In this chapter, you’ve learned how code-access security prevents a Visual Basic .NET application from performing a potentially harmful operation when run in a security zone—such as the Local Intranet—that has less than Full Trust. You have learned what permissions are allowed for each security zone. In addition, you’ve seen that a security exception will result if you attempt to perform an action—such as accessing a file—for which permission has not been granted. Finally, you’ve learned how to modify your code to use alternate actions that are permitted in the security zone from which you intend to run the application. For example, you learned how isolated storage can be used in place of a traditional file.

In Chapter 10, you’ll learn how to modify the security policy to grant your application special permissions so that it can perform all necessary actions when launched (or called) from any security zone. You’ll also learn how to create a deployment package containing the security policy updates, and how to deploy the security policy updates automatically across an enterprise.