& cplSiteName &

Intel & Hyper Combine on a Container Alternative

Craig Matsumoto

Intel and the Hyper open source project have combined projects to create Kata containers, which behave like containers but are really a slimmer alternative to virtual machines.

The Kata Containers project, which itself is open source and being managed by the OpenStack Foundation, is getting launched this week at KubeCon in Austin, Texas. Kata doesn't require OpenStack; the Foundation is involved because it wants to become a home for open infrastructure projects of all types, including those related to infrastructure and to software development.

The goal behind Kata Containers is to create a virtual machine that's as lightweight as a container. Virtual machines are bulky, in that each VM includes a full operating system kernel. Containers are smaller and have a density advantage; you can pack multiple containers on one CPU. But those containers share one OS kernel, which means an intruder who breaks into the kernel could theoretically gain access to every container on that host.

A mini-ecosystem of container security options has emerged to address this. Startup Twistlock, for instance, offers software that keeps an eye on containers to make sure their behaviors are within policy guidelines.

But another alternative that's been popular is to run one container per hypervisor, which improves security but erases containers' density advantage. "You end up losing the efficiency," says Jonathan Bryce, executive director of the OpenStack Foundation.

Kata uses the virtual machine model, giving each application its own OS kernel. But like a container, it leaves out pieces of the OS that a particular workload doesn't need -- thus giving Kata the same "lightweight" feel of a container. The structure is a combination of Clear Containers (a container variant that Intel Corp. (Nasdaq: INTC) developed) and the runV technology developed by Hyper.

"We need to bring back some of the isolation [of VMs] but not all of the overhead," says James Kulina, COO of Hyper. "When you do that, it opens up all sorts of use cases for containers."

Kata also matches the agility of containers -- the ability to launch many of them quickly and tear them down when their jobs are done. In fact, to the application developer, Kata behaves like a container and follows a workflow similar to Docker's. It's meant to be controlled by container tools such as Kubernetes and it will comply with the format defined by the Open Container Initiative (OCI).

Chinese ecommerce platform JD.com has been using Hyper, and Google Cloud Platform and CoreOS Inc. are "supporting this approach," Bryce says.

"We haven't even launched this yet, but as we've been talking around, there's support for it, because this is a really hard problem to solve," Bryce says.

The first version of Kata works only on the open source KVM hypervisor, but support for other hypervisors is on the way, says Imad Sousou, vice president and general manager of Intel's Open Source Technology Center.

Kata is also starting out supporting only one hardware environment -- Intel's -- but Intel and Hyper intend to support other processors as well, Sousou says. "I know that the Hyper engineers have added at least some ARM support," he says.

— Craig Matsumoto, Editor-in-Chief, Light Reading

(1)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
Featured Video
From The Founder
John Chambers is still as passionate about business and innovation as he ever was at Cisco, finds Steve Saunders.
Flash Poll
Upcoming Live Events
September 12, 2018, Los Angeles, CA
September 24-26, 2018, Westin Westminster, Denver
October 9, 2018, The Westin Times Square, New York
October 23, 2018, Georgia World Congress Centre, Atlanta, GA
November 6, 2018, London, United Kingdom
November 7-8, 2018, London, United Kingdom
November 8, 2018, The Montcalm by Marble Arch, London
November 15, 2018, The Westin Times Square, New York
December 4-6, 2018, Lisbon, Portugal
All Upcoming Live Events
Hot Topics
Adtran Will Be a 5G Winner, Says Analyst
Iain Morris, News Editor, 7/19/2018
Telecom Jargonosaurus Part 1: Repeat Offenders
Iain Morris, News Editor, 7/13/2018
Get Off My Wireline Lawn!
Carol Wilson, Editor-at-large, 7/17/2018
Trump Trashes EU's $5B Google Fine
Dan Jones, Mobile Editor, 7/19/2018
Eurobites: EU Socks Google With $5B Monster-Fine for Android Control-Freakery
Paul Rainford, Assistant Editor, Europe, 7/18/2018
Upcoming Webinars
Webinar Archive
Animals with Phones
Casual Tuesday Takes On New Meaning Click Here
When you forget your pants.
Latest Comment
Live Digital Audio

A CSP's digital transformation involves so much more than technology. Crucial – and often most challenging – is the cultural transformation that goes along with it. As Sigma's Chief Technology Officer, Catherine Michel has extensive experience with technology as she leads the company's entire product portfolio and strategy. But she's also no stranger to merging technology and culture, having taken a company — Tribold — from inception to acquisition (by Sigma in 2013), and she continues to advise service providers on how to drive their own transformations. This impressive female leader and vocal advocate for other women in the industry will join Women in Comms for a live radio show to discuss all things digital transformation, including the cultural transformation that goes along with it.

Like Us on Facebook
Twitter Feed