SlideShare a Scribd company logo

Docker EE 2.0 Choice, Security & Agility

Download as PPTX, PDF
Ashnikbiz
Ashnikbiz

By Eric Tan Solutions Engineer - Docker Tech Insights, Mumbai

Technology
1 of 32
Docker EE 2.0 Choice, Security & Agility Eric Tan Solutions Engineer
Evolution of Containers
Containers are the “Fastest Growing Cloud Enabling Technology” By 2020, more than 50% of global organizations will be running containers in production. -Gartner Title source: 451 Research
Static Website ? ? ? ? ? ? ? ? Web Frontend ? ? ? ? ? ? ? ? Background Workers ? ? ? ? ? ? ? ? User DB ? ? ? ? ? ? ? ? Analytics DB ? ? ? ? ? ? ? ? Queue ? ? ? ? ? ? ? ? Desktop Test/QA Cluster Production Cluster Public Cloud Data Center Mainframe Windows Server Edge Device The “Matrix from Hell” Breeds Complexity
The “Matrix from Hell” Breeds Complexity Static Website ? ? ? ? ? ? ? Web Frontend ? ? ? ? ? ? ? Background Workers ? ? ? ? ? ? ? User DB ? ? ? ? ? ? ? Analytics DB ? ? ? ? ? ? ? Queue ? ? ? ? ? ? ? Desktop Test/QA Cluster Production Cluster Public Cloud Data Center Mainframe Windows Server Edge Device — Containers Cut Complexity
The Docker Enterprise Edition
Docker Enterprise Edition is More than Containers + Orchestration... CONTAINER ORCHESTRATION Container placement & schedulingDOCKER ENTERPRISE EDITION CONTAINER Image format & runtime Lifecycle Mgt Governance Security Automated, Open and Extensible Orchestration Organizations also require: Lifecycle Management + Governance + Security + Automation + Support
Only Docker Delivers All Three Core Enterprise Requirements • Hybrid and multi-clouds • Windows and Linux • Traditional apps and microservices • DevOps and existing ops processes Choice AgilitySecurity • Unified operations • Rapid delivery and response • Cost efficiency • Safer apps • Governance • Chain of custody • Threat mitigation Only Docker EE Gives Global 2000 Customers the Following:
450+ Enterprise IT Customers Trust Docker Enterprise Edition Financial Services Healthcare & Science Tech Oil & Gas / Energy Insurance Public Sector
CHOICE
Docker Enterprise Edition is certified to run on CentOS, RHEL, Ubuntu, SUSE, Oracle Linux and Windows Server and can be deployed into all major public clouds while maintaining the same operating experience companies with 1,000+ employees have multiple clouds81% Source: https://w3techs.com/technologies/details/os-linux/all/all Source: Rightscale 2018 State of the Cloud Report CHOICE Only Container Platform that is Multi-Linux, Multi-OS and Multi- Cloud
Existing Application Modern Methodologies Integrate to CI/CD and automation system Convert to a container with Docker EE Modernize Traditional Applications Modern Infrastructure Built on premises, in the cloud, or as part of a hybrid environment. Modern Microservices Add new services or start peeling off services from monolith code base App CHOICE Only Container Platform Designed for both Microservices and Traditional Applications
Node Worker Node Worker Node Worker Node Worker Worker Nodes App-Net: 10.0.0.0/24 10.0.0.1 10.0.0.2 • Leverage best-in-class technologies across Windows and Linux • Connect Windows and Linux containers in the same cluster through a common overlay network • Build Compose files for hybrid applications • Leverage labels and constraints for intelligent placement and scheduling CHOICE Only Container Platform to Deliver First-Class Support and Interoperability across Linux and Windows
Choice of Swarm and Kubernetes: Only Solution That Lets You Run Swarm Today, Kubernetes Tomorrow and Vice Versa Docker EE is the only platform that allows you to run both Swarm and Kubernetes in the same cluster: ● Developers do not need to select orchestrators ● Freedom to change orchestrators as needs arise ● EE Manager Nodes are both Swarm and Kubernetes enabled ● Every worker node is both Kubernetes API- and Swarm API-ready Secure Cluster Management App Scheduler Swarm KubernetesOR Docker EE Cluster Docker EE Orchestration Node Node Node CHOICE
Deploy Applications with Either Compose or Kubernetes YAML Docker Compose Kubernetes YAML Node NodeNode Node • Simple Compose spec for developers, IT ops have multiple options for deployment • Migrate existing Docker apps to Kubernetes at your own pace KEY BENEFITS • Use existing Docker Compose files and choose at runtime to deploy on either Swarm or Kubernetes FEATURE / CAPABILITY CHOICE
Deploy Kubernetes Apps via UI or CLI • Docker EE uses standard Kube API and CLI • Use UCP UI to upload yaml files for deploying Kube workloads • Both methods enforce permissions and limit unauthorized access −Client bundle to connect local client to UCP controller with user certs CHOICE
AGILITY
Distributed Supply Chain Supports Global Development and Deployment • Enable “follow the sun” development with secure image promotion and image caching • Rapidly update software when new patches need to be distributed globally KEY BENEFITS • Image mirroring: Push and pull images from one registry to another based on pre- defined policies • Image caching: Extend the registry to a local cache while maintaining secure posture via encryption and access controls FEATURE / CAPABILITY Primary Registry Mirror Registry HQ Cache AGILITY
Swarm: Application (Layer 7) Ingress Routing 21 Upstream External LB Traffic via DNS (http port 80, https port 443, etc) Worker Node App2 Ingress LB Node Proxy Ingress LB Node Proxy Worker Node Worker Node acme.com/app1 acme.com/app2 App1 App1 App2 AGILITY • Intelligently route traffic to the appropriate nodes with performance and security • Integrate with preferred load balancing tools KEY BENEFITS • Hostname and Path-based routing • SSL termination • Included load balancing proxy with NGINX, swappable for others FEATURE / CAPABILITY
Docker EE Delivers Infrastructure Savings and Productivity Gains Financial Services Case Study Applications 500 VMs 5,300 Cores 22,000 $12 million CPU utilization 57% max Docker EE Cuts TCO by 41%, Saves $28M over 5yrs Applications 500 VMs 1,320 Cores 13,100 $7 millionCPU utilization ~90% max 75% reduction 40% reduction 41% reduction 2x improvement Annualized Cost AGILITY
Docker EE Makes Scaling Your Environment Easy Docker EE Management Console Docker EE Control Plane and Cluster Management Node Node Node • Single command to join new Swarm/Kubernetes nodes into a secure cluster • Automatically integrate new nodes into existing access controls and policies • No need to install separate services; all nodes come pre- installed with necessary services KEY BENEFITS Swarm-mode cluster with Kubernetes-ready Linux nodes Node Node AGILITY
Unified Operations Enable Your Existing Team to Operationalize Docker Containers in Production Docker EE simplifies and automates the day-to-day application delivery and operations of containers, increasing what your existing team can support With Docker Enterprise Edition Other Container Platforms SKILLS REQUIRED Unbudgeted new headcount for operational expertise and support Existing team AGILITY
SECURITY
> _ *** *** *** Build With Integrity • Verify, sign, & scan • Secure image storage • Secure sensitive data Trusted Automation (CI/CD) • Verifiable chain of custody • Policy-based automation Run Safe • Secure by default • Security Zones • Governance controls Docker EE Secures the End-to-End Software Supply ChainSECURITY
• Respond faster to changing organizational demands • Drive higher infrastructure and operational efficiencies and avoid cluster sprawl KEY BENEFITS • Secure Environment Zones −Logical and physical partitioning − Role-based permissions for delivery and operations FEATURE / CAPABILITY Operations Team TEST STAGING PRODUCTION DOCKER ENTERPRISE EDITION MANAGEMENT PLANE Single cluster, multiple divided zones SANDBOX Define Secure Environment Zones to Avoid Costly Cluster SprawlSECURITY
Node Worker Node Worker Node Worker Node Worker swarm mode cluster docker enterprise edition universal control plane trusted registry Node Worker Node Worker .NET Dev Team Using Swarm Java Dev Team using K8s Java Dev Team Using Swarm Ops Team Define Secure Application Zones to Enforce IT Governance • Easily define resource-based permissions to different teams and expose only the allotted resources to each team • Re-allocate resources as needed KEY BENEFITS • Integrate with LDAP/AD and create granular and flexible access controls • Combine Namespace isolation with node-based isolation for increased separation FEATURE / CAPABILITY SECURITY
Threat Mitigation: Scan Container Images for VulnerabilitiesSECURITY • Reduce risk by identifying security issues early • Stop automation workflows when security issues discovered • Ensure compliance with alerts for new vulnerabilities KEY BENEFITS • Integrated security scanning and vulnerability monitoring with customized alerts • Binary level scanning provides deep visibility into all components FEATURE / CAPABILITY
Threat Mitigation: Audit All Image Layers and ComponentsSECURITY • Ensure compliance with an audit log of all application dependencies • Track supporting library versions and licenses KEY BENEFITS • Get a full Bill of Materials for all of your Docker images that details all application and library dependencies • Detailed visibility of all Layers including those from Base Images FEATURE / CAPABILITY
Access Control: Image PromotionSECURITY FEATURE / CAPABILITY KEY BENEFITS • Restrict access to images to the right users. • Track and lock down on image versions. • Promotes “blessed” images from one repository to a different repository in the same DTR using a policy. • Repositories each have their own access control. • Images can be re-tagged automatically to a new flag.
Maintaining a Globally Consistent Supply Chain • Create a single source of truth for containerized applications no matter where they are deployed • Maintain a single supply chain for a globally-distributed enterprise footprint KEY BENEFITS • Connect multiple Docker EE clusters to a single private registry • Validate image signatures before deployment FEATURE / CAPABILITY Docker Trusted Registry Docker EE Cluster Docker EE Cluster Docker EE Cluster Docker EE Cluster SECURITY
Trusted Automation, With Verifiable Chain of Custody ● Image signing and scanning of applications to validate and verify content ● Content Trust: Only run applications that have the required signatures ● Automated policies for image promotions across the app development lifecycle dev/hello-world No ‘critical’ or ‘major’ vulnerabilities prod/hello-world App.go App.go SECURITY
THANK YOU :)

