Anshul Patel, profile picture
Uploaded byAnshul Patel
PPTX, PDF773 views

Linux kit meetup_v1.0.0

LinuxKit is a toolkit for building secure, portable, and lean container-based operating systems. It builds the entire OS using containers, with all OS services contained within pluggable containers. The OS is built declaratively using Moby tools and a YAML configuration file to specify components like the kernel, initialization services, long-running processes, files to copy, and trusted components. This approach creates immutable, cryptographically verified OS images with minimal components and privileges for improved security and reliability.

Embed presentation

Download to read offline
Anshul Patel
What is LinuxKit ● Toolkit for building secure, portable & lean operating system for containers. ● Built with containers, for running containers. ● All Operating system services are containers. ● Operating system services are pluggable. ● Operating system is built using Moby tool.
Purpose of LinuxKit ● Creates Immutable Operating Systems. ● Provides Declarative way for creating Operating Systems. ● Build the whole system in CI pipeline which guarantees reproducible builds & reliability. ● Suitable for Cloud, VMs and Bare-Metals.
LinuxKit YAML config file ● Kernel - Specifies Kernel Image version and parameters ● Init - Components which will be part of initrd ● Onboot - One-off containers executed during boot. They get terminated after execution ● Services - Long running process which will serve the incoming requests. ● Files - Copy local files to Operating System ● Trust - Components which are required to be cryptographically verified with Docker Content Trust.
Example
Security ● Include only components which are required. ● Provides Ability to use latest Kernel. ● Containerized Operating System services, hence minimal privileges. ● Smaller attack surface. ● Immutable Infrastructure, only namespaced container data and stateful partitions can be modified.
Support Best Supported ● Hyperkit, VMware(Pro), Qemu/KVM ● GCE, Packet.net In Progress ● AWS, Azure, Windows, BlueMix Planned ● ARM
Demo
Ongoing/Future Developments ● Rewrite in type safe languages such as Rust. ● Blueprints/Samples for different platforms. ● Improve APIs. ● Integration with Infrakit to run cluster of instances running Kubernetes/Swarm. ● Integration with other orchestration tools like VMware VCloud Director, Terraform.
Questions? Thank You!

More Related Content

PDF
Docker Fundamentals
byAnshul Patel
 
PPTX
Introducing LinuxKit
byDocker, Inc.
 
PDF
Dockercon 2015 Recap
byehazlett
 
PPTX
Introduction to docker_notary_v1.0.0
byAnshul Patel
 
PDF
Meetup 22 - 04 - Logging and Monitoring at scale on Kubernetes
byVietnam Open Infrastructure User Group
 
PPTX
Cloud Computing Security
byAnshul Patel
 
PDF
Building Digital Transaction Systems in the new Banking World
byRamit Surana
 
PPTX
Changing the world with ZeroVM and Swift
byJakub Krajcovic
 
Docker Fundamentals
byAnshul Patel
 
Introducing LinuxKit
byDocker, Inc.
 
Dockercon 2015 Recap
byehazlett
 
Introduction to docker_notary_v1.0.0
byAnshul Patel
 
Meetup 22 - 04 - Logging and Monitoring at scale on Kubernetes
byVietnam Open Infrastructure User Group
 
Cloud Computing Security
byAnshul Patel
 
Building Digital Transaction Systems in the new Banking World
byRamit Surana
 
Changing the world with ZeroVM and Swift
byJakub Krajcovic
 

What's hot

PPTX
Kata Container - The Security of VM and The Speed of Container | Yuntong Jin
byVietnam Open Infrastructure User Group
 
PDF
WSO2 Microservices Framework for Java - Product Overview
byWSO2
 
PDF
Deploying and managing container-based applications with OpenStack and Kubern...
byIhor Dvoretskyi
 
