Slashdot Mirror

← Back to Stories (view on slashdot.org)

2010 Will Be the Year of Sandboxing Apps

Posted by timothy on from the layers-within-layers dept.

Trailrunner7 writes "In a guest editorial on Threatpost, Mac hacker and security researcher Dino Dai Zovi writes that 2010 will be the year that software vendors get religion about sandboxing untrusted data in desktop apps. 'Instead of the usual top ten lists that are all-too-common with predictions for the new year, I have just one: 2010 will be the year of desktop applications handling untrusted data in sandboxed processes, and it will be about time. The largest Internet security threats now arrive through malicious web pages or e-mail attachments. This is because attackers are opportunistic and these are the weakest links especially because they easily pass through every firewall. Security is not and never was about SYN packets, it is about data: the software attack surface that attacker-controlled data interacts with and what sensitive data the attacker can get a hold of if they can exploit vulnerabilities in that software.'"

2 of 203 comments (clear)

  1. Beats waiting on lower computer prices... by ibsteve2u · · Score: 0, Offtopic

    About time...I was getting the impression that the solution was going to be $20 netbooks...use one to browse the web, it gets contaminated, and you throw it away and get a new one. Not very efficient, resource-wise.

    --
    Orwell: "In a Time of Universal Deceit, telling the Truth is a Revolutionary Act"
  2. This is the year of wishes being predicitons by spun · · Score: 1, Offtopic

    And I predict this will be the year of 'Spun getting freaky with Kari Byron of MythBusters.'

    --
    - None can love freedom heartily, but good men; the rest love not freedom, but license. -- John Milton