SlideShare a Scribd company logo

Sandbox

Download as PPTX, PDF
A
ayush_nitt

Sandboxing creates confined execution environments for running untrusted programs. It works by restricting programs' access to system files and resources to minimize risks if the program misbehaves. Examples include sandboxing web pages in browsers, PDFs in Adobe Reader, and mobile apps. Sandboxes can detect unknown viruses with low false alarms and allow testing malware safely. Virtual machines and tools like Sandboxie provide sandboxing for any program. Without sandboxing, hostile programs would have unlimited access to users' computers.

Technology
1 of 16
Downloaded 454 times
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
SANDBOX TECHNOLOGY Running Untrusted Application Code Rohit Jain Ayush Gupta
INDEX • What is Sandbox? • How does it work? • Features ,Types & Examples • How to Sandbox any program • W/O Sandbox • Virus scanner VS Sandbox • Summary
The term security always plays an important role in our lives ,where it is the age of computers so security plays an even bigger role. The latest and most sophisticated technology emerged over the years is Sand Box technology.
INTRODUCTION Sandboxing is a popular technique for creating confined execution environments, which could be used for running untrusted programs.
RUNNING UNTRUSTED CODE • We often need to run buggy/untrusted code: –programs from untrusted Internet sites •toolbars, viewers, codecs for media player –old or insecure applications: ghost view, outlook –legacy softwares • Goal: if application “misbehaves,” kill it.
FEATURES OF SANDBOX • User friendly It can detect unknown viruses with a minimal risk of false alarms. • Provides a platform to test malwares and other risky piece of codes. • Much of the code your devices run every day is already sandboxed for your protection
EXAMPLES • Web Pages: Your browser essentially sandboxes the web pages it loads. Web pages can run JavaScript code, but this code can’t do anything it wants — if JavaScript code tries to access a local file on your computer, the request will fail. • PDFs and Other Documents: Adobe Reader now runs PDF files in a sandbox, preventing them from escaping the PDF viewer and tampering with the rest of your computer. Microsoft Office also has a sandbox mode to prevent unsafe macros from harming your system.
EXAMPLES • Mobile Apps: Mobile platforms run their apps in a sandbox. Apps for iOS, Android, and Windows 8 are restricted from doing many of the things standard desktop applications can do. • Windows Programs: User Account Control functions as a bit of a sandbox, essentially restricting Windows desktop applications from modifying system files without first asking you permission. User Account Control just restricts access to system files and system- wide settings.
VIRUS SCANNERS VS SANDBOX • Sand Box scans the actions the virus code takes and not the name or characteristics of the virus. where the virus scanners have can only inform you and remove the type of virus you have . • Sandbox cannot replace anti-virus scanners as identification, disinfection and removal of viruses can only be done by virus scanners. • Both work complementary to each others for providing a fully secured environment .
HOW TO SANDBOX ANY PROGRAM • Virtual Machines: A virtual machine program like VirtualBox or VMware creates virtual hardware devices that it uses to run an operating system. This entire operating system is essentially sandboxed, as it doesn’t have access to anything outside of the virtual machine. • Using other tools: Sandboxie, Bufferzone
WITHOUT SANDBOX ? If the sandbox agent does not protect your computer, hostile applets could access all the files and resources that are available on your computer. Recently corporate networks and computers connects to the internet have been attacked and have reported damages from illegal access from the outside. Malicious mobile code (active x, java, vb script as well as other executables ) is increasingly being used to issue these attacks. without sophisticated knowledge like sandbox the rate of threats increases enormously.
Sandbox
TYPES OF APPLICATION SANDBOXES • Type A: OS enhancement based: Sandboxie, Buffer Zone Pro etc. • Type B: Master/slave model: Adobe ReaderX, Chrome browser
TYPE A Examples: Sand boxie (available since 2006), BufferZone • Custom kernel driver modifies Windows behavior, so that change to protected system components is prevented • Use cases: Most of such sandboxes are used for controlled execution of applications
TYPE B •Example: Google Chrome ,Adobe Reader •Slave is confined using OS access control facilities •Master mediates access to resources •Use case: protect the application from exploitation
SUMMARY • Sandboxing is a tried and true technique for running risky applications or visiting potentially dangerous web sites. • Sanbox is vulnerable. • Security should always be multi-layered, so you should not rely on the sandboxed environment, by itself, to provide complete protection.

