November, 2004

  • .NET Security Blog

    An Enhanced Version of the Sandboxed AppDomain

    • 14 Comments
    Last week I showed how to create an AppDomain with a limited set of permissions . I also presented an easy way to create a StrongNameMembershipCondition . Now I'll put the two together to make an enhanced version of the sandboxed AppDomain. Why create...
  • .NET Security Blog

    Extracting Public Key Blobs

    • 2 Comments
    (Updated 12/3/04 for code refactoring ) Before letting another two months pass, its time to once again update the managed sn.exe port . Today's update adds three modes, each of which allow extraction of a public key blob from various sources: Flag Description...
  • .NET Security Blog

    The Managed Hosting API

    • 12 Comments
    With v1.0 and v1.1 of the CLR, if you wanted to have much control over how the CLR was working under the covers, you needed to write an unmanaged host. The unmanaged hosting API still exists with Whidbey (in fact, its gotten quite a few improvements of...
  • .NET Security Blog

    Customizing the AppDomain Creation Process

    • 8 Comments
    Last week, I posted about AppDomainManagers . Today, I'm going to look a little more closely at how the AppDomainManager allows you to customize the domain creation process. Specifically there are two methods that, when overridden, allow you to modify...
  • .NET Security Blog

    Managed Hosting API Take 3: the Host SecurityManager

    • 4 Comments
    Now that we've examined how to customize the AppDomain creation process , lets go back to our EchoAppDomainManager and look at some other places the CLR lets a managed host customize its behavior. Looking back at the output of running HelloWorld with...
  • .NET Security Blog

    An Interesting Take On Two-Factor Authentication

    • 6 Comments
    (via Bruce Schneier ) Two banks in New Zealand are introducing an interesting form of two-factor authentication. Looks like anyone who tries to transfer $2,500 or more to a third party bank account via the website will be required to use their new technology...
  • .NET Security Blog

    What's the FullTrust List For Anyway?

    • 0 Comments
    Time for a quick break from managed hosting. I've been asked several times on this blog and in the newsgroups about the FullTrust list that the CLR keeps. What is it, and why does it exist? The reason for the list is due to a problem that exists when...
  • .NET Security Blog

    Another Fix for the Infamous Calc Problem

    • 0 Comments
    Last month I wrote about replacing Calc with CalcPlus . If you'd really like to keep the default calculator around, I've stumbled across another fix for the problem. This involves editing the registry, so the standard disclaimers apply . Recall root of...
  • .NET Security Blog

    Peter Torr Provides More Details on Sandboxing AppDomains

    • 3 Comments
    Peter Torr from the Visual Studio Tools for Office team recently expanded on my sandboxed AppDomain set of posts. Peter adds some aditional code to change the code base of the AppDomain, which prevents untrusted addin types from sneaking into the FullTrust...
  • .NET Security Blog

    Next Generation Hardware Speculation

    • 0 Comments
    Yesterday there were a couple of announcements that seem to impact the next generation of video game consoles. First, IBM, Sony and Toshiba announced that they will be making an announcement about the details of the Cell chip early next year. Not too...
  • .NET Security Blog

    Refactoring the Managed StrongName Project

    • 1 Comments
    Looking over the Managed StrongName code for today's post, I've become dissatisfied with several things in the current code base, and I think that a bit of refactoring is in store for this project before its next addition. One of the major things is the...
  • .NET Security Blog

    ZoneSandboxAppDomainManager.cs

    • 4 Comments
    1 using System; 2 using System.Reflection; 3 using System.Security; 4 using System.Security.Policy; 5 6 namespace AppDomainManagers 7 { 8 public sealed class ZoneSandboxAppDomainManager : AppDomainManager 9 { 10 private AppDomain internetDomain = null...
Page 1 of 1 (12 items)