krata

An isolation engine for securing compute workloads.

• Frequently Asked Questions
• Development Guide
• Code of Conduct
• Security Policy

Introduction

krata is a single-host workload isolation service. It isolates workloads using a type-1 hypervisor, providing a tight security boundary while preserving performance.

krata utilizes the core of the Xen hypervisor with a fully memory-safe Rust control plane.

Hardware Support