PPTX
Introduction to OpenStack Cinder
bySean McGinnis
 
PDF
Service Mesh For Beginner
byMien Dinh
 
PDF
Guts & OpenStack migration
byopenstackindia
 
PDF
Open stack nova reverse engineer
byVietnam Open Infrastructure User Group
 
PPTX
Docker presentation
byWes Eklund
 
PDF
OpenDaylight OpenStack Integration
byLinuxCon ContainerCon CloudOpen China
 
PDF
Open stack wtf_(1)
byIlya Sviridov
 
PDF
Magento infrastructure by OpsWay
byOpsWay
 
PDF
The Cloud Convergence: OpenStack and Kubernetes
byIhor Dvoretskyi
 
PDF
Status of Embedded Linux
byLinuxCon ContainerCon CloudOpen China
 
PDF
OpenStack Boston Summit: Kuryr project updates
byAntoni Segura Puimedon
 
PDF
Introduction to OpenStack : Barcamp Bangkhen 2016
byOpsta
 
PDF
Orchestrating Linux Containers
byBergamo Linux Users Group
 
PPTX
Take an Analytics-driven Approach to Container Performance with Splunk for Co...
byDocker, Inc.
 
PPTX
Who Lives in Our Garden?
byAltoros
 
PPTX
Moving Legacy Applications to Docker by Josh Ellithorpe, Apcera
byDocker, Inc.
 
PDF
Case Study: Utilizing Mirantis Fuel to install OpenStack Ansible
byTeK Charnsilp Chinprasert
 
Kata Container - The Security of VM and The Speed of Container | Yuntong Jin
byVietnam Open Infrastructure User Group
 
WSO2 Microservices Framework for Java - Product Overview
byWSO2
 
Deploying and managing container-based applications with OpenStack and Kubern...
byIhor Dvoretskyi
 
Introduction to OpenStack Cinder
bySean McGinnis
 
Service Mesh For Beginner
byMien Dinh
 
Guts & OpenStack migration
byopenstackindia
 
Open stack nova reverse engineer
byVietnam Open Infrastructure User Group
 
Docker presentation
byWes Eklund
 
OpenDaylight OpenStack Integration
byLinuxCon ContainerCon CloudOpen China
 
Open stack wtf_(1)
byIlya Sviridov
 
Magento infrastructure by OpsWay
byOpsWay
 
The Cloud Convergence: OpenStack and Kubernetes
byIhor Dvoretskyi
 
Status of Embedded Linux
byLinuxCon ContainerCon CloudOpen China
 
OpenStack Boston Summit: Kuryr project updates
byAntoni Segura Puimedon
 
Introduction to OpenStack : Barcamp Bangkhen 2016
byOpsta
 
Orchestrating Linux Containers
byBergamo Linux Users Group
 
Take an Analytics-driven Approach to Container Performance with Splunk for Co...
byDocker, Inc.
 
Who Lives in Our Garden?
byAltoros
 
Moving Legacy Applications to Docker by Josh Ellithorpe, Apcera
byDocker, Inc.
 
Case Study: Utilizing Mirantis Fuel to install OpenStack Ansible
byTeK Charnsilp Chinprasert
 

Similar to Linux kit meetup_v1.0.0

PPTX
Building Distributed Systems without Docker, Using Docker Plumbing Projects -...
byPatrick Chanezon
 
PDF
Introduction to LinuxKit - Docker Bangalore Meetup
byAjeet Singh Raina
 
PPTX
Moby KubeCon 2017
byPatrick Chanezon
 
PPTX
Oscon 2017: Build your own container-based system with the Moby project
byPatrick Chanezon
 
PDF
LinuxKit Deep Dive
byDocker, Inc.
 
PPTX
LinuxKit
byMoby Project
 
PDF
Modern IoT and Embedded Linux Deployment - Berlin
byDjalal Harouni
 
PDF
DockerCon 2017 - General Session Day 1 - Solomon Hykes
byDocker, Inc.
 
PPTX
LinuxKit: the first five months by Justin Cormack & Riyaz Faizullabhoy (Docker)
byDocker, Inc.
 
PDF
Online Meetup: Intro to LinuxKit
byDocker, Inc.
 
