June 26, 2020

2188 words 11 mins read

Cloud native explained An interview with Cheryl Hung VP Ecosystem at CNCF

Cloud native explained An interview with Cheryl Hung VP Ecosystem at CNCF

The containers, Kubernetes and microservices revolution has been bubbling away for some time now, but IT leaders could be excused for having a limited understanding of the whys and wherefores of a topic that can sometimes seem like a bewildering mix of technical minutiae and marketing babble. Indeed, a recent survey by Computing Delta found that only a third of the IT leaders polled had a firm gra

sp of what cloud native', the umbrella term for the trend, was all about, many confusing it with a cloud-first or cloud-only strategies. Cheryl Hung is VP Ecosystem at the Cloud Native Computing Foundation (CNCF) arriving at this role from Google, where she says cloud native practices have been the norm for a decade, via a stint a with storage platform StorageOS. All things considered, she seemed the ideal person to help us cut through the confusion around cloud native. The interview is edited for brevity. Computing: Maybe you could start off by defining what cloud native is and what are its distinctive features, not necessarily from an engineer’s point of view, but something a little higher level? CH: It’s really a mentality. It’s about shipping small things incrementally, and making continual improvements, rather than the old world of do one release a month. And then it’s all the tooling and technology that supports that style. So it’s sort of cloud meets DevOps? Sort of, but you can do it on-premises too. I definitely want to separate out the idea that cloud native means public cloud providers. I talk to a lot of companies, especially in financial services, where they have more regulatory needs, or companies that have already made a large investment into on-prem infrastructure, and they’re deploying cloud native just as happily as the classic web startup that uses AWS. The original definition of cloud native was an application packaged as a container and then, orchestrated with Kubernetes - orchestrated just means managed at scale - and split into microservices, which means that you contain one team’s work, basically, in one microservice. Then you have a well-defined set of APIs that other services can use. Do you think this way of delivering software will ultimately take over from the more monolithic traditional methods? It’s quite a different way of thinking. It is, and it’s worth knowing that there is an upfront investment cost in switching to cloud native. But I think there will always be space for both paradigms to live side by side. For instance, if you’re only serving 500 customers and you never really expect to scale beyond that, there is really no need to add to the complexity with cloud native. See also Interview: CNCF head Priyanka Sharma - ‘The arc of innovation is long and it bends towards true open source’ But from my own perspective, I started out as a software engineer at Google in 2010 and Google’s been doing things in a cloud native way for more than a decade now, so I guess I’ve been thinking in this paradigm since then, and at that scale it absolutely makes sense to package things and define good interfaces between services. So where do the upfront costs and other costs lie? There are two main costs; one is the actual technology adoption. With some paradigm shifts like virtual machines you could lift and shift, you could take what you had and just move it into a new paradigm without much of a change. With cloud native you can do that but you will not get the benefits of cloud native. So there is an upfront cost in terms of your engineers' time to rebuild the software so that it fits well within containers. The other major cost is education and a shift in your company culture. That’s the DevOps mindset where you have to move away separate engineering, development and operations teams to everybody of working together in DevOps world. How common is it that an organisation will refactor a large existing business application to containerise it, or decompose it into microservices, and what would your advice be to those considering it? It’s very common. The vast majority of companies and not starting from greenfield, and many have huge legacy infrastructures that they need to slowly migrate over. So my advice to them would be carve out something that makes sense to to prototype with, something that will benefit from being cloud native, in other words, where shipping small amounts constantly is actually valuable. Don’t pick something that changes once a year or is super critical to your infrastructure. Pick something small and self-contained where you understand the benefits that cloud native would bring. Shifting things to containers is relatively easy these days; starting up a Kubernetes cluster is relatively easy these days, but the challenge comes with operating things over time. What about storage? I understand that can be quite a challenge too. I would say storage is one of the areas that is particularly difficult. That’s because the original idea of cloud native was everything is stateless - so there is no storage. You can’t really build storage into a world where there’s no state and nothing changes. So retrofitting storage into that requires quite a lot of sophistication and careful thinking, and it’s getting better over time, but, yes, end-user companies that I’ve spoken to say storage is a challenge. Security is a major, major challenge because of the security-usability trade-off. Usually when things are more usable you reduce the amount of security and containers are very, very easy to use. See also: Going cloud native at the FT. An interview with tech director Sarah Wells Adopting containers and Kubernetes now is not that hard, but storage, security and deciding whether or not and how to use a service mesh are still challenges. And underlying all of this is still the education, training and the culture and understanding how to organise the engineering teams. Can you explain what a service mesh is and who would need one? The idea of a service mesh is to take a network, which is inherently unreliable because, you know, things go down, people make mistakes, goats eat cables - and add a layer to make it seem like it’s perfectly reliable. Say a data centre in New York has gone down then we can move to a backup one in Seattle. So it’s an extra layer of virtualisation or abstraction that means you don’t have to worry about hardware? Yes, but specifically for networking and at large scale. If you only have three servers, odds are your network doesn’t really matter because it’s not going to go down very often, but if you have 100,000 servers, you’re going to constantly need to deal with networking issues. Presenting at KubeCon recently, some early adopters at Monzo said they’d take the managed services route to Kubernetes these days. Would you agree? I would say the managed services are pretty good nowadays, but I wouldn’t make a blanket recommendation. It depends a lot on what knowledge and engineering resources you have, whether you’ve made investments into your own on prem infrastructure, and so on. But if you were starting brand new from scratch then I think managed services are a good way to go. The cloud native ecosystem is quite complex. How do IT leaders pick the right tools? We have a tool called the CNCF Technology Radar. If you’re fairly new to this and you want to know what to begin with, what to choose, then your best shot is asking other people what they use and what they recommend. The idea is to really help the broader community choose what things to use. I think it’s very important that it features things that are not CNCF projects, and not all are open source projects either, because it’s so important to have the real world view. The Computing CRN Women in Tech Festival Global 2020 takes place online on November 30. This year’s event will focus on empowerment, development, management, and even the taboo of managing inappropriate workplace interactions. Register today.

Author: john.leonard@incisivemedia.com(John Leonard)

Date: 2020-10-30

URL: https://www.computing.co.uk/interview/4022550/cloud-native-explained-interview-cheryl-hung-vp-ecosystem-cncf

computing.co.uk
It’s time to shape the future! Join us at the Women in Tech Festival Global (2020-11-24) Bigger than ever the Festival offers two days of carefully selected motivational keynotes case studies panel discussions and mentoring sessions Join us at the Women in Tech Festival Global Monday 30 November - Tuesday 1 December The year 2020 has demonstrated the central importance of technology in holding businesses and society together in the wake of severe and prolonged disruption The years eve..
Women in Tech Awards - here are the winners! (2020-12-01) The Women in Tech Awards were held virtually for the first time in their history but still managed to be bigger and better than ever? Read on to find out who won big on the night The Women in Tech Awards 2020 proved that even the Coronavirus pandemic cant stop the technology industry from celebrating one of its favourite awards Held virtually for the first time in its history the awards was watche..
What users think of web conferencing leaders Teams, Zoom, Hangouts and Webex (2020-11-20) Latest Computing Delta research finds the leaders pulling away from the competition If theres one application whose star has risen during the 2020 pandemic its Zoom Prior to the lockdown Zoom was one of many similar collaboration tools that people generally used to make audio-only conference calls but when people suddenly became desperate to catch up with colleagues sprouting haircuts Zoom which w..
A whistlestop tour of some of the year’s biggest cyber security stories (2020-11-05) Bears scares and ransomware Well what a year its been 2020 kicked off as it meant to go on with news emerging from China of a new virus which lead to a swiftly imposed lockdown in the city of Wuhan Looks grim we thought but it will probably peter out like previous viruses before it How wrong we were To coincide with our Deskflix Cyber Security event heres a look back at the last 10 months as cover.. A whistlestop tour of some of the year’s biggest cyber security stories
UK government pays $500 million for stake in space startup OneWeb (2020-11-23) OneWebs emergence from bankruptcy means buyout by the UK government and Bharti Global can go ahead Broadband satellite constellation firm OneWeb announced last week that it had completed all relevant regulatory approvals to allow the sale of the company to a new group led by the UK government and Indian conglomerate Bharti Global As part of the deal the British government and Bharti Global will ea.. UK government pays $500 million for stake in space startup OneWeb
Peter Cochrane: The digitalisation mystery (2020-11-27) The plethora of digitalisation events shows managers havent been paying attention says Professor Peter Cochrane I was just cold-called to see if I would be interested in a conference on business digitalisation My immediate response caused surprise as I stated that if I was being invited as a speaker I would be happy to do so but if they just wanted me to attend then I was not interested The caller..
Forum on Information and Democracy releases damning report on social media platforms (2020-11-12) Adding friction to online sharing could help to prevent the fast spread of fake news As fake news and disinformation campaigns continue to impact societies and politics around the world the Forum on Information and Democracy has released a new report offering 250 recommendations for social media platforms and governments to fight misleading content and disinformation on the internet Disinformation..
BT picks Ericsson for 5G mobile networks in major UK cities (2020-10-29) BT will use Ericssons 5G equipment to upgrade EE mobile networks BT has chosen Swedens Ericsson to provide 5G Radio Access Network RAN connectivity in several major UK cities including London Cardiff Edinburgh and Belfast In a statement on its website Ericsson said that it would be a key BT partner for 5G deployment in Britain The company is set to manage about 50 per cent of BTs total 5G traffic .. BT picks Ericsson for 5G mobile networks in major UK cities
How to create a culture of ownership for IT issues (2020-10-23) Overworked service desks are no substitute for skilled IT professionals optimising the solutions they helped to build Keeping IT platforms applications and services running smoothly reliably and efficiently should be at the top of every businesss priority list and never more so than in the middle of the greatest change to working patterns in decades Changes may have been forced on organisations ov..
US court tells Apple to pay $503 million over patent violation (2020-11-02) Apple told the court that it owed the claimant no more than $113 million A jury in Texas ruled on Friday that Apple must pay $5028 million in royalties to Nevada-based software firm VirnetX over infringement of its patented VPN technology The two firms have been fighting the case for the last ten years with VirnetX claiming that Apples VPN-on-Demand and FaceTime services use VirnetXs technology wh..
aws kubernetes cloud native google security cloud network
Sonrai Security Raises $20M to Uncover and Map Cloud Platform Security Risks

Sonrai Security Raises $20M to Uncover and Map Cloud Platform Security Risks

June 20, 2020

Brendan Hannigan and Sandy Bird are repeat entrepreneurs. They founded Q1 Labs, a company they started, scaled, and sold to IBM for ~$600M. The duo is now building Sonrai Security, an enterprise identity and data governance platform for AWS, Azure, Google Cloud, and Kubernetes. Hannigan joined AlleyWatch to share more about the company, the process of fundraising, and the company’s recent funding
What is cloud security?

What is cloud security?

June 16, 2020

The pace of digital transformation drastically increased in 2020 due to the onset of the pandemic. Remote working, social distancing, and the need for business continuity saw factories, offices, and even restaurants and coffee shops tapping into cloud computing. Taking our lives and our information even further online. With even more data being generated, processed, and stored, particularly by bus
What is digital transformation?

What is digital transformation?

June 16, 2020

‘Digital transformation’ is one of those phrases you may dismiss as business jargon, but it’s so much more than that. It can play a crucial role in evolving and growing your business. Most organisations will have gone through some sort of digital transformation in their lifetime. The right technology is often key to staying competitive, and during this challenging and uncertain year, adding digit
Oracle announces new dual-region UK Government Cloud operating from data centres in London and Wales

Oracle announces new dual-region UK Government Cloud operating from data centres in London and Wales

June 22, 2020

Data centres in England and Wales are linked by a high speed backbone Oracle has announced a 'dual-region Government Cloud', private cloud infrastructure designed specifically for the UK government's needs to store and process official information and transactions securely. The dual-region cloud consists of two data centres for disaster recovery purposes - an existing facility in Lon
The Self-Driving Car Is a Red Herring - Issue 92: Frontiers

The Self-Driving Car Is a Red Herring - Issue 92: Frontiers

June 20, 2020

Ten years ago this fall, Google gave us a glimpse of a new device unlike any it had ever built before—a computer-controlled car. It seemed such a strange thing for an Internet company to spend its time and energy on, a “moonshot” as the company’s engineers called such massive efforts. But with a single blog post, the search giant promised to reinvent our cars, and our communities, too.It was a big
Augmented Reality Must Have Augmented Privacy

Augmented Reality Must Have Augmented Privacy

June 19, 2020

Imagine walking down the street, looking for a good cup of coffee. In the distance, a storefront glows in green through your smart glasses, indicating a well-reviewed cafe with a sterling public health score. You follow the holographic arrows to the crosswalk, as your wearables silently signal the self-driving cars to be sure they stop for your right of way. In the crowd ahead you recognize someon
How Tailscale works

How Tailscale works

June 17, 2020

People often ask us for an overview of how Tailscale works. Weve been putting off answering that, because we kept changing it! But now things have started to settle down. Lets go through the entire Tailscale system from bottom to top, the same way we built it (but skipping some zigzags we took along the way). With this information, you should be able to build your own Tailscale replacement except
May Tailscale newsletter

May Tailscale newsletter

June 17, 2020

This is a re-publishing of our monthly newsletter sent to subscribers earlier this month. Sign up to receive future email newsletters.A month ago, we announced Tailscale’s general availability. Since then, we’ve been hard at work improving Tailscale. Today, were writing with some updates. We recently released a new minor version of our client apps. This new version fixes various connectivity issu
Tailscale has reached general availability

Tailscale has reached general availability

June 17, 2020

Just over a year ago, we founded Tailscale with a common sense of nostalgia for the good old days of LANs. In our collective opinion (then and now) networking and cloud infrastructure has become too complicated. Attempts to increase team connectivity and migrate towards remote work results in a corresponding burden of security. This reduces productivity. Systems and approaches dont scale without s