KubeCon + CloudNativeCon North America 2020 Virtual: Full Schedule

Virtual Event
November 17–November 20, 2020
Learn More and Register to Attend This Event

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Eastern Standard Time (UTC–05:00). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.

1:00am EST

Open Operators Day hosted by Canonical - Asia Edition (Additional Registration Required)

The Open Operators Day is for devops to learn about the Open Operator Collection, an open-source initiative to provide a large number of interoperable, easily integrated operators for common workloads. We’ll talk about where Open Operators come from and what the community is looking to build. Organized by Canonical, the publisher of Ubuntu, the day will be split into three timezone friendly sessions:

Asia: 14:00-18:00 CST (1:00 AM - 5:00 AM ET)
EMEA: 13:00-17:00 BST (8:00 AM - 12:00 PM ET)
Americas: 11:00-15:00 PST (2:00 PM - 6:00 PM ET)

Each session will mix keynotes, training, and community discussions.

How to Register: Pre-registration is required. Click here to register for Open Operators Day!

For questions regarding this event, please reach out to marketing@canonical.com.

Tuesday November 17, 2020 1:00am - 5:00am EST
External Platform

Co-Located Event

8:00am EST

Open Operators Day hosted by Canonical - EMEA Edition (Additional Registration Required)

Asia: 14:00-18:00 CST (1:00 AM - 5:00 AM ET)
EMEA: 13:00-17:00 BST (8:00 AM - 12:00 PM ET)
Americas: 11:00-15:00 PST (2:00 PM - 6:00 PM ET)

Tuesday November 17, 2020 8:00am - 12:00pm EST
External Platform

Co-Located Event

9:00am EST

Kubernetes: Beyond the Basics hosted by VMware (Additional Registration + Fee Required)

You know how to build containers and know what a pod is. In this one-day workshop, you'll learn more about and get hands-on experience with interacting with Kubernetes, Kubernetes networking, and managing dynamic cloud-native applications.

How to Register: Pre-registration is required. To register for Kubernetes: Beyond the Basics, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to boschem@vmware.com.

Tuesday November 17, 2020 9:00am - 5:00pm EST
External Platform

Co-Located Event

9:00am EST

OpenShift Commons Gathering hosted by Red Hat (Additional Registration Required)

The OpenShift Commons Gathering brings together experts from all over the world to discuss container technologies, best practices for cloud native application developers, and the open source software projects that underpin the OpenShift ecosystem. This Gathering focuses on talks by end users on OpenShift 4 implementations in production mode, in which they will share their use cases, learnings, and good practices with experts from all over the world. In addition, there are talks from CNCF upstream project leads including Kubernetes, ServiceMesh, Operators, Security, and more.

How to Register: Pre-registration is required. Visit the OpenShift Commons Gathering website to register for this co-located event directly.

For more information, visit the event website! For questions regarding this event, please reach out to mbecker@redhat.com.

Tuesday November 17, 2020 9:00am - 5:00pm EST
External Platform

Co-Located Event

10:00am EST

Meet the Maintainer: Chaos Mesh

Join the Chaos Mesh Office Hours Here: https://zoom.us/webinar/register/WN_Q_RlBrAZQ1yUAGxy2KJcFw

Tuesday November 17, 2020 10:00am - 10:45am EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

10:00am EST

ScaleX hosted by Cisco (Additional Registration + Fee Required)

Why join us for ScaleX?

Today, it’s all about apps and digital services – not just to keep the business running – but to also grow and compete even more aggressively. But modern cloud native development can be complicated with the lack of true pipeline integration across tools for application platforms, security, and networking for an app-first world.

This is exactly what inspired us to create ScaleX. We have a full day of sessions that explore what building for scalability and reliability means for the modern cloud native developer. At ScaleX, you’ll hear from the people building, operating, and maintaining reliable cloud native systems at scale in a full day of tutorials, deep dives, and use cases.

It’s time to put scalability and reliability first when building, operating, and maintaining truly cloud native systems. So, be sure to join us at ScaleX!

To learn more, visit the event web site!

How to Register: Pre-registration is required. To register for ScaleX, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to gkevorki@cisco.com.

