Christo Goosen - Google gvisor container runtime sandbox

Fa3bde7b9c5510a7016f801a92c90d3c?s=47 DevOpsDays Cape Town
September 21, 2018
Technology
0
120

Christo Goosen - Google gvisor container runtime sandbox

Gvisor was released 5 months ago and promoted with Google Cloud Platform’s push for python3.7 support. Google identified the need for a user-space kernel to act as a sandbox in container/docker environments. Gvisor is written in Golang, provides a swop in runtime for docker and provides a additional layer of kernel protection from your executed code. Google’s gvisor aims to protect the host kernel with “employs rule-based execution to provide defense-in-depth”. Will cover a quick intro and how easy it is to get going with gvisor.

Fa3bde7b9c5510a7016f801a92c90d3c?s=128

DevOpsDays Cape Town

September 21, 2018
Tweet

Want more?

C44e1f7e22c3f23cff7bc130871047ef?s=48 Apr 30, 2019
101
22k
B47b288784fda77a94aeb234ca743c24?s=48 Nov 18, 2019
96
7.9k
32de0bd2ba869609d26fd052a4622778?s=48 Oct 1, 2019
91
4.9k
2bb923c57a1fdc3a2eb484bb8d565fd2?s=48 Nov 19, 2019
51
4.6k
F29327647a9cff5c69618bae420792ea?s=48 Nov 20, 2019
45
2.9k
170b760e0147792d0140e59ec78e9893?s=48 Nov 15, 2019
96
8.5k
95d9f37115fbb0d13135d0f77132f856?s=48 Nov 13, 2019
78
9.2k
C0b42577cfc2b321be3474618107e933?s=48 Nov 8, 2019
48
5.4k
3d4519fd34b76fb265fc0237f3792bd4?s=48 Mar 17, 2019
195
19k
A9b18bbab50a3afb80222c0a85e710d0?s=48 Feb 12, 2019
174
13k
2f5463832ccb768ccb4a1ca3607c27ef?s=48 Feb 23, 2019
246
19k
D67fff74178013024d833b3eec6cf27f?s=48 Oct 7, 2018
261
16k