with all the billions that Silicon Valley is investing in garbage companies, i hope there’s a few dollars left to invest in NanoVMs. the unikernel dream deserves a chance to come true. complexity is the root of all vulns and unikernels attack that complexity at its source. they remove 99 bajillion lines of code from the application stack. you end up with a tiny, fast-starting artifact containing just what the application needs and nothing more.
it’s such a damn beautiful vision that it will probably be ignored by our dumb industry. all the money will flow to companies making familiar, worse-is-better tech that put little band-aids on gaping security holes.