Using Windows Sandbox to Run Applications in an Isolated Environment
Another method you can use to restrict read access to Windows folders for specific apps is to use the newly introduced Windows Sandbox feature in Windows 10 version 1903 or later.
This feature allows you to run applications in an isolated environment separate from your primary system. That way, you can prevent those apps from accessing any folders or files outside of that environment.
To use this method, you need to perform the following steps:
- Make sure you have Windows 10 version 1903 or later, and that the Windows Sandbox feature is enabled on your system. If you haven’t already, you can enable it by following the instructions here.
- Open Windows Sandbox by typing Windows Sandbox in the Windows search box, and then click on the result.
- Wait until Windows Sandbox opens and displays a clean and fresh Windows desktop. This is an isolated environment that you can use to run applications that you want to restrict read access to.
- Copy or move the app you want to restrict read access to the Windows Sandbox environment. You can do this by dragging and dropping those apps from your main system into the Windows Sandbox window, or by using the Copy and Paste feature.
- Run the application you copied or moved to the Windows Sandbox environment. You can do this by double-clicking on the app’s icon, or by right-clicking on the app and selecting Run as administrator if needed.
- Now, you can use those apps in the Windows Sandbox environment without worrying about them being able to read the contents of any folder on your main system. This is because the Windows Sandbox environment only has access to folders and files that are in it, and cannot access folders and files that exist outside that environment.
By performing the above steps, you have successfully restricted read access to the Windows folder for a specific application by using Windows Sandbox. Now, you can run those apps safely and comfortably without compromising your privacy.
However, this method also has some disadvantages, namely:
- You need to have Windows 10 version 1903 or later, and the Windows Sandbox feature must be enabled on your system.
- You need to copy or move the application that you want to restrict read access to the environment Windows Sandbox every time you want to run it.
- You need to close Windows Sandbox after you finish using the application because all the data and changes you made in that environment will be lost when you close it.
Therefore, you need to weigh the advantages and disadvantages of each method before you choose the best one for you.
Tips and Tricks to Restrict Read Access to Windows Folders for Specific Applications
In addition to using the two methods Bardimin as described above, you can also follow some of the following tips and tricks to restrict read access to Windows folders for specific applications:
- Use a reliable antivirus or anti-malware to protect your system from malicious or potentially unwanted applications. You can scan the apps you want to run before you open them or set your antivirus or anti-malware to scan apps automatically when you run them.
- Use passwords or encryption to protect folders that contain your sensitive or personal data. You can use the BitLocker feature already available in Windows, or use a third-party application that can encrypt your folders. That way, you can prevent any application that doesn’t have a password or encryption key from accessing the folder.
- Use a firewall to control the network traffic going in and out of your system. You can use the Windows Firewall feature already available in Windows, or use third-party applications that can provide more advanced firewall protection. That way, you can prevent suspicious or unwanted apps from sending or receiving data from the internet without your permission.
- Use a sandbox or other virtual machine to run apps you don’t trust or that you rarely use. You can use the Windows Sandbox feature that Bardimin described earlier, or use a third-party application that can create a sandbox or virtual machine separate from your main system. That way, you can run those applications in an isolated and secure environment, without affecting your main system.
By following the tips and tricks above, you can increase your security and convenience while restricting read access to Windows folders for specific applications. You can also avoid risks that may arise from unwanted applications, such as data theft, virus infection, or system damage.