InfoQ Homepage Containers Content on InfoQ
-
CNCF Approves Kubernetes Edge Computing Platform KubeEdge as Incubating Project
The CNCF Technical Steering Committee (TOC) announced the acceptance of KubeEdge as an incubating project. KubeEdge is a platform that aims to provide “infrastructure support for network, application deployment and metadata synchronization between the cloud and edge devices” and uses Kubernetes as the underlying foundation.
-
Google Expands Its Confidential Computing Portfolio
In a recent blog post, Google announced the expansion of its Confidential Computing Portfolio with the addition of Confidential Google Kubernetes Engine (GKE) Nodes. Furthermore, the public cloud vendor will make Confidential Virtual Machines (VMs) publically available.
-
Q&A with Canonical's Alex Chalkias about Kubernetes 1.19 Enterprise Support and KubeCon
InfoQ caught up with Alex Chalkias, product manager at Canonical at KubeCon + CloudNativeCon EU 2020, regarding the enterprise support for Kubernetes 1.19, KubeCon EU 2020, the future of Kubernetes, and how Canonical is enabling its adoption in the enterprise.
-
Attackers Found Building Malicious Container Images Directly on Host
Aqua’s cyber security research team, ‘Nautilus,’ has found a new attack technique targeting misconfigured Docker Daemon API ports to build an image directly on the target host container infrastructure, in order to mine cryptocurrency. Further investigation by the team uncovered an associated 330k malicious image pulls from an infrastructure of 23 container images stored in Docker Hub.
-
Amazon Announces the Preview of AWS Controllers for Kubernetes (ACK)
AWS Controllers for Kubernetes (ACK) is a new tool by AWS allowing users to manage AWS services from Kubernetes directly. In a blog post, the public cloud vendor states the tool will make it easy to build scalable and highly-available Kubernetes applications that utilize AWS services.
-
Open Service Mesh: a Service Mesh Implementation from Microsoft
Microsoft has released open service mesh (OSM), an alpha service mesh implementation compliant with the SMI specification. OSM covers standard features of a service mesh like canary releases, secure communication, and application insights, similar to other service mesh implementations like Istio, Linkerd, or Consul. Additionally, the OSM team is in the process of donating the project to the CNCF.
-
ServiceMeshCon Summary: KubeCon + CloudNativeCon Europe 2020 Co-Located Event
Christian Posta form Solo.io discussed multi-cluster and multi-mesh patterns at the recent ServiceMeshCon event which was held as part of KubeCon + CloudNativeCon Europe 2020 Conference. There were also talks on Istio architecture, WebAssembly for Istio telemetry and iteratively implementing Istio service mesh with no downtime.
-
Snyk Releases Enhanced Vulnerability Prioritization Features
Snyk has announced the release of a number of new features to simplify prioritizing security vulnerabilities. This includes a new, proprietary algorithm to assess and provide a score for each identified issue. This approach takes into account the maturity of the exploit and can analyze if the affected code is reachable through application execution.
-
KubeCon + CloudNativeCon Europe 2020 Keynote Summary
The annual KubeCon + CloudNativeCon Europe event ran as a virtual conference in August. Key takeaways included: there is an increasing importance in understanding end-user adoption patterns of technologies; it is important to recognize and discuss the topics of security, observability, and energy efficiency as more organizations move to the cloud; and more.
-
Containerizing Java Applications with Jib
Jib, the open source tool for building optimized Docker images for Java applications, has been constantly adding new features to improve the developer and CI/CD experiences. Some of the highlights include the Jib Plugin Extension Framework, native support for popular application frameworks, CI/CD performance improvements, and enhanced development experience on a local Kubernetes with Skaffold.
-
Amazon Announces ECS Now Supports EC2 Inf1 Instances
In a recent blog post, Amazon announced that customers can now use the Amazon EC2 Inf1 instances on Amazon Elastic Container Service (ECS). The company promises the instances will be high performant and have low, predictable costs.
-
Amazon Announces New Command Line Interface Tool AWS Copilot
Recently, Amazon announced a new command-line interface tool called AWS Copilot, which allows customers to develop, release, and operate containerized applications on AWS. With a single command, customers can create all the infrastructure and artifacts necessary to run a service on Amazon Elastic Container Service (ECS) and AWS Fargate.
-
Docker Releases Plugin for Simplified Deployments into AWS ECS and Fargate
Docker has announced the public beta of their enhanced integration of Docker with AWS Elastic Container Service and AWS Fargate. The release of the ECS plugin allows for developers to work within the Docker experience to create the necessary infrastructure to operate within AWS.
-
Bare-Metal Kubernetes Load Balancer Porter Included in CNCF Landscape
The CNCF has accepted Porter, a load balancer meant for bare-metal Kubernetes clusters, in the CNCF Landscape. Porter uses the Border Gateway Protocol with ECMP to load balance traffic in self-hosted Kubernetes clusters.
-
Rancher Labs Discuss the Adoption of Kubernetes "Everywhere"
In a recent podcast, Shannon Williams, co-founder and president at Rancher Labs, and Darren Shepherd, co-founder and CTO at Rancher Labs, sat down with InfoQ and discussed the adoption of hybrid cloud across organisations. Additional topics covered included: the evolution of Kubernetes as a key abstraction for portability and cross-cloud security and running thousands of clusters at the edge.