More Related Content

PPTX
malware analysis
20CS201AkashR
 
PPT
Sandbox Technology in AntiVirus
Ashish Gautam
 
PPTX
Dhcp server configuration
UttamAgarwal9
 
PPTX
Secure communication
Tushar Swami
 
PDF
Virtual box
Mohd Tousif
 
PPTX
Understanding android security model
Pragati Rai
 
PDF
[9] Firewall.pdf
lamtran367679
 
PPTX
Kali linux and hacking
AbdullahDanish8
 
malware analysis
20CS201AkashR
 
Sandbox Technology in AntiVirus
Ashish Gautam
 
Dhcp server configuration
UttamAgarwal9
 
Secure communication
Tushar Swami
 
Virtual box
Mohd Tousif
 
Understanding android security model
Pragati Rai
 
[9] Firewall.pdf
lamtran367679
 
Kali linux and hacking
AbdullahDanish8
 

What's hot (20)

PPTX
Honeypots
SARANYA S
 
PPT
Silverlight
BiTWiSE
 
PDF
IOT Security
Sylvain Martinez
 
PDF
Cloud Security: A New Perspective
Wen-Pai Lu
 
PPTX
Cloud security ppt
Venkatesh Chary
 
PPTX
Chap 6 cloud security
Raj Sarode
 
PPT
Intrusion detection system ppt
Sheetal Verma
 
PPTX
Five Major Types of Intrusion Detection System (IDS)
david rom
 
PPT
IDS and IPS
Santosh Khadsare
 
PPTX
Cloud security Presentation
Ajay p
 
PPTX
Sandboxing
Lan & Wan Solutions
 
PPT
DDoS Attack PPT by Nitin Bisht
Nitin Bisht
 
PPTX
cloud computing ppt
himanshuawasthi2109
 
PPTX
Virtualization security threats in cloud computing
Nitish Awasthi (anitish_225)
 
PPTX
Network security ppt
OECLIB Odisha Electronics Control Library
 
PPT
Wireless security presentation
Muhammad Zia
 
PPTX
Packet sniffers
Kunal Thakur
 
PDF
Evolution of Cloud Computing
NephoScale
 
PPT
Cloud deployment models
Ashok Kumar
 
PPTX
Ethical hacking : Its methodologies and tools
chrizjohn896
 
Honeypots
SARANYA S
 
Silverlight
BiTWiSE
 
IOT Security
Sylvain Martinez
 
Cloud Security: A New Perspective
Wen-Pai Lu
 
Cloud security ppt
Venkatesh Chary
 
Chap 6 cloud security
Raj Sarode
 
Intrusion detection system ppt
Sheetal Verma
 
Five Major Types of Intrusion Detection System (IDS)
david rom
 
IDS and IPS
Santosh Khadsare
 
Cloud security Presentation
Ajay p
 
Sandboxing
Lan & Wan Solutions
 
DDoS Attack PPT by Nitin Bisht
Nitin Bisht
 
cloud computing ppt
himanshuawasthi2109
 
Virtualization security threats in cloud computing
Nitish Awasthi (anitish_225)
 
Network security ppt
OECLIB Odisha Electronics Control Library
 
Wireless security presentation
Muhammad Zia
 
Packet sniffers
Kunal Thakur
 
Evolution of Cloud Computing
NephoScale
 
Cloud deployment models
Ashok Kumar
 
Ethical hacking : Its methodologies and tools
chrizjohn896
 
Ad

Viewers also liked (6)

PPT
Ch31
Wayne Jones Jnr
 
PPTX
Security in Data Communication and Networking
Zahidul Hossain
 
PPT
Lecture 8 mail security
rajakhurram
 
PPTX
Kerberos Authentication Protocol
Bibek Subedi
 
PPT
Email security
Indrajit Sreemany
 
PPTX
Email security - Netwroking
Salman Memon
 
Ch31
Wayne Jones Jnr
 
Security in Data Communication and Networking
Zahidul Hossain
 
Lecture 8 mail security
rajakhurram
 
Kerberos Authentication Protocol
Bibek Subedi
 
Email security
Indrajit Sreemany
 
Email security - Netwroking
Salman Memon
 
Ad

Similar to Sandbox (20)

