How to convert a plain string into a secure string with C#

A SecureString is a confidential piece of information that is erased from memory when not in use anymore. You can use this object if you need to pass around things like passwords and PIN codes that should be protected while in use.

Here’s an extension method of how to construct a SecureString from a plain string:

public static SecureString ToSecureString(this string plainString)
	if (plainString == null)
		return null;

	SecureString secureString = new SecureString();
	foreach (char c in plainString.ToCharArray())
	return secureString;

You can call this directly on strings:

string password = "password";
SecureString secure = password.ToSecureString();

View all various C# language feature related posts here.


About Andras Nemes
I'm a .NET/Java developer living and working in Stockholm, Sweden.

2 Responses to How to convert a plain string into a secure string with C#

  1. Vikram says:

    Thank you for article

  2. Manoj R Maheshwari says:

    How to get it back?

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Elliot Balynn's Blog

A directory of wonderful thoughts

Software Engineering

Web development

Disparate Opinions

Various tidbits

chsakell's Blog


Once Upon a Camayoc

Bite-size insight on Cyber Security for the not too technical.

%d bloggers like this: