Full Trust in Whidbey

Every time I do the CAS modules in DevelopMentor’s security course, we talk about all those different kinds of Permissions and students are quite impressed about the different ways to protected their code (especially with IdentityPermissions). A few slide later comes the obligatory: “but, this only applies if you are running in partial trust”…there is really no way to protect your code from fully trusted callers, it even can result in strange problems if you are using Identity Permissions in Full Trust environments.

CAS in Whidbey has changed to reflect this:

  • Identity Permissions in any state become subset of Unrestricted PermissionSet
  • Set logics for IdentityPermissions changes
  • LinkDemands are optimized out in FullTrust

read the full story here.

 

This entry was posted in Uncategorized. Bookmark the permalink.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s