Appearance
System Notepad
Validate System Notepad behaviors under the Secure Sandbox.
Objectives
- Verify file system isolation for Open/Save operations.
- Prevent data exfiltration via clipboard.
- Ensure Notepad cannot be used to bypass isolation (e.g., via Open dialog).
Preconditions
- Windows target with Turbo Launcher and Secure Sandbox.
Controls Under Test
runtime.files.contexts.runtime.dataMotion.rules[].
Test Scenarios
| ID | Canonical ID | Scenario | Procedure | Expected Outcome |
|---|---|---|---|---|
| SCEN-APP-SYSTEM-NOTEPAD-01 | HARD-HOST-03 | Save to Host | Attempt Save As to C:\\Windows. | Write denied or virtualized (overlay). |
| SCEN-APP-SYSTEM-NOTEPAD-02 | HARD-FILES-01 | Open Dialog Navigation | File > Open; navigate to blocked host path. | Folder content hidden or access denied. |
| SCEN-APP-SYSTEM-NOTEPAD-03 | DM-CLIP-01 | Clipboard Outbound | Copy text; paste to host. | Denied/processed per policy. |
Evidence Requirements
fileOpevents: write/read attempts.dataMotionevents:channel,actionfor clipboard.
