7 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro & Deep Dive: Kubernetes SIG-Storage - Xing Yang, VMware & Michelle Au, Google
Kubernetes SIG Storage is responsible for ensuring that different types of file and block storage are available wherever a container is scheduled, storage capacity management (container ephemeral storage usage, volume resizing, etc.), influencing scheduling of containers based on storage (data gravity, availability, etc.), and generic operations on storage (snapshotting, etc.). In this session, we will give an introduction to SIG Storage and then deep dive into some projects that SIG Storage is currently working on, provide an update on the current status, and discuss what might be coming in the future.
https://sched.co/ekHD
Intro & Deep Dive: Kubernetes SIG-Storage - Xing Yang, VMware & Michelle Au, Google
Kubernetes SIG Storage is responsible for ensuring that different types of file and block storage are available wherever a container is scheduled, storage capacity management (container ephemeral storage usage, volume resizing, etc.), influencing scheduling of containers based on storage (data gravity, availability, etc.), and generic operations on storage (snapshotting, etc.). In this session, we will give an introduction to SIG Storage and then deep dive into some projects that SIG Storage is currently working on, provide an update on the current status, and discuss what might be coming in the future.
https://sched.co/ekHD
- 2 participants
- 31 minutes
7 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Production CI/CD with CNBs: Tekton and Gitlab and CircleCI (plus), Oh My! - David Freilich & Natalie Arellano, VMware
You may have heard of Cloud Native Buildpacks (https://buildpacks.io/), a set of tools for transforming application source code to OCI images that can run on any cloud. In this session, we’ll delve into some new functionality of Cloud Native Buildpacks which can be powerful in the enterprise context, such as the ability to narrowly define trusted builders, allowing developers and operators to restrict access to registry credentials, as well as the ability to create Windows images. We’ll spend the core of our time exploring how you can use Cloud Native Buildpacks in a number of CI/CD systems, including Tekton, Gitlab and CircleCI. By the end of this session, you’ll come out with a better understanding of the capabilities of the Cloud Native Buildpacks project, and how to integrate it into your production CI/CD system.
https://sched.co/ekAy
Production CI/CD with CNBs: Tekton and Gitlab and CircleCI (plus), Oh My! - David Freilich & Natalie Arellano, VMware
You may have heard of Cloud Native Buildpacks (https://buildpacks.io/), a set of tools for transforming application source code to OCI images that can run on any cloud. In this session, we’ll delve into some new functionality of Cloud Native Buildpacks which can be powerful in the enterprise context, such as the ability to narrowly define trusted builders, allowing developers and operators to restrict access to registry credentials, as well as the ability to create Windows images. We’ll spend the core of our time exploring how you can use Cloud Native Buildpacks in a number of CI/CD systems, including Tekton, Gitlab and CircleCI. By the end of this session, you’ll come out with a better understanding of the capabilities of the Cloud Native Buildpacks project, and how to integrate it into your production CI/CD system.
https://sched.co/ekAy
- 2 participants
- 29 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
10 More Weird Ways to Blow Up Your Kubernetes - Jian Cheung & Joseph Kim, Airbnb
Over the past couple of years, Airbnb has standardized microservices, containerization, Kubernetes, and service mesh in our ecosystem, and have built tools around it to make our workloads more robust. We’ve seen great results with thousands of services now aboard Kubernetes, but it wasn’t without mistakes and painful/insightful learnings along the way. Airbnb is back at KubeCon again to share 10 more ways we’ve messed up in just the past year -- come discover what can go wrong as we share some of our experiences running on Kubernetes. Favorites include: - “What do you mean CPU Limits caused OOM-kills?” - “Half the pods are gone and this was broken for 7 days?” - “Yes, things do break when all the masters are down” And more!
https://sched.co/ek9r
10 More Weird Ways to Blow Up Your Kubernetes - Jian Cheung & Joseph Kim, Airbnb
Over the past couple of years, Airbnb has standardized microservices, containerization, Kubernetes, and service mesh in our ecosystem, and have built tools around it to make our workloads more robust. We’ve seen great results with thousands of services now aboard Kubernetes, but it wasn’t without mistakes and painful/insightful learnings along the way. Airbnb is back at KubeCon again to share 10 more ways we’ve messed up in just the past year -- come discover what can go wrong as we share some of our experiences running on Kubernetes. Favorites include: - “What do you mean CPU Limits caused OOM-kills?” - “Half the pods are gone and this was broken for 7 days?” - “Yes, things do break when all the masters are down” And more!
https://sched.co/ek9r
- 2 participants
- 36 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
A Different Kind of Kubernetes Artifact - Paris Pittman, Independent & Nikhita Raghunath, VMware
Kubernetes most well known artifacts are in forms of manifest files (we’re no stranger to yaml), container images, and its objects among other things. What about it’s cultural artifacts? What are they? Throughout history, we’ve leaned on cultural artifacts to help us tell stories of the past that help shape our future. Those artifacts didn’t stop with ancient periods; they build in communities of the present, even open source communities like ours. Some of these are in git repos spread across the org, others in our hearts. Our most well known cultural artifact, the Kubernetes heptagon and wheel logo, has several stories that many of you have already heard, we’ll build on those and more in this talk. In 15 minutes, Nikhita and Paris from Kubernetes Steering Committee will tell a story of the last five years of artifacts that have been created and impacted the most by its contributors.
https://sched.co/fGWE
A Different Kind of Kubernetes Artifact - Paris Pittman, Independent & Nikhita Raghunath, VMware
Kubernetes most well known artifacts are in forms of manifest files (we’re no stranger to yaml), container images, and its objects among other things. What about it’s cultural artifacts? What are they? Throughout history, we’ve leaned on cultural artifacts to help us tell stories of the past that help shape our future. Those artifacts didn’t stop with ancient periods; they build in communities of the present, even open source communities like ours. Some of these are in git repos spread across the org, others in our hearts. Our most well known cultural artifact, the Kubernetes heptagon and wheel logo, has several stories that many of you have already heard, we’ll build on those and more in this talk. In 15 minutes, Nikhita and Paris from Kubernetes Steering Committee will tell a story of the last five years of artifacts that have been created and impacted the most by its contributors.
https://sched.co/fGWE
- 2 participants
- 12 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
A Flight Over the Cloud Native Landscape - Carson Anderson, Weave
The Cloud Native Computing Landscape is big! And it's just getting bigger all the time. There are already 12 graduated and 21 incubating projects in the foundation! Most of us have heard of a few of these projects. But who really knows what they all do? And more importantly: how they all fit together? This presentation is a speed-run through all 33 graduated and incubating projects, what they are on a surface level, and how they relate to each other. The presentation will be given with zero bullet points and a lot of visual aid. *Projects promoted to incubating status during the conference may not be covered.
https://sched.co/ek9f
A Flight Over the Cloud Native Landscape - Carson Anderson, Weave
The Cloud Native Computing Landscape is big! And it's just getting bigger all the time. There are already 12 graduated and 21 incubating projects in the foundation! Most of us have heard of a few of these projects. But who really knows what they all do? And more importantly: how they all fit together? This presentation is a speed-run through all 33 graduated and incubating projects, what they are on a surface level, and how they relate to each other. The presentation will be given with zero bullet points and a lot of visual aid. *Projects promoted to incubating status during the conference may not be covered.
https://sched.co/ek9f
- 1 participant
- 32 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
A Future Journey: How to Migrate 100 Clusters Between Clouds Without Downtime? - Tobias Schneck & Manuel Stößel, Kubermatic
Have you ever thought about migrating your Kubernetes clusters to another cloud provider to save costs? Yes? We too! Join us on an interactive journey to discover the main challenges of live migration at scale of etcd’s, traffic routing and application workloads from one cloud to another. The talk will discuss the current state of the technical concept, known problems and insides of the already proven migration steps for stateless workload. As part of the journey, we’ll see the differences between migrating one or one hundred clusters with productive workloads; What parts can be automated? What steps may need to be manual? Let’s see how an automated solution could look like in the future and what steps are missing.
https://sched.co/ekDU
A Future Journey: How to Migrate 100 Clusters Between Clouds Without Downtime? - Tobias Schneck & Manuel Stößel, Kubermatic
Have you ever thought about migrating your Kubernetes clusters to another cloud provider to save costs? Yes? We too! Join us on an interactive journey to discover the main challenges of live migration at scale of etcd’s, traffic routing and application workloads from one cloud to another. The talk will discuss the current state of the technical concept, known problems and insides of the already proven migration steps for stateless workload. As part of the journey, we’ll see the differences between migrating one or one hundred clusters with productive workloads; What parts can be automated? What steps may need to be manual? Let’s see how an automated solution could look like in the future and what steps are missing.
https://sched.co/ekDU
- 2 participants
- 41 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
A High-Schooler’s Guide to Kubernetes Network Observability - Drew Ripberger, Nirmata
The Kubernetes ecosystem provides fine attention to the use cases of almost all projects. At the same time, to a novice developer trying to break into distributed systems, Kubernetes can also be incredibly daunting at times. Kube-netc was a project developed by Drew Ripberger, a recent high school graduate turned summer intern at Nirmata. Kube-netc is built around creating all encompassing network observability. With eBPF capturing connection statistics and Prometheus exposing the processed metrics, kube-netc is a compelling example of how users can easily implement enhanced system awareness. Though prior to his internship, Drew had not used Kubernetes, or even heard of eBPF or Prometheus before getting assigned the project, this talk will take you through the creation of kube-netc and his journey from hacks and workarounds to utilizing everything that the CNCF ecosystem has to offer.
https://sched.co/ekA3
A High-Schooler’s Guide to Kubernetes Network Observability - Drew Ripberger, Nirmata
The Kubernetes ecosystem provides fine attention to the use cases of almost all projects. At the same time, to a novice developer trying to break into distributed systems, Kubernetes can also be incredibly daunting at times. Kube-netc was a project developed by Drew Ripberger, a recent high school graduate turned summer intern at Nirmata. Kube-netc is built around creating all encompassing network observability. With eBPF capturing connection statistics and Prometheus exposing the processed metrics, kube-netc is a compelling example of how users can easily implement enhanced system awareness. Though prior to his internship, Drew had not used Kubernetes, or even heard of eBPF or Prometheus before getting assigned the project, this talk will take you through the creation of kube-netc and his journey from hacks and workarounds to utilizing everything that the CNCF ecosystem has to offer.
https://sched.co/ekA3
- 1 participant
- 31 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
A New Approach to Logging as a Stack: Fluent Bit + PostgreSQL (FPS) - Jonathan Gonzalez, EDB
Logging at scale is a very interesting challenge, and having the right open source stack is mandatory. There are many ways to solve the log collection, processing and aggregation problem, but when it comes to perform data analysis once the data has been centralized, it's really easy to face latencies and get general problems when indexing our data that don't comes with a fixed structure. In this session, we will share our experience of implementing a new stack that we called FPS: Fluent Bit + PostgreSQL. The open source database PostgreSQL offers a very interesting storage engine for non-columnar structured documents: JSONB (binary JSON) which have shown to be a very efficient and scalable implementation to store trillions of record logs and provide fast results when performing queries.
https://sched.co/ekD0
A New Approach to Logging as a Stack: Fluent Bit + PostgreSQL (FPS) - Jonathan Gonzalez, EDB
Logging at scale is a very interesting challenge, and having the right open source stack is mandatory. There are many ways to solve the log collection, processing and aggregation problem, but when it comes to perform data analysis once the data has been centralized, it's really easy to face latencies and get general problems when indexing our data that don't comes with a fixed structure. In this session, we will share our experience of implementing a new stack that we called FPS: Fluent Bit + PostgreSQL. The open source database PostgreSQL offers a very interesting storage engine for non-columnar structured documents: JSONB (binary JSON) which have shown to be a very efficient and scalable implementation to store trillions of record logs and provide fast results when performing queries.
https://sched.co/ekD0
- 1 participant
- 19 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
A Special Interest in Cloud Native Security - Emily Fox, National Security Agency (NSA) & Brandon Lum, IBM
Wonder about the security of CNCF projects? What about the state of security in cloud native? Security is not binary, it’s a practice of reducing risk. With fast-changing infrastructure and emerging best practices, there’s no simple, cookie-cutter solution. The Special Interest Group (SIG) Security is a group of security minded folks in the cloud native community. These awesome people are focused on improving security of cloud native projects & minimizing security gaps in cloud native adoption. In this session you will learn about our current and future projects, efforts, and how you can get involved in the future of cloud native security.
https://sched.co/ekG3
A Special Interest in Cloud Native Security - Emily Fox, National Security Agency (NSA) & Brandon Lum, IBM
Wonder about the security of CNCF projects? What about the state of security in cloud native? Security is not binary, it’s a practice of reducing risk. With fast-changing infrastructure and emerging best practices, there’s no simple, cookie-cutter solution. The Special Interest Group (SIG) Security is a group of security minded folks in the cloud native community. These awesome people are focused on improving security of cloud native projects & minimizing security gaps in cloud native adoption. In this session you will learn about our current and future projects, efforts, and how you can get involved in the future of cloud native security.
https://sched.co/ekG3
- 2 participants
- 15 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
A Walk Through the Kubernetes UI Landscape - Joaquim Rocha, Kinvolk & Henning Jacobs, Zalando SE
Working with Kubernetes clusters and workloads can be overwhelming, both for operators, as well as application developers. While kubectl is the de-facto standard interface to interact with Kubernetes' API, a graphical user interface can provide a better experience for newcomers and advanced users alike. This talk will look at the current landscape of Open Source Kubernetes web and desktop UIs, including Kubernetes Dashboard, Lens, Octant, Kubernetes Web View, and Headlamp. Particularly, how different dashboards are built, for what purpose they can be used, and how they compare in terms of functionality, so attendees can get the most out of the vast landscape of Kubernetes UIs.
https://sched.co/ekAd
A Walk Through the Kubernetes UI Landscape - Joaquim Rocha, Kinvolk & Henning Jacobs, Zalando SE
Working with Kubernetes clusters and workloads can be overwhelming, both for operators, as well as application developers. While kubectl is the de-facto standard interface to interact with Kubernetes' API, a graphical user interface can provide a better experience for newcomers and advanced users alike. This talk will look at the current landscape of Open Source Kubernetes web and desktop UIs, including Kubernetes Dashboard, Lens, Octant, Kubernetes Web View, and Headlamp. Particularly, how different dashboards are built, for what purpose they can be used, and how they compare in terms of functionality, so attendees can get the most out of the vast landscape of Kubernetes UIs.
https://sched.co/ekAd
- 2 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
API Priority and Fairness: Kube-APIServer Flow-control Protection - Min Jin, Ant Fin
Currently the API Server has no concept of priority or fairness for requests. This means that a buggy webhook or bad actor can potentially DOS an API Server by sending lots of requests. This also means that currently the API Server cannot prioritize more important traffic when subjected to high load. This session will introduce the architecture of the APIPriorityAndFairnesss feature for Kubernetes which aims to solve these issues. Using the feature, administrators can categorize API Server requests into various priority levels and flows within each priority level, allocating concurrency to each priority level and getting fairness between the flows of a priority level. This talk is targeted at Kubernetes developers and SREs who are interested in the new features to help prevent API Server downtime as well as those wanting API Server request limits for multi-tenancy.
https://sched.co/f6S0
API Priority and Fairness: Kube-APIServer Flow-control Protection - Min Jin, Ant Fin
Currently the API Server has no concept of priority or fairness for requests. This means that a buggy webhook or bad actor can potentially DOS an API Server by sending lots of requests. This also means that currently the API Server cannot prioritize more important traffic when subjected to high load. This session will introduce the architecture of the APIPriorityAndFairnesss feature for Kubernetes which aims to solve these issues. Using the feature, administrators can categorize API Server requests into various priority levels and flows within each priority level, allocating concurrency to each priority level and getting fairness between the flows of a priority level. This talk is targeted at Kubernetes developers and SREs who are interested in the new features to help prevent API Server downtime as well as those wanting API Server request limits for multi-tenancy.
https://sched.co/f6S0
- 1 participant
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Absorbing Thanos Infinite Powers for Multi-Cluster Telemetry - Bartlomiej Płotka & Kemal Akkoyun, Red Hat & Frederic Branczyk, Independent
Thanos is an open-source, CNCF’s Incubated project that horizontally scales Prometheus to create a global-scale highly available monitoring system. It seamlessly extends Prometheus in a few simple steps and it is already used in production by hundreds of companies that aim for high multi-cloud scale for metrics while keeping low maintenance cost. During this talk, core Thanos (and Prometheus) maintainers, will briefly introduce basic ideas behind Thanos and deployment models and use cases. After that, to satisfy more experienced users, they will explain more advanced concepts, tips for running on the scale, and the latest shiny usability improvements. Thanks to the growing community there is much to talk about!
https://sched.co/ekHk
Absorbing Thanos Infinite Powers for Multi-Cluster Telemetry - Bartlomiej Płotka & Kemal Akkoyun, Red Hat & Frederic Branczyk, Independent
Thanos is an open-source, CNCF’s Incubated project that horizontally scales Prometheus to create a global-scale highly available monitoring system. It seamlessly extends Prometheus in a few simple steps and it is already used in production by hundreds of companies that aim for high multi-cloud scale for metrics while keeping low maintenance cost. During this talk, core Thanos (and Prometheus) maintainers, will briefly introduce basic ideas behind Thanos and deployment models and use cases. After that, to satisfy more experienced users, they will explain more advanced concepts, tips for running on the scale, and the latest shiny usability improvements. Thanks to the growing community there is much to talk about!
https://sched.co/ekHk
- 3 participants
- 39 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Accelerate and Autoscale Deep Learning Inference on GPUs with KFServing - Dan Sun, Bloomberg & David Goodwin, NVIDIA
Large-scale language models, such as BERT and GPT-2, have brought exciting leaps in state-of-the-art accuracy for many NLP tasks. BERT requires significant compute during inference, which poses challenges for real-time application performance. KFServing provides a simple model serving interface across common model servers with a standardized REST/gRPC inference protocol to serve single or co-located multiple models on CPU or GPU. KFServing enables hardware acceleration and autoscaling of Bloomberg's own BERT models trained on a corpora of specialized, financial news data. In this talk, we will discuss how we use KFServing in a production application to address scalability, latency, and throughput with Knative’s Autoscaler and Activator. We will also discuss some performance debugging tips and show the GPU benchmark results with TensorFlow/PyTorch BERT models deployed to KFServing.
https://sched.co/ekC5
Accelerate and Autoscale Deep Learning Inference on GPUs with KFServing - Dan Sun, Bloomberg & David Goodwin, NVIDIA
Large-scale language models, such as BERT and GPT-2, have brought exciting leaps in state-of-the-art accuracy for many NLP tasks. BERT requires significant compute during inference, which poses challenges for real-time application performance. KFServing provides a simple model serving interface across common model servers with a standardized REST/gRPC inference protocol to serve single or co-located multiple models on CPU or GPU. KFServing enables hardware acceleration and autoscaling of Bloomberg's own BERT models trained on a corpora of specialized, financial news data. In this talk, we will discuss how we use KFServing in a production application to address scalability, latency, and throughput with Knative’s Autoscaler and Activator. We will also discuss some performance debugging tips and show the GPU benchmark results with TensorFlow/PyTorch BERT models deployed to KFServing.
https://sched.co/ekC5
- 2 participants
- 37 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
All You Can Eat Networking. Kubernetes Goodness for the Hungriest Workloads - Aloys Augustin, Cisco & Casey Davenport, Tigera
There are classes of workloads that are notoriously hungry when it comes to networking. Think big data, storage, analytics, 5G, virtual network functions, then encrypt it all at 40Gbps line rates. Kubernetes and the Kubernetes network model are increasingly seen as essential to help manage these workloads at scale. But the cost of containerization and container networking can be hard to swallow for workloads that are often used to having dedicated NICs and physical hardware. Our novel solution was to cook up a feast that is a fusion of two worlds: combining Calico, the popular cloud native Kubernetes network plugin, with VPP, a very fast and scalable userspace packet processing software. In this talk we will lift the lid on what we’ve been cooking and the key ingredients that made it possible to offer an all you can eat buffet for your hungriest workloads.
https://sched.co/ekCQ
All You Can Eat Networking. Kubernetes Goodness for the Hungriest Workloads - Aloys Augustin, Cisco & Casey Davenport, Tigera
There are classes of workloads that are notoriously hungry when it comes to networking. Think big data, storage, analytics, 5G, virtual network functions, then encrypt it all at 40Gbps line rates. Kubernetes and the Kubernetes network model are increasingly seen as essential to help manage these workloads at scale. But the cost of containerization and container networking can be hard to swallow for workloads that are often used to having dedicated NICs and physical hardware. Our novel solution was to cook up a feast that is a fusion of two worlds: combining Calico, the popular cloud native Kubernetes network plugin, with VPP, a very fast and scalable userspace packet processing software. In this talk we will lift the lid on what we’ve been cooking and the key ingredients that made it possible to offer an all you can eat buffet for your hungriest workloads.
https://sched.co/ekCQ
- 2 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
An SLO-Driven Approach to Enhance Kubernetes Cluster Reliability - Qian Ding & Cong Chen, Ant Financial
How to define reliability of a Kubernetes cluster? What are the SLOs? How many 9s is enough to ensure end-users are happy for a Kubernetes cluster with thousands of nodes? Service-level-objective (SLO) is the key to run large-scale production cluster reliably. Defining SLOs for classic web services is simple, since web requests are served synchronously with distinct status code. On the contrast, defining SLOs for Kubernetes services is obscured due to its intent-oriented design and declarative APIs. This talk first briefs the philosophy behind the SLO-driven approach for reliability engineering, followed by a deep dive of how SREs define SLOs for one of the world largest Kubernetes cluster in Ant Financial. Finally this talk shares concrete cases and lessons learned of building SLOs framework from several perspectives, including monitoring, alerting and tracing.
https://sched.co/ekCl
An SLO-Driven Approach to Enhance Kubernetes Cluster Reliability - Qian Ding & Cong Chen, Ant Financial
How to define reliability of a Kubernetes cluster? What are the SLOs? How many 9s is enough to ensure end-users are happy for a Kubernetes cluster with thousands of nodes? Service-level-objective (SLO) is the key to run large-scale production cluster reliably. Defining SLOs for classic web services is simple, since web requests are served synchronously with distinct status code. On the contrast, defining SLOs for Kubernetes services is obscured due to its intent-oriented design and declarative APIs. This talk first briefs the philosophy behind the SLO-driven approach for reliability engineering, followed by a deep dive of how SREs define SLOs for one of the world largest Kubernetes cluster in Ant Financial. Finally this talk shares concrete cases and lessons learned of building SLOs framework from several perspectives, including monitoring, alerting and tracing.
https://sched.co/ekCl
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
App Testing at Scale: How Bitnami Tests Thousands of Releases Per Month - Juan Jose Martos Castro, VMware
Bitnami publishes a collection of over 180 open source applications and components on over twenty platforms, resulting in thousands of unique image builds and releases every month. Every single one of those releases is automatically tested in the environment in which it will be deployed by users, before being pushed to its destination. In this session, we will show you how we automate thousands of tests across multiple platforms including public clouds, vSphere, containers and Kubernetes, and even Windows installers. Using the popular open source blog application WordPress as an example, we will demonstrate how we accomplish this scale of testing and how you can apply what we have learned to your own testing best practices.
https://sched.co/ekB4
App Testing at Scale: How Bitnami Tests Thousands of Releases Per Month - Juan Jose Martos Castro, VMware
Bitnami publishes a collection of over 180 open source applications and components on over twenty platforms, resulting in thousands of unique image builds and releases every month. Every single one of those releases is automatically tested in the environment in which it will be deployed by users, before being pushed to its destination. In this session, we will show you how we automate thousands of tests across multiple platforms including public clouds, vSphere, containers and Kubernetes, and even Windows installers. Using the popular open source blog application WordPress as an example, we will demonstrate how we accomplish this scale of testing and how you can apply what we have learned to your own testing best practices.
https://sched.co/ekB4
- 1 participant
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Automatically Making Dashboards Load 100X Faster - Shreyas Srivatsan, Chronosphere
High cardinality metrics often cause alerts and dashboards to time out when they try to fetch too much data. Prometheus provides recording rules to speed up queries by pre-generating the queries, however, they have to be configured manually and require reconfiguring alerts and dashboards to point to the recorded series. The performance degradation often happens as new metrics are introduced with more instances or deploys and a working query may break all of a sudden. In this talk, we will show you how slow queries can be preemptively detected and automatically sped up without any manual reconfiguration. We detail two approaches to achieving automated speed ups - one that is based on recording rules and the other is based on the M3 Aggregation tier. We will compare and contrast both approaches and show examples of how one can leverage either open source method to achieve the same results.
https://sched.co/ekCu
Automatically Making Dashboards Load 100X Faster - Shreyas Srivatsan, Chronosphere
High cardinality metrics often cause alerts and dashboards to time out when they try to fetch too much data. Prometheus provides recording rules to speed up queries by pre-generating the queries, however, they have to be configured manually and require reconfiguring alerts and dashboards to point to the recorded series. The performance degradation often happens as new metrics are introduced with more instances or deploys and a working query may break all of a sudden. In this talk, we will show you how slow queries can be preemptively detected and automatically sped up without any manual reconfiguration. We detail two approaches to achieving automated speed ups - one that is based on recording rules and the other is based on the M3 Aggregation tier. We will compare and contrast both approaches and show examples of how one can leverage either open source method to achieve the same results.
https://sched.co/ekCu
- 1 participant
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Being a Good Citizen of the Multi-operator World - Devdatta Kulkarni, CloudARK
DevOps teams are increasingly using multiple Kubernetes Operators in their clusters. What does it take to develop an Operator that is a good citizen of the multi-Operator world? The talk focuses on this question. To develop an Operator that plays nicely with other Operators in a cluster, Operator developers need to consider various aspects like, what should go in Custom Resource Spec definition, in the CRD YAML and in the Operator's Helm chart? To help Operator developers build Operators that are good citizen of the multi-Operator world, we have developed a framework named as, Operator Maturity Model (https://github.com/cloud-ark/kubeplus/blob/master/Operator-Maturity-Model.md). Community Operators like DataStax Cassandra, PressLabs MySQL, Elastic ELK, Cert Manager have benefited from this model. The talk will cover this framework for the broader benefit.
https://sched.co/ekBe
Being a Good Citizen of the Multi-operator World - Devdatta Kulkarni, CloudARK
DevOps teams are increasingly using multiple Kubernetes Operators in their clusters. What does it take to develop an Operator that is a good citizen of the multi-Operator world? The talk focuses on this question. To develop an Operator that plays nicely with other Operators in a cluster, Operator developers need to consider various aspects like, what should go in Custom Resource Spec definition, in the CRD YAML and in the Operator's Helm chart? To help Operator developers build Operators that are good citizen of the multi-Operator world, we have developed a framework named as, Operator Maturity Model (https://github.com/cloud-ark/kubeplus/blob/master/Operator-Maturity-Model.md). Community Operators like DataStax Cassandra, PressLabs MySQL, Elastic ELK, Cert Manager have benefited from this model. The talk will cover this framework for the broader benefit.
https://sched.co/ekBe
- 1 participant
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Beyond File and Block Storage in Kubernetes - Sidhartha Mani, MinIO
Kubernetes graduated Container Storage Interface (CSI) to GA status in v1.13. It has since evolved to support a large number of vendors and storage formats. It has brought the industry together in consensus about the best practices in storage. CSI only supports Block and File storage. Object storage is a fundamentally different paradigm where data is accessed over the network rather than locally. It allows applications to remain stateless, while offloading state into a blackbox over the network. Object storage is the key enabler for cloud migration. This paradigm however, does not have a standard mechanism for consumption in Kubernetes. In this talk, we discuss our efforts in bringing object storage into the forefront of kubernetes and introduce the Container Object Storage Interface (COSI) and cover: - Need for COSI - Best practices for using COSI - Designing apps to leverage COSI
https://sched.co/ekF8
Beyond File and Block Storage in Kubernetes - Sidhartha Mani, MinIO
Kubernetes graduated Container Storage Interface (CSI) to GA status in v1.13. It has since evolved to support a large number of vendors and storage formats. It has brought the industry together in consensus about the best practices in storage. CSI only supports Block and File storage. Object storage is a fundamentally different paradigm where data is accessed over the network rather than locally. It allows applications to remain stateless, while offloading state into a blackbox over the network. Object storage is the key enabler for cloud migration. This paradigm however, does not have a standard mechanism for consumption in Kubernetes. In this talk, we discuss our efforts in bringing object storage into the forefront of kubernetes and introduce the Container Object Storage Interface (COSI) and cover: - Need for COSI - Best practices for using COSI - Designing apps to leverage COSI
https://sched.co/ekF8
- 1 participant
- 9 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Beyond the Buzzword: BPF’s Unexpected Role in Kubernetes - Andrew Randall & Alban Crequy, Kinvolk
Increasingly, cloud native tools are leveraging the Linux kernel’s Berkeley Packet Filter (BPF) capabilities for a range of applications, such as networking, security, observability, and troubleshooting. In recent Linux kernel releases, BPF has been significantly enhanced, resulting in this proliferation of BPF-powered cloud native projects. In this talk, we will go beyond the BPF buzzword, review the latest relevant developments in the Linux kernel and the rich ecosystem of cloud native tooling built on it. With live demos we will show how easy it is to deploy these BPF-based tools into your Kubernetes cluster, gaining greater visibility and control at the pod level of granularity.
https://sched.co/ekDR
Beyond the Buzzword: BPF’s Unexpected Role in Kubernetes - Andrew Randall & Alban Crequy, Kinvolk
Increasingly, cloud native tools are leveraging the Linux kernel’s Berkeley Packet Filter (BPF) capabilities for a range of applications, such as networking, security, observability, and troubleshooting. In recent Linux kernel releases, BPF has been significantly enhanced, resulting in this proliferation of BPF-powered cloud native projects. In this talk, we will go beyond the BPF buzzword, review the latest relevant developments in the Linux kernel and the rich ecosystem of cloud native tooling built on it. With live demos we will show how easy it is to deploy these BPF-based tools into your Kubernetes cluster, gaining greater visibility and control at the pod level of granularity.
https://sched.co/ekDR
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Build Your Own Envoy Control Plane - Steve Sloka, VMware
Envoy is a building block of many different solutions from Ingress controllers, Service mesh implementations, as well as functions as a service application frameworks. Any solution utilizing Envoy as its data path component most likely implements Envoy’s xDS API in some way. It is possible to only use a fully static configuration, but typically more complicated deployments incrementally add more complex dynamic configuration via xDS over gRCP. This talk will walk through how the xDS API is defined and what each component does. We’ll discuss lessons learned from Contour, an ingress controller for Kubernetes on how the team implemented xDS (and also struggled with it). Come take a look at how you can build a full Envoy control plane for yourself!
https://sched.co/ek9x
Build Your Own Envoy Control Plane - Steve Sloka, VMware
Envoy is a building block of many different solutions from Ingress controllers, Service mesh implementations, as well as functions as a service application frameworks. Any solution utilizing Envoy as its data path component most likely implements Envoy’s xDS API in some way. It is possible to only use a fully static configuration, but typically more complicated deployments incrementally add more complex dynamic configuration via xDS over gRCP. This talk will walk through how the xDS API is defined and what each component does. We’ll discuss lessons learned from Contour, an ingress controller for Kubernetes on how the team implemented xDS (and also struggled with it). Come take a look at how you can build a full Envoy control plane for yourself!
https://sched.co/ek9x
- 1 participant
- 24 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Building Better Communication for Kubernetes Contributors with Marketing - Matthew Broberg, Red Hat, Kaslin Fields, Google & Rajula Vineet Reddy, CERN
The Upstream Marketing Working Group began as a vision to connect contributors. It's grown into a set of practices, channels, and bots that unite us all across the Kubernetes community. We will show our theory of multichannel communication (and the four types of messages across the 4+ channels of discussion), examples of what our help looks like, and how you can ask for support. In the Deep Dive, we cover (1) Storytelling. We will give a walkthrough for writing a great story, including key takeaways around narrative, call to action (CTA), and structure. Along the way, we'll highlight tips to publish a blog, including collaboration with the Blog team. (2) Technology. While we're starting this WG to bring marketing practices to Kubernetes, communication benefits from the right amount of YAML. We have a Slack and Twitter bot we'd love for you to get to know. Bringing these parts together, attendees will have a vision for how this WG supports others and why you should join in the fun.
https://sched.co/ekHJ
Building Better Communication for Kubernetes Contributors with Marketing - Matthew Broberg, Red Hat, Kaslin Fields, Google & Rajula Vineet Reddy, CERN
The Upstream Marketing Working Group began as a vision to connect contributors. It's grown into a set of practices, channels, and bots that unite us all across the Kubernetes community. We will show our theory of multichannel communication (and the four types of messages across the 4+ channels of discussion), examples of what our help looks like, and how you can ask for support. In the Deep Dive, we cover (1) Storytelling. We will give a walkthrough for writing a great story, including key takeaways around narrative, call to action (CTA), and structure. Along the way, we'll highlight tips to publish a blog, including collaboration with the Blog team. (2) Technology. While we're starting this WG to bring marketing practices to Kubernetes, communication benefits from the right amount of YAML. We have a Slack and Twitter bot we'd love for you to get to know. Bringing these parts together, attendees will have a vision for how this WG supports others and why you should join in the fun.
https://sched.co/ekHJ
- 3 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Building Linux Distributions for Fun and Profit - Margarita Manterola, Kinvolk
Should we aim to have one Linux distro to rule them all? Or should we have a specialized one for each need? When does it make sense to go for one or the other? When running software on K8s, does the distro running on the nodes make a difference? What about the one in the containers? Marga has been building Linux distributions for over 15 years. She started in the Debian project, then worked as an engineer at Google, building the OS used by other Google engineers. And is currently working on Flatcar Container Linux, Kinvolk's container optimized OS. This talk will discuss the advantages and disadvantages of having general purpose distributions vs narrow focus ones. Going onto the manageability and security implications at scale for cloud native applications. It will touch upon the redefined boundaries between the base OS and the containers and how to keep everything up to date.
https://sched.co/ekE1
Building Linux Distributions for Fun and Profit - Margarita Manterola, Kinvolk
Should we aim to have one Linux distro to rule them all? Or should we have a specialized one for each need? When does it make sense to go for one or the other? When running software on K8s, does the distro running on the nodes make a difference? What about the one in the containers? Marga has been building Linux distributions for over 15 years. She started in the Debian project, then worked as an engineer at Google, building the OS used by other Google engineers. And is currently working on Flatcar Container Linux, Kinvolk's container optimized OS. This talk will discuss the advantages and disadvantages of having general purpose distributions vs narrow focus ones. Going onto the manageability and security implications at scale for cloud native applications. It will touch upon the redefined boundaries between the base OS and the containers and how to keep everything up to date.
https://sched.co/ekE1
- 1 participant
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Building a Cloud Native Feature Store with Feast on Kubeflow - Willem Pienaar & Oleksii Moskalenko, Gojek
Features are at the heart of what makes machine learning systems effective. However, many challenges still exist in the feature engineering life-cycle. Developing features from big data is often an engineering heavy task, with challenges in both the scaling of data processes and the serving of features in production systems. Feast is an open-source feature store co-developed by Gojek and Google Cloud, which allows for the storage, management, access, validation, and reuse of ML features throughout an organization. Feast solves the key operational challenges with the productionization of features for both small teams and large organizations. The project has been built from the ground up to be cloud-native and has recently been included as a component within Kubeflow. In this talk we will explore the key challenges that ML teams face and how technologies like Feast help to solve them.
https://sched.co/ekCE
Building a Cloud Native Feature Store with Feast on Kubeflow - Willem Pienaar & Oleksii Moskalenko, Gojek
Features are at the heart of what makes machine learning systems effective. However, many challenges still exist in the feature engineering life-cycle. Developing features from big data is often an engineering heavy task, with challenges in both the scaling of data processes and the serving of features in production systems. Feast is an open-source feature store co-developed by Gojek and Google Cloud, which allows for the storage, management, access, validation, and reuse of ML features throughout an organization. Feast solves the key operational challenges with the productionization of features for both small teams and large organizations. The project has been built from the ground up to be cloud-native and has recently been included as a component within Kubeflow. In this talk we will explore the key challenges that ML teams face and how technologies like Feast help to solve them.
https://sched.co/ekCE
- 2 participants
- 32 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Building a Global Supercomputer with Virtual Kubelet - Dmitry Mishin, University of California San Diego & Adrien Trouillaud, Admiralty
Nautilus is a global Kubernetes cluster, product of the Pacific Research Platform (PRP) project at The University of California San Diego (UCSD) and many collaborating campuses. It aggregates compute resources from around the world. While that's impressive, there are issues that a single cluster cannot solve: in this case, decentralized governance. PRP participants delegate the control of some of their compute resources to UCSD. That wouldn't scale to a global network of independent institutions. So PRP, along with peer projects nationwide, decided to adopt Admiralty's open-source multi-cluster scheduler, which allows for decentralized control plane topologies. Dmitry will demo the federation of Nautilus with the clusters of other large scientific networks; Adrien will explain how Admiralty implemented Virtual Kubelet and the Kubernetes scheduler framework to make this possible.
https://sched.co/ekBh
Building a Global Supercomputer with Virtual Kubelet - Dmitry Mishin, University of California San Diego & Adrien Trouillaud, Admiralty
Nautilus is a global Kubernetes cluster, product of the Pacific Research Platform (PRP) project at The University of California San Diego (UCSD) and many collaborating campuses. It aggregates compute resources from around the world. While that's impressive, there are issues that a single cluster cannot solve: in this case, decentralized governance. PRP participants delegate the control of some of their compute resources to UCSD. That wouldn't scale to a global network of independent institutions. So PRP, along with peer projects nationwide, decided to adopt Admiralty's open-source multi-cluster scheduler, which allows for decentralized control plane topologies. Dmitry will demo the federation of Nautilus with the clusters of other large scientific networks; Adrien will explain how Admiralty implemented Virtual Kubelet and the Kubernetes scheduler framework to make this possible.
https://sched.co/ekBh
- 2 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Building, Managing and Automating Clusters at Scale With Prow - Michael Splain, Sonos, Inc.
