News

Microsoft, Docker Launch Cloud Native Application Bundles for Managing Distributed Apps

Microsoft and Docker on Tuesday announced a new specification and a new tool for organizations and developers managing distributed applications.

The new specification is called Cloud Native Application Bundles (CNAB), which aims to solve issues for organizations that build and maintain distributed applications. The spec is "cloud agnostic" and is based on technologies such as JavaScript Object Notation (JSON), Docker containers and OpenPGP encryption. Partners working on the CNAB spec include Bitnami, Docker, HashiCorp and Microsoft. In addition, Microsoft and Docker collaborated on a new tool to enable the CNAB spec, called "Duffle."

Distributed applications are defined, at the basic level, as applications that run on at least one client and one server, but they can also get more complicated. A distributed app might tap multiple cloud services, for instance, and that's apparently the scenario that Microsoft and Docker planned to address with the new spec and tool.

"Real-world applications can now span on-premises infrastructure and cloud-based services, requiring multiple tools like Terraform for the infrastructure, Helm charts and Docker Compose files for the applications, and CloudFormation or ARM templates for the cloud-services," explained Patrick Chanezon of Docker in Docker's announcement. The use of these multiple tools presently requires carrying out separate management activities, he noted, which complicates matters.

CNAB aims to simplify the handling of distributed applications, taking away some of the management drudgery. In composing the spec, the idea was to "treat a distributed application as a single app," explained Microsoft's Matt Butcher in an announcement. The spec provides a means for provisioning distributed applications without having to master multiple tools. It also lets organizations or developers manage the lifecycle of distributed applications, with the ability to install, upgrade and delete them without using multiple tools.

CNAB applies to any cloud service, "from Azure to on-prem OpenStack, from Kubernetes to Swarm, and from Ansible to Terraform," Butcher explained, adding that "it is flexible enough to accommodate an array of platform needs, from customer-facing marketplaces to internal build pipelines." It'll even work with Internet of Things (IoT) networks and "air-gapped environments."

Docker is claiming to be the first company "to implement CNAB for containerized applications." CNAB support will be included in Docker's experimental tooling, allowing organizations or developers to "package CNAB bundles as Docker images." CNAB support will be added to Docker Enterprise, too, in the "coming months," Chanezon promised.

The Duffle tool, which supports "all of the core capabilities for working with CNAB," can be used now. Duffle has a graphical user interface that will let users "create new bundles, cryptographically sign them, and verify their integrity," Butcher explained. In addition, Microsoft has released a Visual Studio Code extension that lets users build and host CNABs, he added.

For more information about CNAB, see this Microsoft video discussion.

About the Author

Kurt Mackie is senior news producer for the 1105 Enterprise Computing Group.

Featured

  • Performing a Storage Refresh on Windows Server 2016, Part 1

    To spruce up some aging lab hardware, Brien decided to make the jump to all-flash storage. Here's a walk-through of the first half of the process.

  • Datacenters Are Cooling Down as Buildouts Heat Up

    Tech giants Google, Apple and others are expanding their datacenter footprints at a rapid rate, and it's pushing the industry to find better ways to power all that infrastructure.

  • Vendors Issue Patches for Linux Container Runtime Flaw Enabling Host Attacks

    This week, the National Institute of Standards and Technology (NIST) described a high-risk security vulnerability (CVE-2019-5736) for organizations using containers that could lead to compromised host systems.

  • Windows 10 Version 1809 Users May Get Visual Studio Crashes

    Microsoft on Friday issued an advisory for Windows 10 version 1809 users about possible Visual Studio crashes.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.