t cht lk
Michael Cade , Senior Technologist Product Strategy at
Veeam Software
Kubernetes is now acting as a management platform for containers and interestingly , established and regulated industries like banking and financial services show greater interest and are early adopters of this technology , while other industries are still observing and evaluating the pros and cons .
The latter first look at what this is all about , whether it can be incorporated into their networks and be useful at all to gain an advantage in the market . On the side , however , these entrepreneurs are busy with other trends that they need to take a closer look at , such as cloud Infrastructure-as-a-Service .
Compatible with the runtime environments ?
Of course , the question immediately arises as to whether Kubernetes and the virtualization software are compatible . First , let ’ s set the record straight about exactly what we are talking about : Kubernetes is an orchestration system for containers ; Docker for example , is for now the most common container runtime .
The containers created in Docker can each exist and be worked on separately . Developers can manage them individually and do not necessarily need a higher-level solution to manage them . But with the number of containers , the complexity grows and the overview is lost .
To keep this effort small and as clear as possible , a central administration point must be set up – and this is where Kubernetes comes into play . The software keeps an eye on everything and ensures , for example , that payloads are distributed dynamically and sensibly to the containers to guarantee the availability of a service and ensure that it can meet all requirements .
Kubernetes is thus an orchestration for Docker and accordingly , a connection between the two is not only possible but desirable .
New security vulnerabilities in sight ?
Kubernetes does not change the threat landscape . It does not close security gaps but requires the same Modern Data Protection as any other type of data . Formerly , we just saved everything , then with virtualization we selected what to protect and how often .
Today , we move forward with containers that sometimes only last for minutes or hours , other than virtual machines that can have a lifetime of months . Kubernetes . io provides in-depth documentation that focuses on the ‘ Four Cs ’ of cloud-native security : Code ; Container ; Cluster ; Cloud / Corporate Data Center .
It states that each layer of the cloud-native security model builds on the previous one . Accordingly , the coding layer ( code layer ) benefits from a strong foundation at the cloud , cluster and container level . So , if weak IT security standards apply there , the difficulties cannot be solved at the coding level . Each level must therefore be a strong foundation in itself . Kubernetes simply comes in here as the orchestrator of the containers .
What is becoming important , however , is data protection itself , for example backup and replication . The pioneers of Kubernetes and containers often complain about a lack of data security and data management in relation to the new environments . This is because the infrastructure is now closer to the applications with the help of containers , and data backup must be carried out differently accordingly . There are already coming up the stateful workloads instead of the stateless ones common in container environments and there is an increase of data service deployed right inside the Kubernetes cluster .
Other tools from outside , like Amazon Relational Database Service ( AWS RDS ), can be connected to applications which are running within Kubernetes . This changes the way data is protected .
The Veeam Cloud Protection Trends Report 2021 shows that we are in a transition , because 46 % of SaaS and PaaS admins said that their information from stateful application is being saved separately , while 32 % of the IaaS admins said that their container architecture has been built for a long lifetime and therefore they need no backup . On the other hand , 14 % of backup administrators do not have a backup solution for containers yet but are searching .
Over the last 15 years , the focus has been on protecting data in virtualized environments , but container environments are not virtual machines . Backup works differently . At the same time , the administrator is busy with the applications and their platforms , taking on a kind of DevOps role . This is where specialized solutions for data management , data backup and recovery come into play , such as those already offered by Kasten by Veeam , which are designed to deal with Kubernetes and container environments of all kinds , including Docker . It is important to consider the specifics of these new types of environments , such as the ephemeral nature of many containers and their microfunctions , or the integration into cloud , multi-cloud , or hybrid IT infrastructures .
76 INTELLIGENTCIO LATAM www . intelligentcio . com