Whether building your first or 100th Kubernetes cluster, it eventually becomes clear- this must be automated. These days, building and customizing a cluster is pretty straight forward based on your required workloads, infrastructure and tooling. The real hard work comes when answering the question, how do we manage this long term? In this talk you’ll learn how we accelerated our automation by moving our cluster management to the CI system built and trusted by Kubernetes itself, Prow. We will start at the basics of Prow and work up to why it was a great fit for us. Finally we’ll show how it all works and discuss how to approach your own cluster automation at scale.
https://sched.co/ekDL
Building, Managing and Automating Clusters at Scale With Prow - Michael Splain, Sonos, Inc.
Whether building your first or 100th Kubernetes cluster, it eventually becomes clear- this must be automated. These days, building and customizing a cluster is pretty straight forward based on your required workloads, infrastructure and tooling. The real hard work comes when answering the question, how do we manage this long term? In this talk you’ll learn how we accelerated our automation by moving our cluster management to the CI system built and trusted by Kubernetes itself, Prow. We will start at the basics of Prow and work up to why it was a great fit for us. Finally we’ll show how it all works and discuss how to approach your own cluster automation at scale.
https://sched.co/ekDL
- 1 participant
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Bypass Falco - Leonardo Di Donato, Sysdig
The main goal of Falco is to detect malicious behaviors at runtime and alert you about anything undesirable happening inside your machines. Maybe you trust it as your last line of defense in today’s cloud-native environments, and as a consequence, you sleep like a log. Well, I’m a Falco maintainer, and I definitely wouldn’t. Ok, I generally don’t trust anything and still manage to sleep soundly, but that’s a topic for another conversation. You shouldn’t trust Falco. You shouldn’t trust any tool by default. During this session, we’re gonna explore how to bypass Falco and leave us like sitting ducks, defenseless. How? By circumventing the ability of the Falco kernel module or its eBPF probe to trace the syscalls happening into your Linux kernels. Join this talk to get to know the details, and participate in this next-level collective drama.
https://sched.co/ekE4
Bypass Falco - Leonardo Di Donato, Sysdig
The main goal of Falco is to detect malicious behaviors at runtime and alert you about anything undesirable happening inside your machines. Maybe you trust it as your last line of defense in today’s cloud-native environments, and as a consequence, you sleep like a log. Well, I’m a Falco maintainer, and I definitely wouldn’t. Ok, I generally don’t trust anything and still manage to sleep soundly, but that’s a topic for another conversation. You shouldn’t trust Falco. You shouldn’t trust any tool by default. During this session, we’re gonna explore how to bypass Falco and leave us like sitting ducks, defenseless. How? By circumventing the ability of the Falco kernel module or its eBPF probe to trace the syscalls happening into your Linux kernels. Join this talk to get to know the details, and participate in this next-level collective drama.
https://sched.co/ekE4
- 1 participant
- 36 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
CNCF End User Tech Radar, November 2020 - Cheryl Hung, CNCF; Jackie Fong, Ticketmaster; Mya Pitzeruse, Indeed; Smaïne Kahlouch, Dailymotion
The CNCF End User Community present the next edition of the CNCF End User Tech Radar (http://radar.cncf.io/), the quarterly report that shows what end users really use and recommend. Cheryl Hung, CNCF VP Ecosystem, will lead a panel discussion with the Radar team covering what they expected going in and what they found most interesting or surprising.
https://sched.co/etSI
CNCF End User Tech Radar, November 2020 - Cheryl Hung, CNCF; Jackie Fong, Ticketmaster; Mya Pitzeruse, Indeed; Smaïne Kahlouch, Dailymotion
The CNCF End User Community present the next edition of the CNCF End User Tech Radar (http://radar.cncf.io/), the quarterly report that shows what end users really use and recommend. Cheryl Hung, CNCF VP Ecosystem, will lead a panel discussion with the Radar team covering what they expected going in and what they found most interesting or surprising.
https://sched.co/etSI
- 4 participants
- 36 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
CNCF Project Paperwork Working Session - Josh Berkus, Red Hat, Carolyn Van Slyck, Microsoft & Dawn Foster, VMware
At each stage from Sandbox to Graduated, you’ll need to add community and process documentation – and there’s even more that’s good to have even if it’s not required. Let us help you create this “project paperwork” now instead of waiting for a deadline. With just a little planning, it doesn’t need to overwhelm you. SIG Contributor Strategy will walk you through required and desired community docs, how to use the new template repo, and which docs you need at which level. We’ll also be on hand to answer your questions and provide 1-on-1 help and editorial support. You can get your project ready, and we’ll show you how.
https://sched.co/ekG0
CNCF Project Paperwork Working Session - Josh Berkus, Red Hat, Carolyn Van Slyck, Microsoft & Dawn Foster, VMware
At each stage from Sandbox to Graduated, you’ll need to add community and process documentation – and there’s even more that’s good to have even if it’s not required. Let us help you create this “project paperwork” now instead of waiting for a deadline. With just a little planning, it doesn’t need to overwhelm you. SIG Contributor Strategy will walk you through required and desired community docs, how to use the new template repo, and which docs you need at which level. We’ll also be on hand to answer your questions and provide 1-on-1 help and editorial support. You can get your project ready, and we’ll show you how.
https://sched.co/ekG0
- 3 participants
- 13 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
CNCF SIG Network Intro & Deep-Dive - Lee Calcote, Layer5
“It’s the network!” is the cry of every system administrator, every developer. With the increased prevalence of microservice-based distributed systems, it’s true - networking as a discipline has never been more critical in the efficient operation of cloud native deployments. Networking primitives, including load balancing, observability, authentication, authorization, policy, rate limiting, QoS, mesh networks, legacy infrastructure bridging, and so on are now receiving substantial development and investment throughout the industry and are the subject of focus of the CNCF Network SIG. Join this talk for an intro to the SIG, its charter and a deeper discussion of current cloud native networking topics being advanced in this SIG. Current CNCF projects in-scope: CNI, CoreDNS, Envoy, gRPC, Linkerd, NATS, Network Service Mesh.
https://sched.co/etsE
CNCF SIG Network Intro & Deep-Dive - Lee Calcote, Layer5
“It’s the network!” is the cry of every system administrator, every developer. With the increased prevalence of microservice-based distributed systems, it’s true - networking as a discipline has never been more critical in the efficient operation of cloud native deployments. Networking primitives, including load balancing, observability, authentication, authorization, policy, rate limiting, QoS, mesh networks, legacy infrastructure bridging, and so on are now receiving substantial development and investment throughout the industry and are the subject of focus of the CNCF Network SIG. Join this talk for an intro to the SIG, its charter and a deeper discussion of current cloud native networking topics being advanced in this SIG. Current CNCF projects in-scope: CNI, CoreDNS, Envoy, gRPC, Linkerd, NATS, Network Service Mesh.
https://sched.co/etsE
- 1 participant
- 29 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
CNCF Serverless WG: CloudEvents and Serverless Workflow - Doug Davis, IBM & Tihomir Surdilovic, Red Hat
In this session the Serverless WG will update the community on the CloudEvents and Serverless Workflow specifications. In this talk we will look into the importance of using workflows in event-driven, distributed applications. Then we will look at the specifics of the Serverless Workflow specification and what benefits it brings you for solving real-world business problems. We will also present a demo showing off the Serverless Workflow declarative markup in action. What will you learn: * Pros/Cons of using workflow-based orchestration in your event-driven, distributed applications * Benefits of using a specification-based workflow markup * How Serverless Workflow can improve portability of your apps * How to get started using Serverless Workflow
https://sched.co/ekIH
CNCF Serverless WG: CloudEvents and Serverless Workflow - Doug Davis, IBM & Tihomir Surdilovic, Red Hat
In this session the Serverless WG will update the community on the CloudEvents and Serverless Workflow specifications. In this talk we will look into the importance of using workflows in event-driven, distributed applications. Then we will look at the specifics of the Serverless Workflow specification and what benefits it brings you for solving real-world business problems. We will also present a demo showing off the Serverless Workflow declarative markup in action. What will you learn: * Pros/Cons of using workflow-based orchestration in your event-driven, distributed applications * Benefits of using a specification-based workflow markup * How Serverless Workflow can improve portability of your apps * How to get started using Serverless Workflow
https://sched.co/ekIH
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
CRI-O: The Runtime Control Room - Sascha Grunert, SUSE, Peter Hunt, Urvashi Mohnani, Mrunal Patel, Red Hat
There are many ways to customize the underlying container runtime in Kubernetes. Where Kubernetes API offers many knobs for tuning your workloads, using CRI-O gives you access to even more. CRI-O is a container runtime that provides an incubation space for new runtime features in a secure way. It exposes lower-level features with container annotations, runtime classes, and configuration variables, giving admins control over how and when these features are available, and paving a path for their eventual stabalization and wider adoption in Kubernetes. Join the CRI-O maintainers Peter Hunt, Sascha Grunert, Urvashi Mohnani and Mrunal Patel as they give an introduction of CRI-O and walk through the features and knobs CRI-O exposes.
https://sched.co/ekGC
CRI-O: The Runtime Control Room - Sascha Grunert, SUSE, Peter Hunt, Urvashi Mohnani, Mrunal Patel, Red Hat
There are many ways to customize the underlying container runtime in Kubernetes. Where Kubernetes API offers many knobs for tuning your workloads, using CRI-O gives you access to even more. CRI-O is a container runtime that provides an incubation space for new runtime features in a secure way. It exposes lower-level features with container annotations, runtime classes, and configuration variables, giving admins control over how and when these features are available, and paving a path for their eventual stabalization and wider adoption in Kubernetes. Join the CRI-O maintainers Peter Hunt, Sascha Grunert, Urvashi Mohnani and Mrunal Patel as they give an introduction of CRI-O and walk through the features and knobs CRI-O exposes.
https://sched.co/ekGC
- 4 participants
- 31 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Case Study: Integrating Azure IPv6 PrivateLink with Kubernetes - Meixing Le & Michael Wiederhold, Databricks
Databricks offers a multi-cloud SaaS platform to enable data teams to solve the world’s toughest problems, using best in class technology and providing an open ecosystem. We run an infrastructure footprint consisting of 2M+ VMs across 40+ Cloud environments/regions, processing exabytes of data per day and generating billions of events. This talk shares Databricks’ journey of supporting IPv6 traffic with our existing Kubernetes infrastructures. At Databricks, we run 2000+ Kubernetes clusters (self-managed) across multiple cloud providers and regions with IPv4. To support the populate PrivateLink feature on Azure with IPv6, we explored various architectural options to integrate IPv6 with our existing Kubernetes clusters. After back and forth discussions and experiments, we ended up with a solution which is lightweight and fits our deployment and monitoring systems naturally.
https://sched.co/ekCW
Case Study: Integrating Azure IPv6 PrivateLink with Kubernetes - Meixing Le & Michael Wiederhold, Databricks
Databricks offers a multi-cloud SaaS platform to enable data teams to solve the world’s toughest problems, using best in class technology and providing an open ecosystem. We run an infrastructure footprint consisting of 2M+ VMs across 40+ Cloud environments/regions, processing exabytes of data per day and generating billions of events. This talk shares Databricks’ journey of supporting IPv6 traffic with our existing Kubernetes infrastructures. At Databricks, we run 2000+ Kubernetes clusters (self-managed) across multiple cloud providers and regions with IPv4. To support the populate PrivateLink feature on Azure with IPv6, we explored various architectural options to integrate IPv6 with our existing Kubernetes clusters. After back and forth discussions and experiments, we ended up with a solution which is lightweight and fits our deployment and monitoring systems naturally.
https://sched.co/ekCW
- 2 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Clean Up Your Room! What Does It Mean to Delete Something in K8s - Aaron Alpar, Kasten
While issuing a `kubectl delete` and hoping for the best might work for day-to-day operations, having the knowledge of how Kubernetes effects deletes allows you to understand why some objects linger after deletion. This talk will cover how to delete objects, and what kubernetes does to coordinate the delete process. Some specifics of deleting pods, persistent volume claims, deployments and stateful sets will be covered.
https://sched.co/ek9i
Clean Up Your Room! What Does It Mean to Delete Something in K8s - Aaron Alpar, Kasten
While issuing a `kubectl delete` and hoping for the best might work for day-to-day operations, having the knowledge of how Kubernetes effects deletes allows you to understand why some objects linger after deletion. This talk will cover how to delete objects, and what kubernetes does to coordinate the delete process. Some specifics of deleting pods, persistent volume claims, deployments and stateful sets will be covered.
https://sched.co/ek9i
- 1 participant
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Cloud Native Machine Learning Systems at Day Two and Beyond - Sophie Watson & William Benton, Red Hat
You’re probably already convinced that Kubernetes is the right infrastructure for your next machine learning initiative, but you may not be ready for some of the speedbumps that await you on the way. This talk will introduce some of the challenges unique to machine learning systems, prepare you for the tradeoffs you’ll face supporting practitioners and putting systems in production, and present some of the additional tools you’ll need in your DevOps toolbox as your cloud-native machine learning systems mature. You’ll learn how to negotiate pitfalls related to interactive development, reproducibility, and monitoring machine learning systems in production with concrete solutions inspired by our experience with end-users in various industries.
https://sched.co/ekC2
Cloud Native Machine Learning Systems at Day Two and Beyond - Sophie Watson & William Benton, Red Hat
You’re probably already convinced that Kubernetes is the right infrastructure for your next machine learning initiative, but you may not be ready for some of the speedbumps that await you on the way. This talk will introduce some of the challenges unique to machine learning systems, prepare you for the tradeoffs you’ll face supporting practitioners and putting systems in production, and present some of the additional tools you’ll need in your DevOps toolbox as your cloud-native machine learning systems mature. You’ll learn how to negotiate pitfalls related to interactive development, reproducibility, and monitoring machine learning systems in production with concrete solutions inspired by our experience with end-users in various industries.
https://sched.co/ekC2
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
CloudEvents - v1.0 and Beyond - Discovery/Subscriptions - Doug Davis, IBM & Clemens Vasters, Microsoft
With the release of CloudEvents v1.0 the project has now expanded its scope to consider other potential pain points for the community. To that end, the group is focusing on Event Discovery and Subscriptions APIs in the hopes of reducing the friction of discovering which events are available from Event Producers as well as how someone can subscribe to those receive those events. In this session we'll quickly summarize, and review, the status of CloudEvents and then jump into the goals, design and status of the new Discovery and Subscription APIs specification being developed.
https://sched.co/ekIE
CloudEvents - v1.0 and Beyond - Discovery/Subscriptions - Doug Davis, IBM & Clemens Vasters, Microsoft
With the release of CloudEvents v1.0 the project has now expanded its scope to consider other potential pain points for the community. To that end, the group is focusing on Event Discovery and Subscriptions APIs in the hopes of reducing the friction of discovering which events are available from Event Producers as well as how someone can subscribe to those receive those events. In this session we'll quickly summarize, and review, the status of CloudEvents and then jump into the goals, design and status of the new Discovery and Subscription APIs specification being developed.
https://sched.co/ekIE
- 2 participants
- 21 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Cluster API Deep Dive - Katie Gamanji, American Express & Carlos Panato, Mattermost
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate for its consumers. In this deep dive, we will examine how the Cluster API simplifies the cluster management experience for cluster operators by enabling consistent machine management across environments, and bringing declarative upgrades to Kubernetes clusters.
https://sched.co/ekGv
Cluster API Deep Dive - Katie Gamanji, American Express & Carlos Panato, Mattermost
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate for its consumers. In this deep dive, we will examine how the Cluster API simplifies the cluster management experience for cluster operators by enabling consistent machine management across environments, and bringing declarative upgrades to Kubernetes clusters.
https://sched.co/ekGv
- 2 participants
- 21 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Cluster Reconciliation: Managing Resources Across Multiple Clusters - Vallery Lancey, Independent
Suppose your organization runs multiple Kubernetes clusters, as failure domains or distinct POPs. You have a service that you wish to run on some (or all) of the clusters. How will you run it on all (applicable) clusters? How will you roll updates gradually? How will you handle “snowflake” clusters that aren’t in the right state, or gracefully adding/removing clusters in the group? In this session, we will describe the challenges associated with reconciling Kubernetes objects from a source of truth to arbitrary clusters, and how to solve those challenges. Aside from challenges, we will discuss the tradeoffs that can be made, especially in domain-specific designs. Expect to walk away with a better understanding of the challenges involved in running multiple clusters, knowledge of existing tools and techniques, and an idea of how upstream developers approach the problem space.
https://sched.co/ekBn
Cluster Reconciliation: Managing Resources Across Multiple Clusters - Vallery Lancey, Independent
Suppose your organization runs multiple Kubernetes clusters, as failure domains or distinct POPs. You have a service that you wish to run on some (or all) of the clusters. How will you run it on all (applicable) clusters? How will you roll updates gradually? How will you handle “snowflake” clusters that aren’t in the right state, or gracefully adding/removing clusters in the group? In this session, we will describe the challenges associated with reconciling Kubernetes objects from a source of truth to arbitrary clusters, and how to solve those challenges. Aside from challenges, we will discuss the tradeoffs that can be made, especially in domain-specific designs. Expect to walk away with a better understanding of the challenges involved in running multiple clusters, knowledge of existing tools and techniques, and an idea of how upstream developers approach the problem space.
https://sched.co/ekBn
- 1 participant
- 33 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Codename VIFL - How to Migrate MySQL Database Clusters to Vitess - Guido Iaquinti & Rafael Chacon, Slack
Have you ever considered migrating a database system at scale with no downtime? Many of us that have tried, often find it an insurmountable challenge for both developers and database engineers. Most of the time, companies start these kinds of migrations and leave them half done. This creates significant toil and costs in operations teams that have to pay the cost of running both legacy and new systems indefinitely. In this talk, Rafael and Guido will discuss how they designed and built a migration framework and then executed it to move petabytes of data from Slack's legacy database architecture to Vitess with zero downtime. The approach proposed in this framework is transparent to the application and didn't require coordination with the rest of the engineering team. It is also general enough that people considering migrating to Vitess can leverage it in their own environments.
https://sched.co/ekF5
Codename VIFL - How to Migrate MySQL Database Clusters to Vitess - Guido Iaquinti & Rafael Chacon, Slack
Have you ever considered migrating a database system at scale with no downtime? Many of us that have tried, often find it an insurmountable challenge for both developers and database engineers. Most of the time, companies start these kinds of migrations and leave them half done. This creates significant toil and costs in operations teams that have to pay the cost of running both legacy and new systems indefinitely. In this talk, Rafael and Guido will discuss how they designed and built a migration framework and then executed it to move petabytes of data from Slack's legacy database architecture to Vitess with zero downtime. The approach proposed in this framework is transparent to the application and didn't require coordination with the rest of the engineering team. It is also general enough that people considering migrating to Vitess can leverage it in their own environments.
https://sched.co/ekF5
- 2 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Collaborative Leadership: Governance Beyond Company Affiliation - Dawn Foster, VMware
The unbridled success of Kubernetes can be attributed in part to being in the CNCF. Putting Kubernetes under a neutral foundation provided a level playing field where each of us could contribute, collaborate and innovate as equals to create a widely adopted solution that we can all use. With advantages that include community building, innovation, and wider adoption, we should consider contributing more of our open source projects to neutral foundations, like the CNCF. This talk will cover: * Challenges of giving up control and why it might be worth it * Selecting a foundation and how to determine neutrality * Creating a fair and neutral governance structure and processes for your project * Tips for contributing and maintaining your project The audience will get practical advice about whether they should contribute their projects to neutral foundations along with how and when to do it.
https://sched.co/ekBP
Collaborative Leadership: Governance Beyond Company Affiliation - Dawn Foster, VMware
The unbridled success of Kubernetes can be attributed in part to being in the CNCF. Putting Kubernetes under a neutral foundation provided a level playing field where each of us could contribute, collaborate and innovate as equals to create a widely adopted solution that we can all use. With advantages that include community building, innovation, and wider adoption, we should consider contributing more of our open source projects to neutral foundations, like the CNCF. This talk will cover: * Challenges of giving up control and why it might be worth it * Selecting a foundation and how to determine neutrality * Creating a fair and neutral governance structure and processes for your project * Tips for contributing and maintaining your project The audience will get practical advice about whether they should contribute their projects to neutral foundations along with how and when to do it.
https://sched.co/ekBP
- 1 participant
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Constructing Chaos Workflows with Argo and LitmusChaos - Umasankar Mukkara, MayaData & Sumit Nagal, Intuit
LitmusChaos is an open-source cloud-native Chaos Engineering framework for Kubernetes. It provides custom APIs (via CRDs) to orchestrate Chaos on your clusters while providing readily usable, off-the-shelf Chaos experiments via the ChaosHub. However, Litmus is also highly extensible and can orchestrate chaos experiments implemented using other tools in the ecosystem in its BYOC (Bring-Your-Own-Chaos) mode. In this talk, the Litmus maintainers, Sumit (Intuit) & Uma (MayaData), will discuss how Intuit, a CNCF end-user, uses Litmus to manage & orchestrate experiments implemented using ChaosToolkit in a completely cloud-native way. They will also discuss a powerful DevOps pattern from Intuit that combines Litmus with Argo for the creation of "chaos workflows" that uses the Litmus Operator to execute chaos while simulating other workload behavior (percentage load, for example) in parallel.
https://sched.co/ekDC
Constructing Chaos Workflows with Argo and LitmusChaos - Umasankar Mukkara, MayaData & Sumit Nagal, Intuit
LitmusChaos is an open-source cloud-native Chaos Engineering framework for Kubernetes. It provides custom APIs (via CRDs) to orchestrate Chaos on your clusters while providing readily usable, off-the-shelf Chaos experiments via the ChaosHub. However, Litmus is also highly extensible and can orchestrate chaos experiments implemented using other tools in the ecosystem in its BYOC (Bring-Your-Own-Chaos) mode. In this talk, the Litmus maintainers, Sumit (Intuit) & Uma (MayaData), will discuss how Intuit, a CNCF end-user, uses Litmus to manage & orchestrate experiments implemented using ChaosToolkit in a completely cloud-native way. They will also discuss a powerful DevOps pattern from Intuit that combines Litmus with Argo for the creation of "chaos workflows" that uses the Litmus Operator to execute chaos while simulating other workload behavior (percentage load, for example) in parallel.
https://sched.co/ekDC
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Contour, A High Performance Multitenant Ingress Controller for Kubernetes - MICHAEL MICHAEL, Steve Sloka, Nick Young, & James Peach, VMware
Contour, a CNCF incubating project, is a high performance ingress and load balancer solution for Kubernetes. Contour offers a richer feature set than some common alternatives while maintaining a lightweight profile. At its core, Contour is providing a control plane for the Envoy edge and service proxy. This session will show you how to leverage Contour and Envoy for Kubernetes workloads in a multi-tenant environment, demonstrate recent Contour features like authentication and preview our near term roadmap.
https://sched.co/ekGX
Contour, A High Performance Multitenant Ingress Controller for Kubernetes - MICHAEL MICHAEL, Steve Sloka, Nick Young, & James Peach, VMware
Contour, a CNCF incubating project, is a high performance ingress and load balancer solution for Kubernetes. Contour offers a richer feature set than some common alternatives while maintaining a lightweight profile. At its core, Contour is providing a control plane for the Envoy edge and service proxy. This session will show you how to leverage Contour and Envoy for Kubernetes workloads in a multi-tenant environment, demonstrate recent Contour features like authentication and preview our near term roadmap.
https://sched.co/ekGX
- 4 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Contributing to Kubernetes Conformance Coverage - Hippie Hacker & Caleb Woodbine, ii.coop
In this session we'll walk through the Certified Kubernetes program followed by a deep-dive into the tooling developed for identification, removal and prevention of gaps in certification test coverage. In the intro, we will cover the steps required to become a CNCF Certified Kubernetes provider. We will also deep dive into the APISnoop technologies supporting conformance, specifically: Identifying Gaps Closing Gaps (apisnoop audit sink + test writing w/ Preventing Gaps (release blocking w/Verifying cloud provider submissions
https://sched.co/ekHw
Contributing to Kubernetes Conformance Coverage - Hippie Hacker & Caleb Woodbine, ii.coop
In this session we'll walk through the Certified Kubernetes program followed by a deep-dive into the tooling developed for identification, removal and prevention of gaps in certification test coverage. In the intro, we will cover the steps required to become a CNCF Certified Kubernetes provider. We will also deep dive into the APISnoop technologies supporting conformance, specifically: Identifying Gaps Closing Gaps (apisnoop audit sink + test writing w/ Preventing Gaps (release blocking w/Verifying cloud provider submissions
https://sched.co/ekHw
- 2 participants
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Customizing OPA for a "Perfect Fit" Authorization Sidecar - Patrick East, Styra
The Open Policy Agent (OPA) has become widely used in the CNCF ecosystem and is a go-to option for application developers as the standardized decision engine for authorization. Many users rely on the existing integrations with Envoy/Istio, or the OPA REST API Server, but this doesn't always fit in an application cleanly. Common performance questions arise related to using the OPA HTTP API, plus management concerns around collecting decision logs, and requirements for integration with existing security infrastructure. Join Patrick East, an active OPA maintainer, to see how easy it is to use OPA's public Golang API's to create a tailored OPA binary with the following extensions: * Custom High Performance gRPC font-end API * Custom Kafka decision log plugin * Custom OAuth2 Rego builtin functions
https://sched.co/ekEV
Customizing OPA for a "Perfect Fit" Authorization Sidecar - Patrick East, Styra
The Open Policy Agent (OPA) has become widely used in the CNCF ecosystem and is a go-to option for application developers as the standardized decision engine for authorization. Many users rely on the existing integrations with Envoy/Istio, or the OPA REST API Server, but this doesn't always fit in an application cleanly. Common performance questions arise related to using the OPA HTTP API, plus management concerns around collecting decision logs, and requirements for integration with existing security infrastructure. Join Patrick East, an active OPA maintainer, to see how easy it is to use OPA's public Golang API's to create a tailored OPA binary with the following extensions: * Custom High Performance gRPC font-end API * Custom Kafka decision log plugin * Custom OAuth2 Rego builtin functions
https://sched.co/ekEV
- 2 participants
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Declarative Testing Clusters with KUTTL - Ken Sipe, D2iQ
The facts are the Kuttling releases a cocktail of hormones in our brains including dopamine, serotonin and oxytocin. It can lower your blood pressure and heart rate. Nothing raises your blood pressure more than software written for Kubernetes that isn't tested. The KUbernetes Test TooL (kuttl) is a tool for declarative testing of Kubernetes and Cloud Native software. kuttl empowers developers and end users to test operators, Helm charts, Kubernetes distributions, and Kubernetes itself. This session introduces attendees to testing kubernetes custom controllers using KUTTL with the expectation that all attendees already understand Kubernetes and operators. The session will include: * Testing in different environments; mocked, KinD and full stack clusters. * Test setup * Controller injecting * Asserting state goals Do yourself a favor... lets lower your blood pressure and KUTTL!
https://sched.co/ekAs
Declarative Testing Clusters with KUTTL - Ken Sipe, D2iQ
The facts are the Kuttling releases a cocktail of hormones in our brains including dopamine, serotonin and oxytocin. It can lower your blood pressure and heart rate. Nothing raises your blood pressure more than software written for Kubernetes that isn't tested. The KUbernetes Test TooL (kuttl) is a tool for declarative testing of Kubernetes and Cloud Native software. kuttl empowers developers and end users to test operators, Helm charts, Kubernetes distributions, and Kubernetes itself. This session introduces attendees to testing kubernetes custom controllers using KUTTL with the expectation that all attendees already understand Kubernetes and operators. The session will include: * Testing in different environments; mocked, KinD and full stack clusters. * Test setup * Controller injecting * Asserting state goals Do yourself a favor... lets lower your blood pressure and KUTTL!
https://sched.co/ekAs
- 3 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Design Patterns for Extendable, Scalable K8s Extensions - Max Smythe, Google & Rita Zhang, Microsoft
OPA Gatekeeper is a customizable Kubernetes admission webhook that helps enforce policies and strengthen governance. The Gatekeeper project is capable of dynamically creating, managing and destroying new custom resources which are used to customize the webhook. This unique model has led to some interesting design patterns. In this talk, Gatekeeper's maintainters explore the CRDs-that-create-CRDs and leaderless horizontal scalability design patterns that allowed us to create an extendable, scalable Kubernetes extension.
https://sched.co/ekBY
Design Patterns for Extendable, Scalable K8s Extensions - Max Smythe, Google & Rita Zhang, Microsoft
OPA Gatekeeper is a customizable Kubernetes admission webhook that helps enforce policies and strengthen governance. The Gatekeeper project is capable of dynamically creating, managing and destroying new custom resources which are used to customize the webhook. This unique model has led to some interesting design patterns. In this talk, Gatekeeper's maintainters explore the CRDs-that-create-CRDs and leaderless horizontal scalability design patterns that allowed us to create an extendable, scalable Kubernetes extension.
https://sched.co/ekBY
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
DevOps All the Things: Creating a Pipeline to Validate Your OPA Policies - Goran Osim & Karpagam Balan, Booz Allen Hamilton
Open Policy Agent is quickly becoming the de facto tool for applying configuration governance as code to your Kubernetes clusters. It can be challenging to understand how to optimize your workflows after finishing the getting started guide. This talk will focus on how to streamline the validation of your Rego policies using unit, mock, and integration testing to validate your OPA policy changes against your application manifests prior to applying these changes to production using OPA Gatekeeper. This talk will feature a live demo of using a combination of Rego unit tests, using your application’s Kubernetes manifests as input data to your OPA test suite, and using Terratest to perform end-to-end integration testing to apply your proposed policy changes to an ephemeral cluster orchestrated. Once validated, policy changes will be deployed using a GitOps strategy to a live cluster.
https://sched.co/ekEM
DevOps All the Things: Creating a Pipeline to Validate Your OPA Policies - Goran Osim & Karpagam Balan, Booz Allen Hamilton
Open Policy Agent is quickly becoming the de facto tool for applying configuration governance as code to your Kubernetes clusters. It can be challenging to understand how to optimize your workflows after finishing the getting started guide. This talk will focus on how to streamline the validation of your Rego policies using unit, mock, and integration testing to validate your OPA policy changes against your application manifests prior to applying these changes to production using OPA Gatekeeper. This talk will feature a live demo of using a combination of Rego unit tests, using your application’s Kubernetes manifests as input data to your OPA test suite, and using Terratest to perform end-to-end integration testing to apply your proposed policy changes to an ephemeral cluster orchestrated. Once validated, policy changes will be deployed using a GitOps strategy to a live cluster.
https://sched.co/ekEM
- 2 participants
- 18 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
DevOps Performance From a Different Dataset: What 30M Workflows Reveal - Michael Stahnke, CircleCI
What can we learn about DevOps best practices by looking at data from a SaaS with 900K dev users, 25K orgs and 30m+ builds a month, particularly when compared with surveys where users opt-in? Join CircleCI's VP of Platform, Mike Stahnke, to understand what this unique dataset uncovers about high performing engineering teams: - What trends stand out from the data? - Are they different than what is seen through surveys where responders opt-in to participating as compared to being aggregated through platform usage?
https://sched.co/ekB1
DevOps Performance From a Different Dataset: What 30M Workflows Reveal - Michael Stahnke, CircleCI
What can we learn about DevOps best practices by looking at data from a SaaS with 900K dev users, 25K orgs and 30m+ builds a month, particularly when compared with surveys where users opt-in? Join CircleCI's VP of Platform, Mike Stahnke, to understand what this unique dataset uncovers about high performing engineering teams: - What trends stand out from the data? - Are they different than what is seen through surveys where responders opt-in to participating as compared to being aggregated through platform usage?
https://sched.co/ekB1
- 1 participant
- 36 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Diversity + Inclusion Workshop: Removing Barriers to Innovation in Becoming a Better Ally, Sponsored by Amazon Web Services - Christopher Lafayette
As we find ourselves at a pivotal time in history where racial equality has never been more important, join national and international speaker Christopher Lafayette as he shares best practices toward removing barriers to innovation.
Join us for a workshop on sharing, expressing and learning new ideas for companies and individuals toward becoming better allies for underserved communities in technology.
Diversity + Inclusion Workshop: Removing Barriers to Innovation in Becoming a Better Ally, Sponsored by Amazon Web Services - Christopher Lafayette
As we find ourselves at a pivotal time in history where racial equality has never been more important, join national and international speaker Christopher Lafayette as he shares best practices toward removing barriers to innovation.
