Rethinking the guest operating system

I've been saying that for years.

The process appears to have been:
- Supervisor Mode! Protected Memory! Yay! Now we can have security!
- Wah! Security makes programming hard! I need shared memory. I need a way to elevate my security mode. I need to write files.
- Wah! All these features I asked for have made me insecure!

And then:
- Virtual Machines! Yay! Now we can have security!
- Wah! Virtual machines are hard! How can I manage all these machines each one running a copy of my application? I need a way for them to share data with the hypervisor! Let them all share a filesystem! I want cut and paste from the consoles! Ooh, wouldn't it be nifty if my virtual machines could share some RAM!

And soon it will be once again:
- Wah! All these features have made my virtual machines insecure!