PPTX
Sandboxing - Malware detection.pptx
ArshadFarhad4
 
PPTX
Rafal Wojtczuk - Endpoint security via Application sandboxing and virtualizat...
DefconRussia
 
PPTX
Penetration Testing ethical pen testing.pptx
okhitab
 
PPT
Auto sanbox technology a complete overview
William hendric
 
PPT
Making the case for sandbox v1.1 (SD Conference 2007)
Dinis Cruz
 
PDF
Derbycon Bromium Labs: Sandboxes
Bromium Labs
 
PPTX
Sandbox detection: leak, abuse, test - Hacktivity 2015
Zoltan Balazs
 
PDF
Sandbox Testing: Enhancing Security and Reliability in Software Development
Shubham Joshi
 
PPT
Blackhat EU 2011 - Practical Sandboxing
Tom Keetch
 
PPT
Hack In Paris 2011 - Practical Sandboxing
Tom Keetch
 
PPTX
CS155 Computer Security at Stanford University
Rick Patterson
 
PPTX
Application Explosion How to Manage Productivity vs Security
Lumension
 
PPT
Google chrome sandbox
Nephi Johnson
 
PDF
Thick Application Penetration Testing - A Crash Course
NetSPI
 
PDF
Sandboxing
NSConclave
 
PPT
ch03Threat Modeling - Locking the Door to Vulnerabilities.ppt
gealehegn
 
PDF
Experts Live Europe 2017 - Best Practices to secure Windows 10 with already i...
Alexander Benoit
 
PPTX
Application Whitelisting - Complementing Threat centric with Trust centric se...
Osama Salah
 
PPTX
Fortinet sandboxing
Nick Straughan
 
PDF
How to Help Your Customers Protect Themselves from Ransomware Attacks
Solarwinds N-able
 
Sandboxing - Malware detection.pptx
ArshadFarhad4
 
Rafal Wojtczuk - Endpoint security via Application sandboxing and virtualizat...
DefconRussia
 
Penetration Testing ethical pen testing.pptx
okhitab
 
Auto sanbox technology a complete overview
William hendric
 
Making the case for sandbox v1.1 (SD Conference 2007)
Dinis Cruz
 
Derbycon Bromium Labs: Sandboxes
Bromium Labs
 
Sandbox detection: leak, abuse, test - Hacktivity 2015
Zoltan Balazs
 
Sandbox Testing: Enhancing Security and Reliability in Software Development
Shubham Joshi
 
Blackhat EU 2011 - Practical Sandboxing
Tom Keetch
 
Hack In Paris 2011 - Practical Sandboxing
Tom Keetch
 
CS155 Computer Security at Stanford University
Rick Patterson
 
Application Explosion How to Manage Productivity vs Security
Lumension
 
Google chrome sandbox
Nephi Johnson
 
Thick Application Penetration Testing - A Crash Course
NetSPI
 
Sandboxing
NSConclave
 
ch03Threat Modeling - Locking the Door to Vulnerabilities.ppt
gealehegn
 
Experts Live Europe 2017 - Best Practices to secure Windows 10 with already i...
Alexander Benoit
 
Application Whitelisting - Complementing Threat centric with Trust centric se...
Osama Salah
 
Fortinet sandboxing
Nick Straughan
 
How to Help Your Customers Protect Themselves from Ransomware Attacks
Solarwinds N-able
 

Recently uploaded (20)

PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
PDF
KodekX | Application Modernization Development
KodekX
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PDF
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PPTX
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
PPTX
MYSQL Presentation for SQL database connectivity
Swati270511
 
PDF
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
PDF
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
PDF
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
PPTX
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
KodekX | Application Modernization Development
KodekX
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Build a system with the filesystem maintained by OSTree @ COSCUP 2025
Jian-Hong Pan
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
VMware vSphere Foundation How to Sell Presentation-Ver1.4-2-14-2024.pptx
blackmambaettijean
 
