Show HN: Launch VM workloads securely and instantaneously, without VMs

by ashishbijlani on 4/29/2021, 1:50 AM with 8 comments

Hello HN! We've been working on a new hypervisor https://kwarantine.xyz that can run strongly isolated containers. This is still a WIP, but we wanted to give the community an idea about our approach, its benefits, and various use cases it unlocks. Today, VMs are used to host containers, and make up for the lack of strong security as well as kernel isolation in containers. This work adds this missing security piece in containers. We plan on launching a free private beta soon. Meanwhile, we'd deeply appreciate any feedback, and happy to answer any questions here or on our slack channel. Thanks!

  • by bem on 4/29/2021, 7:09 AM

    Looks interesting! I’ve been looking at setting up gVisor to enable running users’ code. How does/will Kwarantine compare to gVisor?

  • by ashishbijlani on 4/29/2021, 4:17 AM

    Posting direct link here for convenience: https://kwarantine.xyz

  • by elijahwright on 4/29/2021, 2:52 PM

    How is this different than the Xen approach?