KeyDerivationAlgorithm2 Class

Represents a key derivation algorithm using keying material as input.

public abstract class KeyDerivationAlgorithm2 : KeyDerivationAlgorithm

This type provides an “extract-then-expand” interface for deriving keys from keying material, where the algorithm logically consists of two stages: The first stage takes the input keying material and “extracts” from it a fixed-length pseudorandom key. The second stage “expands” the pseudorandom key to the desired length. In some applications, the input may already be a good pseudorandom key; in these cases, the “extract” stage is not necessary, and the “expand” part can be used alone.

Inheritance Hierarchy

• Algorithm
  • KeyDerivationAlgorithm
    • KeyDerivationAlgorithm2
      • HkdfSha256
      • HkdfSha512

Summary

Static Properties

HkdfSha256

Gets the HKDF-SHA256 key derivation algorithm.

public static HkdfSha256 HkdfSha256 { get; }

HkdfSha512

Gets the HKDF-SHA512 key derivation algorithm.

public static HkdfSha512 HkdfSha512 { get; }

Properties

MaxCount

Inherited from KeyDerivationAlgorithm

Gets the maximum number of bytes that can be derived from a shared secret.

public int MaxCount { get; }

Property Value

The maximum size, in bytes, of the key derivation output.

MaxSaltSize

Inherited from KeyDerivationAlgorithm

Gets the maximum size of the salt used for key derivation.

public int MaxSaltSize { get; }

Property Value

The maximum salt size, in bytes.

MinSaltSize

Inherited from KeyDerivationAlgorithm

Gets the minimum size of the salt used for key derivation.

public int MinSaltSize { get; }

Property Value

The minimum salt size, in bytes.

PseudorandomKeySize

Gets the size of the pseudorandom key.

public int MaxCount { get; }

Property Value

The size, in bytes, of the pseudorandom key.

Methods

DeriveBytes(SharedSecret or ReadOnlySpan<byte>, ReadOnlySpan<byte>, ReadOnlySpan<byte>, int)

Inherited from KeyDerivationAlgorithm

Derives the specified number of bytes from a shared secret or some other input keying material, using the specified salt and context information.

public byte[] DeriveBytes(
    SharedSecret sharedSecret,
    ReadOnlySpan<byte> salt,
    ReadOnlySpan<byte> info,
    int count)

public byte[] DeriveBytes(
    ReadOnlySpan<byte> inputKeyingMaterial,
    ReadOnlySpan<byte> salt,
    ReadOnlySpan<byte> info,
    int count)

Parameters

sharedSecret

The SharedSecret to derive the bytes from.

inputKeyingMaterial

The input keying material to derive the bytes from.

salt

Optional salt.

info

Context and application specific information. This should be used to ensure that the derived bytes are adequately bound to the context of the key agreement.

To bind the derived bytes to the context, info may need to include the identifiers of the entities involved, their public keys, protocol-related information, and parameter choices.

count

The number of bytes to derive.

Return Value

An array of bytes that contains the derived bytes.

Exceptions

ArgumentNullException

sharedSecret is null.

ArgumentException

salt.Length is less than MinSaltSize or greater than MaxSaltSize.

ArgumentOutOfRangeException

count is less than 0 or greater than MaxCount.

ObjectDisposedException

sharedSecret has been disposed.

DeriveBytes(SharedSecret or ReadOnlySpan<byte>, ReadOnlySpan<byte>, ReadOnlySpan<byte>, Span<byte>)

Inherited from KeyDerivationAlgorithm

Fills the specified span of bytes with bytes derived from a shared secret or some other input keying material, using the specified salt and context information.

public void DeriveBytes(
    SharedSecret sharedSecret,
    ReadOnlySpan<byte> salt,
    ReadOnlySpan<byte> info,
    Span<byte> bytes)

public void DeriveBytes(
    ReadOnlySpan<byte> inputKeyingMaterial,
    ReadOnlySpan<byte> salt,
    ReadOnlySpan<byte> info,
    Span<byte> bytes)

Parameters

sharedSecret

The SharedSecret to derive the bytes from.

inputKeyingMaterial

The input keying material to derive the bytes from.

salt

Optional salt.

info

Context and application specific information. This should be used to ensure that the derived bytes are adequately bound to the context of the key agreement.

