In short words, a VM for just one process. And like VM, it
wants to give isolation, security, portability and others to
It is a neat bundle of three major components
Linux namespaces (isolated view of system.)
Cgroups (limit and isolate the resource usage.)
Union Filesystem (AUFS, DeviceMapper)
What is Docker ?
Mesosphere & CoreOS Fleet
CoreOS etcd & Hashicorp’s consul
Docker Hub and Crate.io
Docker is still expanding...
Drip your Docker Images with Security
There are lot of images out there, which ones I can trust ?
I’m a publisher, and my image has been forked but still uses my
Extending Plug & Play architecture to third-party vendors
How to make docker work with flocker and weave at same time
I don’t want to use docker compose but some third party stuff ?
OCI (Open Container Initiative)
Improve Infrastructure Plumbing (Pipeworks)
Re-use and improve existing plumbing
Make new plumbing easy to re-use and improve
Make small and simple tools, not big complicated ones
Define standard interfaces for assembling larger systems
Docker contributed to its runtime.
Supports all major features.
† User namespaces
† Container migration
Major Vendors are contributing their code into it
† Microsoft providing windows support
† ARM support
† Intel Contributing DPDK, Secure Enclave, bootchain