http://en.wikipedia.org/wiki/Sandbox_%2 ... ecurity%29
In computer security, a sandbox is a security mechanism for separating running programs. It is often used to execute untested code, or untrusted programs from unverified third-parties, suppliers, untrusted users and untrusted websites.....
The sandbox typically provides a tightly-controlled set of resources for guest programs to run in, such as scratch space on disk and memory. Network access, the ability to inspect the host system or read from input devices are usually disallowed or heavily restricted. In this sense, sandboxes are a specific example of virtualization.
I think this thread has about outlived its usefulness, as it's down to semantics. It's been interesting, but time to let it go -- unless there's any more actual, new material or ideas that haven't been discussed already. Any objection?
btw, if you want more interesting reading, go to
http://www.schneier.com, and search for "Clive Robinson"+castle ....... and "NickP+jail".
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2.24) Gecko/20111103 Firefox/3.6.24