Name: Reenforce Kubernetes Image Isolation in Multi-Tenant Service - Eric Lin, Alibaba
Start: 2019-05-23T15:55:00+0200
End: 2019-05-23T16:30:00+0200

Barcelona, Spain
May 20–23, 2019
Click here for more information and registration

View Conference Venue and Sponsor Showcase Map

Back To Schedule

Reenforce Kubernetes Image Isolation in Multi-Tenant Service - Eric Lin, Alibaba

Feedback form is now closed.

Serverless Computing is one of the fast-evolving technologies in Public Cloud nowadays, such as AWS fargate, Azure ACI. However, this introduces various isolation challenges as multiple tenants could share the same physical server. This talk introduces one of the key isolation issues while using k8s as a public multi-tenant service. The isolation issues within this talk are particularly focused on the image. K8s is a great project that aggregates a large number of computing nodes and providing container service to tenants, which also provides very basic isolation features. However, the isolation is still not good enough to serve the public cloud scenario. There are some flaws existing in both k8s and its dependency containerd. And in this talk, we will go through the causes of these flaws and how we fix and feedback it to upstream

Speakers

Eric Lin

Senior Software Engineer, Alibaba

Eric is a senior software engineer working in Alibaba Cloud. Eric is now responsible for designing and developing the serverless container instance service, which gives customers an ability to run containers without managing servers. He has a wealth of experience in the field of containers... Read More →

Reenforce Kubernetes image isolation in multi tenant service pdf

Thursday May 23, 2019 15:55 - 16:30 CEST
Hall 8.0 C2

Runtimes

Skill Level Intermediate (Mid-level experience)
Link to Session Recording https://youtu.be/s0L2jej28k4

KubeCon + CloudNativeCon Europe 2019

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Eric Lin