Tuesday November 17, 2020 10:00am - 5:00pm EST
External Platform

Co-Located Event

10:00am EST

AWS Container Day: Kubernetes Edition hosted by AWS (Additional Registration Required)

Join us for AWS Container Day, a fully live, virtual day of sessions all about Amazon EKS and Kubernetes at AWS, hosted by Containers from the Couch. At this Day Zero KubeCon event, the AWS Kubernetes team will be discussing new launches, demoing products and features, covering best practices, and answering your question live on Twitch.

How to Register: Pre-registration is required. Register here for AWS Container Day: Kubernetes Edition.

For questions regarding this event, please reach out to awscontainerday@amazon.com.

Tuesday November 17, 2020 10:00am - 6:00pm EST
External Platform

Co-Located Event

10:00am EST

Cloud Native Security Day hosted by CNCF (Additional Registration + Fee Required)

Cloud Native Security Day is designed to bring together the cloud native security community together to discuss and share current challenges and solutions in cloud native security. This event provides a single place for people involved or getting involved in cloud native security to get together in a vendor neutral space.
This event allows and encourages open collaboration and sharing of cloud native security accomplishments and roadblocks. Cloud native security is a multi-objective and multi-constrained problem space spanning many areas. Pretty much everything falls into security, from identity management to storage solutions. Cloud Native Security Day (#cnsecurityday) is intended to drive collaboration, discussion, and knowledge sharing of cloud native security accomplishments and roadblocks. Get connected with others that are passionate about security. Learn from practitioners about pitfalls to avoid, hurdles to jump, and how to integrate security into your cloud native project, architecture, and enhance team awareness on security.

More details available here.

How to Register: Pre-registration is required. To register for Cloud Native Security Day North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events@cncf.io.

Tuesday November 17, 2020 10:00am - 6:00pm EST
Intrado Virtual Event Platform

Co-Located Event

10:00am EST

OpenTelemetry Community Day hosted by CNCF (Additional Registration + Fee Required)

OpenTelemetry Community Day is a time and a place for maintainers, contributors, and users of OpenTelemetry to come together and celebrate both our work and our successes with Observability. We’ll talk about where we’ve been and where we’re going, together.

Join us for a day of community roundtables and discussion groups on OpenTelemetry itself, a flurry of lightning talks where your peers will share how they’ve been using OpenTelemetry and Observability tools, and some fantastic keynotes and maintainer discussions to help us know where we’re all going next.

More details are available here.

How to Register: Pre-registration is required. To register for OpenTelemetry Community Day, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events@cncf.io.

Tuesday November 17, 2020 10:00am - 6:00pm EST
Intrado Virtual Event Platform

Co-Located Event

10:00am EST

ServiceMeshCon hosted by CNCF (Additional Registration + Fee Required)

ServiceMeshCon is a vendor-neutral conference on service mesh technologies, featuring maintainers across different service mesh projects and also showcasing the lessons learned from running service meshes in production.

More details available here.

How to Register: Pre-registration is required. To register for ServiceMeshCon North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events@cncf.io.

Tuesday November 17, 2020 10:00am - 6:00pm EST
Intrado Virtual Event Platform

Co-Located Event

10:00am EST

Expo Hall

Visit our sponsors in the virtual exhibit halls to try the latest demos, talk to experts, and score some swag.

In order to facilitate networking and business relationships at the event, you may choose to visit a third party’s virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third party’s logo in the exhibit hall or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, accessing virtual swag provided by sponsors, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Tuesday November 17, 2020 10:00am - 6:00pm EST
Intrado Virtual Event Platform

Expo Hall

11:00am EST

Meet the Maintainer: LitmusChaos

Join the LitmusChaos Office Hours Here: https://zoom.us/webinar/register/WN_WFS-XxWzSee5juGYyrDwvg

Tuesday November 17, 2020 11:00am - 11:45am EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

11:00am EST

The New Stack Analysts Virtual Pancake Breakfast + Podcast sponsored by Accurics

"Immutable Security is Hot"

Join us for a short stack with The New Stack. We'll be serving hot cakes and our takes on immutable security — now that’s hot! We’ll cover the latest in securing those critical configurations. Flapjacks on fi-re!

