Techly NewsGet the app

Get the latest tech news

Rethinking the Linux cloud stack for confidential VMs


There is an inherent limit to the privacy of the public cloud. While Linux can isolate virtual [...]

In parallel to the work on security, there is a constant effort to improve the performance of Linux in the cloud — both in terms of literal throughput and in user experience (typically measured by quality-of-service metrics like low I/O tail latency). While it is true that offloading provides a faster path for network traffic, it has some downsides, such as limiting visibility and auditing, increasing reliance on hardware and firmware, and circumventing OS-based security checks of flows and data. While these batch-oriented applications may still experience some performance impact, they generally have a higher tolerance for latency — not because they are inherently less sensitive to it, but because they lack realtime human interaction (e.g., there are no users sitting in front of a browser waiting for a reply).

Get the Android app

Or read this on Hacker News

Read more on:

Photo of Linux

Linux

Photo of stack

stack

Photo of confidential vms

confidential vms

Related news:

News photo

Linux 6.17 Adds Fan & Thermal Profile Support For HP Victus 16-r1000 Gaming Laptops

News photo

OpenZFS 2.4-rc1 Brings Linux 6.16 Compatibility, Better Encryption Performance With AVX2

News photo

The issue of anti-cheat on Linux (2024)

« A few hours into The Rogue Prince of Persia's 1.0 release, it's Dead Cells with beautifully balletic carnage - but hopefully there's a bit more to it
Meta is licensing Midjourney's AI image and video tech »