Historically most usage of virtualization has focused on running entire operating systems in virtual machines or containers. The libvirt-sandbox toolkit builds on libvirt, KVM & LXC, to provide a high level API and command line tools to facilitate the use of virtualization as a technology for creating secure application sandboxes, without the burden of maintaining additional OS installations. The talk will cover the architecture of the sandbox technology, the challenges faced in its design & implementation, use cases it can address and the scope for future development.
The talk is suitable for a broad audience, covering system administrators, application developers & virtualization platform developers. A basic understanding of virtualization and security concepts is assumed. The audience will learn what capabilities the API & tools provide & how they can be applied to their environment