A store exposes a virtual file system within a data compartment. To create a store or retrieve an existing one, you can call one of the static methods IsolatedStorageFile.GetUserStoreForDomain, IsolatedStorageFile.GetUserStoreForAssembly, or IsolatedStorageFile.GetStore, depending on which type of isolation you need. Each of these methods returns an IsolatedStorageFile object. To help you decide which isolation type is most appropriate for your situation, see Types of Isolation. You can create or delete directories, delete files, or get file and directory names using methods on the IsolatedStorageFile object.
There is no mechanism that prevents code from passing IsolatedStorageFile object references to objects that do not have the required permissions or identities. Domain and assembly identities and isolated storage permissions are checked only when a reference to an IsolatedStorage object is made (typically, in the IsolatedStorageFile constructor). Protecting references to IsolatedStorageFile objects is, therefore, the responsibility of the code that uses these references.