Goletas.Security library implements data protection capabilities similar to the .NET 4.5 framework DataProtector class but with the ability to rotate keys. The algorithms used in the DataProtector are AES256-CBC, HMAC-SHA256, and double-pipeline KDF-HMAC-SHA256. The master keys can be stored protected in the Web.config section using the included X509 certificate protected configuration provider.
The DataProtector is completely stateless, allows multiple calls to be issued concurrently and achieves ridiculously high throughput on multi-core CPUs.
The library is designed to be used in web services and web apps to protect cookies, anti-forgery tokens, activation links and sensitive backend data.