During development process you will need strong name keys to be exposed to

What is delay signing?

Question Posted / johncena

2 Answers
18450 Views
HCL, I also Faced
E-Mail Answers

Answer Posted / johncena

During development process you will need strong name keys to
be exposed to developer which
is not a good practice from security aspect point of view.In
such situations you can assign the key
later on and during development you an use delay signing
Following is process to delay sign an assembly:
√ First obtain your string name keys using SN.EXE.
√ Annotate the source code for the assembly with two custom
attributes from
System.Reflection: AssemblyKeyFileAttribute, which passes
the name of the file
containing the public key as a parameter to its constructor.
AssemblyDelaySignAttribute,
which indicates that delay signing, is being used by passing
true as a parameter to its
constructor. For example as shown below:
[Visual Basic]
<Assembly:AssemblyKeyFileAttribute("myKey.snk")>
<Assembly:AssemblyDelaySignAttribute(true)>
[C#]
[assembly:AssemblyKeyFileAttribute("myKey.snk")]
[assembly:AssemblyDelaySignAttribute(true)]
The compiler inserts the public key into the assembly
manifest and reserves space in the PE file for
the full strong name signature. The real public key must be
stored while the assembly is built so
that other assemblies that reference this assembly can
obtain the key to store in their own assembly
reference.
√ Because the assembly does not have a valid strong name
signature, the verification of
that signature must be turned off. You can do this by using
the –Vr option with the
Strong Name tool.The following example turns off
verification for an assembly called
myAssembly.dll.
Sn –Vr myAssembly.dll

√ Just before shipping, you submit the assembly to your
organization's signing authority
for the actual strong name signing using the –R option with
the Strong Name tool.
The following example signs an assembly called
myAssembly.dll with a strong name
using the sgKey.snk key pair.
Sn -R myAssembly.dll sgKey.snk

Is This Answer Correct ?

14 Yes

3 No

Post New Answer View All Answers

Please Help Members By Posting Answers For Below Questions

What are the difference between static assemblies and dynamic assemblies?

648

What do you mean by windows authentication?

621

What are the advantage of remoting over web services?

571

Define proxy in .net remoting?

651

Types of compatabilities and explain them ?

2104

Explain how does assembly versioning in .net prevent dll hell?

630

Explain marshalling and its types in .net remoting

589

Difference between .net remoting versus distributed com?

660

Are you aware of containment and Aggregation ?

2782

What is a formatter in .net remoting?

668

What is the difference beween the registeractivatedservicetype() and registeractivatedclienttype()?

611

Explain how to perform remoting?

618

What do mean by remotable objects in .net remoting?

597

How can we call methods in remoting asynchronously?

618

When should we choose .net remoting over .net web services?

620