.NET Framework Security
.NET Framework Assemblies and the AllowPartiallyTrustedCallers Attribute
 

Microsoft Corporation

January 2002

Note   For detailed information concerning this attribute and its usage in the Microsoft .NET Framework, please read Version 1 Security Changes for the Microsoft .NET Framework.

Types in strong-named assemblies can be called by partially trusted code only when the assemblies have been marked with the AllowPartiallyTrustedCallers attribute (APTCA). This attribute essentially removes the implicit LinkDemand for the FullTrust permission set that is otherwise automatically placed on each publicly accessible method in each type.

Some Microsoft .NET Framework assemblies marked with this attribute contain types that still require stronger permissions.

The following is a list of types within these APTCA decorated assemblies that are not callable by partially trusted code because they are decorated with one of the following declarative security attributes:

[PermissionSet(SecurityAction.LinkDemand, Name=”FullTrust”)]
[SecurityPermission(SecurityAction.LinkDemand, UnmanagedCode=true)]
[PermissionSet(SecurityAction.InheritanceDemand, Name=”FullTrust”)]
[FileIOPermissionAttribute(SecurityAction.RequestMinimum, Unrestricted=true)]

Microsoft.VisualBasic

  • Microsoft.VisualBasic.FileSystem

System.Data

  • System.Data.DBConcurrencyException
  • System.Data.FillErrorEventArgs
  • System.Data.StateChangeEventArgs
  • System.Data.Common.DataColumnMapping
  • System.Data.Common.DataColumnMappingCollection
  • System.Data.Common.DataTableMapping
  • System.Data.Common.DataTableMappingCollection
  • System.Data.Common.DbEnumerator
  • System.Data.OleDb.OleDbDataReader
  • System.Data.OleDb.OleDbCommand
  • System.Data.OleDb.OleDbCommandBuilder
  • System.Data.OleDb.OleDbConnection
  • System.Data.OleDb.OleDbDataAdapter
  • System.Data.OleDb.OleDbParameter
  • System.Data.OleDb.OleDbRowUpdatedEventArgs
  • System.Data.OleDb.OleDbRowUpdatingEventArgs
  • System.Data.OleDb.OleDbPermission
  • System.Data.OleDb.OleDbPermissionAttribute
  • System.Data.SqlClient.SqlCommand
  • System.Data.SqlClient.SqlCommandBuilder
  • System.Data.SqlClient.SqlDataAdapter
  • System.Data.SqlClient.SqlParameter
  • System.Data.SqlClient.SqlRowUpdatedEventArgs
  • System.Data.SqlClient.SqlRowUpdatingEventArgs
  • System.Data.SqlClient.SqlClientPermission
  • System.Data.SqlClient.SqlClientPermissionAttribute
  • System.Data.SqlClient.SqlConnection
  • System.Data.SqlClient.SQLDebugging
  • System.Data.SqlTypes.SqlBinary
  • System.Data.SqlTypes.SqlBoolean
  • System.Data.SqlTypes.SqlByte
  • System.Data.SqlTypes.SqlDateTime
  • System.Data.SqlTypes.SqlDouble
  • System.Data.SqlTypes.SqlGuid
  • System.Data.SqlTypes.SqlInt16
  • System.Data.SqlTypes.SqlInt32
  • System.Data.SqlTypes.SqlInt64
  • System.Data.SqlTypes.SqlMoney
  • System.Data.SqlTypes.SqlDecimal
  • System.Data.SqlTypes.SqlSingle
  • System.Data.SqlTypes.SqlString
  • System.Data.SqlTypes.SqlTypeException
  • System.Data.SqlTypes.SqlNullValueException
  • System.Data.SqlTypes.SqlTruncateException

