Linuxsecurity

Developers at IBM are working on a new concept for the Linux kernel of "system call isolation" in order to isolate parts of the kernel when impacted by vulnerabilities.

The concept was announced overnight and there are some preliminary patches worked on by the IBM developers.

The link for this article located at Phoronix is no longer available.