Cloud Native Computing Foundation

Cloud Native Computing Foundation

Abbreviation	CNCF
Formation	2015;10 years ago (2015)
Type	501(c)(6) organization
Purpose	Building sustainable ecosystems for cloud native software
General Manager	Priyanka Sharma
CTO	Chris Aniszczyk
Parent organization	The Linux Foundation
Website	www.cncf.io

The Cloud Native Computing Foundation (CNCF) is a subsidiary of the Linux Foundation founded in 2015 to support cloud-native computing. ^[1]

History

It was announced alongside Kubernetes 1.0, an open source container cluster manager, which was contributed to the Linux Foundation by Google as a seed technology. Founding members include Google, CoreOS, Mesosphere, Red Hat, Twitter, Huawei, Intel, RX-M, Cisco, IBM, Docker, Univa, and VMware. ^{[2] [3]} Today, CNCF is supported by over 450 members. ^[4]

In August 2018 Google announced that it was handing over operational control of Kubernetes to the community. ^[5]

Projects

• Argo: Argo is a collection of tools for getting work done with Kubernetes. Among its main features are Workflows and Events. It was accepted to CNCF on March 26, 2020 at the Incubating maturity level and then moved to the Graduated maturity level on December 6, 2022 ^[6] .

• Cilium: Cilium provides networking, security, and observability for Kubernetes deployments using eBPF technology. It joined the CNCF at incubation level in October 2021 ^[7] and the CNCF announced its graduation in October 2023. ^[8]

• containerd: containerd is an industry-standard core container runtime. It is currently available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system. In 2015, Docker donated the OCI Specification to The Linux Foundation with a reference implementation called runc. Since February 28, 2019 it is an official CNCF project. ^[9] Its general availability and intention to donate the project to CNCF was announced by Docker in 2017. ^{[10] [11]}

• CoreDNS: CoreDNS is a DNS server that chains plugins. Its graduation was announced in 2019. ^[12]

• Envoy: Originally built at Lyft to move their architecture away from a monolith, Envoy is a high-performance open source edge and service proxy that makes the network transparent to applications. Lyft contributed Envoy to Cloud Native Computing Foundation in September 2017. ^[13]

• etcd: etcd is a distributed key value store, providing a method of storing data across a cluster of machines. ^[14] It became a CNCF incubating project in 2018 at KubeCon+CloudNativeCon North America ^[15] in Seattle that year. ^[16]

• Falco: Falco is an open source and cloud native runtime security initiative. It is the "de facto Kubernetes threat detection engine". ^[17] It became an incubating project in January 2020 ^[18] and graduated in February 2024. ^[19]

• Flux: Flux ^[20] is an open source project for powering GitOps in Kubernetes clusters. It provides the GitOps Toolkit, a set of Kubernetes APIs that allow you to define how configuration source code is securely pulled into your cluster and deployed by popular Kubernetes manifests rendering engines like Kustomize and Helm. The most recommended source mechanism is the OCIRepository API, which provides enhanced security and benefits from container image tooling out there. Flux has also notification integrations with popular services like Prometheus Alertmanager, PagerDuty, Slack and so on. Flux has graduated in CNCF in 2022. ^[21]

• Harbor: Harbor is an "open source trusted cloud native registry project that stores, signs, and scans content." ^[22] It became an incubating project in September 2019 ^[23] and graduated in June 2020. ^[24]

• Helm: Helm is a package manager that helps developers "easily manage and deploy applications onto the Kubernetes cluster." ^[23] It joined the incubating level in June 2018 and graduated in April 2020. ^[25]

• Istio: Istio is a service mesh technology. It was accepted by CNCF in September 2022 and graduated on July 12, 2023. ^{[26] [27]}

• Jaeger: Created by Uber Engineering, Jaeger is an open source distributed tracing system inspired by Google Dapper paper and OpenZipkin community. It can be used for tracing microservice-based architectures, including distributed context propagation, distributed transaction monitoring, root cause analysis, service dependency analysis, and performance/latency optimization. The Cloud Native Computing Foundation Technical Oversight Committee voted to accept Jaeger as the 12th hosted project in September 2017 ^[28] and became a graduated project in 2019. ^[29] In 2020 it became an approved and fully integrated part of the CNCF ecosystem. ^[30]

