possible new product

If it doesn't fit elsewhere, it goes here
Post Reply
asaens
Posts: 6
Joined: Thu Apr 28, 2011 3:42 pm

possible new product

Post by asaens » Thu Apr 28, 2011 3:47 pm

Here is the scenario ... a person is worried about security and has a computer (desktop/laptop) that is a regular computer except for a product we'll call SecureSandbox. SecureSandbox works like a sandboxing program in that the user sets up various sandboxes for different applications but when the user enters that sandbox a password is requested (keyed in or key file or both) and that password is used to encrypt all of the sandboxed area and files within the sandbox. Therefore the user can use the normal application and all files written by the application will be encrypted and unreadable by anyone that might gain access to the computer. There should be a user password and admin password so that the work area/sandbox/virtual area can be deleted if so desired. Otherwise normally the area remains with the encrypted data for future use. 2 main differences over Sandboxie is a password is required to use the secured data and all reading and writing of the data is decrypted or encrypted. A person that uses SecureSandbox could delete all the sandboxed areas and the computer should be nearly the same as it was when SecureSandbox was installed except for the usual maintenance the Windows operating system requires. A person could also delete the work area and the data is already encrypted and only needs for any links to those data files to be quickly written with random data to make the encrypted data unretrievable. I don't think I've seen an application that works exactly like this and there should be a market for it by people concerned about security.

Some people are concerned about encrypting the whole disk and others might be worried about creating a virtual disk and not enough information (information written to the registry) being secured. SecureSandbox makes everything secure without having to encrypted the whole disk or use a virtual computer such as VMWare Workstation or not enough data being encrypted with a product like TrueCrypt. The only problem I see is some applications don't work as fast within a sandboxed environment and the user must be convinced that the extra security more than offsets the small decrease in speed. That's about it. I'd be interested in purchasing a program like this if it was reasonably priced and didn't slow my computer or use too much memory. In addition, I wouldn't mind beta testing this program if your company decides to make something similar. Thanks.
Top
doktornotor
Posts: 205
Joined: Mon Apr 05, 2010 8:40 am

Post by doktornotor » Thu Apr 28, 2011 4:13 pm

Hmmm. Dunno but what is wrong with EFS? Right-click the sandbox folder, properties, advanced, there...
Top
Mike
Posts: 592
Joined: Mon Nov 16, 2009 1:27 pm

Post by Mike » Thu Apr 28, 2011 4:41 pm

asaens wrote:2 main differences over Sandboxie is a password is required to use the secured data and all reading and writing of the data is decrypted or encrypted.
I know you're describing an idea for a nice, complete solution, but if you're already using Sandboxie, it seems that this can roughly be accomplished by placing your sandboxes in TrueCrypt volumes. You can have a different Truecrypt volume for each user or each sandbox, if you like. Each volume would require a password to mount, and all data written to the volume would be encrypted. Without the password, sandboxed applications and data would be inaccessible.
asaens wrote:SecureSandbox makes everything secure without having to encrypted the whole disk or use a virtual computer such as VMWare Workstation or not enough data being encrypted with a product like TrueCrypt.
In the situation I described above, I don't think there's any more data that could possibly be encrypted. All sandbox data is contained in the sandbox folder.
doktornotor wrote:Dunno but what is wrong with EFS?
That should work too, although it provides less granular control over what data is accessible and when.
Top
asaens
Posts: 6
Joined: Thu Apr 28, 2011 3:42 pm

Post by asaens » Thu Apr 28, 2011 7:48 pm

okay, how do you put the data on another drive other than the default "C" drive?
Top
Mike
Posts: 592
Joined: Mon Nov 16, 2009 1:27 pm

Post by Mike » Fri Apr 29, 2011 7:08 am

To change the default location for all sandboxes, go to Sandbox > Set Container Folder in Sandboxie Control. Or, use the FileRootPath setting in sandboxie.ini, applied either globally or to individual sandboxes.

Also, welcome to the forum.

@tzuk: Fyi, the FileRootPath documentation doesn't yet reflect the fact that BoxRootFolder is deprecated.
Top
asaens
Posts: 6
Joined: Thu Apr 28, 2011 3:42 pm

Post by asaens » Sat Apr 30, 2011 1:49 pm

thanks for the info about relocating the default disk drive ... tried it and it worked. I also set up a TrueCrypt container and everything worked as expected but I still think a more streamlined program would have its appeal and people would buy it if it was marketed in the right direction.
Top
tzuk
Sandboxie Founder
Sandboxie Founder
Posts: 16076
Joined: Tue Jun 22, 2004 12:57 pm

Post by tzuk » Sat Apr 30, 2011 2:31 pm

Mike wrote:@tzuk: Fyi, the FileRootPath documentation doesn't yet reflect the fact that BoxRootFolder is deprecated.
Initially I didn't think it should, that feels to me like new stuff carrying baggage of old stuff. But I see the FileRootPath page does mention the BoxRootFolder setting so you're right and I revised it slightly.
tzuk
Top
Post Reply

Return to “Anything Else”

Who is online

Users browsing this forum: No registered users and 1 guest