Adobe Reader X Security Sandbox Expected to Come in Weeks
Cybersecurity
SHARE
Facebook X Pinterest WhatsApp

Adobe Reader X Security Sandbox Expected to Come in Weeks

Written By
Brian Prince
Brian Prince
Oct 18, 2010
2 minute read
eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More

Adobe Systems is making good on its promise to bring sandboxing to bear in Adobe Reader in the name of security.

The technology will be built into Adobe Reader X, which is scheduled to be released within 30 days. Known as “Protected Mode,” the technology is aimed at protecting Windows PCs, which are often the target of attackers.

“With this version, we have prioritized our activities to get the most effective protection to our users as fast as possible,” an Adobe spokesperson said. “Today, Adobe Reader for Windows represents the overwhelming majority of Adobe Reader downloads. Adobe is always carefully evaluating the threat landscape to determine the priorities and next steps in the security road map for our products.”

Sandboxing limits the privileges a program can run under, isolating that program from other programs on a computer. According to the company, PDF processing such as PDF and image parsing, JavaScript execution, font rendering and 3D rendering happens in the sandbox. Processes that need to perform some action outside the sandbox boundary must do so through a trusted proxy called a “broker process.” Adobe Protected Mode will be enabled by default.

“The Adobe Reader sandbox leverages the operating system’s security controls to constrain processes execution to the principle of least privilege,” blogged Kyle Randolph, senior security researcher on Adobe’s Secure Software Engineering team, Oct. 5. “Thus, processes that could be subject to an attacker’s control run with limited capabilities and must perform actions such as accessing files through a separate, trusted process.”

Other companies have also taken a sandboxing approach to improve security lately. For example, Microsoft added sandboxing to Office 2010, while Google brought sandboxing to bear in its Chrome browser as well as plans for the Chrome operating system.

“Adobe’s product security initiatives are focused on reducing both the frequency and the impact of security vulnerabilities,” the spokesperson said. “Adobe Reader Protected Mode represents an exciting new advancement in mitigating the impact of attempted attacks. Even if exploitable security vulnerabilities are found by an attacker, Adobe Reader Protected Mode will help prevent the attacker from writing files or installing malware on potential victims’ computers.”
Brian Prince
eWeek Logo

eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site's focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

facebook
linkedin
youtube
rss
x

Company

About us Contact us Advertise with us

Categories

Latest News Resources Artificial Intelligence Video Big Data & Analytics Cloud Networking

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

Terms of Service Privacy Policy California - Do Not Sell My Information