August, 2005

  • .NET Security Blog

    Comparing Java and .NET Security

    • 12 Comments
    It's been a while since I've last seen a comparison of Java and .NET security . Nathaneal Paul and David Evans from the University of Virginia Computer Science Department recently finished their comparison, Comparing Java and .NET Security: Lessons Learned...
  • .NET Security Blog

    The Simple Sandboxing API

    • 10 Comments
    A while back I gave some sample code to show how to setup a sandboxed AppDomain . This technique has worked since v1.0, and will continue to work with Whidbey. However, Whidbey also introduces a simple sandboxing API which eliminates the need for this...
  • .NET Security Blog

    What's New in Security for v2.0

    • 10 Comments
    There's a ton of new and enhanced security features coming with the v2.0 release of the CLR. However, finding a definitive list of them all can be a somewhat challenging task. Dominick Baier has an excellent slide deck detailing some of the changes and...
  • .NET Security Blog

    Getting Help with your .NET Questions

    • 6 Comments
    Recently I've been getting a lot of email from this blog asking for help with various problems. Although I'd love to help out, I don't have the time to address each mail directly. In fact, most of the problems I (and other members of the CLR team I've...
  • .NET Security Blog

    When the Opposite of Transparent isn't Opaque

    • 5 Comments
    When you provide an assembly that will be called by partially trusted callers, you need to make sure that you do a thorough security audit of that assembly -- especially if it’s an APTCA assembly. One of the primary reasons this security review is required...
  • .NET Security Blog

    A Closer Look at the Simple Sandboxed AppDomain

    • 3 Comments
    Yesterday we took a look at Whidbey's new Simple Sandboxing API . At first glance this API does seem relatively simple, however when you start to look closer at the AppDomain that is created for your sandboxed code, there are a few surprising properties...
  • .NET Security Blog

    Securing AppDomain Data

    • 0 Comments
    While we're on the topic of AppDomains ... One feature of AppDomains that many people don't know about is that they expose a property dictionary of string/object pairs. This dictionary is exposed through the GetData / SetData pair of methods. In the...
Page 1 of 1 (7 items)