Cloudability and Twistlock Partnership – Accelerate and Secure Your Cloud Adoption
As organizations increasingly go cloud native to drive digital transformation initiatives, container adoption continues to grow exponentially. Our State of the Cloud 2018 report revealed container adoption has grown more than 250 percent. With Kubernetes becoming the de-facto container management system and the release of Istio service mesh, we believe that container adoption is primed to explode. However, containers present a unique challenge around cost allocation and security. To help DevSecOps teams solve these challenges, Cloudability has partnered with Twistlock as part of its recently announced Twistlock Advantage Program.
At Cloudability, we believe that cost allocation and security are two critical pillars for customers to succeed in deploying and operating container environments. Containers’ unique characteristics for cost allocation are different from VMs. They require solutions designed to address those specific problems, problems like:
- No separate line item in cloud provider billing file for containers
Cloud provider billing doesn’t show charges and usage at a container construct level. However, infrastructure and operations teams need to keep track of container usage for proper cost allocation.
- All cost charges based on underlying cluster
Kubernetes pods run containers on multiple nodes in a cluster. Cost charges are based on the number of nodes being used in the cloud. Since nodes can share multiple pods, each potentially with its own chargeback department, cost allocation becomes difficult.
- Tracking pod/container usage is difficult
Containers are ephemeral. According to our research and cohort usage data, containers in an orchestrated environment have a lifespan of between 3 and 30 minutes. Since pods can be shared on a node, it can be quite difficult to assign and track usage over time to allocate costs.
Given the above challenges, it’s important for DevSecOps teams to implement proper solutions to solve the challenges unique to containers.
In the case of cost allocation, the challenge is to get the visibility necessary to properly allocate container usage to the right cost centers (business units, teams, apps, and/or services) for chargebacks.
Cloudability delivers container cost allocation by:
- Collecting accurate utilization and allocation data from Kubernetes
- Allocating cost and utilization percentage to the correct cost center by Kubernetes Clusters, Namespaces, Services and Labels
- Managing allocation of unused instance resources across pods
A common best practice that Kubernetes implementations follow is to use namespaces to indicate a team, app or cost center that is responsible for a portion of a cluster. Often this is done to attach authorization policies to portions of a cluster, but it can also be used to allocate costs along the namespace boundary.
Partnering with Twistlock to Provide Comprehensive Solutions
According to Matthew Scott, VP Strategy and Alliances at Cloudability, “As more production workloads move to containers, our True Cost™ cloud management platform provides customers with deep visibility into their container costs. Our partnership with Twistlock for container security delivers the best-of-breed solutions for organizations going cloud native.”
Twistlock is a container security platform that delivers security throughout the entire application lifecycle:
- During the development process, Twistlock integrates with the CI/CD tools to check for vulnerabilities across container images and hosts, ensuring only safe software is shipped to production
- At runtime, Twistlock automatically creates and enforces security policies that detect and prevent anomalous behavior across all microservices running in containers.
- Twistlock Layer 3 and 7 firewalls segment and filter network traffic in a microservices-aware fashion, avoiding the manual configuration needed with legacy tooling.
“Cloudability and Twistlock partnered because we both saw that our best-of-breed solutions could help organizations adopt and grow cloud-native container technology. We are excited to have Cloudability as a key member of the Twistlock Advantage Program,” said John Leon, VP Business Development & Strategic Alliances at Twistlock.
Cloudability and Twistlock, the two best-of-breed solutions for cloud native applications, have partnered to solve your problems. To learn more, read our blog post on allocating resource costs when using containers or contact us to see how we can help you accelerate your cloud adoption.