An isolation engine for securing compute workloads.
$ kratactl zone launch -a alpine:latest
krata is a single-host workload isolation service. It isolates workloads using a type-1 hypervisor, providing a tight security boundary while preserving performance.
krata utilizes the core of the Xen hypervisor with a fully memory-safe Rust control plane.
| Architecture | Completion Level | Hardware Virtualization |
|---|---|---|
| x86_64 | 100% Completed | None, Intel VT-x, AMD-V |
| aarch64 | 10% Completed | AArch64 virtualization |