BT

Silverlight's New Security Model

| by Jonathan Allen Follow 576 Followers on May 02, 2007. Estimated reading time: 1 minute |

The CLR has always had a comprehensive security model called Code Access Security (CAS). Unfortunately, the model is also very complex and, in the minds of most developers, simply overkill.

Silverlight replaces CAS with a simplified security model that is limited to yes/no decision based on who wrote the code. Code signing and manually edited security policies should become a thing of the past for CLR developers working under Silverlight.

According to Justin Van Patten

The new Silverlight security model consists of three access levels: Transparent, SafeCritical, and Critical. Transparent code has the least privilege (partial trust) and SafeCritical and Critical have the most privilege (full trust). Only assemblies trusted by Microsoft may elevate to full trust. These assemblies, called "Platform code", must be signed with the Microsoft public key and reside in a trusted location. All other code targeting Silverlight is referred to as "User code", and cannot elevate to full trust.

User code is only able to access Transparent and SafeCritical functionality. If User code tries to access a Critical API, a MethodAccessException is thrown.

This functionality will be available in Silverlight 1.1, which is currently targeting both Windows and OS X/x86. Already there are complaints that this version, unlike Silverlight 1.0, does not run on the older OS X/PowerPC.

Silverlight 1.1 Alpha is available for download. 

Rate this Article

Adoption Stage
Style

Hello stranger!

You need to Register an InfoQ account or or login to post comments. But there's so much more behind being registered.

Get the most out of the InfoQ experience.

Tell us what you think

Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p

Email me replies to any of my messages in this thread
Community comments

Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p

Email me replies to any of my messages in this thread

Allowed html: a,b,br,blockquote,i,li,pre,u,ul,p

Email me replies to any of my messages in this thread

Discuss

Login to InfoQ to interact with what matters most to you.


Recover your password...

Follow

Follow your favorite topics and editors

Quick overview of most important highlights in the industry and on the site.

Like

More signal, less noise

Build your own feed by choosing topics you want to read about and editors you want to hear from.

Notifications

Stay up-to-date

Set up your notifications and don't miss out on content that matters to you

BT