Hm, to nezní dobře, ale chtělo by to vyzkoušet na nějaké clickonce aplikaci.

To co se ale píše na wikipedii je, že jde o technologii podobnou jako Java Web Start, a navíc

ClickOnce-deployed applications are considered 'low impact', in that they are installed per-user, not per-machine. No administrator privileges are required to install one of these applications. Each ClickOnce application is isolated from the other. This means one ClickOnce application is not able to 'break' another.

ClickOnce employs CAS (Code Access Security) to ensure that system functions cannot be called by a ClickOnce application from the web, ensuring the security of data and the client system in general.