You can find many post and help on how to encrypt the connection string. The idea is to place an encrypted text in congiguration file. So the security is not breached. In this post I will highlight few things that will help you to work with encrypted connection string.
- Create a tools menu to a web page or windows form support team to create the Encrypted text from the actual connection string. So that you are not dependent on it. Make sure you add the steps in your relase note.
- Make sure the method to decrypt is kept simple by encapsulating the encryption code in a separate class file. Thus passing a string parameter in and getting the actual connection string out.
- An helper method or a test class for developer to decrypt the encrypted text for debugging purpose.
I hope this few simple help was useful for you.