Panelists:
- Om Moolchandani, CTO, Accurics
- Rosemary Wang, Developer Advocate, HashiCorp
- Krishna Bhagavathula, CTO, NBA
- Chenxi Wang, Managing General Partner, Rain Capital
- Priyanka Sharma, General Manager, CNCF

Speakers

Priyanka Sharma

ED, CNCF

Priyanka is the Executive Director of the Cloud Native Computing Foundation (CNCF) which serves as the vendor-neutral home for 100+ of the fastest-growing open source projects, including Kubernetes, Prometheus, and Envoy. She is also a co-creator of the Inclusive Naming Initiative... Read More →

Alex Williams

Founder and Publisher, The New Stack

Alex Williams is founder and publisher of The New Stack, a content platform for the people who build and manage software the world relies on. He was an editor at ReadWriteWeb and TechCrunch before leaving in 2014 to start The New Stack. Alex hosts The New Stack Makers podcast and... Read More →

Dr. Chenxi Wang

Founder & General Partner, Rain Capital

Dr. Chenxi Wang is the Founder and General Partner of Rain Capital, a seed-stage venture fund focused on Cybersecurity. A well-known operator, technologist, and thought leader in the Cybersecurity industry, Dr. Wang is a member of the Board of Directors for MDU Resources (NYSE: mdu... Read More →

Krishna Bhagavathula

Chief Technology Officer, NBA

As Chief Technology Officer for the NBA, Krishna Bhagavathula is responsible for setting the NBA’s technology strategy and ensuring alignment with the league’s objectives. He leads teams that are delivering best-in-class applications, systems and infrastructure to support the... Read More →

Om Moolchandani

Co-Founder & Chief Technology Officer, Accurics

Om is co-founder and Chief Technology Officer at Accurics where he sets the technology strategy for the company. Prior to Accurics, Om was Chief Security Officer at AutoGrid, leading cloud security for its Energy SaaS cloud. Om was also head of cybersecurity for General Electric’s... Read More →

Rosemary Wang

HashiCorp

As a developer advocate for HashiCorp, Rosemary works to bridge the technical and cultural barriers between infrastructure engineers and application developers. She has a fascination for solving intractable problems with code, whether it be helping an infrastructure engineer learn... Read More →

Text Transcript MFYR 7152 txt

Tuesday November 17, 2020 11:00am - 11:50am EST
TBA

Interactive Sessions

11:00am EST

Capture the Flag Security Challenge KubeCon 2020 hosted by Trend Micro + Snyk (Additional Registration Required)

As an official KubeCon 2020 challenge, attendees are invited to join the Trend Micro and Snyk Capture the Flag – Security Challenge!

You have always wanted to join a Capture the Flag security challenge but have never taken the chance. You have been studying and training in isolation, mainly in the remote corners of your unintended home office waiting for the opportunity — and now that time has arrived!

Whether you are a novice application coder or experienced security practitioner, this challenge is designed to bring out the fun and competitiveness expected in a Capture the Flag competition with one catch…it will take less than an hour.

Join Trend Micro and Snyk security experts and our world class commentators for a hands-on learning experience as you navigate a simulated cyberattack against applications, and protect them using Trend Micro and Snyk security tools.

Join this action-packed session to protect cloud native applications and learn to:

• Deploy and integrate security early on in your Jenkins pipeline
• Detect and investigate open source vulnerabilities, and threats in container images
• Simulate an attack on a running container in EKS based on the results identified
• Protect the application with security-as-code to prevent vulnerabilities from being exploited

Top 3 winners will be given to the competitors with the most points + bragging rights. This experience has something for everyone! Compete alongside your peers, listen to guest commentators as you climb the leader board, and sit in the same chair you have not left for the past 9 months as you strive to win each level of the challenge and bragging rights for the top prizes.

How to Register: Pre-registration is required. To register for the Capture the Flag Security Challenge, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to rheena_deguzman@trendmicro.com.

Tuesday November 17, 2020 11:00am - 12:00pm EST
External Platform

Co-Located Event

11:00am EST

Cloud-Native Data Management Day hosted by Kasten (Additional Registration Required)

The Cloud-Native Data Management Day event is designed to bring together various stakeholders in the Kubernetes storage, application backup, and mobility community to discuss and share current challenges and solutions in cloud native data management. This event will share customer journeys and spotlight industry experts across storage, data services, and backup vendors. There will be a lot of practical knowledge sharing, along with fun-filled demos.

