Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » SSCLI » Security   (RSS)
Tuesday, June 06, 2006 9:00 AM

Special Permissions in the SSCLI

Before digging into a pretty clever optimization that the SSCLI makes for certain special permission demands, I want to point out that everything I’m about to cover is an implementation detail. Although this optimization does occur today, we can and will
Posted by shawnfa | 2 Comments
Tuesday, May 16, 2006 7:00 AM

SSCLI Zone Mappings

My previous post is begging the question "so what is the SSCLI's zone mapping policy?" It's actually quite simple, the source for SecurityPolicy::QuickGetZone in clr\src\vm\securitypolicy.cpp shows that SSCLI maps a URL to: NoZone if the URL is NULL MyComputer
Posted by shawnfa | 1 Comments
Filed under: , , ,
Monday, May 15, 2006 10:30 AM

Custom Zones and the CLR

On the topic of zones and the CLR ... Windows lets you define custom zones outside of the standard ones that the CLR knows about (see MSDN's topic on Security Zones for more information). However, because the CLR doesn't know about them, generally any
Posted by shawnfa | 4 Comments
Filed under: , , ,
Monday, April 03, 2006 2:44 PM

What Happens When You Fully Sign a Test Signed Assembly

When an assembly is test signed , the public key used to verify its signature is different from the public key that makes up part of the assembly identity. So what happens when you take an assembly which is registered as a test signed assembly on your
Posted by shawnfa | 3 Comments
Wednesday, August 17, 2005 11:34 AM

Comparing Java and .NET Security

It's been a while since I've last seen a comparison of Java and .NET security . Nathaneal Paul and David Evans from the University of Virginia Computer Science Department recently finished their comparison, Comparing Java and .NET Security: Lessons Learned
Posted by shawnfa | 12 Comments
Filed under: ,
Tuesday, March 08, 2005 12:31 PM

When is ReflectionPermission Needed?

Reflection and its interaction with security can sometimes be a bit of a confusing matter. The easiest portion to figure out is the permissions needed to use Reflection.Emit. In order to do anything with the reflection emit feature, you'll need to have
Posted by shawnfa | 11 Comments
Wednesday, March 10, 2004 2:09 PM

Same Site Socket Permission

Fairly frequently, people will want to know how to get same site socket permissions, in the same way that they can get same site web permission today. Unfortunately, the answer is that with the security objects shipped with the framework, there is no
Posted by shawnfa | 0 Comments
Filed under: , ,
Tuesday, March 09, 2004 4:33 PM

More Details on Portable Crypto Operations

Yesterday I posted about detecting which CSP provided algorithms were available on your copy of Windows, and upgrading IE to get a newer CSP that supported more algorithms. Sebastien Pouliot provied some nice followup information on using pure managed
Posted by shawnfa | 2 Comments
Filed under: , ,
Tuesday, December 09, 2003 7:29 PM

Moving

The GotDotNet blogs are being frozen, so I'll be moving my blog over to the ASP.Net site.  You can find the new location at http://blogs.msdn.com/shawnfa
Posted by shawnfa | 0 Comments
Monday, November 10, 2003 4:46 PM

Custom Security Object Samples

Sample code for custom security objects
Posted by shawnfa | 0 Comments
Filed under: , ,
 
Page view tracker