Join us for a workshop on sharing, expressing and learning new ideas for companies and individuals toward becoming better allies for underserved communities in technology.
- 1 participant
- 1:01 hours
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Dragonfly: Make Image Distribution Efficiently and Safely in Cloud Native - Yuxing Liu, Alibaba Cloud & Tao Peng, Ant Group
With the increasing scale of cloud native services in industry, how to distribute images efficiently is a new challenge for enterprises. Dragonfly is an intelligent P2P based container image distribution system which provides a native image distribution solution. In this session, we will cover the general Introduction to introduce you how dragonfly makes image delivery fast in data center. In addition, we have developed a new container image service that aims to provide more efficient way to deliver container images and address some outstanding issues of the current OCI image spec. We will dive into the new image service and show how it supplements to Dragonfly’s goal of making container image distribution fast and secure. Audiences will also learn the latest updates and what is next step in community.
https://sched.co/ekGa
Dragonfly: Make Image Distribution Efficiently and Safely in Cloud Native - Yuxing Liu, Alibaba Cloud & Tao Peng, Ant Group
With the increasing scale of cloud native services in industry, how to distribute images efficiently is a new challenge for enterprises. Dragonfly is an intelligent P2P based container image distribution system which provides a native image distribution solution. In this session, we will cover the general Introduction to introduce you how dragonfly makes image delivery fast in data center. In addition, we have developed a new container image service that aims to provide more efficient way to deliver container images and address some outstanding issues of the current OCI image spec. We will dive into the new image service and show how it supplements to Dragonfly’s goal of making container image distribution fast and secure. Audiences will also learn the latest updates and what is next step in community.
https://sched.co/ekGa
- 2 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Eating Your Vegetables: How to Manage 2.5 Million Lines of YAML - Daniel Thomson & Jesse Suen, Intuit
Configuration management, while overlooked and underappreciated, is a necessary component of a healthy Kubernetes diet. With over 200 clusters, 2500 git repositories, and 9000 namespaces, Intuit manages and deploys 2.5 million lines of Kubernetes configuration using GitOps. To handle this scale, over the years Intuit has experimented with different config management approaches including templating (Helm), overlays (Kustomize), codifying and abstracting (jsonnet, cdk8s), ultimately settling on Kustomize. Kustomize’s remote base capabilities allow our central team to define and distribute standard patterns and templates, while still allowing developers to overlay last-mile customizations on these templates. This session will explain our journey, hard lessons faced for managing YAML at scale, and where Intuit thinks the future of Kubernetes configuration management needs to head.
https://sched.co/ekAg
Eating Your Vegetables: How to Manage 2.5 Million Lines of YAML - Daniel Thomson & Jesse Suen, Intuit
Configuration management, while overlooked and underappreciated, is a necessary component of a healthy Kubernetes diet. With over 200 clusters, 2500 git repositories, and 9000 namespaces, Intuit manages and deploys 2.5 million lines of Kubernetes configuration using GitOps. To handle this scale, over the years Intuit has experimented with different config management approaches including templating (Helm), overlays (Kustomize), codifying and abstracting (jsonnet, cdk8s), ultimately settling on Kustomize. Kustomize’s remote base capabilities allow our central team to define and distribute standard patterns and templates, while still allowing developers to overlay last-mile customizations on these templates. This session will explain our journey, hard lessons faced for managing YAML at scale, and where Intuit thinks the future of Kubernetes configuration management needs to head.
https://sched.co/ekAg
- 2 participants
- 33 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Elastic Scheduling with TiKV - Song Gao & Yutong Liang, PingCAP
In the world of cloud computing, it is well-known that Elastic Scheduling can automatically balance the cost and load of stateless applications, but it is rare to see distributed database systems have the elastic scheduling feature as scaling is always not easy for the stateful system. Yutong Liang, Song Gao and their teammates implemented the Elastic Scheduling feature based on TiKV, a cloud-native, distributed Key-Value database , which helps TiKV automatically handle the burst of load and traffic. In this session, Yutong Liang and Song Gao will share their experience of implementing elastic scheduling in TiKV on Kubernetes and introduce the mechanism behind it.
https://sched.co/ekGd
Elastic Scheduling with TiKV - Song Gao & Yutong Liang, PingCAP
In the world of cloud computing, it is well-known that Elastic Scheduling can automatically balance the cost and load of stateless applications, but it is rare to see distributed database systems have the elastic scheduling feature as scaling is always not easy for the stateful system. Yutong Liang, Song Gao and their teammates implemented the Elastic Scheduling feature based on TiKV, a cloud-native, distributed Key-Value database , which helps TiKV automatically handle the burst of load and traffic. In this session, Yutong Liang and Song Gao will share their experience of implementing elastic scheduling in TiKV on Kubernetes and introduce the mechanism behind it.
https://sched.co/ekGd
- 2 participants
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
EmpowerUs: Uniting to Drive Tech Sector Growth through Diversity + Inclusion, Sponsored by ITRenew - Speakers: Ali Fenn, Dean Nelson, Amber Caramella, Parastoo Amin
Concerted efforts to build diversity and inclusion into the tech sector are essential. Different experiences, outlooks and perspectives make your entire workforce better at solving complex problems, managing risks and spotting opportunities. This kind of strength and resilience is needed more urgently than ever as rapidly industry growth creates critical talent gaps and shortages. Meeting this demand by increasing employee diversity and the number of women pursuing tech sector careers, investing in the education they need to prepare and succeed, and ensuring visibility and career advancement for those currently working in the industry is imperative.
Host Ali Fenn, president of ITRenew, will be joined by members of the iMasons organization, including Chairman and Founder Dean Nelson and Amber Carmella of IM Women, for a candid discussion on what it will take for tech companies to foster this approach to growth and culture of paying it forward. Ali will also share her experiences working toward a more diverse and sustainable digital future. The panel will be followed by an interactive session where you’ll have a chance to comment, debate and discuss with panelists and peers.
https://sched.co/fX7U
EmpowerUs: Uniting to Drive Tech Sector Growth through Diversity + Inclusion, Sponsored by ITRenew - Speakers: Ali Fenn, Dean Nelson, Amber Caramella, Parastoo Amin
Concerted efforts to build diversity and inclusion into the tech sector are essential. Different experiences, outlooks and perspectives make your entire workforce better at solving complex problems, managing risks and spotting opportunities. This kind of strength and resilience is needed more urgently than ever as rapidly industry growth creates critical talent gaps and shortages. Meeting this demand by increasing employee diversity and the number of women pursuing tech sector careers, investing in the education they need to prepare and succeed, and ensuring visibility and career advancement for those currently working in the industry is imperative.
Host Ali Fenn, president of ITRenew, will be joined by members of the iMasons organization, including Chairman and Founder Dean Nelson and Amber Carmella of IM Women, for a candid discussion on what it will take for tech companies to foster this approach to growth and culture of paying it forward. Ali will also share her experiences working toward a more diverse and sustainable digital future. The panel will be followed by an interactive session where you’ll have a chance to comment, debate and discuss with panelists and peers.
https://sched.co/fX7U
- 5 participants
- 41 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Empowering Cloud Native Networking with Arm Ecosystem - Trevor Tao & HanYu Ding, Arm
Arm ecosystem is becoming much more popular in cloud native applications than ever before with its increasing wide use. Arm devotes to be a cloud native vendor and puts much resources to enable related projects on its platform. In the presentation, the following key takeaways would be given but not limit to, which would exhibits our work on cloud native projects, especially for networking: 1. The reference cloud native reference stack, use cases and its supporting technologies on arm; 2. The enabled K8s networking solutions and service mesh for arm64 platform: Cilium, OVN-k8s, Envoy etc; 3. Senior features when meeting multi-interface requirements with SRIOV/DPDK by Multus/SRIOV CNI; 4. Performance evaluation and bottleneck fixing with the typical tunnel solutions(IPIP) used by most CNIs on arm with respect to x86; 5. Our exact contributions to the related OSS projects and future work
https://sched.co/ekA0
Empowering Cloud Native Networking with Arm Ecosystem - Trevor Tao & HanYu Ding, Arm
Arm ecosystem is becoming much more popular in cloud native applications than ever before with its increasing wide use. Arm devotes to be a cloud native vendor and puts much resources to enable related projects on its platform. In the presentation, the following key takeaways would be given but not limit to, which would exhibits our work on cloud native projects, especially for networking: 1. The reference cloud native reference stack, use cases and its supporting technologies on arm; 2. The enabled K8s networking solutions and service mesh for arm64 platform: Cilium, OVN-k8s, Envoy etc; 3. Senior features when meeting multi-interface requirements with SRIOV/DPDK by Multus/SRIOV CNI; 4. Performance evaluation and bottleneck fixing with the typical tunnel solutions(IPIP) used by most CNIs on arm with respect to x86; 5. Our exact contributions to the related OSS projects and future work
https://sched.co/ekA0
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Panel: End User Panel: GITOPS in the Enterprise -Real World Experiences - Cheryl Hung, Cloud Native Computing Foundation; Fabio Giannetti, Mastercard; Matt Young, EverQuote Inc.; & Amr Abdelhalem, Fidelity Investments
This panel brings together engineers from the CNCF End User Community to provide their insights on the journey their respective companies have undergone in their transformation to Cloud Native. Each End User member company will discuss their Cloud Native principles and what has worked along with what has not worked. Topics will include operating GITOPS in real world practice, developer experience (CI & CD), CNCF projects evaluated and implemented, and vendor management along with the lessons learned along the journey.
https://sched.co/ekB7
Panel: End User Panel: GITOPS in the Enterprise -Real World Experiences - Cheryl Hung, Cloud Native Computing Foundation; Fabio Giannetti, Mastercard; Matt Young, EverQuote Inc.; & Amr Abdelhalem, Fidelity Investments
This panel brings together engineers from the CNCF End User Community to provide their insights on the journey their respective companies have undergone in their transformation to Cloud Native. Each End User member company will discuss their Cloud Native principles and what has worked along with what has not worked. Topics will include operating GITOPS in real world practice, developer experience (CI & CD), CNCF projects evaluated and implemented, and vendor management along with the lessons learned along the journey.
https://sched.co/ekB7
- 4 participants
- 38 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Enhancing K8s Networking with SmartNICs - Dave Cremins, Intel
As more workloads like IoT, big data and machine learning move towards the edge, it becomes critical that networks continue to advance. Low latency, performance and higher throughput become prerequisites to ensure that the edge is a viable location for heavy duty applications. There is a growing trend of building new K8s clusters on bare-metal infrastructure, eliminating the need to deploy hypervisors for hardware abstraction. Better performance at scale can be attributed to K8s enhancements in resource management and accelerated networking. SmartNICs bring further opportunities for packet processing. By offloading more operations to the NIC, we free up resources on the host enabling us to further accelerate the processing capabilities of the entire platform. With these offloads, edge computing can reach its full potential and become a desired choice for high-performance workloads.
https://sched.co/ekCf
Enhancing K8s Networking with SmartNICs - Dave Cremins, Intel
As more workloads like IoT, big data and machine learning move towards the edge, it becomes critical that networks continue to advance. Low latency, performance and higher throughput become prerequisites to ensure that the edge is a viable location for heavy duty applications. There is a growing trend of building new K8s clusters on bare-metal infrastructure, eliminating the need to deploy hypervisors for hardware abstraction. Better performance at scale can be attributed to K8s enhancements in resource management and accelerated networking. SmartNICs bring further opportunities for packet processing. By offloading more operations to the NIC, we free up resources on the host enabling us to further accelerate the processing capabilities of the entire platform. With these offloads, edge computing can reach its full potential and become a desired choice for high-performance workloads.
https://sched.co/ekCf
- 1 participant
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Enhancing the Kubernetes Scheduler for Diverse Workloads in Large Clusters - Yuan Chen & Yan Xu, Apple
As a wide diversity of workloads are being deployed in Kubernetes, the default scheduler has become insufficient in the light of scheduling performance and functionality. In this talk, Yuan Chen and Yan Xu will present their experience and results of leveraging the Kubernetes scheduling framework and developing new plugins to create a custom scheduler. The scheduler can meet different scheduling needs of diverse workloads in large scale clusters, from stateless to stateful services, big data jobs and machine learning applications. They will deep dive into (1) the design and implementation of the scheduling plugins for performance optimization, custom pod placement and group scheduling, and (2) the use of plugins and scheduling profiles to achieve a better balance between scheduling performance and quality. New features and enhancements of the scheduling framework will also be discussed.
https://sched.co/ekBk
Enhancing the Kubernetes Scheduler for Diverse Workloads in Large Clusters - Yuan Chen & Yan Xu, Apple
As a wide diversity of workloads are being deployed in Kubernetes, the default scheduler has become insufficient in the light of scheduling performance and functionality. In this talk, Yuan Chen and Yan Xu will present their experience and results of leveraging the Kubernetes scheduling framework and developing new plugins to create a custom scheduler. The scheduler can meet different scheduling needs of diverse workloads in large scale clusters, from stateless to stateful services, big data jobs and machine learning applications. They will deep dive into (1) the design and implementation of the scheduling plugins for performance optimization, custom pod placement and group scheduling, and (2) the use of plugins and scheduling profiles to achieve a better balance between scheduling performance and quality. New features and enhancements of the scheduling framework will also be discussed.
https://sched.co/ekBk
- 1 participant
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Envoy Q&A - Matt Klein, Lyft & Harvey Tuch, Google
Come meet the Envoy maintainers for a small intro to Envoy as well as an open Q&A!
Envoy Q&A - Matt Klein, Lyft & Harvey Tuch, Google
Come meet the Envoy maintainers for a small intro to Envoy as well as an open Q&A!
- 2 participants
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Everything You Should Be Doing, But Aren’t: DevSecOps for K8s Workflows - Steven Terrana, Booz Allen Hamilton & Dan (POP) Papandrea, Sysdig
Steven and Pop will describe a defense-in-depth approach to secure production workloads running on Kubernetes. We’ll show a live demonstration of using CNCF projects like Helm, OPA, Falco, and Argo to secure Kubernetes clusters. With a secure cluster, they will then show you how to leverage DevSecOps principles to incorporate security into every step of the software development lifecycle and how to scale your CI/CD pipelines using the open source Jenkins Template Engine. This talk is the result of lessons learned supporting multiple horizontals of end users, including FinTech and modern Federal software delivery. Specifically, attendees will walk away with actionable plans for how to implement: - Application Security - Configuration Management Policies - Runtime Threat Detection - Governance as Code - Post-mortem Forensics
https://sched.co/ekFo
Everything You Should Be Doing, But Aren’t: DevSecOps for K8s Workflows - Steven Terrana, Booz Allen Hamilton & Dan (POP) Papandrea, Sysdig
Steven and Pop will describe a defense-in-depth approach to secure production workloads running on Kubernetes. We’ll show a live demonstration of using CNCF projects like Helm, OPA, Falco, and Argo to secure Kubernetes clusters. With a secure cluster, they will then show you how to leverage DevSecOps principles to incorporate security into every step of the software development lifecycle and how to scale your CI/CD pipelines using the open source Jenkins Template Engine. This talk is the result of lessons learned supporting multiple horizontals of end users, including FinTech and modern Federal software delivery. Specifically, attendees will walk away with actionable plans for how to implement: - Application Security - Configuration Management Policies - Runtime Threat Detection - Governance as Code - Post-mortem Forensics
https://sched.co/ekFo
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Evolution of Metric Monitoring and Alerting: Upgrade Your Prometheus Today - Bartlomiej Płotka, Red Hat, Björn Rabenstein & Richard Hartmann, Grafana Labs, & Julius Volz, PromLabs
Infrastructure metric monitoring is constantly evolving. Similarly, Prometheus, the most adopted observability tool in the CNCF ecosystem, is under active development and constantly growing. Every release brings something new or improves existing features to help increase the reliability and debuggability of modern clouds. But Prometheus is not about a single project anymore. There’s an ever-growing Prometheus Ecosystem, including Alertmanager, tons of exporters, standards, client libraries, and long term storage projects, enabling the best and truly cloud-native observability story for you. In the first part, Prometheus Maintainers will introduce you to the universe of reliable monitoring and alerting with metrics via Prometheus with specific and actionable examples. After that, we will make sure more experienced users can learn as well, by explaining the advanced usage patterns of the Prometheus and new, useful features available in the newest versions.
https://sched.co/ekHn
Evolution of Metric Monitoring and Alerting: Upgrade Your Prometheus Today - Bartlomiej Płotka, Red Hat, Björn Rabenstein & Richard Hartmann, Grafana Labs, & Julius Volz, PromLabs
Infrastructure metric monitoring is constantly evolving. Similarly, Prometheus, the most adopted observability tool in the CNCF ecosystem, is under active development and constantly growing. Every release brings something new or improves existing features to help increase the reliability and debuggability of modern clouds. But Prometheus is not about a single project anymore. There’s an ever-growing Prometheus Ecosystem, including Alertmanager, tons of exporters, standards, client libraries, and long term storage projects, enabling the best and truly cloud-native observability story for you. In the first part, Prometheus Maintainers will introduce you to the universe of reliable monitoring and alerting with metrics via Prometheus with specific and actionable examples. After that, we will make sure more experienced users can learn as well, by explaining the advanced usage patterns of the Prometheus and new, useful features available in the newest versions.
https://sched.co/ekHn
- 5 participants
- 31 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Extending Service Mesh to the Edge - Stephen Wong, OPNFV Clover
The advent of edge computing has led to the trend of splitting applications into edge and cloud components, which makes service mesh a great fit to enable unified application network policies for inter-container communications, regardless of where individual microservice is deployed. However, service mesh projects such as Istio are mostly designed for large scale deployment, and some features, such as per pod sidecar, may be ill-suited for inherently more resource constrained edge. And optimizing the use of WAN connection is mostly missing. The talk centers on Clovisor, a project aimed to extend service mesh to the edge. By utilizing eBPF, SDWAN, and Envoy, Clovisor performs functions such as translating service mesh app network policies to edge/cloud network policies, redirecting traffic to proxy on edge, classifying and mapping application flows to WAN connectivity tunnels.
https://sched.co/ekF2
Extending Service Mesh to the Edge - Stephen Wong, OPNFV Clover
The advent of edge computing has led to the trend of splitting applications into edge and cloud components, which makes service mesh a great fit to enable unified application network policies for inter-container communications, regardless of where individual microservice is deployed. However, service mesh projects such as Istio are mostly designed for large scale deployment, and some features, such as per pod sidecar, may be ill-suited for inherently more resource constrained edge. And optimizing the use of WAN connection is mostly missing. The talk centers on Clovisor, a project aimed to extend service mesh to the edge. By utilizing eBPF, SDWAN, and Envoy, Clovisor performs functions such as translating service mesh app network policies to edge/cloud network policies, redirecting traffic to proxy on edge, classifying and mapping application flows to WAN connectivity tunnels.
https://sched.co/ekF2
- 1 participant
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Five Hundred Twenty-five Thousand Six Hundred K8s CLI’s - Phillip Wittrock & Gabbi Fisher, Apple
With the success of the Kubernetes ecosystem, users now have a many choices when it comes to Kubernetes tools. While it's great for users to have options, lots of choices can make it difficult for Kubernetes users to make decisions or know where to start. Additionally, organizations may use several different tools internally that users must familiarize themselves with. A high-level understanding of the this ecosystem is necessary to easily navigate the world of Kubernetes. Gabbi and Phillip will provide an overview of well-known and up-and-coming Kubernetes CLIs. They will then explore the broader architectures used by these tools, and finally how users should think about their own tools they are building. CLI’s covered include kubectl, helm, kustomize, k/jsonnet, kpt, cue and k14s . CLI patterns covered include templating, DSLs, OpenAPI / schema and configuration functions.
https://sched.co/ek9o
Five Hundred Twenty-five Thousand Six Hundred K8s CLI’s - Phillip Wittrock & Gabbi Fisher, Apple
With the success of the Kubernetes ecosystem, users now have a many choices when it comes to Kubernetes tools. While it's great for users to have options, lots of choices can make it difficult for Kubernetes users to make decisions or know where to start. Additionally, organizations may use several different tools internally that users must familiarize themselves with. A high-level understanding of the this ecosystem is necessary to easily navigate the world of Kubernetes. Gabbi and Phillip will provide an overview of well-known and up-and-coming Kubernetes CLIs. They will then explore the broader architectures used by these tools, and finally how users should think about their own tools they are building. CLI’s covered include kubectl, helm, kustomize, k/jsonnet, kpt, cue and k14s . CLI patterns covered include templating, DSLs, OpenAPI / schema and configuration functions.
https://sched.co/ek9o
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Getting Started with Jaeger - Joe Elliott, Grafana Labs
Jaeger is the most popular open source distributed tracing system in the world and, as such, often comes with people asking how to bootstrap their first cluster. If you are interested in getting started with Jaeger join us in this lightning talk where we will cover the basics of Jaeger architecture, installation and configuration in a Kubernetes cluster. We will also review the major components of Jaeger and their responsibilities, backend options, and various considerations for building your first production cluster. Additionally, key Jaeger specific metrics will be covered and other operational concerns.
https://sched.co/fGW8
Getting Started with Jaeger - Joe Elliott, Grafana Labs
Jaeger is the most popular open source distributed tracing system in the world and, as such, often comes with people asking how to bootstrap their first cluster. If you are interested in getting started with Jaeger join us in this lightning talk where we will cover the basics of Jaeger architecture, installation and configuration in a Kubernetes cluster. We will also review the major components of Jaeger and their responsibilities, backend options, and various considerations for building your first production cluster. Additionally, key Jaeger specific metrics will be covered and other operational concerns.
https://sched.co/fGW8
- 1 participant
- 16 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
GitOps Is Likely More Than You Think It Is - Cornelia Davis, Weaveworks
While the term “GitOps” has achieved almost mainstream use, confusion remains around what it is and the benefits it can bring. True, it involves continuous delivery (CD), but the way delivery is achieved as well as how CD interacts with workload operations, that is where GitOps gets really interesting. True, part of GitOps is leveraging Git abstractions like branches, pull requests and approval flows to manage the operational process, but GitOps is far more than the last step of CI. Instead it is about leveraging the most fundamental element of Kubernetes, reconciliation, both for CD and to link CD with the reconcilers that are automating workload operations. In this session Cornelia will cover the four key principles of GitOps, and she’ll demo those concepts with specific tools including Flux. She’ll also talk about use cases including cluster-api (CAPI).
https://sched.co/ekBA
GitOps Is Likely More Than You Think It Is - Cornelia Davis, Weaveworks
While the term “GitOps” has achieved almost mainstream use, confusion remains around what it is and the benefits it can bring. True, it involves continuous delivery (CD), but the way delivery is achieved as well as how CD interacts with workload operations, that is where GitOps gets really interesting. True, part of GitOps is leveraging Git abstractions like branches, pull requests and approval flows to manage the operational process, but GitOps is far more than the last step of CI. Instead it is about leveraging the most fundamental element of Kubernetes, reconciliation, both for CD and to link CD with the reconcilers that are automating workload operations. In this session Cornelia will cover the four key principles of GitOps, and she’ll demo those concepts with specific tools including Flux. She’ll also talk about use cases including cluster-api (CAPI).
https://sched.co/ekBA
- 1 participant
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Hands-On Stateful Serverless Applications with K8s and Stateful Functions - Seth Wiesman, Ververica
Stateful Functions (https://statefun.io/) is a framework that makes it simple to build consistent stateful serverless applications. StateFun is designed to work with popular event-driven FaaS platforms like AWS Lambda, KNative, etc., and provides out-of-the-box consistent state and reliable messaging to FaaS platforms, in a way that preserves the serverless experience and elasticity of these platforms. Stateful Functions is not a library that proxies state access to a database, but an independent event-driven stack replacing the traditional database. The talk will take the audience step-by-step through building and deploying a Stateful Functions application that tracks user events and runs a stateful ML classifier.
https://sched.co/ekEk
Hands-On Stateful Serverless Applications with K8s and Stateful Functions - Seth Wiesman, Ververica
Stateful Functions (https://statefun.io/) is a framework that makes it simple to build consistent stateful serverless applications. StateFun is designed to work with popular event-driven FaaS platforms like AWS Lambda, KNative, etc., and provides out-of-the-box consistent state and reliable messaging to FaaS platforms, in a way that preserves the serverless experience and elasticity of these platforms. Stateful Functions is not a library that proxies state access to a database, but an independent event-driven stack replacing the traditional database. The talk will take the audience step-by-step through building and deploying a Stateful Functions application that tracks user events and runs a stateful ML classifier.
https://sched.co/ekEk
- 1 participant
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Harbor- Enterprise Cloud Native Artifact Registry - Steven Zou, Daniel Jiang, Alex Xu, & Steven Ren, VMware
Project Harbor is an open-source trusted cloud native registry project that stores, manages, signs, and scans content, thus resolving the management and distribution challenges of container image, Helm Chart, CNAB or other OCI compatible artifacts. In this presentation, the speakers will review and provide solutions to the challenges faced by organizations, including RBAC, content replication, vulnerability scanning, large scale content distribution, content trust (notary), webhook, tag retention, non-blocking GC, proxy cache and user defined artifact support etc.. Furthermore, the speakers are also going to share the future roadmap and challenges of Harbor including but not limited to K8s operator for Harbor, improvements of windows containers support, observability, networking(IPV6), backup & restore, and IAM&RBAC enhancements etc.. More importantly, the speakers would love to get feedback from Harbor users, contributors and partners to the current features and future roadmap.
https://sched.co/ekI5
Harbor- Enterprise Cloud Native Artifact Registry - Steven Zou, Daniel Jiang, Alex Xu, & Steven Ren, VMware
Project Harbor is an open-source trusted cloud native registry project that stores, manages, signs, and scans content, thus resolving the management and distribution challenges of container image, Helm Chart, CNAB or other OCI compatible artifacts. In this presentation, the speakers will review and provide solutions to the challenges faced by organizations, including RBAC, content replication, vulnerability scanning, large scale content distribution, content trust (notary), webhook, tag retention, non-blocking GC, proxy cache and user defined artifact support etc.. Furthermore, the speakers are also going to share the future roadmap and challenges of Harbor including but not limited to K8s operator for Harbor, improvements of windows containers support, observability, networking(IPV6), backup & restore, and IAM&RBAC enhancements etc.. More importantly, the speakers would love to get feedback from Harbor users, contributors and partners to the current features and future roadmap.
https://sched.co/ekI5
- 3 participants
- 31 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Having Cloud Native Fun with HonkCTL - Jeffrey Sica, Red Hat
In the last year, geese have come to symbolize a harbinger of chaos in the technical community. Many have taken this opportunity to post many GIFs and make many jokes. One of the jokes, is a Kubernetes-based CTF game called honkCTL. This talk will outline why having fun benefits communities, where HonkCTL came from, and will spin up a HonkCTL instance that mischievous cloud-native fowls can play at home. Included in this talk will also be a sneak peek at the next game being cooked up at HonkCI Laboratories.
https://sched.co/ekBS
Having Cloud Native Fun with HonkCTL - Jeffrey Sica, Red Hat
In the last year, geese have come to symbolize a harbinger of chaos in the technical community. Many have taken this opportunity to post many GIFs and make many jokes. One of the jokes, is a Kubernetes-based CTF game called honkCTL. This talk will outline why having fun benefits communities, where HonkCTL came from, and will spin up a HonkCTL instance that mischievous cloud-native fowls can play at home. Included in this talk will also be a sneak peek at the next game being cooked up at HonkCI Laboratories.
https://sched.co/ekBS
- 1 participant
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Helm: Past, Present, Future - Matt Butcher & Bridget Kromhout, Microsoft, & Matt Farina, Rancher Labs
What will Helm 4 look like? To get there, we need to go back to the beginning. In this talk, we cover the history of the Helm project from its early hackathon days through the tumultuous refactorings as Helm worked its way to becoming a graduated CNCF project. There were good times. There were rough times. And throughout, we had to continually ask ourselves what exactly we were trying to build. In the aftermath of Helm 3, we have reached new levels of clarity about where we want to go, and how we want to build a tool that continues to serve the needs of the Kubernetes community.
https://sched.co/ekHz
Helm: Past, Present, Future - Matt Butcher & Bridget Kromhout, Microsoft, & Matt Farina, Rancher Labs
What will Helm 4 look like? To get there, we need to go back to the beginning. In this talk, we cover the history of the Helm project from its early hackathon days through the tumultuous refactorings as Helm worked its way to becoming a graduated CNCF project. There were good times. There were rough times. And throughout, we had to continually ask ourselves what exactly we were trying to build. In the aftermath of Helm 3, we have reached new levels of clarity about where we want to go, and how we want to build a tool that continues to serve the needs of the Kubernetes community.
https://sched.co/ekHz
- 3 participants
- 35 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
High Performance KubeVirt in Action - Huamin Chen, Red Hat & Marcin Franczyk, Kubermatic
This talk details a real world solution design of a high performance KubeVirt for running mission critical enterprise workload. KubeVirt brings Cloud Native Virtual Machine management to Kubernetes. It unifies workload orchestration across Containers, Virtual Machine, as well as Serverless. Solution designs around KubeVirt, however, are sparse as of date, especially in networking and storage. On the other hand, workloads running on Virtual Machines often demand high performance and isolation enhancement. In this talk, Red Hat and Kubermatic jointly share with the community their customer engagement experiences of building a high performance KubeVirt environment by integrating with Gardener and multiple CNCF projects, including Kubernetes, KubeVirt, Rook, and Kubernetes Network Plumbing Working Group.
https://sched.co/ekDs
High Performance KubeVirt in Action - Huamin Chen, Red Hat & Marcin Franczyk, Kubermatic
This talk details a real world solution design of a high performance KubeVirt for running mission critical enterprise workload. KubeVirt brings Cloud Native Virtual Machine management to Kubernetes. It unifies workload orchestration across Containers, Virtual Machine, as well as Serverless. Solution designs around KubeVirt, however, are sparse as of date, especially in networking and storage. On the other hand, workloads running on Virtual Machines often demand high performance and isolation enhancement. In this talk, Red Hat and Kubermatic jointly share with the community their customer engagement experiences of building a high performance KubeVirt environment by integrating with Gardener and multiple CNCF projects, including Kubernetes, KubeVirt, Rook, and Kubernetes Network Plumbing Working Group.
https://sched.co/ekDs
- 2 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
High Performance Networking for Distributed DL Training in Production K8s - Nivedita Viswanath & Vatsan Kasturi, NVIDIA
Distributed DL training requires high performance networks connecting tens, hundreds, or for certain natural language processing models, even thousands of GPUs. Running these workloads on Kubernetes clusters of GPU enhanced servers requires careful engineering to avoid bottlenecks at NIC and switching fabric that act as interconnect between nodes. In this presentation we will describe the design and architecture of a 800 GPU cluster interconnected over RoCE fabric to achieve line rate performance between communicating containers in a multi-node job. Some of the topics we will cover are scalable cookie-cutter POD design for DC, low latency one hop network design that enables NCCL rings to avoid output port congestion and K8s integration with a multi-homed network for optimal GPU utilization. We will share performance numbers for training workloads from our production clusters.
https://sched.co/ekBq
High Performance Networking for Distributed DL Training in Production K8s - Nivedita Viswanath & Vatsan Kasturi, NVIDIA
Distributed DL training requires high performance networks connecting tens, hundreds, or for certain natural language processing models, even thousands of GPUs. Running these workloads on Kubernetes clusters of GPU enhanced servers requires careful engineering to avoid bottlenecks at NIC and switching fabric that act as interconnect between nodes. In this presentation we will describe the design and architecture of a 800 GPU cluster interconnected over RoCE fabric to achieve line rate performance between communicating containers in a multi-node job. Some of the topics we will cover are scalable cookie-cutter POD design for DC, low latency one hop network design that enables NCCL rings to avoid output port congestion and K8s integration with a multi-homed network for optimal GPU utilization. We will share performance numbers for training workloads from our production clusters.
https://sched.co/ekBq
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
How H-E-B Curbside Adopted Linkerd During a Pandemic - Justin Turner & Garrett Griffin, H-E-B
In early 2020 HEB was rated as the #1 grocery retailer in the country in a consumer survey run by Dunnnhumby. As shelter in place orders were implemented as COVID-19 spread across the world, H-E-B Curbside & Delivery became a critical resource for Texans. The HEB Digital Fulfillment team had already been hard at work building features for their legacy monolithic application and, at the same time, migrating workloads to Kubernetes. The team needed to accelerate the completion of their new services to ensure healthy and reliable H-E-B fulfillment capabilities, as well as build confidence for rolling these services out to Curbside locations by using Linkerd metrics. In this presentation, members of the HEB team will describe how they use Linkerd to secure, scale, and monitor their microservices applications to deliver high quality service as traffic increases across their site
https://sched.co/ekEw
How H-E-B Curbside Adopted Linkerd During a Pandemic - Justin Turner & Garrett Griffin, H-E-B
In early 2020 HEB was rated as the #1 grocery retailer in the country in a consumer survey run by Dunnnhumby. As shelter in place orders were implemented as COVID-19 spread across the world, H-E-B Curbside & Delivery became a critical resource for Texans. The HEB Digital Fulfillment team had already been hard at work building features for their legacy monolithic application and, at the same time, migrating workloads to Kubernetes. The team needed to accelerate the completion of their new services to ensure healthy and reliable H-E-B fulfillment capabilities, as well as build confidence for rolling these services out to Curbside locations by using Linkerd metrics. In this presentation, members of the HEB team will describe how they use Linkerd to secure, scale, and monitor their microservices applications to deliver high quality service as traffic increases across their site
https://sched.co/ekEw
- 2 participants
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
How the OOM-Killer Deleted My Namespace, and Other Kubernetes Tales - Laurent Bernaille, Datadog
Running Kubernetes at scale is challenging and you can often end up in situations where you have to debug complex and unexpected issues. This requires understanding in detail how the different components work and interact with each other. Over the last 3 years, Datadog migrated most of its workloads to Kubernetes and now manages dozens of clusters consisting of thousands of nodes each. During this journey, engineers have debugged complex issues with root causes that were sometimes very surprising. In this talk Laurent and Tabitha will share some of these stories, including a favorite: how a complex interaction between familiar Kubernetes components allowed an OOM-killer invocation to trigger the deletion of a namespace.
https://sched.co/ekDO
How the OOM-Killer Deleted My Namespace, and Other Kubernetes Tales - Laurent Bernaille, Datadog
Running Kubernetes at scale is challenging and you can often end up in situations where you have to debug complex and unexpected issues. This requires understanding in detail how the different components work and interact with each other. Over the last 3 years, Datadog migrated most of its workloads to Kubernetes and now manages dozens of clusters consisting of thousands of nodes each. During this journey, engineers have debugged complex issues with root causes that were sometimes very surprising. In this talk Laurent and Tabitha will share some of these stories, including a favorite: how a complex interaction between familiar Kubernetes components allowed an OOM-killer invocation to trigger the deletion of a namespace.
