Lew Tucker

Istio 1.0: Making It Easier To Develop and Deploy Microservices

With the recent availability of Istio 1.0 it is not surprising that it continues to capture much attention from the technical press and developer community. As an open platform to connect, manage, and secure microservices, Istio promises to make it much easier to build and operate micro-service based applications. So what is behind all this interest and what problem does it solve?

Off-loading management of service-to-service networking

It’s clear that developing applications as a set of micro-services offers several advantages. Breaking up a large application into a set of services allows individual development teams to focus on building simple services – doing one thing – and doing it very well. Kubernetes adds to this by providing orchestration of containers, scaling, and resiliency.

But because microservices need to be connected, what started out simple suddenly becomes complex. Each development team must now know how to handle secure service-to-service communication, authentication, traffic management, and many other aspects of networking that may go way beyond the skillset of each team. Add to this the operational requirements for observability and management, and things quickly become much more complicated.

Istio reduces this complexity by off-loading management of service-to-service networking to a distributed service mesh. Sidecar proxies, sitting next to each service instance, manage traffic, setup secure connections and work in concert with control plane elements operating across the entire mesh.   Load balancing, A/B testing, policy changes, and failure recovery can now all be done without having to get each application development team involved. Most importantly, this single control plane means that it’s now easy to apply a consistent set of policies across the microservices.

Multicluster Istio

By now, you have hopefully heard about Cisco’s hybrid cloud work and partnership with Google , so when our team started to get involved with Istio, we immediately saw an opportunity for Istio to play a role in hybrid computing across multiple public and private clouds. Working upstream with the rest of the Istio community, Cisco engineers helped to develop a model for Istio to move beyond operating within a single Kubernetes cluster by simply extending a single control plane across multiple Kubernetes clusters.   This capability is available as an Alpha feature in Istio 1.0, and over time we expect to see the community develop different ways for Istio to play across multiple clouds.

In summary, just as Kubernetes provides orchestration of containers, Istio might best be viewed as providing orchestration of service-to-service networking yielding a much better way to develop and deploy microservice-based applications in a multicloud world.

By Lew Tucker

Lew Tucker

Lew Tucker is the Vice President and Chief Technology Officer of Cloud Computing at Cisco, where he is responsible for helping to shape the future of cloud and enterprise software strategies.

Tucker has more than 20 years of experience in the high-tech industry, ranging from distributed systems and artificial intelligence to software development and systems architecture. Prior to joining Cisco, he was the Vice President and Chief Technology Officer for Cloud Computing at Sun Microsystems, where he led the development of its infrastructure-as-a-service offering and the
development of Sun Cloud. Other accomplishments in his career include Salesforce.com’s AppExchange, the java.com developer community, and the massively parallel Connection Machine.

Tucker’s interest in distributed systems stems from his tenure at Thinking Machines, an early leader in supercomputing technology, where large-scale problems could only be addressed by using thousands of individual processors. Today, as the Internet evolves, companies are following a similar trajectory and building out large-scale cloud computing platforms. Transformation of systems into scalable platforms remains a long-term interest.

Tucker holds a bachelor’s degree in biology from Cornell University, a master’s degree in computer science with a specialization in artificial intelligence from the Polytechnic Institute of New York University, and a doctorate in computer science from the Polytechnic Institute of New York University.

View Website
The Future For Cyber Security Looks Uncertain

The Future For Cyber Security Looks Uncertain

Future For Cyber Security From the inception of the internet, cyber security has become increasingly more important. As the internet ...
SD Wan Speeds

Debunking some common SD WAN myths

Common SD WAN Myths There are few buzzwords in the networking world as current as ‘SD WAN’ – and depending ...
Matthew Cleaver

Dispelling the Myths of Cloud Solutions for the Small Business

Dispelling the Myths of Cloud Solutions As a business leader, migrating to the cloud can be overwhelming due to the ...
Winning the data intelligence game

Winning the data intelligence game

Data intelligence A case can be made that every company is now a data company. But, it is the effective ...
How Big Data Can Empower Native Ads

How Big Data Can Empower Native Ads

Empower Native Ads The realm of big data is expanding an astonishing rate, and its presence can be felt across ...