• Kubernetes: Kubernetes is an open source framework for automating deployment and managing applications in a containerized and clustered environment. "It aims to provide better ways of managing related, distributed components across the varied infrastructure." ^[31] It was originally designed by Google and donated to The Linux Foundation to form the Cloud Native Computing Foundation with Kubernetes as the seed technology. ^[32] The "large and diverse" community supporting the project has made its staying power more robust than other, older technologies of the same ilk. ^[33] In January 2020, the CNCF annual report showed significant growth in interest, training, event attendance and investment related to Kubernetes. ^[34]

• Linkerd: Linkerd is CNCF's fifth member project, and the project that coined the term “service mesh". ^[35] Linkerd adds observability, security, and reliability features to applications by adding them to the platform rather than the application layer, ^[36] and features a "micro-proxy" to maximize speed and security of its data plane. ^[37] Linkerd graduated from CNCF in July 2021. ^[38]

• Open Policy Agent: Open Policy Agent (OPA) is "an open source general-purpose policy engine and language for cloud infrastructure." ^[39] It became a CNCF incubating project in April 2019. ^[40] OPA graduated from CNCF in February 2021. ^[41]

• Prometheus: A Cloud Native Computing Foundation member project, Prometheus is a cloud monitoring tool sponsored by SoundCloud in early iterations. In August 2018, the tool was designated a graduated project by the Cloud Native Computing Foundation. ^[42]

• Rook: Rook is CNCF's first cloud native storage project. ^[43] It became an incubation level project in 2018 ^[44] and graduated in October 2020. ^[45]

• SPIFFE: SPIFFE is an open standard and framework for workload identity, much the same way that OAuth is an open standard and framework for human identity. It is built from the ground up to accommodate modern computing environments, which operate with systems scale and velocity (as opposed to human scale and velocity), while still maintaining interoperability with existing technologies like OAuth and X.509 Public key infrastructure. Unlike other identity standards, SPIFFE supports multiple credential types for a single identity, ensuring that the highly varied needs of production environments are consistently met without compromise. SPIFFE joined the CNCF as a sandbox project in 2018, was accepted to incubation in 2020, and graduated in 2022. ^[46]

• SPIRE: SPIRE is an open source identity provider for workloads based on the SPIFFE framework. It is highly pluggable, and fills the attestation and issuance needs required by any workload identity solution. The plugin interfaces it exposes allows users to write integrations with in-house systems, build internal self-service portals, and more. It is a very powerful building block for issuing short-lived identity credentials to dynamic cloud workloads. SPIRE became a CNCF Graduated project in 2022. ^[47]

• The Update Framework: The Update Framework (TUF) helps developers to secure new or existing software update systems, which are often found to be vulnerable to many known attacks. TUF addresses this widespread problem by providing a comprehensive, flexible security framework that developers can integrate with any software update system. TUF was CNCF's first security-focused project and the ninth project overall to graduate from the foundation's hosting program. ^[48]

• TiKV: TikV provides a distributed key–value database. ^[49]

• Vitess: Vitess is a database clustering system for horizontal scaling of MySQL, first created for internal use by YouTube. It became a CNCF project in 2018 and graduated in November 2019. ^[50]

• Contour: Contour is a management server for Envoy that can direct the management of Kubernetes' traffic. Contour also provides routing features that are more advanced than Kubernetes' out-of-the-box Ingress specification. VMWare contributed the project to CNCF in July 2020. ^[51]

• Cortex: Cortex offers horizontally scalable, multi-tenant, long-term storage for Prometheus and works alongside Amazon DynamoDB, Google Bigtable, Cassandra, S3, GCS, and Microsoft Azure. It was introduced into the ecosystem incubator alongside Thanos in August 2020. ^[52]

• CRI-O: CRI-O is an Open Container Initiative (OCI) based "implementation of Kubernetes Container Runtime Interface". ^[53] CRI-O allows Kubernetes to be container runtime-agnostic. ^[54] It became an incubating project in 2019. ^[55]

• gRPC: gRPC is a "modern open source high performance RPC framework that can run in any environment." ^[56] The project was formed in 2015 when Google decided to open source the next version of its RPC infrastructure ("Stubby"). ^[57] The project has a number of early large industry adopters such as Square, Inc., Netflix, and Cisco. ^[56]

