Google expands container service with GKE Advanced – TechCrunch



[ad_1]

With its engine Kuberntes (GKE), Google Cloud Google has a long-standing managed service for running containers on its platform. Kubernetes users tend to meet a variety of needs, but so far, Google has offered only one level of GKE that is not necessarily intended for high-end enterprise users that the company is trying to woo . Today, however, the company has announced a new advanced edition of GKE, which introduces a number of new features and an enhanced service level contract, backed by financial resources, additional security tools and new automation features. You can think of GKE Advanced as the enterprise version of GKE.

The new service will be launched in the second quarter of the year and has not yet announced a price. The standard version of GKE now calls GKE Standard.

According to Google, the service relies on the knowledge acquired by the company for managing a complex container infrastructure internally for years.

For businesses, the Service Level Agreement (SLA), financed by financial resources, is certainly a significant benefit. The promise here is 99.95% guaranteed availability for regional clusters.

Most users who opt for a managed Kubernetes the environment because they do not want to deal with the management of these clusters themselves. With GKE Standard, there is still work to do to resize clusters. For this reason, GKE Advanced includes an automatic vertical pod badyzer that monitors the use of resources and adapts it as needed, as well as Node Auto Provisioning, an enhanced version of the setting. automatic cluster scale in GKE Standard.

In addition to these new advanced features of GKE, Google also adds existing GKE security features, such as the GKE Sandbox, and the ability to ensure that only signed and verified images are used in the container environment .

The sandbox uses Google's Google Container sandbox runtime. With this, each sandbox gets its own user-space kernel, which adds an extra layer of security. With binary authorization, GKE Advanced users can also ensure that all container images are signed by a trusted authority before being put into production. In theory, a person could still introduce malicious code into the containers, but this process, which applies eg standard container release practices, should ensure that only authorized containers can be run in the environment.

GKE Advanced also includes support for measuring usage of GKE, which allows companies to monitor users of a GKE cluster and bill them accordingly.

[ad_2]
Source link