Shanghai, China
June 24–26, 2019
Click here for more information and registration

Simultaneous translation will be provided for all keynote and breakout sessions.

To view the Chinese version of this schedule please go here.

Venue + Sponsor Showcase Map
场馆 + 赞助商展示区地图
Back To Schedule
Wednesday, June 26 • 11:20 - 11:55
A New Secure Container Solution on Arm Platform: gVisor - Bin Lu, Arm

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Google has released gVisor in 2018, a new kind of sandbox that can be used to provide secure
isolation for containers that is less resource intensive than running a full virtual machine (VM).

At its core, gVisor is an open source user-space kernel, written in Go,
that implements a substantial portion of the Linux system surface.
It includes an Open Container Initiative (OCI) runtime called runsc that provides an isolation boundary between the application and the host kernel.
The runsc runtime integrates with Docker and Kubernetes, making it simple to run sandboxed container.

Now, we have enabled gVisor on Arm64 platform. In this presentation, we will introduce and show our progress.
Also, we will show a demo of gVisor on Arm64 platform (ptrace & kvm).

avatar for Bin Lu

Bin Lu

staff software engineer, ARM
Currently, Bin Lu is working for Arm. His previous employer is IBM. In Arm & IBM, Bin Lu is focus on the area of container platform. His job includes the following: system architecture design, development and optimization for open-source community. Also, he has a deep background in... Read More →

Wednesday June 26, 2019 11:20 - 11:55 CST