Hello,
I have to develop a .NET C# application that supports plugins. I’ve found a lot of information on the internet and it doesn’t seem to be so hard.
I just have a specification that the Assemblies of the modules must be validated on the assembly level. When the late binding occurs and the assembly loads, the host application must be absolutely sure that:
- The Assembly wasn’t changed.
- The Assembly was indeed supplied by the company.
I read that it is possible to sign the assembly using a key, but as far as I understood, this would only certify that the assembly wasn’t changed.
What must be done in order to be sure of the Assemblies authenticity?
Any help would be greatly appreciated. Sincerely,