This year's Cloud Foundry Summit found the platform-as-a-service looking to outside open source projects to expand its resiliency and featuresView in browser »
The New Stack Update

ISSUE 161: Cloud Foundry Collaborates to Expand

Talk Talk Talk

“We're all kayakers now, navigating the rapids of change. The quickest learners will be the biggest winners.”

Cloud Foundry CEO Abby Kearns, Cloud Foundry Summit.
Add It Up
How do you rate the effectiveness in the following AWS security tiers?

For the last ten years, security and lack of control have been among the top reasons not to use a public cloud provider. Despite many legitimate concerns, two recent vendor-sponsored surveys show the cloud providers’ capabilities are often not the key challenge to increased adoption. Instead, much of the worries are that existing monitoring systems are not optimized to simultaneously track both on-premises and cloud environments.

Misconfiguration of the cloud platform is cited most often as the biggest security threat in public clouds, according to an AWS-centric survey of the Cybersecurity Insiders community sponsored by Cavirin. However, the concern is not about AWS itself, as 83% believe the company provides sufficient native cloud security controls and services. Instead, the concern is often about their own organization’s limitations and insecure interfaces/APIs controlled by other parties. The other big problem is that AWS tooling is being used, just not effectively. Thus, while 71% of AWS customers said they use AWS Identity & Access Management, only 42% of those that use AWS for identity and access control believe their organization uses these tools effectively.

What's Happening

It is safe to assume that contributing patches and updates to the Linux kernel is something beneficial to do — regardless of what you do or where you are in your career. In any case, learning how to contribute means you will be furthering the continued expansion of Linux, as well as the common good of the open source community.

The latest episode of The New Stack Makers podcast was recorded from the Open Source Leadership Summit, where we spoke with Shuah Khan, Linux Fellow at The Linux Foundation, about what it takes to get started on your journey as a contributor to the Linux kernel.

How to Begin Your Journey as a Contributor to the Linux Kernel

Cloud Foundry Collaborates to Expand

This year's Cloud Foundry Summit, held in mostly-sunny Philadelphia this week, found the platform-as-a-service looking to outside open source projects to expand its resiliency and features.

The biggest news of the week was the word of a new Cloud Foundry sandbox project, called Project Eirini, which can be used to manage and extend Cloud Foundry services within Kubernetes environments. Both the enterprise distributions from IBM and SUSE already incorporate Eirini.

Cloud Foundry has also started work on extending out the buildpacks, collaborating with Heroku. Built on the Open Container Interface (OCI), the new buildpacks will allow for greater modularity, allowing developers to add in additional buildpacks into a chain to capture dependencies. "I'm really excited about what this means for the future", Cloud Foundry CEO Abby Kearns tweeted this week.

The organization is also doing work with the open source Istio and Envoy service meshes. The organization has shown that these service mesh technologies can support up to 20,000 applications communicating with one another. Thanks to this work, the platform can now offer weighted routing, where the developer can specify a percentage of traffic that each version of a service can get — great for A/B testing.

Other organizations have been lending a hand as well. Mobile phone carrier T-Mobile has released an open source application-level chaos engineering tool for Cloud Foundry called Monarch. Monarch introduces latency or even kills a service altogether to check for resiliency.

Qumulo Scales Distributed Storage for Collaborative Online Video Editing

Qumulo has combined its distributed file storage system with the elastic compute resources of Google Cloud Platform (GCP) and Amazon Web Services to create CloudStudio, which securely moves traditionally on-prem workspaces, including desktops, applications, and data, to the public cloud.

Zettaset Launches Software-Defined Encryption for Cloud Foundry

When you think about securing containers, you might consider using lightweight virtual machines to isolate them in a multitenant environment. Or perhaps you want to employ Istio to get the benefits of mTLS on all intra-container communications. Zettaset, however, takes a different and more basic approach, in some ways — they encrypt the data, so that even if a breach occurs, the data is worthless to the attacker.

Chef Opens Its Code Base, Says Goodbye to Open Core

As myriad companies search for sustainable licensing models amid the debate about open source in a cloud world, automation tool vendor Chef has announced it is going all-in on open source. While it has had a mix of open source and proprietary software, it is making its software and any additions going forward open source with Apache 2 licensing.

Party On

Estelle Hayes, Tasha Isenberg, Jamie De Martini, Carly Message: A Pivotal moment at CF Summit NA in Philadelphia.

Pivotal's Scott Kelly and Patricia Johnson at CF Summit NA where adaptation served as a core theme of the conference.

SAP's Diane McSweeney and Maria Squicciarini enjoy some cold ones at the Cloud Foundry Summit NA.

Empathy rules: Pivotal's Denise Yu, Paula Kennedy and Benjamin Wilcock at the Cloud Foundry Summit in Philadelphia, the city of brotherly love.

Cloud Foundry Summit's welcome reception and booth crawl on opening night of the conference.

On The Road
KubeCon + CloudNativeCon // MAY 22 // BARCELONA, SPAIN @ FIRA GRAN VIA, HALL 8, ROOM F1


KubeCon + CloudNativeCon
It’s time for pancakes in Barcelona! Come have a short stack with The New Stack for a Q&A with our expert panelists about the issues and options for managing identity in service mesh environments. Cloud native security and how it affects the pace of enterprise adoption will be the mainstay of our conversation for this latest stop on the pancake breakfast circuit. Thanks to VMware for hosting our breakfast — we’ll see you in Barcelona. Register now!
The New Stack Makers podcast is available on: — Pocket CastsStitcher — Apple PodcastsOvercastSpotifyTuneIn

Technologists building and managing new stack architectures join us for short conversations at conferences out on the tech conference circuit. These are the people defining how applications are developed and managed at scale.
Free Guide to Cloud Native DevOps Ebook

Cloud native technologies — containers, microservices and serverless functions that run in multicloud environments and are managed through automated CI/CD pipelines — are built on DevOps principles. You cannot have one without the other. However, the interdepencies between DevOps culture and practices and cloud native software architectures are not always clearly defined.

This ebook helps practitioners, architects and business managers identify these emerging patterns and implement them within an organization. It informs organizational thinking around cloud native architectures by providing original research, context and insight around the evolution of DevOps as a profession, as a culture, and as an ecosystem of supporting tools and services. 

Download The Ebook
We are grateful for the support of our ebook sponsors:

Copyright © 2019 The New Stack, All rights reserved.

Want to change how you receive these emails?
You can update your preferences or unsubscribe from this list