"Pre-emptive answer to the "view-source" crowd: you can use .NET
Reflector to look at the source code of a compiled binary. If it is
obfuscated, you will enjoy reading that as much as you would enjoy
"Embedding the CIL on the browser would create isolated
execution environments for each page (AppDomain in ECMA parlance)
and sandbox the execution system.
"The security model exposed by Silverlight exposes exactly what
is needed to go beyond a language-neutral runtime. The security
model distinguished between untrusted code which is subject to
verification, strict requirements on what it can do and limits what
they can do from "platform" code that is trusted.
"Trusted platform code is granted special permissions that
untrusted code is not given. The runtime enforces that no untrusted
code can call into any security sensitive and protected areas."