Kubernetes is the de-facto standard for running containerized, cloud-native applications at scale and is vital to the modern enterprise IT mix. But the container ecosystem is rapidly evolving with open-source projects, so keeping pace with change is difficult. We can add value to your organization with our Managed EKS service, developed by our container and K8s specialists using AWS’s cloud-native services.
Containers have been around since the 1970s for creating an isolated environment where applications and services can run without interfering with other processes. Containers began as a Linux kernel process isolation construct encompassing cgroups (control groups). The release of Docker in 2013 popularized containers for the masses. Docker packages software into standardized units called containers with everything the software needs to run, including libraries, system tools, code, and runtime.
Around 2003-2004 Google developed an internal ‘run everything in containers mechanism’ called Borg - the predecessor to Kubernetes. In 2015, Kubernetes 1.0 (K8s) was released and quickly became the accepted container orchestration standard. Kubernetes is an open-source container orchestration engine for automating deployment, scaling, and managing containerized applications.
Kubernetes is Greek for pilot or helmsman, hence the steering wheel in the Kubernetes logo.
Gartner forecasts that container management revenue will grow from a relatively small base of $465.8 million in 2020 to $944 million in 2024. Gartner also predicts that, in 2022, over 75% of global organizations will be running containerized applications in production - a significant increase from under 30% in 2019. Further, Red Hat’s Kubernetes adoption, security and market trends report 2021 placed Kubernetes as the front runner for container orchestration.
Architecture and technology innovation leaders invest in container platform tools to improve productivity and agility and reduce technical debt. And while it's plain that Kubernetes is a popular platform for building cloud-native applications, the Cloud Native Computing Foundation (CNCF) identified that several factors – such as culture and skills shortages, give rise to challenges. For example, around security, complexity, and monitoring. Further, many enterprises lack mature DevOps practices to operationalize and succeed with large-scale deployments.
According to Red Hat, misconfiguration is the top reason for Kubernetes-related security incidents, and 29% of those surveyed said their biggest concern about their company’s container strategy was a lack of investment in container security.
Amazon Elastic Kubernetes Service (Amazon EKS) is a managed container service for running and scaling Kubernetes applications in the cloud or on-premises. The benefits of having Kubernetes on Amazon EKS include reduced maintenance overhead and ease of integration with AWS services.
Due to the nature of the public cloud, data protection measures are paramount. AWS services like Key Management Service (KMS) help encrypt persistent data used in EKS Clusters. For example, EBS volumes attached to EKS worker nodes.
With Identity and Access Management (IAM) identity-based policies, you can specify allowed or denied actions and resources as well as the conditions under which activities are permitted or prohibited. Amazon EKS supports specific actions, resources, and condition keys.
We have adopted AWS’s Well-Architected Framework’s Security pillar principle for our EKS managed service, which will help you meet your business and regulatory requirements by following current AWS recommendations.
Our managed EKS service addresses the common challenges around security, monitoring, back-up and restore, operational overhead, and maintenance. We’re planning to introduce more features soon.
Our service includes:
Collectively, these advantages distinguish our managed EKS service from our competitors:
The path to business agility is undeniably through adopting cloud-native applications, and Kubernetes plays a central role. Organizations that combine Kubernetes and cloud-native managed services are more likely to see positive results faster than working with Kubernetes alone.
T-Systems is continuously working on expanding our container and K8s managed solutions. The scope of future releases for our Managed EKS service includes Container (Pods) Security, Multi-Tenancy, App Mesh, and Kafka (Amazon MSK), to mention a few.
Our EKS Well-Architected Review will equip you with essential guidance to optimize your EKS estate, apply best practices, realize cost savings, and more. As you might expect, we base our approach on AWS's Well-Architected Framework. To learn more, click here: EKS Well-Architected Review.