[CSHARP-2306] Minimize cases where SecureString is converted to a regular string Created: 20/Jun/18 Updated: 31/Mar/22 |
|
| Status: | Backlog |
| Project: | C# Driver |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Improvement | Priority: | Minor - P4 |
| Reporter: | Vincent Kam (Inactive) | Assignee: | Unassigned |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Description |
|
We use SecureStrings to store passwords in order to minimize the amount of time a password exists in cleartext in managed memory. We should minimize the number of cases where we insecurely convert a SecureString to a normal string. |