Hardware for Kubernetes, peeling back the layers
Kubernetes enables developers to deploy and manage applications dynamically, making them more efficient, powerful, and extensible. Many describe the shift away from monolithic stacks on single-purpose machines to cloud native as a “decoupling of applications from…
Kubernetes secrets management: Build secure apps faster without secrets
How can we make handling secrets in Cloud Native environments less challenging and painful? Virtually all applications requires some sort of secret, such as a database password, a service token or a certificate to establish secure…
Making data work for developers with Kubernetes & Cassandra
What new demands do Kubernetes and microservices place on the data tier? Kubernetes has fueled a new breed of cloud-native applications that deliver agility in the dev cycle through microservice architectures, scale as traffic fluctuates, and…
Efficient model training in the cloud with Kubernetes, TensorFlow, and Alluxio
Guest post originally published on the Alluxio Engineering Blog by Rong Gu, associate researcher at Nanjing University, and Yang Che, is a senior technical expert at Alibaba Cloud, feat. the Alibaba Cloud Container Service Team Case…
Jenkins and Kubernetes: The Perfect Pair
Guest post originally published on the Rookout blog by Liran Haimovitch, co-founder and CTO of Rookout As the world is adapting to new and unforeseen circumstances, many of the traditional ways of doing things are no longer. One…
Kubernetes best practices for monitoring and alerts
Guest post originally published on the Fairwinds blog by Sarah Zelechoski, VP of engineering at Fairwinds The truth is Kubernetes monitoring done right is a fantasy for most. It’s a problem magnified in a dynamic, ever-changing…
The New Stack: "Kubernetes authentication ‘solved’: SPIFFE/SPIRE move to CNCF Incubation"
It’s been just over two years now since the SPIFFE (Secure Production Identity Framework For Everyone) and SPIRE (the SPIFFE Runtime Environment) projects joined the Cloud Native Computing Foundation (CNCF), and now the projects have moved…
Implementing Canary releases on Kubernetes w/ Spinnaker, Istio, and Prometheus
In a microservices world, applications consist of dozens, hundreds, or even thousands of components. Manually deploying and verifying deployment quality in production is virtually impossible. Kubernetes, which natively supports rolling updates, enables blue-green application deployments with…
Kubernetes security anatomy and the recently disclosed CVEs
Recently, 2 CVE disclosures (CVE-2020-8555, CVE-2020-8552) made by the community – the first affects the control plane and the latter is network security related that can be exploited to hijack host and other containers traffic. In…