Stack Overflow
Stack Overflow

Questions tagged [code-access-security]

Code-access security is security specific to limiting access to or protecting source code, through the use of processes such as encryption, obfuscation, and more.

Code-access security is security specific to limiting access to or protecting source code, through the use of processes such as , , and more. The goal of code-access security is most often to protect functionality from competitors, to prevent reverse-engineering, or to preserve integrity of program communication protocols.

For more on obfuscation:

Note that security questions which are not about a specific programming problem may be better suited to our sister site, IT Security Stack Exchange.

337 questions
2
votes
2 answers

Custom CodeAccessSecurityAttribute That Takes Many Roles

I'm working on some Role-based security for our app and I essentially want to do customized verison MVC's AuthorizeAttribute - but only at the business logic layer, where we don't link to MVC. I've looked at PrincipalPermissionAttribute but it…
Alex Moore
  • 3,415
  • 1
  • 23
  • 39
2
votes
1 answer

Where does a custom CAS policy for ASP.NET have to go?

In my hosting environment I do not have access to anything outside of my virtual directory-- I can't edit the machine.config, nor the machine level web.config, nor can I put anything in the GAC. I reading up on Medium Trust. If I want, say, Medium…
MatthewMartin
  • 32,326
  • 33
  • 105
  • 164
2
votes
1 answer

Windows Server AppFabric Caching

I'm currently working on a ASP.NET MVC site where we have to run in partial trust. Now I'm facing a problem with connecting to AppFabric when in High Trust. No problems when running in full trust. What Permission do I need in my…
tschmuck
  • 533
  • 1
  • 5
  • 9
2
votes
1 answer

Disable Type in code running on the SQLCLR

Recently I've managed to get the Razor parser working under .NET 3.5 and hosted by SQL Server 2008. At the moment, it's really just an experiment to see what is feasible. This is working, including dynamic compilation of razor template assemblies…
Matthew Abbott
  • 60,571
  • 9
  • 104
  • 129
2
votes
2 answers

CodeAccessSecurityEngine exception

Two of my users (out of several thousand) have run into a weird exception when my app starts. I haven't been able to find any useful information about it via Google, MSDN or Reflector. In case you want to copy paste this stuff, here's it written…
David Rutten
  • 4,716
  • 6
  • 43
  • 72
2
votes
4 answers

Code theft prevention - Chaperon or anything similar

Has anyone heard of Chaperon? is it effective in preventing code theft? Now i understand that there can be many ways if someone was to steal code and there is nothing that could be completely foolproof, so please don't give me this as an answer. I…
user481913
  • 1,022
  • 1
  • 13
  • 36
2
votes
1 answer

Skip visibility checks for dynamically generated methods without DynamicMethod

This question is very similar to a two other questions see: first, second. However those are pretty out dated to say the least and I hope things have changed with .Net 5. Now first up let me clarify the issue. With a simple example that tries to get…
Twenty
  • 5,234
  • 4
  • 32
  • 67
2
votes
2 answers

Does anyone really use .Net CAS in their apps?

I am thinking about taking the 70-536 exam, and there is all this stuff about CAS and caspol and stuff. Has anyone out there actually taken the time to use CAS either Decoratively or Imperatively? I can see where it would be useful to have a basic…
jonchicoine
  • 510
  • 3
  • 14
2
votes
4 answers

What are the potential security vulnerabilities? C++

My boss told me to look at the following code and tell him what the potential security vulnerabilities were. I'm not very good at this kind of thing, since I don't think in the way of trying to hack code. All I see is that nothing is declared…
Briz
  • 548
  • 1
  • 9
  • 21
2
votes
2 answers

How can I use the system.net section of my app.config in a partial trust environment?

I've a WCF application deployed using clickonce. It connects to my server using https, and everything works fine I use the default proxy when needed thanks to the following code:
Brann
  • 31,689
  • 32
  • 113
  • 162
2
votes
1 answer

MethodAccessException

I have an unmanaged assebmly (encryption functionality) that a VB.NET (2.0) installer class uses for some installation diagnostics on the application server during the application installation.The problem is that whenever a method is called it…
itisinteresting
  • 125
  • 2
  • 12
2
votes
6 answers

Reverse engineer "compiled" Perl vs. C?

Have a client that's claiming complied C is harder to reverse engineer than sudo "compiled" Perl byte-code, or the like. Anyone have a way to prove, or disprove this?
blunders
  • 3,619
  • 10
  • 43
  • 65
2
votes
4 answers

How can I limit access to an assembly?

How can I limit the loading and execution of my libraries based on a defined precondition? For example, if I distribute to a client an application that uses an external library, how can I ensure the external library is only used with the application…
Kevin Babcock
  • 10,187
  • 19
  • 69
  • 89
2
votes
1 answer

WCF Access is Denied when opening named pipe channel from IIS application

We have some legacy web application code which we are updating and porting into a .NET 4.0 runtime. The code is in a class library and connects to a named pipe endpoint using WCF. When I initiate the connection from a console application, everything…
Charles Chen
  • 1,395
  • 13
  • 22
2
votes
1 answer

Secure collaborative software development environment in the cloud

I am looking for a secure collaborative software development environment, such as Chaperon, that works in the cloud. It should prevent code from being copied-pasted out of the environment, and it should take all measures to prevent, detect and deter…
André Levy
  • 280
  • 2
  • 13
1 2 3
22 23