The fine print of StrongNameIndentityPermission

The benefits and limitations of using StrongNameIdentityPermission has been covered in several posts on the net: http://www.morganskinner.com/Articles/StrongNameIdentityPermission/ http://www.reliablesoftware.com/articles/SecurityAdmin.html http://www.reliablesoftware.com/articles/UnderstandingSecurityActions.html http://www.reliablesoftware.com/articles/PreventingElevationofPrivilegeAttacks.html http://blogs.msdn.com/tims/archive/2003/12/03/57463.aspx One thing that they don’t mention, which most people might think is obvious, is that StrongNameIdentityPermission means nothing when calling the managed code from unmanaged code. Since umanaged code can’t be signed (at least …

Continue reading ‘The fine print of StrongNameIndentityPermission’ »

Share

Irony of frameworks and magic

I’ve been looking into .Net the last few days. Especially the interplay between managed and unmanaged code relating to COM (COM+) components. The most amazing thing is how much thing the framework will do for you implicitly. E.g. there is no visible difference in the source between instantiating a COM component and instantiating an object …

Continue reading ‘Irony of frameworks and magic’ »

Share