https://sched.co/ekDO
- 1 participant
- 31 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
How to Build a Cloud Native Image Recognition Solution - Rolando Carrasco, SPS & Akshai Parthasarathy, Oracle
Fn Project is an open source project for serverless functions. We want to share how we used Fn, AutoML Natural Language Processing, and K8s to improve older Optical Character Recognition (OCR) technology. The resulting image recognition application has been extensively tested at a bank in Mexico. Unlike older OCR tech, the new application does not use pre-defined markers such as “name,” “phone number,” or “address” to extract information. Instead, it works by recognizing these fields using machine learning – even if the ML model has not been trained with a document/picture of that type. The audience will learn how to create and scale serverless functions and Kubernetes. In addition, we will demonstrate how to leverage AutoML to read documents/pictures from any source, classify and extract fields of interest using a pre-trained ML model, store information to a NoSQL database.
https://sched.co/ekBw
How to Build a Cloud Native Image Recognition Solution - Rolando Carrasco, SPS & Akshai Parthasarathy, Oracle
Fn Project is an open source project for serverless functions. We want to share how we used Fn, AutoML Natural Language Processing, and K8s to improve older Optical Character Recognition (OCR) technology. The resulting image recognition application has been extensively tested at a bank in Mexico. Unlike older OCR tech, the new application does not use pre-defined markers such as “name,” “phone number,” or “address” to extract information. Instead, it works by recognizing these fields using machine learning – even if the ML model has not been trained with a document/picture of that type. The audience will learn how to create and scale serverless functions and Kubernetes. In addition, we will demonstrate how to leverage AutoML to read documents/pictures from any source, classify and extract fields of interest using a pre-trained ML model, store information to a NoSQL database.
https://sched.co/ekBw
- 2 participants
- 36 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
How to Effectively Manage Kubernetes in a Regulated Environment - Darien Ford, Capital One
Kubernetes plays an important role when scaling containerized applications in a highly regulated environment. Capital One understands this first hand, as they will complete a multi-year journey to exit on-prem data centers this year and move to the public cloud. As large enterprises look to shift to cloud architecture, Darien Ford will explain how Kubernetes container orchestration accelerates a safe and effective shift to cloud architecture with both developer experience and enterprise requirements in mind. As network boundaries broaden, he will cover ways container orchestration can help introduce workloads to the cloud while managing application development, testing, deployment and, of course, governance and policy compliance.
https://sched.co/ekAI
How to Effectively Manage Kubernetes in a Regulated Environment - Darien Ford, Capital One
Kubernetes plays an important role when scaling containerized applications in a highly regulated environment. Capital One understands this first hand, as they will complete a multi-year journey to exit on-prem data centers this year and move to the public cloud. As large enterprises look to shift to cloud architecture, Darien Ford will explain how Kubernetes container orchestration accelerates a safe and effective shift to cloud architecture with both developer experience and enterprise requirements in mind. As network boundaries broaden, he will cover ways container orchestration can help introduce workloads to the cloud while managing application development, testing, deployment and, of course, governance and policy compliance.
https://sched.co/ekAI
- 1 participant
- 12 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
How to Multiply the Power of Argo Projects By Using Them Together - Hong Wang & Alexander Matyushentsev, Intuit
The Argo Project contains three big software components: a GitOps continuous application delivery platform, a cloud-native workflow engine and an advanced deployment controller. All projects are evolving rapidly and have received a lot of new features in recent months. In this session, we are going to provide an update about project progression and demonstrate how to get even more out of Argo by using the projects together. You will see how Argo CD can declaratively define and manage powerful batch processing pipe powered by Argo Workflows and Argo Events. At the end of the session, we are going to talk about where we think GitOps future is heading and demonstrate how GitOps engine is leveraged outside of Argo CD.
https://sched.co/ekGL
How to Multiply the Power of Argo Projects By Using Them Together - Hong Wang & Alexander Matyushentsev, Intuit
The Argo Project contains three big software components: a GitOps continuous application delivery platform, a cloud-native workflow engine and an advanced deployment controller. All projects are evolving rapidly and have received a lot of new features in recent months. In this session, we are going to provide an update about project progression and demonstrate how to get even more out of Argo by using the projects together. You will see how Argo CD can declaratively define and manage powerful batch processing pipe powered by Argo Workflows and Argo Events. At the end of the session, we are going to talk about where we think GitOps future is heading and demonstrate how GitOps engine is leveraged outside of Argo CD.
https://sched.co/ekGL
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Image-Builder Deep Dive - Moshe Immerman, Flanksource & Tushar Aggarwal, VMware
Image-builder is a subproject of SIG Cluster Lifecycle that was created with idea to host a number of different utilities for creating virtual machine images. It has the following goals: 1) To build images for Kubernetes-conformant clusters in a consistent way across infrastructures, providers, and business needs. 2) To provide assurances in the binaries and configuration in images for purposes of security auditing and operational stability 3) To ensure that the creation of images is performed via well defined phases. Where users could choose specific phases that they needed.
https://sched.co/ekGy
Image-Builder Deep Dive - Moshe Immerman, Flanksource & Tushar Aggarwal, VMware
Image-builder is a subproject of SIG Cluster Lifecycle that was created with idea to host a number of different utilities for creating virtual machine images. It has the following goals: 1) To build images for Kubernetes-conformant clusters in a consistent way across infrastructures, providers, and business needs. 2) To provide assurances in the binaries and configuration in images for purposes of security auditing and operational stability 3) To ensure that the creation of images is performed via well defined phases. Where users could choose specific phases that they needed.
https://sched.co/ekGy
- 2 participants
- 21 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Improved TiKV Observability: How We Trace Events under Nanoseconds Latency - Wish Shi & Zhenchi Zhong, PingCAP
Observability is beneficial but often comes with a price. When adding tracing to low latency services (e.g. < 1ms), engineers might find notable performance degradation. Besides, trade-off solutions have inherent limitations. For example, sampled tracing may leave errors or unusual latency sampled out and missed. In this talk, Wish Shi and Zhenchi Zhong will share their experience in implementing a high-performance OpenTracing-compatible tracing library, which was originally created for TiKV. The library can trace events under nanoseconds latency without sampling on the modern x64 architecture. Decisions, design details and trade-offs will be presented, along with an open-source implementation available in both Rust and Golang.
https://sched.co/fGWU
Improved TiKV Observability: How We Trace Events under Nanoseconds Latency - Wish Shi & Zhenchi Zhong, PingCAP
Observability is beneficial but often comes with a price. When adding tracing to low latency services (e.g. < 1ms), engineers might find notable performance degradation. Besides, trade-off solutions have inherent limitations. For example, sampled tracing may leave errors or unusual latency sampled out and missed. In this talk, Wish Shi and Zhenchi Zhong will share their experience in implementing a high-performance OpenTracing-compatible tracing library, which was originally created for TiKV. The library can trace events under nanoseconds latency without sampling on the modern x64 architecture. Decisions, design details and trade-offs will be presented, along with an open-source implementation available in both Rust and Golang.
https://sched.co/fGWU
- 2 participants
- 11 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Improving Network Efficiency with Topology Aware Routing - Rob Scott, Google
As Kubernetes clusters grew to span multiple zones and regions, it became clear that we needed to improve network routing. The initial kube-proxy implementation meant that all requests were equally likely to go to any endpoint, regardless of how far away it was. With topology aware routing, kube-proxy will attempt to keep network traffic within the same zone or region if there is sufficient capacity. This can have huge impacts on network efficiency, performance, and scalability. This talk will cover the evolution of topology aware routing in Kubernetes including the options that didn’t end up working. It will demonstrate how the current algorithm works, discuss the tradeoffs of the approach, and show the simulations that were run to develop the algorithm. Finally, this talk will provide some data showing the significant impacts this feature can have on Kubernetes networking.
https://sched.co/ekCN
Improving Network Efficiency with Topology Aware Routing - Rob Scott, Google
As Kubernetes clusters grew to span multiple zones and regions, it became clear that we needed to improve network routing. The initial kube-proxy implementation meant that all requests were equally likely to go to any endpoint, regardless of how far away it was. With topology aware routing, kube-proxy will attempt to keep network traffic within the same zone or region if there is sufficient capacity. This can have huge impacts on network efficiency, performance, and scalability. This talk will cover the evolution of topology aware routing in Kubernetes including the options that didn’t end up working. It will demonstrate how the current algorithm works, discuss the tradeoffs of the approach, and show the simulations that were run to develop the algorithm. Finally, this talk will provide some data showing the significant impacts this feature can have on Kubernetes networking.
https://sched.co/ekCN
- 1 participant
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
In Search Of A `kubectl blame` Command - Nick Santos, Tilt
Developers want understandable tools. Their tools should tell them, “This change here broke that pod there.” But control loops drive the Kubernetes worldview. In a control loop, Kubernetes updates the cluster to make the actual state match desired state. Control loops do not track why the state changed. Nick Santos and the Tilt team tried to build a tool that traced the effects of each apply. He’ll tell stories about several attempts to propagate and assign blame across state changes. Most of them failed! Or broke Kubernetes updates in frustrating ways! Along the way, they learned about labels, informers, UIDs, owner refs, events, and how kubectl apply works internally. If you plan to write a tool that interprets Kubernetes API objects for humans, this talk is for you.
https://sched.co/ekAv
In Search Of A `kubectl blame` Command - Nick Santos, Tilt
Developers want understandable tools. Their tools should tell them, “This change here broke that pod there.” But control loops drive the Kubernetes worldview. In a control loop, Kubernetes updates the cluster to make the actual state match desired state. Control loops do not track why the state changed. Nick Santos and the Tilt team tried to build a tool that traced the effects of each apply. He’ll tell stories about several attempts to propagate and assign blame across state changes. Most of them failed! Or broke Kubernetes updates in frustrating ways! Along the way, they learned about labels, informers, UIDs, owner refs, events, and how kubectl apply works internally. If you plan to write a tool that interprets Kubernetes API objects for humans, this talk is for you.
https://sched.co/ekAv
- 1 participant
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Inside Kubernetes Ingress - Dominik Tornow, Cisco
Kubernetes Ingress is a core abstraction of Kubernetes: K8s Ingress grants access to K8s HTTP Services from outside the K8s Cluster. In effect, K8s Ingress exposes your HTTP application to the outside world. However, even experienced K8s users struggle to reason about K8s Ingress end-to-end. Using a systems modeling approach, this presentation will explore K8s Ingress to connect the dots between K8s Nodes, K8s Services, K8s Endpoints, the Ingress Resource, and the Ingress Controller. You will leave with an accurate, concise, and holistic understanding of how Kubernetes Ingress - in concert with other core Kubernetes Resources - enables scalable and reliable applications hosted on Kubernetes. Walk away with a dependable mental model of every aspect of Kubernetes Ingress and comfortably contrast K8s Ingress with alternative abstractions like the Ambassador API Gateway.
https://sched.co/ekAL
Inside Kubernetes Ingress - Dominik Tornow, Cisco
Kubernetes Ingress is a core abstraction of Kubernetes: K8s Ingress grants access to K8s HTTP Services from outside the K8s Cluster. In effect, K8s Ingress exposes your HTTP application to the outside world. However, even experienced K8s users struggle to reason about K8s Ingress end-to-end. Using a systems modeling approach, this presentation will explore K8s Ingress to connect the dots between K8s Nodes, K8s Services, K8s Endpoints, the Ingress Resource, and the Ingress Controller. You will leave with an accurate, concise, and holistic understanding of how Kubernetes Ingress - in concert with other core Kubernetes Resources - enables scalable and reliable applications hosted on Kubernetes. Walk away with a dependable mental model of every aspect of Kubernetes Ingress and comfortably contrast K8s Ingress with alternative abstractions like the Ambassador API Gateway.
https://sched.co/ekAL
- 1 participant
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Into the Deep Waters of API Machinery - Federico Bongiovanni & Daniel Smith, Google, & David Eads, Stefan Schimanski, Red Hat
We'll cover 3 common icebergs with lightning talks: 1) My namespace won't delete, help! Why does Kubernetes sometimes refuse to delete a namespace? How to diagnose and resolve the root cause. 2) What is REST mappinp? Ever wonder how you're supposed to go from singular to plural, why we did it, and how to deal with it? What happens when two CRDs choose the same name? 3) Taking out the trash: Garbage Collection in Kubernetes. We'll explain how OwnerRefs, BlockOwnerDeletion, Foreground, Background, and GracePeriod work.
https://sched.co/ekGp
Into the Deep Waters of API Machinery - Federico Bongiovanni & Daniel Smith, Google, & David Eads, Stefan Schimanski, Red Hat
We'll cover 3 common icebergs with lightning talks: 1) My namespace won't delete, help! Why does Kubernetes sometimes refuse to delete a namespace? How to diagnose and resolve the root cause. 2) What is REST mappinp? Ever wonder how you're supposed to go from singular to plural, why we did it, and how to deal with it? What happens when two CRDs choose the same name? 3) Taking out the trash: Garbage Collection in Kubernetes. We'll explain how OwnerRefs, BlockOwnerDeletion, Foreground, Background, and GracePeriod work.
https://sched.co/ekGp
- 4 participants
- 32 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro & Deep Dive: Kubernetes Data Protection WG - Xing Yang, VMware & Xiangqian Yu, Google
Data Protection WG in Kubernetes was formed following discussions at KubeCon in San Diego. This is a Working Group dedicated to promoting data protection support in Kubernetes, identifying missing functionality and working together across multiple SIGs to design features to enable data protection in Kubernetes. In this session, the co-chairs of this WG will explain the motivation behind the formation of this WG, the charter of this WG, who are involved, what is the current state of data protection in Kubernetes and where it is heading in the future. They will also talk about how interested parties (including backup and storage vendors, application developers, and end users, etc.) can join this WG and contribute to this effort. Details of the WG can be found here: https://github.com/kubernetes/community/tree/master/wg-data-protection.
https://sched.co/ekGO
Intro & Deep Dive: Kubernetes Data Protection WG - Xing Yang, VMware & Xiangqian Yu, Google
Data Protection WG in Kubernetes was formed following discussions at KubeCon in San Diego. This is a Working Group dedicated to promoting data protection support in Kubernetes, identifying missing functionality and working together across multiple SIGs to design features to enable data protection in Kubernetes. In this session, the co-chairs of this WG will explain the motivation behind the formation of this WG, the charter of this WG, who are involved, what is the current state of data protection in Kubernetes and where it is heading in the future. They will also talk about how interested parties (including backup and storage vendors, application developers, and end users, etc.) can join this WG and contribute to this effort. Details of the WG can be found here: https://github.com/kubernetes/community/tree/master/wg-data-protection.
https://sched.co/ekGO
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro + Deep Dive - Provider IBM Cloud - Sahdev Zala, Richard Theis, & Brad Topol, IBM
In this session, the project leads will provide an overview of the IBM Cloud Provider subproject, its open source activities, and learning resources. It will be followed by a discussion on the recent developments as well as future work in the IBM Cloud Provider and Kubernetes Cluster API Provider IBM Cloud. This session will be of value to a broad audience including active contributors, new contributors, and those with an interest in the IBM Cloud Provider features and capabilities or the Kubernetes Cloud Provider in general.
https://sched.co/ekHP
Intro + Deep Dive - Provider IBM Cloud - Sahdev Zala, Richard Theis, & Brad Topol, IBM
In this session, the project leads will provide an overview of the IBM Cloud Provider subproject, its open source activities, and learning resources. It will be followed by a discussion on the recent developments as well as future work in the IBM Cloud Provider and Kubernetes Cluster API Provider IBM Cloud. This session will be of value to a broad audience including active contributors, new contributors, and those with an interest in the IBM Cloud Provider features and capabilities or the Kubernetes Cloud Provider in general.
https://sched.co/ekHP
- 3 participants
- 24 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro and Deep Dive: Kubernetes SIG Instrumentation - David Ashpole & Han Kang, Google, Frederic Branczyk, Independent, & Elana Hashman
Kubernetes SIG Instrumentation is responsible for ensuring high quality and consistent instrumentation across the Kubernetes project. We will begin with an introductory overview of the efforts the SIG Instrumentation has worked on in the past and is currently working on. This deep dive session will go in detail currently ongoing efforts happening within SIG Instrumentation to share with the audience concrete pieces of work to encourage future collaboration. Software engineering and operations are both disciplines practiced in SIG Instrumentation, and any experience will help the special interest group's mission. Join this session to learn how to get involved in SIG Instrumentation to make instrumentation even better!
https://sched.co/ekHG
Intro and Deep Dive: Kubernetes SIG Instrumentation - David Ashpole & Han Kang, Google, Frederic Branczyk, Independent, & Elana Hashman
Kubernetes SIG Instrumentation is responsible for ensuring high quality and consistent instrumentation across the Kubernetes project. We will begin with an introductory overview of the efforts the SIG Instrumentation has worked on in the past and is currently working on. This deep dive session will go in detail currently ongoing efforts happening within SIG Instrumentation to share with the audience concrete pieces of work to encourage future collaboration. Software engineering and operations are both disciplines practiced in SIG Instrumentation, and any experience will help the special interest group's mission. Join this session to learn how to get involved in SIG Instrumentation to make instrumentation even better!
https://sched.co/ekHG
- 4 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro to CNCF’s Telecom Initiatives - Taylor Carpenter, Vulk Coop & in Remembrance with Dan Kohn, The Linux Foundation
Dedicated to the memory of Dan Kohn. CNCF is helping Telcos navigate the cloud native and open source landscape to obtain the benefits touted by cloud native technologies. Guided by cloud native principles, CNCF hosts three main initiatives for Telco operators and service providers: Telecom User Group, CNF Testbed and CNF Conformance. The Telecom User Group (TUG) is a user group for telecom operators, vendors, and developers to share ideas and ask questions about using cloud native technologies. The CNF Testbed is a set of tools and reference implementations used for reviewing cloud native technology innovation in the Telecom domain. The CNF Conformance is a test suite to self-validate that Cloud native Network Functions (CNFs) and the underlying Telecom platforms adhere to cloud native principles and best practices. This session will introduce these Telecom Initiatives, explain how downstream projects and communities can collaborate, and discuss how service providers and their vendors can get involved.
https://sched.co/ekG9
Intro to CNCF’s Telecom Initiatives - Taylor Carpenter, Vulk Coop & in Remembrance with Dan Kohn, The Linux Foundation
Dedicated to the memory of Dan Kohn. CNCF is helping Telcos navigate the cloud native and open source landscape to obtain the benefits touted by cloud native technologies. Guided by cloud native principles, CNCF hosts three main initiatives for Telco operators and service providers: Telecom User Group, CNF Testbed and CNF Conformance. The Telecom User Group (TUG) is a user group for telecom operators, vendors, and developers to share ideas and ask questions about using cloud native technologies. The CNF Testbed is a set of tools and reference implementations used for reviewing cloud native technology innovation in the Telecom domain. The CNF Conformance is a test suite to self-validate that Cloud native Network Functions (CNFs) and the underlying Telecom platforms adhere to cloud native principles and best practices. This session will introduce these Telecom Initiatives, explain how downstream projects and communities can collaborate, and discuss how service providers and their vendors can get involved.
https://sched.co/ekG9
- 1 participant
- 17 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro to Kubernetes Docs - Celeste Horgan, Linux Foundation; Brad Topol, IBM; Tim Bannister, The Scale Factory; & Irvi Aini, Spotify
This session introduces the Kubernetes website repo. SIG Docs chairs and tech leads cover how to add and update docs for Kubernetes features, docs in the release cycle, how to localize your content, and where to get help when you need it. We'll walk through the website repo's branching strategy and content architecture, and explore some of the tools to help folks write better docs. We'll also cover how and when to add third-party content for components like CNI plugins. We'll also spend plenty of time answering any questions you have.
https://sched.co/ekHA
Intro to Kubernetes Docs - Celeste Horgan, Linux Foundation; Brad Topol, IBM; Tim Bannister, The Scale Factory; & Irvi Aini, Spotify
This session introduces the Kubernetes website repo. SIG Docs chairs and tech leads cover how to add and update docs for Kubernetes features, docs in the release cycle, how to localize your content, and where to get help when you need it. We'll walk through the website repo's branching strategy and content architecture, and explore some of the tools to help folks write better docs. We'll also cover how and when to add third-party content for components like CNI plugins. We'll also spend plenty of time answering any questions you have.
https://sched.co/ekHA
- 3 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro to Scaling Prometheus with Cortex - Tom Wilkie, Grafana Labs & Ken Haines, Microsoft
Have many, disparate Prometheus instances scattered around your organisation? Want a single, centralised place to store and query all your metrics? Don’t want to manually shard your metrics across instance? Want faster queries and indefinite retention? If you answered “yes” to any of those questions, Cortex might be for you. Cortex is a horizontally scalable, highly available Prometheus-compatible TSDB. Cortex allows users to deploy a centralised, globally aggregated view of all their Prometheus instances, storing data indefinitely and scaling to hundred of millions of series. In this talk we will discuss a bit of Cortex's history, Cortex's architecture and how to get started with Cortex. Cortex is an Apache-licensed CNCF incubation project.
https://sched.co/ekHh
Intro to Scaling Prometheus with Cortex - Tom Wilkie, Grafana Labs & Ken Haines, Microsoft
Have many, disparate Prometheus instances scattered around your organisation? Want a single, centralised place to store and query all your metrics? Don’t want to manually shard your metrics across instance? Want faster queries and indefinite retention? If you answered “yes” to any of those questions, Cortex might be for you. Cortex is a horizontally scalable, highly available Prometheus-compatible TSDB. Cortex allows users to deploy a centralised, globally aggregated view of all their Prometheus instances, storing data indefinitely and scaling to hundred of millions of series. In this talk we will discuss a bit of Cortex's history, Cortex's architecture and how to get started with Cortex. Cortex is an Apache-licensed CNCF incubation project.
https://sched.co/ekHh
- 2 participants
- 19 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Intro: CNCF SIG-Runtime - Ricardo Aravena, Rakuten & Renaud Gaubert , NVIDIA
The CNCF SIG Runtime (https://github.com/cncf/sig-runtime) collaborates to explore how different runtime infrastructure technologies make it possible to run cloud-native workloads. Discussions are about generalized orchestration, autoscaling, scheduling, execution, container runtimes, sandboxing, virtualization, image packaging/distribution, and specialized architectures. Furthermore, technologies and projects, aimed specifically at Edge, IoT, Batch, Big Data, AI/ML, etc. and incorporating specialized computing elements beyond CPUs, including GPUs, TPUs, FPGAs, ASICs, etc. In this session, we'll provide an overview of the current cloud-native projects and future technologies that fall within the SIG scope. You'll find out how to get involved and contribute, get to know some of the SIG members, and a showcase of the work thus far. The audience will come away with a basic understanding of the SIG and its place in the CNCF ecosystem.
https://sched.co/ekG6
Intro: CNCF SIG-Runtime - Ricardo Aravena, Rakuten & Renaud Gaubert , NVIDIA
The CNCF SIG Runtime (https://github.com/cncf/sig-runtime) collaborates to explore how different runtime infrastructure technologies make it possible to run cloud-native workloads. Discussions are about generalized orchestration, autoscaling, scheduling, execution, container runtimes, sandboxing, virtualization, image packaging/distribution, and specialized architectures. Furthermore, technologies and projects, aimed specifically at Edge, IoT, Batch, Big Data, AI/ML, etc. and incorporating specialized computing elements beyond CPUs, including GPUs, TPUs, FPGAs, ASICs, etc. In this session, we'll provide an overview of the current cloud-native projects and future technologies that fall within the SIG scope. You'll find out how to get involved and contribute, get to know some of the SIG members, and a showcase of the work thus far. The audience will come away with a basic understanding of the SIG and its place in the CNCF ecosystem.
https://sched.co/ekG6
- 2 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Introduction and Deep Dive into containerd - Michael Crosby & Derek McGowan, Apple, Phil Estes, IBM, & Wei Fu, Alibaba
Join containerd maintainers in a combined introduction and deep dive discussion. This talk will include a brief introduction to the design and architecture of containerd along with the latest updates to the project. After that, maintainers will deep dive into new features including NRI (Node Resource Interface), new Sandbox API, the CRI (Container Runtime Interface) implementation move into containerd core, and improvements in image distribution from remote snapshotters to better proxy support. Come learn about how to get started with containerd as a user or contributor.
https://sched.co/ekGF
Introduction and Deep Dive into containerd - Michael Crosby & Derek McGowan, Apple, Phil Estes, IBM, & Wei Fu, Alibaba
Join containerd maintainers in a combined introduction and deep dive discussion. This talk will include a brief introduction to the design and architecture of containerd along with the latest updates to the project. After that, maintainers will deep dive into new features including NRI (Node Resource Interface), new Sandbox API, the CRI (Container Runtime Interface) implementation move into containerd core, and improvements in image distribution from remote snapshotters to better proxy support. Come learn about how to get started with containerd as a user or contributor.
https://sched.co/ekGF
- 4 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Introduction to Autoscaling - Guy Templeton, Skyscanner & Joe Burnett, Google
Come and see how to reduce the cost of your cluster and make your workloads more robust by dynamically adjusting them to their current load. During this talk members of SIG-Autoscaling will explain why you should be autoscaling both applications and clusters, and the tools Kubernetes provides to do this. You will learn the mechanics of Cluster, Horizontal Pod and Vertical Pod Autoscalers, their new and upcoming features as well as the best practices for applying them in production and things to watch out for. After this talk you will know where to look for information about the different autoscalers as well as which settings can be changed to adapt to different workloads.
Introduction to Autoscaling - Guy Templeton, Skyscanner & Joe Burnett, Google
Come and see how to reduce the cost of your cluster and make your workloads more robust by dynamically adjusting them to their current load. During this talk members of SIG-Autoscaling will explain why you should be autoscaling both applications and clusters, and the tools Kubernetes provides to do this. You will learn the mechanics of Cluster, Horizontal Pod and Vertical Pod Autoscalers, their new and upcoming features as well as the best practices for applying them in production and things to watch out for. After this talk you will know where to look for information about the different autoscalers as well as which settings can be changed to adapt to different workloads.
- 2 participants
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Introduction to SIG Cluster Lifecycle - Lubomir I. Ivanov, VMware & Justin Santa Barbara, Google
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate. Since the group's formation we have focused on creating kubeadm, a streamlined installer tool and building block to simplify the installation and upgrade experience, and building a Cluster API to provide an abstraction of machines across different deployment environments and a common control plane configuration. In this introduction session, we will present the SIG's mission statement, review recent accomplishments, and discuss our future plans, where you are very welcome to contribute to the discussion. We will also focus on how new contributors can get involved in helping shape the future of Kubernetes' cluster lifecycle management.
https://sched.co/ekH4
Introduction to SIG Cluster Lifecycle - Lubomir I. Ivanov, VMware & Justin Santa Barbara, Google
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate. Since the group's formation we have focused on creating kubeadm, a streamlined installer tool and building block to simplify the installation and upgrade experience, and building a Cluster API to provide an abstraction of machines across different deployment environments and a common control plane configuration. In this introduction session, we will present the SIG's mission statement, review recent accomplishments, and discuss our future plans, where you are very welcome to contribute to the discussion. We will also focus on how new contributors can get involved in helping shape the future of Kubernetes' cluster lifecycle management.
https://sched.co/ekH4
- 2 participants
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Jaeger Deep Dive - Yuri Shkuro, Facebook, Pavol Loffay, Red Hat & Annanay Agarwal, Grafana Labs
This session is dedicated to an in-depth understanding of the Jaeger project. We will give a short demo of the recently added features, talk about various topics including the architecture, deployment models, configuration, different types of sampling, multi-tenancy, and best practices. We will discuss integration with OpenTelemetry, and review the roadmap. After this session the attendees should better understand the Jaeger architecture, how to deploy it and get the best benefits, and to make contributions to the project.
https://sched.co/ekGR
Jaeger Deep Dive - Yuri Shkuro, Facebook, Pavol Loffay, Red Hat & Annanay Agarwal, Grafana Labs
This session is dedicated to an in-depth understanding of the Jaeger project. We will give a short demo of the recently added features, talk about various topics including the architecture, deployment models, configuration, different types of sampling, multi-tenancy, and best practices. We will discuss integration with OpenTelemetry, and review the roadmap. After this session the attendees should better understand the Jaeger architecture, how to deploy it and get the best benefits, and to make contributions to the project.
https://sched.co/ekGR
- 3 participants
- 36 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kata Containers Performance Evaluation and Optimization on Arm64 - Jia He, Arm
Kata Containers builds extremely lightweight virtual machines that seamlessly plug into the containers ecosystem. It is a multi-architecture project which has been supported on X86, aarch64, ppc, s390. Jia He will introduce current status of kata containers on aarch64, focusing on the performance evaluation on aarch64. Includes: 1. metrics report: boot time, memory footprint, network and storage io. 2. Real-life test case includes nginx, redis and tensorflow 3. Kata containers vs runc containers Besides, Jia He will also introduce what Arm container team has done to optimize the performance: 1. virtiofs enablement and bugfix 2. nvdimm support and bugfix 3. kvm ptp enablement 4. Misc performance optimization
https://sched.co/ekFW
Kata Containers Performance Evaluation and Optimization on Arm64 - Jia He, Arm
Kata Containers builds extremely lightweight virtual machines that seamlessly plug into the containers ecosystem. It is a multi-architecture project which has been supported on X86, aarch64, ppc, s390. Jia He will introduce current status of kata containers on aarch64, focusing on the performance evaluation on aarch64. Includes: 1. metrics report: boot time, memory footprint, network and storage io. 2. Real-life test case includes nginx, redis and tensorflow 3. Kata containers vs runc containers Besides, Jia He will also introduce what Arm container team has done to optimize the performance: 1. virtiofs enablement and bugfix 2. nvdimm support and bugfix 3. kvm ptp enablement 4. Misc performance optimization
https://sched.co/ekFW
- 1 participant
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: #TeamCloudNative: Diversity-Powered Resilience - Priyanka Sharma, General Manager, Cloud Native Computing Foundation
https://sched.co/eoDm
Keynote: #TeamCloudNative: Diversity-Powered Resilience - Priyanka Sharma, General Manager, Cloud Native Computing Foundation
https://sched.co/eoDm
- 5 participants
- 24 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: Are Certifications Worth It? - Cheryl Hung, Vice President - Ecosystem, Cloud Native Computing Foundation
https://sched.co/eoDp
Keynote: Are Certifications Worth It? - Cheryl Hung, Vice President - Ecosystem, Cloud Native Computing Foundation
https://sched.co/eoDp
- 1 participant
- 14 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: CNCF Maintainer + Ambassador Awards, hosted by Chris Aniszczyk, CTO, The Linux Foundation
Keynote: CNCF Maintainer + Ambassador Awards, hosted by Chris Aniszczyk, CTO, The Linux Foundation
- 1 participant
- 7 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: CNCF Projects Update - Constance Caramanolis, KubeCon + CloudNativeCon North America 2020 Co-Chair & Principal Software Engineer, Splunk
https://sched.co/eoEF
Keynote: CNCF Projects Update - Constance Caramanolis, KubeCon + CloudNativeCon North America 2020 Co-Chair & Principal Software Engineer, Splunk
https://sched.co/eoEF
- 1 participant
- 12 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: Kubernetes Project Update - Stephen Augustus, KubeCon + CloudNativeCon North America 2020 Co-Chair & Senior Open Source Engineer - Tanzu Kubernetes Grid Core, VMware
https://sched.co/eoEM
Keynote: Kubernetes Project Update - Stephen Augustus, KubeCon + CloudNativeCon North America 2020 Co-Chair & Senior Open Source Engineer - Tanzu Kubernetes Grid Core, VMware
https://sched.co/eoEM
- 1 participant
- 11 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: Kubernetes and etcd Features That Unlocked 15k Node Clusters - Wojciech Tyczyński, Staff Software Engineer, Google
In this presentation you will learn about improvements made to Kubernetes and etcd that unlocked running massive clusters with 15,000 nodes. We will show how we tackled this challenge from different angles focusing on its technical aspect. You will learn about the most important changes like watch bookmarks, etcd concurrent reads and more, but also our cooperation with other communities (e.g. golang). We will also describe how we approached validating our work and how real Kubernetes users helped us here.
https://sched.co/eoFN
Keynote: Kubernetes and etcd Features That Unlocked 15k Node Clusters - Wojciech Tyczyński, Staff Software Engineer, Google
In this presentation you will learn about improvements made to Kubernetes and etcd that unlocked running massive clusters with 15,000 nodes. We will show how we tackled this challenge from different angles focusing on its technical aspect. You will learn about the most important changes like watch bookmarks, etcd concurrent reads and more, but also our cooperation with other communities (e.g. golang). We will also describe how we approached validating our work and how real Kubernetes users helped us here.
https://sched.co/eoFN
- 1 participant
- 15 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: More Power, Less Pain: Building an Internal Platform with CNCF Tools - David Sudia, Senior DevOps Engineer, GoSpotCheck, Inc.
Last year GoSpotCheck migrated from a PaaS to Kubernetes, and devs asked "Does it have to be this hard?" The engineering organization's major initiative this year was to be able to say "no," by building an internal Platform-as-a-Service...with no platform team. And keeping to a goal of using as many open-source and CNCF technologies as possible. Learn how GoSpotCheck used and put together tooling around Buildpacks, Helm, OpenTelemetry, Prometheus, Envoy, LinkerD and gRPC to make a much smoother experience for developers, from "local" development (which now happens in the cluster) through the first SLO alert. Also learn guidelines about where to make the strategic trade-off of what to do in-house and when to go with a vendor. Most of all, learn how to make a pleasant user experience for developers with Cloud Native tech.
https://sched.co/eoFV
Keynote: More Power, Less Pain: Building an Internal Platform with CNCF Tools - David Sudia, Senior DevOps Engineer, GoSpotCheck, Inc.
