Managed virtual sandbox environment in the cloud
A safe box in the cloud that keeps issues and threats away from you
Use a sandbox specifically built to test and run legacy, suspicious, unknown, or contaminated software, do software experiments away from your production systems. Provide unobstructed Internet browsing without risking impacts on your IT environment.
Isolated and reliable solution to increase your IT protection
Whether assessing applications or malware, isolated SafeBox allows you to complete workloads without fear to disrupt other systems, data, or clients. Easy to setup environment with self-service management capabilities.
SafeBox is a SaaS solution with a potent PaaS component, so any of your SafeBoxes do not create infrastructure workloads or local performance issues for you.
Change is good, so any solution customizations you might need can be quickly brought to life by our experienced development team.
Reduce time and efforts needed to onboard and train IT staff due to intuitive and logically designed SafeBox interface, friendly to users of all skill levels.
SafeBox provides a secure, cloud-based test lab for product evaluation and pre-production software validation and certification. Protecting corporate IT infrastructure from malicious software and reducing the risk of data leaks and violations of IT Security policies. SafeBox allows for peace of mind when conducting pre-installation assessments for any software without the need for make-shift workarounds, thus reducing contamination and providing the functionality required.
A fully cloud-based environment with the highest degree of isolation from your infrastructure protects your company’s internal computers and networks from disruption, malware, and viruses. Using SafeBox, you receive a turn-key solution, so no security configuration or hardening is required on your end.
Easy and effective to access and operate from any location and device. Consequently, minimal technical prerequisites and training to adopt solutions are required. The minimum requirements of SafeBox are Internet access & a modern browser. No need to install any other applications or perform configurations to connect to SafeBox.
Thanks to the persistence of your SafeBoxes and their personalization and snapshot features, any setup and configuration work is retained for as long as you wish. Any data produced using SafeBox and your installed apps are kept permanently, too. If you want to return to any previous state of the SafeBox - including the very initial “fresh” one - simply revert it to a snapshot.
What is SafeBox?
SafeBox is a managed virtual Windows 10 and Linux Desktop-as-a-Service sandbox environment in the cloud, specifically built for non-standard workloads, software evaluation, and risk assessments, secure by isolation from your internal network and connected to the Internet.
For whom is SafeBox?
SafeBox is for all businesses, small or large, from all sectors and industries aiming to get a handle on shadow IT. Thanks to multi-tenancy and whitelabeling options, it is also a great addition to IT service providers' portfolio.
What are the risks SafeBox protects me from?
Since being detached from your internal network and devices and running on dedicated hardware, SafeBox protects you from contaminating your IT environment when running potentially insecure pieces of software. This prevents you from losing data, breaking compliance rules, or decreasing the performance of your IT environment.
However, SafeBox is not a lawless place, so it is not made to protect you from the law.
Why is SafeBox more secure than a local VM?
Because it runs in a remote datacenter with no connection to your machine other than the RDP stream shown in your browser, the browser itself adds another layer of isolation.
Apps running on a local VM could still escape this sandbox, e.g., via computer memory. Depending on the VM solution in place, they might be volatile instead of persistent, and data is not backed up.
SafeBox isolation adds another layer of protection to the software running in the safebox. SafeBoxes have internet connectivity , but at the same time the only way to access the SafeBox is through the SafeBox portal using the HTML5 WebSocket RDP in-browser client. SafeBoxes cannot be accessed from the internet.
Moving workloads into separate SafeBoxes provides better security control through isolation and separation compared to running multiple workloads on the same host. In a worst-case scenario, such an approach guarantees that penetrating one SafeBox's OS doesn't compromise other workloads and data in other SafeBoxes.
Also SafeBoxes are recyclable: you can have unlimited amount of state snapshots to roll back your SafeBox to any desired point in time.
Why isn’t an on-premise VDI solution better than SafeBox?
Although on-premise VDI solutions can be ring-fenced to provide good isolation, they are still part of your IT infrastructure. Proper configuration of such systems is paramount and requires skills and diligence on an ongoing basis to keep it secure.
Furthermore, operating your VDI comes at a significant run rate for hardware, software licenses, electricity and cooling, and maintenance manpower to keep the infrastructure healthy, create backups, and test.
With SafeBox, we take care of securing the solution, and everything needed is included in an affordable package. Your SafeBoxes and all their contents are backed up 48 hours in case of a disaster. You can create snapshots of your SafeBox’s state to return to previous states safely.
What sets SafeBox apart from other cloud DaaS vendors?
While most DaaS / cloud VDI providers aim to replace the common workplace to provide a “cloudified” office PC by deeply integrating with common business processes and the company’s IT ecosystem to temporary and remote staff, SafeBox is specifically designed as a sandbox addition to the user’s existing corporate PC. We’re about containment of the darker side of IT.
Where is SafeBox hosted?
The SafeBox SaaS platform is hosted on Microsoft Azure in the EU West (Netherlands) region, with the SafeBoxes being hosted at Hetzner in Germany.
Which operating systems do you provide, and which software is installed on a SafeBox?
We ship 4 default images as part of an out-of-the-box experience:
- Windows 7 (based upon Windows Server 2008 build 7600)
- Windows 10 (based upon Windows Server 2019 build 1809)
- Windows 10 (based upon Windows Server 2016 build 1607)
- Linux Mint
We do not preload any unnecessary software and perform vanilla installations of the operating systems, so users have a clean slate to run their software.
Can I have my own OS images?
SafeBox optionally supports bring-your-own-image (BYOI) and bring-your-own-license (BYOL).
Simply provide your image file or license key to us, and the Apptimized team will make the image available to your organization or install the operating system using your key.
In the case of a Windows desktop OS there are a few things to consider:
- Your licensing agreement with Microsoft needs to allow for license mobility.
- In accordance with Microsoft’s requirements, we will run your image on a physically separate server.
A minimum monthly consumption will apply in BYOI and BYOL models.
How many SafeBoxes can I have?
There is no upper limit. However, if you have fluctuating demand and require specific response times, please contact us.
How many users and projects can I have?
There is no upper limit. Create as many users and projects to organize access to your SafeBoxes as you like. As we bill you per SafeBox, there no extra cost for users and projects.
Request a demo now and see SafeBox in action
Since our inception in 2003, Apptimized has supported hundreds of global customers across all sectors. Below is a sample of the companies who have benefited from our expertise.