NanoVisor: Revolutionizing FaaS Cold Start Performance with Secure, Lightweight Container Runtime
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore a groundbreaking conference talk on NanoVisor, a revolutionary container runtime designed to address the challenge of slow cold start times in Function as a Service (FaaS) environments. Discover how NanoVisor, built on gVisor, implements a series of optimizations specifically tailored for FaaS, including lightweight containerd interaction, read-only filesystem, and a sandbox fork mechanism. Learn how these innovations enable the creation of secure, sandboxed containers ready for function execution in just 5ms, with less than 1MB memory overhead per instance and 1.5K QPS per node. Gain insights into NanoVisor's successful application within Ant Group's ecosystem, including Alipay Cloud Base and SOFA Function, as well as its role in CI/CD acceleration. Understand the impact of these advancements on user experience, resource efficiency, and overall FaaS performance.
Syllabus
NanoVisor: Revolutionizing FaaS Cold Start Performance with Secure, Lightweight Cont...- Tianyu Zhou
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Evolution of a Platform as a Service from the InsideDevoxx via YouTube From Secure Container to Secure Service
Linux Foundation via YouTube Running Untrusted Code with gVisor - Container Security and Sandboxing
Linux Foundation via YouTube Security in the Cloud with Falco - Overview and Project Updates
CNCF [Cloud Native Computing Foundation] via YouTube gVisor and Falco - Strengthening Kubernetes and Container Security with Visibility
CNCF [Cloud Native Computing Foundation] via YouTube