Last year GoSpotCheck migrated from a PaaS to Kubernetes, and devs asked "Does it have to be this hard?" The engineering organization's major initiative this year was to be able to say "no," by building an internal Platform-as-a-Service...with no platform team. And keeping to a goal of using as many open-source and CNCF technologies as possible. Learn how GoSpotCheck used and put together tooling around Buildpacks, Helm, OpenTelemetry, Prometheus, Envoy, LinkerD and gRPC to make a much smoother experience for developers, from "local" development (which now happens in the cluster) through the first SLO alert. Also learn guidelines about where to make the strategic trade-off of what to do in-house and when to go with a vendor. Most of all, learn how to make a pleasant user experience for developers with Cloud Native tech.
https://sched.co/eoFV
- 1 participant
- 15 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: Moving Cloud Native Beyond HTTP: Adding Protocols to Unlock New Use Cases - Jonathan Beri, Founder, Stealth
Kubernetes and related projects have first-class support for serving and managing HTTP traffic. This makes sense since the most common protocol used by web servers is HTTP. However, there are many popular protocols in the world that are *not* HTTP. These protocols are used across a variety of domains, from IoT to gaming to telephony and more. In order to build cloud native services with these protocols, we need to understand how and where networking protocols are supported to uncover roadblocks preventing new applications in domains like IoT & gaming. This talk will provide you with a deep understanding of various projects and their protocol support to uncover what’s available today, what’s being worked and opportunities for the ecosystem to collaborate.
https://sched.co/eoFA
Keynote: Moving Cloud Native Beyond HTTP: Adding Protocols to Unlock New Use Cases - Jonathan Beri, Founder, Stealth
Kubernetes and related projects have first-class support for serving and managing HTTP traffic. This makes sense since the most common protocol used by web servers is HTTP. However, there are many popular protocols in the world that are *not* HTTP. These protocols are used across a variety of domains, from IoT to gaming to telephony and more. In order to build cloud native services with these protocols, we need to understand how and where networking protocols are supported to uncover roadblocks preventing new applications in domains like IoT & gaming. This talk will provide you with a deep understanding of various projects and their protocol support to uncover what’s available today, what’s being worked and opportunities for the ecosystem to collaborate.
https://sched.co/eoFA
- 1 participant
- 13 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: Predictions from the Technical Oversight Committee (TOC) - Liz Rice, CNCF TOC Chair & Vice President - Open Source Engineering, Aqua Security
2020 has been quite the year of change in many ways. While terrible things happened in the world around us, the cloud native community has nevertheless been able to make progress on many fronts. This talk gives an update on that progress, and where we might go from here, from the perspective of the Technical Oversight Committee, including: - Technical themes that are emerging from the projects we're asked to assess - Updates on the way we operate within the greater CNCF family - Information about how to get involved with the TOC community
https://sched.co/eoIl
Keynote: Predictions from the Technical Oversight Committee (TOC) - Liz Rice, CNCF TOC Chair & Vice President - Open Source Engineering, Aqua Security
2020 has been quite the year of change in many ways. While terrible things happened in the world around us, the cloud native community has nevertheless been able to make progress on many fronts. This talk gives an update on that progress, and where we might go from here, from the perspective of the Technical Oversight Committee, including: - Technical themes that are emerging from the projects we're asked to assess - Updates on the way we operate within the greater CNCF family - Information about how to get involved with the TOC community
https://sched.co/eoIl
- 1 participant
- 9 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: SIG-Honk AMA Panel: Hacking and Hardening in the Cloud Native Garden - Ian Coldwater, Independent; Duffie Cooley, Independent; Brad Geesaman, Co-Founder, Darkbit; & Rory McCune, Principal Consultant
Have you ever wondered how hackers think? What do attackers look for when they approach a cluster, and what security hardening steps can stop them in their tracks? Join Ian Coldwater, Brad Geesaman, Rory McCune, and Duffie Cooley for an AMA panel session. This group of friends and longtime Kubernetes security SMEs bring their unique perspectives and experience with securing, attacking, and deploying cloud native infrastructure to form ”sig-HONK,” an unofficial Special Interest Group focused on changing the way we think about and practice security in distributed systems. How does this group of people come up with ideas as to what to hack next, and how do they go about doing it? What’s all this honking about, anyway? Come learn the answers to these questions and anything else you have in mind. Ask Us Anything!
https://sched.co/eoIZ
Keynote: SIG-Honk AMA Panel: Hacking and Hardening in the Cloud Native Garden - Ian Coldwater, Independent; Duffie Cooley, Independent; Brad Geesaman, Co-Founder, Darkbit; & Rory McCune, Principal Consultant
Have you ever wondered how hackers think? What do attackers look for when they approach a cluster, and what security hardening steps can stop them in their tracks? Join Ian Coldwater, Brad Geesaman, Rory McCune, and Duffie Cooley for an AMA panel session. This group of friends and longtime Kubernetes security SMEs bring their unique perspectives and experience with securing, attacking, and deploying cloud native infrastructure to form ”sig-HONK,” an unofficial Special Interest Group focused on changing the way we think about and practice security in distributed systems. How does this group of people come up with ideas as to what to hack next, and how do they go about doing it? What’s all this honking about, anyway? Come learn the answers to these questions and anything else you have in mind. Ask Us Anything!
https://sched.co/eoIZ
- 4 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of
Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: The Cloud Native Journey @Apple - Alena Prokharchyk, Software Engineer, Apple
If you want to evolve your applications, services and user experience around Cloud Native technologies, then adaptability is key. Apple identified the ecosystem’s potential early on, and worked hard to adopt the technologies to support the scale and variety of use cases necessary for Apple’s adoption. This talk will cover Apple’s Cloud Native journey and what it took to build a Kubernetes offering that focuses on Privacy, Security, Multi-Tenancy and Scale. - Why Cloud Native at Apple? - Why we migrated from Mesos to Kubernetes? - Technical challenges faced and solutions applied - Testing things at scale: operational challenges and collaboration with the community - Cloud Native ecosystem projects we leverage, such as etcd and containerd
https://sched.co/eoDx
Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: The Cloud Native Journey @Apple - Alena Prokharchyk, Software Engineer, Apple
If you want to evolve your applications, services and user experience around Cloud Native technologies, then adaptability is key. Apple identified the ecosystem’s potential early on, and worked hard to adopt the technologies to support the scale and variety of use cases necessary for Apple’s adoption. This talk will cover Apple’s Cloud Native journey and what it took to build a Kubernetes offering that focuses on Privacy, Security, Multi-Tenancy and Scale. - Why Cloud Native at Apple? - Why we migrated from Mesos to Kubernetes? - Technical challenges faced and solutions applied - Testing things at scale: operational challenges and collaboration with the community - Cloud Native ecosystem projects we leverage, such as etcd and containerd
https://sched.co/eoDx
- 1 participant
- 14 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Keynote: Using the OpenTelemetry Collector to Empower End Users - Constance Caramanolis, KubeCon + CloudNativeCon North America 2020 Co-Chair & Principal Engineer, Splunk
https://sched.co/eoEq
Keynote: Using the OpenTelemetry Collector to Empower End Users - Constance Caramanolis, KubeCon + CloudNativeCon North America 2020 Co-Chair & Principal Engineer, Splunk
https://sched.co/eoEq
- 1 participant
- 16 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
KubeEdge: Kubernetes Native Edge Computing Framework - Zefeng Wang (Kevin), Huawei
KubeEdge is an open source edge computing framework that extends the power of kubernetes from central cloud to edge. It provides edge autonomy, application management and service communication across cloud and edge sites, device management for multiple IoT/Edge device communication protocols with lightweight implementation. During this talk, Kevin will review KubeEdge motivation, architecture; then go through latest updates on new features and user adoptions. After that Kevin will introduce where the project is heading to, new SIGs formed recently and how new contributors to get involved. There will be an open Q&A for attendees to ask questions.
https://sched.co/ekGU
KubeEdge: Kubernetes Native Edge Computing Framework - Zefeng Wang (Kevin), Huawei
KubeEdge is an open source edge computing framework that extends the power of kubernetes from central cloud to edge. It provides edge autonomy, application management and service communication across cloud and edge sites, device management for multiple IoT/Edge device communication protocols with lightweight implementation. During this talk, Kevin will review KubeEdge motivation, architecture; then go through latest updates on new features and user adoptions. After that Kevin will introduce where the project is heading to, new SIGs formed recently and how new contributors to get involved. There will be an open Q&A for attendees to ask questions.
https://sched.co/ekGU
- 1 participant
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubelet Deep Dive: Writing a Kubelet in Rust - Kevin Flansburg, Moose Consulting
Kubelet is a critical part of the Kubernetes project. Kubernetes deployments can vary a great deal in terms of container runtime, self-hosted or static control plane, CNI provider, etc., but they must all have Kubelet running on each node host. Many intermediate Kubernetes users could benefit from a deeper understanding of Kubelet behavior. This talk discusses the development of a Kubelet in Rust, and offers a deep dive into the expected behavior and implementation of Kubelet. The talk will begin with a discussion of how Kubelet fits into a Kubernetes deployment, and its relationship with Kubernetes Operators and the Container Runtime Interface (CRI). Next, the talk will cover important crates for Kubernetes development in Rust, as well as the development of Operators and use of gRPC. Finally, the talk will end with pros and cons of using Rust today for Kubernetes development.
https://sched.co/ekDy
Kubelet Deep Dive: Writing a Kubelet in Rust - Kevin Flansburg, Moose Consulting
Kubelet is a critical part of the Kubernetes project. Kubernetes deployments can vary a great deal in terms of container runtime, self-hosted or static control plane, CNI provider, etc., but they must all have Kubelet running on each node host. Many intermediate Kubernetes users could benefit from a deeper understanding of Kubelet behavior. This talk discusses the development of a Kubelet in Rust, and offers a deep dive into the expected behavior and implementation of Kubelet. The talk will begin with a discussion of how Kubelet fits into a Kubernetes deployment, and its relationship with Kubernetes Operators and the Container Runtime Interface (CRI). Next, the talk will cover important crates for Kubernetes development in Rust, as well as the development of Operators and use of gRPC. Finally, the talk will end with pros and cons of using Rust today for Kubernetes development.
https://sched.co/ekDy
- 1 participant
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes CronJobs - Does Anyone Actually Use This [in Production]? - Kevin Yang, Lyft
Considering CronJob? Think again! CronJobs sound great on paper–a higher-order API built on the bread and butter of K8s that automates fault tolerance, orchestration, etc., for distributed, repetitive tasks. On top of that, you benefit from efficient resource usage when your cron is idle. Who wouldn't want that? At Lyft, we run hundreds of CronJobs on our platform; however, the road to get there was not easy. In this talk, Kevin will dive deep into the guts of CronJobs, discuss subtle issues like how the control-plane can get bogged down at scale, and share how we addressed these problems in our K8s stack (including forking and patching Kubernetes itself!). You will leave with a better understanding of the trade-offs of CronJob and what features to look for in a cron solution to make your developers (and you) happy.
https://sched.co/ekDF
Kubernetes CronJobs - Does Anyone Actually Use This [in Production]? - Kevin Yang, Lyft
Considering CronJob? Think again! CronJobs sound great on paper–a higher-order API built on the bread and butter of K8s that automates fault tolerance, orchestration, etc., for distributed, repetitive tasks. On top of that, you benefit from efficient resource usage when your cron is idle. Who wouldn't want that? At Lyft, we run hundreds of CronJobs on our platform; however, the road to get there was not easy. In this talk, Kevin will dive deep into the guts of CronJobs, discuss subtle issues like how the control-plane can get bogged down at scale, and share how we addressed these problems in our K8s stack (including forking and patching Kubernetes itself!). You will leave with a better understanding of the trade-offs of CronJob and what features to look for in a cron solution to make your developers (and you) happy.
https://sched.co/ekDF
- 1 participant
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes IoT Edge Working Group: Using Event Driven Architecture at Edge - Steven Wong, VMware & Dejan Bosanac, RedHat
Many use cases at edge face resource limits which challenge the deployment of full K8s clusters, or even single nodes, at the edge “leaf” nodes. We will introduce some techniques that can be used to process edge generated data and commands using Kubernetes hosted applications and services in a loosely coupled tiered distributed system. Agenda: - Characteristics and challenges of Edge Applications. - Introduction to event driven architecture - What is it? How do you deploy and manage it at edge. - Using open source based event driven tools to host data collection and IoT processing on small devices feeding into K8s hosted applications and services. - Demonstration using edge generated CloudEvents with a Kubernetes hosted application. - How to get involved in the K8s IoT Edge Working Group.
https://sched.co/ekH1
Kubernetes IoT Edge Working Group: Using Event Driven Architecture at Edge - Steven Wong, VMware & Dejan Bosanac, RedHat
Many use cases at edge face resource limits which challenge the deployment of full K8s clusters, or even single nodes, at the edge “leaf” nodes. We will introduce some techniques that can be used to process edge generated data and commands using Kubernetes hosted applications and services in a loosely coupled tiered distributed system. Agenda: - Characteristics and challenges of Edge Applications. - Introduction to event driven architecture - What is it? How do you deploy and manage it at edge. - Using open source based event driven tools to host data collection and IoT processing on small devices feeding into K8s hosted applications and services. - Demonstration using edge generated CloudEvents with a Kubernetes hosted application. - How to get involved in the K8s IoT Edge Working Group.
https://sched.co/ekH1
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes Operators: Safety First Through Model Checkers - Neven Miculinic, grid.ai
Today's Kubernetes Operators aren't just a fancy toy, but utilities managing critical infrastructure. Many best practices are already applied, increasing their safety: unit/e2e testing, code reviews and post mortem analysis. This talk introduces some more recent tooling for working developers toolbox: model checkers. The likes of TLA+ and alloy have already been used for helping design many real-world systems, from S3 all the way to RTOS (real-time operating system) with massive success. They allow us to design and model our systems in the abstract, state the system facts, assumptions and expected rules to hold, and finally, they analyze our model for inconsistencies or scenarios we haven't thought of - like code review for system design on steroids. This talk introduces model checkers, covers the motivation behind them, and finishes with a short example.
https://sched.co/ekAp
Kubernetes Operators: Safety First Through Model Checkers - Neven Miculinic, grid.ai
Today's Kubernetes Operators aren't just a fancy toy, but utilities managing critical infrastructure. Many best practices are already applied, increasing their safety: unit/e2e testing, code reviews and post mortem analysis. This talk introduces some more recent tooling for working developers toolbox: model checkers. The likes of TLA+ and alloy have already been used for helping design many real-world systems, from S3 all the way to RTOS (real-time operating system) with massive success. They allow us to design and model our systems in the abstract, state the system facts, assumptions and expected rules to hold, and finally, they analyze our model for inconsistencies or scenarios we haven't thought of - like code review for system design on steroids. This talk introduces model checkers, covers the motivation behind them, and finishes with a short example.
https://sched.co/ekAp
- 1 participant
- 24 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes SIG-Network: Intro and Deep-Dive - Tim Hockin & Bowei Du, Google & Rich Renner, Sunder Networks
This session will be an introductory session to various Kubernetes networking topics (mostly aimed at relative newcomers to Kubernetes). This will include fundamental topics like pod networking, Services, and Ingress. Attendees will get a glimpse of what is happening under the covers. This introduction will be followed by a deep-dive on several new and upcoming topics, including recent features and new APIs that are under development (mostly aimed at people who are already using Kubernetes). Significant time will be allotted for Q&A.
https://sched.co/ekHt
Kubernetes SIG-Network: Intro and Deep-Dive - Tim Hockin & Bowei Du, Google & Rich Renner, Sunder Networks
This session will be an introductory session to various Kubernetes networking topics (mostly aimed at relative newcomers to Kubernetes). This will include fundamental topics like pod networking, Services, and Ingress. Attendees will get a glimpse of what is happening under the covers. This introduction will be followed by a deep-dive on several new and upcoming topics, including recent features and new APIs that are under development (mostly aimed at people who are already using Kubernetes). Significant time will be allotted for Q&A.
https://sched.co/ekHt
- 2 participants
- 51 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes VMware User Group Intro: Best Practices for Running on VMware - Steven Wong & Myles Gray, VMware
This will be a presentation by organizers and members of the Kubernetes VMware User Group. This group addresses running all forms of Kubernetes on VMware infrastructure. The group exists to serve users, along with those who develop, test and support running K8s on vSphere and desktop hypervisors. This group is also here to support those building/using cluster installation tooling for VMware hypervisors. Agenda: - Overview of vSphere cloud provider and related storage plugins – with coverage of recent features/changes. - Recommended path for migration from the deprecated in-tree storage plugin to CSI. - New features for running Kubernetes on "desktop" hypervisors. - How to get involved in the User Group to meet other users to share advice and experiences.
https://sched.co/ekHS
Kubernetes VMware User Group Intro: Best Practices for Running on VMware - Steven Wong & Myles Gray, VMware
This will be a presentation by organizers and members of the Kubernetes VMware User Group. This group addresses running all forms of Kubernetes on VMware infrastructure. The group exists to serve users, along with those who develop, test and support running K8s on vSphere and desktop hypervisors. This group is also here to support those building/using cluster installation tooling for VMware hypervisors. Agenda: - Overview of vSphere cloud provider and related storage plugins – with coverage of recent features/changes. - Recommended path for migration from the deprecated in-tree storage plugin to CSI. - New features for running Kubernetes on "desktop" hypervisors. - How to get involved in the User Group to meet other users to share advice and experiences.
https://sched.co/ekHS
- 2 participants
- 33 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes Working Group for Multi-Tenancy Project Overview - Tasha Drew, VMware, Adrian Ludwin, Google, Fei Guo, Alibaba & Jim Bugwadia, Nirmata
In this session, the leaders of the Kubernetes Working Group for Multi-Tenancy will quickly go over how you can join the multi-tenancy group, and also do a quick overview of each of the projects we are incubating: the Virtual Cluster Project, the Multi-Tenancy Benchmarks Project, and the Hierarchical Namespace Controller Project. You can visit all of our projects here too: https://github.com/kubernetes-sigs/multi-tenancy/ Got more questions? Join our mailing list via google groups https://groups.google.com/forum/#!forum/kubernetes-wg-multitenancy or talk to us in the #wg-multitenancy channel of the Kubernetes Slack.
https://sched.co/ekHM
Kubernetes Working Group for Multi-Tenancy Project Overview - Tasha Drew, VMware, Adrian Ludwin, Google, Fei Guo, Alibaba & Jim Bugwadia, Nirmata
In this session, the leaders of the Kubernetes Working Group for Multi-Tenancy will quickly go over how you can join the multi-tenancy group, and also do a quick overview of each of the projects we are incubating: the Virtual Cluster Project, the Multi-Tenancy Benchmarks Project, and the Hierarchical Namespace Controller Project. You can visit all of our projects here too: https://github.com/kubernetes-sigs/multi-tenancy/ Got more questions? Join our mailing list via google groups https://groups.google.com/forum/#!forum/kubernetes-wg-multitenancy or talk to us in the #wg-multitenancy channel of the Kubernetes Slack.
https://sched.co/ekHM
- 4 participants
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes and Logging: Do It Right - Eduardo Silva, Arm Treasure Data
Logging in distributed systems is not as simple as it sounds. The nature of having distributed applications comes with challenges for data processing such as parsing and unstructured/structured data handling, metadata correlation (labels/annotations), data centralization, and overall reliability. In this session, we will dive and explain all the concepts of Logging for distributed systems, specifically applicable for Kubernetes environments, best practices, and open-source tools available to satisfy the final needs of every user: data analysis. Doing Logging right is not hard if the concepts are understood, after this session you will be in a good position to implement a unified logging layer in Kubernetes with further knowledge of best practices for performance, security, and data transfer reliability.
https://sched.co/ekA9
Kubernetes and Logging: Do It Right - Eduardo Silva, Arm Treasure Data
Logging in distributed systems is not as simple as it sounds. The nature of having distributed applications comes with challenges for data processing such as parsing and unstructured/structured data handling, metadata correlation (labels/annotations), data centralization, and overall reliability. In this session, we will dive and explain all the concepts of Logging for distributed systems, specifically applicable for Kubernetes environments, best practices, and open-source tools available to satisfy the final needs of every user: data analysis. Doing Logging right is not hard if the concepts are understood, after this session you will be in a good position to implement a unified logging layer in Kubernetes with further knowledge of best practices for performance, security, and data transfer reliability.
https://sched.co/ekA9
- 1 participant
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes-native Security with Starboard - Liz Rice & Daniel Pacak, Aqua Security
Starboard is an open source project that gathers security information from various different tools into Kubernetes CRDs, so users can manage & access security reports through familiar Kubernetes interfaces, like kubectl or Octant. This talk uses plenty of demos to describe the motivations behind Starboard, and design challenges such as: - how reports can relate to different resources, from pods through to entire clusters - showing security information for running workloads - extensibility and plugins Learn how to use Starboard generate to actionable security information that's visible to the people who need it. See how to extend Starboard to integrate your favourite security tool, if it isn't already covered today. This “Advanced” talk won’t hold back from showing you the code! It assumes basic familiarity with security tools like vulnerability scanning, YAML checks & CIS benchmarks.
https://sched.co/ekE7
Kubernetes-native Security with Starboard - Liz Rice & Daniel Pacak, Aqua Security
Starboard is an open source project that gathers security information from various different tools into Kubernetes CRDs, so users can manage & access security reports through familiar Kubernetes interfaces, like kubectl or Octant. This talk uses plenty of demos to describe the motivations behind Starboard, and design challenges such as: - how reports can relate to different resources, from pods through to entire clusters - showing security information for running workloads - extensibility and plugins Learn how to use Starboard generate to actionable security information that's visible to the people who need it. See how to extend Starboard to integrate your favourite security tool, if it isn't already covered today. This “Advanced” talk won’t hold back from showing you the code! It assumes basic familiarity with security tools like vulnerability scanning, YAML checks & CIS benchmarks.
https://sched.co/ekE7
- 2 participants
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Kubernetes: Putting the Focus on Upstream Usability with SIG Usability - Tasha Drew, VMware & Gabby Moreno Cesar, IBM
SIG Usability is the Kubernetes’ community’s newest special interest group. In this presentation we will go over our user research project to better understand end users of Kubernetes and how the upstream project can better serve them. We will also briefly go over and intro to the SIG for people who are interested in getting started as new contributors! We are a very open and friendly group, and encourage people of all skill sets, skill levels, and experience with open source to join us. You can also check out and join our work by joining our google group, attending our meetings, and/or participating via github.
https://sched.co/ekHY
Kubernetes: Putting the Focus on Upstream Usability with SIG Usability - Tasha Drew, VMware & Gabby Moreno Cesar, IBM
SIG Usability is the Kubernetes’ community’s newest special interest group. In this presentation we will go over our user research project to better understand end users of Kubernetes and how the upstream project can better serve them. We will also briefly go over and intro to the SIG for people who are interested in getting started as new contributors! We are a very open and friendly group, and encourage people of all skill sets, skill levels, and experience with open source to join us. You can also check out and join our work by joining our google group, attending our meetings, and/or participating via github.
https://sched.co/ekHY
- 3 participants
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Leveraging Service Meshes for Accelerating Serverless Workflows - Paarijaat Aditya & Manuel Stein, Nokia
Serverless platforms increasingly provide support for function composition (e.g., Knative Eventing, Fission, KNIX). To reduce function interaction overhead within a workflow, platforms may choose to co-locate multiple functions inside a single container along with a custom local messaging mechanism. In this design, the functions of a complex workflow may have to be partitioned across multiple containers, requiring invocations to a downstream function to be load-balanced between its replicas across containers. Service meshes could provide such load balancing; however, they lack locality awareness for the workflow. This talk explores how service meshes can be extended to be co-location aware and to provide a single data plane for both intra- and inter-container messaging. Lessons learned implementing such a co-location aware data plane, its advantages and pitfalls are also presented.
https://sched.co/ekEe
Leveraging Service Meshes for Accelerating Serverless Workflows - Paarijaat Aditya & Manuel Stein, Nokia
Serverless platforms increasingly provide support for function composition (e.g., Knative Eventing, Fission, KNIX). To reduce function interaction overhead within a workflow, platforms may choose to co-locate multiple functions inside a single container along with a custom local messaging mechanism. In this design, the functions of a complex workflow may have to be partitioned across multiple containers, requiring invocations to a downstream function to be load-balanced between its replicas across containers. Service meshes could provide such load balancing; however, they lack locality awareness for the workflow. This talk explores how service meshes can be extended to be co-location aware and to provide a single data plane for both intra- and inter-container messaging. Lessons learned implementing such a co-location aware data plane, its advantages and pitfalls are also presented.
https://sched.co/ekEe
- 2 participants
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Lives On the Line. Learning Disaster Response From the Coronavirus Pandemic - Kris Nova & Dr. Rachel Beda, Wisepatient
Join us for an exciting session where two worlds collide to bring a deep look at disaster response in cloud-native from the lense of a global viral pandemic. Two unsuspecting women will grace the stage to share a powerful lesson. Join a practicing MD from Seattle, and a security expert from San Francisco as they look at the top lessons learned in the global response to the CoVID-19 Pandemic. They draw stark comparison to the incident response, detection, and disaster recovery in the medical field that with the same issues we see in software. Learn how open source was able to save lives. Learn how tools like Falco are used identically to the response field testing we saw during the outbreak. Learn how the world has taught itself to expect the unexpected, and respond to catastrophe. The audience walks away feeling secure and prepared for an unexpected disaster in their infrastructure.
https://sched.co/ekEA
Lives On the Line. Learning Disaster Response From the Coronavirus Pandemic - Kris Nova & Dr. Rachel Beda, Wisepatient
Join us for an exciting session where two worlds collide to bring a deep look at disaster response in cloud-native from the lense of a global viral pandemic. Two unsuspecting women will grace the stage to share a powerful lesson. Join a practicing MD from Seattle, and a security expert from San Francisco as they look at the top lessons learned in the global response to the CoVID-19 Pandemic. They draw stark comparison to the incident response, detection, and disaster recovery in the medical field that with the same issues we see in software. Learn how open source was able to save lives. Learn how tools like Falco are used identically to the response field testing we saw during the outbreak. Learn how the world has taught itself to expect the unexpected, and respond to catastrophe. The audience walks away feeling secure and prepared for an unexpected disaster in their infrastructure.
https://sched.co/ekEA
- 2 participants
- 46 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Logging: Fluentd & Fluent Bit - Eduardo Silva & Masahiro Nakagawa, Treasure Data
In this presentation, we will cover the basics, internals and best practices of Logging applied to distributed systems, we will do this through the CNCF projects Fluentd and Fluent Bit. We will introduce the pipeline of data collection, filtering, buffering and routing to external services for data centralization. In addition we will cover best practices for Kubernetes for different types of deployments such as DaemonSets and Sidecars. If you are interested in observability, this session is a must!
https://sched.co/ekHb
Logging: Fluentd & Fluent Bit - Eduardo Silva & Masahiro Nakagawa, Treasure Data
In this presentation, we will cover the basics, internals and best practices of Logging applied to distributed systems, we will do this through the CNCF projects Fluentd and Fluent Bit. We will introduce the pipeline of data collection, filtering, buffering and routing to external services for data centralization. In addition we will cover best practices for Kubernetes for different types of deployments such as DaemonSets and Sidecars. If you are interested in observability, this session is a must!
https://sched.co/ekHb
- 2 participants
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
MLOps at Snapchat: Continuous Machine Learning with Kubeflow & Spinnaker - Kevin Dela Rosa, Snap Inc.
Training a machine learning model to support your use case can be difficult, but in actuality model creation is only the beginning. ML systems are complex and differ from traditional software systems; as such unique challenges arise when engineers or data scientists try to integrate and continuously operate ML systems in production. Applying best practices and principles from DevOps to machine learning systems (MLOps) can help practitioners navigate the entire ML lifecycle. In this talk, we will share our experience so far in applying MLOps to a computer vision use case at Snapchat. We will walkthrough the process of transforming a manual script driven process into a more robust and automated experience. We will describe our ML pipeline and how we leveraged Kubernetes, Kubeflow pipelines, and Spinnaker to achieve continuous integration, continuous delivery, and continuous training.
https://sched.co/ekC8
MLOps at Snapchat: Continuous Machine Learning with Kubeflow & Spinnaker - Kevin Dela Rosa, Snap Inc.
Training a machine learning model to support your use case can be difficult, but in actuality model creation is only the beginning. ML systems are complex and differ from traditional software systems; as such unique challenges arise when engineers or data scientists try to integrate and continuously operate ML systems in production. Applying best practices and principles from DevOps to machine learning systems (MLOps) can help practitioners navigate the entire ML lifecycle. In this talk, we will share our experience so far in applying MLOps to a computer vision use case at Snapchat. We will walkthrough the process of transforming a manual script driven process into a more robust and automated experience. We will describe our ML pipeline and how we leveraged Kubernetes, Kubeflow pipelines, and Spinnaker to achieve continuous integration, continuous delivery, and continuous training.
https://sched.co/ekC8
- 1 participant
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Machine Learning on Kubernetes at Shell: A Kubeflow Journey - Alex Iankoulski, Shell New Energies & Vangelis Koukis, Arrikto
In this session, Shell describes the lessons learned from working with multiple Machine Learning platforms and tools, the challenges of different systems, why we chose Kubeflow, and how we are now delivering successful models faster and at scale. Follow our journey as we learned how to deploy highly available, scalable, and secure Kubeflow clusters in the public cloud. We will describe the lessons learned and steps taken to improve our deployments including enterprise authentication and authorization, network integration, and data science workflows. We also discuss why we moved away from other platforms and chose Kubeflow, and how it has increased our Data Scientists’ productivity and reduced DevOps overhead. Today our teams are more self-sufficient, and iterate faster to produce production-ready models in a timely fashion. A zero to hero story made possible by Kubeflow and Kubernetes
https://sched.co/ekBt
Machine Learning on Kubernetes at Shell: A Kubeflow Journey - Alex Iankoulski, Shell New Energies & Vangelis Koukis, Arrikto
In this session, Shell describes the lessons learned from working with multiple Machine Learning platforms and tools, the challenges of different systems, why we chose Kubeflow, and how we are now delivering successful models faster and at scale. Follow our journey as we learned how to deploy highly available, scalable, and secure Kubeflow clusters in the public cloud. We will describe the lessons learned and steps taken to improve our deployments including enterprise authentication and authorization, network integration, and data science workflows. We also discuss why we moved away from other platforms and chose Kubeflow, and how it has increased our Data Scientists’ productivity and reduced DevOps overhead. Today our teams are more self-sufficient, and iterate faster to produce production-ready models in a timely fashion. A zero to hero story made possible by Kubeflow and Kubernetes
https://sched.co/ekBt
- 2 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Making the Business Case for Contributing to Open Source - Tobie Langel, UnlockOpen
Today, pretty much all companies have embraced open source. But while they’re all keen to use open source, at lot fewer actually contribute to it. And yet, there’s real value in doing so. Companies use their contribution to open source to boost recruiting (Facebook claims 75% of their new engineering recruits mention Facebook’s open source program as a key reason they accepted their offer), increase their market, build a moat around their business, or position themselves as leaders in their field. In this talk, we’ll look at the different ways contributing to open source can benefit a business and become a competitive advantage. We’ll look at the open source strategies of different companies, big and small, and provide you with the knowledge to start building a business case for open source in your own company.
https://sched.co/ekBM
Making the Business Case for Contributing to Open Source - Tobie Langel, UnlockOpen
Today, pretty much all companies have embraced open source. But while they’re all keen to use open source, at lot fewer actually contribute to it. And yet, there’s real value in doing so. Companies use their contribution to open source to boost recruiting (Facebook claims 75% of their new engineering recruits mention Facebook’s open source program as a key reason they accepted their offer), increase their market, build a moat around their business, or position themselves as leaders in their field. In this talk, we’ll look at the different ways contributing to open source can benefit a business and become a competitive advantage. We’ll look at the open source strategies of different companies, big and small, and provide you with the knowledge to start building a business case for open source in your own company.
https://sched.co/ekBM
- 1 participant
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Managing Cloud Native Artifacts for Large Scale Kubernetes Cluster - Henry Zhang, VMware & Mingming Pei, Netease
When managing artifacts like container images and Helm charts for cloud native apps, users often face challenges such as efficiently publishing applications to Kubernetes cluster at scale, enforcing access control, identifying image vulnerabilities and backing up cloud native artifacts. In this talk, we introduce real-world use cases for managing images and Helm charts in CI/CD pipeline and production environment. The cases are summarized from production users of Kubernetes, including these aspects: 1. Setting up a highly available and scale-out registry service for a Kubernetes cluster 2. Synchronizing images and Helm charts of cloud native applications across multiple cloud environments or data centers 3. Preventing images with vulnerabilities from getting into production 4. Using P2P approach to efficiently distribute images in a large cluster 5. Integrated management in CI/CD
https://sched.co/etWq
Managing Cloud Native Artifacts for Large Scale Kubernetes Cluster - Henry Zhang, VMware & Mingming Pei, Netease
When managing artifacts like container images and Helm charts for cloud native apps, users often face challenges such as efficiently publishing applications to Kubernetes cluster at scale, enforcing access control, identifying image vulnerabilities and backing up cloud native artifacts. In this talk, we introduce real-world use cases for managing images and Helm charts in CI/CD pipeline and production environment. The cases are summarized from production users of Kubernetes, including these aspects: 1. Setting up a highly available and scale-out registry service for a Kubernetes cluster 2. Synchronizing images and Helm charts of cloud native applications across multiple cloud environments or data centers 3. Preventing images with vulnerabilities from getting into production 4. Using P2P approach to efficiently distribute images in a large cluster 5. Integrated management in CI/CD
https://sched.co/etWq
- 2 participants
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Managing Developer Workflows with the Kubernetes API - Colin Murphy, Adobe
Write your own Kubernetes client to keep application teams from breaking their products. Kubernetes is incredibly powerful. It's extensibility allows for limitless varieties of architecture. But how do you get hundreds of engineers to follow the same conventions when creating their applications? For us at Adobe Document Cloud, the answer was to write our own Kubernetes client. It's easy to get started and well worth the investment for larger organizations. Writing your own client allows you to have much greater control over the deployment process, including secrets and change management. It also allows you to integrate with your existing deployment systems and reduces the cognitive load on your engineering teams.
https://sched.co/ekAX
Managing Developer Workflows with the Kubernetes API - Colin Murphy, Adobe
Write your own Kubernetes client to keep application teams from breaking their products. Kubernetes is incredibly powerful. It's extensibility allows for limitless varieties of architecture. But how do you get hundreds of engineers to follow the same conventions when creating their applications? For us at Adobe Document Cloud, the answer was to write our own Kubernetes client. It's easy to get started and well worth the investment for larger organizations. Writing your own client allows you to have much greater control over the deployment process, including secrets and change management. It also allows you to integrate with your existing deployment systems and reduces the cognitive load on your engineering teams.
https://sched.co/ekAX
- 1 participant
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Multi-Cluster is Easier Than You Think with Linkerd and Ambassador - Thomas Rampelberg, Buoyant & Daniel Bryant, Datawire
Multicluster is becoming the new norm; practically everyone runs multiple dev and staging clusters, and running multiple cross-AZ/DC production clusters is a best practice for high availability. However, connecting multiple clusters is often seen as challenging. We’re here to convince you that it’s easy to get started with Linkerd and Ambassador. Join Thomas and Daniel to learn: - The motivations for cross-cluster communication - Key requirements for multi-cluster comms, including: providing a unified trust domain, separating failure domains, support heterogeneous networks, and providing a unified model with in-cluster comms. - An exploration of the “service mirror” pattern and how this is implemented within Linkerd - How to connect and manage an Ingress to a multi-cluster deployment using service mirroring (including live demo)
https://sched.co/ekD9
Multi-Cluster is Easier Than You Think with Linkerd and Ambassador - Thomas Rampelberg, Buoyant & Daniel Bryant, Datawire
Multicluster is becoming the new norm; practically everyone runs multiple dev and staging clusters, and running multiple cross-AZ/DC production clusters is a best practice for high availability. However, connecting multiple clusters is often seen as challenging. We’re here to convince you that it’s easy to get started with Linkerd and Ambassador. Join Thomas and Daniel to learn: - The motivations for cross-cluster communication - Key requirements for multi-cluster comms, including: providing a unified trust domain, separating failure domains, support heterogeneous networks, and providing a unified model with in-cluster comms. - An exploration of the “service mirror” pattern and how this is implemented within Linkerd - How to connect and manage an Ingress to a multi-cluster deployment using service mirroring (including live demo)
https://sched.co/ekD9
- 2 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
NATS Streams and Services: From Zero to Hero - Waldemar Quevedo Salinas & Jaime Piña, Synadia Communications
NATS is high performance cloud native messaging system that allows you to build globally available and secure applications based on streams and services that are both fast and simple to operate. In this talk you will learn: how to get started with NATS streams and services, about the NATS Adaptive Edge Architecture to span clusters across different networks and clusters using leafnodes and gateway connections, followed by a deep dive into the latest features such as its JetStream persistence engine as well as how to deploy and operating NATS in Kubernetes.
