Activation Security

As described in previous chapters, objects are exposed to clients either statically, by configuring a persistent registry with information about the server code the Service Control Manager launches to retrieve an object, or dynamically, through publishing an object, such as a class object via CoRegisterClassObject or a running object via IRunningObjectTable::Register. Accordingly, there are two aspects to activation security, one static (or automatic) form, and one dynamic form.

Activation security is automatically applied by the Service Control Manager of a particular computer. Upon receipt of a request to retrieve an object, the Service Control Manager checks the request against security information stored either within its registry or gathered dynamically from objects and stored within its internal tables.