BlackBox: Secure containers for untrusted operating systems