Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang...
Transcript of Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang...
![Page 1: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/1.jpg)
Red Hat Container Strategy Ahmed El-Rayess
![Page 2: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/2.jpg)
CONCRETE SHOES OF LEGACY AND RIGID PROCESSES
I.T.Organiza,onsUnderPressure
CURRENT STATE Manual processes
Inconsistent environments Dependency hell Legacy inheritance
Skills fragmentation
DESIRED STATE Automation of processes
Environmental independence Application autonomy Modernization and expansion
Skill abstraction
![Page 3: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/3.jpg)
I.T. ARCHITECTS I.T. OPERATIONS 1. Faster scale out 2. Shorter test cycles 3. Fewer deployment errors
1. Higher quality releases 2. Efficient replacement of full virtual machines in production 3. Easier application management
APP DEVELOPERS 1. Higher quality releases 2. Better application scalability 3. Greater application isolation
Top3ContainerBenefitsbyRole
Base: 194 IT operations and development decision-makers at enterprises in APAC, EMEA, and North America Source: A commissioned study conducted by Forrester Consulting on behalf of Red Hat, January 2015
What top benefits are those using containers seeing today?
![Page 4: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/4.jpg)
Increase agility and enable DevOps
Containerize traditional applications
Move to microservices & hybrid cloud architectures
What organizations are doing with containers
3CommonConversa,ons
![Page 5: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/5.jpg)
TopContainerAdop,onConcerns
What are the top three challenges your organization has experienced so far in its use of containers? Total mentions (sum of responses of '1', '2', and '3')
51% SECURITY
CONTAINERS AND HOSTS
41% INTEGRATION
DEV TOOLS AND PROCESSES
35% MANAGEMENT
APPS AND INFRASTRUCTURE
Base: 171 IT and Developer/programmer decision-makers at companies with 500+ employees in APAC, EMEA, and NA Source: A commissioned study conducted by Forrester Consulting on behalf of Red Hat, January, 2015
![Page 6: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/6.jpg)
ComplexityofContainersatScale
Containerizingthedatacenterrequiresplanning
Organizations need a secure and reliable foundation on which they can run and orchestrate multi-container based applications at scale
![Page 7: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/7.jpg)
5ElementsofRedHat’sContainerStrategy
![Page 8: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/8.jpg)
CONTAINER DISCOVERY VIA REGISTRY
ORCHESTRATION WITH KUBERNETES2
Red Hat works with the open source community to drive standards for containerization.
Crea,ngDe-factoStandards
ISOLATION WITH LINUX CONTAINERS
CONTAINER FORMAT WITH DOCKER1
1OpenContainerIni,a,ve(OCI)2CloudNa,veCompu,ngFounda,on(CNCF)
![Page 9: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/9.jpg)
New vulnerabilities are identified dailyandcontainers become
stale over time.
WHAT’S INSIDE CONTAINERS
Red Hat + Black Duck =secure,trusted model for valida,ngcontainer
contents.
ISOLATION OF HOSTS
Host OS + SELinux maintained by trusted kernel engineers and frequently updated.
TRUST IS TEMPORAL
Container Security Secure and trusted Linux containers for the enterprise
ARE SOURCES TRUSTED?
36% of Docker Hub official images contain high priority security
vulnerabilities.*
*Source: Over 30% of Official Images in Docker Hub Contain High Priority Security Vulnerabilities, Jayanth Gummaraju, Tarun Desikan, and Yoshio Turner, BanyanOps, May 2015 (http://www.banyanops.com/pdf/BanyanOps-AnalyzingDockerHub-WhitePaper.pdf)
![Page 10: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/10.jpg)
SimplifyingContainerAdop,on
LEARN BUILD CERTIFY DISTRIBUTE
RED HATCONNECT for technology
partners
RED HAT CONTAINER DEVELOPMENT
KIT (CDK)
RED HAT CONTAINER
CERTIFICATION
RED HAT CONTAINER REGISTRY
![Page 11: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/11.jpg)
End-to-endApplica,onManagement
DESIGNIntegratewithdev
toolsandworkflows
DEPLOYManageapplica,onlifecycle
fromdevelopmenttoproduc,on
BUILDAutomateapplica,onbuilds
withsource-to-image
SCALEScaleapplica,onstohandleuser
demand
![Page 12: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/12.jpg)
portability across environments
PHYSICAL VIRTUAL PRIVATE CLOUD PUBLIC CLOUD
portability across platforms
ProvenContainerPortability
![Page 13: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/13.jpg)
CERTIFIED HARDWARE ECOSYSTEM
MIDDLEWARE AND MOBILITY SERVICES
CE
RTI
FIE
D A
PP
LIC
ATIO
NS
VIA
ISV
EC
OS
YS
TEM
RED HAT ENTERPRISE LINUX, INCLUDING ATOMIC HOST
● Application lifecycle management ● Continuous integration ● Developer experience ● Source-to-image
● Unified management from bare metal to containers ● Scalable infrastructure ● Hybrid deployment management
● Managed cluster of container-optimized hosts ● Orchestration and service aggregation
Seamlessly manage from infrastructure to applications based on OpenStack
Develop, build, and manage container-based applications
Run and orchestrate multi-container based applications at scale
Red Hat Container Solutions
![Page 14: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/14.jpg)
“The consensus from our checks was that containers are good for Red Hat. They expose the value of the OS, accelerate the adoption of flexible and open source infrastructures (of which Linux is a critical part) and to its credit Red Hat has aggressively embraced this new technology.”
DeutscheBankonRedHatandContainers
![Page 15: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/15.jpg)
MODERNIZE APP DELIVERY STANDARDS AND AUTOMATION
GAIN CONSISTENCY DEV, TEST, AND PRODUCTION
INCREASE AGILITY FLEXIBILITY AND OWNERSHIP
DEPLOY ANYWHERE ACROSS OPEN HYBRID CLOUD
WithRedHatContainerSolu,ons,YouCan...
Red Hat delivers a continuum of solutions to develop, run, and manage container-based applications
![Page 16: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/16.jpg)
TRUSTED PORTABLE INTEGRATED
ContainersfortheEnterprisewithRedHat
![Page 17: Red Hat Container Strategy Hat Partner...Red Hat + Black Duck = secure, trusted model for validang container contents. ISOLATION OF HOSTS Host OS + SELinux maintained by trusted kernel](https://reader033.fdocuments.us/reader033/viewer/2022042621/5f6df7af2df8755ea57eef12/html5/thumbnails/17.jpg)
THANKYOU