• Keycloak: KeyCloak is an open-source software product to allow single sign-on with identity and access management aimed at modern applications and services. Until April 2023, this WildFly community project was under the stewardship of Red Hat. In April 2023, Keycloak became a CNCF incubating project. ^[58]

• KubeEdge: In September 2020, CNCF's Technical Oversight Committee (TOC) announced that KubeEdge was accepted as an incubating project. The project was created at Futurewei (a Huawei partner). KubeEdge's goal is to "make edge devices an extension of the cloud". ^[59]

• Kuma: In June 2020, API management platform Kong announced that it would donate its open-source service mesh control plane technology, called Kuma, to CNCF as a sandbox project. ^[60]

• Litmus: In July 2020, MayaData donated Litmus, an open source chaos engineering tool that runs natively on Kubernetes, to CNCF as a sandbox-level project. ^[61]

• NATS: NATS consists of a collection of open source messaging technologies that "implements the publish/subscribe, request/reply and distributed queue patterns to help create a performant and secure method of InterProcess Communication (IPC)." ^[62] It existed independently for a number of years but gained wider reach since becoming a CNCF incubating project. ^[63]

• Notary: Notary is an open source project that enables widespread trust over arbitrary data collections. ^[64] Notary was released by Docker in 2015 and became a CNCF project in 2017. ^[65]

• OpenTelemetry: OpenTelemetry is an open source observability framework created when CNCF merged the OpenTracing and OpenCensus projects. ^[66] OpenTracing offers "consistent, expressive, vendor-neutral APIs for popular platforms" ^[67] while the Google-created OpenCensus project acts as a "collection of language-specific libraries for instrumenting an application, collecting stats (metrics), and exporting data to a supported backend." ^[68] Under OpenTelemetry, the projects create a "complete telemetry system [that is] suitable for monitoring microservices and other types of modern, distributed systems — and [is] compatible with most major OSS and commercial backends." ^[69] It is the "second most active" CNCF project. ^[70] In October 2020, AWS announced the public preview of its distro for OpenTelemetry. ^[71]

• Thanos: Thanos enables global query views and unlimited retention of metrics. It was designed to be easily addable to Prometheus deployments. ^[52]

