Re: StrongNameIdentityPermission
- From: Dominick Baier [DevelopMentor] <dbaier@xxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Mon, 27 Mar 2006 14:52:52 +0000 (UTC)
IdentityPermissions are only enforced in partial trust - they are not effective when the caller is fully trusted.
quoting http://blogs.msdn.com/eugene_bobukh/archive/2005/05/06/415217.aspx
"The bottom line is, Identity permissions Demands could not [and should not] be used as measure of Security protection against highly privileged code. The best they provide in Full Trust is an illusion of protection, what can be even worse than no protection at all."
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
I'm trying to protect my class library by using the following code
StrongNameIdentityPermission(SecurityAction.Demand, PublicKey =
"...")]
To test if this is working I wrote another application with a
different public key. When I try to call the function it still works.
Why is it allowed to call the function?
.
- Prev by Date: ADAM Membership provider and SecurityIdentifier not serializable
- Next by Date: Re: StrongNameIdentityPermission
- Previous by thread: ADAM Membership provider and SecurityIdentifier not serializable
- Next by thread: Re: StrongNameIdentityPermission
- Index(es):
