Chapter 6. The security model and elevated trust

 

This chapter covers
  • Code classifications and the transparency model
  • User initiation and consent
  • Elevated trust out-of-browser
  • Special considerations for elevated trust inbrowser
  • Elevated trust mode detection

 

The .NET desktop application code security model is centered on the concept of code-access security (CAS). This model, although extremely powerful, was found to be difficult to configure and maintain on end-user workstations using tools like CASPOL (Code Access Security Policy editor), and sometimes difficult to use in production code. It was also difficult for users to understand exactly what rights they’ve granted to specific applications. Finally, it had no provision for easy runtime ...

Get Silverlight 5 in Action now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.