Recommended

Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...
Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...
Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...
Kangaroot
 
How to containerize at speed and at scale with Docker Enterprise Edition, mov...
How to containerize at speed and at scale with Docker Enterprise Edition, mov...How to containerize at speed and at scale with Docker Enterprise Edition, mov...
How to containerize at speed and at scale with Docker Enterprise Edition, mov...
Kangaroot
 
Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...
Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...
Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...
Ashnikbiz
 
AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...
AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...
AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...
fast_retailing
 
Containers and microservices for realists
Containers and microservices for realistsContainers and microservices for realists
Containers and microservices for realists
Karthik Gaekwad
 
Innovation with Open Sources and App Modernization for Developers | Ian Y. Choi
Innovation with Open Sources and App Modernization for Developers | Ian Y. ChoiInnovation with Open Sources and App Modernization for Developers | Ian Y. Choi
Innovation with Open Sources and App Modernization for Developers | Ian Y. Choi
Vietnam Open Infrastructure User Group
 
Docker Birthday #5 Meetup Cluj - Presentation
Docker Birthday #5 Meetup Cluj - PresentationDocker Birthday #5 Meetup Cluj - Presentation
Docker Birthday #5 Meetup Cluj - Presentation
Alex Vranceanu
 
Cloud-native Data
Cloud-native DataCloud-native Data
Cloud-native Data
cornelia davis
 

Recommended

Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...
Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...
Kubernetes made easy with Docker Enterprise - Tech deep dive on Docker/Kubern...
Kangaroot
 
How to containerize at speed and at scale with Docker Enterprise Edition, mov...
How to containerize at speed and at scale with Docker Enterprise Edition, mov...How to containerize at speed and at scale with Docker Enterprise Edition, mov...
How to containerize at speed and at scale with Docker Enterprise Edition, mov...
Kangaroot
 
Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...
Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...
Docker Enterprise Edition Overview by Steven Thwaites, Technical Solutions En...
Ashnikbiz
 
AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...
AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...
AWS Summit 2015 Tokyo Breakout: Global Large Scale Cloud Design and Cloud Nat...
fast_retailing
 
Containers and microservices for realists
Containers and microservices for realistsContainers and microservices for realists
Containers and microservices for realists
Karthik Gaekwad
 
