Uploaded byayush_nitt
PPTX, PDF56,543 views

Sandbox

Sandboxing creates confined execution environments for running untrusted programs. It works by restricting programs' access to system files and resources to minimize risks if the program misbehaves. Examples include sandboxing web pages in browsers, PDFs in Adobe Reader, and mobile apps. Sandboxes can detect unknown viruses with low false alarms and allow testing malware safely. Virtual machines and tools like Sandboxie provide sandboxing for any program. Without sandboxing, hostile programs would have unlimited access to users' computers.

Technology
In this document
Powered by AI

Introduction to Sandbox technology and its importance in running untrusted code securely.

Sandboxing creates safe execution environments for untrusted applications ensuring security.

The need for running buggy/untrusted code from the internet and legacy systems is essential for security.

User-friendly detection of unknown viruses and a testing platform for malware within low-risk environments.

Examples include web pages, PDFs, mobile apps, and Windows programs using sandbox technology for security.

Virus scanners remove viruses while sandboxes monitor behaviors, complementing each other for security.

Methods to sandbox programs including the use of virtual machines and specialized tools like Sandboxie.

Without sandboxing, computers are at higher risk from attacks through untrusted applications.

Different sandbox types including OS enhancements and master/slave models and their applications.

Examples of OS enhancement-based sandboxes like Sandboxie and their use in controlled execution.

Examples of master/slave model sandboxes like Google Chrome, mediating resource access.

Sandboxing is effective but should be part of a multi-layered security strategy.

Embed presentation

Downloaded 524 times
SANDBOX TECHNOLOGY Running Untrusted Application Code Rohit Jain Ayush Gupta
INDEX • What is Sandbox? • How does it work? • Features ,Types & Examples • How to Sandbox any program • W/O Sandbox • Virus scanner VS Sandbox • Summary
The term security always plays an important role in our lives ,where it is the age of computers so security plays an even bigger role. The latest and most sophisticated technology emerged over the years is Sand Box technology.
INTRODUCTION Sandboxing is a popular technique for creating confined execution environments, which could be used for running untrusted programs.
RUNNING UNTRUSTED CODE • We often need to run buggy/untrusted code: –programs from untrusted Internet sites •toolbars, viewers, codecs for media player –old or insecure applications: ghost view, outlook –legacy softwares • Goal: if application “misbehaves,” kill it.
FEATURES OF SANDBOX • User friendly It can detect unknown viruses with a minimal risk of false alarms. • Provides a platform to test malwares and other risky piece of codes. • Much of the code your devices run every day is already sandboxed for your protection
EXAMPLES • Web Pages: Your browser essentially sandboxes the web pages it loads. Web pages can run JavaScript code, but this code can’t do anything it wants — if JavaScript code tries to access a local file on your computer, the request will fail. • PDFs and Other Documents: Adobe Reader now runs PDF files in a sandbox, preventing them from escaping the PDF viewer and tampering with the rest of your computer. Microsoft Office also has a sandbox mode to prevent unsafe macros from harming your system.
EXAMPLES • Mobile Apps: Mobile platforms run their apps in a sandbox. Apps for iOS, Android, and Windows 8 are restricted from doing many of the things standard desktop applications can do. • Windows Programs: User Account Control functions as a bit of a sandbox, essentially restricting Windows desktop applications from modifying system files without first asking you permission. User Account Control just restricts access to system files and system- wide settings.
VIRUS SCANNERS VS SANDBOX • Sand Box scans the actions the virus code takes and not the name or characteristics of the virus. where the virus scanners have can only inform you and remove the type of virus you have . • Sandbox cannot replace anti-virus scanners as identification, disinfection and removal of viruses can only be done by virus scanners. • Both work complementary to each others for providing a fully secured environment .
HOW TO SANDBOX ANY PROGRAM • Virtual Machines: A virtual machine program like VirtualBox or VMware creates virtual hardware devices that it uses to run an operating system. This entire operating system is essentially sandboxed, as it doesn’t have access to anything outside of the virtual machine. • Using other tools: Sandboxie, Bufferzone
WITHOUT SANDBOX ? If the sandbox agent does not protect your computer, hostile applets could access all the files and resources that are available on your computer. Recently corporate networks and computers connects to the internet have been attacked and have reported damages from illegal access from the outside. Malicious mobile code (active x, java, vb script as well as other executables ) is increasingly being used to issue these attacks. without sophisticated knowledge like sandbox the rate of threats increases enormously.
TYPES OF APPLICATION SANDBOXES • Type A: OS enhancement based: Sandboxie, Buffer Zone Pro etc. • Type B: Master/slave model: Adobe ReaderX, Chrome browser
TYPE A Examples: Sand boxie (available since 2006), BufferZone • Custom kernel driver modifies Windows behavior, so that change to protected system components is prevented • Use cases: Most of such sandboxes are used for controlled execution of applications
TYPE B •Example: Google Chrome ,Adobe Reader •Slave is confined using OS access control facilities •Master mediates access to resources •Use case: protect the application from exploitation
SUMMARY • Sandboxing is a tried and true technique for running risky applications or visiting potentially dangerous web sites. • Sanbox is vulnerable. • Security should always be multi-layered, so you should not rely on the sandboxed environment, by itself, to provide complete protection.

