Google Anthos News: Digging Deeper into What Recent Additions Mean for the Channel
Implementing Google Anthos projects is no easy undertaking and, so far, most of these initiatives fall to large system integrators — the accessibility and affordability have yet to trickle down to a lot of other players in the channel.
Nonetheless, the promise of Anthos for end users, via the indirect channel, lies in its hybrid architecture. As Google explains it, enterprises may build and manage modern hybrid applications on existing on-premises investments or in the public cloud. And because Anthos is built on open-source technologies including Kubernetes, Istio and Knative, there’s consistency between an organization’s cloud and on-premises environments.
That said, there’s a hope within the channel that Google eventually will shift Anthos from being deeply developer-centric to something more buyer-friendly. It’s a sentiment that comes after Google recently announced some important technical additions to Anthos, as well as more partner news.
The Technical Nitty-Gritty
In mid-September, Jennifer Lin, Google Cloud’s director of product management, and Pali Bhat, the company’s vice president of product and design, published a lengthy blog detailing new Google Anthos capabilities: Anthos Service Mesh, Binary Authorization, part of Anthos Config Management and Cloud Run for Anthos.
“With Anthos Service Mesh, you have uniform policies for enforcing service aware network security including encryption in transit, mutual authentication and powerful access controls,” Lin and Bhat wrote. “This allows your IT teams to implement zero-trust security that moves across environments with your application without making application code changes, allowing you to focus on delivering critical business functions faster.”
Binary Authorization, meanwhile, helps enterprises build defined security checks into the development process earlier, “making sure you deploy only trusted workloads in your environments,” they wrote.
Finally, Lin and Bhat explained, “Cloud Run for Anthos enables you to be more agile by letting you write code like you always do — without having to learn advanced Kubernetes concepts.”
What Does All This Mean?
“The first part is really a technical announcement,” he said. “There are a couple of specific functions that used to be either exclusive to Google Cloud or unmanaged open source that have now been plugged into Anthos.”
In essence, partners or enterprises now may turn on these functions and automatically build applications in the security layer.
Binary Authorization, meanwhile, ensures that “every container you run is actually what you thought it was,” Ward said. In other words, developers no longer have to worry about components from other places — think Python, WordPress and so on — lacking security.
The third piece, Cloud Run changes up container development, allowing simple spin-up to happen within the enterprise data center, “which is cool,” Ward said.
“It reduces the time for developers to get applications up and running,” he added.
All this is important, Ward noted, but the part of the Google Cloud blog discussing the extended Anthos partner ecosystem interests him the most. When…