& cplSiteName &

Google Revs Container Engine for Security & Enterprise Apps

Mitch Wagner

Google has introduced new security features for its Google Container Engine, a Kubernetes-based cloud service for orchestrating containers. The service is also getting scalability, extensibility and hybrid networking features to appeal to enterprises and developers.

Google Container Engine (GKE) has been designed from its launch last year to provide a secure and reliable environment for containerized workloads managed by Kubernetes, Aparna Sinha, Google group product manager for Kubernetes and Google Container Engine, tells Enterprise Cloud News. For security, GKE runs the Container-Optimized OS, based on Chromium, which is developed by Google and which is kept up-to-date to protect against vulnerabilities. Google provides uptime and service level availability guarantees to automatically manage clusters, a has a team of reliability engineers to keep the service up and running.

For enterprise users, Google is "building a roadmap to secure multitenancy," to allow teams to share clusters independently of each other, Sinha says. The previous release had role-based access controls; the new version will have container policies, as well as a node authorizer to isolate nodes from impacting other nodes.

"The combination of those features lays the groundwork for having multiple teams share a node securely without negatively impacting each other," Sinha says.

The new version supports hybrid networking, to allow Kubernetes clusters running on GKE to connect with on-premises workloads running legacy applications or Kubernetes clusters.

Enterprises will be able to add customize Kubernetes and enable third-party business logic without needing to restart the cluster, Sinha says.

For developers, Google is adding capabilities to automate infrastructure so developers don't have to think about allocating resources, Brian Grant, Google principal engineer on Kubernetes and Container Engine, tells Enterprise Cloud News. GKE automatically repairs and replace defective nodes. Automated Kubernetes upgrades will monitor workloads to make sure there's no downtime. And Google will provide improved auto-scaling.

The GKE upgrade follows the open source release of Kubernetes 1.7 last week, according to a post on the Google Cloud Platform blog scheduled to go live 5 a.m. EDT Wednesday. The blog post contains further technical details on GKE.

Kubernetes is key to Google's strategy to gain market share in the enterprise cloud. Google is a distant third in market share, behind Microsoft, which is in turn far behind Amazon. (See AWS Public Cloud Dominance Continues – Report.)

Keep up with the latest enterprise cloud news and insights. Sign up for the weekly Enterprise Cloud News newsletter.

Kubernetes enables workload portability between clouds, and that benefits Google. If cloud workloads move around freely, some of them will move off Amazon and land on Google.

Workload portability was a theme during a discussion at Cloud Foundry Summit recently, when representatives of Google and Microsoft urged enterprises to use open source platforms to standardize capabilities common to all clouds, and then take advantage of proprietary capabilities only available on individual cloud platforms. (See Google & Microsoft Tout Multi-Cloud, but Where's Amazon?.)

In advance of the GKE announcement, Red Hat last week revamped its OpenShift Online as a cloud platform for developers creating containerized applications. (See Red Hat's OpenShift Online Revamped for Containers.)

Related posts:

— Mitch Wagner Follow me on Twitter Visit my LinkedIn profile Visit my blog Friend me on Facebook Editor, Enterprise Cloud News

Make sure your company and services are listed free of charge at Virtuapedia, the comprehensive set of searchable databases covering the companies, products, industry organizations and people that are directly involved in defining and shaping the virtualization industry.

(3)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
More Blogs from Wagner’s Ring
SD-WAN is about more than saving money – it also provides application delivery, insights and reliability. Find out more in this podcast sponsored by Citrix.
Platform is designed to enable enterprises to build big data analytics apps that move easily between public and private clouds.
Buying Evident.io extends Palo Alto's portfolio with API-based security capabilities and compliance automation.
Google wants to win the hearts of enterprise IT for Chrome OS on the desktop, but it has a long way to go.
IBM Cloud gets a security and Kubernetes performance boost.
Featured Video
From The Founder
Light Reading founder Steve Saunders talks with VMware's Shekar Ayyar, who explains why cloud architectures are becoming more distributed, what that means for workloads, and why telcos can still be significant cloud services players.
Flash Poll
Upcoming Live Events
May 14-16, 2018, Austin Convention Center
May 14, 2018, Brazos Hall, Austin, Texas
September 24-26, 2018, Westin Westminster, Denver
October 9, 2018, The Westin Times Square, New York
October 23, 2018, Georgia World Congress Centre, Atlanta, GA
November 7-8, 2018, London, United Kingdom
November 8, 2018, The Montcalm by Marble Arch, London
November 15, 2018, The Westin Times Square, New York
December 4-6, 2018, Lisbon, Portugal
All Upcoming Live Events
Hot Topics
I'm Back for the Future of Communications
Phil Harvey, US News Editor, 4/20/2018
Verizon: Lack of Interoperability, Consistency Slows Automation
Carol Wilson, Editor-at-large, 4/18/2018
AT&T Exec Dishes That He's Not So Hot on Rival-Partner Comcast
Mari Silbey, Senior Editor, Cable/Video, 4/19/2018
Facebook Hearings Were the TIP of the Data Iceberg
Dan Jones, Mobile Editor, 4/20/2018
Pay-for-Play Is a Sticking Point in Congress
Mari Silbey, Senior Editor, Cable/Video, 4/18/2018
Live Digital Audio

A CSP's digital transformation involves so much more than technology. Crucial – and often most challenging – is the cultural transformation that goes along with it. As Sigma's Chief Technology Officer, Catherine Michel has extensive experience with technology as she leads the company's entire product portfolio and strategy. But she's also no stranger to merging technology and culture, having taken a company — Tribold — from inception to acquisition (by Sigma in 2013), and she continues to advise service providers on how to drive their own transformations. This impressive female leader and vocal advocate for other women in the industry will join Women in Comms for a live radio show to discuss all things digital transformation, including the cultural transformation that goes along with it.

Like Us on Facebook
Twitter Feed