{"title":"Scalability of Container Overlays for Policy Enforcement in Digital Marketplaces","authors":"Sara Shakeri, Niek van Noort, P. Grosso","doi":"10.1109/CloudNet47604.2019.9064090","DOIUrl":null,"url":null,"abstract":"Digital marketplaces (DMPs) are emerging as a framework for organizations to share their data. Security and support for multi-tenancy are the key features of DMPs. DMPs infrastructure can be built upon container-based networks in the cloud environments. However, there is not at the moment an in-depth analysis of the capability of container networks to support this mode of operation. In this paper, we evaluate the capability of Cilium and Calico, the two most popular container network techniques, in providing security (policy scalability) and handling the multi-tenancy requirements (pod scalability) of DMPs. We first measured the policy scalability in the network, and both Calico and Cilium scale well. However, by studying the pod scalability we determine there is around 50% throughput degradation in both technologies by increasing the number of pods from one to forty.","PeriodicalId":340890,"journal":{"name":"2019 IEEE 8th International Conference on Cloud Networking (CloudNet)","volume":"16 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 IEEE 8th International Conference on Cloud Networking (CloudNet)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CloudNet47604.2019.9064090","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 2
Abstract
Digital marketplaces (DMPs) are emerging as a framework for organizations to share their data. Security and support for multi-tenancy are the key features of DMPs. DMPs infrastructure can be built upon container-based networks in the cloud environments. However, there is not at the moment an in-depth analysis of the capability of container networks to support this mode of operation. In this paper, we evaluate the capability of Cilium and Calico, the two most popular container network techniques, in providing security (policy scalability) and handling the multi-tenancy requirements (pod scalability) of DMPs. We first measured the policy scalability in the network, and both Calico and Cilium scale well. However, by studying the pod scalability we determine there is around 50% throughput degradation in both technologies by increasing the number of pods from one to forty.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
