gVisor is an application kernel that provides an additional layer of isolation between running applications and the host operating system. This extra layer greatly improves the security of workloads, but can impede container visibility. Discover how Falco integrates with the gVisor runtime to continue isolating your containers while keeping an eye on behavior.
Hear from the gVisor and Falco community developers that made it possible to leverage the powerful gVisor isolation and sandboxing capabilities while enjoying Falco’s deep visibility and flexible detection engine.
You'll learn how to:
Implement runtime security
Install and configure gVisor and Falco
Extend Docker configuration to enable gVisor
Forward your Falco events by leveraging Falco Sidekick