« October 2007 | Main | April 2008 »

November 2007

November 17, 2007

.NET Security: CAS vis-à-vis Migrating 1.1 code base to .NET 2.0: StrongNameIdentityPermission

Be very careful with the .NET Security Identity permissions that you may be using in your code, when planning to migrate the code base to .NET 2.0+, especially the StrongNameIdentityPermission (SNIP)

When you have SNIP .NET CAS identity permission being used on any of your highly privileged code, and require that all calling code (including FullTrust code) calling on this SNIP’d method(s) to have strong name signed using the same key as is in the called code, you may be feeling warm and cosy thinking that you may have completely secured all external access to your code.

Your assumption stands true in a .NET 1.1 CAS Security context, but not in the .NET 2.0 CAS context.

What is happening is that in .NET 1.1, unlike most other CAS permission classes which implements IUnrestrictedPermission interface, the CAS Identity permissions cannot have the Unrestricted permission state value set up on them.

Since the Identity permission do not implement this interface, nor otherwise allow the Unrestricted state value to be set on them, even the FullTrust assemblies that are granted all unrestricted permissions, cannot successfully pass the SNI permission demanded by your code (in .NET 1.x).

With that in place, a reasonable assumption that a .NET CAS security based app design will make about its fully secure code access, holds true – i.e. just because a calling assembly is a FullTrust assembly, it cannot pass/skip the SNIP permission that your code demands (when it was not signed with the public key that the called code is signed with), and will fail to access your secure code if it is not signed with the same public key as yours.

But CAVEAT! That assumption won’t hold good in .NET 2.0 security.

In .NET 2.0 CAS, the Identity permission classes ALLOW code to set the Unrestricted state value – i.e. PermissionState.Unrestricted.

The impact of this change in .NET 2.0 security is that if you migrate your .NET 1.1 code to 2.0 or later, your highly privileged code won’t be protected anymore by the StrongNameIdentityPermission, from any abuses by any FullTrust assemblies.

In .NET 2.0 CAS, FullTrust code can call your SNIP secured code, without having to meet the demands of the IP – i.e. any FullTrust code that is not signed with the public key that your secure code requires, can still call on your secured code.

Result: Your .NET 1.1. CAS SNIP protected code is not protected anymore when run in .NET 2.0 CAS context.

Review you CAS protected code thoroughly! If you see something like this:

public class BusinessObjectClass

{

[StrongNameIdentityPermissionAttribute(SecurityAction.Demand [or LinkDemand], PublicKey="<the key bytes">")]

public void YourCASProtectedMethod()

{ /* Your privileged code... */ ... }

}

... then its time to take action (if migrating to .NET 2.0).

Oops!! Hell breaks loose? Well…. Yes!

So, when migrating the code base to .NET 2.0, ensure to change your CAS dependant design on securing your code by either of these:

  • Just don’t expect StrongNameIdentityPermission (SNIP) to secure your privileged code, and attempt alternative CAS or other security strategy, OR
  • Use the application configuration setup route, and direct the runtime to use the legacy CAS .NET security policy behavior (1.x) for Identity permissions.

You could do this by using the legacyV1CASPolicy element, and set its enabled value to true.

I have some more neat strategies in mind, to sort out this .NET security issue vis-à-vis migrating code to .NET 2.0. I will blog more about those later. Watch this space.

In one of my .NET consulting projects, I am advising my customer on this exact .NET security issue :-)… so thought you all will also benefit from this bit of advice!

Next, I will blog about some precautions you will need to take when working with CAS in .NET 2.0 (vis-a-vis your .NET 1.1 code base migrated to .NET 2.0) when invoking delegates of methods (in another assembly) that are protected by CAS security demand.

The key thing here to be careful about is that there are additional checks made by CAS 2.0+ on the delegate invoker's .NET security related assembly identity bits, which you will need to be aware of so that you can have your .NET 1.1 code updated for .NET 2.0, to take into account and provide for these additional checks.

Although your current code for .NET 1.1 will work fine as-is after migrating, if the above specific aspect of CAS 2.0's additional security checks is not taken care of, then the runtime will throw security exceptions. So CAVEAT!

- Sundar

Posted at 08:14 PM in .NET Security | | Comments (2) | TrackBack (0)

November 05, 2007

.NET 3.5 & Visual Studio 2008 in 2007! :-)

Wow! Can't wait for it! :-) Yes, it looks like MS is going to keep its promise! :-)

.NET 3.5 and Visual Studio 2008 is coming (the real thing, I mean!), by end of Novmber 2007 - well few days to go!!

