A Survey on Application Sandboxing Techniques



Lauren Samuel, Rauti Sampsa, Leppänen Ville

Rachev Boris, Smrikarov Angel

International Conference on Computer Systems and Technologies

New York, NY

2017

Proceedings of the 18th International Conference on Computer Systems and Technologies

ACM International Conference Proceedings Series

1369

141

148

8

978-1-4503-5234-5

DOIhttps://doi.org/10.1145/3134302.3134312

https://dl.acm.org/citation.cfm?doid=3134302.3134312

https://research.utu.fi/converis/portal/detail/Publication/28532802


The principle of least privilege states that components in a system should only be allowed to perform
actions that are required for them to function. The wish to limit what programs can access has given rise to
a set of application-level sandboxing solutions. In this paper, we survey recent research on application-level
sandboxing. We discuss the properties of the major implementations and highlight the key differences between
them. In addition, we highlight how recent features in mainline Linux kernel have altered the sandboxing
landscape.


Last updated on 2024-26-11 at 21:36