Security Considerations
A WPF browser application is installed from a web server. By default, applications that originate from web servers are not (and should not be) trusted. Trust, in this case, refers to an agreement between an application and a user with respect to the user’s machine and devices. You do not want applications that originate from the Internet, for example, to simply have access to your file system. Therefore, WPF browser applications run in what’s called a sandbox.
This sandbox is controlled by your browser’s security. By default, an XBAP application runs in what’s called the Internet zone. This zone is low-trust, high-security. Figure 20.13 shows the Internet zone from the perspective of Internet Explorer. In this way, an ...
Get Microsoft® Visual Studio® 2010 Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