System

  • System.CodeDom.Compiler.CodeGenerator
  • System.CodeDom.Compiler.CodeCompiler
  • System.CodeDom.Compiler.CodeDomProvider
  • System.CodeDom.Compiler.CodeGeneratorOptions
  • System.CodeDom.Compiler.CodeParser
  • System.CodeDom.Compiler.CompilerError
  • System.CodeDom.Compiler.CompilerErrorCollection
  • System.CodeDom.Compiler.CompilerParameters
  • System.CodeDom.Compiler.CompilerResults
  • System.CodeDom.Compiler.Executor
  • System.CodeDom.Compiler.IndentedTextWriter
  • System.CodeDom.Compiler.TempFileCollection
  • System.ComponentModel.Design.ActiveDesignerEventArgs
  • System.ComponentModel.Design.CheckoutException
  • System.ComponentModel.Design.CommandID
  • System.ComponentModel.Design.ComponentChangedEventArgs
  • System.ComponentModel.Design.ComponentChangingEventArgs
  • System.ComponentModel.Design.ComponentEventArgs
  • System.ComponentModel.Design.ComponentRenameEventArgs
  • System.ComponentModel.Design.DesignerTransaction
  • System.ComponentModel.Design.DesignerTransactionCloseEventArgs
  • System.ComponentModel.Design.MenuCommand
  • System.ComponentModel.Design.DesignerVerb
  • System.ComponentModel.Design.DesignerVerbCollection
  • System.ComponentModel.Design.DesigntimeLicenseContext
  • System.ComponentModel.Design.DesignerCollection
  • System.ComponentModel.Design.DesignerEventArgs
  • System.ComponentModel.Design.StandardCommands
  • System.ComponentModel.Design.StandardToolWindows
  • System.ComponentModel.Design.DesigntimeLicenseContextSerializer
  • System.ComponentModel.Design.Serialization.ContextStack
  • System.ComponentModel.Design.Serialization.DesignerLoader
  • System.ComponentModel.Design.Serialization.InstanceDescriptor
  • System.ComponentModel.Design.Serialization.ResolveNameEventArgs
  • Microsoft.Win32.SystemEvents
  • Microsoft.Win32.PowerModeChangedEventArgs
  • Microsoft.Win32.SessionEndedEventArgs
  • Microsoft.Win32.SessionEndingEventArgs
  • Microsoft.Win32.TimerElapsedEventArgs
  • Microsoft.Win32.UserPreferenceChangedEventArgs
  • Microsoft.Win32.UserPreferenceChangingEventArgs
  • Microsoft.CSharp.CSharpCodeProvider
  • Microsoft.VisualBasic.VBCodeProvider
  • System.Configuration.ConfigXmlDocument
  • System.IO.FileSystemWatcher
  • System.Diagnostics.EventLog
  • System.Diagnostics.EventLogTraceListener
  • System.Diagnostics.FileVersionInfo
  • System.Diagnostics.PerformanceCounter
  • System.Diagnostics.PerformanceCounterCategory
  • System.Diagnostics.PerformanceCounterManager
  • System.Diagnostics.Process
  • System.Diagnostics.ProcessStartInfo

System.Drawing

  • System.Drawing.Design.CategoryNameCollection
  • System.Drawing.Design.PaintValueEventArgs
  • System.Drawing.Design.PropertyValueUIItem
  • System.Drawing.Design.ToolboxComponentsCreatedEventArgs
  • System.Drawing.Design.ToolboxComponentsCreatingEventArgs
  • System.Drawing.Design.ToolboxItem
  • System.Drawing.Design.ToolboxItemCollection
  • System.Drawing.Design.UITypeEditor

