Browse by Tags

All Tags » Security » Quick Tips (RSS)
Monday, May 03, 2004 4:15 PM

.NET Immutability Tip #3: Protect your properties AND your methods.

A common immutability practice is to simply protect the property setter with an immutability flag. Take a simple class that has a single integer field for to back our property and a single boolean flag to mark it immutable. using System; public class...
Posted by Justin Rogers | 2 comment(s)
Filed under: , , ,
Saturday, April 10, 2004 10:48 PM

.NET Immutability Tip #2: Be careful of unprotected types in the executable.

I've seen this happen quite often. When developers create their immutable types, they assume the only view the user will ever have is of the type through some interface. Normally the interfaces are defined before-hand and included in some library that...
Posted by Justin Rogers | with no comments
Filed under: , , ,
Thursday, April 08, 2004 10:24 PM

.NET Immutability Tip #1: Nothing is immutable.

I figured I'd start with the obvious. You can never control a machine 100%, so there is always the opportunity that whatever systems of protection you have in place, they can be overcome. This same principle applies to security and cheating systems as...
Posted by Justin Rogers | with no comments
Filed under: , , , ,
Thursday, April 08, 2004 6:45 PM

Brad Abrams talks about mutable read-only fields and I attempt to elaborate.

Brad Abrams posts an article on Mutable reference types should not be read-only fields . You really have to think about what this means. In the example he creates a new type, say F, that has some internal data. On another type, he creates a read-only...
Posted by Justin Rogers | 1 comment(s)
Filed under: , , , ,
Friday, February 13, 2004 4:02 PM

PermitOnly is excellent for security, but can be a bane to programming..., enter PermissionSet

Doing a PermitOnly when using File Permissions seems to be the way to lock down file access in the .NET environment. It ensures that the API you are calling can only access the specified file path and often times this can be important unless you trust...
Posted by Justin Rogers | with no comments
Filed under: , , ,
More Posts