Lightweight Virtualization-Based Isolation Using libkrun
Schedule: March 9 11:30-11:55 AM EST 16:30-16:55 UTC
Presenters: Sergio Lopez, Red Hat
Topics: Container Runtimes, Container/Image Security, cGroups, Namespaces, Kernel, Containers & Virtualization, libkrun, krunvm, podman, buildah, crun
In this session I’ll present libkrun, a dynamic library that provides Virtualization-based process isolation capabilities. I’ll show how it can be integrated with container tools to both strengthen the security boundaries of a workload, and enable those tools to support non-Linux operating systems.