A Survey on Application Sandboxing Techniques

Rauti Sampsa; Lauren Samuel; Leppänen Ville
A Survey on Application Sandboxing Techniques

Rauti Sampsa
Lauren Samuel
Leppänen Ville
Katso/Avaa
Lataukset: 

doi:10.1145/3134302.3134312
URI
https://dl.acm.org/citation.cfm?doid=3134302.3134312
Näytä kaikki kuvailutiedot
Julkaisun pysyvä osoite on:
https://urn.fi/URN:NBN:fi-fe2021042717954
Tiivistelmä

The principle of least privilege states that components in a system should only be allowed to perform
actions that are required for them to function. The wish to limit what programs can access has given rise to
a set of application-level sandboxing solutions. In this paper, we survey recent research on application-level
sandboxing. We discuss the properties of the major implementations and highlight the key differences between
them. In addition, we highlight how recent features in mainline Linux kernel have altered the sandboxing
landscape.

Kokoelmat