From FISMApedia
Jump to: navigation, search

NIST SP 800-95

Sandbox - A system that allows an untrusted application to run in a highly controlled environment where the application's permissions are restricted to an essential set of computer permissions. In particular, an application in a sandbox is usually restricted from accessing the file system or the network. A widely used example of applications running inside a sandbox is a Java applet. (NIST ITL Bulletin, Security Implications of Active Content, March 2000, http://csrc.nist.gov/publications/nistbul/03-00.pdf)