![]() If a process P runs a child process Q in a sandbox, then Q’s privileges would typically be restricted to a subset of P’s. For example, creating and executing files and modifying system information such as certain registry settings and other control panel functions may be prohibited. A sandbox limits, or reduces, the level of access its applications have. Sandboxes are typically used when data (such as documents or executable code) arrives from an untrusted source. ![]() ![]() When Reader sandboxing is enabled, Reader assumes all PDFs are potentially malicious and confines any processing they invoke to the sandbox. In the context of Adobe Reader, the “untrusted program” is any PDF and the processes it invokes. ![]() For application developers, sandboxing is a technique for creating a confined execution environment for running untrusted programs. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |