By default "ClickOnce" deployed applications run in a security sandbox provided by CLR Code Access Security. An application has the ability to do safe operations, such as displaying UI & same site network IO, but can not do unsafe things such as calling into unmanaged code or directly accessing the file system. This is very analogous to what javascript in an HTML page can do.