Comments on: Partial Trust, APTCA, and Security Transparency – #12 http://blogs.rev-net.com/ddewinter/2009/06/01/partial-trust-aptca-and-security-transparency/ A Developer's Melting Pot: LINQ to SQL, Entity Framework, .NET Security... Sat, 03 Jul 2010 01:28:31 +0000 http://wordpress.org/?v=2.9.1 hourly 1 By: David DeWinter http://blogs.rev-net.com/ddewinter/2009/06/01/partial-trust-aptca-and-security-transparency/comment-page-1/#comment-9744 David DeWinter Mon, 24 Aug 2009 21:20:38 +0000 http://blogs.rev-net.com/ddewinter/2009/06/01/partial-trust-aptca-and-security-transparency/#comment-9744 Hi Joseph, thanks for the compliment! I am glad you find these posts on the new security model resourceful. This is what I would expect given your situation. If Assembly B is fully trusted (i.e. in the GAC or setup as fully trusted by your sandbox AppDomain), then I would expect the call from Assembly A to Assembly B to fail. Since Assembly A is running in partial trust, it is security transparent. Assembly B, on the other hand, will be security critical since it's not marked with APTCA. If Assembly B is not fully trusted, I would expect the call from Assembly A to Assembly B to succeed, regardless of whether Assembly B is signed. Since this isn't working for you, can you share the Exception type and message you received while running this? Hi Joseph, thanks for the compliment! I am glad you find these posts on the new security model resourceful.

This is what I would expect given your situation.

If Assembly B is fully trusted (i.e. in the GAC or setup as fully trusted by your sandbox AppDomain), then I would expect the call from Assembly A to Assembly B to fail. Since Assembly A is running in partial trust, it is security transparent. Assembly B, on the other hand, will be security critical since it’s not marked with APTCA.

If Assembly B is not fully trusted, I would expect the call from Assembly A to Assembly B to succeed, regardless of whether Assembly B is signed. Since this isn’t working for you, can you share the Exception type and message you received while running this?

]]> By: Joseph Albahari http://blogs.rev-net.com/ddewinter/2009/06/01/partial-trust-aptca-and-security-transparency/comment-page-1/#comment-9730 Joseph Albahari Mon, 24 Aug 2009 05:52:45 +0000 http://blogs.rev-net.com/ddewinter/2009/06/01/partial-trust-aptca-and-security-transparency/#comment-9730 Hi David I'm enjoying your blog posts about security - you write very well! I've tried testing what you've just described in this blog in Studio 2010. I've created a sandboxed appdomain in which I execute assembly A. Assembly A then calls a method in Assembly B. Assembly B does not have APTCA. It works if and only if assembly B is unsigned - just like in CLR 2.0. Am I doing something wrong - or is this feature not yet implemented in the beta? Hi David

I’m enjoying your blog posts about security – you write very well!

I’ve tried testing what you’ve just described in this blog in Studio 2010. I’ve created a sandboxed appdomain in which I execute assembly A. Assembly A then calls a method in Assembly B.

Assembly B does not have APTCA.

It works if and only if assembly B is unsigned – just like in CLR 2.0. Am I doing something wrong – or is this feature not yet implemented in the beta?

]]>