...
Isolation Mechanism
Resource Management
Need mechanism for prioritization if there is resource contention. Also, need mechanism for observing total load on a device to allow for management of the application portfolio.
Define Container Resource Limits
CPU limit (% of CPU)
Memory Limit (in 1 KB units)
Storage Limit (in 1 KB units)
Allowed Network Bandwidth (in 1 KB units)
Ongoing Limit Outbound
Ongoing Limit Inbound
Burst Limit Outbound
Allowed Network Interfaces
HAN
LAN
Define Container Access Levels:
Level 0 - Read & Control - Core Features - Immutable
Level 1 - Read & Control - Utility
Level 2 - Read Only