Docker, the company behind the open platform to build, ship and run distributed applications, has unveiled Docker Universal Control Plane 1.0 – an on-premises solution for deploying and managing Dockerized distributed applications in production on any infrastructure. Although designed to be deployed as an on-premises solution, it can manage the simultaneous deployment of Dockerized applications on Docker hosts across multiple supported platforms, including bare metal dedicated servers, virtualized, and private or public cloud.
With Docker Universal Control Plane, operations would have the centralized controls required to provision the compute, network and storage resources to run Dockerized applications on any infrastructure, while providing developer teams agile self-service capabilities to deploy and manage applications.
“To manage applications in production today, IT operations is typically forced to build its own management stack using open source components or deploy proprietary software bundled from major infrastructure providers that will result in lock-in and loss of control,” said Solomon Hykes, CTO and Chief Architect of Docker. “With Docker Universal Control Plane, organizations have a solution designed to put IT operations in control of their own infrastructure. And, the Universal Control Plane saves enterprises from sacrificing developer agility and application portability in their efforts to have the requisite operational controls to run production applications.”
The Docker Universal Control Plane has one uniform provisioning workflow to create and allocate resources for compute, network, and storage in multiple public cloud providers, hybrid clouds or fully private data center environments. The end state is that IT operations has complete leverage to decide what is the best infrastructure for a given application or class of applications while developers can deploy and manage their applications without requiring any knowledge about the underlying infrastructure.
Universal Control Plane capabilities include:
- Provisioning of compute, network, and storage on any infrastructure, with integration to enterprise security and monitoring
- Support for any:
- Application – stateful and stateless; legacy and next generation for any programming language
- Bare-metal server, VM or cloud instance
- Linux distribution and Windows Server and Solaris
- Stage of the application lifecycle from dev to test to QA to staging to production
Docker Universal Control Plane also provides developers self-service capabilities to access the content needed to build and deploy distributed applications. This capability is made possible by integrating with Docker Trusted Registry to ensure that developers only have access to a library of secured, curated container content and are provided the opportunity to choose from a pool of infrastructure resources for deployment. Universal Control Plane is fully compatible with Docker Toolbox and the Docker APIs so that developers don’t have to learn new tooling to align with the operational controls that have been put in place.
At the same time, Docker announced new security enhancements that would safeguard and protect Dockerized distributed applications, while preserving developer agility. Unveiled at DockerCon EU, this comprehensive security offering includes hardware signing of container images, content auditing through image scanning and vulnerability detection and granular access control policies with user namespaces.
These new capabilities, in combination with Docker’s existing security options, would ensure the publisher of the content is verified, chain of trust is protected and containerized content is verified via image scanning.
“It has been our goal from the beginning to develop a framework that secures Dockerized distributed applications throughout the entire application lifecycle,“ added Solomon Hykes. “With this latest set of capabilities, we continue to drive our users and ecosystem forward with industry-first innovations and best practices that advance the end-to-end security of distributed applications. Furthermore, we’ve enabled developers and IT ops to benefit from a more secure environment, without having to learn a new set of commands or to be trained on a deep set of security principles. Docker security works as part an integrated component without any disruption to developer productivity while providing IT with the appropriate level of security controls.”