SUSE Bolsters Security, Advanced Networking in SUSE CaaS Platform 4
SUSE has revamped its SUSE CaaS Platform with a wide range of updates, including advanced networking for Kubernetes that will make it easier to configure networking with the platform, and has also bolstered its SUSE Cloud Application Platform with refinements such as improved user interface features.
The biggest improvement to SUSE Container as a Service (CaaS) Platform 4, which is built for application developers, DevOps teams and Kubernetes container platform operators, is the new advanced networking for Kubernetes which is being brought in via the Cilium open source project, according to SUSE. Cilium works to transparently secure network connectivity between application services deployed using Linux container management platforms like Docker and Kubernetes. Cilium uses a new Linux kernel technology called BPF, which enables the dynamic insertion of powerful security visibility and control logic within Linux itself. Using BPF, which runs inside the Linux kernel, means that Cilium security policies can be applied and updated without any changes to the application code or container configuration.
The use of Cilium with SUSE CaaS Platform 4 enables Kubernetes users to strengthen application security at scale with high-performance packet filtering and network communication security policies that are easier to implement and control. Also new are integrated application discovery and deployment capabilities that allow users to quickly and easily deploy applications and services that have been published as Helm charts, which includes many popular open source DevOps tools and ISV products and internally developed applications and services.
Jennifer Kotzen, SUSE’s senior product marketing manager, told Channel Futures that CaaS 4’s improved network security features will be helpful for channel partners and their customers running the SUSE cloud platform.
“The new enhancements will make the product more attractive to channel partners,” she said, including the use of Cilium as the default networking technology that provides improved security and improved installation and configuration. “The Kubernetes community at large is asking for advances in network security.”
Also new for CaaS 4 are the inclusion of simpler, non-disruptive updates, which will make it easier for reseller partners to do updates and easier for customers to absorb them and stay up to date, said Kotzen.
Another key improvement is that CaaS 4 has been enhanced to require a minimum of three nodes for a non-production cluster, which is down from the four nodes that were required previously, giving them a smaller and more affordable footprint.
“That’s a 25% reduction and that’s pretty significant where resources are scarce,” she said.
SUSE Cloud Application Platform 1.5
SUSE Cloud Application Platform 1.5, which runs on top of Kubernetes to help businesses reach their cloud native application delivery goals, gets new user interface enhancements to reduce its management complexity and to increase IT efficiency with a simpler and more predictable installation experience on hosted Kubernetes services.
The improved installation procedures will be are available first as a tech preview, with full inclusion to follow later. The revised features will enable users to browse any Helm chart repository including embedded documentation, set required deployment…