Browsing the Internet has become an absolutely necessary tool in today’s work environments. An information collection process can’t be thought anymore without the web. At the same time our computers are processing confidential and critical information like personal or company internal data. The immense benefit of the Internet comes along with constantly changing threats. The development of browser versions in the past years can be understood - besides all functional progress - as a constant race in the battle against various attack scenarios.
The virtual surf environment "Browser in the Box" has initially been developed by Sirrix on behalf of the German Federal Office for Information Security for use by all federal authorities. Now the solution is open for everyone and enables users to surf the Internet with confidence even when using most modern and comfortable web technologies without limitation despite otherwise usual advice.
On the basis of a “Browser-in-the-Box” concept a virtual machine is provided with a reduced operating system and a web browser encapsulated therein. Malware can’t thus penetrate the host operating system and a potential damage in the separated virtual machine will vanish with each start of the browser by returning to a certified starting point. All of that is fully transparent to the user.
In contrast to simple sandboxing methods provided by standard browsers "Browser in the Box" isolates all activities of the browser completely from the host operating system. Merely a single shared folder within the host is made accessible for a separate user account. This folder stores all persistent configuration data like favorites of the browser. Equally all downloaded files are initially stored in this folder and are only forwarded into the normal user accessible download folder after a malware scan.
Besides this extensive protection of the host system against any attacks from the Internet "Browser in the Box" prevents reliably any uploads of files into the Internet. Hence, the confidentiality of critical company or authority information is not already jeopardized by simply providing Internet access to its employees.
"Browser in the Box" provides thus, a cost efficient and carefree surf environment without any limitation in comfort. The expensive and complex usage of dedicated terminal servers as an alternative for secure surfing can be avoided. The performance impact is minimal for today’s computer architectures.