Built-in Function for Encryption and Decryption Using the AES Algorithm

[IT_Researcher]

Is there any built-in function to use in VB6 for encrypting a password using the AES algorithm?

I have found a class implementation for AES encryption in this link
Class Implementation for AES

I want to know whether any built-in functions are available in VB6 for password encryption and decryption using the AES algorithm that can replace a user-defined class.

[Arnoutdv]

No, that's why there is a class. I believe this one is by wqweto and is a pure VB6 implementation.
Reference on the forum: https://www.vbforums.com/showthread....-and-OCB-modes

Maybe you can also use the Microsoft encryption API:
Threads:
https://www.vbforums.com/showthread....ED-Vb6-aes-gcm
https://www.vbforums.com/showthread....ows-crypto-API
https://www.vbforums.com/showthread....-on-my-machine

[wqweto]

I have found a class implementation for AES encryption in this link
Class Implementation for AES

It's not a class but a standard .bas module. The difference is that this way all the procedures of the module you are not calling from other code in your project get removed by the compiler/linker so your binary includes only procedures you need (and actually use) from this standard .bas module.

cheers,
</wqw>

[IT_Researcher]

Is there any built-in function to use in VB6 for encrypting a password using the AES algorithm?

I have found a class implementation for AES encryption in this link
Class Implementation for AES

I want to know whether any built-in functions are available in VB6 for password encryption and decryption using the AES algorithm that can replace a user-defined class.

[Arnoutdv]

How is your new thread different from the previous one??
https://www.vbforums.com/showthread....-AES-Algorithm

[couttsj]

Straight encryption of a password is not recommended. It is too short and easily bypassed using trial and error. It should either be hashed (at least 256 bits) or have a secondary methodology implemented. Two factor authentication is employed by most online services.

J.A. Coutts

[SmUX2k]

What Coutts said...encryption itself requires a password or similar when you encrypt the data, making the entire process convoluted and potentially insecure if you then hard-code that password within your app in order to decrypt the password it's obfuscating.

If, however, you are storing user passwords for external services (like for an FTP server), it is probably the only option available to you as you NEED to have the password data rather than a hash of it. DON'T hard-code the password in your app unless you're the only person with access to it, and when you encrypt it be sure to include lots of extraneous data to obfuscate it further...with a "deobfuscation" function in your app that removes this extraneous data. PREFERABLY have your app set up so that it asks you for the decryption password manually...It may sound like a waste of time because you still have to remember a password, but this password gives access to anything that is encrypted within your app, not just that one password.