{"id":"rhel9-security-governed-workload-isolation","text":"RHEL 9 workload isolation operates within the comprehensive security posture: virtual machines (KVM/QEMU/libvirt with Cockpit management) and containers (Podman with per-container MCS categories) both run under SELinux enforcing mode, behind firewalld network controls, within system-wide crypto policies, and under continuous audit surveillance, ensuring that workload boundaries are reinforced by defense-in-depth rather than standing alone.","truth_value":"OUT","source":"","source_url":"","source_hash":"","justifications":[],"dependents":[],"metadata":{"_retracted":true},"explanation":{"steps":[{"node":"rhel9-security-governed-workload-isolation","truth_value":"OUT","reason":"retracted premise"}]}}