Innovation with Open Sources and App Modernization for Developers | Ian Y. Choi
Innovation with Open Sources and App Modernization for Developers | Ian Y. ChoiInnovation with Open Sources and App Modernization for Developers | Ian Y. Choi
Innovation with Open Sources and App Modernization for Developers | Ian Y. Choi
Vietnam Open Infrastructure User Group
 
Docker Birthday #5 Meetup Cluj - Presentation
Docker Birthday #5 Meetup Cluj - PresentationDocker Birthday #5 Meetup Cluj - Presentation
Docker Birthday #5 Meetup Cluj - Presentation
Alex Vranceanu
 
Cloud-native Data
Cloud-native DataCloud-native Data
Cloud-native Data
cornelia davis
 
Alibaba Cloud Conference 2016 - Docker Enterprise
Alibaba Cloud Conference 2016 - Docker EnterpriseAlibaba Cloud Conference 2016 - Docker Enterprise
Alibaba Cloud Conference 2016 - Docker Enterprise
John Willis
 
Docker for the enterprise
Docker for the enterpriseDocker for the enterprise
Docker for the enterprise
Bert Poller
 
Cloud Native Patterns with Bluemix Developer Console
Cloud Native Patterns with Bluemix Developer ConsoleCloud Native Patterns with Bluemix Developer Console
Cloud Native Patterns with Bluemix Developer Console
Matthew Perrins
 
Docker In Cloud
Docker In CloudDocker In Cloud
Docker In Cloud
Santanu Pattanayak
 
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Ashnikbiz
 
VMware@Night: Container & Virtualisierung
VMware@Night: Container & VirtualisierungVMware@Night: Container & Virtualisierung
VMware@Night: Container & Virtualisierung
Digicomp Academy AG
 
Continuous Delivery Live
Continuous Delivery LiveContinuous Delivery Live
Continuous Delivery Live
Docker, Inc.
 
Tampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday DockerTampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday Docker
Sakari Hoisko
 
Docker Birthday #3 Slides - Overview
Docker Birthday #3 Slides - OverviewDocker Birthday #3 Slides - Overview
Docker Birthday #3 Slides - OverviewChris Ciborowski
 
Weave User Group Talk - DockerCon 2017 Recap
Weave User Group Talk - DockerCon 2017 RecapWeave User Group Talk - DockerCon 2017 Recap
Weave User Group Talk - DockerCon 2017 Recap
Patrick Chanezon
 
Cloud foundry architecture and deep dive
Cloud foundry architecture and deep diveCloud foundry architecture and deep dive
Cloud foundry architecture and deep diveAnimesh Singh
 
Containerized Cloud Computing - Redhat
Containerized Cloud Computing - RedhatContainerized Cloud Computing - Redhat
Containerized Cloud Computing - Redhat
Amazon Web Services
 
Spring to Image
Spring to ImageSpring to Image
Spring to Image
VMware Tanzu
 
Containers, microservices and serverless for realists
Containers, microservices and serverless for realistsContainers, microservices and serverless for realists
Containers, microservices and serverless for realists
Karthik Gaekwad
 
DockerCon 2016 - Structured Container Delivery
DockerCon 2016 - Structured Container DeliveryDockerCon 2016 - Structured Container Delivery
DockerCon 2016 - Structured Container Delivery
Oscar Renalias
 
DevOps: a story about automation, open source & the Cloud
DevOps: a story about automation, open source & the CloudDevOps: a story about automation, open source & the Cloud
DevOps: a story about automation, open source & the Cloud
Adrian Todorov
 
Erik Baardse - Bringing Agility to Traditional application by docker
Erik Baardse - Bringing Agility to Traditional application by dockerErik Baardse - Bringing Agility to Traditional application by docker
Erik Baardse - Bringing Agility to Traditional application by docker
Agile Impact Conference
 
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Ashnikbiz
 
Webinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy ApplicationsWebinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy Applications
Storage Switzerland
 
DevOps for Azure
DevOps for AzureDevOps for Azure
DevOps for Azure
Michele Leroux Bustamante
 
Docker Roadshow 2016
Docker Roadshow 2016Docker Roadshow 2016
Docker Roadshow 2016
Docker, Inc.
 
Docker ee an architecture and operations overview
Docker ee an architecture and operations overviewDocker ee an architecture and operations overview
Docker ee an architecture and operations overview
Docker, Inc.
 

More Related Content

What's hot

Alibaba Cloud Conference 2016 - Docker Enterprise
Alibaba Cloud Conference 2016 - Docker EnterpriseAlibaba Cloud Conference 2016 - Docker Enterprise
Alibaba Cloud Conference 2016 - Docker Enterprise
John Willis
 
Docker for the enterprise
Docker for the enterpriseDocker for the enterprise
Docker for the enterprise
Bert Poller
 
Cloud Native Patterns with Bluemix Developer Console
Cloud Native Patterns with Bluemix Developer ConsoleCloud Native Patterns with Bluemix Developer Console
Cloud Native Patterns with Bluemix Developer Console
Matthew Perrins
 
Docker In Cloud
Docker In CloudDocker In Cloud
Docker In Cloud
Santanu Pattanayak
 
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Ashnikbiz
 
VMware@Night: Container & Virtualisierung
VMware@Night: Container & VirtualisierungVMware@Night: Container & Virtualisierung
VMware@Night: Container & Virtualisierung
Digicomp Academy AG
 
Continuous Delivery Live
Continuous Delivery LiveContinuous Delivery Live
Continuous Delivery Live
Docker, Inc.
 
Tampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday DockerTampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday Docker
Sakari Hoisko
 
Docker Birthday #3 Slides - Overview
Docker Birthday #3 Slides - OverviewDocker Birthday #3 Slides - Overview
Docker Birthday #3 Slides - OverviewChris Ciborowski
 
Weave User Group Talk - DockerCon 2017 Recap
Weave User Group Talk - DockerCon 2017 RecapWeave User Group Talk - DockerCon 2017 Recap
Weave User Group Talk - DockerCon 2017 Recap
Patrick Chanezon
 
Cloud foundry architecture and deep dive
Cloud foundry architecture and deep diveCloud foundry architecture and deep dive
Cloud foundry architecture and deep diveAnimesh Singh
 
Containerized Cloud Computing - Redhat
Containerized Cloud Computing - RedhatContainerized Cloud Computing - Redhat
Containerized Cloud Computing - Redhat
Amazon Web Services
 
Spring to Image
Spring to ImageSpring to Image
Spring to Image
VMware Tanzu
 
Containers, microservices and serverless for realists
Containers, microservices and serverless for realistsContainers, microservices and serverless for realists
Containers, microservices and serverless for realists
Karthik Gaekwad
 
DockerCon 2016 - Structured Container Delivery
DockerCon 2016 - Structured Container DeliveryDockerCon 2016 - Structured Container Delivery
DockerCon 2016 - Structured Container Delivery
Oscar Renalias
 
DevOps: a story about automation, open source & the Cloud
DevOps: a story about automation, open source & the CloudDevOps: a story about automation, open source & the Cloud
DevOps: a story about automation, open source & the Cloud
Adrian Todorov
 
Erik Baardse - Bringing Agility to Traditional application by docker
Erik Baardse - Bringing Agility to Traditional application by dockerErik Baardse - Bringing Agility to Traditional application by docker
Erik Baardse - Bringing Agility to Traditional application by docker
Agile Impact Conference
 
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Ashnikbiz
 
Webinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy ApplicationsWebinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy Applications
Storage Switzerland
 
DevOps for Azure
DevOps for AzureDevOps for Azure
DevOps for Azure
Michele Leroux Bustamante
 

What's hot (20)

Alibaba Cloud Conference 2016 - Docker Enterprise
Alibaba Cloud Conference 2016 - Docker EnterpriseAlibaba Cloud Conference 2016 - Docker Enterprise
Alibaba Cloud Conference 2016 - Docker Enterprise
 
Docker for the enterprise
Docker for the enterpriseDocker for the enterprise
Docker for the enterprise
 
Cloud Native Patterns with Bluemix Developer Console
Cloud Native Patterns with Bluemix Developer ConsoleCloud Native Patterns with Bluemix Developer Console
Cloud Native Patterns with Bluemix Developer Console
 
Docker In Cloud
Docker In CloudDocker In Cloud
Docker In Cloud
 
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...
 
VMware@Night: Container & Virtualisierung
VMware@Night: Container & VirtualisierungVMware@Night: Container & Virtualisierung
VMware@Night: Container & Virtualisierung
 
Continuous Delivery Live
Continuous Delivery LiveContinuous Delivery Live
Continuous Delivery Live
 
Tampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday DockerTampere Docker meetup - Happy 5th Birthday Docker
Tampere Docker meetup - Happy 5th Birthday Docker
 
Docker Birthday #3 Slides - Overview
Docker Birthday #3 Slides - OverviewDocker Birthday #3 Slides - Overview
Docker Birthday #3 Slides - Overview
 
Weave User Group Talk - DockerCon 2017 Recap
Weave User Group Talk - DockerCon 2017 RecapWeave User Group Talk - DockerCon 2017 Recap
Weave User Group Talk - DockerCon 2017 Recap
 
Cloud foundry architecture and deep dive
Cloud foundry architecture and deep diveCloud foundry architecture and deep dive
Cloud foundry architecture and deep dive
 
Containerized Cloud Computing - Redhat
Containerized Cloud Computing - RedhatContainerized Cloud Computing - Redhat
Containerized Cloud Computing - Redhat
 
Spring to Image
Spring to ImageSpring to Image
Spring to Image
 
Containers, microservices and serverless for realists
Containers, microservices and serverless for realistsContainers, microservices and serverless for realists
Containers, microservices and serverless for realists
 
DockerCon 2016 - Structured Container Delivery
DockerCon 2016 - Structured Container DeliveryDockerCon 2016 - Structured Container Delivery
DockerCon 2016 - Structured Container Delivery
 
DevOps: a story about automation, open source & the Cloud
DevOps: a story about automation, open source & the CloudDevOps: a story about automation, open source & the Cloud
DevOps: a story about automation, open source & the Cloud
 
Erik Baardse - Bringing Agility to Traditional application by docker
Erik Baardse - Bringing Agility to Traditional application by dockerErik Baardse - Bringing Agility to Traditional application by docker
Erik Baardse - Bringing Agility to Traditional application by docker
 
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
Secure your CI/CD pipeline with Docker EE Platform, Tech Insights Singapore -...
 
Webinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy ApplicationsWebinar: How and Why to Containerize Your Legacy Applications
Webinar: How and Why to Containerize Your Legacy Applications
 
DevOps for Azure
DevOps for AzureDevOps for Azure
DevOps for Azure
 

Similar to Docker EE 2.0 Choice, Security & Agility

Docker Roadshow 2016
Docker Roadshow 2016Docker Roadshow 2016
Docker Roadshow 2016
Docker, Inc.
 
Docker ee an architecture and operations overview
Docker ee an architecture and operations overviewDocker ee an architecture and operations overview
Docker ee an architecture and operations overview
Docker, Inc.
 
Develop and deploy Kubernetes applications with Docker - IBM Index 2018
Develop and deploy Kubernetes applications with Docker - IBM Index 2018Develop and deploy Kubernetes applications with Docker - IBM Index 2018
Develop and deploy Kubernetes applications with Docker - IBM Index 2018
Patrick Chanezon
 
Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...
Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...
Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...
Docker, Inc.
 
SS Introduction to Docker
SS Introduction to DockerSS Introduction to Docker
SS Introduction to Docker
Stephane Woillez
 
Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18
Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18
Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18
CodeOps Technologies LLP
 
What's New in Docker
What's New in DockerWhat's New in Docker
What's New in Docker
Docker, Inc.
 
Docker Bday #5, SF Edition: Introduction to Docker
Docker Bday #5, SF Edition: Introduction to DockerDocker Bday #5, SF Edition: Introduction to Docker
Docker Bday #5, SF Edition: Introduction to Docker
Docker, Inc.
 
VMworld 2015: Container Orchestration with the SDDC
VMworld 2015: Container Orchestration with the SDDCVMworld 2015: Container Orchestration with the SDDC
VMworld 2015: Container Orchestration with the SDDC
VMworld
 
oci-container-engine-oke-100.pdf
oci-container-engine-oke-100.pdfoci-container-engine-oke-100.pdf
oci-container-engine-oke-100.pdf
NandiniSinghal16
 
Modernizing Java Apps with Docker
Modernizing Java Apps with DockerModernizing Java Apps with Docker
Modernizing Java Apps with Docker
Docker, Inc.
 
