Solomon Hykes, founder of Docker, details his firm s open-source experience and releases new tools at the OSCON conferenceSolomon Hykes, founder of Docker Inc., is a familiar name in the world of open source today, but he wasn t always an open-source developer.Docker Inc. s core vision is to help build everything that is needed to make the Internet programmable, in a scalable and sustainable way, said Hykes.Approximately 2,000 developers have contributed to Docker s open-source projects and across all the projects, as hosted on Github, 18,000 issues have been opened, Hykes said.In open source, a patch is a code contribution of sorts, providing either a fix for an existing feature or a new feature to a project.The first key lesson that Hykes learned is that saying no is temporary, but saying yes is forever.If you do have specific insight and a specific focus, open source will really multiply it, and we use that a lot.
ANALYSIS: Some new capabilities landed inside Docker that could create partner friction and more competition if not handled properlyAt DockerCon 16, approximately 4,000 attendees descended on the Washington State Convention Center in Seattle from June 19 to 21 to learn about and experience the phenomenon that is the Docker container ecosystem.What that translates into is that Docker is increasingly integrating needed capabilities the batteries into Docker Engine, but users are free to swap out those batteries for the technology of their choice.The integrated orchestration is swappable such that a user can choose to use a competitive alternative, but that s the catch now isn t it?I attended a pair of sessions at Dockercon 16 with SocketPlane founder Madhu Venugopal, who now leads Docker s networking efforts, and the repeated message was that Docker gives users what they need.It s a move that adds another layer to the Docker ecosystem by providing a potential revenue-generating tool for Docker Inc. as well as for software vendors.Even more importantly, the integration points, Swarm mode for orchestration and libnetwork for network are modular, as are the storage and monitoring interfaces.
Docker to directly integrate storage capabilities into its container engine, while still leaving room for organizations to choose other storage technologiesDocker Inc. announced on December 6 that it is acquiring privately-held distributed storage vendor Infinit.The Infinit Storage Platform is an open-source decentralized software defined storage technology that is ideally suited for container and micro-services deployments.The model is also self-healing and fault tolerant, according to Infinit, with each piece of data stored multiple times across the storage nodes.In the event of a storage failure, the Infinit platform automatically attempts to restore the system to a healthy state.With Infinit, the promise for Docker is the ability to provide its users with new storage capabilities.
Docker has added new security features to its open-source and commercial container platformsDocker is advancing its open-source container engine as well as its commercially supported Docker Datacenter platform with enhanced capabilities designed to help safeguard container secrets.Secrets in the context of container applications are access tokens, passwords and other privileged access information that needs to be kept secure.The Docker 1.13 container engine release that debuted on Jan. 19 featured a new secrets management capability that has been further enhanced in the Docker 1.13.1 update, released on Feb. 8.Additionally, Docker is now bringing the secrets management capability to a new update of Docker Datacenter – announced Feb. 9 – that is based on Docker 1.13.1.Docker Datacenter is Docker Inc s flagship commercial platform and was first released back in February 2016.
At DockerCon 17, Docker announces a pair of new projects to help developers and organisations build their own container-optimized Linux platformsThe DockerCon 17 conference got underway today with Docker Inc. making two major Linux-related announcements.“A year ago we were faced with the challenge of going multiplatform,” Solomon Hykes, founder of Docker, said during his DockerCon keynote (pictured).“Not every platform provides a Linux subsystem.”That’s why Docker built a Linux subsystem, which is now becoming the LinuxKit Project.With the operating system as a container, the overall system can be very small with minimal boot time.
A single person or group may have made as much as $90,000 over 10 months by spreading 17 malicious images that were downloaded more than 5 million times from Docker Hub, researchers said Wednesday.The repository finally removed the submissions in May, more than eight months after receiving the first complaint.Docker images are packages that typically include a pre-configured application running on top of an operating system.By downloading them from Docker Hub, administrators can save huge amounts of set-up time.Last July and August one or more people used the Docker Hub account docker123321 to upload three publicly available images that contained surreptitious code for mining cryptocurrencies.In September, a GitHub user complained one of the images contained a backdoor.
Kromtech finds malicious code hiding in enterprise upstart's repositories of softwareAt DockerCon in San Francisco on Wednesday, CEO Steve Singh highlighted security as one of Docker's core principles.Only a day earlier, Germany-based security software development shop Kromtech suggested security wasn't a priority for the code containerizer.Over the past twelve months, Kromtech explained in a blog post, Docker Hub, the container maker's community image repository, hosted at least 17 malicious Docker images."It seems that the Docker ecosystem is becoming more enterprise oriented and the responsibility for safe migration and further secure maintenance falls on ordinary developers," the software biz said.“When dealing with open public repositories and open source code, we recommend that you follow a few best practices including: know the content author, scan images before running and use curated official images in Docker Hub and certified content in Docker Store whenever possible.”
