Back in the day when there was IBM and everyone else
IBM was known (internally) as I've Been Moved
5 publicly visible posts • joined 27 Apr 2018
The track record for Chrome OS is it's own testament. Sure, Google shells out the odd $100,000 USD for exploits, and my own experience of 5+ years using a Chromebook and my "daily driver" seems that it doesn't suffer infections that affect other OS's. The exception being, self-installed browser extensions. One malware extension just recently was installed on 100k machines, mainly through end user stupidity. YMMV
It may not be clear from this article that there are two major takeaways from Crostini. 1) You are still running Chrome OS; currently the most secure OS generally available due to firmware/software boot verification. 2) Crostini allows you to run desktop Linux application inside a Chrome window without recourse to Chromebook dev mode.
Crouton suffers from the requirement to be in "developer mode" disabling Verified Boot. Crostini doesn't have this requirement.
Crostini used the KVM of the Chrome OS kernel to run a second copy of the Linux kernel which has containers enabled. The Linux applications run in/on this second kernel. No hardware is emulated.