To bind the derived bytes to the context, info may need to include the identifiers of the entities involved, their public keys, protocol-related information, and parameter choices.

bytes

The span to fill with bytes derived from the shared secret. bytes must not overlap in memory with salt or info.

Exceptions

ArgumentNullException

sharedSecret is null.

ArgumentException

salt.Length is less than MinSaltSize or greater than MaxSaltSize.

ArgumentException

bytes.Length is greater than MaxCount.

ArgumentException

bytes overlaps in memory with salt or info.

ObjectDisposedException

sharedSecret has been disposed.

DeriveKey(SharedSecret or ReadOnlySpan<byte>, ReadOnlySpan<byte>, ReadOnlySpan<byte>, Algorithm, in KeyCreationParameters)

Inherited from KeyDerivationAlgorithm

Derives a key for the specified algorithm from a shared secret or some other input keying material, using the specified salt and context information.

public Key DeriveKey(
    SharedSecret sharedSecret,
    ReadOnlySpan<byte> salt,
    ReadOnlySpan<byte> info,
    Algorithm algorithm,
    in KeyCreationParameters creationParameters = default)

public Key DeriveKey(
    ReadOnlySpan<byte> inputKeyingMaterial,
    ReadOnlySpan<byte> salt,
    ReadOnlySpan<byte> info,
    Algorithm algorithm,
    in KeyCreationParameters creationParameters = default)

Parameters

sharedSecret

The SharedSecret to derive the key from.

inputKeyingMaterial

The input keying material to derive the bytes from.

salt

Optional salt.

info

Context and application specific information. This should be used to ensure that the derived key is adequately bound to the context of the key agreement.

To bind the derived key to the context, info may need to include the identifiers of the entities involved, their public keys, protocol-related information, and parameter choices.

algorithm

The algorithm for the new key.

creationParameters

A KeyCreationParameters value that specifies advanced parameters for the creation of the Key instance.

Return Value

A new instance of the Key class that represents the derived key.

Exceptions

ArgumentNullException

sharedSecret or algorithm is null.

ArgumentException

salt.Length is less than MinSaltSize or greater than MaxSaltSize.

NotSupportedException

The specified algorithm does not support keys derived from a shared secret.

ObjectDisposedException

sharedSecret has been disposed.

Extract(SharedSecret or ReadOnlySpan<byte>, ReadOnlySpan<byte>)

Extracts a fixed-length pseudorandom key from a shared secret or some other input keying material, using the specified salt

public byte[] Extract(
    SharedSecret sharedSecret,
    ReadOnlySpan<byte> salt)

public byte[] Extract(
    ReadOnlySpan<byte> inputKeyingMaterial,
    ReadOnlySpan<byte> salt)

Parameters

sharedSecret

The SharedSecret to extract the pseudorandom key from.

inputKeyingMaterial

The input keying material to extract the pseudorandom key from.

salt

Optional salt.

Return Value

An array of bytes that contains the extracted pseudorandom key.

Exceptions

ArgumentNullException

sharedSecret is null.

ArgumentException

salt.Length is less than MinSaltSize or greater than MaxSaltSize.

ObjectDisposedException

sharedSecret has been disposed.

Extract(SharedSecret or ReadOnlySpan<byte>, ReadOnlySpan<byte>, Span<byte>)

Fills the specified span of bytes with a fixed-length pseudorandom key extracted from a shared secret or some other input keying material, using the specified salt.

public void Extract(
    SharedSecret sharedSecret,
    ReadOnlySpan<byte> salt,
    Span<byte> pseudorandomKey)

public void Extract(
    ReadOnlySpan<byte> inputKeyingMaterial,
    ReadOnlySpan<byte> salt,
    Span<byte> pseudorandomKey)

Parameters

sharedSecret

The SharedSecret to extract the pseudorandom key from.

inputKeyingMaterial

The input keying material to extract the pseudorandom key from.

salt

Optional salt.

pseudorandomKey

The span to fill with the pseudorandom key.

