Limitations on Calling Strong Named Components
In many cases, mobile code should be granted fewer permissions than full trust. However, this decision limits what libraries mobile code can call. The System.Security.AllowPartiallyTrustedCallersAttribute, nicknamed APTCA, is the cause of these restrictions. If code has been granted less than full trust, it cannot call into an assembly signed with a strong name unless that assembly is also marked with APTCA.
APTCA was created so that malicious semi-trusted code has fewer vectors of attack on a client. A given client will probably have many assemblies installed in the Global Assembly Cache, and each assembly could expose a vulnerability. Because the default behavior of strong named assemblies is to ...
Get .NET Framework Security now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
