Earlier we have considered various kinds of attacks which
can be carried out using Silverlight applications. For prevention of such
attacks special safety measures which are called "Crossdomain Client
Access Policy" exist. Let us consider how it works.
The main idea is that applications any accesses to data
which are out of the domain from Silverlight are forbidden by default.
It is possible to present it schematically as follows.
Figure 3: The cross-domain access
Such restriction guarantees that no other applications from
other domains can access to a server.
It is important that this restriction is implemented at
Silverlight level, e.g. Silverlight Runtime, to ensure the functionality of
this mechanism. For Silverlight developers such an approach means that at the
access to a server from the application from other domain a SecurityException
will be thrown. This restriction extends not only to web-services but also to
any other data which we try to receive from Silverlight applications (for
example, a simple XML-file).