Zeroing Sensitive Memory via Spans

Snippet

Zeroing Sensitive Memory via Spans

For high-security applications, leaving sensitive data like passwords in memory is risky. Using 'stackalloc' with 'Span<T>.Clear()' ensures that the memory is overwritten with zeros immediately after use, reducing the window for memory scraping attacks.

snippet.cs

csharp

public unsafe void HandleSecret()
{
    Span<byte> secretBuffer = stackalloc byte[32];
    try
    {
        // Perform cryptographic operations here
    }
    finally
    {
        secretBuffer.Clear(); // Explicitly overwrites memory with zeros
    }
}

Breakdown

stackalloc byte[32]

Allocates memory on the stack, which is faster and doesn't trigger GC overhead.

secretBuffer.Clear()

A performance-optimized way to fill the entire span with the default value (zero).

Previous snippet Next snippet

More Expert C# exercises →

From your library

Zeroing Sensitive Memory via Spans

Related