You are designing an ASP.NET 4 Web application that will integrate third-party components.
You need to minimize the security risks of using these components.
Which approach should you recommend?
A.
Apply role-based security with declarative checks.
B.
Store the components in the global assembly cache.
C.
Use the third-party components on a separate server.
D.
Use an appropriately permitted AppDomain for each component.
Explanation:
You can create application domains with a specific trust level and launch components within the application domain. The component will have only the privileges you grant to the trust level. In this scenario, you should configure a custom trust level that grants the component access to create files in the local folder without having other excessive privileges.