System.Security.Policy Namespace

 

The System.Security.Policy namespace contains code groups, membership conditions, and evidence. These three types of classes are used to create the rules applied by the common language runtime security policy system. Evidence classes are the input to security policy and membership conditions are the switches; together these create policy statements and determine the granted permission set. Policy levels and code groups are the structure of the policy hierarchy. Code groups are the encapsulation of a rule and are arranged hierarchically in a policy level.

ClassDescription
System_CAPS_pubclassAllMembershipCondition

Represents a membership condition that matches all code. This class cannot be inherited.

System_CAPS_pubclassApplicationDirectory

Provides the application directory as evidence for policy evaluation. This class cannot be inherited.

System_CAPS_pubclassApplicationDirectoryMembershipCondition

Determines whether an assembly belongs to a code group by testing its application directory. This class cannot be inherited.

System_CAPS_pubclassApplicationSecurityInfo

Holds the security evidence for an application. This class cannot be inherited.

System_CAPS_pubclassApplicationSecurityManager

Manages trust decisions for manifest-activated applications.

System_CAPS_pubclassApplicationTrust

Encapsulates security decisions about an application. This class cannot be inherited.

System_CAPS_pubclassApplicationTrustCollection

Represents a collection of ApplicationTrust objects. This class cannot be inherited.

System_CAPS_pubclassApplicationTrustEnumerator

Represents the enumerator for ApplicationTrust objects in the ApplicationTrustCollection collection.

System_CAPS_pubclassCodeConnectAccess

Specifies the network resource access that is granted to code.

System_CAPS_pubclassCodeGroup

Represents the abstract base class from which all implementations of code groups must derive.

System_CAPS_pubclassEvidence

Defines the set of information that constitutes input to security policy decisions. This class cannot be inherited.

System_CAPS_pubclassEvidenceBase

Provides a base class from which all objects to be used as evidence must derive.

System_CAPS_pubclassFileCodeGroup

Grants permission to manipulate files located in the code assemblies to code assemblies that match the membership condition. This class cannot be inherited.

System_CAPS_pubclassFirstMatchCodeGroup

Obsolete.Allows security policy to be defined by the union of the policy statement of a code group and that of the first child code group that matches. This class cannot be inherited.

System_CAPS_pubclassGacInstalled

Confirms that a code assembly originates in the global assembly cache (GAC) as evidence for policy evaluation. This class cannot be inherited.

System_CAPS_pubclassGacMembershipCondition

Determines whether an assembly belongs to a code group by testing its global assembly cache membership. This class cannot be inherited.

System_CAPS_pubclassHash

Provides evidence about the hash value for an assembly. This class cannot be inherited.

System_CAPS_pubclassHashMembershipCondition

Determines whether an assembly belongs to a code group by testing its hash value. This class cannot be inherited.

System_CAPS_pubclassNetCodeGroup

Grants Web permission to the site from which the assembly was downloaded. This class cannot be inherited.

System_CAPS_pubclassPermissionRequestEvidence

Obsolete.Defines evidence that represents permission requests. This class cannot be inherited.

System_CAPS_pubclassPolicyException

The exception that is thrown when policy forbids code to run.

System_CAPS_pubclassPolicyLevel

Represents the security policy levels for the common language runtime. This class cannot be inherited.

System_CAPS_pubclassPolicyStatement

Represents the statement of a CodeGroup describing the permissions and other information that apply to code with a particular set of evidence. This class cannot be inherited.

System_CAPS_pubclassPublisher

Provides the Authenticode X.509v3 digital signature of a code assembly as evidence for policy evaluation. This class cannot be inherited.

System_CAPS_pubclassPublisherMembershipCondition

Determines whether an assembly belongs to a code group by testing its software publisher's Authenticode X.509v3 certificate. This class cannot be inherited.

System_CAPS_pubclassSite

Provides the Web site from which a code assembly originates as evidence for policy evaluation. This class cannot be inherited.

System_CAPS_pubclassSiteMembershipCondition

Determines whether an assembly belongs to a code group by testing the site from which it originated. This class cannot be inherited.

System_CAPS_pubclassStrongName

Provides the strong name of a code assembly as evidence for policy evaluation. This class cannot be inherited.

System_CAPS_pubclassStrongNameMembershipCondition

Determines whether an assembly belongs to a code group by testing its strong name. This class cannot be inherited.

System_CAPS_pubclassTrustManagerContext

Represents the context for the trust manager to consider when making the decision to run an application, and when setting up the security on a new AppDomain in which to run an application.

System_CAPS_pubclassUnionCodeGroup

Obsolete.Represents a code group whose policy statement is the union of the current code group's policy statement and the policy statement of all its matching child code groups. This class cannot be inherited.

System_CAPS_pubclassUrl

Provides the URL from which a code assembly originates as evidence for policy evaluation. This class cannot be inherited.

System_CAPS_pubclassUrlMembershipCondition

Determines whether an assembly belongs to a code group by testing its URL. This class cannot be inherited.

System_CAPS_pubclassZone

Provides the security zone of a code assembly as evidence for policy evaluation. This class cannot be inherited.

System_CAPS_pubclassZoneMembershipCondition

Determines whether an assembly belongs to a code group by testing its zone of origin. This class cannot be inherited.

InterfaceDescription
System_CAPS_pubinterfaceIApplicationTrustManager

Determines whether an application should be executed and which set of permissions should be granted to it.

System_CAPS_pubinterfaceIIdentityPermissionFactory

Defines the method that creates a new identity permission.

System_CAPS_pubinterfaceIMembershipCondition

Defines the test to determine whether a code assembly is a member of a code group.

EnumerationDescription
System_CAPS_pubenumApplicationVersionMatch

Specifies how to match versions when locating application trusts in a collection.

System_CAPS_pubenumPolicyStatementAttribute

Defines special attribute flags for security policy on code groups.

System_CAPS_pubenumTrustManagerUIContext

Specifies the type of user interface (UI) the trust manager should use for trust decisions.

Return to top
Show: