Containers is a widely used way of developing and delivering software today. As they take use of abilities in the kernel to provide isolation and control, they provide a small overhead compared to traditional Virtual Machines. But with using a shared kernel comes additional security threats. A solution to this is to provide a extra layer of virtualization to provide extra isolation.The aim of this research is to study two different runtimes. The selected runtimes are Crun and Kata Containers. Where as Crun is a native low level runtime and Kata Containers offers an additional layer of isolation. To test these runtimes, this study use a Python benchmarking suite called pyperformance, to be able to measure what modules and libraries are affected by this extra layer of isolation.The findings are that the overhead in ranges from <1x up to 44x comparing the two runtimes. This research show what modules and libraries in Python are affected in a significant way when executed in Kata Containers.
| Identifer | oai:union.ndltd.org:UPSALLA1/oai:DiVA.org:his-20569 |
| Date | January 2021 |
| Creators | Björklund, Fredrik |
| Publisher | Högskolan i Skövde, Institutionen för informationsteknologi |
| Source Sets | DiVA Archive at Upsalla University |
| Language | English |
| Detected Language | English |
| Type | Student thesis, info:eu-repo/semantics/bachelorThesis, text |
| Format | application/pdf |
| Rights | info:eu-repo/semantics/openAccess |
Page generated in 0.0026 seconds