R – Setting CAS Policy

code-access-securitynet

I have a .NET application that users run from a file server. One of the .NET Assemblies requires Full Trust. I have signed the assembly. When setting the Code Access Security policy, which version of the .NET framework policy do I set? The application was built to use version 1.1 of the .NET Framework. Do I need to setup a policy for each framework?

Best Answer

You will need to set the policy on the client machine for the version of the CLR runtime used by the executing assembly. In your case, 1.1. If your application references assemblies from previous versions of .Net, they will still be loaded into the CLR version used by the main assembly. If one assembly requires full trust, a program that references it must also have full trust in order for the assembly to work correctly. This MSDN link explains it better, check out the "Walking the Stack" section: Code Access Security. Also, in case you didn't know CAS has been replaced (although not removed) as the primary means of security in .Net 4: Security Changes in the .Net Framework 4.

Regards, Drew

Related Solutions

R – How to prevent unauthorized code from accessing the assembly in .NET 2.0

As per Eric's suggestion, I solved it by checking the key myself. In the code I want to protect, I add the following call,

EnsureAssemblyIsSignedByMyCompany( Assembly.GetCallingAssembly() );

Then the implementation of that method is

  /// <summary>
  /// Ensures that the given assembly is signed by My Company or Microsoft.
  /// </summary>
  /// <param name="assembly"></param>
  private static void EnsureAssemblyIsSignedByMyCompany( Assembly assembly )
  {
     if ( assembly == null )
        throw new ArgumentNullException( "assembly" );

     byte[] pubkey = assembly.GetName().GetPublicKeyToken();
     if ( pubkey.Length == 0 )
        throw new ArgumentException( "No public key token in assembly." );

     StringBuilder builder = new StringBuilder();
     foreach ( byte b in pubkey )
     {
        builder.AppendFormat( "{0:x2}", b );
     }
     string pkString = builder.ToString();
     if ( pkString != "b77a5c561934e089" /* Microsoft */ &&
          pkString != "abababababababab" /* Ivara */ )
     {
        throw new ArgumentException( "Assembly is not signed by My Company or Microsoft. You do not have permission to call this code." );
     }
  }

** Names and keys changed to protect the innocent. Any likeness to real names or companies is merely a coincidence.*

R – Few questions about Code Access Security

First Question:

The zone is applied based on where the assembly is run from. Because the assembly payload is executed on the local machines and lives on the local harddrive, not a network or internet location, the My Computer Zone security will apply to the assembly. At this point the evidence does not apply. However if I have explicuity coded my assembly to require for example administrator access, this will still be enforced.

Second Question:

No you do not need to change the All_Code setting. The two policies will be merged effectively and the most restrictive policy will apply.

Best Answer

Related Solutions

R – How to prevent unauthorized code from accessing the assembly in .NET 2.0

R – Few questions about Code Access Security

Related Topic