How to Register: Pre-registration is required. To register for Cloud-Native Data Management, add it on during your KubeCon + CloudNativeCon registration or register separately on the event site.

For questions regarding this event, please reach out to info@kasten.io.

Tuesday November 17, 2020 11:00am - 4:00pm EST
External Platform

Co-Located Event

11:00am EST

Production Identity Day: SPIFFE + SPIRE (Additional Registration + Fee Required)

“Production identity” is a common set of identity and authentication challenges facing distributed systems. Many spend significant time and effort in establishing trusted bi-directional communication between different parts of the system. Often these are lacking in many respects: not rooted in sound identity “bedrock”, no ability to rotate credentials, no federation with other systems, and few policy opportunities (which are highly valued and critical for enterprises).

SPIFFE and SPIRE are CNCF incubating projects that aim to solve these challenges in a common way by defining and implementing a universal identity control plane that can be leveraged across many different types of systems — not just containerized or cloud native.

We are excited to host the first Production Identity Day at KubeCon to share learnings around the latest developments in the space, exhibit demonstrations, and discuss real-world use cases with others who share an interest in identity, authentication, and zero trust security.

To learn more, visit the event website or view the full schedule!

How to Register: Pre-registration is required. To register for Production Identity Day: SPIFFE & SPIRE, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events@cncf.io.

Twitter | @SPIFFEio
#SPIFFE #ProdIdentity

Tuesday November 17, 2020 11:00am - 6:00pm EST
External Platform

Co-Located Event

12:00pm EST

Meet the Maintainer: Cortex

Join the Cortex Office Hours Here: https://zoom.us/webinar/register/WN_fr0ytI3WTuizsN5xGFvlzw

Tuesday November 17, 2020 12:00pm - 12:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

12:00pm EST

Meet the Maintainer: Vitess

Join the Vitess Office Hours Here: https://zoom.us/webinar/register/WN_ObOTOBnmR_m2Wh1lNXbNjg

Tuesday November 17, 2020 12:00pm - 12:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

12:00pm EST

Putting Apache Cassandra™ on Automatic with Kubernetes hosted by DataStax (Additional Registration Required)

Deploying a scalable, elastic, and self-healing data plane in Kubernetes should be easy. In this workshop, we’ll show you how to do it with ready to go tooling that gives you everything you need to be successful. Apache Cassandra™ combined with Kubernetes compliment each other so well, you’ll wonder why you haven’t tried it before.

Don’t compromise on your choice. You can use the same database that has been making a difference at companies like Home Depot, Netflix, and Apple without having to become an expert at distributed systems. Data use cases from financial services transactions to entertainment streaming services all rely on Cassandra and impact our daily lives.

In this workshop, we will introduce you to how Cassandra’s architecture and logical fault domains are complemented by Kubernetes. You’ll take a typical containerized application and deploy it with a fully automated data service backed by Apache Cassandra. Move fast with confidence and very few trade-offs. Don’t miss it!

All attendees will receive a FREE Cassandra certification voucher ($145 value).

How to Register: Register now for Putting Apache Cassandra™ on Automatic with Kubernetes.
For questions regarding this event, please reach out to erica.lien@datastax.com.

Tuesday November 17, 2020 12:00pm - 3:00pm EST
External Platform

Co-Located Event

1:00pm EST

Sponsored Session: No More Moats: Protecting Your Cloud Native Infrastructure with Zero Trust - Daniel Feldman, HPE

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

The greatest barrier to cloud native adoption is security. Microservices, Kubernetes, and cloud computing itself all increase the attack surface of your infrastructure and decrease the administrative controls available to security teams. You can overcome this barrier by designing your architecture around Zero Trust. Zero Trust may sound like a buzzword, but it’s a powerful idea -- instead of creating security perimeters around your services, enable each service to individually authenticate and authorize incoming requests.

