Welcome to MSDN Blogs Sign in | Join | Help

What's New in Security for v2.0

There's a ton of new and enhanced security features coming with the v2.0 release of the CLR.  However, finding a definitive list of them all can be a somewhat challenging task.  Dominick Baier has an excellent slide deck detailing some of the changes and some demo code as well.  You can find both linked from his blog entry hereKeith Brown also highlighted Security Enhancements in the .NET Framework 2.0 in his Security Briefs column for January's MSDN magazine.

Although there's no official list of new security features anywhere, here's some of the highlights of what we've added.  I've covered most of these in this blog before, but some of the big ones (like transparency) have yet to show up.  You can look for those over the next few weeks.  In no particular order:

Performance work was also one of the security team's main focuses during the v2.0 release.  And of course there were numerous bug fixes, and other odds and ends.  From the number of entries with no links above, it looks like I've got quite a few more blog posts to get writing :-)  When I write something on each topic, I'll try to come back and update this post with the link ... there's a lot of great stuff up there -- I can't wait to finally ship this product so that everyone can start using it!

 

Published Wednesday, August 24, 2005 7:46 AM by shawnfa
Filed under:

Comment Notification

If you would like to receive an email when updates are made to this post, please register here

Subscribe to this post's comments using RSS

Comments

# re: What's New in Security for v2.0

Wednesday, August 24, 2005 12:42 PM by Jeroen Frijters
Permission Evaporation?

# re: What's New in Security for v2.0

Wednesday, August 24, 2005 2:43 PM by shawnfa
AKA HostProtection -- basically allows hosts to disallow certain classes of actions. It's an upcoming blog entry :-)

-Shawn

# re: What's New in Security for v2.0

Thursday, August 25, 2005 4:27 AM by Alex
You can also download the "Security Enhancements in the .NET 2.0 Framework" Slides presented at the .NET Community Conference at Vienna this month:

http://blogs.dotnetgerman.com/alexonasp.net/PermaLink,guid,1e0b559e-391e-4430-b9fc-bc3ec1ea3681.aspx

# What’s new in Microsoft .Net 2.0 security features (some links)

Thursday, August 25, 2005 8:03 AM by Valery's blog

# re: What's New in Security for v2.0

Thursday, September 01, 2005 3:16 PM by William Stacey
I just posted a Secure Remote Password (SRP) c# implementation at:
http://channel9.msdn.com/ShowPost.aspx?PostID=107763
Implemented using fx 2.0 Beta1.

# re: What's New in Security for v2.0

Tuesday, September 06, 2005 5:40 AM by Nicolas Frelat
And what about the old new features ?

I'm working with Beta 2 and I'm using PrincipalPermissionAttribute. As I wished to use more than 1 attribute on a single method, I tried the new SecurityAction.DemandeChoice flag. To my surprise, the compiler said this flag is obsolete ! There is nothing about that on MSDN2.

As this new feature been removed ?
Is there other removed features ?

Thx

# re: What's New in Security for v2.0

Wednesday, September 07, 2005 9:27 PM by shawnfa
Yep -- we removed disjunctive LinkDemands from Whidbey. See my comment here: http://forums.microsoft.com/msdn/ShowPost.aspx?PostID=83571

-Shawn

# re: What's New in Security for v2.0

Wednesday, February 22, 2006 11:46 PM by Md . Sharifur Rahman
Ya... That's Good . I work in .net Framework 2.0 It is More Robust.

# Resources from my Security Summit Session - Creating Reliable And Robust Applications With Visual Studio 2005 And SQL Server 2005

Tuesday, March 14, 2006 9:49 PM by Andrew Coates ::: MSFT
Here's a list of the resources I showed at the end of my Security Summit sessions around the country....

# Mais informações sobre segurança no .NET 2.0

Monday, March 20, 2006 5:41 PM by Dennes
Muitas novidades no CAS, vejam nos seguintes links :
http://blogs.msdn.com/shawnfa/archive/2005/08/24/455581.aspx...

Leave a Comment

(required) 
required 
(required) 
 
Page view tracker