https://sched.co/ekHe
NATS Streams and Services: From Zero to Hero - Waldemar Quevedo Salinas & Jaime Piña, Synadia Communications
NATS is high performance cloud native messaging system that allows you to build globally available and secure applications based on streams and services that are both fast and simple to operate. In this talk you will learn: how to get started with NATS streams and services, about the NATS Adaptive Edge Architecture to span clusters across different networks and clusters using leafnodes and gateway connections, followed by a deep dive into the latest features such as its JetStream persistence engine as well as how to deploy and operating NATS in Kubernetes.
https://sched.co/ekHe
- 2 participants
- 31 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Navigating the App Delivery Landscape While Solving Everyday Problems - Lei Zhang, Alibaba & Alois Reitbauer, Dynatrace
Recently there was a lot of buzz around the CNCF landscape getting overly complex. There are more and more options to choose from which is good to see a growing ecosystem. However, this can sometimes also become overwhelming. In this session we walk through major challenges that people are facing and show how they can be solved with projects available today. We will look into scenarios from defining your application all the way to running it in production. Whether you are just about to start running applications on Kubernetes or want to improve your skills. This session will help you to identify what to consider when building app platforms, share good practices, compare different approaches and give you an interactive and quick tour through the CNCF landscape with a focus on delivering and running applications. You will also get some demo code samples to try everything hands on and have a reference to get started with your own projects.
https://sched.co/ekFr
Navigating the App Delivery Landscape While Solving Everyday Problems - Lei Zhang, Alibaba & Alois Reitbauer, Dynatrace
Recently there was a lot of buzz around the CNCF landscape getting overly complex. There are more and more options to choose from which is good to see a growing ecosystem. However, this can sometimes also become overwhelming. In this session we walk through major challenges that people are facing and show how they can be solved with projects available today. We will look into scenarios from defining your application all the way to running it in production. Whether you are just about to start running applications on Kubernetes or want to improve your skills. This session will help you to identify what to consider when building app platforms, share good practices, compare different approaches and give you an interactive and quick tour through the CNCF landscape with a focus on delivering and running applications. You will also get some demo code samples to try everything hands on and have a reference to get started with your own projects.
https://sched.co/ekFr
- 4 participants
- 43 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Notary v2: Redesigning the Secure Supply Chain for Containers - Justin Cormack, Docker, Steve Lasker, Microsoft, & Omar Paul, Amazon
The Notary v2 project was launched at Kubecon North America in 2019, as a joint community effort to resolve issues with the first generation Notary, which was launched five years ago. Since then we have learned a lot about how containers are used in practise and the security requirements, and Notary v2 builds on that experience from the whole community. The protocols are OCI registry native and designed to improve the supply chain security of the whole container ecosystem. This talk gives an overview of the progress, and the problems being solved, and then a deep dive into the state of the specification and implementations. We also cover current open issues and the road to production.
https://sched.co/ekIB
Notary v2: Redesigning the Secure Supply Chain for Containers - Justin Cormack, Docker, Steve Lasker, Microsoft, & Omar Paul, Amazon
The Notary v2 project was launched at Kubecon North America in 2019, as a joint community effort to resolve issues with the first generation Notary, which was launched five years ago. Since then we have learned a lot about how containers are used in practise and the security requirements, and Notary v2 builds on that experience from the whole community. The protocols are OCI registry native and designed to improve the supply chain security of the whole container ecosystem. This talk gives an overview of the progress, and the problems being solved, and then a deep dive into the state of the specification and implementations. We also cover current open issues and the road to production.
https://sched.co/ekIB
- 2 participants
- 32 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Observability Brings Clarity in 5G World - Yamini Sridaran & Praveen George, Affirmed Networks
Kubernetes has become the de-facto standard for running 5G core virtual network functions (VNFs) - a set of standards defined applications, each implemented as dozens of microservices and often run across multiple K8s clusters. Centralized monitoring, early detection of problems, and deep troubleshooting tools are essential to ensure telco-grade availability of this complex set of inter-connected microservices. In this talk we present our experience building and using our telco observability platform using CNCF projects. This platform provides: End to End 5G call tracing across multiple VNFs using Jaeger 5G network performance monitoring using 1000s of base and derived metrics using Prometheus Fault detection and troubleshooting using AlertManager, Fluentd and Kibana Attend this talk to learn how observability brings clarity to complex, high-reliability applications such as 5G VNFs.
https://sched.co/ekCx
Observability Brings Clarity in 5G World - Yamini Sridaran & Praveen George, Affirmed Networks
Kubernetes has become the de-facto standard for running 5G core virtual network functions (VNFs) - a set of standards defined applications, each implemented as dozens of microservices and often run across multiple K8s clusters. Centralized monitoring, early detection of problems, and deep troubleshooting tools are essential to ensure telco-grade availability of this complex set of inter-connected microservices. In this talk we present our experience building and using our telco observability platform using CNCF projects. This platform provides: End to End 5G call tracing across multiple VNFs using Jaeger 5G network performance monitoring using 1000s of base and derived metrics using Prometheus Fault detection and troubleshooting using AlertManager, Fluentd and Kibana Attend this talk to learn how observability brings clarity to complex, high-reliability applications such as 5G VNFs.
https://sched.co/ekCx
- 2 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Observing Cloud Native Observables with the New SIG Observability - Bartlomiej Płotka, Red Hat & Richard Hartmann, Grafana Labs
This year we founded a brand new SIG to take cloud-native observability forward: Welcome SIG Observability! Consisting of open source project maintainers, standards authors, end-users, and more, we cover a wide range of experience and invite you to join us as well! In this talk, the audience will learn what our goals and objectives are and how anyone can get involved and contribute. We will give you a short history of what we did up to now, what we’re doing right now, and where we want to go in the future.
https://sched.co/ekFx
Observing Cloud Native Observables with the New SIG Observability - Bartlomiej Płotka, Red Hat & Richard Hartmann, Grafana Labs
This year we founded a brand new SIG to take cloud-native observability forward: Welcome SIG Observability! Consisting of open source project maintainers, standards authors, end-users, and more, we cover a wide range of experience and invite you to join us as well! In this talk, the audience will learn what our goals and objectives are and how anyone can get involved and contribute. We will give you a short history of what we did up to now, what we’re doing right now, and where we want to go in the future.
https://sched.co/ekFx
- 2 participants
- 16 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Open Policy Agent Intro - Patrick East, Styra & Max Smythe, Google
Come to this session to learn about the Open Policy Agent (OPA) project. OPA is a general-purpose policy engine that solves a number of policy-related use cases for Kubernetes, microservices, CI/CD, cloud, and more. During this session the OPA maintainers will introduce the project for newcomers and then provide updates on the latest and greatest features landing in OPA and OPA Gatekeeper. If you are interested in policy and security as it relates to cloud native technology, this session is for you.
https://sched.co/ekI2
Open Policy Agent Intro - Patrick East, Styra & Max Smythe, Google
Come to this session to learn about the Open Policy Agent (OPA) project. OPA is a general-purpose policy engine that solves a number of policy-related use cases for Kubernetes, microservices, CI/CD, cloud, and more. During this session the OPA maintainers will introduce the project for newcomers and then provide updates on the latest and greatest features landing in OPA and OPA Gatekeeper. If you are interested in policy and security as it relates to cloud native technology, this session is for you.
https://sched.co/ekI2
- 2 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Optimizing Storage Assignment via Pod Scheduling Under Disturbance Factors - Kenji Morimoto, Cybozu, Inc.
For distributed storage systems like Ceph, it is essential to allocate node-local storage devices evenly among racks or regions. This talk introduces how to automate this allocation by using the "WaitForFirstConsumer" volume binding mode and tuning kube-scheduler. The use of "WaitForFirstConsumer" translates the problem of storage allocation into that of pod scheduling. Kenji and his colleagues in Cybozu utilize the feature of Topology Spread Constraints to distribute storage pods. They found that kube-scheduler needs tuning from the default to spread pods optimally under disturbance such as CPU consuming workloads. Since kube-scheduler is being improved, the tuning method varies according to the Kubernetes version. The talk covers the tuning methods for Kubernetes 1.17, 1.18, and 1.19. By distributing storage pods among racks, they achieved fault tolerance against a full rack failure.
https://sched.co/ekFB
Optimizing Storage Assignment via Pod Scheduling Under Disturbance Factors - Kenji Morimoto, Cybozu, Inc.
For distributed storage systems like Ceph, it is essential to allocate node-local storage devices evenly among racks or regions. This talk introduces how to automate this allocation by using the "WaitForFirstConsumer" volume binding mode and tuning kube-scheduler. The use of "WaitForFirstConsumer" translates the problem of storage allocation into that of pod scheduling. Kenji and his colleagues in Cybozu utilize the feature of Topology Spread Constraints to distribute storage pods. They found that kube-scheduler needs tuning from the default to spread pods optimally under disturbance such as CPU consuming workloads. Since kube-scheduler is being improved, the tuning method varies according to the Kubernetes version. The talk covers the tuning methods for Kubernetes 1.17, 1.18, and 1.19. By distributing storage pods among racks, they achieved fault tolerance against a full rack failure.
https://sched.co/ekFB
- 1 participant
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Overview and State of Linkerd - William Morgan & Tarun Pothulapati, Buoyant, Inc.
In this talk, maintainers from the Linkerd project will present an overview of the project and an update on upcoming releases. They'll cover what Linkerd is and how it compares to other service meshes; what the latest features and functionality are; what to expect in upcoming releases; and how you can get involved in one of the CNCF's most talked-about projects. This talk will include Linkerd's new seamless multi-cluster and TCP mutual TLS (mtls) features in the 2.8 and 2.9 releases, as well as performance benchmarks and recent changes in Linkerd's underlying micro-proxy, Linkerd2-proxy.
https://sched.co/ekIN
Overview and State of Linkerd - William Morgan & Tarun Pothulapati, Buoyant, Inc.
In this talk, maintainers from the Linkerd project will present an overview of the project and an update on upcoming releases. They'll cover what Linkerd is and how it compares to other service meshes; what the latest features and functionality are; what to expect in upcoming releases; and how you can get involved in one of the CNCF's most talked-about projects. This talk will include Linkerd's new seamless multi-cluster and TCP mutual TLS (mtls) features in the 2.8 and 2.9 releases, as well as performance benchmarks and recent changes in Linkerd's underlying micro-proxy, Linkerd2-proxy.
https://sched.co/ekIN
- 2 participants
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Owned by Statistics: Using Kubeflow to Defend vs Attacks on Your ML Models - David Aronchick, Microsoft
Machine learning continues its spread across the tech world and is now in use by more than 80% of enterprises world wide. However, with the increased reliance on this technology, the spectre of additional security attack surface areas rises up. Machine learning attacks are a new area of opportunity for adversaries, and require a new way to approach defense. In this talk, we will cover several of the most common ML attacks today and how to defend against them. We will also show how to use a sophisticated, cloud-native pipeline with Kubeflow will to enable organizations to detect, remediate and defend against future attacks.
https://sched.co/ekBz
Owned by Statistics: Using Kubeflow to Defend vs Attacks on Your ML Models - David Aronchick, Microsoft
Machine learning continues its spread across the tech world and is now in use by more than 80% of enterprises world wide. However, with the increased reliance on this technology, the spectre of additional security attack surface areas rises up. Machine learning attacks are a new area of opportunity for adversaries, and require a new way to approach defense. In this talk, we will cover several of the most common ML attacks today and how to defend against them. We will also show how to use a sophisticated, cloud-native pipeline with Kubeflow will to enable organizations to detect, remediate and defend against future attacks.
https://sched.co/ekBz
- 2 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
PID 1, SIG Handling, Hooks & Probes: Managing Container Lifecycle Correctly - Anmol Krishan Sachdeva, OLX Group, Naspers
The lifecycle of an application should be tightly linked to the container hosting it. In an environment like Kubernetes where the Pods get created and deleted left, right, and centre, if an application hasn't implemented signal handling correctly, ungraceful termination of that application is most likely to happen and it could lead to disrupted services. For running the containers in a reliable fashion with proper signal handling and lifecycle management, there are a few strategies that should be followed which this talk would be covering: ~ Signal handling through `init` system - covers PID 1, orphans and zombie processes, Linux signals, `dumb-init` or `tini`. ~ Utilizing postStart and preStop lifecycle hooks for initialization and graceful termination. ~ Liveness, Readiness, and Startup probes. ~ Key differences between the postStart hook, initContainer, and Startup Probe.
https://sched.co/ekAC
PID 1, SIG Handling, Hooks & Probes: Managing Container Lifecycle Correctly - Anmol Krishan Sachdeva, OLX Group, Naspers
The lifecycle of an application should be tightly linked to the container hosting it. In an environment like Kubernetes where the Pods get created and deleted left, right, and centre, if an application hasn't implemented signal handling correctly, ungraceful termination of that application is most likely to happen and it could lead to disrupted services. For running the containers in a reliable fashion with proper signal handling and lifecycle management, there are a few strategies that should be followed which this talk would be covering: ~ Signal handling through `init` system - covers PID 1, orphans and zombie processes, Linux signals, `dumb-init` or `tini`. ~ Utilizing postStart and preStop lifecycle hooks for initialization and graceful termination. ~ Liveness, Readiness, and Startup probes. ~ Key differences between the postStart hook, initContainer, and Startup Probe.
https://sched.co/ekAC
- 1 participant
- 33 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
PKI the Wrong Way: Simple TLS Mistakes and Surprising Consequences - Tabitha Sable, Datadog
Effective management of TLS certificates and keys is a serious challenge when running Kubernetes at scale. TLS mutual authentication secures all the Kubernetes control plane components, but there are many details that must be right. This talk looks at some of the ways common mTLS configuration mistakes can be abused and how you can reduce that risk. The presentation begins with a tour of the basics of TLS mutual authentication and how it is used by each control plane component. Then, Tabitha will demonstrate several example misconfigurations, exploit them for your education and amusement, and share recommendations to prevent them in your own clusters. You'll leave with a stronger understanding of this essential element of Kubernetes cluster deployment.
https://sched.co/ekES
PKI the Wrong Way: Simple TLS Mistakes and Surprising Consequences - Tabitha Sable, Datadog
Effective management of TLS certificates and keys is a serious challenge when running Kubernetes at scale. TLS mutual authentication secures all the Kubernetes control plane components, but there are many details that must be right. This talk looks at some of the ways common mTLS configuration mistakes can be abused and how you can reduce that risk. The presentation begins with a tour of the basics of TLS mutual authentication and how it is used by each control plane component. Then, Tabitha will demonstrate several example misconfigurations, exploit them for your education and amusement, and share recommendations to prevent them in your own clusters. You'll leave with a stronger understanding of this essential element of Kubernetes cluster deployment.
https://sched.co/ekES
- 1 participant
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Panel: Introduction to the Container Orchestrated Device (COD) Working Group - Renaud Gaubert, NVIDIA; Mike Brown, IBM; Mrunal Patel & Urvashi Mohnani, Red Hat; & Alexander Kanevskiy, Intel
The Container Orchestrated Device (COD) Working Group, is a small group formed by passionate Container Runtime Maintainers and Device Vendors looking to solve many of the challenges Devices face in the cloud native space. Custom Devices are used in many industries (HPC, 5G, AI and Deep Learning, Data center, …), from single nodes accessing devices over the fabric to thousands of devices communicating over the network, the working group is helping enable new and exciting progress in the data center! Attendees will hear an overview of the issues the current ecosystem faces with device support, new and exciting changes happening in the different runtimes (e.g: the Container Device Interface) as well as in orchestrators (e.g: monitoring of Devices) and the roadmap ahead to enable the cloud native space to support exciting new workloads (e.g: 5G applications, Multi-node Deep Learning, …).
https://sched.co/ekDv
Panel: Introduction to the Container Orchestrated Device (COD) Working Group - Renaud Gaubert, NVIDIA; Mike Brown, IBM; Mrunal Patel & Urvashi Mohnani, Red Hat; & Alexander Kanevskiy, Intel
The Container Orchestrated Device (COD) Working Group, is a small group formed by passionate Container Runtime Maintainers and Device Vendors looking to solve many of the challenges Devices face in the cloud native space. Custom Devices are used in many industries (HPC, 5G, AI and Deep Learning, Data center, …), from single nodes accessing devices over the fabric to thousands of devices communicating over the network, the working group is helping enable new and exciting progress in the data center! Attendees will hear an overview of the issues the current ecosystem faces with device support, new and exciting changes happening in the different runtimes (e.g: the Container Device Interface) as well as in orchestrators (e.g: monitoring of Devices) and the roadmap ahead to enable the cloud native space to support exciting new workloads (e.g: 5G applications, Multi-node Deep Learning, …).
https://sched.co/ekDv
- 5 participants
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Panel: Linux in the Kubernetes Era: Does The OS Still Matter? - Tasha Drew, VMware; Kiko Reis, Canonical; Darren Shepherd, Rancher Labs; Dusty Mabe, Red Hat; & Vincent Batts, Kinvolk
With the end of life of the original “Container Linux” (CoreOS), what is the future for the key underlying component of any Kubernetes deployment: the operating system? While many are opting for general-purpose distributions like Ubuntu or CentOS, there is a healthy ecosystem of Kubernetes- and container-optimized distros, as well as new container-specific kernel features. This panel, bringing together representatives from the key Kubernetes Linux vendors, will review the current state of Linux for cloud native workloads, the areas being worked on by the community, and the pros/cons of different approaches from an end-user perspective. Discussion topics will include improved kernel support for containers, minimal vs general purpose distros, and loose vs tightly coupled approaches to distributing Linux+Kubernetes.
https://sched.co/ekDI
Panel: Linux in the Kubernetes Era: Does The OS Still Matter? - Tasha Drew, VMware; Kiko Reis, Canonical; Darren Shepherd, Rancher Labs; Dusty Mabe, Red Hat; & Vincent Batts, Kinvolk
With the end of life of the original “Container Linux” (CoreOS), what is the future for the key underlying component of any Kubernetes deployment: the operating system? While many are opting for general-purpose distributions like Ubuntu or CentOS, there is a healthy ecosystem of Kubernetes- and container-optimized distros, as well as new container-specific kernel features. This panel, bringing together representatives from the key Kubernetes Linux vendors, will review the current state of Linux for cloud native workloads, the areas being worked on by the community, and the pros/cons of different approaches from an end-user perspective. Discussion topics will include improved kernel support for containers, minimal vs general purpose distros, and loose vs tightly coupled approaches to distributing Linux+Kubernetes.
https://sched.co/ekDI
- 5 participants
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Panel: Tales from the Edge: Is the Edge More Important Than the Service Mesh? - Matt Klein, Lyft; Alyssa Wilk, Google; Lin Sun, IBM; & Bjorn Freeman-Benson, Ambassador Labs
The service mesh hype cycle is well and truly in effect, and almost everyone believes their organization needs a service mesh, even if some don’t fully understand the use case this technology covers. But what about the edge? Practically every Internet-based application needs to get traffic from users into backend services. Join this panel to learn about the importance of both use cases from a range of experts in the traffic management domain. Topics to be discussed include: - Opinions on the relevant importance of both the north-south (ingress) and east-west (service) traffic management use cases - Real-world adoption stories of cloud native proxies, such as Envoy - Experiences on migration to cloud native edge gateways - Tell-tale signs that an organization should consider adopting a service mesh (or not) - Technology choices in the edge gateway and service mesh space
https://sched.co/ekD6
Panel: Tales from the Edge: Is the Edge More Important Than the Service Mesh? - Matt Klein, Lyft; Alyssa Wilk, Google; Lin Sun, IBM; & Bjorn Freeman-Benson, Ambassador Labs
The service mesh hype cycle is well and truly in effect, and almost everyone believes their organization needs a service mesh, even if some don’t fully understand the use case this technology covers. But what about the edge? Practically every Internet-based application needs to get traffic from users into backend services. Join this panel to learn about the importance of both use cases from a range of experts in the traffic management domain. Topics to be discussed include: - Opinions on the relevant importance of both the north-south (ingress) and east-west (service) traffic management use cases - Real-world adoption stories of cloud native proxies, such as Envoy - Experiences on migration to cloud native edge gateways - Tell-tale signs that an organization should consider adopting a service mesh (or not) - Technology choices in the edge gateway and service mesh space
https://sched.co/ekD6
- 4 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Persistent Memory in Kubernetes - Patrick Ohly, Intel
The term persistent memory (PMEM) is used to describe technologies which allow programs to access data as memory, directly byte-addressable, while the contents are non-volatile, preserved across power cycles. It has aspects that are like memory, and aspects that are like storage. Instead of replacing them, persistent memory is a third tier that sits in the middle. With this new ingredient, systems containing persistent memory can outperform legacy configurations, providing faster start-up times, faster access to large in-memory datasets, and often improved total cost of ownership. This talk will present the concept, briefly describe the available hardware (Intel® Optane™ Persistent Memory), and then cover PMEM-CSI, a storage driver that makes PMEM available to applications running inside a Kubernetes cluster.
https://sched.co/ekFE
Persistent Memory in Kubernetes - Patrick Ohly, Intel
The term persistent memory (PMEM) is used to describe technologies which allow programs to access data as memory, directly byte-addressable, while the contents are non-volatile, preserved across power cycles. It has aspects that are like memory, and aspects that are like storage. Instead of replacing them, persistent memory is a third tier that sits in the middle. With this new ingredient, systems containing persistent memory can outperform legacy configurations, providing faster start-up times, faster access to large in-memory datasets, and often improved total cost of ownership. This talk will present the concept, briefly describe the available hardware (Intel® Optane™ Persistent Memory), and then cover PMEM-CSI, a storage driver that makes PMEM available to applications running inside a Kubernetes cluster.
https://sched.co/ekFE
- 1 participant
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Practice of Fine-grained Cgroups Resources Scheduling in Kubernetes - Xianlu Chen & Qingcan Wang, Alibaba
Alibaba supports resource scheduling for hundreds of thousands of nodes, millions of containers, and tens of thousands of applications. Many online services need to dynamically increase the resource limit during operation, and cannot accept the impact of restart.Other applications may require NUMA awareness, CPU Core binding, reduce data copy between CPU caches, and speed up data processing tasks. We have developed a combined scheduling system based on Kubernetes Scheduler framework and Cgroups controller. The scheduler perceives cgroups level resources, such as numa, cpu core, memory limit, etc., and applies scheduler dynamic scheduling to specified nodes, while allowing certain Pod is bound to the specified cpu core. The cgroups controller can also dynamically adjust the pod resources limit without causing the Pod to restart.
https://sched.co/f3cp
Practice of Fine-grained Cgroups Resources Scheduling in Kubernetes - Xianlu Chen & Qingcan Wang, Alibaba
Alibaba supports resource scheduling for hundreds of thousands of nodes, millions of containers, and tens of thousands of applications. Many online services need to dynamically increase the resource limit during operation, and cannot accept the impact of restart.Other applications may require NUMA awareness, CPU Core binding, reduce data copy between CPU caches, and speed up data processing tasks. We have developed a combined scheduling system based on Kubernetes Scheduler framework and Cgroups controller. The scheduler perceives cgroups level resources, such as numa, cpu core, memory limit, etc., and applies scheduler dynamic scheduling to specified nodes, while allowing certain Pod is bound to the specified cpu core. The cgroups controller can also dynamically adjust the pod resources limit without causing the Pod to restart.
https://sched.co/f3cp
- 2 participants
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Prescriptively Benchmarking Kubernetes System and Application Using K-Bench - Yong Li, Facebook & Karthik Ganesan, VMware
This session gives an introduction of K-Bench, a framework designed to benchmark Kubernetes infrastructure from various dimensions in a highly configurable manner. K-Bench accepts a rich set of configuration options and yaml specifications, and parses them into a workload execution plan to provision, manipulate, and coordinate Kubernetes resources. It produces SIG complaint latency and API responsiveness metrics with improved accuracy by adopting a novel timing model. K-Bench also provides a container interface to easily port legacy infrastructure benchmarks into k8s, includes several pre-integrated benchmarks and blueprints to evaluate infrastructure performance at scale like aggregate benchmark throughput across pods, transaction latencies, infrastructure elasticity and resource efficiency in k8s.
https://sched.co/ekDd
Prescriptively Benchmarking Kubernetes System and Application Using K-Bench - Yong Li, Facebook & Karthik Ganesan, VMware
This session gives an introduction of K-Bench, a framework designed to benchmark Kubernetes infrastructure from various dimensions in a highly configurable manner. K-Bench accepts a rich set of configuration options and yaml specifications, and parses them into a workload execution plan to provision, manipulate, and coordinate Kubernetes resources. It produces SIG complaint latency and API responsiveness metrics with improved accuracy by adopting a novel timing model. K-Bench also provides a container interface to easily port legacy infrastructure benchmarks into k8s, includes several pre-integrated benchmarks and blueprints to evaluate infrastructure performance at scale like aggregate benchmark throughput across pods, transaction latencies, infrastructure elasticity and resource efficiency in k8s.
https://sched.co/ekDd
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Progressive Delivery Techniques with Flagger - Stefan Prodan, Weaveworks
You might have heard about progressive delivery - it’s an umbrella term for various deployment techniques (eg. Canary releases, Dark launches, A/B testing, Blue-Green mirroring) meant to reduce the risk of introducing new software versions in production. In this session, Stefan will talk about what it takes to adopt progressive delivery for Kubernetes and how Flagger and service meshes can make deployments safer by limiting the impact of a failed release. We will look at different progressive delivery techniques, discuss the pros and cons, suggest what type of applications are best suited for each technique, and review added complexities that come with each option. We’ll close with a live demo of a GitOps pipeline powered by Flux, Flagger, and Linkerd to showcase the deployment techniques presented.
https://sched.co/ekBD
Progressive Delivery Techniques with Flagger - Stefan Prodan, Weaveworks
You might have heard about progressive delivery - it’s an umbrella term for various deployment techniques (eg. Canary releases, Dark launches, A/B testing, Blue-Green mirroring) meant to reduce the risk of introducing new software versions in production. In this session, Stefan will talk about what it takes to adopt progressive delivery for Kubernetes and how Flagger and service meshes can make deployments safer by limiting the impact of a failed release. We will look at different progressive delivery techniques, discuss the pros and cons, suggest what type of applications are best suited for each technique, and review added complexities that come with each option. We’ll close with a live demo of a GitOps pipeline powered by Flux, Flagger, and Linkerd to showcase the deployment techniques presented.
https://sched.co/ekBD
- 1 participant
- 33 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Project Tye: Building Developer Focused Tooling for Kubernetes and .NET - David Fowler & Justin Kotalik, Microsoft
As Kubernetes and Docker become more prevalent, we have made some hypotheses about the current state of microservices: • Container orchestrators were made for operations teams, not developers. • Kubernetes popularized patterns that are now prominent for microservices that are very hard to replicate locally (for e.g. sidecars). • Developers want to use the tools they are accustomed to when running locally. • Developers rarely need to run the full application during development. • Dockerfiles and Kubernetes manifests duplicate lots of information that exist in developer assets. Project Tye is an experiment by the .NET team to solve common challenges that developers have while developing and deploying microservices. Project Tye includes a local orchestrator to make developing microservices easier and the ability to deploy microservices to Kubernetes with minimal configuration.
https://sched.co/ekAa
Project Tye: Building Developer Focused Tooling for Kubernetes and .NET - David Fowler & Justin Kotalik, Microsoft
As Kubernetes and Docker become more prevalent, we have made some hypotheses about the current state of microservices: • Container orchestrators were made for operations teams, not developers. • Kubernetes popularized patterns that are now prominent for microservices that are very hard to replicate locally (for e.g. sidecars). • Developers want to use the tools they are accustomed to when running locally. • Developers rarely need to run the full application during development. • Dockerfiles and Kubernetes manifests duplicate lots of information that exist in developer assets. Project Tye is an experiment by the .NET team to solve common challenges that developers have while developing and deploying microservices. Project Tye includes a local orchestrator to make developing microservices easier and the ability to deploy microservices to Kubernetes with minimal configuration.
https://sched.co/ekAa
- 2 participants
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Proxyless Service Mesh with gRPC - Menghan Li, Google
gRPC is a popular choice for building microservices. A service mesh is a dedicated infrastructure layer for communications between microservices, with features such as service discovery, load balancing, application security and observability. A service mesh typically uses sidecar proxies alongside the service instances to provide these features. In this session, we will introduce the new exciting development of service mesh features in gRPC, and show how to build a proxyless gRPC service mesh without the complexity of managing sidecar proxies. This talk will cover the architecture followed by a demo on how this works in practice.
https://sched.co/ekI8
Proxyless Service Mesh with gRPC - Menghan Li, Google
gRPC is a popular choice for building microservices. A service mesh is a dedicated infrastructure layer for communications between microservices, with features such as service discovery, load balancing, application security and observability. A service mesh typically uses sidecar proxies alongside the service instances to provide these features. In this session, we will introduce the new exciting development of service mesh features in gRPC, and show how to build a proxyless gRPC service mesh without the complexity of managing sidecar proxies. This talk will cover the architecture followed by a demo on how this works in practice.
https://sched.co/ekI8
- 1 participant
- 20 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Public Technical Oversight Committee (TOC) Meeting - Moderated by Chris Aniszczyk, CTO, The Linux Foundation
Moderators: Chris Aniszczyk
Speakers: Liz Rice, Alena Prokharchyk, Justin Cormack, Saad Ali, Brendan Burns, Matt Klein, Michelle Noorali, Dave Zolotusky, Sheng Liang, Katie Gamanji, Xiang Li
The Technical Oversight Committee (TOC) provides technical leadership to the cloud-native community. The CNCF will host a public TOC meeting, inviting the community to discuss various agenda items along with holding an open Q&A for the community with TOC members.
Public Technical Oversight Committee (TOC) Meeting - Moderated by Chris Aniszczyk, CTO, The Linux Foundation
Moderators: Chris Aniszczyk
Speakers: Liz Rice, Alena Prokharchyk, Justin Cormack, Saad Ali, Brendan Burns, Matt Klein, Michelle Noorali, Dave Zolotusky, Sheng Liang, Katie Gamanji, Xiang Li
The Technical Oversight Committee (TOC) provides technical leadership to the cloud-native community. The CNCF will host a public TOC meeting, inviting the community to discuss various agenda items along with holding an open Q&A for the community with TOC members.