PPTX
Moby Open Source Summit North America 2017
byPatrick Chanezon
 
PDF
IoT: Contrasting Yocto/Buildroot to binary OSes
byMender.io
 
PDF
Moby and linux kit, what to expect - Lorenzo Fontana, DevOps Expert at Kiratech
byKiratech
 
PDF
Containerday17 Moby-linuxkit-DockerCon-2017-announcements
byKiratech
 
PDF
December 2020 CIALUG: Local Kubernetes for Dummies-So you want to move on fro...
byAndrew Denner
 
PDF
LinuxKit and Moby, News from DockerCon 2017
byDieter Reuter
 
PDF
LinuxKit and Moby, news from DockerCon 2017 - Austin,TX
byDieter Reuter
 
PDF
Docker Seattle Meetup, May 2017
byStephen Walli
 
PPTX
LinuxKit Update at the Moby Summit
byDocker, Inc.
 
PDF
LinuxKit & Moby - The next level of the container ecosystem
byPatrick Kleindienst
 
Building Distributed Systems without Docker, Using Docker Plumbing Projects -...
byPatrick Chanezon
 
Introduction to LinuxKit - Docker Bangalore Meetup
byAjeet Singh Raina
 
Moby KubeCon 2017
byPatrick Chanezon
 
Oscon 2017: Build your own container-based system with the Moby project
byPatrick Chanezon
 
LinuxKit Deep Dive
byDocker, Inc.
 
LinuxKit
byMoby Project
 
Modern IoT and Embedded Linux Deployment - Berlin
byDjalal Harouni
 
DockerCon 2017 - General Session Day 1 - Solomon Hykes
byDocker, Inc.
 
LinuxKit: the first five months by Justin Cormack & Riyaz Faizullabhoy (Docker)
byDocker, Inc.
 
Online Meetup: Intro to LinuxKit
byDocker, Inc.
 
Moby Open Source Summit North America 2017
byPatrick Chanezon
 
IoT: Contrasting Yocto/Buildroot to binary OSes
byMender.io
 
Moby and linux kit, what to expect - Lorenzo Fontana, DevOps Expert at Kiratech
byKiratech
 
Containerday17 Moby-linuxkit-DockerCon-2017-announcements
byKiratech
 
December 2020 CIALUG: Local Kubernetes for Dummies-So you want to move on fro...
byAndrew Denner
 
LinuxKit and Moby, News from DockerCon 2017
byDieter Reuter
 
LinuxKit and Moby, news from DockerCon 2017 - Austin,TX
byDieter Reuter
 
Docker Seattle Meetup, May 2017
byStephen Walli
 
LinuxKit Update at the Moby Summit
byDocker, Inc.
 
LinuxKit & Moby - The next level of the container ecosystem
byPatrick Kleindienst
 

More from Anshul Patel

PPTX
Chaos engineering with Litmus Chaos Framework
byAnshul Patel
 
PDF
Safeguarding Container Supply Chain - Anshul Patel
byAnshul Patel
 
PPTX
Meetup on Apache Zookeeper
byAnshul Patel
 
PPTX
Linux Operating System Fundamentals
byAnshul Patel
 
PDF
Open Source Identity and Access management with Keycloak.pdf
byAnshul Patel
 
PDF
Chaos Engineering
byAnshul Patel
 
PPTX
Building CLI Applications with Golang
byAnshul Patel
 
PPTX
Chaos Engineering with Gremlin Platform
byAnshul Patel
 
PPTX
AWS ECS Meetup Talentica
byAnshul Patel
 
Chaos engineering with Litmus Chaos Framework
byAnshul Patel
 
Safeguarding Container Supply Chain - Anshul Patel
byAnshul Patel
 
Meetup on Apache Zookeeper
byAnshul Patel
 
Linux Operating System Fundamentals
byAnshul Patel
 
Open Source Identity and Access management with Keycloak.pdf
byAnshul Patel
 
Chaos Engineering
byAnshul Patel
 
Building CLI Applications with Golang
byAnshul Patel
 
Chaos Engineering with Gremlin Platform
byAnshul Patel
 
AWS ECS Meetup Talentica
byAnshul Patel
 

Recently uploaded

PDF
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
PDF
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
PDF
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
PDF
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
PDF
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
PDF
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
PDF
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
DOCX
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PPT
software-security-intro in information security.ppt
byismaeelsahib032
 
