Our great sponsors
-
documentation
Discontinued Documentation for the confidential containers project (by confidential-containers)
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
On the other hand, if your use case would be the other way around - trying to secure just a few workloads/containers from others, presumably malicious workloads - then you want to check out projects like confidential containers.
It all depends on your use-case and expectations. You should definitely check out gvisor. It creates a userpace isolated kernels for every container, thus making it sandboxed. The workloads then still run inside a container, not a stripped down OCI compatible VM as in kata.