Satoshi Tanda
Android Virtualization Framework - runs the "host" (Android and Linux kernel) in a VM and launches isolated envs. (= pVMs). Based on KVM but offloads complex code to the host VM. pVM firmware is in Rust - https://www.youtube.com/watch?v=K24dmA7QGLE - https://source.android.com/docs/core/virtualization/security - https://android.googlesource.com/platform/packages/modules/Virtualization/+/refs/tags/aml_con_341511080/pvmfw/
LaurieWired
Hypervisors are way more useful than you think. A great example is the AVF (Android Virtualization Framework). This recently-added feature allows code to execute inside it's own VM, with isolated memory space from the host. Imagine a banking app written with AVF in mind. Even a kernel-level rootkit would not be able to read the banking credentials stored in memory. Unlike traditional KVM, even if the host is compromised, it can't access guest memory; guest memory is completely unmapped from the host's physical address space.
