stackoom
  简体   繁体   中英

Authenticating DLLs in C#

 原文  2013-06-18 07:58:48       c#/ .net/ code-signing

Question

I have an exe which uses Castle Windsor to implement a plugin mechanism. I need to verify that the plugins I load came from me (and are not some malicious code).

I believe I need to sign both the exe and the dll with an asymmetric key (possibly a SNK?). Firstly is this correct and how can I do this? Secondly how can I verify programmatically in the exe that the the dll came from a trusted source?

1 answers

solution1
 5 ACCPTED  2013-06-18 08:47:10

If you sign your DLL then at runtime you can check the StrongName of the DLL before you load it.

You could also check that the public key used to sign it is the one that you expect.

To get the public key of an assembly you can do this: 

Assembly assembly = ...
AssemblyName assemblyName = assembly.GetName();
byte[] publicKey = assemblyName.GetPublicKey();

I just checked and there's already a good answer about this on StackOverflow here:

https://stackoverflow.com/a/1350012/106159

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Embedding .dlls in .dlls - Assembly resolving in C# Call optaplanner dlls in c# c#: why use DLLs? Authenticating a login - C# MVC C# debugging across dlls Loading DLLs at runtime in C# How to Communicate DLLs in C# Wrapping multiple C++ .dlls with multiple C# .dlls Old C++ DLLs into C# Dynamically calling different C DLLs in C#
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM