hypervisor
gVisor Container Isolation with Michael Pratt and Yoshi Tamura
Software applications running within a host operating system need to be isolated. Isolation prevents security vulnerabilities, such as one application accessing the memory of another. In