Google Enhances GKE With Advanced Security, “Cluster Fleet” Management

Google Enhances GKE With Advanced Security, “Cluster Fleet” Management

The News: Google launched GKE Enterprise, a premium version of its Google Kubernetes Engine managed service, at Google Cloud Next ’23. You can read more details of the announcement on the Google Cloud blog.

Google Enhances GKE With Advanced Security, “Cluster Fleet” Management

Analyst Take: Kubernetes, an open-source container orchestration platform, has its roots deeply embedded in Google’s internal infrastructure. The origin story of Kubernetes dates to Google’s internal project called “Borg,” a large-scale cluster manager developed to handle Google’s global-scale billion user plus services such as Gmail and YouTube. Borg’s architectural principles, along with its operational experience, laid the foundation for Kubernetes.

In mid-2014, Google decided to bring these previously internally developed advancements to the broader community by open-sourcing Kubernetes. The initial release was developed by Joe Beda, Brendan Burns, and Craig McLuckie, who took key ideas from Borg, but Google Kubernetes Engine (GKE) is Google’s commercial version of Kubernetes, and forms the bedrock of Google container offerings. GKE Enterprise combines GKE, a service for running containers solely in the Google Cloud, and Google Anthos for running Kubernetes in hybrid and multi-clouds. The Enterprise version improves Kubernetes management through additional security, governance, service mesh management, a dashboard to see all workloads, and “cluster fleets.”

GKE Enterprise edition incorporates Google’s Anthos multi-cluster fleet management capabilities. That approach lets platform engineers group similar workloads into dedicated clusters, apply custom configurations and policy guardrails per fleet, isolate sensitive workloads, and delegate cluster management to other teams. GKE Enterprise’s managed security features include advanced workload vulnerability insights, governance and policy controls, and managed service mesh. Hybrid and multi-cloud support in GKE Enterprise allows customers to run container workloads anywhere GKE, in other public clouds, or on-premises with Google Distributed Cloud.

GKE Enterprise edition will be available in preview in early September, with launch partners Accenture, CDW, Deloitte, DoiT International, SADA, Searce, and 66degrees.

GKE Enterprise also tied into other Google Next launches. Users can run Cloud TPU workloads on GKE to take advantage of features such as autoscaling, workload orchestration, and support for 15,000 node clusters when developing AI models. Google enhanced Cloud TPU at the conference with version v5e, with up to 2x higher training performance and 2.5x higher inference performance per dollar for large language models (LLMs) and gen AI models compared to Cloud TPU v4.

When running workloads in GKE, customers can save commute cycles by scaling up and down according to demand because they only pay for TPU resources provisioned.

Other GKE announcements at Google Next included:

  • GKE now supports A3 VM with NVIDIA H100 GPU for training large models
  • Cloud Storage FUSE is in general availability on GKE for moving unstructured data workloads to GKE without changing how that data is accessed
  • The ability to run Duet AI and Cloud Run in GKE is available in preview

The Futurum Group’s research shows an overwhelming majority (84%) of customers want a container management system that is integrated, maintained, and supported by a commercial vendor. Also, the biggest challenges to Kubernetes adoption are lack of talent to manage the new technology and difficulty keeping people who do have that expertise.

Those trends work in Google’s favor because it offers container management as a commercial service integrated with other services. We see GKE Enterprise as an extension of Google’s rich Kubernetes and AI/ML capabilities. Google is already the industry leader in Kubernetes, and combines that value with a robust suite of AI/ML and data services to support rapid innovation. In this case, it has already impressively integrated GKE Enterprise with its other new AI services at launch.

Looking Ahead

The market for commercial container orchestration and management solutions is led by Red Hat with its OpenShift solution, with the likes of SUSE with Rancher Prime also figuring into the market equation, especially in Europe. As Kubernetes becomes the default for modern hybrid multi-cloud management and deployment, the competitive landscape for which vendor leads this vital control plane will be interesting to watch as public cloud deployments eventually outweigh on-premises deployments.