PPTX
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
PPTX
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PPTX
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
PPTX
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
PPTX
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
PPTX
Kanban India 2025 | Daksh Gupta | Modeling the Models, Generative AI & Kanban
byLeanKanbanIndia
 
PPTX
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
PPTX
cybercrime in Information security .pptx
byismaeelsahib032
 
PPTX
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 
Internet_of_Things_IoT_for_Next_Generation_Smart_Systems_Utilizing.pdf
byRoshanSyed12
 
Dev Dives: AI that builds with you - UiPath Autopilot for effortless RPA & AP...
byUiPathCommunity
 
Session 1 - Solving Semi-Structured Documents with Document Understanding
byDianaGray10
 
DevFest El Jadida 2025 - Product Thinking
byElmehdi AMLOU
 
Security Technologys: Access Control, Firewall, VPN
byShielaLasala
 
ElyriaSoftware — Powering the Future with Blockchain Innovation
byElyria Software
 
Security Forum Sessions from Houston 2025 Event
byMark Simos
 
iRobot Post‑Mortem and Alternative Paths - Discussion Document for Boards and...
byDave Litwiller
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
software-security-intro in information security.ppt
byismaeelsahib032
 
THIS IS CYBER SECURITY NOTES USED IN CLASS ON VARIOUS TOPICS USED IN CYBERSEC...
byMelissaGblinwon
 
From Backup to Resilience: How MSPs Are Preparing for 2026
byMSP360
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
Cybersecurity Best Practices - Step by Step guidelines
byYasir Naveed Riaz
 
wob-report.pptxwob-report.pptxwob-report.pptx
byssuser0d171c
 
AI in Cybersecurity: Digital Defense by Yasir Naveed Riaz
byYasir Naveed Riaz
 
Kanban India 2025 | Daksh Gupta | Modeling the Models, Generative AI & Kanban
byLeanKanbanIndia
 
Chapter 3 Introduction to number system.pptx
byGetachewAbera9
 
cybercrime in Information security .pptx
byismaeelsahib032
 
Cybercrime in the Digital Age: Risks, Impact & Protection
byYasir Naveed Riaz
 

Linux kit meetup_v1.0.0

  • 1.
  • 2.
    What is LinuxKit ●Toolkit for building secure, portable & lean operating system for containers. ● Built with containers, for running containers. ● All Operating system services are containers. ● Operating system services are pluggable. ● Operating system is built using Moby tool.
  • 3.
    Purpose of LinuxKit ●Creates Immutable Operating Systems. ● Provides Declarative way for creating Operating Systems. ● Build the whole system in CI pipeline which guarantees reproducible builds & reliability. ● Suitable for Cloud, VMs and Bare-Metals.
  • 4.
    LinuxKit YAML configfile ● Kernel - Specifies Kernel Image version and parameters ● Init - Components which will be part of initrd ● Onboot - One-off containers executed during boot. They get terminated after execution ● Services - Long running process which will serve the incoming requests. ● Files - Copy local files to Operating System ● Trust - Components which are required to be cryptographically verified with Docker Content Trust.
  • 5.
  • 6.
    Security ● Include onlycomponents which are required. ● Provides Ability to use latest Kernel. ● Containerized Operating System services, hence minimal privileges. ● Smaller attack surface. ● Immutable Infrastructure, only namespaced container data and stateful partitions can be modified.
  • 7.
    Support Best Supported ● Hyperkit,VMware(Pro), Qemu/KVM ● GCE, Packet.net In Progress ● AWS, Azure, Windows, BlueMix Planned ● ARM
  • 8.
  • 9.
    Ongoing/Future Developments ● Rewritein type safe languages such as Rust. ● Blueprints/Samples for different platforms. ● Improve APIs. ● Integration with Infrakit to run cluster of instances running Kubernetes/Swarm. ● Integration with other orchestration tools like VMware VCloud Director, Terraform.
  • 10.