.NET Security Blog

Although the v1.0 and v1.1 versions of CasPol provided a switch to disable the CLR's security system, running without CAS enforcement on was never a scenario that we encouraged for obvious reasons. The choice to disable security was a system wide switch...

As I'm sure most of you have seen by now, today we announced the availability of Visual Studio 2005 Beta 2 and SQL Server 2005 April Community Tech Preview. The release is a huge step over the old beta 1 bits, and can be found on MSDN . One of the...

With the Papal Election only four days away, Bruce Schneier has taken a look at the process from a security standpoint . I found this to be quite an interesting read, since virtually all the information I have about electing a new Pope came from reading...

Last time I talked about reasons that you might want to strongly name your application's entry point . The most obvious reason is so that you can setup your security policy to increase the level of trust given to that assembly by the default policy. You...

Junfeng wonders why you might want to strongly name an exe . Sometimes strong naming your exe can be a very useful, but like any feature it's not necessarily always the tool you need for the job. For instance, when running a simple managed .exe off of...

Channel 9 turns one year old today, and to celebrate they've been releasing quite a few interesting interviews. One in particular that really stands out is the four parter with Windows Kernel Architect Dave Probert . Dave gives an overview of Windows...