Read Soma's announcement (in Microsoft TechEd Developers 2007 conference in Barcelona, Spain) here:

http://www.microsoft.com/presspass/press/2007/nov07/11-05TechEdDevelopersPR.mspx

.NET 3.5, with full source... yummy! :-)

Update (19/Nov/2007):

OK guys - the grand news! VS 2008 and .NET 3.5 is now RTM as from today! :-)

MSDN Subscribers grab it now!!!!!!!! :-)

- Sundar

Posted at 06:30 PM in .NET Framework | | Comments (3) | TrackBack (0)

Silverlight Streaming (SLS) is cool! :-)

Silverlight is awesome! :-) 

In its 1.0 release, Silverlight offers quite a nice feature-set via the MediaElement object that lets you deliver audio & video enabled web app, with so much ease of development.

Over the week-end, I was playing around extensively with the MediaElement in Silverlight 1.0, and it was such a cool experience.

I was particularly excited with what you can do with its abilities such as Clipping, and being able to apply any arbitrary Ellipse geometry on it, and be able to render it as though it was just like any other shape object.

You can bring in much more rendering magic with its Clipping ability (i.e. the Clip property), compared to what you could typically do with it with the VideoBrush.

You can seamlessly integrate and transform these multimedia content with any of your other Silverlight content.

Unlike the WPF counterpart of A/V implementation for MediaElement, which is built on top of WMP (Windows Media Player), the Silverlight implementation does not depend on WMP.

I have been thinking about the typical arguments around the Flash vs. Silverlight thingy, and for me, SIlvelight clearly wins! (not just because of what MediaElement offers, of course!)

It is primarily because of the the cost-effectiveness of this technology both in terms of the technology learning curve and the toolset investment this will need.

Silverlight's support for the .NET languages (in 1.1 Release) , XAML based UI development, and direct support for development of Silverlight projects right within my Visual Studio (2005+) instance, it adds up nicely to give me the overall high ROI vis-a-vis developing and delivering (media enabled) R-I-Apps, compared to what amount of investment (time + money) will nee going in with Flash.

Flash is a sweet product, but for me, SL wins! :-)

Especially with very strong WPF (+ C#) expertise in hand, it becomes very easy in developing Silverlight projects, without any large learning curve.

Can't wait for what is coming in Silverlight 1.1 RTM :-)

Silverlight streaming (SLS)

Quite frankly, I am really surprised as to why there has not been much talk about the Silverlight Streaming (SLS).

SLS is a service that is provided for hosting and streaming Silverlight applications.

Windows Live has been providing this service for a while.

It is very straight forward to work with SLS.

Of course you can use the standard silverLight.js approach to host the content in your app, but if you use the SLS from Windows Live, it all becomes so easy, instantly.

For example, to produce a media enabled SL app, all you will do is:

1. Encode a video in an encoder, typically, MS Expression Encoder
2. Create a manifest file named Manifest.xml, describing your SL app.
3. Create a "zip" file that will have all the above files - i.e. all files that Encoder will produce for you.

Note to exclude some files like .csproj, html etc. since you won't need them as part of the SLS zip file for upload.

4. Upload the zip file to Live SLS. (Assumed, you have created an account in there!)
5. Add the HTM markup and the JavaScript code that the SLS Silverlight upload process will give you finally.
6. Stick these into your web page file that will host your SLS application.

There you go, your (media enabled) Silverlight Rich Interactive App (RIA) is all ready to go live.

If you had the Silverlight streaming plug-in installed, then you can actually publish your app from within the MS Expression Encoder application, which at the end of the publishing process will get you a piece of IFRAME markup code, that you can paste into your SLS hosting web page html file.

SLS streaming quality is very good, and definitely delivers what it promises - i.e. the HD/DVD quality of video, at bit rates up to 700 kbps.

That said, the video quality of the Sliverlight app I have created and added in this post is not that very good, since i had edited it for optimized streaming/rendering (+ some cropping I had done on the video as well), and hence has got nothing to do with the SLS quality itself.

Get your SLS account now, grab a copy of MS Expression Encoder tool plus the MS Expression Blend (September preview), and have fun, developing and hosting your Silverlight RIAs :-)

If you want to enable your blogs with Silverlight content, then I would recommend some cool tools like so:

  • Live Writer
  • Live writer plug-in for Silverlight streaming (written by James Clarke from the MS Expression Encoder team)
    These tools are available in Windows Live Betas web site.

When developing your audio/video content for Silverlight, the cool thing is that you can build your own video player in XAML :-)

Either you can use the Expression Media encoder to get you a video player, or you could yourself build a media player of your own (in XAML), and hook into the events of MediaElement, and wire up your handler code for stuff like Play/Stop, Pause etc. for the UI elements in the Medial player UI that you will create.

I was able to create a simple Silverlight application hosting a video, in about 10 minutes :-) and host it for streaming by Live SLS.

How much more cool it can get? :-)

- Sundar

Posted at 09:20 AM in Silverlight | | Comments (5) | TrackBack (0)