Why the Air Force put Kubernetes in an F-16


Anyone can run Kubernetes containers for office applications. But what if the office in question is an F-16 fighter jet?

As part of its work on the Defense Department's Enterprise DevSecOps Initiative, the Air Force is increasingly deploying solutions like Kubernetes, the open-source platform for managing containerized workloads and services, to deliver advanced capabilities to warfighters.

The Air Force's SoniKube software factory is one of the DOD enterprise development shops dedicated to delivering software tools and automated services so that programs can build and deploy secure, flexible and interoperable applications. SoniKube was challenged by Nicolas Chaillan, chief software officer for the Air Force and co-lead for the DOD Enterprise DevSecOps Initiative, to install Kubernetes on the legacy hardware in F-16s.

“One point for the team was to demonstrate that it could be done,” Chaillan said in his keynote presentation at KubeCon 2019 in San Diego. In just 45 days, the team got three concurrent Kubernetes clusters running on a jet, according to TheNewStack.


It wasn't easy. The Air Force had been tackling challenges faced by enterprises moving to agile and open development systems -- legacy waterfall methodology, skills shortages and culture clashes. Unlike many open source makeovers, however, the F-16's classified systems run in a disconnected environment so that they are protected from vulnerabilities introduced by connecting to the internet.

To get the containers working on the jets, the team had to "bring the entire stack with us,” Chaillan said.

That stack includes:

The Cloud One infrastructure layer, which is a stable and secure common development, test and production environment. Authorities to operate are already in place so app developers and producers can use Microsoft Azure or Amazon Web Services clouds, depending on their needs. It also offers tools that can help reduce costs for software development.
Platform One provides software enterprise services and hardened containers, continuous integration/ continuous delivery options and the service mesh layer, which brings in baked-in, zero-trust security and the architecture to enable microservices. It also offers training/on-boarding options and contracting support.
The application layer allows development teams to build easily reusable modular software or microservices leveraging hardened containers that can be used across teams.
The DevSecOps ecosystem and program applications depend on the DOD Centralized Artifacts Repository of hardened and centrally accredited containers.  The repository currently contains over 170 secure containers that have DOD-wide reciprocity across classifications and will be maintained by the Air Force team.

"We don't believe in a one-size-fits-all approach, so we give freedom to the team to swap containers, Chaillan said.  "For us it's kind of Lego blocks." Developers can pick and choose different tools and access 16  programming languages  and 23 databases. "That reopens the door to picking the best tool to get the job done," he said.

The benefits are significant.

The DevSecOps initiative will allow DOD developers to rapidly adapt to new challenges, work as a team with various technologies, including artificial intelligence and machine learning. The open source foundation avoids vendor lock in at the infrastructure and platform layers. Code can be reused for different apps that will run on any platform, especially important at DOD where there are myriad classified, disconnected environments. It also enables any DOD program to deploy a hardened solution within days, saving time and money, according to Chaillan's presentation.

The group is working with about 25 commercial vendors to certify their containers, which can then be used by other federal agencies.

"Seeing Kubernetes run in the jet is really quite a useful and interesting example, but … we're using it to power all the sort of normal business activities that the Air Force is doing," Chaillan said in his presentation. "We have a lot of business systems moving to cloud native environments, moving to microservices, being rebuilt right from the get-go."[Source]-https://gcn.com/articles/2020/01/07/af-kubernetes-f16.aspx
Basic & Advanced Kubernetes Training Online using cloud computing, AWS, Docker etc. in Mumbai. Advanced Containers Domain is used for 25 hours Kubernetes Training.

Location: Thane, Maharashtra, India

Comments

Post a Comment

Popular posts from this blog

Why, when and how to return Stream from your Java API instead of a collection

Introduction Collections are basic and commonly used data structures. Programmers from the beginning of their career learn how to use them to receive, process and return data. Getting more advanced in Java programming, they find stream() method to convert a collection into a stream and learn how to process data using some of the stream’s useful methods like map, flatMap or reduce. They could also notice that other APIs in Java return a stream too e.g. String.lines(), Matcher.results(), Files.find(), Random.ints(). If you have experience with consuming streams but haven’t produced them yet, this article is for you. I’m going to show you some scenarios where streams can be very convenient and examples on how to use them. Additionally, I shortly mention error handling and resource management. The article is based on standard Java library java.util.stream. It’s related neither to reactive streams nor to other implementation of streams like e.g. Vavr. Also, I’m not going to cover a...
Read more

What is Kubernetes?

Kubernetes (also known as k8s or “kube”) is an open source container orchestration platform that automates many of the manual processes involved in deploying, managing, and scaling containerized applications. In other words, you can cluster together groups of hosts running Linux containers, and Kubernetes helps you easily and efficiently manage those clusters. Kubernetes clusters can span hosts across on-premise, public, private, or hybrid clouds. For this reason, Kubernetes is an ideal platform for hosting cloud-native applications that require rapid scaling, like real-time data streaming through Apache Kafka. Kubernetes was originally developed and designed by engineers at Google. Google was one of the early contributors to Linux container technology and has talked publicly about how everything at Google runs in containers. (This is the technology behind Google’s cloud services.) Google generates more than 2 billion container deployments a week, all powered by its ...
Read more

Best way to learn Java programming

Having said that I am writing this post dedicated to all my young (or I should say beginner) fellows who want to attain a certain level of proficiency in java technology and somewhere would like to take my advice on this. Keep in mind that if you do not like the way to learn java, I am proposing in this post, then just ignore me. Period. OR better, suggest me what you think is the better way to learn java fast or easily. Here I am assuming the people reading this post will be, who are very new to language, so I will start by listing first thing first. Make sure you have prepared your Java development environment ready i.e. You have installed JDK/JRE and you have an IDE like Eclipse. 1) Learn the language basics This is the first step for very obvious reason. If you don’t know the basics then you will never know either what to do next or what you are doing wrong. Initially, I do not expect from you to become the master of all java basic stuffs like keywords, core concepts o...
Read more