References

1. "New Cloud Native Computing Foundation to Drive Alignment Among Container Technologies". Cloud Native Computing Foundation. 2015-06-21. Retrieved 2020-01-20.
2. Vaughan-Nichols, Steven J. "Cloud Native Computing Foundation seeks to forge cloud and container unity". ZDNet. Retrieved 2020-01-20.
3. "Cloud Giants Form Foundation to Drive Container Interoperability". Data Center Knowledge. 2015-07-21. Retrieved 2020-01-20.
4. Calcote, Lee (2016-09-06). "Cloud Native Ambassadors and Docker Captains navigate users through the container ecosystem". InfoWorld. Retrieved 2020-01-20.
5. "Google takes a step back from running the Kubernetes development infrastructure". TechCrunch. 29 August 2018. Archived from the original on 2022-01-24. Retrieved 2020-01-20.
6. "Argo joins CNCF" . Retrieved 2025-04-09.
7. "Cilium joins CNCF as an incubating project". CNCF Blog. 2021-10-13. Retrieved 2023-11-13.
8. "Cilium leaves incubator, gets the nod from Cloud Native Computing Foundation". The Register. 2023-10-12. Retrieved 2023-10-13.
9. "Cloud Native Computing Foundation Announces containerd Graduation". 28 February 2019.
10. "Announcing the General Availability of containerd 1.0, the industry-standard runtime used by millions of users". Docker Blog. 2017-12-05. Retrieved 2020-01-20.
11. "Docker to donate containerd to the Cloud Native Computing Foundation". Docker Blog. 2017-03-15. Retrieved 2020-01-20.
12. Claburn, Thomas (2019-01-24). "CoreDNS is all grown up now and ready to roll: Kubernetes network toolkit graduates at last". The Register. Retrieved 2020-01-20.
13. Klein, Matt (2017-09-13). "Envoy joins the CNCF". Medium. Retrieved 2020-01-20.
14. Kirpes, Benedikt; Roon, Micha; Burgahn, Christopher (2019). "Distributed Data Validation for a Key-value Store in a Decentralized Electric Vehicle Charging Network". Proceedings of the 11th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management. SCITEPRESS - Science and Technology Publications. pp. 356–363. doi: 10.5220/0008363703560363 . ISBN   978-989-758-382-7.
15. KubeCon+CloudNativeCon North America
16. "The Cloud Native Computing Foundation adds etcd to its open-source stable". TechCrunch. 11 December 2018. Archived from the original on 2022-03-31. Retrieved 2020-01-21.
17. Patel, Akash (2014). INCORPORATING PRIVACY AND SECURITY FEATURES IN AN OPEN SOURCE SEARCH ENGINE A Project Report Presented to (Thesis). San Jose State University Library. doi: 10.31979/etd.ye8d-rxuw .
18. Sawaya, Sydney (8 January 2020). "Falco Soars From CNCF Sandbox to Incubation". SDXCentral. Archived from the original on 2020-05-27.
19. SAN FRANCISCO, California (29 February 2024). "CNCF announces falco graduation". CNCF.
20. "CNCF Flux". CNCF Flux. Retrieved 2025-03-12.
21. "Flux Graduates from the Cloud Native Computing Foundation Incubator". Cloud Native Computing Foundation. 2022-11-30. Retrieved 2025-03-12.
22. "Harbor Accepted as CNCF-Hosted Project". Cloud Native Apps Blog. 2018-07-31. Retrieved 2020-01-21.
23. "Harbor Container Registry Project Advances". Container Journal. 2019-09-23. Retrieved 2020-01-21.
24. "CNCF Graduates Harbor Container Registry". Container Journal. 2020-06-23. Retrieved 2020-07-13.
25. "Cloud Native Computing Foundation Announces Helm Graduation". cncf.io. 30 April 2020. Retrieved 2020-05-01.
26. "Istio". Cloud Native Computing Foundation. 2022-12-14. Retrieved 2022-12-14.
27. "Istio". Istio. Retrieved 2022-12-14.
28. "Jaeger Emerges as Meister of Cloud Monitoring". EnterpriseAI. 2019-11-01. Retrieved 2020-01-20.
29. "Jaeger Graduates CNCF, Sees a Future Without Native Jaeger Clients". The New Stack. 2019-11-04. Retrieved 2020-01-20.
30. "Kubernetes' Helm gets full Cloud Native Computing Foundation approval". ARN. Retrieved 2020-07-06.
31. "An Introduction to Kubernetes". DigitalOcean. Retrieved 2020-01-20.
32. "As Kubernetes Hits 1.0, Google Donates Technology To Newly Formed Cloud Native Computing Foundation". TechCrunch. 21 July 2015. Archived from the original on 2022-03-31. Retrieved 2020-01-20.
33. Asay, Matt (2016-09-09). "Why Kubernetes is winning the container war". InfoWorld. Retrieved 2020-01-20.
34. "CNCF Annual Report Shows Kubernetes Growth". Container Journal. 2020-01-21. Retrieved 2020-01-22.
35. "A Brief Introduction to Linkerd". Glasnostic blog. Glasnostic. Retrieved 2019-01-22.
36. "Linkerd: A Different Kind of Service Mesh". VMblog.io. Retrieved 2021-01-05.