Containers and the Docker EE Difference and usecases
Containers and the Docker EE Difference and usecasesContainers and the Docker EE Difference and usecases
Containers and the Docker EE Difference and usecases
Ashnikbiz
 
Executive Briefing: The Why, What, and Where of Containers
Executive Briefing: The Why, What, and Where of ContainersExecutive Briefing: The Why, What, and Where of Containers
Executive Briefing: The Why, What, and Where of Containers
NVISIA
 
A curtain-raiser to the container world Docker & Kubernetes
A curtain-raiser to the container world Docker & KubernetesA curtain-raiser to the container world Docker & Kubernetes
A curtain-raiser to the container world Docker & Kubernetes
zekeLabs Technologies
 
Containers and Microservices for Realists
Containers and Microservices for RealistsContainers and Microservices for Realists
Containers and Microservices for Realists
Oracle Developers
 
Webinar : Docker in Production
Webinar : Docker in ProductionWebinar : Docker in Production
Webinar : Docker in Production
Newt Global Consulting LLC
 
Dockers and kubernetes
Dockers and kubernetesDockers and kubernetes
Dockers and kubernetes
Dr Ganesh Iyer
 
Getting Started with Docker - Nick Stinemates
Getting Started with Docker - Nick StinematesGetting Started with Docker - Nick Stinemates
Getting Started with Docker - Nick Stinemates
Atlassian
 
DockerPenang Meetup #3
DockerPenang Meetup #3DockerPenang Meetup #3
DockerPenang Meetup #3
Sujay Pillai
 
DCHQ
DCHQDCHQ
DCHQ
luqman_dchq
 

Similar to Docker EE 2.0 Choice, Security & Agility (20)

Docker Roadshow 2016
Docker Roadshow 2016Docker Roadshow 2016
Docker Roadshow 2016
 
Docker ee an architecture and operations overview
Docker ee an architecture and operations overviewDocker ee an architecture and operations overview
Docker ee an architecture and operations overview
 
Develop and deploy Kubernetes applications with Docker - IBM Index 2018
Develop and deploy Kubernetes applications with Docker - IBM Index 2018Develop and deploy Kubernetes applications with Docker - IBM Index 2018
Develop and deploy Kubernetes applications with Docker - IBM Index 2018
 
Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...
Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...
Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...
 
SS Introduction to Docker
SS Introduction to DockerSS Introduction to Docker
SS Introduction to Docker
 
Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18
Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18
Power of Choice in Docker EE 2.0 - Anoop - Docker - CC18
 
What's New in Docker
What's New in DockerWhat's New in Docker
What's New in Docker
 
Docker Bday #5, SF Edition: Introduction to Docker
Docker Bday #5, SF Edition: Introduction to DockerDocker Bday #5, SF Edition: Introduction to Docker
Docker Bday #5, SF Edition: Introduction to Docker
 
VMworld 2015: Container Orchestration with the SDDC
VMworld 2015: Container Orchestration with the SDDCVMworld 2015: Container Orchestration with the SDDC
VMworld 2015: Container Orchestration with the SDDC
 
oci-container-engine-oke-100.pdf
oci-container-engine-oke-100.pdfoci-container-engine-oke-100.pdf
oci-container-engine-oke-100.pdf
 
Modernizing Java Apps with Docker
Modernizing Java Apps with DockerModernizing Java Apps with Docker
Modernizing Java Apps with Docker
 
Containers and the Docker EE Difference and usecases
Containers and the Docker EE Difference and usecasesContainers and the Docker EE Difference and usecases
Containers and the Docker EE Difference and usecases
 
Executive Briefing: The Why, What, and Where of Containers
Executive Briefing: The Why, What, and Where of ContainersExecutive Briefing: The Why, What, and Where of Containers
Executive Briefing: The Why, What, and Where of Containers
 
A curtain-raiser to the container world Docker & Kubernetes
A curtain-raiser to the container world Docker & KubernetesA curtain-raiser to the container world Docker & Kubernetes
A curtain-raiser to the container world Docker & Kubernetes
 
Containers and Microservices for Realists
Containers and Microservices for RealistsContainers and Microservices for Realists
Containers and Microservices for Realists
 
Webinar : Docker in Production
Webinar : Docker in ProductionWebinar : Docker in Production
Webinar : Docker in Production
 
Dockers and kubernetes
Dockers and kubernetesDockers and kubernetes
Dockers and kubernetes
 
Getting Started with Docker - Nick Stinemates
Getting Started with Docker - Nick StinematesGetting Started with Docker - Nick Stinemates
Getting Started with Docker - Nick Stinemates
 
DockerPenang Meetup #3
DockerPenang Meetup #3DockerPenang Meetup #3
DockerPenang Meetup #3
 
DCHQ
DCHQDCHQ
DCHQ
 

More from Ashnikbiz

CloudOps_tool.pptx
CloudOps_tool.pptxCloudOps_tool.pptx
CloudOps_tool.pptx
Ashnikbiz
 
Webinar_CloudOps final.pptx
Webinar_CloudOps final.pptxWebinar_CloudOps final.pptx
Webinar_CloudOps final.pptx
Ashnikbiz
 
Autoscaling in Kubernetes (K8s)
Autoscaling in Kubernetes (K8s)Autoscaling in Kubernetes (K8s)
Autoscaling in Kubernetes (K8s)
Ashnikbiz
 
Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...
Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...
Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...
Ashnikbiz
 
Zero trust in a multi tenant environment
Zero trust in a multi tenant environment Zero trust in a multi tenant environment
Zero trust in a multi tenant environment
Ashnikbiz
 
Deploy and automate ‘Secrets Management’ for a multi-cloud environment
Deploy and automate ‘Secrets Management’ for a multi-cloud environmentDeploy and automate ‘Secrets Management’ for a multi-cloud environment
Deploy and automate ‘Secrets Management’ for a multi-cloud environment
Ashnikbiz
 
Deploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platformsDeploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platforms
Ashnikbiz
 
Deploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platformsDeploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platforms
Ashnikbiz
 
The Best Approach For Multi-cloud Infrastructure Provisioning-2
The Best Approach For Multi-cloud Infrastructure Provisioning-2The Best Approach For Multi-cloud Infrastructure Provisioning-2
The Best Approach For Multi-cloud Infrastructure Provisioning-2
Ashnikbiz
 
