LKM (Linux kernel module) based implementation
- Open source to anyone
- Easy to deploy at scale in Devops environment
- Immune to the most of public public Linux kernel vulnerablity PoC/exploits, e.g: privilege esclation, container escape, post-exploitation (rootkit) prevention, etc.
- Long-term maintenance for both x86_64 and arm64 architectures.
- To gain more reliable/stable delivery by choosing the specific kernel version for QA by VaultFuzzer (State-based Linux kernel fuzzer)