In this talk we’ll show you how you can secure your cloud native infrastructure with Zero Trust by building a solid foundation with SPIFFE and SPIRE, and then adding OPA, Envoy, and other open source security tools to protect against specific attacks. We’ll show sample architectures from Fortune 500 organizations and examine how they got there.

Speakers

Daniel Feldman

Software Engineer, HPE

Daniel Feldman works on SPIRE and other open-source security projects at Hewlett Packard Enterprise.

HPE Sponsored Session Slides pdf

Text Transcript LTNY 2180 txt

Tuesday November 17, 2020 1:00pm - 1:30pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Breakout

1:00pm EST

A Flight Over the Cloud Native Landscape - Carson Anderson, Weave

The Cloud Native Computing Landscape is big! And it's just getting bigger all the time. There are already 12 graduated and 21 incubating projects in the foundation! Most of us have heard of a few of these projects. But who really knows what they all do? And more importantly: how they all fit together?

This presentation is a speed-run through all 33 graduated and incubating projects, what they are on a surface level, and how they relate to each other. The presentation will be given with zero bullet points and a lot of visual aid. *Projects promoted to incubating status during the conference may not be covered.

Speakers

Carson Anderson

DevX-O, Weave

Carson has a deep passion for CICD, Kubernetes, Docker, and Distributed systems. Not just for building and managing these systems, but for finding ways to make them accessible and useful. Carson loves being a cloud native and open source liaison to Weave and the hundreds of developers... Read More →

Carson Anderson CNCF Flyover pdf

Text Transcript WTZE 7492 txt

Tuesday November 17, 2020 1:00pm - 1:35pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Beginner (Very basic information)

1:00pm EST

Meet the Maintainer: Harbor

Join the Harbor Office Hours Here: https://zoom.us/webinar/register/WN_RqLzb1fTSvKTWZWONopy_A

Tuesday November 17, 2020 1:00pm - 1:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

1:00pm EST

Meet the Maintainer: NATS

Join the NATS Office Hours Here: https://zoom.us/webinar/register/WN_lM9coSukSmKtxEGmwEvJOw

Tuesday November 17, 2020 1:00pm - 1:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

1:00pm EST

Capture the Flag Security Challenge KubeCon 2020 hosted by Trend Micro + Snyk (Additional Registration Required)

Tuesday November 17, 2020 1:00pm - 2:00pm EST
External Platform

Co-Located Event

1:00pm EST

EmpowerUs: Uniting to Drive Tech Sector Growth through Diversity + Inclusion, Sponsored by ITRenew (RSVP required to attend - see description for details)

RSVP today! An official RSVP for the EmpowerUs conversation is required.

Concerted efforts to build diversity and inclusion into the tech sector are essential. Different experiences, outlooks and perspectives make your entire workforce better at solving complex problems, managing risks and spotting opportunities. This kind of strength and resilience is needed more urgently than ever as rapidly industry growth creates critical talent gaps and shortages. Meeting this demand by increasing employee diversity and the number of women pursuing tech sector careers, investing in the education they need to prepare and succeed, and ensuring visibility and career advancement for those currently working in the industry is imperative.

Host Ali Fenn, president of ITRenew, will be joined by members of the iMasons organization, including Chairman and Founder Dean Nelson and Amber Carmella of IM Women, for a candid discussion on what it will take for tech companies to foster this approach to growth and culture of paying it forward. Ali will also share her experiences working toward a more diverse and sustainable digital future. The panel will be followed by an interactive session where you’ll have a chance to comment, debate and discuss with panelists and peers.

Speakers

Ali Fenn

President, ITRenew

Ali oversees all revenue channels at ITRenew and leads strategy for the company’s Circular Cloud initiatives, including principally the development of modeling, analytics platforms, and new business and market development. Ali has been building enterprise and cloud technology companies... Read More →

Dean Nelson

Founder and Chairman, Infrastructure Masons

Dean is the Founder and Chairman of Infrastructure Masons, a global association of industry executives and technology professionals entrusted with building and operating the physical and logical structures of the Digital Age. He is also the CEO at Virtual Power Systems and Founder/CEO... Read More →

