Kubernetes (software)
Generated by GPT-5-miniExpansion Funnel Raw 93 → Dedup 5 → NER 3 → Enqueued 2
| Kubernetes (software) | |
|---|---|
| Name | Kubernetes |
| Developer | Google, Cloud Native Computing Foundation |
| Initial release | 2014 |
| Programming language | Go |
| Repository | kubernetes/kubernetes |
| License | Apache License 2.0 |
| Website | kubernetes.io |
Kubernetes (software) Kubernetes is an open-source container orchestration system for automating deployment, scaling, and management of containerized applications. It originated from engineering work at Google and is maintained by the Cloud Native Computing Foundation; it integrates with container runtimes, networking, storage, and continuous delivery pipelines used across cloud providers and on-premises data centers.
Overview
Kubernetes provides primitives for declarative configuration and automation inspired by production systems at Google such as Borg and Omega, and it interoperates with infrastructure services from providers like Amazon Web Services, Microsoft Azure, Google Cloud Platform, and vendors such as Red Hat, VMware, and IBM. The project is governed through the Cloud Native Computing Foundation technical community and hosted on GitHub where contributors from organizations including CNCF, Google, Microsoft, Red Hat, VMware, Amazon Web Services and Huawei collaborate. Kubernetes is implemented in Go (programming language) and distributed under the Apache License.
Architecture
Kubernetes follows a master–worker architecture with control plane components and node-level agents; control plane processes include API server, scheduler, and controller manager, while node agents include kubelet and kube-proxy. The API server exposes a RESTful interface used by CLIs such as kubectl and by controllers developed by organizations including HashiCorp, Red Hat, Canonical, and Rancher; state is persisted in etcd, a distributed key-value store created by CoreOS founders. The architecture supports pluggable networking via the Container Network Interface specified by the CNI project and storage via the Container Storage Interface from the CNCF ecosystem.
Key Concepts and Components
Pods are the smallest deployable units and encapsulate one or more containers, often built from images hosted on registries such as Docker Hub, Quay.io, or Google Container Registry. ReplicationControllers and ReplicaSets, influenced by concepts in Borg and Omega (operating system), provide scaling semantics; Deployments and StatefulSets implement rollout strategies used by teams at Spotify, Airbnb, and Box. Services and Ingress resources abstract network access for workloads and integrate with load balancers from F5 Networks, NGINX, and cloud-native projects like Traefik. ConfigMaps and Secrets enable configuration and credential management analogous to practices at Netflix and Spotify for twelve-factor app deployments. Operators, as promoted by CoreOS and practitioners at Red Hat and IBM, encode application lifecycle using custom resources and controllers.
Deployment and Operation
Kubernetes can be provisioned via managed offerings such as Google Kubernetes Engine, Amazon EKS, Azure Kubernetes Service, or via distributions like OpenShift from Red Hat, Rancher from SUSE, and k3s from Rancher Labs. Cluster lifecycle management uses tools like kubeadm, kops, Terraform from HashiCorp, and Ansible from Red Hat; observability relies on instrumentation stacks including Prometheus, Grafana Labs, Elasticsearch, Fluentd, and logging systems used by Pinterest and GitHub. Continuous delivery and GitOps patterns are implemented with projects such as Argo CD, Flux, and CI systems like Jenkins, GitLab CI, and CircleCI.
Ecosystem and Integrations
The Kubernetes ecosystem includes networking plugins like Calico, Weave Net, and Flannel; service meshes such as Istio, Linkerd, and Consul from HashiCorp; storage integrations with Ceph, Portworx, OpenEBS, and cloud volumes from AWS, GCP, and Azure; and policy and governance tools like OPA (Open Policy Agent) and projects from CNCF landscapers. Observability, tracing, and profiling integrate with Jaeger, OpenTelemetry, and vendor solutions from Datadog and New Relic. Ecosystem contributors include enterprises and research groups such as Google Research, Microsoft Research, Red Hat Research, and startups originating from incubators like Y Combinator.
Security and Compliance
Security practices for Kubernetes involve role-based access control influenced by standards from NIST, runtime hardening with technologies like SELinux, AppArmor, and seccomp profiles, and supply-chain protections championed by initiatives such as Sigstore and in-toto. Vulnerability management uses advisories coordinated among vendors like Red Hat, Canonical, and Google, and compliance mapping references frameworks employed by ISO, SOC 2, and PCI DSS auditors in enterprise environments. Network policies, PodSecurityPolicies (deprecated in favor of Pod Security Admission), and service meshes such as Istio contribute to segmentation and zero-trust architectures promoted by organizations like NSA and CISA.
History and Development
Kubernetes began as an internal project at Google drawing on lessons from systems like Borg and Omega (operating system), with the initial public release announced in 2014 and stewardship transitioned to the Cloud Native Computing Foundation in 2015. Development has been driven by a broad community including corporate maintainers from Google, Red Hat, VMware, Microsoft, Amazon Web Services, and individuals affiliated with academic labs and research groups at institutions such as MIT and UC Berkeley. Major milestones include adoption of the CNI and CSI specifications, graduation of subprojects into the CNCF landscape like Prometheus and Envoy, and increasing enterprise production usage documented by case studies from Spotify, Airbnb, NFL, and The New York Times.
Category:Software