Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Isolation without Containers

Strange Loop Conference via YouTube

Overview

Explore software fault isolation (SFI) techniques in this conference talk from Strange Loop. Dive into the various implementations of SFI, including sandboxes, processes, containers, and virtual machines. Learn about the advantages and disadvantages of different SFI methods, with a focus on sandboxing compilers. Discover how machine code generation, optimization, trap handling, and memory sandboxing work together to create safe and efficient isolation. Gain insights into the challenges of implementing SFI for edge computing and IoT applications. Examine a real-world example of a compiler and sandbox designed for running thousands of concurrent sandboxes in server applications. Understand the importance of SFI in operating systems, browsers, and server software, and how it prevents errors in one program from affecting others.

Syllabus

Isolation without Containers
Multi-tenancy
Isolation?
Resource Isolation
Fault Detection, Isolation, and Recovery
Fault Domain
Processes
Virtual Memory
Dynamic Libraries
Higher-level Isolation
Control Flow
Memory Safety
Calling Convention
Trap Tables
Bounds Checking
Bounds Check Elision
Review

Taught by

Strange Loop Conference

Reviews

Start your review of Isolation without Containers

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.