Exceptions

ArgumentNullException

sharedSecret is null.

ArgumentException

salt.Length is less than MinSaltSize or greater than MaxSaltSize.

ArgumentException

pseudorandomKey.Length is not equal to PseudorandomKeySize.

ObjectDisposedException

sharedSecret has been disposed.

Expand(ReadOnlySpan<byte>, ReadOnlySpan<byte>, int count)

Expands a pseudorandom key to the specified number of bytes, using the specified context information.

public byte[] Expand(
    ReadOnlySpan<byte> pseudorandomKey,
    ReadOnlySpan<byte> info,
    int count)

Parameters

pseudorandomKey

The pseudorandom key to expand.

info

Context and application specific information. This should be used to ensure that the derived bytes are adequately bound to the context of the key agreement.

To bind the derived bytes to the context, info may need to include the identifiers of the entities involved, their public keys, protocol-related information, and parameter choices.

count

The number of bytes to expand from the pseudorandom key.

Return Value

An array of bytes that contains the expanded bytes.

Exceptions

ArgumentException

pseudorandomKey.Length is less than PseudorandomKeySize.

ArgumentOutOfRangeException

count is less than 0 or greater than MaxCount.

Expand(ReadOnlySpan<byte>, ReadOnlySpan<byte>, Span<byte>)

Fills the specified span of bytes with bytes expanded from a pseudorandom key, using the specified context information.

public void Expand(
    ReadOnlySpan<byte> pseudorandomKey,
    ReadOnlySpan<byte> info,
    Span<byte> bytes)

Parameters

pseudorandomKey

The pseudorandom key to expand.

info

Context and application specific information. This should be used to ensure that the derived bytes are adequately bound to the context of the key agreement.

To bind the derived bytes to the context, info may need to include the identifiers of the entities involved, their public keys, protocol-related information, and parameter choices.

bytes

The span to fill with bytes expanded from the pseudorandom key. bytes must not overlap in memory with pseudorandomKey or info.

Exceptions

ArgumentException

pseudorandomKey.Length is less than PseudorandomKeySize.

ArgumentException

bytes.Length is greater than MaxCount.

ArgumentException

bytes overlaps in memory with pseudorandomKey or info.

ExpandKey(ReadOnlySpan<byte>, ReadOnlySpan<byte>, Algorithm, in KeyCreationParameters)

Creates a key for the specified algorithm from a pseudorandom key, using the specified context information.

public Key ExpandKey(
    ReadOnlySpan<byte> pseudorandomKey,
    ReadOnlySpan<byte> info,
    Algorithm algorithm,
    in KeyCreationParameters creationParameters = default)

Parameters

pseudorandomKey

The pseudorandom key to expand.

info

Context and application specific information. This should be used to ensure that the derived key is adequately bound to the context of the key agreement.

To bind the derived key to the context, info may need to include the identifiers of the entities involved, their public keys, protocol-related information, and parameter choices.

algorithm

The algorithm for the new key.

creationParameters

A KeyCreationParameters value that specifies advanced parameters for the creation of the Key instance.

Return Value

A new instance of the Key class that represents the derived key.

Exceptions

ArgumentException

pseudorandomKey.Length is less than PseudorandomKeySize.

ArgumentNullException

algorithm is null.

NotSupportedException

The specified algorithm does not support keys derived from a shared secret.

Thread Safety

All members of this type are thread safe.

Purity

All methods yield the same result for the same arguments.

See Also

• API Reference
  • Algorithm Class
  • KeyDerivationAlgorithm Class
  • PasswordBasedKeyDerivationAlgorithm Class
  • SharedSecret Class