NGWS SDK Documentation  

This is preliminary documentation and subject to change.
To comment on this topic, please send us email at ngwssdk@microsoft.com. Thanks!

Other Security Notes

Note that fields within a class have traditionally been declared non-public in order to improve data encapsulation. That’s to say, it was an issue of good software engineering, rather than confidIf the programmer chose to persist that information into a file, then the only security issue that really enters the picture, is whether the caller (or the installed software component itself) has CreateFile privilege for the target drive and folder.entiality of customer data (such as account balances, or salary amounts) that prompted a programmer to use private or protected fields.

However, in the wider world where one programmer writes a component, which is used by another department or another company, the notion of non-public fields provides a natural route to protect confidential information (so long as access to non-public fields is controlled by some security permission). For this reason, Serialization or Deserialization of non-public fields, will require a “Serialization” security permission.

Note that with this security model, programmers need to be aware that all properties and public fields, could be serialized and ‘extracted’ from the address space in which they reside, without that programmer’s knowledge, and without any special security permissions.