37. "Why Linkerd doesn't use Envoy". Linkerd.io. Retrieved 2020-12-03.
38. Morgan, William (2021-07-28). "Announcing Linkerd's Graduation". Blog. Linkerd. Retrieved 2022-02-08.
39. Schalm, Deb (2019-10-08). "Fugue Adopts Open Policy Agent (OPA) for its Policy-as-Code Framework for Cloud Security". Security Boulevard. Retrieved 2020-01-21.
40. "Open Policy Agent Accepted as CNCF Incubation Level Project". InfoQ. Retrieved 2020-01-21.
41. "Cloud Native Computing Foundation Announces Open Policy Agent Graduation". Announcements. Cloud Native Computing Foundation. 2021-02-04. Retrieved 2022-02-08.
42. "Prometheus monitoring tool joins Kubernetes as CNCF's latest 'graduated' project". TechCrunch. 9 August 2018. Archived from the original on 2022-01-24. Retrieved 2020-01-20.
43. Lyons Hardcastle, Jessica (29 January 2018). "CNCF's First Cloud-Native Storage Project Is Rook". SDXCentral. Archived from the original on 2018-06-25.
44. "Rook, an open-source project adding storage to Kubernetes, joins the Cloud Native Computing Foundation". GeekWire. 2018-01-29. Retrieved 2020-01-21.
45. "CNCF Graduates Rook to Automate Kubernetes Storage Tasks". Container Journal. 2020-10-13. Retrieved 2020-10-19.
46. "SPIFFE and SPIRE Projects Graduate from Cloud Native Computing Foundation Incubator". CNCF. 2022-09-20. Retrieved 2024-03-04.
47. "SPIFFE and SPIRE Projects Graduate from Cloud Native Computing Foundation Incubator". CNCF. 2022-09-20. Retrieved 2024-03-04.
48. Schmidt, Julia (2019-12-19). "The Update Framework becomes ninth project to graduate CNCF • DEVCLASS". DEVCLASS. Retrieved 2020-01-20.
49. "Kubernetes Development Infrastructure Moving Out of Google Control". eWEEK. 29 August 2018. Retrieved 2020-01-21.
50. Sawaya, Sydney (6 November 2019). "Vitess Earns Venerable CNCF's Graduate Distinction". SDXCentral. Archived from the original on 2020-05-27.
51. "VMware Hands Control of Kubernetes Ingress Project Contour Over to CNCF". Data Center Knowledge. 2020-07-27. Retrieved 2020-08-03.
52. Schmidt, Julia (2020-08-20). "Prometheus, isn't it? CNCF rounds off community shindig by slipping Thanos and Cortex into incubator • DEVCLASS". DEVCLASS. Retrieved 2020-09-07.
53. "CNCF Cloud Native Interactive Landscape". CNCF Cloud Native Interactive Landscape. Retrieved 2020-01-21.
54. "Introducing CRI-O 1.0". redhat.com. Retrieved 2020-01-21.
55. Vaughan-Nichols, Steven J. "Cloud Native Computing Foundation adopts Kubernetes-friendly container runtime". ZDNet. Retrieved 2020-01-21.
56. "About gRPC". grpc.io. Retrieved 2020-01-20.
57. Ibanez, Luis (2015-03-03). "Google shares gRPC as alternative to REST for microservices". Opensource.com. Retrieved 2020-01-20.
58. "Keycloak joins CNCF as an incubating project". CNCF. Retrieved 2024-05-15.
59. "CNCF Approves Kubernetes Edge Computing Platform KubeEdge as Incubating Project". InfoQ. Retrieved 2020-10-19.
60. "Kong donates its Kuma control plane to the Cloud Native Computing Foundation". TechCrunch. 30 June 2020. Archived from the original on 2022-03-31. Retrieved 2020-07-06.
61. "MayaData Donates Chaos Engineering Tool for Kubernetes Apps to CNCF". Container Journal. 2020-07-01. Retrieved 2020-07-13.
62. Evans, Kristen (2018-03-15). "CNCF to Host NATS". Cloud Native Computing Foundation. Retrieved 2020-01-21.
63. Juggery, Luc (2019-12-13). "Getting Started With NATS". Medium. Retrieved 2020-01-21.
64. Notary is a project that allows anyone to have trust over arbitrary collections of data: theupdateframework/notary, The Update Framework (TUF), 2020-01-19, retrieved 2020-01-20
65. "CNCF Brings Security to the Cloud Native Stack with Notary, TUF Adoption". The New Stack. 2017-10-24. Retrieved 2020-01-20.
66. "OpenTelemetry: The Merger of OpenCensus and OpenTracing". Google Open Source Blog. Retrieved 2020-01-20.
67. Gonzalez, Brandon (2016-02-29), Source code for OpenTracing , retrieved 2020-01-20
68. Mooney, Mallory (2019-02-06). "Performance monitoring with OpenTracing, OpenCensus, and OpenMetrics". Datadog. Retrieved 2020-01-20.
69. Young, Ted (2019-05-21). "A Roadmap to Convergence". Medium. Retrieved 2020-01-20.
70. Schmidt, Julia (2020-10-22). "Former rivals at OpenTelemetry lock in tracing specification, to focus on metrics next". Devclass. Retrieved 2020-10-26.
71. "AWS Distro for OpenTelemetry Available for Public Preview". InfoQ. Retrieved 2020-11-02.

External links

• Official website
• Cloud Native Computing Foundation on GitHub