Skip to main content

Cloud Sandbox

« Back to Glossary Index

In general, a sandbox is a computing environment in which a program or file can be executed in isolation; if a file contains malicious code, the code can be detected before the file has the chance to infect a computer or network. Sandboxes have long been used by software developers to test new programming code and they have become a critical component of advanced threat protection. Sandbox appliances generally sit in the data center and operate in TAP (Test Access Point) mode, which means that a file being tested is also sent on to its destination. If the sandbox detects malicious content, it sends an alert, but this can arrive too late. On the other hand, a cloud sandbox inspects internet traffic inline and executes programs in the cloud before it reaches its destination. It inspects files for all users everywhere, on the corporate network and off, there is no need to deploy sandboxes in dozens (or hundreds) of locations.