C# – How to make sure a .net client application is not being hacked to bypass authorization claims

This is an ordinary sandbox model (the one which is used with plugins/addins). Instead of calling the libraries directly, you load them in a different AppDomain. Doing this actually allows you to update the corresponding libraries while the application is still running.

If you want to automate the process, the client application can monitor the directory with those libraries, and load newer ones to the sandboxed AppDomain when they are available.

Note that:

• Using sandbox is not as easy as not using it, and you must be ready to have some issues. The two I had were that I was unable to put the UI elements in the sandboxed libraries and that cache stopped working when using sandbox.

• If there are lots of exchange between the sandbox and the application itself, you may see the performance of your application decrease.

• With a sandbox, you will not be able to unload, update and load the updated version of the library if the application is running at the same moment the code from this library. It's just not possible, and doesn't make sense.

  This is probably also why the browsers like Chrome and Firefox still need to restart to finish the updates.

  If this is your case, you may search for a way to indicate to the code from the library that it must stop, since the library will be unloaded.

• The overall architecture of your application would be more complex, for sure. Does it worth it? Couldn't you schedule a background update, i.e. every night, if a new version is available, the application will just stop entirely, update itself (through an updater executable), and then be restarted by the updater?

If this is about limits to the size of a reply from your server, then answer this: What does the API do if you exceed the 4MB limit? Does it do something sensible? There are two sensible ways: a. The API returns an error indicating that you exceed the limit, in which case you try again, asking for half as many items. Or the API returns a status indicating that out of the n items you wanted, m ≤ n items have actually been processed, so you know m items have been done, and you ask for the remaining ones.

The last case is the best IMO: If you want to get a million items, you request a million and the API tells you that you only got 2,500. So then you ask for 997,500 and so on.

If this is about limits sending data to the server: You generate data for one item after the other, building the data you are going to the server. For each item, you check if adding that item would make your data too big, and in that case you send all the data you had so far except the new item, and then the new item becomes part of the next message to the server.