Amber Caramella

CRO, Netrality, Global Executive Sponsor IM Women

Amber Caramella is the Chief Revenue Officer at Netrality Data Centers, responsible for Netrality’s revenue generation strategy and execution, including overseeing Sales, Marketing, Channel and Strategic Alliances. Prior to Netrality, she served as SVP of Sales at Zayo, where she... Read More →

Parastoo Amin

PhD student, iMasons Scholarship Recipient

Parastoo is a PhD student at RMIT University in Melbourne, Australia. She is studying Business Information Systems and her research is on Green data centers. In 2020, she received an iMasons PhD Degree Scholarship that supports her research onreducing data centers energy consumption... Read More →

Tuesday November 17, 2020 1:00pm - 2:00pm EST
External Platform

Diversity + Inclusion Sessions

Content Experience Level Any (Anyone can attend, no experience required)

1:00pm EST

Five Hundred Twenty-five Thousand Six Hundred K8s CLI’s - Phillip Wittrock & Gabbi Fisher, Apple

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Malicious actors are moving as quickly as development teams to exploit weaknesses in cloud native applications. Far too often we see common vulnerabilities and misconfigurations as the culprit of the latest security incident. Securing critical cloud native applications requires the ability to identify the root causes of these risks and the speed to mitigate them pre-production. In this talk we will cover the processes needed to stay ahead of the bad actors and tools needed to inject security throughout the development lifecycle.

1. How security and development teams can succeed together
2. Purpose built security tools that embed security checks directly into familiar DevOps tooling
3. The scanning of IaC templates, K8's manifests and container images in the CI/CD pipeline
4. Enforce zero trust posture and runtime security

Speakers

Vinay Venkataraghavan

Technical Director, Office of the CTO, Palo Alto Networks

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: AppDynamics - Path to Kubernetes Observability

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Achieving observability for services, including those running in the cloud, is no small undertaking. Using cloud-native services brings many monitoring challenges. Developers have unique observability requirements to capture data from multiple metric sources from containers, deployment methods.
AppDynamics has made significant improvements to automate agent deployment for Kubernetes and non-containerized VM/bare-metal applications to simplify the potentially complex operational and monitoring challenges. Our APM agents offer a full set of features around tracing, dynamic instrumentation, and AI/ML-based root cause analysis.
The all-new AppDynamics Kubernetes Cluster agent supports the ability to capture log snippets and associate with container events. Automatically instrument APM for Java, Node.js, and .NET core applications. Learn how the AppDynamics platform can help you focus on application, infrastructure, and cloud insights that directly impact your business the most.
Learn more about how to gain full observability of Kubernetes from Jeff Holmes, our resident Kubernetes expert.

Speakers

Jeffrey Holmes

Cloud Solutions Architect, AppDynamics

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Aqua Security - Handling Container Vulnerabilities with Open Policy Agent

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

A vulnerability scanner for containers doesn’t help a user decide how to handle vulnerabilities. For example, even if a critical vulnerability is found, some organizations may accept the risk of it. The policy for vulnerability handling depends on the organization, and in many cases, the person in charge has to make a manual judgement based on this policy every time. This is time-consuming.

This talk demonstrates how to automatically handle vulnerabilities detected by a scanner using OPA.
- The vulnerabilities found by a scanner in CI are handled automatically by Open Policy Agent
- Applying custom policy, OPA shows users which vulnerabilities to address

This automatic vulnerability handling in CI will be demonstrated live, along with Trivy, which is an open source vulnerability scanner for containers. The same policy handling model could be used with any scanner.

Speakers

Teppei Fukuda

Open Source Engineer, Aqua Security

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: AWS - Say goodbye to YAML engineering with the CDK for Kubernetes

Speakers

Eli Polonski

Principal Software Engineer, SDKs, AWS

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Canonical - Beyond Kubernetes: Universal operators from bare metal to containers.

