Console::WriteLine( "Error: File not found", e );
      }

   }
} //end main

Version Information

.NET Framework

Supported in: 4, 3.5, 3.0, 2.0

.NET Framework Client Profile

Supported in: 4, 3.5 SP1

Platforms

Windows 7, Windows Vista SP1 or later, Windows XP SP3, Windows XP SP2 x64 Edition, Windows Server 2008 (Server Core not supported), Windows Server 2008 R2 (Server Core supported with SP1 or later), Windows Server 2003 SP2

The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.

Thread Safety

Any public static (Shared in Visual Basic) members of this type are thread safe. Any instance members are not guaranteed to be thread safe.

Reference

System.Security.Cryptography Namespace

Other Resources

Cryptographic Services

Change History

Date	History	Reason
May 2011	Updated the code example.	Information enhancement.

Date

History

Reason

May 2011

Updated the code example.

Information enhancement.