Aqua Security, Co-Founder & CTO
June 13th, 2018 | 29 mins 20 secs
aqua security, container orchestration, containers, docker, ebook, google, gvisor, hyper.sh, kata containers, kubernetes ebook 2, linux, linux kernel, microservices
In the race to make this weird, wild world of distributed, containerized applications compatible with the virtualized infrastructure upon which most enterprises depend, perhaps no project has made more progress than Kata Containers. The product of collaboration between the Hyper.sh project and Intel’s Clear Containers, Kata aims to pair individual containers with hypervisors, creating that direct link with the hardware that typifies first-generation virtualization, and isolating host Linux kernels from one another.
Google’s recent gVisor project follows a similar path, creating a minimal Linux kernel for the container hosts that reduces the likelihood of exploit.