The Best Approach For Multi-cloud Infrastructure Provisioning
The Best Approach For Multi-cloud Infrastructure Provisioning The Best Approach For Multi-cloud Infrastructure Provisioning
The Best Approach For Multi-cloud Infrastructure Provisioning
Ashnikbiz
 
Which PostgreSQL is right for your multi cloud strategy? P2
Which PostgreSQL is right for your multi cloud strategy? P2Which PostgreSQL is right for your multi cloud strategy? P2
Which PostgreSQL is right for your multi cloud strategy? P2
Ashnikbiz
 
Which PostgreSQL is right for your multi cloud strategy? P1
Which PostgreSQL is right for your multi cloud strategy? P1Which PostgreSQL is right for your multi cloud strategy? P1
Which PostgreSQL is right for your multi cloud strategy? P1
Ashnikbiz
 
Reduce the complexities of managing Kubernetes clusters anywhere 2
Reduce the complexities of managing Kubernetes clusters anywhere 2Reduce the complexities of managing Kubernetes clusters anywhere 2
Reduce the complexities of managing Kubernetes clusters anywhere 2
Ashnikbiz
 
Reduce the complexities of managing Kubernetes clusters anywhere
Reduce the complexities of managing Kubernetes clusters anywhereReduce the complexities of managing Kubernetes clusters anywhere
Reduce the complexities of managing Kubernetes clusters anywhere
Ashnikbiz
 
Enhance your multi-cloud application performance using Redis Enterprise P2
Enhance your multi-cloud application performance using Redis Enterprise P2Enhance your multi-cloud application performance using Redis Enterprise P2
Enhance your multi-cloud application performance using Redis Enterprise P2
Ashnikbiz
 
Enhance your multi-cloud application performance using Redis Enterprise P1
Enhance your multi-cloud application performance using Redis Enterprise P1Enhance your multi-cloud application performance using Redis Enterprise P1
Enhance your multi-cloud application performance using Redis Enterprise P1
Ashnikbiz
 
Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...
Ashnikbiz
 
Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...
Ashnikbiz
 
Enterprise-class security with PostgreSQL - 1
Enterprise-class security with PostgreSQL - 1Enterprise-class security with PostgreSQL - 1
Enterprise-class security with PostgreSQL - 1
Ashnikbiz
 
Enterprise-class security with PostgreSQL - 2
Enterprise-class security with PostgreSQL - 2Enterprise-class security with PostgreSQL - 2
Enterprise-class security with PostgreSQL - 2
Ashnikbiz
 

More from Ashnikbiz (20)

CloudOps_tool.pptx
CloudOps_tool.pptxCloudOps_tool.pptx
CloudOps_tool.pptx
 
Webinar_CloudOps final.pptx
Webinar_CloudOps final.pptxWebinar_CloudOps final.pptx
Webinar_CloudOps final.pptx
 
Autoscaling in Kubernetes (K8s)
Autoscaling in Kubernetes (K8s)Autoscaling in Kubernetes (K8s)
Autoscaling in Kubernetes (K8s)
 
Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...
Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...
Why and how to use Kubernetes for scaling of your multi-tier (n-tier) appli...
 
Zero trust in a multi tenant environment
Zero trust in a multi tenant environment Zero trust in a multi tenant environment
Zero trust in a multi tenant environment
 
Deploy and automate ‘Secrets Management’ for a multi-cloud environment
Deploy and automate ‘Secrets Management’ for a multi-cloud environmentDeploy and automate ‘Secrets Management’ for a multi-cloud environment
Deploy and automate ‘Secrets Management’ for a multi-cloud environment
 
Deploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platformsDeploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platforms
 
Deploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platformsDeploy, move and manage Postgres across cloud platforms
Deploy, move and manage Postgres across cloud platforms
 
The Best Approach For Multi-cloud Infrastructure Provisioning-2
The Best Approach For Multi-cloud Infrastructure Provisioning-2The Best Approach For Multi-cloud Infrastructure Provisioning-2
The Best Approach For Multi-cloud Infrastructure Provisioning-2
 
The Best Approach For Multi-cloud Infrastructure Provisioning
The Best Approach For Multi-cloud Infrastructure Provisioning The Best Approach For Multi-cloud Infrastructure Provisioning
The Best Approach For Multi-cloud Infrastructure Provisioning
 
Which PostgreSQL is right for your multi cloud strategy? P2
Which PostgreSQL is right for your multi cloud strategy? P2Which PostgreSQL is right for your multi cloud strategy? P2
Which PostgreSQL is right for your multi cloud strategy? P2
 
Which PostgreSQL is right for your multi cloud strategy? P1
Which PostgreSQL is right for your multi cloud strategy? P1Which PostgreSQL is right for your multi cloud strategy? P1
Which PostgreSQL is right for your multi cloud strategy? P1
 
Reduce the complexities of managing Kubernetes clusters anywhere 2
Reduce the complexities of managing Kubernetes clusters anywhere 2Reduce the complexities of managing Kubernetes clusters anywhere 2
Reduce the complexities of managing Kubernetes clusters anywhere 2
 
Reduce the complexities of managing Kubernetes clusters anywhere
Reduce the complexities of managing Kubernetes clusters anywhereReduce the complexities of managing Kubernetes clusters anywhere
Reduce the complexities of managing Kubernetes clusters anywhere
 
Enhance your multi-cloud application performance using Redis Enterprise P2
Enhance your multi-cloud application performance using Redis Enterprise P2Enhance your multi-cloud application performance using Redis Enterprise P2
Enhance your multi-cloud application performance using Redis Enterprise P2
 
Enhance your multi-cloud application performance using Redis Enterprise P1
Enhance your multi-cloud application performance using Redis Enterprise P1Enhance your multi-cloud application performance using Redis Enterprise P1
Enhance your multi-cloud application performance using Redis Enterprise P1
 
Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...
 
Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...Gain multi-cloud versatility with software load balancing designed for cloud-...
Gain multi-cloud versatility with software load balancing designed for cloud-...
 
