Sandboxing Adoption in Open Source Ecosystems

Maysara Alhindi*, Joseph Hallett*

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

Abstract

Sandboxing mechanisms allow developers to limit how much access applications have to resources, following the least-privilege principle. However, it’s not clear how much and in what ways developers are using these mechanisms. This study looks at the use of Seccomp, Landlock, Capsicum, Pledge, and Unveil in all packages of four open-source operating systems. We found that less than 1% of packages directly use these mechanisms, but many more indirectly use them. Examining how developers apply these mechanisms reveals interesting usage patterns, such as cases where developers simplify their sandbox implementation. It also highlights challenges that may be hindering the widespread adoption of sandboxing mechanisms.
Original languageEnglish
Title of host publicationSESoS '24
Subtitle of host publicationProceedings of the 12th ACM/IEEE International Workshop on Software Engineering for Systems-of-Systems and Software Ecosystems
PublisherAssociation for Computing Machinery (ACM)
Pages13-20
Number of pages8
ISBN (Electronic)9798400705571
ISBN (Print) 979840070557
DOIs
Publication statusE-pub ahead of print - 6 Aug 2024
EventSESoS - ICSE 2024: 12th ACM/IEEE International Workshop on Software Engineering for Systems-of-Systems and Software Ecosystems - Lisbon, Portugal, Lisbon, Portugal
Duration: 14 Apr 202420 Apr 2024
Conference number: 12th
https://conf.researchr.org/home/icse-2024/sesos-2024

Workshop

WorkshopSESoS - ICSE 2024
Abbreviated titleSESoS
Country/TerritoryPortugal
CityLisbon
Period14/04/2420/04/24
Internet address

Bibliographical note

Publisher Copyright:
© 2024 Copyright is held by the owner/author(s).

Structured keywords

  • Cyber Security

Keywords

  • Sandboxing
  • Operating systems
  • Security Mechanisms
  • Software Ecosystems
  • Sandbox
  • Security and human factors

Fingerprint

Dive into the research topics of 'Sandboxing Adoption in Open Source Ecosystems'. Together they form a unique fingerprint.

Cite this