I'm interested in programming an application-level virtualization solution. More specifically, I need a way to completely isolate the running application from the host OS. I don't necessarily need or want a full virtual machine, but I need the isolation one provides.
From my understanding on the matter, if I can isolate the application's process space, and provide it with a minimal hypervisor which provides the hypercalls it needs, this should be sufficient isolation. Am I completely wrong on this? Is there a way to only isolate the process space without having to virtualize everything else? Also, are there any resources I could use to kick start my development?
Also, would it be wise to look into how dynarec emulators work since they essentially do what I need, but would this provide enough isolation?
Thanks in advance.