Name
Abstract | ||
|---|---|---|
Containers are resource-efficient and most IT industries are adopting container-based infrastructure. However, the security and isolation of the container is rather weak. In this work, we aim to conduct an in-depth quantitative analysis of the performance characteristics of containerization technologies that strengthen container isolation and security, and discuss the applicable scenarios of various containerization technologies. We evaluate multiple cloud resource management dimensions of RunC, gVisor, and Kata Containers runtimes, including performance, system call, startup time, density, and isolation. Experimental results show that RunC and Kata Containers have less performance overhead, while gVisor suffers significant performance degradation in I/O and system call, although its isolation is the best. Our work deepens the understanding of the container performance characteristics and may help cloud computing practitioners in making proper decisions on platform selection, system maintenance and/or design. |
Year | DOI | Venue |
|---|---|---|
2022 | 10.1007/s10586-021-03517-8 | Cluster Computing |
Keywords | DocType | Volume |
RunC, gVisor, Kata Containers, Performance evaluation, Isolation | Journal | 25 |
Issue | ISSN | Citations |
2 | 1386-7857 | 2 |
PageRank | References | Authors |
0.38 | 7 | 3 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Xingyu Wang | 1 | 2 | 0.38 |
| Junzhao Du | 2 | 131 | 15.61 |
| Hui Liu | 3 | 30 | 2.22 |