ADAMS Bridge, ClickOnce, and Security

Owned by Mont Rothstein, created
Last updated: Feb 26, 2021 by Diane Hancock
2 min read

Foray ADAMS® Bridge allows Foray ADAMS® Web to interact with the user's computer. It manages exports and processing via 3rd party applications. This article covers the security and secure deployment of Foray ADAMS® Bridge.

ClickOnce

Foray ADAMS® Bridge is a ClickOnce application. This is an application that can be automatically downloaded from a website and that auto-updates, eliminating the need for an administrator to perform a local installation.

ClickOnce applications are installed per-user. They do not require administrative privileges to install. If multiple users share the same computer each will install and have a separate copy of the ClickOnce application.

Security

Foray ADAMS® Bridge is Authenticode signed so that it can't be modified or tampered with.

Communication with the server is over HTTPS keeping data transmitted private.

Deployment

For a ClickOnce application to be installed via Chrome or Edge, ClickOnce must be enabled. See: Adams Bridge downloads rather than installing

Limit ClickOnce Applications

If an organization doesn't wish to allow all ClickOnce applications then the ClickOnce Trust prompt registry settings can be used to limit where ClickOnce applcations can be installed from. ClickOnce applications can be enabled/disabled by internet zone and can be set to require Authenticode signing. See: How to: Configure the ClickOnce trust prompt behavior

Trusted Publishers

By adding the Authenticode certificate to the Trusted Publishers store on a computer you can prevent the user from being prompted to install the ClickOnce application and you can allow a ClickOnce application to be installed even though the zone is set to Disabled.

See: How to: Add a trusted publisher to a client computer for ClickOnce applications and Trusted Application Deployment overview

Further Reading

ClickOnce Deployment for Windows Forms

ClickOnce security and deployment

Secure ClickOnce applications

Trusted Application Deployment overview

How to: Add a trusted publisher to a client computer for ClickOnce applications

How to: Configure the ClickOnce trust prompt behavior

Related articles



 

© 2023 Foray, LLC - All Rights Reserved