CPC G06F 9/45558 (2013.01) [G06F 9/4555 (2013.01); G06F 9/545 (2013.01); G06F 2009/45587 (2013.01)] | 23 Claims |
1. A method comprising:
implementing a kernel-based isolation layer;
configuring a software container on the kernel-based isolation layer to include a dedicated operating system kernel as a library operating system; and
executing one or more user processes in the software container,
wherein the method is performed by a processing platform comprising a plurality of processing devices each comprising a processor coupled to a memory, and
wherein the library operating system runs in the software container at a privilege level that is the same as a privilege level of the one or more user processes executing in the software container.
|