ZEDEDA Unveils Secure Zero Touch Kubernetes Orchestration Solution for the Distributed Edge

By Harry Forbes

Category:
Company and Product News

ZEDEDA announced direct integration with Kubernetes to simplify remote deployment and management of Kubernetes clusters on edge nodes at scale.

ZEDEDA’s cloud-based orchestration solution has a simple and intuitive UI along with comprehensive APIs that abstract all the complexities of provisioning Kubernetes clusters at the distributed edge, automating cluster bring-up on target edge nodes within minutes. With a few clicks or API calls, administrators without specialized IT skills can deploy Kubernetes clusters in the field and remotely manage the entire lifecycle of both their Kubernetes runtime and the underlying hardware at scale.

The solution integrates with customers’ existing CI/CD workflow, features a unique Zero Trust security architecture and supports any combination of virtual machines (VMs) and native Docker containers. In addition to supporting the choice of Kubernetes runtime distribution, ZEDEDA’s unique enablement of VMs on edge nodes enables deployment of any combination of legacy Windows-based applications (e.g., SCADA, HMI, Historian, VMS, POS), monolithic Linux-based images, and other popular container runtimes such as Docker/Moby, Azure IoT Edge and AWS Greengrass.

Optimized for the Unique Needs of the Distributed Edge

Distributed edge nodes under management can range from IoT gateways to managed telco and universal enterprise CPE infrastructure to small remote server clusters. The solution supports any vertical use case including IoT, edge AI, virtualized networking and security technologies in deployments spanning the factory floor, retail stores, oil rigs, wind turbines, transportation systems and beyond. The full-stack edge orchestration approach is based on an eventual consistency model to ensure that edge nodes will run autonomously in these environments, even if they periodically lose connectivity to the ZEDEDA cloud orchestrator.

ZEDEDA’s Zero Trust security architecture assumes that edge nodes distributed in the field are physically accessible, in addition to not having a defined network perimeter. Features include support for silicon-based root of trust, measured boot, remote attestation, crypto-based ID (eliminating local device login), full disk encryption, remote port blocking, distributed firewall and more. Distributed firewall capability enables secure routing of data between edge applications and both on-prem and cloud resources based on network-wide policies.

Collaboration with SUSE

Working with a leading oil and gas services company, ZEDEDA and SUSE have recently enabled an edge solution that consolidates existing SCADA software with NFV capability and other functionality on compute clusters within their trucks to optimize monitoring of oil wells through wireline analytics.

SUSE’s K3s runtime is now available in ZEDEDA’s built-in app marketplace, ready for bulk deployment on edge computing clusters with a few clicks.

Built on an Open Foundation to Prevent Lock-in and Facilitate Ecosystem Growth

ZEDEDA’s subscription-based cloud orchestration solution leverages the bare metal EVE-OS deployed on edge nodes. EVE-OS is an open, secure and universal operating system for distributed edge computing with vendor-neutral APIs, hosted within Project EVE in the Linux Foundation’s LF Edge organization. In addition to preventing vendor lock-in, EVE-OS provides an anchor point to unify an ecosystem of edge computing hardware and software, similar to what Android does for the mobile market.

ZEDEDA’s strategic integration with Kubernetes follows their recent announcement of seamless integration with Microsoft Azure IoT to simplify the deployment and scalability of solutions leveraging Azure IoT. Additional integrations that further simplify distributed edge computing deployments are in development.

 

Harry Forbes, ARC Advisory Group, commented, “The industrial edge cries out for the benefits of containerization and Kubernetes orchestration (for example, speed of deployment, high scalability, redundancy, a declarative configuration, self-healing, and roll-back). However, there have been several significant barriers. Edge hardware is often more constrained than data center infrastructure, the security requirements are unique, and IT skills—including Kubernetes expertise—are typically very scarce. Finally, today’s end-user workloads consist of both legacy and containerized applications. ZEDEDA offers end users a simple and secure edge orchestration solution, and the addition of Kubernetes support on top of existing capabilities for deploying and managing legacy applications and native Docker containers provides users with even more flexibility to scale their distributed edge solutions. Their collaboration with SUSE—the pioneer for the K3s distribution optimized for edge environments—has great promise to further simplify the extension of Kubernetes into the field.”

Engage with ARC Advisory Group