6 Mar
2015
6 Mar
'15
3:39 p.m.
wouldn't provide you much. What sel4 could buy you is isolation between mysql and other applications if you chose to run several processes on the same machine. The processes themselves, including mysql, would still be vulnerable to any internal vulnerabilities they might have (sel4 is not a magic bullet).
There's a lot of noise around Docker. I find it annoying for many reasons, including security -- although I do understand some of the attraction. It would be super keen in my mind if seL4 could offer something in that vein, could present itself as a nice alternative.