HMACSHA256 Class Home
This page is specific to:.NET Framework Version:2.03.03.5Silverlight 34.0
.NET Framework Class Library
HMACSHA256 Class

Computes a Hash-based Message Authentication Code (HMAC) using the SHA256 hash function.

Namespace:  System.Security.Cryptography
Assembly:  mscorlib (in mscorlib.dll)
Syntax
Copy to ClipboardPrint
'Usage

Dim instance As HMACSHA256

'Declaration

<ComVisibleAttribute(True)> _
Public Class HMACSHA256 _
    Inherits HMAC
Remarks

HMACSHA256 is a type of keyed hash algorithm that is constructed from the SHA-256 hash function and used as a Hash-based Message Authentication Code (HMAC). The HMAC process mixes a secret key with the message data, hashes the result with the hash function, mixes that hash value with the secret key again, and then applies the hash function a second time. The output hash is 256 bits in length.

An HMAC can be used to determine whether a message sent over an insecure channel has been tampered with, provided that the sender and receiver share a secret key. The sender computes the hash value for the original data and sends both the original data and hash value as a single message. The receiver recalculates the hash value on the received message and checks that the computed HMAC matches the transmitted HMAC.

Any change to the data or the hash value results in a mismatch, because knowledge of the secret key is required to change the message and reproduce the correct hash value. Therefore, if the original and computed hash values match, the message is authenticated.

HMACSHA256 accepts keys of any size, and produces a hash sequence 256 bits in length.
Examples

The following code example shows how to encode a file using HMACSHA256 and then how to decode the file.

Copy to ClipboardPrint
Imports System
Imports System.IO
Imports System.Security.Cryptography



Public Class HMACSHA256example

    ' Computes a keyed hash for a source file, creates a target file with the keyed hash
    ' prepended to the contents of the source file, then decrypts the file and compares
    ' the source and the decrypted files.
    Public Shared Sub EncodeFile(ByVal key() As Byte, ByVal sourceFile As String, ByVal destFile As String)
        ' Initialize the keyed hash object.
        Dim myhmacsha256 As New HMACSHA256(key)
        Dim inStream As New FileStream(sourceFile, FileMode.Open)
        Dim outStream As New FileStream(destFile, FileMode.Create)
        ' Compute the hash of the input file.
        Dim hashValue As Byte() = myhmacsha256.ComputeHash(inStream)
        ' Reset inStream to the beginning of the file.
        inStream.Position = 0
        ' Write the computed hash value to the output file.
        outStream.Write(hashValue, 0, hashValue.Length)
        ' Copy the contents of the sourceFile to the destFile.
        Dim bytesRead As Integer
        ' read 1K at a time
        Dim buffer(1023) As Byte
        Do
            ' Read from the wrapping CryptoStream.
            bytesRead = inStream.Read(buffer, 0, 1024)
            outStream.Write(buffer, 0, bytesRead)
        Loop While bytesRead > 0
        myhmacsha256.Clear()
        ' Close the streams
        inStream.Close()
        outStream.Close()
        Return

    End Sub


    ' Decrypt the encoded file and compare to original file.
    Public Shared Function DecodeFile(ByVal key() As Byte, ByVal sourceFile As String) As Boolean
        ' Initialize the keyed hash object. 
        Dim hmacsha256 As New HMACSHA256(key)
        ' Create an array to hold the keyed hash value read from the file.
        Dim storedHash(hmacsha256.HashSize / 8) As Byte
        ' Create a FileStream for the source file.
        Dim inStream As New FileStream(sourceFile, FileMode.Open)
        ' Read in the storedHash.
        inStream.Read(storedHash, 0, storedHash.Length)
        ' Compute the hash of the remaining contents of the file.
        ' The stream is properly positioned at the beginning of the content, 
        ' immediately after the stored hash value.
        Dim computedHash As Byte() = hmacsha256.ComputeHash(inStream)
        ' compare the computed hash with the stored value
        Dim i As Integer
        For i = 0 To storedHash.Length
            If computedHash(i) <> storedHash(i) Then
                Console.WriteLine("Hash values differ! Encoded file has been tampered with!")
                Return False
            End If
        Next i
        Console.WriteLine("Hash values agree -- no tampering occurred.")
        Return True

    End Function
    Private Const usageText As String = "Usage: HMACSHA256 inputfile.txt encryptedfile.hsh" + vbLf + "You must specify the two file names. Only the first file must exist." + vbLf

    Public Shared Sub Main(ByVal Fileargs() As String)
        'If no file names are specified, write usage text.
        If Fileargs.Length < 2 Then
            Console.WriteLine(usageText)
        Else
            Try
                ' Create a random key using a random number generator. This would be the
                '  secret key shared by sender and receiver.
                Dim secretkey() As Byte = New [Byte](63) {}
                'RNGCryptoServiceProvider is an implementation of a random number generator.
                Dim rng As New RNGCryptoServiceProvider()
                ' The array is now filled with cryptographically strong random bytes.
                rng.GetBytes(secretkey)

                ' Use the secret key to encode the message file.
                EncodeFile(secretkey, Fileargs(0), Fileargs(1))

                ' Take the encoded file and decode
                DecodeFile(secretkey, Fileargs(1))
            Catch e As IOException
                Console.WriteLine("Error: File not found", e)
            End Try
        End If

    End Sub
End Class
Inheritance Hierarchy
System..::.Object
  System.Security.Cryptography..::.HashAlgorithm
    System.Security.Cryptography..::.KeyedHashAlgorithm
      System.Security.Cryptography..::.HMAC
        System.Security.Cryptography..::.HMACSHA256
Thread Safety
Any public static (Shared in Visual Basic) members of this type are thread safe. Any instance members are not guaranteed to be thread safe.
Platforms

Windows 7, Windows Vista, Windows XP SP2, Windows XP Media Center Edition, Windows XP Professional x64 Edition, Windows XP Starter Edition, Windows Server 2008 R2, Windows Server 2008, Windows Server 2003, Windows Server 2000 SP4, Windows Millennium Edition, Windows 98

The .NET Framework and .NET Compact Framework do not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.
Version Information

.NET Framework

Supported in: 3.5, 3.0, 2.0
See Also

Reference

HMACSHA256 Members
System.Security.Cryptography Namespace

Other Resources

Cryptographic Services
Community Content

NOTE: This does not seem to be "encrypting" or "decrypting"....
Added by:Henry Gabryjelski - MSFT
Instead, this is simply generating a hash value to authenticate the message (file) is as expected.
© 2009 Microsoft Corporation. All rights reserved.   Terms of Use | Trademarks | Privacy Statement
Page view tracker
Rate the Lightweight library
x
Lightweight builds on ScriptFree (loband) by adding features you've requested: a SearchBox and default code language selection.
Do you like the SearchBox?
Do you like the tabbed code blocks?
How useful is this topic?
Tell us more.
Thanks
x
You're helping to improve MSDN Online.
Feedback
Switch View
x
Classic
Lightweight Beta
ScriptFree
Switch View