Specifies the level of automatic deserialization for .NET Framework remoting.
Assembly: mscorlib (in mscorlib.dll)
.NET Framework remoting provides two levels of automatic deserialization, and . The deserialization level helps protect against deserialization attacks by deserializing only the types associated with the most basic remoting functionality. The deserialization level supports automatic deserialization of all types that remoting supports in all situations. For a list of the .NET Framework remoting types that and support, see [<topic://cpconAutomaticDeserializationInNETRemoting>].
You can set the members of this enumeration programmatically or by using an application configuration file. For examples, see [<topic://cpconAutomaticDeserializationInNETRemoting>].
Do not assume that controlling deserialization is the only security your application requires. In distributed applications, even a high degree of control over serialization might not prevent malicious clients from intercepting the communication and using it in some way, even if that is merely showing data to others. Therefore, although the deserialization level provides some protection against certain types of attack based upon automatic deserialization, you must still evaluate whether to use authentication and encryption to help protect the confidentiality of your data.
Windows 7, Windows Vista SP1 or later, Windows XP SP3, Windows XP SP2 x64 Edition, Windows Server 2008 (Server Core not supported), Windows Server 2008 R2 (Server Core supported with SP1 or later), Windows Server 2003 SP2
The .NET Framework does not support all versions of every platform. For a list of the supported versions, see .NET Framework System Requirements.