- 11 participants
- 35 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Rook: Intro and Ceph Deep Dive - Blaine Gardner, SUSE, Alexander Trost, Cloudical, & Travis Nielsen, Sébastien Han, Red Hat
The Rook project will be introduced to attendees of all levels and experience. Rook is an open source cloud-native storage orchestrator for Kubernetes, providing the platform, framework, and support for a diverse set of storage solutions to natively integrate with cloud-native environments. Rook turns storage software into self-managing, self-scaling, and self-healing storage services. The benefits and use cases of Rook will be explored along with an overview of each of the Rook storage providers: Ceph, Cassandra, NFS, EdgeFS, YugabyteDB, and CockroachDB. In the latter half of the talk, a deep-dive will be presented for the Ceph storage provider. Rook is run today in many production environments, providing a stable storage platform for your data. The architecture and recent improvements will be show how Rook provides the Ceph management layer for production environments. Rook was accepted as the first storage project hosted by the Cloud Native Computing Foundation in January 2018.
https://sched.co/ekIQ
Rook: Intro and Ceph Deep Dive - Blaine Gardner, SUSE, Alexander Trost, Cloudical, & Travis Nielsen, Sébastien Han, Red Hat
The Rook project will be introduced to attendees of all levels and experience. Rook is an open source cloud-native storage orchestrator for Kubernetes, providing the platform, framework, and support for a diverse set of storage solutions to natively integrate with cloud-native environments. Rook turns storage software into self-managing, self-scaling, and self-healing storage services. The benefits and use cases of Rook will be explored along with an overview of each of the Rook storage providers: Ceph, Cassandra, NFS, EdgeFS, YugabyteDB, and CockroachDB. In the latter half of the talk, a deep-dive will be presented for the Ceph storage provider. Rook is run today in many production environments, providing a stable storage platform for your data. The architecture and recent improvements will be show how Rook provides the Ceph management layer for production environments. Rook was accepted as the first storage project hosted by the Cloud Native Computing Foundation in January 2018.
https://sched.co/ekIQ
- 2 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
SIG Architecture Intro and Update - John Belamaric, Google & Derek Carr, Red Hat
SIG Architecture maintains and evolves the design principles of Kubernetes, and provides a consistent body of expertise necessary to ensure architectural consistency over time. The SIG takes care of evolution of conformance definitions, API definitions/conventions, deprecation policy, design principles, and other cross-cutting concerns. In this talk, we will provide an introduction to SIG architecture, including its role and the various subprojects that support its activities. Additionally, we will provide a community update on the status of those efforts.
https://sched.co/ekGs
SIG Architecture Intro and Update - John Belamaric, Google & Derek Carr, Red Hat
SIG Architecture maintains and evolves the design principles of Kubernetes, and provides a consistent body of expertise necessary to ensure architectural consistency over time. The SIG takes care of evolution of conformance definitions, API definitions/conventions, deprecation policy, design principles, and other cross-cutting concerns. In this talk, we will provide an introduction to SIG architecture, including its role and the various subprojects that support its activities. Additionally, we will provide a community update on the status of those efforts.
https://sched.co/ekGs
- 3 participants
- 33 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
SIG CLI Intro and Updates - Phillip Wittrock, Apple, Maciej Szulik, Red Hat, Sean Sullivan, Google & Eddie Zaneski, AWS
Maintainers from SIG CLI will introduce the audience to the projects hosted under the SIG and the SIG CLI community. They will provide a brief overview for each of these projects, including giving on update on the current state of the kubectl and kustomize CLIs. Maintainers will also cover the contribution process for the SIG, and they ways they have seen new contributors successfully onboard into the SIG. The final 15 minutes of the session will be reserved for answering questions from the audience.
https://sched.co/ekGg
SIG CLI Intro and Updates - Phillip Wittrock, Apple, Maciej Szulik, Red Hat, Sean Sullivan, Google & Eddie Zaneski, AWS
Maintainers from SIG CLI will introduce the audience to the projects hosted under the SIG and the SIG CLI community. They will provide a brief overview for each of these projects, including giving on update on the current state of the kubectl and kustomize CLIs. Maintainers will also cover the contribution process for the SIG, and they ways they have seen new contributors successfully onboard into the SIG. The final 15 minutes of the session will be reserved for answering questions from the audience.
https://sched.co/ekGg
- 4 participants
- 21 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
SIG Multicluster Intro - Paul Morie, Red Hat & Jeremy Olmsted-Thompson, Google
SIG-Multicluster is focused on solving common challenges related to the management of many Kubernetes clusters, across multiple cloud providers (so-called hybrid cloud) and applications deployed across many clusters. In the introduction, we'll give attendees an overview of the current status of the multicluster problem space in Kubernetes and of the SIG. We’ll discuss current thinking around best practices for multicluster deployments and what it means to be part of a ClusterSet. Then we’ll highlight current SIG projects, focused use cases, and ideas for what’s next. Most importantly, we’ll provide information on how you can get involved either as a contributor or as a user who wants to provide feedback about the SIG's current efforts and future direction. This session will mostly be an open dialog; attendees will have the opportunity to ask questions in person as well as leave survey responses that the SIG will use to plan next steps.
https://sched.co/ekGj
SIG Multicluster Intro - Paul Morie, Red Hat & Jeremy Olmsted-Thompson, Google
SIG-Multicluster is focused on solving common challenges related to the management of many Kubernetes clusters, across multiple cloud providers (so-called hybrid cloud) and applications deployed across many clusters. In the introduction, we'll give attendees an overview of the current status of the multicluster problem space in Kubernetes and of the SIG. We’ll discuss current thinking around best practices for multicluster deployments and what it means to be part of a ClusterSet. Then we’ll highlight current SIG projects, focused use cases, and ideas for what’s next. Most importantly, we’ll provide information on how you can get involved either as a contributor or as a user who wants to provide feedback about the SIG's current efforts and future direction. This session will mostly be an open dialog; attendees will have the opportunity to ask questions in person as well as leave survey responses that the SIG will use to plan next steps.
https://sched.co/ekGj
- 2 participants
- 21 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
SIG Scheduling Deep Dive - Wei Huang, IBM & Abdullah Gharaibeh, Google
Kube-Scheduler is the component of Kubernetes that assigns pods to nodes based on the configured scheduling requirements. These requirements can be high availability, resource efficiency and other policies and heuristics. This talk will provide an overview of the new and upcoming features in the scheduler, including the scheduler framework, and the new component config API that enables scheduling profiles. In addition, we'll present updates on other sig-scheduling projects like the descheduler, scheduler-plugins.
https://sched.co/ekHV
SIG Scheduling Deep Dive - Wei Huang, IBM & Abdullah Gharaibeh, Google
Kube-Scheduler is the component of Kubernetes that assigns pods to nodes based on the configured scheduling requirements. These requirements can be high availability, resource efficiency and other policies and heuristics. This talk will provide an overview of the new and upcoming features in the scheduler, including the scheduler framework, and the new component config API that enables scheduling profiles. In addition, we'll present updates on other sig-scheduling projects like the descheduler, scheduler-plugins.
https://sched.co/ekHV
- 1 participant
- 29 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Safely Deploying a 100K line Envoy YAML Configuration to Production - Lisa Lu & Jyoti Mahapatra, Lyft
Have you ever caused a production incident due to an Envoy misconfiguration? You’re not alone! This talk is about how Lyft has built guardrails to prevent such failures. The presenters will share their experience operating Envoy configurations at scale. They will explore the challenges around handling constantly changing cluster and routing configurations & the tools used to guarantee accuracy and consistency in those changes. These tools empower service owners less familiar with Envoy to make configuration changes independently and quickly without approval barriers. This talk will introduce the audience to various Envoy configuration testing strategies: •Validating behavior for thousands of routes to avoid blackholing traffic •Auditing & safely removing unused routes and clusters •Safely deprecating fields between Envoy versions •Validating Envoy’s static & realtime configurations
https://sched.co/ekEq
Safely Deploying a 100K line Envoy YAML Configuration to Production - Lisa Lu & Jyoti Mahapatra, Lyft
Have you ever caused a production incident due to an Envoy misconfiguration? You’re not alone! This talk is about how Lyft has built guardrails to prevent such failures. The presenters will share their experience operating Envoy configurations at scale. They will explore the challenges around handling constantly changing cluster and routing configurations & the tools used to guarantee accuracy and consistency in those changes. These tools empower service owners less familiar with Envoy to make configuration changes independently and quickly without approval barriers. This talk will introduce the audience to various Envoy configuration testing strategies: •Validating behavior for thousands of routes to avoid blackholing traffic •Auditing & safely removing unused routes and clusters •Safely deprecating fields between Envoy versions •Validating Envoy’s static & realtime configurations
https://sched.co/ekEq
- 2 participants
- 19 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Scalable and Multitenant Networking in XDP and Kubernetes Operators - Sherif Abdelwahab & Ying Xiong, Futurewei
Enabling multi-tenant and extensible networking in Kubernetes is of paramount importance for cloud providers requires traffic isolation across tenants. By introducing a new data-plane built using XDP and inter-working custom resource operators, we will discuss how to enable multi-tenant networking at scale without compromising packet processing performance. Sherif and Ying will discuss the use of cases of networking isolation and fast provisioning within the Kubernetes environment for large scale cloud. They will share their experience and design techniques building a networking solution for multi-tenant networks from the ground-up using XDP, CRDs, and Kubernetes Operators. They will conclude with a demo.
https://sched.co/ekCi
Scalable and Multitenant Networking in XDP and Kubernetes Operators - Sherif Abdelwahab & Ying Xiong, Futurewei
Enabling multi-tenant and extensible networking in Kubernetes is of paramount importance for cloud providers requires traffic isolation across tenants. By introducing a new data-plane built using XDP and inter-working custom resource operators, we will discuss how to enable multi-tenant networking at scale without compromising packet processing performance. Sherif and Ying will discuss the use of cases of networking isolation and fast provisioning within the Kubernetes environment for large scale cloud. They will share their experience and design techniques building a networking solution for multi-tenant networks from the ground-up using XDP, CRDs, and Kubernetes Operators. They will conclude with a demo.
https://sched.co/ekCi
- 3 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Scaling to Millions of ML Models to Solve the Problems of SRE and Security - Sandeep Pombra & Jakub Pavlik, Volterra
This talk describes how to scale to millions of ML models operating on petabytes of operational and user data that is used to improve the efficacy of SRE teams and security of end users’ application services. These models are used to improve zero trust security framework and infrastructure diagnosis -- based on machine learning, anomaly detection and time series analysis. A production deployment that delivers these large numbers of models combines many open source technologies such as Kubernetes, Prometheus, Cortex, Apache Spark and Apache Arrow. In this talk, we will describe the key challenges that we had to solve when implementing machine learning and anomaly detection on K8s nodes and Envoy-based service mesh. These challenges include collecting data from hundreds of thousands of nodes, high cardinality of models, and distributing the inference models down to each of the K8s nodes.
https://sched.co/ekCH
Scaling to Millions of ML Models to Solve the Problems of SRE and Security - Sandeep Pombra & Jakub Pavlik, Volterra
This talk describes how to scale to millions of ML models operating on petabytes of operational and user data that is used to improve the efficacy of SRE teams and security of end users’ application services. These models are used to improve zero trust security framework and infrastructure diagnosis -- based on machine learning, anomaly detection and time series analysis. A production deployment that delivers these large numbers of models combines many open source technologies such as Kubernetes, Prometheus, Cortex, Apache Spark and Apache Arrow. In this talk, we will describe the key challenges that we had to solve when implementing machine learning and anomaly detection on K8s nodes and Envoy-based service mesh. These challenges include collecting data from hundreds of thousands of nodes, high cardinality of models, and distributing the inference models down to each of the K8s nodes.
https://sched.co/ekCH
- 2 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Seccomp: What Can It Do For You? - Justin Cormack, Docker
Seccomp is a system call filtering tool built into Linux. It has been used as a security layer in Docker for coming up to five years, and is working through a long path to become on by default in Kubernetes. We look at what seccomp can usefully do to improve real world security, and how best to use it. This talk also covers a reworking of the widely used Docker default seccomp policy, based on experience of security vulnerabilities in the last five years. Seccomp can both be used as a policy in a runtime, and also directly by applications, so both aspects are covered. The policy has also caused a number of usability issues over the years, so we look at the pitfalls involved in using it as syscalls change over time.
https://sched.co/ekEJ
Seccomp: What Can It Do For You? - Justin Cormack, Docker
Seccomp is a system call filtering tool built into Linux. It has been used as a security layer in Docker for coming up to five years, and is working through a long path to become on by default in Kubernetes. We look at what seccomp can usefully do to improve real world security, and how best to use it. This talk also covers a reworking of the widely used Docker default seccomp policy, based on experience of security vulnerabilities in the last five years. Seccomp can both be used as a policy in a runtime, and also directly by applications, so both aspects are covered. The policy has also caused a number of usability issues over the years, so we look at the pitfalls involved in using it as syscalls change over time.
https://sched.co/ekEJ
- 1 participant
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Secure Policy Distribution With OPA - Ash Narkar, Styra
OPA can download bundles of policy and data from remote HTTP servers. Once the policies and data have been loaded, they are enforced immediately. But how does OPA know that these bundles are coming from a trusted source ? How does OPA verify the authenticity or integrity of the policies and data included in the bundle ? An attacker can potentially include corrupt policies and data in the bundle and OPA would end-up enforcing those policies, thereby compromising the entire system. In this talk, we will describe how OPA can assist in the secure distribution of policies and data by creating a “Signed Bundle” - a bundle that is digitally signed so that industry-standard cryptographic primitives can verify its authenticity. Our demo will show an end-to-end flow of generating and validating a “signed bundle” and also how this reduces OPA’s attack surface.
https://sched.co/ekEY
Secure Policy Distribution With OPA - Ash Narkar, Styra
OPA can download bundles of policy and data from remote HTTP servers. Once the policies and data have been loaded, they are enforced immediately. But how does OPA know that these bundles are coming from a trusted source ? How does OPA verify the authenticity or integrity of the policies and data included in the bundle ? An attacker can potentially include corrupt policies and data in the bundle and OPA would end-up enforcing those policies, thereby compromising the entire system. In this talk, we will describe how OPA can assist in the secure distribution of policies and data by creating a “Signed Bundle” - a bundle that is digitally signed so that industry-standard cryptographic primitives can verify its authenticity. Our demo will show an end-to-end flow of generating and validating a “signed bundle” and also how this reduces OPA’s attack surface.
https://sched.co/ekEY
- 1 participant
- 22 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Security Kill Chain Stages in a 100k+ Daily Container Environment with Falco - Natch Ruengsakulrach & Eric Hollis, MathWorks
Security is a vital aspect of a Cloud Native infrastructure. In this talk, Eric and Natch will show how they set up monitoring to identify anomalous system calls and abnormal Kubernetes API events in MathWorks cloud infrastructure hosting 100K+ daily MATLAB containers with Falco, a CNCF Container Runtime Security project. They have mapped their detections to Security Kill Chain to detect threats in the attack lifecycle. The first part of the talk focuses on Falco, including eBPF integration and Falco rules. The second part covers a walkthrough of the event pipeline and how Falco is used to identify activity related to recon, weaponization, delivery, exploitation, installation, command & control, and actions on objectives. Attendees will leave knowing how to integrate Falco, write and test Falco rules to improve their systems’ security observability and detection.
https://sched.co/ekED
Security Kill Chain Stages in a 100k+ Daily Container Environment with Falco - Natch Ruengsakulrach & Eric Hollis, MathWorks
Security is a vital aspect of a Cloud Native infrastructure. In this talk, Eric and Natch will show how they set up monitoring to identify anomalous system calls and abnormal Kubernetes API events in MathWorks cloud infrastructure hosting 100K+ daily MATLAB containers with Falco, a CNCF Container Runtime Security project. They have mapped their detections to Security Kill Chain to detect threats in the attack lifecycle. The first part of the talk focuses on Falco, including eBPF integration and Falco rules. The second part covers a walkthrough of the event pipeline and how Falco is used to identify activity related to recon, weaponization, delivery, exploitation, installation, command & control, and actions on objectives. Attendees will leave knowing how to integrate Falco, write and test Falco rules to improve their systems’ security observability and detection.
https://sched.co/ekED
- 2 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Selecting the Right Identity Provider for Kubernetes: A Comparative Survey - Cameron Seader, SUSE
This is intended to be a comparative view of common identity providers available to Kubernetes. I'll compare all of the details ranging from authentication (Authn), authorization (Authz), user management, mapping, federation and so on. We will discover together the positive and negative of each for your situation. This will allow all attendees to make the right choice when it comes to their situation for their workloads. Identity provider examples to include Dex, UAA, Keycloak, OpenUnison, and others. Please join us as we delve into the sea of feature and function between all of the identity providers today. Your sure to come away with the right choice in mind for your next project.
https://sched.co/ekA6
Selecting the Right Identity Provider for Kubernetes: A Comparative Survey - Cameron Seader, SUSE
This is intended to be a comparative view of common identity providers available to Kubernetes. I'll compare all of the details ranging from authentication (Authn), authorization (Authz), user management, mapping, federation and so on. We will discover together the positive and negative of each for your situation. This will allow all attendees to make the right choice when it comes to their situation for their workloads. Identity provider examples to include Dex, UAA, Keycloak, OpenUnison, and others. Please join us as we delve into the sea of feature and function between all of the identity providers today. Your sure to come away with the right choice in mind for your next project.
https://sched.co/ekA6
- 1 participant
- 31 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Serverless Workflow – New Approach to Container Orchestration - Tihomir Surdilovic & Ricardo Zanini Fernandes, Red Hat
With the rise of Serverless Architectures, Workflows have gained a renewed interest and usefulness. Typically thought of as centralized and monolithic, they now play a key role in service and events orchestration and coordination. With many different architecture approaches already in place, the Cloud Native Computing Foundation has started an initiative to specify Serverless Workflows Specification to ensure portability and vendor neutrality. In this talk, we introduce the CNCF Serverless Workflow specification and provide examples and demos running on Kubernetes and Kogito, Red Hat’s business automation toolkit. You will learn: * The what, why, and how of the CNCF Serverless Workflow specification * Why using the Serverless Workflow specification and orchestration can improve your serverless architecture * Define and deploy Serverless Workflow custom resources on Kubernetes
https://sched.co/ekEn
Serverless Workflow – New Approach to Container Orchestration - Tihomir Surdilovic & Ricardo Zanini Fernandes, Red Hat
With the rise of Serverless Architectures, Workflows have gained a renewed interest and usefulness. Typically thought of as centralized and monolithic, they now play a key role in service and events orchestration and coordination. With many different architecture approaches already in place, the Cloud Native Computing Foundation has started an initiative to specify Serverless Workflows Specification to ensure portability and vendor neutrality. In this talk, we introduce the CNCF Serverless Workflow specification and provide examples and demos running on Kubernetes and Kogito, Red Hat’s business automation toolkit. You will learn: * The what, why, and how of the CNCF Serverless Workflow specification * Why using the Serverless Workflow specification and orchestration can improve your serverless architecture * Define and deploy Serverless Workflow custom resources on Kubernetes
https://sched.co/ekEn
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Serverless for ML Inference on Kubernetes: Panacea or Folly? - Manasi Vartak, Verta Inc
As providers of an end-to-end MLOps platform, we find that autoscaling ML inference is a frequent customer ask. Recently, serverless computing has been touted as the panacea for elastic compute that can provide flexibility and lower operating costs. However, for ML, the need to precisely define hardware configurations and long warm-up times of certain ML models exacerbate the limitations of serverless. To provide the best solution to our customers, we have run extensive benchmarking experiments comparing the performance of serverless and traditional computing for inference workloads running on Kubernetes (with KubeFlow and with the ModelDB MLOps Toolkit). Our experiments have spanned a variety of model types, data modalities, hardware, and workloads. In this talk, we present the results from our benchmarking study and provide a guide to architect your own k8s-based ML inference system.
https://sched.co/ekCB
Serverless for ML Inference on Kubernetes: Panacea or Folly? - Manasi Vartak, Verta Inc
As providers of an end-to-end MLOps platform, we find that autoscaling ML inference is a frequent customer ask. Recently, serverless computing has been touted as the panacea for elastic compute that can provide flexibility and lower operating costs. However, for ML, the need to precisely define hardware configurations and long warm-up times of certain ML models exacerbate the limitations of serverless. To provide the best solution to our customers, we have run extensive benchmarking experiments comparing the performance of serverless and traditional computing for inference workloads running on Kubernetes (with KubeFlow and with the ModelDB MLOps Toolkit). Our experiments have spanned a variety of model types, data modalities, hardware, and workloads. In this talk, we present the results from our benchmarking study and provide a guide to architect your own k8s-based ML inference system.
https://sched.co/ekCB
- 1 participant
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Serverless or Servicefull - Sebastien Goasguen, Triggermesh
While containers and container orchestration has taken the world by storm over the last five years, serverless offering that hides the complexity of the underlying infrastructure and the application management mechanisms are becoming the norm within the main Cloud providers. In this talk we will discuss whether or not serverless should in fact be called "servicefull". Indeed serverless computing architecture is all about using events and functions to integrate cloud services together. The world is not so much without servers, they are definitely still there somewhere, but the world is now full of services. The cloud has become our kernel, it is made of a myriad of API exposing cloud services, our world has become servicefull and not serverless. With this difference exposed we will discuss how k8s extensions can help us integrate services and move towards servicefull applications.
https://sched.co/ekEh
Serverless or Servicefull - Sebastien Goasguen, Triggermesh
While containers and container orchestration has taken the world by storm over the last five years, serverless offering that hides the complexity of the underlying infrastructure and the application management mechanisms are becoming the norm within the main Cloud providers. In this talk we will discuss whether or not serverless should in fact be called "servicefull". Indeed serverless computing architecture is all about using events and functions to integrate cloud services together. The world is not so much without servers, they are definitely still there somewhere, but the world is now full of services. The cloud has become our kernel, it is made of a myriad of API exposing cloud services, our world has become servicefull and not serverless. With this difference exposed we will discuss how k8s extensions can help us integrate services and move towards servicefull applications.
https://sched.co/ekEh
- 1 participant
- 24 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Service Discovery with CoreDNS Plugins in Golang - Yong Tang, Mobileiron & John Belamaric, Google
Best known as the default cluster DNS server for Kubernetes, CoreDNS is a flexible and extensible DNS server with a focus on service discovery. The extensibility of CoreDNS comes from its plugin-based architecture: new features can be added as plugins easily with Golang. In this session, we will update the current state and the road map of CoreDNS, as well as the progress of CoreDNS’s participation in GSoC and CommunityBridge program. We will also take a detailed look at the plugin system of CoreDNS, and a demo plugin that achieves source IP based service discovery. The complete golang code of the demo plugin will be walked through to showcase the simplicity and ease of convenience for adding new functionalities in CoreDNS.
https://sched.co/ekIK
Service Discovery with CoreDNS Plugins in Golang - Yong Tang, Mobileiron & John Belamaric, Google
Best known as the default cluster DNS server for Kubernetes, CoreDNS is a flexible and extensible DNS server with a focus on service discovery. The extensibility of CoreDNS comes from its plugin-based architecture: new features can be added as plugins easily with Golang. In this session, we will update the current state and the road map of CoreDNS, as well as the progress of CoreDNS’s participation in GSoC and CommunityBridge program. We will also take a detailed look at the plugin system of CoreDNS, and a demo plugin that achieves source IP based service discovery. The complete golang code of the demo plugin will be walked through to showcase the simplicity and ease of convenience for adding new functionalities in CoreDNS.
https://sched.co/ekIK
- 2 participants
- 29 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Service Mesh Specifications and Why They Matter in Your Deployment - Lee Calcote & Kush Trivedi, Layer5
As the ubiquity of service meshes unfolds so does the need for vendor and technology-agnostic interfaces to interact with them. The Service Mesh Interface (SMI), the Service Mesh Performance Specification (SMPS), and Multi-Vendor Service Mesh Interoperation (Hamlet) are three open specifications solving the challenge of interoperability, workload and performance management between service meshes. Learn what makes each of these specifications unique and why they are very much needed. See each of these three specifications in-action as we use Meshery, the open source service mesh management plane to demonstrate the value and functionality of each service mesh abstraction, and the adherence of these specifications by Istio, Linkerd, Consul and other popular service meshes.
https://sched.co/ekEz
Service Mesh Specifications and Why They Matter in Your Deployment - Lee Calcote & Kush Trivedi, Layer5
As the ubiquity of service meshes unfolds so does the need for vendor and technology-agnostic interfaces to interact with them. The Service Mesh Interface (SMI), the Service Mesh Performance Specification (SMPS), and Multi-Vendor Service Mesh Interoperation (Hamlet) are three open specifications solving the challenge of interoperability, workload and performance management between service meshes. Learn what makes each of these specifications unique and why they are very much needed. See each of these three specifications in-action as we use Meshery, the open source service mesh management plane to demonstrate the value and functionality of each service mesh abstraction, and the adherence of these specifications by Istio, Linkerd, Consul and other popular service meshes.
https://sched.co/ekEz
- 3 participants
- 39 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Simplify Application Deployment at the Edge with Harbor - MICHAEL MICHAEL, Harbor Don’t miss out!
Harbor offers a lot of capabilities as a registry in the datacenter. Recently, we have focused our energy on better image distribution and Edge scenarios. You can't operate Kubernetes at the Edge without a registry and Harbor is making it easier and simpler to co-locate your workloads with your cloud native artifacts. Integrations with P2P providers like Uber’s Kraken and Alibaba’s Dragonfly and Proxy Cache capabilities are key features that make image distribution at the Edge possible.
https://sched.co/fGWK
Simplify Application Deployment at the Edge with Harbor - MICHAEL MICHAEL, Harbor Don’t miss out!
Harbor offers a lot of capabilities as a registry in the datacenter. Recently, we have focused our energy on better image distribution and Edge scenarios. You can't operate Kubernetes at the Edge without a registry and Harbor is making it easier and simpler to co-locate your workloads with your cloud native artifacts. Integrations with P2P providers like Uber’s Kraken and Alibaba’s Dragonfly and Proxy Cache capabilities are key features that make image distribution at the Edge possible.
https://sched.co/fGWK
- 1 participant
- 15 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Simplifying Windows Runtime and Deployment in Kubernetes - MICHAEL MICHAEL, VMware, Mark Rossetti & Muzz Imam, Microsoft, & Deep Debroy, Docker
The leaders of SIG-Windows will provide an update on the efforts to bring Windows to Kubernetes. This session will concentrate on presenting new features and capabilities as well as focus on advanced capabilities like ContainerD integration, CSI, Networking, and Cluster API/kubeadm for Windows. Some familiarity with Windows on Kubernetes is required for the in-depth discussion on advanced features that are in the pipeline for Windows. At the end, we will open the floor for Q&A with users and members of the SIG-Windows community, discussing implementation and trade-offs.
https://sched.co/ekFu
Simplifying Windows Runtime and Deployment in Kubernetes - MICHAEL MICHAEL, VMware, Mark Rossetti & Muzz Imam, Microsoft, & Deep Debroy, Docker
The leaders of SIG-Windows will provide an update on the efforts to bring Windows to Kubernetes. This session will concentrate on presenting new features and capabilities as well as focus on advanced capabilities like ContainerD integration, CSI, Networking, and Cluster API/kubeadm for Windows. Some familiarity with Windows on Kubernetes is required for the in-depth discussion on advanced features that are in the pipeline for Windows. At the end, we will open the floor for Q&A with users and members of the SIG-Windows community, discussing implementation and trade-offs.
https://sched.co/ekFu
- 5 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Speeding Up Analysis Pipelines with Remote Container Images - Ricardo Rocha & Spyridon Trigazis, CERN
Containers have taken a key role in the daily life of physicists at CERN, helping with packaging and sharing code as well as ensuring analysis reproducibility. This session will describe how processes have been adapted to containerize software releases of tens of gigabytes, and how they're used to process hundreds of petabytes of new data every year. In particular, it will focus on how container images are distributed in a large network of connected sites across the world and show how lazy loading of container images using the containerd remote snapshotter has ensured a flat startup time under 6 seconds while dramatically reducing network traffic. A live demo will include a real physics analysis pipeline of hundreds of parallel jobs using the setup described above.
https://sched.co/ekDj
Speeding Up Analysis Pipelines with Remote Container Images - Ricardo Rocha & Spyridon Trigazis, CERN
Containers have taken a key role in the daily life of physicists at CERN, helping with packaging and sharing code as well as ensuring analysis reproducibility. This session will describe how processes have been adapted to containerize software releases of tens of gigabytes, and how they're used to process hundreds of petabytes of new data every year. In particular, it will focus on how container images are distributed in a large network of connected sites across the world and show how lazy loading of container images using the containerd remote snapshotter has ensured a flat startup time under 6 seconds while dramatically reducing network traffic. A live demo will include a real physics analysis pipeline of hundreds of parallel jobs using the setup described above.
https://sched.co/ekDj
- 2 participants
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Sponsored Keynote: Kubernetes Everywhere – Briana Frank, Director of Product, IBM Cloud
Building, deploying, and running apps in heterogenous environments can impact performance and user experience. Kubernetes can solve this pain, by acting as a common infrastructure layer across on-prem, edge, and public cloud. Learn how Kubernetes Everywhere can ultimately power 5G, tellerless banking, and distributed analytics.
https://sched.co/ep4z
Sponsored Keynote: Kubernetes Everywhere – Briana Frank, Director of Product, IBM Cloud
Building, deploying, and running apps in heterogenous environments can impact performance and user experience. Kubernetes can solve this pain, by acting as a common infrastructure layer across on-prem, edge, and public cloud. Learn how Kubernetes Everywhere can ultimately power 5G, tellerless banking, and distributed analytics.
https://sched.co/ep4z
- 1 participant
- 5 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Sponsored Keynote: Marvin, Where is My Secure API? - Vijoy Pandey, Vice President, Engineering for Emerging Technologies and Incubations, Cisco
Modern cloud native developers use APIs and services from a variety of organic, public cloud and SaaS offers to build their apps and drive velocity. Unfortunately, this implies that the developer, security teams, infrastructure teams, the responsible SREs, and the management chain (e.g., CISOs) are out-of-sync and in the dark on the security ramifications behind any developer’s API choices. And worse, they have no visibility to the security exposure of the app's customers and their data. This talk will highlight these challenges due to the velocity mismatch between these teams, the potential lack of compliance, and the risk to customer data due to these API decisions. We will explore how solving it earlier in the application development lifecycle will lower the cost of the exposure of the entire software (and hardware) stack as well as what needs to be done in the community to solve these problems in a software-driven manner. It’s time to Go Up and Shift Left.
https://sched.co/ep5B
Sponsored Keynote: Marvin, Where is My Secure API? - Vijoy Pandey, Vice President, Engineering for Emerging Technologies and Incubations, Cisco
Modern cloud native developers use APIs and services from a variety of organic, public cloud and SaaS offers to build their apps and drive velocity. Unfortunately, this implies that the developer, security teams, infrastructure teams, the responsible SREs, and the management chain (e.g., CISOs) are out-of-sync and in the dark on the security ramifications behind any developer’s API choices. And worse, they have no visibility to the security exposure of the app's customers and their data. This talk will highlight these challenges due to the velocity mismatch between these teams, the potential lack of compliance, and the risk to customer data due to these API decisions. We will explore how solving it earlier in the application development lifecycle will lower the cost of the exposure of the entire software (and hardware) stack as well as what needs to be done in the community to solve these problems in a software-driven manner. It’s time to Go Up and Shift Left.
https://sched.co/ep5B
- 1 participant
- 6 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Sponsored Keynote: Scaling Machine Learning Without Compromising Privacy - Nanda Vijaydev, Lead Data Scientist and a Distinguished Technologist, HPE
No matter what kind of machine learning (ML) applications you are building for your business, securing your end-to-end ML pipeline is essential yet complicated. ML pipelines become more powerful by distributing a complex network of stages across many environments, often with multiple users and roles. This session will cover how you can leverage open source projects such as SPIRE, OPA, and Envoy to provide a fine-grained policy overlay for your ML pipeline.
https://sched.co/eoDy
Sponsored Keynote: Scaling Machine Learning Without Compromising Privacy - Nanda Vijaydev, Lead Data Scientist and a Distinguished Technologist, HPE
No matter what kind of machine learning (ML) applications you are building for your business, securing your end-to-end ML pipeline is essential yet complicated. ML pipelines become more powerful by distributing a complex network of stages across many environments, often with multiple users and roles. This session will cover how you can leverage open source projects such as SPIRE, OPA, and Envoy to provide a fine-grained policy overlay for your ML pipeline.
https://sched.co/eoDy
- 1 participant
- 5 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Sponsored Keynote: The Rise of the End Users - Diane Mueller, Community Development, Red Hat
Today, end users are not just “using” open source software, they are active and valuable participants in the communities and are helping to drive innovation into the upstream projects, driving projects out into the open from behind the firewall for the benefit of all. End user participation is key to the success and health of the entire ecosystem. After all, who understands better the challenges of cloud native adoption and migration than the users themselves? Helping more companies to navigate the cloud native ecosystem and participate in open source is essential to all our success. Come hear how they are making an impact in open source and learn what we can all do to ensure their success.
https://sched.co/ep4i
Sponsored Keynote: The Rise of the End Users - Diane Mueller, Community Development, Red Hat
Today, end users are not just “using” open source software, they are active and valuable participants in the communities and are helping to drive innovation into the upstream projects, driving projects out into the open from behind the firewall for the benefit of all. End user participation is key to the success and health of the entire ecosystem. After all, who understands better the challenges of cloud native adoption and migration than the users themselves? Helping more companies to navigate the cloud native ecosystem and participate in open source is essential to all our success. Come hear how they are making an impact in open source and learn what we can all do to ensure their success.
https://sched.co/ep4i
- 1 participant
- 6 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Sponsored Session: AWS - Say goodbye to YAML engineering with the CDK for Kubernetes
The CDK for Kubernetes (cdk8s) is a new open-source software development framework for defining Kubernetes applications and resources using familiar programming languages. In this session, we will show you how to define your first cdk8s application, define reusable components called “constructs” and generally say goodbye (and thank you very much) to writing in YAML. We’ll also introduce our construct library cdk8s+ and show you how you can accelerate application development and adoption using cdk8s for any Kubernetes cluster.
https://sched.co/fezY
Sponsored Session: AWS - Say goodbye to YAML engineering with the CDK for Kubernetes
The CDK for Kubernetes (cdk8s) is a new open-source software development framework for defining Kubernetes applications and resources using familiar programming languages. In this session, we will show you how to define your first cdk8s application, define reusable components called “constructs” and generally say goodbye (and thank you very much) to writing in YAML. We’ll also introduce our construct library cdk8s+ and show you how you can accelerate application development and adoption using cdk8s for any Kubernetes cluster.
https://sched.co/fezY
- 2 participants
- 16 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Sponsored Session: AppDynamics - Path to Kubernetes Observability - Jeffrey Holmes, AppDynamics
By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies. This is an on-demand session and will be available for the duration of the event. Achieving observability for services, including those running in the cloud, is no small undertaking. Using cloud-native services brings many monitoring challenges. Developers have unique observability requirements to capture data from multiple metric sources from containers, deployment methods. AppDynamics has made significant improvements to automate agent deployment for Kubernetes and non-containerized VM/bare-metal applications to simplify the potentially complex operational and monitoring challenges. Our APM agents offer a full set of features around tracing, dynamic instrumentation, and AI/ML-based root cause analysis. The all-new AppDynamics Kubernetes Cluster agent supports the ability to capture log snippets and associate with container events. Automatically instrument APM for Java, Node.js, and .NET core applications. Learn how the AppDynamics platform can help you focus on application, infrastructure, and cloud insights that directly impact your business the most. Learn more about how to gain full observability of Kubernetes from Jeff Holmes, our resident Kubernetes expert.
https://sched.co/fezT
Sponsored Session: AppDynamics - Path to Kubernetes Observability - Jeffrey Holmes, AppDynamics
By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies. This is an on-demand session and will be available for the duration of the event. Achieving observability for services, including those running in the cloud, is no small undertaking. Using cloud-native services brings many monitoring challenges. Developers have unique observability requirements to capture data from multiple metric sources from containers, deployment methods. AppDynamics has made significant improvements to automate agent deployment for Kubernetes and non-containerized VM/bare-metal applications to simplify the potentially complex operational and monitoring challenges. Our APM agents offer a full set of features around tracing, dynamic instrumentation, and AI/ML-based root cause analysis. The all-new AppDynamics Kubernetes Cluster agent supports the ability to capture log snippets and associate with container events. Automatically instrument APM for Java, Node.js, and .NET core applications. Learn how the AppDynamics platform can help you focus on application, infrastructure, and cloud insights that directly impact your business the most. Learn more about how to gain full observability of Kubernetes from Jeff Holmes, our resident Kubernetes expert.
https://sched.co/fezT
- 1 participant
- 13 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Standardizing Cloud Native Application Delivery Across Different Clouds - Hongchao Deng, Alibaba
At its heart, Kubernetes is an infrastructure platform: It abstracts at the infrastructure layer, but does little to resolve application layer dependencies. Today, a Kubernetes application cannot be defined and deployed uniformly across multiple platforms without modification, because its definitions depend on specific platform implementation. For example, one platform might choose Nginx as the ingress solution, while another might choose Traefik. To solve this problem, we need a standard application model to bridge the gap between application and infrastructure. This talk introduces Open Application Model (OAM) which enables developers to build and deploy k8s applications in a platform-agnostic way. We will look at how it approaches the problem and how it leverages cloud services and open source projects to facilitate standardized application development across multiple environments.
https://sched.co/ekAm
Standardizing Cloud Native Application Delivery Across Different Clouds - Hongchao Deng, Alibaba
At its heart, Kubernetes is an infrastructure platform: It abstracts at the infrastructure layer, but does little to resolve application layer dependencies. Today, a Kubernetes application cannot be defined and deployed uniformly across multiple platforms without modification, because its definitions depend on specific platform implementation. For example, one platform might choose Nginx as the ingress solution, while another might choose Traefik. To solve this problem, we need a standard application model to bridge the gap between application and infrastructure. This talk introduces Open Application Model (OAM) which enables developers to build and deploy k8s applications in a platform-agnostic way. We will look at how it approaches the problem and how it leverages cloud services and open source projects to facilitate standardized application development across multiple environments.
https://sched.co/ekAm
- 1 participant
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Static Analysis of Kubernetes Manifests - Barak Schoster, Bridgecrew
Planning, provisioning, and changing infrastructure are becoming vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and immutability and helps prevent bad configurations upstream. In this talk, we'll cover best practices for writing, testing, and maintaining infrastructure at scale using policy-as-code both in CI/CD and kubernetes cluster runtime. We'll compare the two methods and review sample use cases that showcase the benefits of each. In addition we'll cover the current state of open source repositories and kubernetes manifests found in the wild.
https://sched.co/ekEb
Static Analysis of Kubernetes Manifests - Barak Schoster, Bridgecrew
Planning, provisioning, and changing infrastructure are becoming vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and immutability and helps prevent bad configurations upstream. In this talk, we'll cover best practices for writing, testing, and maintaining infrastructure at scale using policy-as-code both in CI/CD and kubernetes cluster runtime. We'll compare the two methods and review sample use cases that showcase the benefits of each. In addition we'll cover the current state of open source repositories and kubernetes manifests found in the wild.
https://sched.co/ekEb
- 1 participant
- 29 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Stop Writing Operators - Joe Thompson, HashiCorp
Since the introduction of the operator pattern by CoreOS in 2016, operators and even operator coding frameworks have proliferated seemingly without limit. But *should* you write an operator? If not, what should you be doing instead? In this session, Joe Thompson gives a quick overview of the state of the operator ecosystem, points out situations where writing and using them may not be ideal, and offers opinions on alternatives that may be more effective for maintaining your applications. You'll leave with the knowledge to be confident that whether you choose to write an operator or not in any given situation, you're making the correct choice.
https://sched.co/ekAR
Stop Writing Operators - Joe Thompson, HashiCorp
Since the introduction of the operator pattern by CoreOS in 2016, operators and even operator coding frameworks have proliferated seemingly without limit. But *should* you write an operator? If not, what should you be doing instead? In this session, Joe Thompson gives a quick overview of the state of the operator ecosystem, points out situations where writing and using them may not be ideal, and offers opinions on alternatives that may be more effective for maintaining your applications. You'll leave with the knowledge to be confident that whether you choose to write an operator or not in any given situation, you're making the correct choice.
