Sandboxing is a security method that isolates a programme or process from the rest of your system. Think of it like a sandbox in a playground: the software runs inside a contained space where it cannot interact with anything outside its boundaries.
When you run a programme in a sandbox, it operates under strict restrictions. It cannot access your hard drive, modify system files, read passwords, or interfere with other applications. If the sandboxed software is malicious or becomes compromised, the damage stays contained within the sandbox.
Common examples of sandboxing in everyday use include:
- Web browsers running each tab or extension in its own sandbox, so a crashed tab does not take down the entire browser.
- Windows Sandbox, a feature in Windows 10 and 11 that lets you run suspicious programmes in a temporary, isolated copy of Windows.
- Mobile operating systems like iOS and Android, which sandbox each application so apps cannot access each other's data or system files without permission.
When evaluating antivirus software or security tools, check whether they use sandboxing to test suspicious files. A good sandbox setup will let unknown software execute safely while blocking any attempts to harm your system. This is particularly useful if you regularly download files from untrusted sources or need to test software before committing to installation.