DDEX Security

The following provides guidance for obtaining detailed information about maintaining a high level of security when programming with for Visual Studio and the .NET Framework.

Security for the .NET Framework

The Microsoft Developer Network (MSDN) provides extensive documentation of security and security-related issues. You are encouraged to review the following:

• Secure Coding Guidelines for the .NET Framework

• An Overview of Security in the .NET Framework

• The Security Infrastructure of the CLR Provides Evidence, Policy, Permissions, and Enforcement Serviceshttp://go.microsoft.com/?linkid=5258997

• Unify the Role-Based Security Models for Enterprise and Application Domains with .NET

• .NET Framework Enterprise Security Policy Administration and Deployment: Frequently Asked Questions

Security Precautions for DDEX Provider Writers

Following are security-related issues that DDEX users should be aware of.

• Take measures to ensure that the DDEX provider is secure. See links above for information about the .NET Framework and security.

• Make it a requirement that users be administrators on the machine on which you install your DDEX provider.

• Ensure that the files (assemblies and xml) associated with DDEX providers are installed at a secure location using access control entries (ACEs).

See Also

Concepts

Best Practices for Security in the Visual Studio SDK