Enterprise-class security with PostgreSQL - 1
Enterprise-class security with PostgreSQL - 1Enterprise-class security with PostgreSQL - 1
Enterprise-class security with PostgreSQL - 1
 
Enterprise-class security with PostgreSQL - 2
Enterprise-class security with PostgreSQL - 2Enterprise-class security with PostgreSQL - 2
Enterprise-class security with PostgreSQL - 2
 

Recently uploaded

Essentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with ParametersEssentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with Parameters
Safe Software
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
Cheryl Hung
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
Product School
 
Search and Society: Reimagining Information Access for Radical Futures
Search and Society: Reimagining Information Access for Radical FuturesSearch and Society: Reimagining Information Access for Radical Futures
Search and Society: Reimagining Information Access for Radical Futures
Bhaskar Mitra
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
UiPathCommunity
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
ThousandEyes
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Ramesh Iyer
 
Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*
Frank van Harmelen
 
"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi
Fwdays
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
Product School
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
Jemma Hussein Allen
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Product School
 
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
James Anderson
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
Prayukth K V
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
OnBoard
 
PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)
Ralf Eggert
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
DianaGray10
 
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
Sri Ambati
 

Recently uploaded (20)

Essentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with ParametersEssentials of Automations: Optimizing FME Workflows with Parameters
Essentials of Automations: Optimizing FME Workflows with Parameters
 
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdfFIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
 
Search and Society: Reimagining Information Access for Radical Futures
Search and Society: Reimagining Information Access for Radical FuturesSearch and Society: Reimagining Information Access for Radical Futures
Search and Society: Reimagining Information Access for Radical Futures
 
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...
 
Assuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyesAssuring Contact Center Experiences for Your Customers With ThousandEyes
Assuring Contact Center Experiences for Your Customers With ThousandEyes
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
 
Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*
 
"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi"Impact of front-end architecture on development cost", Viktor Turskyi
"Impact of front-end architecture on development cost", Viktor Turskyi
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
 
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...
 
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
 
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 previewState of ICS and IoT Cyber Threat Landscape Report 2024 preview
State of ICS and IoT Cyber Threat Landscape Report 2024 preview
 
Leading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdfLeading Change strategies and insights for effective change management pdf 1.pdf
Leading Change strategies and insights for effective change management pdf 1.pdf
 
PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)PHP Frameworks: I want to break free (IPC Berlin 2024)
PHP Frameworks: I want to break free (IPC Berlin 2024)
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
 
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
GenAISummit 2024 May 28 Sri Ambati Keynote: AGI Belongs to The Community in O...
 

