Technically running virtualized spaces within android is possible. Android for Work and Knox have these capabilities as does the Blackphone. GuardianROM may also have the same capabilities. Is there anyway to do this at the consumer level. I have had great success limiting data leakage within my laptop by using virtualization but would like to do the same for my phone and tablet. Anyone have any knowledge on how to do this? Edit: So did some more digging. Didnt realize that Knox was available on newer Samsung Devices. It does seem to do a lot of what I am looking for. The problem is that Knox appears to completely unmodified (no rooting or bootloader) OS to run. The security though seems better than the Android for Work system setup by Google (and used in the Blackphone. Unfortunately both solutions are focused solely on preventing access to sensitive materials and not on data leakage. Anyone got a Samsung device with MyKnox on it? I also found embedded Xen which allows for dom0/domU setup. http://sourceforge.net/projects/embeddedxen/ I believe that this is what Guardian ROM is using. Looking at the activity guide on the project it looks like this was ported to the Nexus5 and given Guardian ROM is on a Nexus 5 it is probably safe to say I am correct.
Tried XDA without luck. Found this one which seems very interesting. Secure Spaces is the name. They are strong on virtualization. It may require work to security harden the OS, or at least security harden the VM's. http://www.securespaces.com/WP2015/index.php/forums/ http://forum.xda-developers.com/google-nexus-5/development/secure-spaces-android-rom-t3251299 I know in other threads people have mentioned Copperhead OS. It is more a security hardened OS and does not use virtualization (at least that I am aware)https://copperhead.co/android/