Speakers

Pedro Valverde Guimarães

Senior Field Engineer, Canonical

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Capital One - Technology Transformation & Container Orchestration in the Cloud

Speakers

Liam Randall

VP, Open Source and Emerging Tech, Capital One

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: CircleCI - Increase App Confidence using CI/CD and Infrastructure as Code

Speakers

Angel Rivera

Developer Advocate, CircleCI

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Cisco - Containers and Infrastructure Optimization coming to Cisco Intersight

Speakers

Meenakshi Kaushik

Product Manager, CCP and IKS, Cisco

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Commvault - Deep Dive: Protect your K8s apps

Speakers

Mathew Ericson

Senior Product Manager - Cloud & Containerization, Commvault

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Dell Technologies - Real-Time Object Detection with Pravega and Flink

Speakers

David Adams

Sr. Principal Tech Marketing Engineer, Dell Technologies

David Adams is a Sr. Principal Technical Marketing Engineer for Dell Technologies Cloud. David has spent time in various engineering, technical marketing and product management roles for hyper-converged infrastructure and storage in his time with Dell Technologies. In his current... Read More →

Ashish Batwara

Engineering Head, Streaming Data Platform, Dell Technologies

Ashish Batwara is head of Software Engineering, Streaming Data Platform at Dell Technologies. Streaming Data Platform is an analytic platform to ingest, store, and analyze both real-time and historical streaming data. Ashish has 22+ years of experience in architecting and designing... Read More →

Andre Keedy

Sr. Principal Software Engineer, Dell Technologies

Andre Keedy is from Cranston Rhode Island where he works as a software engineer on Streaming Data Platform at Dell EMC. He has 8 years experience in software development and loves Python and Java mainly focused on APIs and micro services running in Kubernetes.LinkedIn: linkedin.c... Read More →

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Dell Technologies - Storage and Data Protection Solutions for Kubernetes

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Dell EMC Enterprise Storage and Data Protection solutions come with all the required Kubenernetes integrations for workload deployment, data management and protection as well as migration across the hybrid cloud. In this three-part demo we will cover some key enterprise capabilities of the Dell EMC storage and data protection solutions for Kubernetes workloads. The first part covers how CSI snapshots can be used to repurpose production data for test and dev environments. The second part shows the deployment of a YugaByte database based application deployment using VVOLs on PowerStore with VMware Tanzu Kubernetes Grid. Finally in the third part, we show complete application protection of a MYSQL qorkload with application consistency and use the back up copy to spin the entire app on a new Kubernetes cluster all on AWS.

Speakers

Parasar Kodati

Senior Consultant, Product Marketing, Dell Technologies

Parasar Kodati is a Senior Consultant at Dell Technologies Storage and Data Protection division. His background includes Product Management and Technical Marketing experience in the areas of Technical Computing, Embedded Software Development, Enterprise Data and Infrastructure management... Read More →

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Dynatrace - Batteries included: Shipping OpenTelemetry with your Open Source Project

Speakers

Daniela Rabiser

Technical Product Manager, Dynatrace

Thomas Schuetz

Staff Engineer, Dynatrace

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Elastic - Elastic and Kubernetes: From Orchestration to Observability

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Join Elastic for our virtual demo session, get access to custom content, grab exclusive virtual swag, and chat with real people.

In this video, we’ll give a quick introduction to Elasticsearch (the free and open, scalable, and highly-available search engine and datastore) and how it powers use cases like Enterprise Search, Observability, and Security.

We’ll demonstrate how the applications that power Elastic Observability (Logs, Metrics, APM, and Uptime) consolidate the event streams from your Kubernetes, cloud and physical infrastructure, Prometheus, and other CNCF projects and services with your application traces in a fast, scalable, and unified data store.

Learn how to spin up an Elastic Stack cluster with Elastic Cloud on Kubernetes (ECK), the official operator for orchestrating Elasticsearch on Kubernetes for day one, day two, and beyond.

Speakers

Jamie Smith

Product Marketing, Observability, Elastic

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: HAProxy Technologies - Benchmarking 5 Popular Ingress Controllers

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Performance has never been more important than in a cloud-native world. Cloud-hosted resources cost money and a slow-loading application can cause a suboptimal ROI. Have you taken the time to tune your Kubernetes ingress controller and proxy? Many organizations don't until it's absolutely necessary, and most users will typically run a default, out-of-the-box configuration.

In this demo, we benchmark five popular ingress controllers and put them head-to-head against each other with their default configurations:

- Envoy
- HAProxy
- NGINX
- NGINX Inc.
- Traefik

We measure their average requests per second, latency percentiles, and user-level CPU usage; We monitor for any errors that are produced in order to go beyond performance and test reliability. You can verify the results yourself by downloading the GitHub repository and reproducing our tests. Who will come out on top? Watch the demo to find out!