Customers are increasingly facing a choice with how they look to deploy Kubernetes. On one hand, public cloud providers are offering fully managed “enterprise-grade” offerings such as this newly-announced service from Google and the likes of EKS and ECS from AWS, whereas others partner with Red Hat or SUSE and take a platform-neutral approach. We believe that customers should carefully weigh the simplicity and one-stop shopping benefits of public cloud-provided K8S services against the neutrality of third-party offerings as they make what could be the most pivotal deployment choice in their hybrid cloud strategy.

Disclosure: The Futurum Group is a research and advisory firm that engages or has engaged in research, analysis, and advisory services with many technology companies, including those mentioned in this article. The author does not hold any equity positions with any company mentioned in this article.

Analysis and opinions expressed herein are specific to the analyst individually and data and other information that might have been provided for validation, not those of The Futurum Group as a whole.

Other insights from The Futurum Group:

Previewing Google Cloud Next ‘23

Research Study: Unlocking the Gate to Digital Transformation

Open vs. Closed-Source: the State of Kubernetes Protection

Author Information

Steven is Vice President and Practice Leader at The Futurum Group, responsible for the Hybrid Cloud, Infrastructure and Operations Practice. Operating at the crossroads of technology and disruption, Steven engages with the world’s largest technology brands exploring new operating models and how they drive innovation and competitive edge for the enterprise.

With experience in Open Source, Hybrid Cloud, Mission Critical Infrastructure, Cryptocurrencies, Blockchain, and FinTech innovation, Steven makes the connections between the C-Suite executives, end users, and tech practitioners that are required for companies to drive maximum advantage from their technology deployments.

Steven is an alumnus of industry titans such as HPE and IBM and has led multi-hundred-million-dollar global sales teams Steven was a founding board member, former Chairperson, and now Board Advisor for the Open Mainframe Project, a Linux Foundation Project promoting Open Source on the mainframe.

As a Birmingham, UK native, his speaking engagements take him around the world each year enabling him to share his insights on the role of technology and how it can transform our lives going forward.

Dave’s focus within The Futurum Group is concentrated in the rapidly evolving integrated infrastructure and cloud storage markets. Before joining the Evaluator Group, Dave spent 25 years as a technology journalist and covered enterprise storage for more than 15 years. He most recently worked for 13 years at TechTarget as Editorial Director and Executive News Editor for storage, data protection and converged infrastructure. In 2020, Dave won an American Society of Business Professional Editors (ASBPE) national award for column writing.

His previous jobs covering technology include news editor at Byte and Switch, managing editor of EdTech Magazine, and features and new products editor at Windows Magazine. Before turning to technology, he was an editor and sports reporter for United Press International in New York for 12 years. A New Jersey native, Dave currently lives in northern Virginia.

Dave holds a Bachelor of Arts in Communication and Journalism from William Patterson University.


Latest Insights:

The Futurum Group's Camberley Bates and Pure Storage’s John Colgrove dive into his vision for Pure and what we can expect in the next generation of data storage.
Amazon’s Newest Fire TV Features Open the Door to Generative AI’s UX Capabilities for Alexa-Enabled Products
Olivier Blanchard, Research Director at The Futurum Group, shares his insights on Amazon’s newest Fire TV features, and particularly how its Alexa-enabled ecosystem may be the perfect UX on-ramp for generative AI.
Understanding the Future of UX Through the Newest AI-Enabled Features in Amazon’s Echo Product Line
Olivier Blanchard, Research Director at The Futurum Group, shares his insights on what the newest AI-enabled features in Amazon’s Echo products suggest about the future of Alexa-powered UX.
Oracle Is Expanding Its Cloud Services on Azure and AWS and Launching Oracle Alloy for Specialized Partner Offerings
The Futurum Group’s Guy Currier and Steven Dickens look at the latest announcements from Oracle CloudWorld, including Oracle Alloy, which enables global partners to create specialized cloud services, signifying a collaborative future.