https://sched.co/ekAR
- 1 participant
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Taking Envoy Beyond C++ with WebAssembly - Idit Levine & Yuval Kohavi, Solo.io
Envoy is the leading proxy for handling cloud-native application traffic at the edge and in the service mesh for its performance, speed and extensibility. The extensibility is in the form of filters that are configured in the proxy that shape, secure and manage the traffic that flows through it. These filters are only written in C++....so limited to those developers That is until WebAssembly (wasm) entered the picture, making Envoy filters effectively polyglot. Through wasm, the deployment of the filters is isolated making secure, resilient to failure and able to deploy without a restart This demo filled session will deep dive into - how WebAssembly works with Envoy - dev and ops workflow to build and deploy filters with wasm - demo examples of wasm filters
https://sched.co/ekAO
Taking Envoy Beyond C++ with WebAssembly - Idit Levine & Yuval Kohavi, Solo.io
Envoy is the leading proxy for handling cloud-native application traffic at the edge and in the service mesh for its performance, speed and extensibility. The extensibility is in the form of filters that are configured in the proxy that shape, secure and manage the traffic that flows through it. These filters are only written in C++....so limited to those developers That is until WebAssembly (wasm) entered the picture, making Envoy filters effectively polyglot. Through wasm, the deployment of the filters is isolated making secure, resilient to failure and able to deploy without a restart This demo filled session will deep dive into - how WebAssembly works with Envoy - dev and ops workflow to build and deploy filters with wasm - demo examples of wasm filters
https://sched.co/ekAO
- 2 participants
- 26 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
The Building Blocks of DX: K8s Evolution From CLI to GitOps - Katie Gamanji, Cloud Native Computing Foundation
In the past years, Kubernetes has become the default container orchestrator framework, setting the standards for application deployment in a distributed architecture. Wider adaptability of the tool prompted the diversification of the end-user base, and a consistent DX for cluster interaction became essential for Kubernetes. The community channeled herculean efforts towards the enhancement of developer experience by extending the cluster CLI, building portals, and highly-responsive UIs. This talk will focus on the cluster DX chronicles, showcasing tools which contributed to wider adoption for Kubernetes. An emphasis will be placed on cluster CLI and how it can be extended using kubectl plugins and wrappers. This will be followed by an introduction of widespread cluster state managers, covering mechanisms such as GitOps, ClickOps, and even SheetOps.
https://sched.co/ek9l
The Building Blocks of DX: K8s Evolution From CLI to GitOps - Katie Gamanji, Cloud Native Computing Foundation
In the past years, Kubernetes has become the default container orchestrator framework, setting the standards for application deployment in a distributed architecture. Wider adaptability of the tool prompted the diversification of the end-user base, and a consistent DX for cluster interaction became essential for Kubernetes. The community channeled herculean efforts towards the enhancement of developer experience by extending the cluster CLI, building portals, and highly-responsive UIs. This talk will focus on the cluster DX chronicles, showcasing tools which contributed to wider adoption for Kubernetes. An emphasis will be placed on cluster CLI and how it can be extended using kubectl plugins and wrappers. This will be followed by an introduction of widespread cluster state managers, covering mechanisms such as GitOps, ClickOps, and even SheetOps.
https://sched.co/ek9l
- 1 participant
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
The Cloud Native Journey at Adobe - Carlos Sanchez, Adobe
We will share our journey migrating one of Adobe's enterprise products to Kubernetes, running multiple clusters across regions, as well as the processes and technologies that made this possible, including Envoy, Helm or Prometheus. Adopting DevOps has improved the communication between teams, which are now organized by functional areas, no more Dev, QA, Ops teams. Continuous Delivery allows us to highly automate software delivery with multiple deploys a day, and using GitOps we have improved visibility of the services running in the different environments. Using Prometheus and Grafana allows us to provide visibility into the state of the system to everyone in the team, as the whole engineering organization participates on on-call rotation to foster a shared responsibility across services.
https://sched.co/ekAj
The Cloud Native Journey at Adobe - Carlos Sanchez, Adobe
We will share our journey migrating one of Adobe's enterprise products to Kubernetes, running multiple clusters across regions, as well as the processes and technologies that made this possible, including Envoy, Helm or Prometheus. Adopting DevOps has improved the communication between teams, which are now organized by functional areas, no more Dev, QA, Ops teams. Continuous Delivery allows us to highly automate software delivery with multiple deploys a day, and using GitOps we have improved visibility of the services running in the different environments. Using Prometheus and Grafana allows us to provide visibility into the state of the system to everyone in the team, as the whole engineering organization participates on on-call rotation to foster a shared responsibility across services.
https://sched.co/ekAj
- 1 participant
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
The Great "k8s.gcr.io" Vanity Domain Flip - Stephen Augustus, VMware & Linus Arver, Google
VDF or the Vanity Domain Flip, represents a milestone in empowering the community with full ownership of their container image infrastructure. This presentation will cover the history of the VDF project, which spanned roughly 2 years (from late 2018 to mid-2020). It’s a story of writing new tools, adapting some existing Release Engineering tools, and uprooting some overgrown dependencies! Google-side: security audit of the promoter and related infra and its impact to Google. Release Engineering: a brief discovery on the release process and integrating a new tool **Trivia: Tim Hockin once said in a hallway conversation in 2018 "it will take two years," and he was right.
https://sched.co/eulF
The Great "k8s.gcr.io" Vanity Domain Flip - Stephen Augustus, VMware & Linus Arver, Google
VDF or the Vanity Domain Flip, represents a milestone in empowering the community with full ownership of their container image infrastructure. This presentation will cover the history of the VDF project, which spanned roughly 2 years (from late 2018 to mid-2020). It’s a story of writing new tools, adapting some existing Release Engineering tools, and uprooting some overgrown dependencies! Google-side: security audit of the promoter and related infra and its impact to Google. Release Engineering: a brief discovery on the release process and integrating a new tool **Trivia: Tim Hockin once said in a hallway conversation in 2018 "it will take two years," and he was right.
https://sched.co/eulF
- 2 participants
- 35 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
The Open Source Revolution: How Kubernetes is Changing the Games Industry - Dominic Green, Netspeak Games
Traditional multiplayer game development involves dozens if not hundreds of engineers over several years building custom made backends - often from scratch. Companies have recently moved to GCP or AWS but most games infrastructure runs on metal - often using multiple providers. Cost, latency & security are all cited as the primary deciding factors when architecting a modern online game; but a new vector is emerging - speed. Specifically, speed of development; how fast can you FIND the game to make is the new race that modern games companies are finding themselves in & the open-source ecosystem is going to be their new best friend. Dominic Green will run through how Netspeak Games has taken advantage of cloud-native technologies and built out their games infrastructure on top of Kubernetes, Agones & Open Source Software - building an MMO that supports 100,000s of concurrent players.
https://sched.co/ek9u
The Open Source Revolution: How Kubernetes is Changing the Games Industry - Dominic Green, Netspeak Games
Traditional multiplayer game development involves dozens if not hundreds of engineers over several years building custom made backends - often from scratch. Companies have recently moved to GCP or AWS but most games infrastructure runs on metal - often using multiple providers. Cost, latency & security are all cited as the primary deciding factors when architecting a modern online game; but a new vector is emerging - speed. Specifically, speed of development; how fast can you FIND the game to make is the new race that modern games companies are finding themselves in & the open-source ecosystem is going to be their new best friend. Dominic Green will run through how Netspeak Games has taken advantage of cloud-native technologies and built out their games infrastructure on top of Kubernetes, Agones & Open Source Software - building an MMO that supports 100,000s of concurrent players.
https://sched.co/ek9u
- 1 participant
- 23 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
The Past, Present, and Future of Kubernetes on Raspberry Pi - Alex Ellis, OpenFaaS Ltd
By now, you’ve surely heard that Kubernetes can be run on a 35 USD credit-card sized computer, but do you know how we got there, where we are today and what’s coming next? Alex has been building clusters with Docker and Raspberry Pis since 2015 and has published dozens of articles, tutorials, and even software tools to support the ecosystem. He recently published “5 years of RPi Docker Clusters” on raspberrypi.org and this talk takes you through the journey. Find out what Apple Silicon and AWS Graviton have in common with this tiny System-on-a-Chip computer - and why they are so important to its future. Learn how you can add support for all of the above devices to your own open source projects. So is an RPi cluster just for gathering dust, getting retweets, and upvotes on Hacker News, or can it also serve a real purpose? Come to this talk and find out, along with live demos.
https://sched.co/ekAF
The Past, Present, and Future of Kubernetes on Raspberry Pi - Alex Ellis, OpenFaaS Ltd
By now, you’ve surely heard that Kubernetes can be run on a 35 USD credit-card sized computer, but do you know how we got there, where we are today and what’s coming next? Alex has been building clusters with Docker and Raspberry Pis since 2015 and has published dozens of articles, tutorials, and even software tools to support the ecosystem. He recently published “5 years of RPi Docker Clusters” on raspberrypi.org and this talk takes you through the journey. Find out what Apple Silicon and AWS Graviton have in common with this tiny System-on-a-Chip computer - and why they are so important to its future. Learn how you can add support for all of the above devices to your own open source projects. So is an RPi cluster just for gathering dust, getting retweets, and upvotes on Hacker News, or can it also serve a real purpose? Come to this talk and find out, along with live demos.
https://sched.co/ekAF
- 1 participant
- 34 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
The Stateful Landscape: The Then and Now and the Future - Erin Boyd, Apple, Quinton Hoole, Facebook, & Alex Chircop, StorageOS
This talk will discuss how the CNCF storage SIG in the CNCF operates, identifies projects for Cloud Native admission and where we see the future of storage in the Cloud Native Ecosystem heading. During this session we will cover: - Overview of the SIG, how to join and how to help - Overview of storage projects in the CNCF - Projects that are currently being being reviewed - Areas we would like to see, and gaps in the landscape - Overview of the CNCF Storage Landscape document - Overview of the Performance and Benchmarking document
https://sched.co/etT1
The Stateful Landscape: The Then and Now and the Future - Erin Boyd, Apple, Quinton Hoole, Facebook, & Alex Chircop, StorageOS
This talk will discuss how the CNCF storage SIG in the CNCF operates, identifies projects for Cloud Native admission and where we see the future of storage in the Cloud Native Ecosystem heading. During this session we will cover: - Overview of the SIG, how to join and how to help - Overview of storage projects in the CNCF - Projects that are currently being being reviewed - Areas we would like to see, and gaps in the landscape - Overview of the CNCF Storage Landscape document - Overview of the Performance and Benchmarking document
https://sched.co/etT1
- 2 participants
- 27 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
TiFlash: Make TiKV 10x Faster and HTAP-able - Xiaoyu Ma & Liquan Pei, PingCAP
HTAP is a term introduced by Gartner, describing the capability processing both transactional and analytical workload. It is hard to deal with both workload seamlessly in one platform since the storage format of the two is totally different and workload interference is a big issue. This session introduces a new component for TiKV project called TiFlash. It uses a novel way to solve the problem stated above: raft based HTAP architecture. This design makes TiKV 10x faster on analytical workload and provided strong workload isolation strategy.
https://sched.co/ekFK
TiFlash: Make TiKV 10x Faster and HTAP-able - Xiaoyu Ma & Liquan Pei, PingCAP
HTAP is a term introduced by Gartner, describing the capability processing both transactional and analytical workload. It is hard to deal with both workload seamlessly in one platform since the storage format of the two is totally different and workload interference is a big issue. This session introduces a new component for TiKV project called TiFlash. It uses a novel way to solve the problem stated above: raft based HTAP architecture. This design makes TiKV 10x faster on analytical workload and provided strong workload isolation strategy.
https://sched.co/ekFK
- 2 participants
- 18 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Tune It Up! Enabling Low Latency in Kubernetes Clusters - Francesco Romani & Yanir Quinn, Red Hat
Now that Kubernetes has conquered the cloud it’s time for it to move on other domains, like CNF (Cloud-native Network Functions), the cornerstone of 5G deployments! However, to make that happen, we need to address an important limitation: ensuring low latency. In this talk we will first and foremost give an overview of the most important setting relevant to optimal low-latency behaviour, demonstrating the level of detail we can achieve in fine-tuning a cluster. We will explore the kubelet settings (topology and cpu manager), the kernel settings on the node (using tuned) and how they interact to deliver the workload guarantees. The talk will help in gaining a better understanding of what Kubernetes provides for this specific and demanding class of workload, considering the planned enhancements coming in the next releases, like the kubelet memory manager.
https://sched.co/ekDp
Tune It Up! Enabling Low Latency in Kubernetes Clusters - Francesco Romani & Yanir Quinn, Red Hat
Now that Kubernetes has conquered the cloud it’s time for it to move on other domains, like CNF (Cloud-native Network Functions), the cornerstone of 5G deployments! However, to make that happen, we need to address an important limitation: ensuring low latency. In this talk we will first and foremost give an overview of the most important setting relevant to optimal low-latency behaviour, demonstrating the level of detail we can achieve in fine-tuning a cluster. We will explore the kubelet settings (topology and cpu manager), the kernel settings on the node (using tuned) and how they interact to deliver the workload guarantees. The talk will help in gaining a better understanding of what Kubernetes provides for this specific and demanding class of workload, considering the planned enhancements coming in the next releases, like the kubelet memory manager.
https://sched.co/ekDp
- 2 participants
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Tutorial: Building an Enterprise Infrastructure Control Plane on Kubernetes - Daniel Mangum, Upbound & Steven Borrelli, Mastercard
Enterprise infrastructure is diverse, complex, and difficult to automate. What if you could standardize on a single infrastructure control plane using the Kubernetes API? In this tutorial we will cover how to build Kubernetes controllers to manage infrastructure across enterprise infrastructure providers using the crossplane-runtime library, taking examples from the work that Mastercard has done to build a cohesive service catalog based on Kubernetes CRDs. Attendees will walk away with a functioning controller and building blocks for developing their own enterprise control plane. Topics covered will include: - Modeling Resources like Virtual Machines and Databases as Kubernetes CRDs - Sharing reconciler logic across controllers - Translating imperative API calls into declaratively managed Kubernetes objects Attendees should have Git, Go, and Docker installed prior to this session.
https://sched.co/ekFT
Tutorial: Building an Enterprise Infrastructure Control Plane on Kubernetes - Daniel Mangum, Upbound & Steven Borrelli, Mastercard
Enterprise infrastructure is diverse, complex, and difficult to automate. What if you could standardize on a single infrastructure control plane using the Kubernetes API? In this tutorial we will cover how to build Kubernetes controllers to manage infrastructure across enterprise infrastructure providers using the crossplane-runtime library, taking examples from the work that Mastercard has done to build a cohesive service catalog based on Kubernetes CRDs. Attendees will walk away with a functioning controller and building blocks for developing their own enterprise control plane. Topics covered will include: - Modeling Resources like Virtual Machines and Databases as Kubernetes CRDs - Sharing reconciler logic across controllers - Translating imperative API calls into declaratively managed Kubernetes objects Attendees should have Git, Go, and Docker installed prior to this session.
https://sched.co/ekFT
- 2 participants
- 1:19 hours
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Tutorial: DevOps Tooling for Java Developers in a Cloud Native World - Melissa McKay, Stephen Chin, & Baruch Sadogursky, JFrog; & Ixchel Ruiz, Karakun AG
With the rise of DevOps, low-cost Cloud Computing, and emerging Container technologies, the landscape for how you approach development has dramatically changed. This tutorial is focused on helping Java developers to adapt to this new landscape and take advantage of microservices, serverless, and cloud-native technologies with the latest DevOps techniques to simplify their build and create hyperproductive teams. The entire DevOps toolchain will be covered including source control, build declaration, CI/CD, package management, containerization, and security. Learn from the combined experience of the presenters who are experts in the Java and DevOps domains on the best tools, technologies, and methodologies to build your next cloud-native application or refactor your monolith.
https://sched.co/ekFf
Tutorial: DevOps Tooling for Java Developers in a Cloud Native World - Melissa McKay, Stephen Chin, & Baruch Sadogursky, JFrog; & Ixchel Ruiz, Karakun AG
With the rise of DevOps, low-cost Cloud Computing, and emerging Container technologies, the landscape for how you approach development has dramatically changed. This tutorial is focused on helping Java developers to adapt to this new landscape and take advantage of microservices, serverless, and cloud-native technologies with the latest DevOps techniques to simplify their build and create hyperproductive teams. The entire DevOps toolchain will be covered including source control, build declaration, CI/CD, package management, containerization, and security. Learn from the combined experience of the presenters who are experts in the Java and DevOps domains on the best tools, technologies, and methodologies to build your next cloud-native application or refactor your monolith.
https://sched.co/ekFf
- 4 participants
- 1:25 hours
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Tutorial: From Notebook to Kubeflow Pipelines to KFServing: the Data Science Odyssey - Karl Weinmeister, Google & Stefano Fioravanzo, Arrikto
A hands-on lab driven tutorial to show Data Scientists and ML Engineers alike how to turbocharge your Kubeflow efforts. In this session you will learn how to quickly build, tune, and execute complex Kubeflow workflows - as well as how to work faster using Kale to automate much of your work. Learn how to rapidly automate Kubeflow: - Deploy a Jupyter Notebook as a Kubeflow pipeline using Kale - Optimize your model training using Katib for hyperparameter tuning - Serve your model with KFServing - Run thousands of runs with caching and garbage collection - Track and reproduce pipeline steps along with their state and artifacts Data Scientists benefit from an intuitive GUI that automates and hides all of the underlying infrastructure and SDK requirements. ML Engineers can use the reproducible, automated workflows as a scaffold to quickly move to even more advanced tuning and model building.
https://sched.co/ekFQ
Tutorial: From Notebook to Kubeflow Pipelines to KFServing: the Data Science Odyssey - Karl Weinmeister, Google & Stefano Fioravanzo, Arrikto
A hands-on lab driven tutorial to show Data Scientists and ML Engineers alike how to turbocharge your Kubeflow efforts. In this session you will learn how to quickly build, tune, and execute complex Kubeflow workflows - as well as how to work faster using Kale to automate much of your work. Learn how to rapidly automate Kubeflow: - Deploy a Jupyter Notebook as a Kubeflow pipeline using Kale - Optimize your model training using Katib for hyperparameter tuning - Serve your model with KFServing - Run thousands of runs with caching and garbage collection - Track and reproduce pipeline steps along with their state and artifacts Data Scientists benefit from an intuitive GUI that automates and hides all of the underlying infrastructure and SDK requirements. ML Engineers can use the reproducible, automated workflows as a scaffold to quickly move to even more advanced tuning and model building.
https://sched.co/ekFQ
- 2 participants
- 49 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Tutorial: Introduction to Using the Container Storage Interface (CSI) Primitives - Michael Mattsson, HPE
The Container Storage Interface (CSI) does not only allow dynamic provisioning of Persistent Volumes from various vendors. It’s a wealth of new API objects that can perform various data management tasks through kubectl. In this end user focused session we’ll inform ourselves of the current status of CSI capabilities and demonstrate a few pragmatic use case of each individual feature. Learn about inline ephemeral volumes, volume expansion, raw block volumes and volume snapshot classes that will allow cloning and restoring of volumes — all with practical examples that can be broadly applied to many of the backend CSI drivers available. We’ll also discuss the anatomy of the already present primitives, Storage Class, Persistent Volume Claim and Persistent Volume for completeness.
https://sched.co/ekFc
Tutorial: Introduction to Using the Container Storage Interface (CSI) Primitives - Michael Mattsson, HPE
The Container Storage Interface (CSI) does not only allow dynamic provisioning of Persistent Volumes from various vendors. It’s a wealth of new API objects that can perform various data management tasks through kubectl. In this end user focused session we’ll inform ourselves of the current status of CSI capabilities and demonstrate a few pragmatic use case of each individual feature. Learn about inline ephemeral volumes, volume expansion, raw block volumes and volume snapshot classes that will allow cloning and restoring of volumes — all with practical examples that can be broadly applied to many of the backend CSI drivers available. We’ll also discuss the anatomy of the already present primitives, Storage Class, Persistent Volume Claim and Persistent Volume for completeness.
https://sched.co/ekFc
- 1 participant
- 1:24 hours
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Tutorial: Migration 101: From VMs to Kubernetes - Luke Kysow, HashiCorp
In this hands-on tutorial, you will learn how to progressively adopt Kubernetes by migrating one of your apps from VMs onto Kubernetes. You will perform the full migration process: from preparing your app for running in Kubernetes, to configuring routing, to performing a no-downtime migration and monitoring your app. We will cover: - Dockerizing your app - Creating a Kubernetes YAML spec - Deployments - Configuring routing between K8s and VMs and discussing different topologies including using Consul - Performing a no-downtime migration from VMs to K8s - Viewing application logs with Fluentd, Elasticsearch and Kibana - Viewing application metrics with Prometheus and Grafana - Managing your hybrid environment This will be a completely hands-on tutorial. Pre-requisites: Docker
https://sched.co/ekFi
Tutorial: Migration 101: From VMs to Kubernetes - Luke Kysow, HashiCorp
In this hands-on tutorial, you will learn how to progressively adopt Kubernetes by migrating one of your apps from VMs onto Kubernetes. You will perform the full migration process: from preparing your app for running in Kubernetes, to configuring routing, to performing a no-downtime migration and monitoring your app. We will cover: - Dockerizing your app - Creating a Kubernetes YAML spec - Deployments - Configuring routing between K8s and VMs and discussing different topologies including using Consul - Performing a no-downtime migration from VMs to K8s - Viewing application logs with Fluentd, Elasticsearch and Kibana - Viewing application metrics with Prometheus and Grafana - Managing your hybrid environment This will be a completely hands-on tutorial. Pre-requisites: Docker
https://sched.co/ekFi
- 2 participants
- 1:25 hours
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Tutorial: Say Goodbye to YAML Engineering with the CDK for Kubernetes - Nathan Taber & Elad Ben-Israel, Amazon
Applications running on Kubernetes are composed of dozens of resources maintained through an intricate collection of carefully maintained YAML files. As applications evolve and teams grow, these files become hard to manage and reuse — copying & pasting from previous projects is not the solution! The CDK for Kubernetes (cdk8s) is a new open-source software development framework for defining Kubernetes applications and resources using familiar programming languages. In this tutorial, the creators of cdk8s show you how to define your first cdk8s application, design a reusable construct and package it as a library, and generally say goodbye (and thank you very much) to writing in YAML. Bring your laptops set up with your favorite development environment in one of the supported languages (TypeScript, JavaScript, Python, Java, or .NET).
https://sched.co/ekFN
Tutorial: Say Goodbye to YAML Engineering with the CDK for Kubernetes - Nathan Taber & Elad Ben-Israel, Amazon
Applications running on Kubernetes are composed of dozens of resources maintained through an intricate collection of carefully maintained YAML files. As applications evolve and teams grow, these files become hard to manage and reuse — copying & pasting from previous projects is not the solution! The CDK for Kubernetes (cdk8s) is a new open-source software development framework for defining Kubernetes applications and resources using familiar programming languages. In this tutorial, the creators of cdk8s show you how to define your first cdk8s application, design a reusable construct and package it as a library, and generally say goodbye (and thank you very much) to writing in YAML. Bring your laptops set up with your favorite development environment in one of the supported languages (TypeScript, JavaScript, Python, Java, or .NET).
https://sched.co/ekFN
- 3 participants
- 1:17 hours
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Uniform Workload Identity Everywhere: SPIRE Integrations and Extensibility - Ryan Turner, Uber
Distributing strong identity securely throughout a production environment often requires integrations with a number of platforms. Learn how SPIRE can be adapted to support production workload identity in heterogeneous infrastructure across a variety of software systems. This talk will cover some examples of different kinds of systems where SPIRE can provide identity and what deep integrations exist in SPIRE today. We’ll also dive into the plugin-based architecture used throughout SPIRE that provides open extensibility points to support the needs of your organization’s bespoke infrastructure and tooling.
https://sched.co/f3j7
Uniform Workload Identity Everywhere: SPIRE Integrations and Extensibility - Ryan Turner, Uber
Distributing strong identity securely throughout a production environment often requires integrations with a number of platforms. Learn how SPIRE can be adapted to support production workload identity in heterogeneous infrastructure across a variety of software systems. This talk will cover some examples of different kinds of systems where SPIRE can provide identity and what deep integrations exist in SPIRE today. We’ll also dive into the plugin-based architecture used throughout SPIRE that provides open extensibility points to support the needs of your organization’s bespoke infrastructure and tooling.
https://sched.co/f3j7
- 1 participant
- 33 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Using Open Policy Agent to Meet Evolving Policy Requirements - Jeremy Rickard, VMware
Our team runs a Kubernetes platform for 30+ teams in a variety of commercial and government environments. Each of these environments has different security and compliance requirements, such as PCI and FedRAMP. We must deal with evolving requirements as our tenants pursue new accreditations. While we could implement a variety of mutating and validating webhook implementations to meet our needs, we instead turned to Open Policy Agent (OPA). OPA has allowed us to quickly develop and deploy new policies as these requirements shift and evolve. In this talk, we will look at several concrete examples of how we used OPA to implement our changing kubernetes policy requirements and help our tenants achieve a variety of compliance certifications, while at the same time striving to make these security policies as unobtrusive to their existing CI/CD pipelines and workflows.
https://sched.co/ekEP
Using Open Policy Agent to Meet Evolving Policy Requirements - Jeremy Rickard, VMware
Our team runs a Kubernetes platform for 30+ teams in a variety of commercial and government environments. Each of these environments has different security and compliance requirements, such as PCI and FedRAMP. We must deal with evolving requirements as our tenants pursue new accreditations. While we could implement a variety of mutating and validating webhook implementations to meet our needs, we instead turned to Open Policy Agent (OPA). OPA has allowed us to quickly develop and deploy new policies as these requirements shift and evolve. In this talk, we will look at several concrete examples of how we used OPA to implement our changing kubernetes policy requirements and help our tenants achieve a variety of compliance certifications, while at the same time striving to make these security policies as unobtrusive to their existing CI/CD pipelines and workflows.
https://sched.co/ekEP
- 1 participant
- 32 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Virtual Application Networks for Cloud Native Applications - Ted Ross, Red Hat
The Internet is built for client-server architectures. Cloud-native software needs better abstractions for service interconnect. Learn about Virtual Application Networks (VANs) and how they advance the capabilities of cloud-native applications. Identify and access services deployed in remote clusters, balance workload across clusters, and multicast across clusters. Create multi-cluster networks where private and edge networks are involved, IP subnetworks overlap, and topology is redundant. In this session, we will introduce the Skupper project as a VAN implementation. We will then demonstrate how a VAN can be stood up by a non-privileged developer and how it solves many vexing multi-cluster communications problems. The demonstration will involve a multi-cluster network, in a redundant but not full-mesh topology, running an HTTP-based application in both public and private data centers.
https://sched.co/ekCc
Virtual Application Networks for Cloud Native Applications - Ted Ross, Red Hat
The Internet is built for client-server architectures. Cloud-native software needs better abstractions for service interconnect. Learn about Virtual Application Networks (VANs) and how they advance the capabilities of cloud-native applications. Identify and access services deployed in remote clusters, balance workload across clusters, and multicast across clusters. Create multi-cluster networks where private and edge networks are involved, IP subnetworks overlap, and topology is redundant. In this session, we will introduce the Skupper project as a VAN implementation. We will then demonstrate how a VAN can be stood up by a non-privileged developer and how it solves many vexing multi-cluster communications problems. The demonstration will involve a multi-cluster network, in a redundant but not full-mesh topology, running an HTTP-based application in both public and private data centers.
https://sched.co/ekCc
- 1 participant
- 25 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Vitess: Introduction and New Features - Sugu Sougoumarane & Deepthi Sigireddi, Planetscale, Inc.
Vitess is a cloud-native storage solution that can scale indefinitely. In this session, we will first cover a high level overview of Vitess features, the architecture, and what database workloads are a good fit. This will be followed by demos of the exciting new features that have been built in the last 6 months: - Automatic failover - Online schema changes with gh-ost or pt-osc - Compatibility with popular MySQL frameworks like Ruby on Rails and Spring - Streaming and Change Data Capture workflows with VReplication
https://sched.co/ekIT
Vitess: Introduction and New Features - Sugu Sougoumarane & Deepthi Sigireddi, Planetscale, Inc.
Vitess is a cloud-native storage solution that can scale indefinitely. In this session, we will first cover a high level overview of Vitess features, the architecture, and what database workloads are a good fit. This will be followed by demos of the exciting new features that have been built in the last 6 months: - Automatic failover - Online schema changes with gh-ost or pt-osc - Compatibility with popular MySQL frameworks like Ruby on Rails and Spring - Streaming and Change Data Capture workflows with VReplication
https://sched.co/ekIT
- 5 participants
- 28 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
What is the Kubernetes Code of Conduct Committee and What is it Working On - Karen Chu & Aeva Black, Microsoft
The Kubernetes community has its own elected Code of Conduct Committee (CoCC) but what exactly does this group do? In this session, we will cover the purpose and scope of the CoCC, introduce the current committee members, and share our progress on public, transparent process documentation as we continue to help build a healthy inclusive open source community.
https://sched.co/ekH7
What is the Kubernetes Code of Conduct Committee and What is it Working On - Karen Chu & Aeva Black, Microsoft
The Kubernetes community has its own elected Code of Conduct Committee (CoCC) but what exactly does this group do? In this session, we will cover the purpose and scope of the CoCC, introduce the current committee members, and share our progress on public, transparent process documentation as we continue to help build a healthy inclusive open source community.
https://sched.co/ekH7
- 2 participants
- 13 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Whatever Can Go Wrong, Will Go Wrong – Rook/Ceph and Storage Failures - Sagy Volkov, Red Hat
Imagine running a 200-node Kubernetes cluster, and suddenly you lost a node or even a ToR switch. What is the state of your persistent storage that your application relies on? How can you make sure your storage is always available? How can you time and plan how long it takes for your storage to get back to 100% resiliency? In this presentation we’ll go over the basics of storage demands (RPO/RTO), How different types of replications in Ceph impact our recovery time, and how components failure such as drive, node or cluster determine how long we are at risk. We'll include a live demo of a Rook/Ceph recovery process from a failed component. We'll show what components of Rook are recreated, how Ceph behaves during components/pods recreation, and what is the impact on the application while these failures occur (In our case the application will be MariaDB).
https://sched.co/ekFH
Whatever Can Go Wrong, Will Go Wrong – Rook/Ceph and Storage Failures - Sagy Volkov, Red Hat
Imagine running a 200-node Kubernetes cluster, and suddenly you lost a node or even a ToR switch. What is the state of your persistent storage that your application relies on? How can you make sure your storage is always available? How can you time and plan how long it takes for your storage to get back to 100% resiliency? In this presentation we’ll go over the basics of storage demands (RPO/RTO), How different types of replications in Ceph impact our recovery time, and how components failure such as drive, node or cluster determine how long we are at risk. We'll include a live demo of a Rook/Ceph recovery process from a failed component. We'll show what components of Rook are recreated, how Ceph behaves during components/pods recreation, and what is the impact on the application while these failures occur (In our case the application will be MariaDB).
https://sched.co/ekFH
- 1 participant
- 30 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
What’s in a Name? A WG Naming Deep Dive - Celeste Horgan, Cloud Native Computing Foundation
WG Naming was formed in June 2020 as a direct response to the Black Lives Matter protests occurring across America. Its goal is to remove harmful and unclear language in the Kubernetes project as completely as possible, and to do so in a way that is portable to other CNCF projects. This session will be a deep dive into the work that WG Naming is doing for the Kubernetes and broader CNCF communities on the topic of language, looking at how we evaluate language and phrases in the project and beyond, and why that matters.
https://sched.co/eukp
What’s in a Name? A WG Naming Deep Dive - Celeste Horgan, Cloud Native Computing Foundation
WG Naming was formed in June 2020 as a direct response to the Black Lives Matter protests occurring across America. Its goal is to remove harmful and unclear language in the Kubernetes project as completely as possible, and to do so in a way that is portable to other CNCF projects. This session will be a deep dive into the work that WG Naming is doing for the Kubernetes and broader CNCF communities on the topic of language, looking at how we evaluate language and phrases in the project and beyond, and why that matters.
https://sched.co/eukp
- 1 participant
- 24 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
containerd: Rootless Containers 2020 - Akihiro Suda, NTT
Rootless Containers means running the container runtimes (e.g. runc, containerd, and kubelet) as well as the containers without the host root privileges. The most significant advantage of Rootless Containers is that it can mitigate potential container-breakout vulnerability of the runtimes, but it is also useful for isolating multi-user environments on HPC hosts. This talk will contain the introduction to rootless containers and deep-dive topics about the recent updates such as Seccomp User Notification. The main focus will be on containerd (CNCF Graduated Project) and its consumer projects including Kubernetes and Docker/Moby, but topics about other runtimes will be discussed as well.
https://sched.co/fGWc
containerd: Rootless Containers 2020 - Akihiro Suda, NTT
Rootless Containers means running the container runtimes (e.g. runc, containerd, and kubelet) as well as the containers without the host root privileges. The most significant advantage of Rootless Containers is that it can mitigate potential container-breakout vulnerability of the runtimes, but it is also useful for isolating multi-user environments on HPC hosts. This talk will contain the introduction to rootless containers and deep-dive topics about the recent updates such as Seccomp User Notification. The main focus will be on containerd (CNCF Graduated Project) and its consumer projects including Kubernetes and Docker/Moby, but topics about other runtimes will be discussed as well.
https://sched.co/fGWc
- 1 participant
- 14 minutes
4 Dec 2020
Don’t miss out! Join us at our upcoming event: KubeCon + CloudNativeCon Europe 2021 Virtual from May 4–7, 2021. Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
gRPC Communication Patterns – A Deep Dive - Kasun Indrasiri & Danesh Kuruppu, WSO2
Real-World microservices implementations often use a variety of communication protocols and standards to build different services. gRPC has emerged as an efficient, reliable, and robust way to build inter-microservice communication owing to its rich service definition capabilities with protocol buffers, a variety of language support, and high performance. In this session, we will discuss how gRPC can be used to build inter-microservices communications. In this talk, we’ll explore fundamental gRPC communication patterns; Unary RPC, Server-side Streaming, Client-side Streaming, and Bi-directional Streaming, Understanding when and how to use gRPC Interceptors, Deadlines, Cancellation, Error Handling, Multiplexing, and Metadata, a network analysis of how gRPC communication works behind the scenes.
https://sched.co/ekCZ
gRPC Communication Patterns – A Deep Dive - Kasun Indrasiri & Danesh Kuruppu, WSO2
Real-World microservices implementations often use a variety of communication protocols and standards to build different services. gRPC has emerged as an efficient, reliable, and robust way to build inter-microservice communication owing to its rich service definition capabilities with protocol buffers, a variety of language support, and high performance. In this session, we will discuss how gRPC can be used to build inter-microservices communications. In this talk, we’ll explore fundamental gRPC communication patterns; Unary RPC, Server-side Streaming, Client-side Streaming, and Bi-directional Streaming, Understanding when and how to use gRPC Interceptors, Deadlines, Cancellation, Error Handling, Multiplexing, and Metadata, a network analysis of how gRPC communication works behind the scenes.
https://sched.co/ekCZ
- 2 participants
- 24 minutes
