This is something I've been thinking about. What if we could easily allow all pr... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

X-Istence on Jan 5, 2015 | parent | context | favorite | on: Hvdos, a simple DOS emulator based on the OS X Hyp...

This is something I've been thinking about. What if we could easily allow all programs to be sandboxed using virtualisation technology? Run your web browser or parts thereof inside of a VM so that any exploits are limited to just that VM.

transpute on Jan 5, 2015 [–]

Bromium does this for common apps (web, pdf, office) on Windows, e.g. each browser tab and HTTP request is a separate VM.

NickNameNick on Jan 5, 2015 | [–]

It also alerts if a process does something 'weird', it allows exploits to run in a sandbox and records what they do, so you can analyse it later.

Consider applying for YC's Spring batch! Applications are open till Feb 11.
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact