Welcome to MSDN Blogs Sign in | Join | Help

Browse by Tags

All Tags » SSCLI   (RSS)
Tuesday, June 06, 2006 9:00

Special Permissions in the SSCLI

Before digging into a pretty clever optimization that the SSCLI makes for certain special permission demands, I want to point out that everything I’m about to cover is an implementation detail. Although this optimization does occur today, we can and will
Posted by shawnfa | 2 Comments
Tuesday, May 16, 2006 7:00

SSCLI Zone Mappings

My previous post is begging the question "so what is the SSCLI's zone mapping policy?" It's actually quite simple, the source for SecurityPolicy::QuickGetZone in clr\src\vm\securitypolicy.cpp shows that SSCLI maps a URL to: NoZone if the URL is NULL MyComputer
Posted by shawnfa | 1 Comments
Filed under: , , ,
Monday, May 15, 2006 10:30

Custom Zones and the CLR

On the topic of zones and the CLR ... Windows lets you define custom zones outside of the standard ones that the CLR knows about (see MSDN's topic on Security Zones for more information). However, because the CLR doesn't know about them, generally any
Posted by shawnfa | 4 Comments
Filed under: , , ,
Monday, April 03, 2006 2:44 PM

What Happens When You Fully Sign a Test Signed Assembly

When an assembly is test signed , the public key used to verify its signature is different from the public key that makes up part of the assembly identity. So what happens when you take an assembly which is registered as a test signed assembly on your
Posted by shawnfa | 3 Comments
Friday, March 24, 2006 9:18

SSCLI v2

As Jason announces , v2.0 of the SSCLI is now available for download: http://msdn.microsoft.com/net/sscli . In addition to general CLR features like generics that are available in this download, some interesting security points to look at are: Transparency
Posted by shawnfa | 5 Comments
Filed under:
Wednesday, August 17, 2005 11:34

Comparing Java and .NET Security

It's been a while since I've last seen a comparison of Java and .NET security . Nathaneal Paul and David Evans from the University of Virginia Computer Science Department recently finished their comparison, Comparing Java and .NET Security: Lessons Learned
Posted by shawnfa | 12 Comments
Filed under: ,
Tuesday, March 08, 2005 12:31 PM

When is ReflectionPermission Needed?

Reflection and its interaction with security can sometimes be a bit of a confusing matter. The easiest portion to figure out is the permissions needed to use Reflection.Emit. In order to do anything with the reflection emit feature, you'll need to have
Posted by shawnfa | 11 Comments
Monday, July 19, 2004 1:21 PM

Why == and the Equals Method Return Different Results for Floating Point Values

There's a subtle difference between comparing floating point values with the Equals method and comparing them with the == operator. (In all the code I show in this post, I use the Double class, however everything I say also applies to the Single class).
Posted by shawnfa | 3 Comments
Filed under: ,
Wednesday, June 09, 2004 4:35 PM

What's the Deal with the ECMA Key?

The libraries laid out in the ECMA spec are all signed with a public key that looks pretty strange. If you ildasm mscorlib.dll, System.dll, or any of the other framework libraries that are defined in the ECMA specs (see partition IV: Library if you're
Posted by shawnfa | 3 Comments
Wednesday, March 10, 2004 2:09 PM

Same Site Socket Permission

Fairly frequently, people will want to know how to get same site socket permissions, in the same way that they can get same site web permission today. Unfortunately, the answer is that with the security objects shipped with the framework, there is no
Posted by shawnfa | 0 Comments
Filed under: , ,
Tuesday, March 09, 2004 4:33 PM

More Details on Portable Crypto Operations

Yesterday I posted about detecting which CSP provided algorithms were available on your copy of Windows, and upgrading IE to get a newer CSP that supported more algorithms. Sebastien Pouliot provied some nice followup information on using pure managed
Posted by shawnfa | 2 Comments
Filed under: , ,
Friday, March 05, 2004 6:30 PM

How Exceptions Work in Rotor (and the CLR)

Joel Pobar has a nice post with Jan Kotas' explanation of how exceptions work in Rotor (and by extension, the CLR).
Posted by shawnfa | 0 Comments
Filed under:
Tuesday, December 09, 2003 7:29 PM

Moving

The GotDotNet blogs are being frozen, so I'll be moving my blog over to the ASP.Net site.  You can find the new location at http://blogs.msdn.com/shawnfa
Posted by shawnfa | 0 Comments
Monday, November 10, 2003 4:46 PM

Custom Security Object Samples

Sample code for custom security objects
Posted by shawnfa | 0 Comments
Filed under: , ,
 
Page view tracker