Overview

Ivy - Edera mascot
Edera is a secure-by-default, cloud-native platform built on a reimagined memory-safe type-1 hypervisor that provides container isolation without performance tradeoffs.

Zone-based isolation

Unlike traditional container runtimes that share a kernel, Edera runs containers in lightweight VM environments called zones. Each zone has its own Linux kernel, providing complete isolation from other workloads.

Core benefits

  • True isolation - Each workload runs in its own lightweight VM with dedicated Linux kernel
  • No migration required - Deploy to existing Kubernetes clusters without infrastructure changes
  • Cloud-agnostic - Runs across clouds, on-premise, and edge environments
  • Performance - Delivers near-native speed with minimal overhead

Technical foundation

Memory-safe hypervisor: Built on Xen, re-engineered in Rust for the modern cloud-native world. Each zone boots fast, supports pluggable system extensions, and can safely run sensitive workloads like AI/ML training and GPU-accelerated compute.

This eliminates the risk of shared kernel vulnerabilities while maintaining container-like operational simplicity.

Key advantages

  • Run anywhere - No hardware virtualization required
  • Performance - Within 5% of baseline, 50%+ faster than alternatives in real-world workloads
  • Security - No shared kernel, isolated drivers, memory-safe Rust core
  • Flexibility - GPUs, TPUs, and other devices can be shared securely across workloads
  • Composable - Built entirely from OCI images, including drivers

Products

Edera for Containers

With our container-native Type 1 hypervisor, we deliver VMwarelike resource optimization for container workloads without performance trade-offs. Maximize infrastructure utilization while gaining complete workload isolation.

Edera for GPUs

Accelerate AI innovation with optimized resource utilization. Our enhanced GPU virtualization technology lets you safely share expensive GPU resources across multiple workloads, reducing cloud costs while maintaining full performance and isolation.

Edera OSS & research

We have have released several open source projects including:

  • Styrolite, our programmatic low-level container runtime designed to operate as a microservice
  • OpenPaX, an open source kernel security utility
  • Am I Isolated, a container security benchmark and Rust-based container runtime scanner
Last updated on