What is Talos?
Talos is a modern OS designed to be secure, immutable, and minimal. Its purpose is to host Kubernetes clusters, so it is tightly integrated with Kubernetes.
Talos is based on the Linux kernel, and supports most cloud platforms, bare metal, and most virtualization platforms. All system management is done via an API, and there is no shell or interactive console.
Why Talos?
Security
Predictability
Evolvability
API Driven
Built with Modern Technology
Features
Minimal
Talos consists of only a handful of binaries and shared libraries: just enough to run containerd and a small set of system services.
This aligns with NIST's recommendation in the Application Container Security Guide.
Hardened
Talos is hardened by design and configuration:
- We follow the Kernel Self Protection Project configuration recommendations.
- We enable mutual TLS for the API.
- We enforce the settings and configurations described in the CIS guidelines.