Microsoft Silverlight restricts cross-zone, cross-domain, and cross-scheme URL access for security reasons. The following table summarizes these rules:
| Downloader object | Media, images, ASX | XAML files, Font files | Streaming media |
Allowed schemes | HTTP, HTTPS | HTTP, HTTPS, FILE | HTTP, HTTPS, FILE | HTTP |
Cross-scheme access | No | No | No | Not from HTTPS |
Cross-Web domain access | No | If not HTTPS | No | Yes |
Cross-zone access (Windows) | No | No | No | No |
Cross-zone access (Macintosh) | No | Yes | No | Yes |
Redirection allowed | Same domain (Firefox/Safari only) | Same domain | Same domain | No |
For more detailed information on Silverlight HTTPS support, visit the Silverlight URL Access Policy on MSDN, which is located at http://msdn.microsoft.com/en-us/library/bb820909.aspx.
Note: It is possible to use a C1 control with HTTPS; however, the image tiles must come from the same domain as the Silverlight application.