Published On: Thu, Jul 13th, 2017

Google updates the Container Engine with a concentration on security


Google currently announced a latest updates to its Google Container Engine, a use for using Kubernetes-based program containers in a cloud. Like with prior releases, this refurbish brings a Container Engine, or GKE, as Google calls it (where a ‘K’ stands for Kubernetes), adult to date with a latest updates from a Kubernetes project.

Now during chronicle 1.7, a Kubernetes plan is fast substantiating itself as a de facto customary for orchestrating program containers in both private and open clouds. Indeed, it’s substantially not astray to contend that if Azure Stack is Microsoft’s approach to concede a users to move their workloads to their private clouds and capacitate hybrid cloud deployments, afterwards Kubernetes, that was creatively recognised during Google, is Google’s approach of assisting enterprises run hybrid deployments.

With this update, Google is putting a lot of importance on security. As some-more and some-more companies adopt GKE, their needs have apparently changed. Enterprises, especially, tend to have some flattering despotic confidence requirements. The GKE group argues that a use is a many secure charity of Kubernetes on a market. The reason for this, Google argues, is that it controls a handling complement that runs on all of a several nodes that make adult a enclosure deployment. What’s using there is an handling complement that’s formed on Chromium OS (which also forms a basement of Chrome OS). The chronicle that runs in a cloud is a really minimal complement that offers really small in terms of an conflict aspect and that’s managed and proactively patched by Google itself.

With this update, Google is profiting both from new confidence facilities in Kubernetes itself (like a new API for enforcing manners about how opposite pods can speak to any other) and new facilities in a information centers. Google now, for example, re-encrypts information as it hits a Google Cloud Load Balancing use to safeguard that a customer’s information isn’t usually encrypted on a approach to Google’s information centers though also after it hits Google’s network.

As a Google group told me, enterprises are also looking for some-more extensibility and a ability to extend Kubernetes with third-party applications, including use meshes like Istio. Now that API assembly is accessible in Kubernetes 1.7, Google, too, is means to offer this underline to a users.

Another new underline value highlighting is a further of support for GPU-based machines that run Nvidia’s K80 GPUs (with support for some-more absolute machines entrance later). This feature, that is now accessible in alpha, is geared toward users who wish to run appurtenance training workloads.

As always, there are copiousness of other updates here, too, and we can find a full list in Google’s blog post. The categorical takeaway from today’s launch, however, is that both a Kubernetes village and Google are holding confidence really severely — and that they are wakeful that if they wish enterprises to use GKE for even some-more of their workloads, they’ll have to continue to enhance on this work.

Featured Image: Claudius Paul / EyeEm/Getty Images

About the Author

Leave a comment

XHTML: You can use these html tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>