.NET Security Blog

After spending the beginning of the morning in the Fundamentals Lounge, I went up to see Keith during the intermission of his Art of Secure Coding and to let him know that Mike and I would swing by his BOF's tomorrow . Afterwords, we grabbed some lunch...

Last time we looked at the set of operations that can only be performed by security critical code . One interesting observation is that just because you are doing one of these operations does not mean that your method in and of itself is security sensitive...

1 using System; 2 3 namespace MS.StrongName 4 { 5 /// < summary > 6 /// Key stores available for use 7 /// </ summary > 8 public enum KeyStore 9 { 10 /// < summary > 11 /// Machine wide key store 12 /// </ summary > 13 Machine...

I spent last weekend in Vegas, and on Saturday night / Sunday morning decided to recreate those college bar crawls with a bit of a casino crawl. Starting a Caesar's we bounced up the strip hitting every casino on the way with one rule: start with $40...

1 using System; 2 3 namespace MS.StrongName 4 { 5 /// < summary > 6 /// Constants for the configuraiton registry keys 7 /// </ summary > 8 internal static class Registry 9 { 10 /// < summary > 11 /// Name of the registry key under HKLM...

My Ship-It sticker for Whidbey shows that we officially shipped on October 27th -- hard to believe it's been 6 months already! In celebration of the anniversary, I'm going to remove the Whidbey category from this blog, and future posts will assume...

1 using System; 2 using System.Diagnostics; 3 4 namespace MS.StrongName.ManagedSN 5 { 6 /// < summary > 7 /// Handler for a specific command line option 8 /// </ summary > 9 /// < param name = "arguments" > List of all the...

1 using System; 2 using System.Diagnostics; 3 using System.Globalization; 4 using System.IO; 5 using MS.StrongName.Native; 6 7 namespace MS.StrongName 8 { 9 /// < summary > 10 /// Class that exposes the managed StrongName API for dealing with signatures...

1 using System; 2 using System.Diagnostics; 3 using System.IO; 4 using System.Security; 5 using System.Runtime.InteropServices; 6 using MS.StrongName.Native; 7 8 namespace MS.StrongName 9 { 10 /// < summary > 11 /// General-purpose utility methods...

1 using System; 2 using System.Reflection; 3 using System.Security; 4 using System.Security.Policy; 5 6 namespace AppDomainManagers 7 { 8 public sealed class ZoneSandboxAppDomainManager : AppDomainManager 9 { 10 private AppDomain internetDomain = null...

In an effort to escape Seattle's ... interesting ... weather patterns of the last few months, I've taken off to New York for the holidays. (And unlike last year's 19 degree temperature drop , this year it's actually going to be warmer in the Northeast...

1 BadFile=Invalid file specified: {0} 2 BadOperation=Error completing operation: {0} 3 CouldNotOpenMachineStoreKey=Could not open the strong name configuration key 4 InternalError=Internal error processing request 5 InvalidAssemblyName=Invalid assembly...

1 using System; 2 3 namespace MS.StrongName.ManagedSN 4 { 5 /// < summary > 6 /// Handles all I/O with the user 7 /// </ summary > 8 internal sealed class Log 9 { 10 private static bool quietMode = false ; 11 12 /// < summary > 13 /...

1 using System; 2 3 namespace MS.StrongName.Native 4 { 5 /// < summary > 6 /// Flags for use with strong name key gneeration methods 7 /// </ summary > 8 [Flags] 9 internal enum StrongNameKeyGenFlags : int 10 { 11 /// < summary > 12...

using System; using System . Security . Cryptography . Xml; using System . Xml; /// <summary> /// Provides xml:id support for XML digital signatures /// </summary> /// <remarks> /// This class allows the .NET XML Digital Signature system...

1 using System; 2 3 namespace MS.StrongName.Native 4 { 5 /// < summary > 6 /// Input flags for use with the strong name verification functions 7 /// </ summary > 8 [Flags] 9 internal enum StrongNameInFlags : int 10 { 11 /// < summary >...

1 using System; 2 3 namespace MS.StrongName 4 { 5 /// < summary > 6 /// Results of signature verification 7 /// </ summary > 8 public enum VerificationResult 9 { 10 /// < summary > 11 /// The assembly's signature did not verify 12 /...

1 using System; 2 3 namespace MS.StrongName.Native 4 { 5 /// < summary > 6 /// Flags output from the strong name verification functions 7 /// </ summary > 8 [Flags] 9 internal enum StrongNameOutFlags : int 10 { 11 /// < summary > 12...