Exploring Secure High-Performance Container Network Mesh Solutions
Keywords:
Container Network Mesh, Microservices Security, Service Mesh Performance, Kubernetes Networking, Cloud-Native InfrastructureAbstract
This study examines and comprises analyses of various aspects of the secure high-performance container network mesh solutions in response to the container and microservices architecture. It looks at the historical development of these solutions, basic ingredients, and today’s specifics of both open-source and commercial solutions. The focus of the study falls on the key security issues and their solutions as well as the performance. It provides information on how these can be done through case studies and benchmarks to show current practical implementations and performance comparisons. The study also identifies the future trends and research directions of this dynamic area of study. The results emphasize that security is of high value in container network meshes, also, performance and complexity should be optimal in the solutions. This study enhances the knowledge of today’s potential and tomorrow’s possibilities of these solutions and will be useful for researchers, practitioners, and decision-makers involved in containerized application deployment and management.
Downloads
References
Qi, S., Kulkarni, S.G. and Ramakrishnan, K.K., 2020. Assessing container network interface plugins: Functionality, performance, and scalability. IEEE Transactions on Network and Service Management, 18(1), pp.656-671.
Larsson, L., Tärneberg, W., Klein, C., Elmroth, E. and Kihl, M., 2020. Impact of etcd deployment on Kubernetes, Istio, and application performance. Software: Practice and experience, 50(10), pp.1986-2007.
Kapočius, N., 2020. Overview of kubernetes cni plugins performance. Mokslas–Lietuvos ateitis/Science–Future of Lithuania, 12.
Beltre, A.M., Saha, P., Govindaraju, M., Younge, A. and Grant, R.E., 2019, November. Enabling HPC workloads on cloud infrastructure using Kubernetes container orchestration mechanisms. In 2019 IEEE/ACM International Workshop on Containers and New Orchestration Paradigms for Isolated Environments in HPC (CANOPIE-HPC) (pp. 11-20). IEEE.
Qi, S., Kulkarni, S.G. and Ramakrishnan, K.K., 2020. Assessing container network interface plugins: Functionality, performance, and scalability. IEEE Transactions on Network and Service Management, 18(1), pp.656-671.
Zhang, I., Liu, J., Austin, A., Roberts, M.L. and Badam, A., 2019, May. I'm not dead yet! the role of the operating system in a kernel-bypass era. In Proceedings of the Workshop on Hot Topics in Operating Systems (pp. 73-80).
Achar, S., 2021. Enterprise saas workloads on new-generation infrastructure-as-code (iac) on multi-cloud platforms. Global Disclosure of Economics and Business, 10(2), pp.55-74.
Scalabrino, S., Bavota, G., Linares-Vásquez, M., Lanza, M. and Oliveto, R., 2019, May. Data-driven solutions to detect api compatibility issues in android: an empirical study. In 2019 IEEE/ACM 16th International Conference on Mining Software Repositories (MSR) (pp. 288-298). IEEE.
Rahman, D., Amnur, H. and Rahmayuni, I., 2020. Monitoring server dengan prometheus dan grafana serta notifikasi telegram. JITSI: Jurnal Ilmiah Teknologi Sistem Informasi, 1(4), pp.133-138.
Genovese, S., 2021. Data Mesh: the newest paradigm shift for a distributed architecture in the data world and its application (Doctoral dissertation, Politecnico di Torino).
Machado, I.A., 2021. Proposal of an Approach for the Design and Implementation of a Data Mesh (Master's thesis, Universidade do Minho (Portugal)).
Stafford, V., 2020. Zero trust architecture. NIST special publication, 800, p.207.
Celik, Z.B., Tan, G. and McDaniel, P.D., 2019, February. Iotguard: Dynamic enforcement of security and safety policy in commodity IoT. In NDSS.
Qi, S., Kulkarni, S.G. and Ramakrishnan, K.K., 2020. Assessing container network interface plugins: Functionality, performance, and scalability. IEEE Transactions on Network and Service Management, 18(1), pp.656-671.
Kumar, P., 2020. QUIC (Quick UDP Internet Connections)--A Quick Study. arXiv preprint arXiv:2010.03059.
Tamiru, M.A., Tordsson, J., Elmroth, E. and Pierre, G., 2020, December. An experimental evaluation of the kubernetes cluster autoscaler in the cloud. In 2020 IEEE International Conference on Cloud Computing Technology and Science (CloudCom) (pp. 17-24). IEEE.
Miano, S., Risso, F., Bernal, M.V., Bertrone, M. and Lu, Y., 2021. A framework for eBPF-based network functions in an era of microservices. IEEE Transactions on Network and Service Management, 18(1), pp.133-151.
Tran, V.H. and Bonaventure, O., 2019. Making the Linux TCP stack more extensible with eBPF. In Proc. of the Netdev 0x13, Technical Conference on Linux Networking.
Downloads
Published
How to Cite
Issue
Section
License
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
All papers should be submitted electronically. All submitted manuscripts must be original work that is not under submission at another journal or under consideration for publication in another form, such as a monograph or chapter of a book. Authors of submitted papers are obligated not to submit their paper for publication elsewhere until an editorial decision is rendered on their submission. Further, authors of accepted papers are prohibited from publishing the results in other publications that appear before the paper is published in the Journal unless they receive approval for doing so from the Editor-In-Chief.
IJISAE open access articles are licensed under a Creative Commons Attribution-ShareAlike 4.0 International License. This license lets the audience to give appropriate credit, provide a link to the license, and indicate if changes were made and if they remix, transform, or build upon the material, they must distribute contributions under the same license as the original.