System.Web.Services

  • System.Web.Services.Protocols.ValueCollectionParameterReader
  • System.Web.Services.Protocols.MatchAttribute
  • System.Web.Services.Protocols.PatternMatcher
  • System.Web.Services.Protocols.SoapServerMessage
  • System.Web.Services.Protocols.TextReturnReader
  • System.Web.Services.Protocols.WebServiceHandlerFactory
  • System.Web.Services.Discovery.ContractSearchPattern
  • System.Web.Services.Discovery.DiscoveryClientDocumentCollection
  • System.Web.Services.Discovery.DiscoveryClientReferenceCollection
  • System.Web.Services.Discovery.DiscoveryDocumentLinksPattern
  • System.Web.Services.Discovery.DiscoveryDocumentSearchPattern
  • System.Web.Services.Discovery.DiscoveryExceptionDictionary
  • System.Web.Services.Discovery.XmlSchemaSearchPattern
  • System.Web.Services.Description.ProtocolImporter
  • System.Web.Services.Description.ProtocolReflector
  • System.Web.Services.Description.ServiceDescriptionImporter
  • System.Web.Services.Description.ServiceDescriptionReflector
  • System.Web.Services.Description.SoapExtensionImporter
  • System.Web.Services.Description.SoapExtensionReflector
  • System.Web.Services.Description.SoapProtocolImporter

System.Windows.Forms

  • System.Resources.ResXFileRef
  • System.Resources.ResXResourceReader
  • System.Resources.ResXResourceSet
  • System.Resources.ResXResourceWriter
  • System.Windows.Forms.NativeWindow
  • System.Windows.Forms.Message
  • System.Windows.Forms.PropertyGrid
  • System.Windows.Forms.ThreadExceptionDialog
  • System.Windows.Forms.AxHost
  • System.Windows.Forms.Design.WindowsFormsComponentEditor
  • System.Windows.Forms.Design.ComponentEditorForm
  • System.Windows.Forms.Design.ComponentEditorPage
  • System.Windows.Forms.Design.PropertyTab
  • System.Windows.Forms.Design.EventsTab
  • System.Windows.Forms.PropertyGridInternal.PropertiesTab
  • System.Windows.Forms.NativeWindow
  • System.Windows.Forms.Message
  • System.Windows.Forms.PropertyGrid
  • System.Windows.Forms.ThreadExceptionDialog
  • System.Windows.Forms.AxHost
  • System.Windows.Forms.Design.WindowsFormsComponentEditor
  • System.Windows.Forms.Design.ComponentEditorForm
  • System.Windows.Forms.Design.ComponentEditorPage
  • System.Windows.Forms.Design.PropertyTab
  • System.Windows.Forms.Design.EventsTab
  • System.Windows.Forms.PropertyGridInternal.PropertiesTab
  • System.Windows.Forms.PropertyGridInternal.PropertyGridCommands
  • System.Windows.Forms.ComponentModel.Com2Interop.Com2Variant

System.Xml

  • System.Xml.Xsl.XslTransform

The following table lists types within these APTCA-decorated assemblies that are callable, but have additional declarative security attributes as described in the Notes column.

Table 1. Callable types

TypeNotes
mscorlib: System.Reflection.MemberInfoInheritance demand for unrestricted file I/O
mscorlib: System.IO.FileSystemInfoInheritance demand for unrestricted file I/O
System.Data: System.Data.Common.DataAdapterInheritance demand for full trust
System.Data: System.Data.Common.DbDataAdapterInheritance demand for full trust
System.Data: System.Data.Common.DbDataRecordInheritance demand for full trust
System.Data: System.Data.Common.RowUpdatedEventArgsInheritance demand for full trust
System.Data: System.Data.Common.RowUpdatingEventArgsInheritance demand for full trust
System.Data: System.Data.OleDb.OleDbParameterCollectionCallable, internal constructor
System.Web.Services: System.Web.Services.Protocols.MimeParameterReaderInheritance demand for full trust
System.Web.Services: System.Web.Services.Protocols.SoapMessageInheritance demand for full trust
System.Web.Services: System.Web.Services.Protocols.WebClientAsyncResultInheritance demand for full trust
System.Web.Services: System.Web.Services.Protocols.SoapHeaderCollectionInheritance demand for full trust
System.Web.Services: System.Web.Services.Discovery.DiscoverySearchPatternInheritance demand for full trust
System.Web.Services: System.Web.Services.Description.SoapTransportImporterInheritance demand for full trust
Page view tracker