November, 2005

  • .NET Security Blog

    Why Can't I See My Partially Trusted ClickOnce Applications in Task Manager?

    • 0 Comments
    If you're developing a partial trust ClickOnce application and are looking for its process in Task Manager or Process Explorer, you might be surprised that you can't find it listed anywhere. What you will see however is a process named AppLaunch.exe....
  • .NET Security Blog

    Where Does the Stack Walk Start or: Why Do Demands from Main Always Succeed?

    • 3 Comments
    When starting to play with CAS a lot of people come up with toy programs that simply do a Demand for some permission or another, then copy that program to various locations that will cause it to be granted different permission sets. It's generally a surprise...
  • .NET Security Blog

    Finding the Source Code for an Assembly

    • 2 Comments
    Sometimes, especially when working on large projects (such as, I don't know, say ... the CLR), you find yourself debugging a problem where you don't know where a component is built from. Depending on the problem, it might be useful to get to the sources...
  • .NET Security Blog

    All About RSAParameters

    • 3 Comments
    The RSA class exposes an ExportParameters method which allows you to get at the raw RSA key in the form of an RSAParameters structure. What that structure contains isn't very obvious to people not familiar with how RSA works. With fields named P, Q, D...
  • .NET Security Blog

    Don't Roundtrip Ciphertext Via a String Encoding

    • 37 Comments
    One common mistake that people make when using managed encryption classes is that they attempt to store the result of an encryption operation in a string by using one of the Encoding classes. That seems to make sense right? After all, Encoding.ToString...
  • .NET Security Blog

    What can an ApplicationTrust tell us about an AppDomain

    • 0 Comments
    In v2.0, there is a new ApplicationTrust property on the AppDomain class . This property will be non-null in two conditions Your application is a ClickOnce application Your code is running in a simple sandbox domain In the ClickOnce case,...
  • .NET Security Blog

    Comments in the blog

    • 0 Comments
    Eric just pointed out to me that no comments appear to be showing up in my blog recently. I had switched on moderation for anonymous users, and for some reason the notification email stopped being sent to me. I've gone through the backlog of comments...
  • .NET Security Blog

    Adding SignatureProperties to SignedXml

    • 3 Comments
    One of the optional portions of the W3C XML digital signature specification allows for a set of SignatureProperties to be assigned to a signature. SignatureProperties allow the signer to place some metadata into the signature itself, such as the time...
Page 1 of 1 (8 items)