google-ads

Tech Updates

May unikernels replace Linux servers

April 27, 2020



May unikernels replace Linux servers
May unikernels replace Linux servers


May unikernels replace Linux servers

As we know that our current system have not changed in 50 years and even do not reflect any modern concern about the security and managing servers. still they are being used for multiple users to run multiple programs, leaving large spaces open for targeted cyber attacks this is because  we have old servers that have not changed from past 50 years.

The future is unikernels 

unikernel is an application that has been down to small, secure and light weight virtual machine which eliminates general purpose operating system such as linux and windows. A unikernel is a specialized, executable image that can be executed natively on a hypervisor whith out need of separate operating system the image contain everything which is necessary for a specific application to run. One of the biggest benefit of unikernel is they use fraction of resources required by operating system. Unikernel are also capable of delivering:

May unikernels replace Linux servers

  • Improved security.
  • Smaller footprints.
  • Near instant boot times.
  • whole-system optimization.
An unikernel does not have notion of users, running a single process per vm, and limiting the amount of code into each vm. This means that there are no user and no shell to login to and, more importantly ,you can't run more that one program you want to run inside. This makes unikernel more safe and secure unikernel can be directly provinised  on hypervisor without using system like Linux. So you can run 1000X more vms/per server.

Unikernel projects 

Many unikernel build system are available from multiple sources, with the open source community some of the more popular unikernel system include:
  • MirageOS from Xen project incubator;
  • Drawbridge from Microsoft;
  • Haskell Lightweight Virtual Machine;
  • IncludeOS;
  • clickOS created by NEC Laboratories Europe;
  • Cloudius System's OSv;
Compared of linux unikernel has only 1% of attack surface. so in case of unikernel -sysdig,tcdump and mysql client are not installed you can't just "apt-get"intsall them either . you have to bring with your exploit.

So Unikernels are highly secure for the remote code execution attacks, specially for shell code exploit


For further updates of this blog 
kindly subscribe to this blog 
Join our WhatsApp group for further updates here is the link -https://chat.whatsapp.com/GhOcNUM9SFN5ctEqGYJI1w


No comments

Subscribe to: Post Comments ( Atom )