zlacker

i'm developing an os with an architecture similar to qubes, in part because i disagree with the idea of using hardware virt as an isolation mechanism. i think this can be done with os virtualization much more cheaply without being much more difficult to secure. still quite early in the project, but i think we're touching on some interesting stuff.

https://www.heropunch.io/tomo/os/grid/

https://www.joyent.com/tech-videos/going-container-native

https://genode.org/about/index

>>xj9+(OP)
Are you planning to use L4?

>>walter+F
looks like it: https://genode.org/about/index

>> the framework aligns the construction principles of L4 with Unix philosophy. In line with Unix philosophy, Genode is a collection of small building blocks, out of which sophisticated systems can be composed. But unlike Unix, those building blocks include not only applications but also all classical OS functionalities including kernels, device drivers, file systems, and protocol stacks.

>>walter+F
yes, I'm partial to seL4 in particular. I'm using flatpak as the application image format. these require sessions, but I see that as a plus. the goal isn't compatibility, rather to build an os platform specifically for running p2p applications. linux is a convenient abi and makes windows compat easy.

i am using linux and genode to compose a more modern version of the plan 9 system. other core tech includes ipfs, i2p, secure scuttlebutt, and mqtt.

>>xj9+(OP)
How are you planning to do hardware isolation?

>>jerhei+jh
https://genode.org/documentation/release-notes/13.02#DMA_pro...