Code Access Security

from Wikipedia, the free encyclopedia

Code Access Security (CAS) is the security model in Microsoft's .NET framework and represents Microsoft's solution to prevent non-privileged and unfamiliar code from performing security-critical actions. When an assembly is loaded by the common language runtime (CLR), it is inspected before it is executed. This determines which security zone the assembly belongs to. A security zone represents a collection of rights .

Code that wants to perform security-related tasks must in turn request the right to perform this task from the CLR. The CLR checks with a run through the call stack (Engl. Call stack ) which rights the assembly were granted by belonging to a security group and grants or prohibits the execution of this task.

The rights of a security zone are defined by the system administrator .