Microsoft .NET and Security Provided by High -Level Internet Protocols

Free registration required

Executive Summary

This paper describes a class of insecure .NET client applications, which avoid higher layer protocol protection through using a "Raw", send and receive API. The .NET Framework rests on many other Microsoft components, including the Windows Driver Model (WDM). This model supports four driver types, two of which were considered in this paper: protocol and miniport drivers. By compiling and executing client applications using the "Raw" sockets interface, it demonstrates that insecure clients can be written with minimal programming effort (lines of code).

  • Format: PDF
  • Size: 57.7 KB