Which process verifies untested and untrusted codes in a controlled cloud environment?

The process that verifies untested and untrusted code in a controlled cloud environment is sandboxing. Sandboxing creates an isolated environment where code can execute without affecting the wider system or network. This practice is crucial in cloud security, as it allows organizations to test new applications or code snippets from third-party providers without the fear of introducing vulnerabilities or malicious code into their main operational environment.

By running potentially harmful code in a sandbox, security teams can observe its behavior, assess risks, and identify any security issues before integrating it into production environments. This containment ensures that even if the code behaves unexpectedly or maliciously, its effects are restricted to the sandbox, hence protecting the broader cloud infrastructure.

Other processes mentioned, like application virtualization, focus on running applications independently of the underlying operating system, but do not inherently provide the security assurance needed for untrusted code. Data masking involves obscuring specific data within a database to protect sensitive information but does not verify code. Supply chain management relates more to overseeing the flow of goods and services rather than securing code. Thus, sandboxing is the most appropriate choice for the verification of untested and untrusted code in the cloud.