Enhance FAQ entry on multikernel's trust model by adding kernel lockdown as a mitigation strategy

congwang-mk · congwang-mk · commit 981b973442d9 · 2025-09-23T16:06:10.000-07:00
diff --git a/faq.html b/faq.html
@@ -142,6 +142,6 @@
         <div class="faq-question">
             <i data-lucide="lock"></i> What is the trust model of multikernel?
         </div>
-        <p class="faq-answer">Multikernel relies on kernel-enforced isolation, making the kernel itself the trust boundary. While a malicious kernel could potentially disrupt other kernels on the same node, this risk can be mitigated through kernel signing via kexec and memory encryption using confidential computing technologies.</p>
+        <p class="faq-answer">Multikernel relies on kernel-enforced isolation, making the kernel itself the trust boundary. While a malicious kernel could potentially disrupt other kernels on the same node, this risk can be mitigated through kernel signing via kexec, kernel lockdown, and memory encryption using confidential computing technologies.</p>
     </div>
 </div>