Docker EE 2.0 Choice, Security & Agility

  • 1. Docker EE 2.0 Choice, Security & Agility Eric Tan Solutions Engineer
  • 3. Containers are the “Fastest Growing Cloud Enabling Technology” By 2020, more than 50% of global organizations will be running containers in production. -Gartner Title source: 451 Research
  • 4. Static Website ? ? ? ? ? ? ? ? Web Frontend ? ? ? ? ? ? ? ? Background Workers ? ? ? ? ? ? ? ? User DB ? ? ? ? ? ? ? ? Analytics DB ? ? ? ? ? ? ? ? Queue ? ? ? ? ? ? ? ? Desktop Test/QA Cluster Production Cluster Public Cloud Data Center Mainframe Windows Server Edge Device The “Matrix from Hell” Breeds Complexity
  • 5. The “Matrix from Hell” Breeds Complexity Static Website ? ? ? ? ? ? ? Web Frontend ? ? ? ? ? ? ? Background Workers ? ? ? ? ? ? ? User DB ? ? ? ? ? ? ? Analytics DB ? ? ? ? ? ? ? Queue ? ? ? ? ? ? ? Desktop Test/QA Cluster Production Cluster Public Cloud Data Center Mainframe Windows Server Edge Device — Containers Cut Complexity
  • 7. Docker Enterprise Edition is More than Containers + Orchestration... CONTAINER ORCHESTRATION Container placement & schedulingDOCKER ENTERPRISE EDITION CONTAINER Image format & runtime Lifecycle Mgt Governance Security Automated, Open and Extensible Orchestration Organizations also require: Lifecycle Management + Governance + Security + Automation + Support
  • 8. Only Docker Delivers All Three Core Enterprise Requirements • Hybrid and multi-clouds • Windows and Linux • Traditional apps and microservices • DevOps and existing ops processes Choice AgilitySecurity • Unified operations • Rapid delivery and response • Cost efficiency • Safer apps • Governance • Chain of custody • Threat mitigation Only Docker EE Gives Global 2000 Customers the Following:
  • 9. 450+ Enterprise IT Customers Trust Docker Enterprise Edition Financial Services Healthcare & Science Tech Oil & Gas / Energy Insurance Public Sector
  • 11. Docker Enterprise Edition is certified to run on CentOS, RHEL, Ubuntu, SUSE, Oracle Linux and Windows Server and can be deployed into all major public clouds while maintaining the same operating experience companies with 1,000+ employees have multiple clouds81% Source: https://w3techs.com/technologies/details/os-linux/all/all Source: Rightscale 2018 State of the Cloud Report CHOICE Only Container Platform that is Multi-Linux, Multi-OS and Multi- Cloud
  • 12. Existing Application Modern Methodologies Integrate to CI/CD and automation system Convert to a container with Docker EE Modernize Traditional Applications Modern Infrastructure Built on premises, in the cloud, or as part of a hybrid environment. Modern Microservices Add new services or start peeling off services from monolith code base App CHOICE Only Container Platform Designed for both Microservices and Traditional Applications
  • 13. Node Worker Node Worker Node Worker Node Worker Worker Nodes App-Net: 10.0.0.0/24 10.0.0.1 10.0.0.2 • Leverage best-in-class technologies across Windows and Linux • Connect Windows and Linux containers in the same cluster through a common overlay network • Build Compose files for hybrid applications • Leverage labels and constraints for intelligent placement and scheduling CHOICE Only Container Platform to Deliver First-Class Support and Interoperability across Linux and Windows
  • 14. Choice of Swarm and Kubernetes: Only Solution That Lets You Run Swarm Today, Kubernetes Tomorrow and Vice Versa Docker EE is the only platform that allows you to run both Swarm and Kubernetes in the same cluster: ● Developers do not need to select orchestrators ● Freedom to change orchestrators as needs arise ● EE Manager Nodes are both Swarm and Kubernetes enabled ● Every worker node is both Kubernetes API- and Swarm API-ready Secure Cluster Management App Scheduler Swarm KubernetesOR Docker EE Cluster Docker EE Orchestration Node Node Node CHOICE
  • 15. Deploy Applications with Either Compose or Kubernetes YAML Docker Compose Kubernetes YAML Node NodeNode Node • Simple Compose spec for developers, IT ops have multiple options for deployment • Migrate existing Docker apps to Kubernetes at your own pace KEY BENEFITS • Use existing Docker Compose files and choose at runtime to deploy on either Swarm or Kubernetes FEATURE / CAPABILITY CHOICE
  • 16. Deploy Kubernetes Apps via UI or CLI • Docker EE uses standard Kube API and CLI • Use UCP UI to upload yaml files for deploying Kube workloads • Both methods enforce permissions and limit unauthorized access −Client bundle to connect local client to UCP controller with user certs CHOICE
  • 18. Distributed Supply Chain Supports Global Development and Deployment • Enable “follow the sun” development with secure image promotion and image caching • Rapidly update software when new patches need to be distributed globally KEY BENEFITS • Image mirroring: Push and pull images from one registry to another based on pre- defined policies • Image caching: Extend the registry to a local cache while maintaining secure posture via encryption and access controls FEATURE / CAPABILITY Primary Registry Mirror Registry HQ Cache AGILITY
  • 19. Swarm: Application (Layer 7) Ingress Routing 21 Upstream External LB Traffic via DNS (http port 80, https port 443, etc) Worker Node App2 Ingress LB Node Proxy Ingress LB Node Proxy Worker Node Worker Node acme.com/app1 acme.com/app2 App1 App1 App2 AGILITY • Intelligently route traffic to the appropriate nodes with performance and security • Integrate with preferred load balancing tools KEY BENEFITS • Hostname and Path-based routing • SSL termination • Included load balancing proxy with NGINX, swappable for others FEATURE / CAPABILITY
  • 20. Docker EE Delivers Infrastructure Savings and Productivity Gains Financial Services Case Study Applications 500 VMs 5,300 Cores 22,000 $12 million CPU utilization 57% max Docker EE Cuts TCO by 41%, Saves $28M over 5yrs Applications 500 VMs 1,320 Cores 13,100 $7 millionCPU utilization ~90% max 75% reduction 40% reduction 41% reduction 2x improvement Annualized Cost AGILITY
  • 21. Docker EE Makes Scaling Your Environment Easy Docker EE Management Console Docker EE Control Plane and Cluster Management Node Node Node • Single command to join new Swarm/Kubernetes nodes into a secure cluster • Automatically integrate new nodes into existing access controls and policies • No need to install separate services; all nodes come pre- installed with necessary services KEY BENEFITS Swarm-mode cluster with Kubernetes-ready Linux nodes Node Node AGILITY
  • 22. Unified Operations Enable Your Existing Team to Operationalize Docker Containers in Production Docker EE simplifies and automates the day-to-day application delivery and operations of containers, increasing what your existing team can support With Docker Enterprise Edition Other Container Platforms SKILLS REQUIRED Unbudgeted new headcount for operational expertise and support Existing team AGILITY
  • 24. > _ *** *** *** Build With Integrity • Verify, sign, & scan • Secure image storage • Secure sensitive data Trusted Automation (CI/CD) • Verifiable chain of custody • Policy-based automation Run Safe • Secure by default • Security Zones • Governance controls Docker EE Secures the End-to-End Software Supply ChainSECURITY
  • 25. • Respond faster to changing organizational demands • Drive higher infrastructure and operational efficiencies and avoid cluster sprawl KEY BENEFITS • Secure Environment Zones −Logical and physical partitioning − Role-based permissions for delivery and operations FEATURE / CAPABILITY Operations Team TEST STAGING PRODUCTION DOCKER ENTERPRISE EDITION MANAGEMENT PLANE Single cluster, multiple divided zones SANDBOX Define Secure Environment Zones to Avoid Costly Cluster SprawlSECURITY
  • 26. Node Worker Node Worker Node Worker Node Worker swarm mode cluster docker enterprise edition universal control plane trusted registry Node Worker Node Worker .NET Dev Team Using Swarm Java Dev Team using K8s Java Dev Team Using Swarm Ops Team Define Secure Application Zones to Enforce IT Governance • Easily define resource-based permissions to different teams and expose only the allotted resources to each team • Re-allocate resources as needed KEY BENEFITS • Integrate with LDAP/AD and create granular and flexible access controls • Combine Namespace isolation with node-based isolation for increased separation FEATURE / CAPABILITY SECURITY
  • 27. Threat Mitigation: Scan Container Images for VulnerabilitiesSECURITY • Reduce risk by identifying security issues early • Stop automation workflows when security issues discovered • Ensure compliance with alerts for new vulnerabilities KEY BENEFITS • Integrated security scanning and vulnerability monitoring with customized alerts • Binary level scanning provides deep visibility into all components FEATURE / CAPABILITY
  • 28. Threat Mitigation: Audit All Image Layers and ComponentsSECURITY • Ensure compliance with an audit log of all application dependencies • Track supporting library versions and licenses KEY BENEFITS • Get a full Bill of Materials for all of your Docker images that details all application and library dependencies • Detailed visibility of all Layers including those from Base Images FEATURE / CAPABILITY
  • 29. Access Control: Image PromotionSECURITY FEATURE / CAPABILITY KEY BENEFITS • Restrict access to images to the right users. • Track and lock down on image versions. • Promotes “blessed” images from one repository to a different repository in the same DTR using a policy. • Repositories each have their own access control. • Images can be re-tagged automatically to a new flag.
  • 30. Maintaining a Globally Consistent Supply Chain • Create a single source of truth for containerized applications no matter where they are deployed • Maintain a single supply chain for a globally-distributed enterprise footprint KEY BENEFITS • Connect multiple Docker EE clusters to a single private registry • Validate image signatures before deployment FEATURE / CAPABILITY Docker Trusted Registry Docker EE Cluster Docker EE Cluster Docker EE Cluster Docker EE Cluster SECURITY
  • 31. Trusted Automation, With Verifiable Chain of Custody ● Image signing and scanning of applications to validate and verify content ● Content Trust: Only run applications that have the required signatures ● Automated policies for image promotions across the app development lifecycle dev/hello-world No ‘critical’ or ‘major’ vulnerabilities prod/hello-world App.go App.go SECURITY