LinuxInsider

From Kernel to Cloud: Open Source Takes On Security Trade-Offs

Recent developments — including hardened Linux distributions, live patching for government-grade systems, container image hardening, and hypervisor-level isolation — reflect a broader industry push to ...
SDxCentral

IBM-Led Nabla Container Platform Touts Isolation for Its Security Posture

IBM unveiled the Nabla container platform as a new avenue in using isolation to increase container security. The launch follows that of the Intel-based Kata Container platform that also promises ...
Dark Reading

Containment as a Core Security Strategy

In nuclear safety design, isolation is everything. When containment fails, so does the system. At Chernobyl, isolation protocols were bypassed to achieve a performance goal. When the reactor ...
GizChina

Huawei proposes to launch a new "sandbox mode" for the Linux kernel to improve memory security

In particular, memory areas used as input and/or output are isolated from the rest of the kernel and surrounded by guard pages. Without arch hooks, this common base provides weak isolation. On ...