What Does Sandboxing Mean?

Sandboxing is a computer security term referring to when a program is set aside from other programs in a separate environment so that if errors or security issues occur, those issues will not spread to other areas on the computer. Programs are enabled in their own sequestered area, where they can be worked on without posing any threat to other programs.


Sandboxes can look like a regular operating environment, or they can be much more bare bones. Virtual machines are often used for what are referred to as runtime sandboxes.

Techopedia Explains Sandboxing

There are also ways to use sandboxing in applications. For example, questionable code can be used in a safe manner with proof-carrying code. A “proof” must remain in effect to ensure that the code is relatively safe to execute. This bears a very crude likeness to the keys involved in encryption to ensure that a trusted exchange channel is being met.

There are various other areas where a sandboxing layer can be established, such as a library set to enable sandboxing by intercepting calls. The library might also establish a sandboxing layer in the operating system kernel.

When using software that may not be trustworthy, it is essential to use it in a sandboxed area so that other software, files and applications are not compromised.


Related Terms

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…