DpapiDataProtector.Scope Property

.NET Framework (current version)

The .NET API Reference documentation has a new home. Visit the .NET API Browser on docs.microsoft.com to see the new experience.

Gets or sets the scope of the data protection.

Namespace:   System.Security.Cryptography
Assembly:  System.Security (in System.Security.dll)

public DataProtectionScope Scope { get; set; }

Property Value

Type: System.Security.Cryptography.DataProtectionScope

One of the enumeration values that specifies the scope of the data protection (either the current user or the local machine). The default is CurrentUser.

Data protection encrypts the data on the disk so it cannot be read by other programs. You do not need a key to protect or unprotect the data. If you set the Scope to CurrentUser, only applications running on your credentials can unprotect the data; however, that means that any application running on your credentials can access the protected data. If you set the Scope to LocalMachine, any full-trust application on the computer can unprotect, access, and modify the data if it knows the application name, the primary purpose, and the specific purpose.

.NET Framework
Available since 4.5
Return to top