Sidebar 3: Enabling granted Permissions

 

Background: If a .NET assembly is downloaded from the local Intranet or the Internet it has only reduced rights to access the client system. If the code therein needs additional rights it may request additional access from the run-time. The .NET security configuration may be used to assign elaborate rights to this one assembly. But his alone will not work.

 

Description:

For the described scenario the .NET assembly would create an instance of the required permission object - either explicit or declarative using the corresponding permission attribute - and try to assert the permission. This will fail if the .NET security configuration has not been enabled the right Assert any permission that has been granted. Since this may allow the .NET assembly to try out all permissions that could be used granting this right may be of some risk - please refer to the Microsoft developer documentation for details.

 

Back to List of Sidebars

Back to Projects Home Page