More Related Content

PPTX
malware analysis
by20CS201AkashR
 
PPT
Sandbox Technology in AntiVirus
byAshish Gautam
 
PPTX
Spyware and rootkit
byNikhil Pandit
 
PPTX
Understanding android security model
byPragati Rai
 
PPTX
Veracrypt
byRUTVICHANGELA
 
PPT
Counter Measures Of Virus
byshusrusha
 
PPTX
Rootkits
byTharinduUdaraRanasin
 
PPTX
PowerShell Inside Out: Applied .NET Hacking for Enhanced Visibility by Satosh...
byCODE BLUE
 
malware analysis
by20CS201AkashR
 
Sandbox Technology in AntiVirus
byAshish Gautam
 
Spyware and rootkit
byNikhil Pandit
 
Understanding android security model
byPragati Rai
 
Veracrypt
byRUTVICHANGELA
 
Counter Measures Of Virus
byshusrusha
 
Rootkits
byTharinduUdaraRanasin
 
PowerShell Inside Out: Applied .NET Hacking for Enhanced Visibility by Satosh...
byCODE BLUE
 

What's hot

PPTX
Hand Gesture Recognition Using OpenCV Python
byArijit Mukherjee
 
PPTX
eye phone technology
byNaga Dinesh
 
PPT
Mobile Computing
bygaurav koriya
 
PPTX
Introduction to cloud computing
byJithin Parakka
 
PPTX
Finger reader
byyamini rayalu
 
PPTX
Wireless application protocol ppt
byOECLIB Odisha Electronics Control Library
 
