library os

  1. LiteBox: Microsoft’s Rust Library OS for Secure Sandboxing

    Microsoft’s new LiteBox project is more than another sandbox — it’s a deliberate attempt to rethink where the operating system boundary lives and to push much of the trusted code into a small, auditable library runtime so applications see only the interfaces they absolutely need. (github.com)...
  2. LiteBox: Rust Library OS Reducing Kernel Attack Surface

    Microsoft’s engineers have quietly opened a new front in OS-level security with LiteBox, a Rust‑based “library OS” designed to shrink the exposed surface between running code and the host system so dramatically that entire classes of kernel‑exposed attack vectors become far harder to exploit...