Subgraph Citadel / Subgraph OS
Immutable, compartmentalized Linux OS for adversarial computing environments.
Subgraph Citadel / Subgraph OS
Immutable, compartmentalized Linux OS for adversarial computing environments.
Data verified May 2026
ADYour product here. Reach security decision-makers.Launch a campaignSubgraph Citadel / Subgraph OS Description
Linux
Operating System
Isolation
Secure Boot
Open Source
Virtualization
Security Hardening
Supply Chain Security
Workload Security
Syscalls
Citadel (also called Subgraph OS) is a Linux-based operating system designed for use in hostile network environments and against sophisticated adversaries. It is built around a read-only, immutable base system protected by dm-verity, a Linux kernel integrity mechanism that prevents the OS from booting if any modification is detected, ensuring a cryptographically verified clean state on every restart. Key architectural layers: - Citadel Base: A minimal, immutable kernel providing only essential services (kernel, init system, graphical display) with no user applications or persistent data - Isolation Layer: Supports both container-based realms (using Linux namespaces and cgroups) and hypervisor-based realms (using a custom Rust-implemented hypervisor) for hardware-level isolation - User Realms: Fully isolated computing environments where user work takes place, each with separate process, network, filesystem, and PID namespaces Security features: - dm-verity filesystem integrity verification on every block of the base filesystem - UEFI Secure Boot for verified boot chain - Kernel hardening: KASLR, SMEP, SMAP, Control Flow Integrity - Memory protections: ASLR, stack canaries, heap protection - Compiler security: stack protector, fortify source, PIE - SELinux/AppArmor integration at runtime - seccomp-bpf syscall filtering per realm - Per-realm virtual network isolation - TPM 2.0 integration for secure key storage and attestation - 100% reproducible builds verifiable from source by independent researchers - Atomic signed binary updates (fully applied or fully rolled back) The system targets system administrators, security researchers, software developers, government/classified operations, financial services, and embedded systems deployments. Built in Montreal, Quebec, Canada. Open source.
Subgraph Citadel / Subgraph OS FAQ
Common questions about Subgraph Citadel / Subgraph OS including features, pricing, alternatives, and user reviews.
Subgraph Citadel / Subgraph OS is Immutable, compartmentalized Linux OS for adversarial computing environments, developed by Subgraph. It is a Endpoint Security solution designed to help security teams with Linux, Operating System, Isolation.
Subgraph Citadel / Subgraph OS offers the following core capabilities:
1.Read-only immutable base OS protected by dm-verity cryptographic integrity verification
2.Unlimited isolated user realms with separate process, network, and filesystem namespaces
3.Container-based realm isolation using Linux namespaces and cgroups
4.Hypervisor-based realm isolation using a custom Rust-implemented hypervisor
5.UEFI Secure Boot with cryptographically signed kernel loading
6.Atomic signed OS updates that are fully applied or fully rolled back
7.100% reproducible builds independently verifiable from source
8.Kernel hardening including KASLR, SMEP, SMAP, and Control Flow Integrity
9.seccomp-bpf syscall filtering per realm
10.TPM 2.0 integration for secure key storage and hardware attestation
Subgraph Citadel / Subgraph OS is built for security teams handling Linux, Operating System, Isolation, Secure Boot. It supports workflows including read-only immutable base os protected by dm-verity cryptographic integrity verification, unlimited isolated user realms with separate process, network, and filesystem namespaces, container-based realm isolation using linux namespaces and cgroups. Teams typically adopt Subgraph Citadel / Subgraph OS when they need to endpoint security capabilities integrated into their existing stack. Explore similar tools at https://cybersectools.com/alternatives/subgraph-citadel-subgraph-os
Subgraph Citadel / Subgraph OS is a free Endpoint Security tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://subgraph.com/index.fr.html for download and installation instructions.
Popular alternatives to Subgraph Citadel / Subgraph OS include:
1.Cyber Resilience for Embedded Systems - Embedded system security solutions for Linux-based mission-critical systems (Commercial)
2.Scylos ZeroCore / Switchboard - Ephemeral, stateless endpoint container substrate for edge compute via cloud mgmt. (Commercial)
3.Sandboxie Plus - Open-source sandbox isolation software for running untrusted apps on Windows. (Free)
4.Firejail - Firejail is a Linux sandbox program that isolates untrusted applications using kernel namespaces, seccomp-bpf, and capabilities to reduce security breach risks. (Free)
5.odix TrueCDR™ Kiosk - Secure kiosk for sanitizing USB & uploaded files using CDR technology (Commercial)
Compare all Subgraph Citadel / Subgraph OS alternatives at https://cybersectools.com/alternatives/subgraph-citadel-subgraph-os
Subgraph Citadel / Subgraph OS is for security teams and organizations that need Linux, Operating System, Isolation, Secure Boot, Open Source. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Endpoint Security tools can be found at https://cybersectools.com/categories/endpoint-security
Have more questions? Browse our categories or search for specific tools.
