Question:
I cannot use the assembly ChilkatDotNet.dll on my production server as it requests the SkipVerification permission. My server is a shared hosting account and will not let me request that permission. Is that permission really necessary for the assembly to run? What can I do to make it run on my production server?
Answer:
The Chilkat .NET assembly is a mixed-mode assembly, meaning that it provides a managed API but internal to the component there is unmanaged code. (i.e. compiled to native code) Managed code can often run slower. Compression and encryption routines are especially poor choices for managed code. Such functions should be written using unmanaged code because of the security implications and need to directly manipulate structures in specific ways that encryption requires.
In addition, managed code is easy to decompile. Chilkat is not open-source, and our intellectual property would be at risk if the .NET component was provided as all-managed code.
For these two reasons, the Chilkat .NET component requires the SkipVerification permission, and this cannot be changed.
