May 21, 2018 By Chris Rosen 2 min read

Effective immediately, IBM Cloud Container Service is renamed to IBM Cloud Kubernetes Service.

Our new name highlights IBM’s strategic investment in Kubernetes within our managed container service, running on IBM Cloud. Also, Kubernetes in our updated name reflects that IBM is a founder of CNCF Conformance Testing.  

As one of the first fully managed and mature Kubernetes offerings in the cloud, IBM Cloud Kubernetes Service has been generally available since May 2017. You can learn more in our docs or landing page. In the meantime, you’ll still see some references to “IBM Cloud Container Service” in user interfaces, documentation, tutorials, patterns, and other collateral. We’ll be working to update those.

New name, same great capabilities

IBM Cloud Kubernetes Service delivers built-in security, isolation, an intuitive user experience, and automated toolchains  to enable rapid delivery of applications, all while leveraging IBM Cloud Services including AI capabilities from Watson. IBM Cloud Kubernetes Service provides native Kubernetes capabilities such as intelligent scheduling, self-healing, horizontal scaling, service discovery and load balancing, automated rollouts and rollbacks, and secret and configuration management. Additionally, IBM is adding capabilities to the IBM Cloud Kubernetes Service including simplified cluster management, ability to design your own cluster, completely native Kubernetes CLI and API, and integrated operational tools or support to bring your own tools to ensure operational consistency with other deployments. Finally you can run your clusters and apps in the specific geographies that are important to you.

Secure to the core

Security is a critical component of IBM Cloud Kubernetes Service. One aspect of security is our cluster isolation. Every Kubernetes cluster is single-tenant and dedicated by default, and we even provide multiple options for worker node compute – shared or dedicated virtual machines and bare metal:

  • The shared model is a standard cloud IaaS, providing a single-tenant virtual machine on multi-tenant hypervisor and hardware, still without any over commitment of those physical resources. 

  • The dedicated compute model is a single-tenant offering including VM, hypervisor, and hardware, providing additional isolation to your workloads.  

  • Announced in March 2018, bare metal worker nodes are available to provide greater isolation and performance for your containerized workloads. Bare metal worker nodes provide support for Trusted Compute, which can verify your worker nodes against tampering.

  • All worker nodes run in your IBM Cloud account ensuring you have full control over the compute, storage, and networks.  

Another aspect of security is handled by Vulnerability Advisor (VA). VA is integrated seamlessly into the IBM Cloud Kubernetes Service, providing not only static image vulnerability scanning but also policy scanning based on ISO 27k, live container scanning, and package security scanning for known malware. The IBM Cloud Container Registry provides image signing, encryption at-rest and in-flight, and image deployment enforcement allowing you to define what can be deployed in your IBM Cloud Kubernetes Service clusters.

For a closer look at the IBM Cloud Kubernetes Service, see our video: “Advantages of Managed Kubernetes”

Discuss with our team

If you have questions or comments, engage our team via Slack by registering here. Join the discussion in the #questions channel on https://ibm-container-service.slack.com.

Learn more about Kubernetes and containers

More from

Enhancing triparty repo transactions with IBM MQ for efficiency, security and scalability

3 min read - The exchange of securities between parties is a critical aspect of the financial industry that demands high levels of security and efficiency. Triparty repo dealing systems, central to these exchanges, require seamless and secure communication across different platforms. The Clearing Corporation of India Limited (CCIL) recently recommended (link resides outside ibm.com) IBM® MQ as the messaging software requirement for all its members to manage the triparty repo dealing system. Read on to learn more about the impact of IBM MQ…

Enhance your data security posture with a no-code approach to application-level encryption

4 min read - Data is the lifeblood of every organization. As your organization’s data footprint expands across the clouds and between your own business lines to drive value, it is essential to secure data at all stages of the cloud adoption and throughout the data lifecycle. While there are different mechanisms available to encrypt data throughout its lifecycle (in transit, at rest and in use), application-level encryption (ALE) provides an additional layer of protection by encrypting data at its source. ALE can enhance…

Attention new clients: exciting financial incentives for VMware Cloud Foundation on IBM Cloud

4 min read - New client specials: Get up to 50% off when you commit to a 1- or 3-year term contract on new VCF-as-a-Service offerings, plus an additional value of up to USD 200K in credits through 30 June 2025 when you migrate your VMware workloads to IBM Cloud®.1 Low starting prices: On-demand VCF-as-a-Service deployments begin under USD 200 per month.2 The IBM Cloud benefit: See the potential for a 201%3 return on investment (ROI) over 3 years with reduced downtime, cost and…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters