Namespace: System.Security.Policy

The System.Security.Policy namespace contains code groups, membership conditions, and evidence. These three types of classes are used to create the rules applied by the common language runtime security policy system. Evidence classes are the input to security policy and membership conditions are the switches; together these create policy statements and determine the granted permission set. Policy levels and code groups are the structure of the policy hierarchy. Code groups are the encapsulation of a rule and are arranged hierarchically in a policy level.

Members of System.Security.Policy Namespace

Classes

Class	Description
class AllMembershipCondition	Represents a membership condition that matches all code. This class cannot be inherited.
class ApplicationDirectory	Provides the application directory as evidence for policy evaluation. This class cannot be inherited.
class ApplicationDirectoryMembershipCondition	Determines whether an assembly belongs to a code group by testing its application directory. This class cannot be inherited.
class CodeGroup	Represents the abstract base class from which all implementations of code groups must derive.
class Evidence	Defines the set of information that constitutes input to security policy decisions. This class cannot be inherited.
class FileCodeGroup	Grants permission to manipulate files located in the code assemblies to code assemblies that match the membership condition. This class cannot be inherited.
class FirstMatchCodeGroup	Allows security policy to be defined by the union of the policy statement of a code group and that of the first child code group that matches. This class cannot be inherited.
class NetCodeGroup	Grants Web permission to the site from which the assembly was downloaded. This class cannot be inherited.
class PermissionRequestEvidence	Defines evidence that represents permission requests. This class cannot be inherited.
class PolicyException	The exception that is thrown when policy forbids code to run.
class PolicyLevel	Represents the security policy levels for the common language runtime. This class cannot be inherited.
class PolicyStatement	Represents the statement of a CodeGroup describing the permissions and other information that apply to code with a particular set of evidence. This class cannot be inherited.
class Site	Provides the Web site from which a code assembly originates as evidence for policy evaluation. This class cannot be inherited.
class SiteMembershipCondition	Determines whether an assembly belongs to a code group by testing the site from which it originated. This class cannot be inherited.
class StrongName	Provides the strong name of a code assembly as evidence for policy evaluation. This class cannot be inherited.
class StrongNameMembershipCondition	Determines whether an assembly belongs to a code group by testing its strong name. This class cannot be inherited.
class UnionCodeGroup	Represents a code group whose policy statement is the union of the current code group's policy statement and the policy statement of all its matching child code groups. This class cannot be inherited.
class Url	Provides the URL from which a code assembly originates as evidence for policy evaluation. This class cannot be inherited.
class UrlMembershipCondition	Determines whether an assembly belongs to a code group by testing its URL. This class cannot be inherited.
class Zone	Provides the security zone of a code assembly as evidence for policy evaluation. This class cannot be inherited.
class ZoneMembershipCondition	Determines whether an assembly belongs to a code group by testing its zone of origin. This class cannot be inherited.

Interfaces

Interface	Description
interface IIdentityPermissionFactory	Defines the method that creates a new identity permission.
interface IMembershipCondition	Defines the test to determine whether a code assembly is a member of a code group.