A few years back, the XCodeGhost malware infected 39 iOS apps, including WeChat and something I use personally, CamScanner.These two incidents highlight a serious security problem—to feel confident in your software supply chain, you have to do both of the following:You must download a trusted thing.In this case, you think you are downloading something that you trust, but it’s actually not because the source tricked you.[ Safeguard your browsers; InfoWorld's experts tell you how in the "Web Browser Security Deep Dive" PDF guide.So, you decide that the source is trustworthy, and hence secure.
A book published in 1981, called Nailing Jelly to a Tree, describes software as “nebulous and difficult to get a firm grip on.” That was true in 1981, and it is no less true nearly four decades since.You can use Docker to wrap up an application in such a way that its deployment and runtime issues—how to expose it on a network, how to manage its use of storage and memory and I/O, how to control access permissions—are handled outside of the application itself, and in a way that is consistent across all “containerized” apps.• Get started with Docker Compose.IT could now respond more effectively to changes in business requirements, because VMs could be cloned, copied, migrated, and spun up or down to meet demand or conserve resources.Virtual machines also helped cut costs, because more VMs could be consolidated onto fewer physical machines.Finally, the portability of VMs is limited.
No doubt about it, Kubernetes is hot.By all indications, the open-source project created by Google, and now shepherded by the CNCF (Cloud Native Computing Foundation), has won the war for container orchestration dominance.Would-be competitors such as Mesosphere and Docker Inc. have adopted Kubernetes, the leading PaaS stacks such as OpenShift and Cloud Foundry now include it, and all of the major cloud vendors now support it.But that doesn’t mean that all of the Kubernetes offerings are the same—or equal.In this article, we’ll break down the key components of managed Kubernetes, and explore how each of the three major cloud providers—Amazon Elastic Container Service for Kubernetes, Azure Kubernetes Service, and Google Kubernetes Engine—differs in its support of the platform.[ InfoWorld explains: What is cloud-native?
French startup Agricool is raising another $28 million round of funding (€25 million).The company is working on containers to grow fruits and vegetables in urban areas, starting with strawberries.Some existing investors also participated, such as daphni, XAnge, Henri Seydoux and Kima Ventures.It might sound crazy but containers can be more efficient than traditional agricultural methods.For instance, a container lets you control the temperature, the humidity, the color spectrum and more.Agricool uses a ton of LEDs to replace the sun.
Microsoft’s eponymous Microsoft Connect(); 2018 developer conference kicked off today in style, with a slew of updates to Azure and IoT Edge services; the open-sourcing of Windows Presentation Foundation, Windows Forms, and Windows UI XAML Library and the expansion of its .NET foundation membership model.The Seattle company also revealed Cloud Native Application Bundle (CNAB), an open source, cloud-agnostic specification for packaging and running distributed applications.Microsoft is this week releasing the CNAB specification, along with Duffle, an open source reference implementation of a CNAB client that can install, upgrade, uninstall, cryptographically sign, and verify the integrity of CNAB bundles.Additionally, Microsoft’s making available an example implementation of a bundle repository server, a Visual Studio Code extension, and an Electron point-and-click bundle installer.“Distributed applications are no longer a futuristic concept,” Microsoft said.“Today’s cloud isn’t operating on one runtime system: It’s not just serverless, just Kubernetes, [or] just VMs.
Microsoft and Docker have jointly announced a new project to create “an open-source, cloud-agnostic specification for packaging and running distributed applications,” according to Microsoft’s press notes.A Cloud Native Application Bundle (CNAB), as it’s called, provides a standard way for developers to package and run containerized applications in many computing environments, from Docker on a workstation to Kubernetes in a cloud instance.| Get started: Azure cloud migration guide.• Tutorial: Get started with Google Cloud.| Keep up with the latest developments in cloud computing with InfoWorld’s Cloud Computing newsletter. ]CNAB’s specification describes “bundles,” or groups of resources that constitute an application.
DevOps can look forward to packaging their distributed appsYou've perhaps heard that before in the context of Java, Flash, or Xamarin, among other cross-platform technologies.It's been more or less possible for a while, though seldom to everyone's satisfaction.But, as the rapid rise of Kubernetes demonstrated, those running applications at scale have a more expansive set of concerns – managing clusters of containers, and the distributed applications therein, across diverse infrastructure.CNAB aims to meet that broader operations goal.It's one spec to describe them all, based on JSON, Docker containers and OpenPGP.
While containers as a concept have been around for some time, Docker, an open source project launched in 2013, helped popularize the technology, and has helped drive the trend towards containerization and microservices in software development that has come to be known as cloud-native development.Learn how to get started with Kubernetes.One solution to this problem has been virtual machines, which keep applications on the same hardware entirely separate, and reduce conflicts among software components and competition for hardware resources to a minimum.Containers provide a highly efficient and highly granular mechanism for combining software components into the kinds of application and service stacks needed in a modern enterprise, and for keeping those software components updated and maintained.A Dockerfile is a text file written in an easy-to-understand syntax that includes the instructions to build a Docker image (more on that in a moment).Codefresh offers a look at how to build an image in more detail.
