Chinese Internet and search giant Baidu today announced that it has chosen the open source Docker containerization system as the basis for its upcoming Baidu Application Engine 2.0. This signals a move away from sandbox-based PaaS to container-based PaaS, according to Docker, Inc., the developers of the Docker project.
Increasingly, Platform-as-a-Service (PaaS) seems to be gaining momentum in cloud-based adoption. Why shouldn't it? For many users, the cloud is a place to run their applications. The same way they don't want to have to worry about hardware and network connectivity, they don't want to deal with OS issues either. As long as their application runs, that is what they care about.
The first generation of PaaS platforms used sandbox technology to allow multiple applications to run on a single instance of an OS. However, sandboxes have their drawbacks. Perhaps the biggest is that you need a different sandbox for each particular language you are using. With the plethora of development languages prevalent today, this makes for a very complex situation. In fact, many PaaS sandbox technologies use the number of languages they support as their killer feature. In addition to language support, sandboxing also made development, security and maintenance much more complicated. While many companies, including Baidu, originally chose sandboxing as the basis of their PaaS offering, next-generation PaaS platforms are increasingly migrating to containers as a better solution.
"With traditional PaaS, resource isolation and constraints are achieved through sandbox technology," said Yifei Chen, tech leader of the BAE team at Baidu. "We were drawn to Docker because it replaces sandboxing with containerization, enabling a multi-lingual, agile and cost-effective solution that provides our developers with the flexibility needed to support a growing number of frameworks and applications. Docker has a thriving ecosystem, and we are happy to officially join it."
According to Docker, the Baidu team chose Docker containers for the following reasons:
According to the press release, Baidu further engaged with the Docker community by making contributions to the Docker repository. The company also recently presented on their use of Docker during the Cloud Computing Architect Summit in China. Here is a slideshare of the translated presentation by the Baidu team: (if you don't see a slideshare window, hit reload on your browser)
Baidu is not the only PaaS player to embrace Docker's containers in place of sandboxes though. Google and Red Hat have also announced support for Docker. Running on any version of Linux, it would seem that containers are poised to become the dominant form of PaaS offerings.
I know that in speaking with friends in the DevOps world they are big fans of containers. The ability to easily spin up language independent VM containers regardless of whether it be in public, private or hybrid clouds via Chef or Puppet scripts is a big plus.
Container-based PaaS promises to allow application developers the freedom to spin up and down applications even easier than spinning up cloud instances is now. Not worrying about the OS management of the environment allows them to truly focus on just their application.
I am interested to hear from developers if they think PaaS based on containers will be as attractive as many are saying it might be. Leave a comment if you are a developer either using PaaS or thinking about it with your experiences.
As PaaS usage continues to grow, the use of containers promises to skyrocket. As I wrote two weeks ago, containerization may become as prevalent as hypervisor virtualization. It would seem that the open source Docker project and Docker, Inc. are the leading players in this movement. Xen was sold for a billion or so dollars to Citrix, could a similar happy ending be in store for Docker?
As co-founder and Managing Partner at The CISO Group, Alan Shimel is responsible for driving the vision and mission of the company. The CISO Group offers security consulting and PCI compliance management for the payment card industry. Prior to The CISO Group, Alan was the Chief Strategy Officer at StillSecure. Shimel was the public persona of StillSecure as it grew from start up to helping defend some of the largest and most sensitive networks in the world.
Shimel is an often-cited personality in the technology community and is a sought-after speaker at industry and government conferences and events. His commentary about the state of security, open source and life is followed closely by many industry insiders via his blog and podcast, "Ashimmy, After All These Years" (www.ashimmy.com). Alan is now also a regular contributor to The CISO Group’s security.exe blog and podcast. Follow him on Google.
Alan has helped build several successful technology companies by combining a strong business background with a deep knowledge of technology. His legal background, long experience in the field, and New York street smarts combine to form a unique personality.
Disclosure: The CISO Group sells a software-as-a-service PCI compliance application called SAQPro. The company is independent and does not represent any other vendor's products as a reseller.
Policy on comments: Respectful discussion is welcomed! However comments that use inappropriate language, consist of name calling or personal attacks, or include accusations of wrongdoing are not appropriate. Those comments will be deleted or edited.