1
Vote

Add optional encryption/decryption of the serialized expression trees.

description

The de/serialized expressions are foreign pieces of code and must be treated with extreme caution. The first line of defense I can think of is signing the XML documents with certificates that the executing site trusts.

The second would be to encrypt the expression too. Moreover I can imagine how some expressions (especially some constant expressions) may contain sensitive information that should be protected.

The same concern applies: from a SoC point of view I feel like this is a feature that does not necessarily belong to the serializer...

Again I am not going to regard this issue with a high priority.

comments