Microsoft just announced that Windows 10 19H1 will be equipped with a sandbox feature starting early in 2019. Windows Sandbox is an isolated, temporary, desktop environment where users can run untrusted software without the fear of negative effects on their machines, Microsoft said. Any software installed in Windows Sandbox stays only in the sandbox and cannot affect the host.
More about Windows Sandbox
The sandbox feature is planned to be part of Windows 10 Pro and Enterprise editions. It designed to create an isolated, temporary desktop environment.
Windows Sandbox can be described as a lightweight virtual machine that implements the technologies used in Windows Containers,Microsoft explained. In addition, Windows Sandbox utilizes a new piece of technology known as “integrated scheduler,” which allows the host to decide when the sandbox runs.
It has several important properties:
- Every time Windows Sandbox runs, it’s as clean as a brand-new installation of Windows, Microsoft claims;
- Nothing persists on the device; everything is discarded after the user closes the application;
- The feature uses hardware-based virtualization for kernel isolation, which relies on the Microsoft’s hypervisor to run a separate kernel which isolates Windows Sandbox from the host;
- The feature uses integrated kernel scheduler, smart memory management, and virtual GPU.
There are several prerequisites for using the feature:
- Windows 10 Pro or Enterprise build 18305 or later;
- AMD64 architecture;
- Virtualization capabilities enabled in BIOS;
- At least 4GB of RAM (8GB recommended);
- At least 1 GB of free disk space (SSD recommended);
- At least 2 CPU cores (4 cores with hyperthreading recommended).
Here’s how to enable and use Windows Sandbox.