Microsoft has added POD sandboxing support for Azure Kubernetes.
Pod sandboxing uses Kata Containers to provide hypervisor-based isolation per pod.
- Kata
Containers is an open-source project and community working to build a
standard implementation of lightweight Virtual Machines that feel and
perform like containers but provide the workload isolation and security
advantages of VMs.
- The technology is designed to provide enhanced workload isolation using hardware virtualization technologies.
- The preview release also included information on the company's updates, including:
- Support for Microsoft Defender.
- Support for Container Insights.
- Updates on Container Storage Interface drivers, etc.
