| 主权项 |
1. A method for generating policies for a new application using a virtualized environment prior to executing on a host operating system of a client device, the method comprising:
installing, prior to allowing a new application to operate on a host system, the new application in a virtualized environment for execution; determining, for a first program execution restrictor of the virtualized environment, a set of policies for the new application, the set of policies allowing the new application to add specific program elements during installation and execution of the new application in the virtualized environment; verifying, via the first program execution restrictor applying the set of policies, an absence of malicious behavior from the new application while the new application executes in the virtualized environment; and executing, responsive to the verification, the new application on the host system, the host system having a second program execution restrictor that applies the set of policies when the new application executes on the host system. |
