Skip to main content

Your Browser, In Anonymity And Safety - Browser Isolation

In the Internet, just as in the real world, there are places where you just don't go, if you want to stay alive and / or safe. Safety on the Internet starts with staying out of web sites where you don't belong, and hardening your browser when you surf web sites that you don't completely trust. Besides hardening your browser, by disabling scripts from untrusted web sites, browser isolation is a new and promising protection technique. We isolate our browsers using two alternate techniques - proxy servers and sandboxes.

A proxy server can be run locally (on your network), or remotely (on the Internet). When run remotely, and provided by a third party, it provides anonymity as well as security. Address traces, such as from a visitor log in our blogs, show visitors as the proxy server and no farther. The security provided by a proxy server is configurable - if all that you desire is anonymity, you can enable many proxy servers to pass browser content that isn't necessarily safe.

An extreme version of proxy servers is found in onion routing, where you surf (and do other things) using a cascading series of proxy servers between you and the target server.
  • You connect directly to proxy server A.
  • From proxy server A, you connect to proxy server B.
  • From proxy server B, you connect to proxy server C.
  • From proxy server C, you connect to your target.
  • As you feel the need, you may add proxy server D, E, and so on.
Do you see the layers of the onion?

A sandbox runs locally (on your computer), and provides complete security by isolating specific processes such as your browser from the rest of the operating system. Since a sandbox runs on your computer, it provides no anonymity. Visitor logs show the address of your computer (or your network).

One problem with proxy servers is that they involve a third computer (the proxy server) between your computer and the target computer (the remote server), and this makes surfing with a proxy slower than surfing without a proxy. You can surf unknown websites from a sandboxed browser, and enjoy the same speed as from a browser outside the sandbox, in safety (though not anonymity).

Virtual machines, which provide a complete copy of the operating system running as an application on your computer, are the most versatile sandbox. A lightweight virtual machine can be had as SandboxIE, which was originally developed to sandbox Internet Explorer, which is known for being unsafe. With a minimum amount of work, you can run other browsers, and other applications in general, from SandboxIE. With browser content that isn't necessarily safe, staying within the sandbox, your computer is safe.

If you want both anonymity and safety, you run a browser from within a sandbox, and surf through a proxy server from the sandboxed browser. This will be no slower than surfing directly within a proxy server, and no less safe than surfing directly using a browser inside the sandbox.

>> Top


Popular posts from this blog

Stats Components Are Significant, In Their Own Context

One popular Stats related accessory, which displays pageview information to the public, is the "Popular Posts" gadget.

Popular Posts identifies from 1 to 10 of the most popular posts in the blog, by comparing Stats pageview counts. Optional parts of the display of each post are a snippet of text, and an ever popular thumbnail photo.

Like many Stats features, blog owners have found imaginative uses for "Popular Posts" - and overlook the limitations of the gadget. Both the dynamic nature of Stats, and the timing of the various pageview count recalculations, create confusion, when Popular Posts is examined.

Help! I Can't See My Blog!

I just posted to my blog, so I know that it's there. I can tell others are looking at it. But I can't see it.

Well, the good news is you don't have a blog hijack or other calamity. Your blog is not gone.

Apparently, some ISPs are blocking *, or maybe have network configuration or infrastructure problems. You can access or you can access, but you can't access, or

You can't access them directly, that is. If you can access any free, anonymous proxy servers, though, you may be able to access your blog.

Note: You can use PKBlogs with the URL pre packaged. Here is the address of this post (with gratuitous line breaks to prevent the old post sidebar alignment problem):

And an additional URL, to provide to those suffering from this problem, would be the WordPress version of this post: