Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

CNCF [Cloud Native Computing Foundation]

Nabla Containers - A New Approach to Container Isolation

CNCF [Cloud Native Computing Foundation] via YouTube

Overview

Explore a conference talk on Nabla Containers, a novel approach to container isolation presented by Brandon Lum and Ricardo Koller from IBM. Delve into the security concerns surrounding horizontal attacks in cloud environments and learn how Nabla Containers address these issues by leveraging library OS/unikernel techniques to reduce the attack surface on host kernels. Discover how this innovative solution allows popular applications like Node.js, Python, and Redis to run with only 9 syscalls via seccomp. Compare Nabla Containers' isolation and performance metrics against other technologies such as gVisor and Kata Containers. Gain insights into how this technology could potentially revolutionize container security and isolation in container-native cloud environments.

Syllabus

Nabla Containers: A New Approach to Container Isolation - Brandon Lum & Ricardo Koller, IBM

Taught by

CNCF [Cloud Native Computing Foundation]

Reviews

Start your review of Nabla Containers - A New Approach to Container Isolation

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.