Recent announcements by Cisco and VMware have reinforced what we already saw coming: Kubernetes is on a clear path to become the next data center platform, replacing the previous generation of VM-based architectures.
If you haven’t heard of this trend, here’s a quick primer: a container is a VM on steroids -faster, more portable and more scalable. But it’s also on a diet – super lightweight, containing only the code and libraries necessary for that code, not a full operating system. This enables rapid deployments and scalability.
In the huge ecosystem of opensource and commercial products built around Docker, one tool stands out: Kubernetes. This is a container orchestrator that enables the deployment and management of large-scale container-based applications, often referred to as microservices applications.
Some people think of Kubernetes as the next Linux, which conveys how Kubernetes is becoming a ubiquitous platform for building and running applications. This analogy also works when you compare the concept of a Linux Distro (like Mint, Ubuntu, and Debian) to a Kubernetes Distro.
Some Kubernetes distros can be deployed on-premises while others are provided as cloud-based services. Some are compatible with the original Kubernetes spec (vanilla distros) and some add unique functionality.
The main factor behind the success of Kubernetes is how it simplifies and speeds up software development and deployment. For example, it enables “immutable infrastructure” which means that instead of deploying incremental changes to update your applications, you create a new version for every change – whether it’s in the application code or in the infrastructure. This concept brings tremendous benefits to the way we develop, deploy and operate applications (and how we secure them).
Prominent Kubernetes Platforms
Another advantage of the microservices architecture is its ability to parallelize development. By decoupling application functions using microservices, large complex development projects can be broken up into smaller, independent teams, speeding up overall development.
In all respects, Kubernetes is driving an IT revolution, and we are seeing evidence of it across our user base. For this reason, we introduced Tufin Orca, a security policy automation solution for containers and microservices environments. In a nutshell, Tufin Orca extends Tufin’s security policy management capabilities into Kubernetes environments.
In this blog series, we will share some insights into Kubernetes, micro-service architectures and how Tufin Orca can help you to automate security policies in such environments.
*** This is a Security Bloggers Network syndicated blog from Tufin - Cybersecurity & Agility with Network Security Policy Orchestration authored by Reuven Harrison. Read the original post at: https://www.tufin.com/node/2210