Lightweight Virtualization-Based Isolation Using libkrun

Schedule: March 9 11:30-11:55 AM EST 16:30-16:55 UTC

Presenters: Sergio Lopez, Red Hat

Topics: Container Runtimes, Container/Image Security, cGroups, Namespaces, Kernel, Containers & Virtualization, libkrun, krunvm, podman, buildah, crun

video

Session Details:

In this session I’ll present libkrun, a dynamic library that provides Virtualization-based process isolation capabilities. I’ll show how it can be integrated with container tools to both strengthen the security boundaries of a workload, and enable those tools to support non-Linux operating systems.