Support: 1-800-961-4454
Sales Chat

ZeroVM Design Summit, Day 1: Digging Into Use Cases, Architecture & More

A couple months ago we acquired the team behind ZeroVM, the lightweight open source application hypervisor. At that time we promised that more was coming soon – and now we have started to say what some of the plans are for this new technology.

This week was our coming-out party at the first ever ZeroVM Design Summit at the University of Texas at San Antonio. Now that the first day is in the books, I can say that it is really fun to be at the start of something big. I was thrilled to see the amount of interest and excitement in the room.

First, let’s get the nuts and bolts out of the way: about 75 people registered for the summit – that’s roughly the same number that attended the first OpenStack Summit in Austin more than three years ago (sensing any similarities?). We also have numerous different organizations represented – Rackspace (of course), but there are also attendees from UTSA, EMC, SwiftStack, FreeFlow Research, and myriad other organizations and independent developers.

What was surprising was the experience level of the attendees. For example, UTSA had a handful of professors attending on the first day, including the head of the Computer Science department. Also attending were about 15 PhD and Masters students, with specialties and research topics varying from security to distributed systems to high-performance computing (HPC) to large-scale image search. We had representatives from many companies looking for ways to build on ZeroVM to create all kinds of new applications.

One of the more interesting conversations that I had was with an associate director at UTSA who just came from Joyent, where he had direct experience with the Manta project. Manta is a computable object store from Joyent that is built on top of Solaris/SmartOS technologies, such as ZFS and Solaris Zones. He saw a lot of similarities between the various ZeroVM use cases and Manta. The difference is in the applicability of the technology to other contexts. Manta only works with the Solaris/SmartOS-specific technologies. ZeroVM is designed to work anywhere there is data.

The morning sessions drilled into the architecture and use cases for ZeroVM. There was extensive discussion about the security guarantees provided by ZeroVM. ZeroVM containers start out empty, with no access to anything. Capabilities are granted on an as-needed basis. From the perspective of a ZeroVM process, resources that have not been allowed simply don’t exist. One way in which it differs from other hypervisors is there is no implicit root access. Other system-level hypervisors need to emulate trusted domains, and so have implicit or explicit root access. ZeroVM is process-level, so it can run as an untrusted user, giving another level of security.

During the afternoon sessions, speakers talked about the networking model for ZeroVM, the various runtimes included with ZeroVM, and the possibilities allowed by static vs. dynamic linking for ZeroVM applications. One hotly-debated topic was whether to have a “big” runtime with many standard pieces, or many “small” runtimes with an emphasis on composability. The general consensus was to focus on composability, because we want to allow as many different uses as possible.

We also heard about some people’s use cases. There were some I had anticipated, like image search, stream processing, and map-reduce analytics. But there were some I never would have thought about. For example, one person wants to compile hardware description languages so that each component can be simulated in an individual ZeroVM container. His vision is large-scale hardware prototyping and testing on the cloud.

One attendee took the time to write up a really nice “Introduction to ZeroVM” blog post and put up a vagrant file to help people start playing with ZeroVM.

My favorite part of the day, though, was when one of the attendees came up to me, visibly excited. “I though ZeroVM was cool, but I had no idea,” he said. “I was involved in virtualization in the early days and I thought that was great, but the possibilities that are created by ZeroVM are endless.

Yes. I couldn’t have said it better myself.

About the Author

This is a post written and contributed by Van Lindberg.

Van Lindberg is Vice President of Intellectual Property at Rackspace. He is trained as a computer engineer and lawyer, but what he does best is “translate” to help businesses, techies and attorneys understand each other.

Van likes working with both computer code and legal code. For the past several years, he has been using natural language processing and graph theory to help him digest and map the U.S. Patent Database.

Before becoming a lawyer, Van was a research and development engineer at NTT/Verio, where he built automation tools and distributed systems using mostly Python. He was also an IT administrator for the Harold B. Lee College of Education at his alma mater, Brigham Young University. Van has been involved with open source since 1994, when a friend introduced him to Linux.

In April 2012, the American Bar Association Journal named Van one of “America’s Top 12 Techiest Attorneys.” He is currently chairman of the board of the Python Software Foundation, as well as the author of “Intellectual Property and Open Source.”

Racker Powered
©2015 Rackspace, US Inc.