C#, MEF - Sign trusted plugins for abuse reduction
Posted
by Marks
on Stack Overflow
See other posts from Stack Overflow
or by Marks
Published on 2010-05-10T09:10:02Z
Indexed on
2010/05/10
9:14 UTC
Read the original article
Hit count: 233
Hi there. I have a program that is extendable by plugins using the Microsoft Extensibility Framework. But i dont want untrusted sources to give out plugins that may be insecure. So i want to sign the plugins (maybe with Visual Studio's built in signing) and check if the plugins are trustworthy at program start.
I didn't find a way to check DLL signing from inside C#. And also there is the problem, that I load the plugins with a DirectoryCatalog. There is no way to tell, which plugin is from which file. Anyone knows a way to do this?
Thanks for any help, Marks
© Stack Overflow or respective owner