Definithing > sandbox

sandbox

A security measure in the Java development environment. The sandbox is a set of rules that are used when creating an applet that prevents certain functions when the applet is sent as part of a Web page. When a browser requests a Web page with applets, the applets are sent automatically and can be executed as soon as the page arrives in the browser. If the applet is allowed unlimited access to memory and operating system resources, it can do harm in the hands of someone with malicious intent. The sandbox creates an environment in which there are strict limitations on what system resources the applet can request or access. Sandboxes are used when executable code comes from unknown or untrusted sources and allow the user to run untrusted code safely.

The Java sandbox relies on a three-tiered defense. If any one of these three elements fails, the security model is completely compromised and vulnerable to attack:

byte code verifier — This is one way that Java automatically checks untrusted outside code before it is allowed to run. When a Java source program is compiled, it compiles down to platform-independent Java byte code, which is verified before it can run. This helps to establish a base set of security guarantees.
applet class loader — All Java objects belong to classes, and the applet class loader determines when and how an applet can add classes to a running Java environment. The applet class loader ensures that important elements of the Java run-time environment are not replaced by code that an applet tries to install.
security manager — The security manager is consulted by code in the Java library whenever a dangerous operation is about to be carried out. The security manager has the option to veto the operation by generating a security exception.

Read Also:
  • SandForce SSD

    SandForce is a line of SSD (solid state disk) processors and controllers sold by the company of the same name to partners that build and sell complete SSDs. The California-based SandForce’s SSD processors feature the company’s proprietary DuraClass technology, a collection of NAND flash management features that includes DuraWrite (which reduces write amplification), RAISE (Redundant […]

  • Sandy Bridge

    Sandy Bridge is the codename for Intel’s second-generation Intel Core processor family. Sandy Bridge processors are distinguished from previous-generation Intel processors by featuring all cores – including graphics – on a single chip, being manufactured using Intel 32nm (nanometer) die shrink fabrication process technology, and featuring Intel Turbo Boost 2.0 for increased performance on an […]

  • Sans Serif

    )Pronounced SAN-SERR-if. A category of typefaces that do not use serifs, small lines at the ends of characters. Popular sans serif fonts include Helvetica, Avant Garde, Arial, and Geneva. Serif fonts include Times Roman, Courier, New Century Schoolbook, and Palatino. According to most studies, sans serif fonts are more difficult to read. For this reason, […]

  • SATA III - SATA Revision 3.x

    SATA III, or SATA Revision 3.x, is the next set of specifications following the original SATA and SATA II storage interface specifications. SATA III doubles the maximum data transfer rate for previous Serial ATA storage interface specifications from 3 to 6 Gigabits per second (6 Gb/s), enabling faster data transfer speeds between storage units, hard […]

  • satellite broadband

    Satellite broadband offers two-way Internet access via satellites. Your computer, through a special satellite modem, broadcasts requests to a satellite dish that sits on top of your home or business. The dish then sends and receives signals from satellites that orbit some 22,000 miles above the equator. As long as your dish maintains a clear […]

Disclaimer: sandbox definition / meaning should not be considered complete, up to date, and is not intended to be used in place of a visit, consultation, or advice of a legal, medical, or any other professional. All content on this website is for informational purposes only.