Author Topic: Microsoft Windows Sandbox: lightweight VM for running applications in isolation  (Read 4047 times)

0 Members and 1 Guest are viewing this topic.


  • Global Moderator
  • Hero Member
  • *****
  • Posts: 2931
Microsoft Windows Sandbox is lightweight desktop environment tailored for safely running applications in isolation.

How many times have you downloaded an executable file, but were afraid to run it? Have you ever been in a situation which required a clean installation of Windows, but didn’t want to set up a virtual machine?

At Microsoft we regularly encounter these situations, so we developed Windows Sandbox: an isolated, temporary, desktop environment where you can run untrusted software without the fear of lasting impact to your PC. Any software installed in Windows Sandbox stays only in the sandbox and cannot affect your host. Once Windows Sandbox is closed, all the software with all its files and state are permanently deleted.

Windows Sandbox has the following properties:

- Part of Windows – everything required for this feature ships with Windows 10 Pro and Enterprise. No need to download a VHD!

- Pristine – every time Windows Sandbox runs, it’s as clean as a brand-new installation of Windows

- Disposable – nothing persists on the device; everything is discarded after you close the application

- Secure – uses hardware-based virtualization for kernel isolation, which relies on the Microsoft’s hypervisor to run a separate kernel which isolates Windows Sandbox from the host

- Efficient – uses integrated kernel scheduler, smart memory management, and virtual GPU

Prerequisites for using the feature:

- Windows 10 Pro or Enterprise Insider build 18305 or later
- AMD64 architecture
- Virtualization capabilities enabled in BIOS
- At least 4GB of RAM (8GB recommended)
- At least 1 GB of free disk space (SSD recommended)
-  At least 2 CPU cores (4 cores with hyperthreading recommended)

Graphics virtualization is also supported:
This enables the Windows Sandbox VM to benefit from hardware accelerated rendering, with Windows dynamically allocating graphics resources where they are needed across the host and guest. The result is improved performance and responsiveness for apps running in Windows Sandbox, as well as improved battery life for graphics-heavy use cases.

To take advantage of these benefits, you’ll need a system with a compatible GPU and graphics drivers (WDDM 2.5 or newer). Incompatible systems will render apps in Windows Sandbox with Microsoft’s CPU-based rendering technology.

More information:

Microsoft Windows Sandbox
« Last Edit: December 20, 2018, 01:30:39 PM by JeGX »