PPT
Browser Security
byRoberto Suggi Liverani
 
PPTX
Bluetooth
bySamraiz Tejani
 
PPTX
Blockchain in cyber security
byPrateek Panda
 
PDF
Google glass ppt
byNidhin P Koshy
 
PPTX
final project ppt
bysaieshwar chellapuram
 
PPTX
Virtual mouse
byNikhil Mane
 
PPTX
Voice based email for blinds
byArjun AJ
 
PPTX
Graphical password authentication
byAsim Kumar Pathak
 
PPT
Money pad the future wallet
byLeelakh Sachdeva
 
PPTX
Atm using fingerprint
byAnIsh Kumar
 
PPT
Light tree
byJitendra31291
 
PPTX
Virtual Network Computing
byrojalina nanda
 
PPT
I mode ppt
bykondalarao7
 
PPTX
Iot and cloud computing
byeteshagarwal1
 
Hand Gesture Recognition Using OpenCV Python
byArijit Mukherjee
 
eye phone technology
byNaga Dinesh
 
Mobile Computing
bygaurav koriya
 
Introduction to cloud computing
byJithin Parakka
 
Finger reader
byyamini rayalu
 
Wireless application protocol ppt
byOECLIB Odisha Electronics Control Library
 
Browser Security
byRoberto Suggi Liverani
 
Bluetooth
bySamraiz Tejani
 
Blockchain in cyber security
byPrateek Panda
 
Google glass ppt
byNidhin P Koshy
 
final project ppt
bysaieshwar chellapuram
 
Virtual mouse
byNikhil Mane
 
Voice based email for blinds
byArjun AJ
 
Graphical password authentication
byAsim Kumar Pathak
 
Money pad the future wallet
byLeelakh Sachdeva
 
Atm using fingerprint
byAnIsh Kumar
 
Light tree
byJitendra31291
 
Virtual Network Computing
byrojalina nanda
 
I mode ppt
bykondalarao7
 
Iot and cloud computing
byeteshagarwal1
 

Viewers also liked

PPT
Ch31
byWayne Jones Jnr
 
PPTX
Security in Data Communication and Networking
byZahidul Hossain
 
PPT
Lecture 8 mail security
byrajakhurram
 
PPTX
Kerberos Authentication Protocol
byBibek Subedi
 
PPT
Email security
byIndrajit Sreemany
 
PPTX
Sandboxing
byLan & Wan Solutions
 
PPTX
Email security - Netwroking
bySalman Memon
 
Ch31
byWayne Jones Jnr
 
Security in Data Communication and Networking
byZahidul Hossain
 
Lecture 8 mail security
byrajakhurram
 
Kerberos Authentication Protocol
byBibek Subedi
 
Email security
byIndrajit Sreemany
 
Sandboxing
byLan & Wan Solutions
 
Email security - Netwroking
bySalman Memon
 

Similar to Sandbox

PPTX
Sandboxing - Malware detection.pptx
byArshadFarhad4
 
PPTX
Rafal Wojtczuk - Endpoint security via Application sandboxing and virtualizat...
byDefconRussia
 
PPTX
Penetration Testing ethical pen testing.pptx
byokhitab
 
PPT
Auto sanbox technology a complete overview
byWilliam hendric
 
PPT
Making the case for sandbox v1.1 (SD Conference 2007)
byDinis Cruz
 
PDF
Derbycon Bromium Labs: Sandboxes
byBromium Labs
 
PPTX
Sandbox detection: leak, abuse, test - Hacktivity 2015
byZoltan Balazs
 
PDF
Sandbox Testing: Enhancing Security and Reliability in Software Development
byShubham Joshi
 
PPT
Blackhat EU 2011 - Practical Sandboxing
byTom Keetch
 
PPT
Hack In Paris 2011 - Practical Sandboxing
byTom Keetch
 
PPTX
CS155 Computer Security at Stanford University
byRick Patterson
 
PPTX
Application Explosion How to Manage Productivity vs Security
byLumension
 
PPT
Google chrome sandbox
byNephi Johnson
 
PDF
Thick Application Penetration Testing - A Crash Course
byNetSPI
 
PDF
Sandboxing
byNSConclave
 
PPT
ch03Threat Modeling - Locking the Door to Vulnerabilities.ppt
bygealehegn
 
PDF
Experts Live Europe 2017 - Best Practices to secure Windows 10 with already i...
byAlexander Benoit
 
PPTX
Application Whitelisting - Complementing Threat centric with Trust centric se...
byOsama Salah
 
PPTX
Fortinet sandboxing
byNick Straughan
 
PDF
How to Help Your Customers Protect Themselves from Ransomware Attacks
bySolarwinds N-able
 
Sandboxing - Malware detection.pptx
byArshadFarhad4
 
Rafal Wojtczuk - Endpoint security via Application sandboxing and virtualizat...
byDefconRussia
 
Penetration Testing ethical pen testing.pptx
byokhitab
 
Auto sanbox technology a complete overview
byWilliam hendric
 
Making the case for sandbox v1.1 (SD Conference 2007)
byDinis Cruz
 
Derbycon Bromium Labs: Sandboxes
byBromium Labs
 
Sandbox detection: leak, abuse, test - Hacktivity 2015
byZoltan Balazs
 
Sandbox Testing: Enhancing Security and Reliability in Software Development
byShubham Joshi
 
Blackhat EU 2011 - Practical Sandboxing
byTom Keetch
 
Hack In Paris 2011 - Practical Sandboxing
byTom Keetch
 
CS155 Computer Security at Stanford University
byRick Patterson
 
Application Explosion How to Manage Productivity vs Security
byLumension
 
Google chrome sandbox
byNephi Johnson
 
Thick Application Penetration Testing - A Crash Course
byNetSPI
 
Sandboxing
byNSConclave
 
ch03Threat Modeling - Locking the Door to Vulnerabilities.ppt
bygealehegn
 
Experts Live Europe 2017 - Best Practices to secure Windows 10 with already i...
byAlexander Benoit
 
Application Whitelisting - Complementing Threat centric with Trust centric se...
byOsama Salah
 
Fortinet sandboxing
byNick Straughan
 
How to Help Your Customers Protect Themselves from Ransomware Attacks
bySolarwinds N-able
 

Recently uploaded

PDF
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
PDF
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
PDF
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PPTX
The Landscape of Computer Software Development Companies
byYash Singh
 
PDF
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
PDF
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
PDF
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
PDF
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
DOCX
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
PPTX
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PDF
Incident Response Planning with a Foundation Model
byKim Hammar
 
PDF
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
PDF
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 
Igniting the Future: Copilot trends, agentic transformation and product roadm...
byUni Systems S.M.S.A.
 
