Mirantis Container Runtime
Industry Leading Container Runtime
Mirantis Container Runtime enables containers to run efficiently on any substrate, powering business critical applications at the world’s leading companies.
Running Containers Efficiently, Everywhere
Container runtimes activate and manage the components required to run containers. Mirantis Container Runtime is the industry-leading, high-level runtime at the heart of Mirantis Kubernetes Engine, enabling it to operate Swarm and Kubernetes containers efficiently on any substrate. It is based on containerd, the Cloud Native Computing Foundation (CNCF) core container runtime.
Preferred for Kubernetes
Mirantis Container Runtime is the most popular container runtime for Kubernetes and Swarm, and is validated to work with Kubernetes Container Runtime Interface (CRI).
It ensures Mirantis Kubernetes Engine worker nodes operate efficiently on any substrate. Portable DevOps: operators can use familiar tools and consistent automation, everywhere.
Secure Supply Chain
The most efficient and secure solution for highly regulated industries, our runtime can be integrated with Mirantis Secure Registry and Mirantis Kubernetes Engine, and has the ability to run vulnerability scans on Docker containers.
Key Features & Capabilities
Mirantis Container Runtime is secure by default, deploying with restricted host access, end-to-end encryption, secure mutual TLS authentication, and cryptographic node identity. Security features are supported by Mirantis Kubernetes Engine’s FIPS 140-2-compliant cryptographic module, validated by the National Institute of Science and Technology (NIST), and fulfilling key requirements of the Federal Information Security Management Act (FISMA).
Multiple Operating Systems and Infrastructures
Mirantis Container Runtime is certified to run on multiple operating systems including CentOS, RHEL, Ubuntu, and Windows for consistent runtime regardless of the platform — and orchestrate nodes in Kubernetes, Swarm, or ‘mixed’ configurations.
Plugin support lets Mirantis Kubernetes Engine exploit best-in-class Kubernetes container networking fabrics like Calico, Kubernetes ingress solutions such as Istio, and GPU-equipped and other specialized hardware. Component and node capabilities discovered by the plugin are labeled in Mirantis Kubernetes Engine, appropriately tagged, and made immediately available to application deployments for scheduling.
Enforce Signed Images
Our Kubernetes container runtime lets you validate container provenance by requiring proper digital signing of images before they can be deployed. Users are prevented from using container images or composing containers using base layers from unknown sources.