Market Insights: According to Market Research Future Analysis, the global Mesh app and service architecture market are anticipated to grow at a fast rate over the forecast period, 2018-2023.The major factor driving the market for mesh app and service architecture is the increasing demand for various mobile and web applications.Get FREE Sample copy @ mesh app and service architecture have been considered as an emerging technology, where the apps and services deliver an enhanced solution for end users irrespective of the device on which they operate.This creates a reliable capability that can assist in a significant number of daily operations.The mesh apps and service architecture include apps and services that includes a specific procedure serving specific customer needs and demands.On the basis of type, the market is segmented into mobile and desktop.On the basis of application, the market is segmented into e-commerce, banks, mobile wallets and others.Key Players:Microsoft Corporation (U.S.),Apple Inc (U.S.), Google LLC (U.S.),ASI Solutions, Inc (U.S.),AnAr Solutions Pvt.Ltd. (India),IBM Corporation (U.S.),Axway Software (France),Docker, Inc. (U.S.)Access Report Details @  Segmentation:On the basis of the type, the market is segmented into mobile and desktop.On the basis of the deployment, the market is segmented into cloud and on premise.On the basis of the offering, the market is segmented into APIs, Analytics, Omni-Channel and others.On the basis of the application, the market is segmented into e-commerce, banks, mobile wallets and others.Regional analysis:The geographical segmentation of the Mesh app and service architecture market is segmented into regions like North America, Europe, Asia Pacific and rest of the world.
Intruders may have used breach to access sensitive GitHub repositoriesDocker, the company behind an open platform for building and running distributed applications, said on Friday that hackers had breached one of its databases, potentially giving them access to sensitive source code on the external repositories of up to 190,000 different customers.Data stolen from the San Francisco-based container specialist included usernames and hashed passwords for around five percent of Docker’s customers, as well as GitHub and Bitbucket tokens for Docker autobuilds.Docker is used by many of the world’s largest financial and technology companies, including Paypal and Visa, as well as blue chips like pharmaceutical giant GlaxoSmithKline.The company rapidly scrambled to plug the breach, invalidating the passwords of those affected and deleting the subset of users’ GitHub tokens (used in place of a password when performing Git operations over HTTPS with Git on the command line or the API).Docker said: “On Thursday, April 25th, 2019, we discovered unauthorized access to a single Docker Hub database storing a subset of non-financial user data.
...let us bring you up to date on infosec bits and bytesDocker: Someone broke into a database holding Docker Hub account information, and managed to siphon off non-financial records on 190,000 users before the exfiltration was, presumably, detected and stopped.The intrusion happened on Thursday, April 25, though Docker emailed people late on Friday alerting them to the security breach.This cyber-break-in is not great news for Docker and its Hub users, but it could have been a lot worse.Facebook: Online yard sale Facebook Marketplace was caught leaking the precise location data of advertisers, allowing burglars to know exactly what to nick from where.After some prodding, we're told, the antisocial network finally tweaked its interface to remove these exact GPS coordinates.
The growth of Docker, the San Francisco company behind the eponymous open source containerization platform, shows no signs of abating.Meanwhile, analysts at DataDog report that Docker adoption among organizations with at least 1,000 hosts stands at 47%.The end-to-end container-as-a-service (CaaS) platform has evolved rapidly since its debut in March 2017, and today at Docker’s annual DockerCon developer conference in San Francisco, the firm revealed the next major release in public beta: Docker Enterprise 3.0.“Today we have over 750 enterprise customers driving their digital transformation efforts with the Docker platform,” said Docker CEO and chairman Steve Singh.As the only independent container platform vendor, we’re excited to be able to offer customers high-velocity innovation, choice, and security across their entire application portfolio.”Starting with Docker Enterprise 3.0, Docker Enterprise is integrated with Docker Desktop, Docker’s development environment for building, testing, and shipping containerized apps.
With Docker Enterprise 3.0, now available in a beta version, Docker Inc. has outfitted the enterprise container platform with a secure Kubernetes stack.In conjunction with the Docker Enterprise 3.0 unveiling, Docker also rolled out a managed service option for Docker Enterprise.Docker Enterprise is positioned as an end-to-end platform for building, running, and sharing container-based applications.Docker Enterprise 3.0’s Docker Kubernetes Service (DKS) integrates Kubernetes container orchestration from the developer desktop to the production server.| Get started: Azure cloud migration guide.| Keep up with the latest developments in cloud computing with InfoWorld’s Cloud Computing newsletter. ]