MYSQL Presentation for SQL database connectivity
Swati270511
 
How UI/UX Design Impacts User Retention in Mobile Apps.pdf
SynapseIndia
 
Spectral efficient network and resource selection model in 5G networks
IAESIJAI
 
Empathic Computing: Creating Shared Understanding
Mark Billinghurst
 
20250228 LYD VKU AI Blended-Learning.pptx
DatVoNgoc
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
CIFDAQ's Market Insight: SEC Turns Pro Crypto
CIFDAQ
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 

Sandbox

  • 2. INDEX • What is Sandbox? • How does it work? • Features ,Types & Examples • How to Sandbox any program • W/O Sandbox • Virus scanner VS Sandbox • Summary
  • 3. The term security always plays an important role in our lives ,where it is the age of computers so security plays an even bigger role. The latest and most sophisticated technology emerged over the years is Sand Box technology.
  • 4. INTRODUCTION Sandboxing is a popular technique for creating confined execution environments, which could be used for running untrusted programs.
  • 5. RUNNING UNTRUSTED CODE • We often need to run buggy/untrusted code: –programs from untrusted Internet sites •toolbars, viewers, codecs for media player –old or insecure applications: ghost view, outlook –legacy softwares • Goal: if application “misbehaves,” kill it.
  • 6. FEATURES OF SANDBOX • User friendly It can detect unknown viruses with a minimal risk of false alarms. • Provides a platform to test malwares and other risky piece of codes. • Much of the code your devices run every day is already sandboxed for your protection
  • 7. EXAMPLES • Web Pages: Your browser essentially sandboxes the web pages it loads. Web pages can run JavaScript code, but this code can’t do anything it wants — if JavaScript code tries to access a local file on your computer, the request will fail. • PDFs and Other Documents: Adobe Reader now runs PDF files in a sandbox, preventing them from escaping the PDF viewer and tampering with the rest of your computer. Microsoft Office also has a sandbox mode to prevent unsafe macros from harming your system.
  • 8. EXAMPLES • Mobile Apps: Mobile platforms run their apps in a sandbox. Apps for iOS, Android, and Windows 8 are restricted from doing many of the things standard desktop applications can do. • Windows Programs: User Account Control functions as a bit of a sandbox, essentially restricting Windows desktop applications from modifying system files without first asking you permission. User Account Control just restricts access to system files and system- wide settings.
  • 9. VIRUS SCANNERS VS SANDBOX • Sand Box scans the actions the virus code takes and not the name or characteristics of the virus. where the virus scanners have can only inform you and remove the type of virus you have . • Sandbox cannot replace anti-virus scanners as identification, disinfection and removal of viruses can only be done by virus scanners. • Both work complementary to each others for providing a fully secured environment .
  • 10. HOW TO SANDBOX ANY PROGRAM • Virtual Machines: A virtual machine program like VirtualBox or VMware creates virtual hardware devices that it uses to run an operating system. This entire operating system is essentially sandboxed, as it doesn’t have access to anything outside of the virtual machine. • Using other tools: Sandboxie, Bufferzone
  • 11. WITHOUT SANDBOX ? If the sandbox agent does not protect your computer, hostile applets could access all the files and resources that are available on your computer. Recently corporate networks and computers connects to the internet have been attacked and have reported damages from illegal access from the outside. Malicious mobile code (active x, java, vb script as well as other executables ) is increasingly being used to issue these attacks. without sophisticated knowledge like sandbox the rate of threats increases enormously.
  • 13. TYPES OF APPLICATION SANDBOXES • Type A: OS enhancement based: Sandboxie, Buffer Zone Pro etc. • Type B: Master/slave model: Adobe ReaderX, Chrome browser
  • 14. TYPE A Examples: Sand boxie (available since 2006), BufferZone • Custom kernel driver modifies Windows behavior, so that change to protected system components is prevented • Use cases: Most of such sandboxes are used for controlled execution of applications
  • 15. TYPE B •Example: Google Chrome ,Adobe Reader •Slave is confined using OS access control facilities •Master mediates access to resources •Use case: protect the application from exploitation
  • 16. SUMMARY • Sandboxing is a tried and true technique for running risky applications or visiting potentially dangerous web sites. • Sanbox is vulnerable. • Security should always be multi-layered, so you should not rely on the sandboxed environment, by itself, to provide complete protection.