Vibe Coding vs. Spec-Driven Development [Free Meetup]
byHaim Michael
 
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
The Landscape of Computer Software Development Companies
byYash Singh
 
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
Ransomware_Resilience_Strategic_Playbook.pdf
byAfonso Henrique Rodrigues Alves
 
Zero Trust & Defense-in-Depth: The Future of Critical Infrastructure Security
byYasir Naveed Riaz
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
Top Cybersecurity Threats 2025 Guide by Sureshdas
byPrintersassist
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Empowering Productivity with Clever Prompts and Intelligent Agents
byUni Systems S.M.S.A.
 
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Ethics in AI - Artificial Intelligence Fundamentals.pptx
byemenyiblessing
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
Incident Response Planning with a Foundation Model
byKim Hammar
 
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
Recursive Self Improvement vs Continuous Learning
byBob Marcus
 

Sandbox

  • 1.
  • 2.
    INDEX • What isSandbox? • How does it work? • Features ,Types & Examples • How to Sandbox any program • W/O Sandbox • Virus scanner VS Sandbox • Summary
  • 3.
    The term securityalways plays an important role in our lives ,where it is the age of computers so security plays an even bigger role. The latest and most sophisticated technology emerged over the years is Sand Box technology.
  • 4.
    INTRODUCTION Sandboxing is apopular technique for creating confined execution environments, which could be used for running untrusted programs.
  • 5.
    RUNNING UNTRUSTED CODE •We often need to run buggy/untrusted code: –programs from untrusted Internet sites •toolbars, viewers, codecs for media player –old or insecure applications: ghost view, outlook –legacy softwares • Goal: if application “misbehaves,” kill it.
  • 6.
    FEATURES OF SANDBOX •User friendly It can detect unknown viruses with a minimal risk of false alarms. • Provides a platform to test malwares and other risky piece of codes. • Much of the code your devices run every day is already sandboxed for your protection
  • 7.
    EXAMPLES • Web Pages:Your browser essentially sandboxes the web pages it loads. Web pages can run JavaScript code, but this code can’t do anything it wants — if JavaScript code tries to access a local file on your computer, the request will fail. • PDFs and Other Documents: Adobe Reader now runs PDF files in a sandbox, preventing them from escaping the PDF viewer and tampering with the rest of your computer. Microsoft Office also has a sandbox mode to prevent unsafe macros from harming your system.
  • 8.
    EXAMPLES • Mobile Apps:Mobile platforms run their apps in a sandbox. Apps for iOS, Android, and Windows 8 are restricted from doing many of the things standard desktop applications can do. • Windows Programs: User Account Control functions as a bit of a sandbox, essentially restricting Windows desktop applications from modifying system files without first asking you permission. User Account Control just restricts access to system files and system- wide settings.
  • 9.
    VIRUS SCANNERS VSSANDBOX • Sand Box scans the actions the virus code takes and not the name or characteristics of the virus. where the virus scanners have can only inform you and remove the type of virus you have . • Sandbox cannot replace anti-virus scanners as identification, disinfection and removal of viruses can only be done by virus scanners. • Both work complementary to each others for providing a fully secured environment .
  • 10.
    HOW TO SANDBOXANY PROGRAM • Virtual Machines: A virtual machine program like VirtualBox or VMware creates virtual hardware devices that it uses to run an operating system. This entire operating system is essentially sandboxed, as it doesn’t have access to anything outside of the virtual machine. • Using other tools: Sandboxie, Bufferzone
  • 11.
    WITHOUT SANDBOX ? Ifthe sandbox agent does not protect your computer, hostile applets could access all the files and resources that are available on your computer. Recently corporate networks and computers connects to the internet have been attacked and have reported damages from illegal access from the outside. Malicious mobile code (active x, java, vb script as well as other executables ) is increasingly being used to issue these attacks. without sophisticated knowledge like sandbox the rate of threats increases enormously.
  • 13.
    TYPES OF APPLICATIONSANDBOXES • Type A: OS enhancement based: Sandboxie, Buffer Zone Pro etc. • Type B: Master/slave model: Adobe ReaderX, Chrome browser
  • 14.
    TYPE A Examples: Sand boxie(available since 2006), BufferZone • Custom kernel driver modifies Windows behavior, so that change to protected system components is prevented • Use cases: Most of such sandboxes are used for controlled execution of applications
  • 15.
    TYPE B •Example: GoogleChrome ,Adobe Reader •Slave is confined using OS access control facilities •Master mediates access to resources •Use case: protect the application from exploitation
  • 16.
    SUMMARY • Sandboxing isa tried and true technique for running risky applications or visiting potentially dangerous web sites. • Sanbox is vulnerable. • Security should always be multi-layered, so you should not rely on the sandboxed environment, by itself, to provide complete protection.