top button
Flag Notify
    Connect to us
      Site Registration

Site Registration

What is Code-Access security?

+3 votes
425 views

Explain how to implement in windows application in .NET.

posted Aug 12, 2014 by Muskan

Share this question
Facebook Share Button Twitter Share Button LinkedIn Share Button

1 Answer

+2 votes
 
Best answer

Code Access Security (CAS) is the security sandbox for .NET. Local apps typically have full trust which means they can do anything. .NET apps that are hosted in the browser can't do much. In between, just about any security setting can be fine-tuned using CAS.

This is what wiki is saying (http://en.wikipedia.org/wiki/Code_Access_Security)
Code Access Security (CAS), in the Microsoft .NET framework, is Microsoft's solution to prevent untrusted code from performing privileged actions. When the CLR loads an assembly it will obtain evidence for the assembly and use this to identify the code group that the assembly belongs to. A code group contains a permission set (one or more permissions). Code that performs a privileged action will perform a code access demand which will cause the CLR to walk up the call stack and examine the permission set granted to the assembly of each method in the call stack. The code groups and permission sets are determined by the administrator of the machine who defines the security policy.

Code access security consists of the following elements:
permissions
permission sets
code groups
evidence
policy

For more detail on implementation see the following - http://www.codeproject.com/Articles/5724/Understanding-NET-Code-Access-Security

answer Aug 12, 2014 by Salil Agrawal
Similar Questions
+3 votes

Can one DLL file contains the compiled code of more than one .NET language? If yes, how?

+4 votes
+2 votes

Pros n cons of using querystring over other methods!

...