The.NET Framework offers a rich security infrastructure based on both the identity of the code (code access security, or CAS) and the identity of the account under which the code is running (role-based security). In this chapter, I’ll cover how CAS works, with a particular focus on looking under the hood. Because security isn’t generally a well-understood subject amongst many developers, I don’t assume any prior knowledge of CAS and will start by explaining the basic concepts. However, in keeping with the advanced nature of this book, I’ll tour through the basic concepts and syntax fairly quickly so that I can get onto presenting some examples of applications that take advantage of CAS in fairly sophisticated ways, including showing you how to define your own custom permissions.
KeywordsFile System Security Policy Code Group Custom Permission Membership Condition
Unable to display preview. Download preview PDF.