Speakers

Daniel Corbett

Director of Product, HAProxy Technologies

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: HPE - Building dynamic machine learning pipelines with KubeDirector

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Machine Learning (ML) pipelines are complex to set up and even more difficult to maintain when constantly shifting data models are required. In essence, you need a Dynamic ML Pipeline. In this webinar, we will discuss an example ML Pipeline centered around supporting an application that must predict travel times based upon a large data set of taxi ride data. We will walk you through the development of the full ML pipeline using Kubernetes and another Open Source application called KubeDirector. You will learn how to train, register, and finally, query your model for answers. In addition, you will learn how a new capability of KubeDirector called “Connections” enables a dynamic, always up-to-date ML model.

Speakers

Donald Wake

Technical Marketing Engineer, HPE

Tom Phelan

Fellow, Software Organization, HPE

Kartik Mathur

Master Technologist, HPE

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: IBM Cloud - IBM Cloud Satellite - IBM Cloud Anywhere You Need It

Speakers

Briana Frank

Director of Product Management, IBM Cloud

Jason McGee

IBM Fellow, CTO & VP Cloud Platform, IBM Cloud

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Influx Data - Building a GitOps Workflow

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Since the rise of Kubernetes, GitOps workflows have become the standard way for teams to manage the state of large systems. GitOps is a way to perform application management and delivery, which at its core leverages a version control system to maintain the desired state of the system. Being able to describe the desired state using human readable text files, and allowing automation to handle deployments and updates based on those files, means less opportunity for human error and faster deployments.

In this training I’m going to walk you through;
-Setting up a GitHub repository to serve as a version control system
-Create automation to enable your team to check out a repository from GitHub.
-Install and configure a local InfluxDB OSS instance to mimic production.
-Make changes and push those changes to the repository.
-Deploy those changes automatically into the production account using GitHub Actions.

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Linux Foundation Training - The 2020 Open Source Jobs Report - Cloud's rise and the impact of COVID

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

2020 has been a year unlike any prior. Despite the impacts of COVID-19 descimating industries and livelihoods, open source professionals have been a rare bright spot. The Linux Foundation partnered with edX, the non-profit learning platform developed by Harvard and MIT, to produce the 2020 Open Source Jobs Report, which surveyed hiring managers and open source pros to gain insight into trends in hiring and retention across the industry.

In this session, Linux Foundation SVP & GM, Training & Certification Clyde Seepersad digs into the findings in the new report, including how COVID has impacted careers, but also which technologies and roles are growing in importance. Clyde discusses growing demand for technologies like cloud and containers, the need for more pros with skills like DevOps, incentives used by employers to retain top talent, and what open source pros say motivates them.

Speakers

Clyde Seepersad

SVP & General Manager, Training & Certification, The Linux Foundation

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: LogDNA - Planting Trees & Kubernetes Observability

Speakers

Michael Shi

Product Manager for Developer Experience, LogDNA

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Logz.io - Logz.io at a 30,000ft view

Speakers

Zachary Hamilton

Sales Engineer, Logz.io

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: MayaData - Beyond Operators and CSI, Cool Storage Tech Awaits!

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Operators and CSI have been discussed a lot at recent KubeCons. There’s good reason for that. They're both essential for simplifying stateful workloads. Operators make stateful apps approachable, and CSI de-couples upstream Kubernetes and storage systems. Both mean storage innovation is easier and quicker.

As a result, attendees might see some interesting names appearing for the first time. DPDK, SPDK, PMEM-CSI, COSI, and TiFlash are just a few that they might stumble across in the schedule. What’s remarkable, is how Operators and CSI are still present and essential for most of the presentations. They’re just becoming a “boring” yet essential part of the stack.

In this talk we’ll dive deeper into DPDK and SPDK. They open up some amazing speed potential for OpenEBS (a CNCF Sandbox project). Kubernetes is seeing the “cool” storage tech first, and that’s exciting!

Speakers

Paul Burt

Director of Community and Marketing, MayaData

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Microsoft Azure - Kubernetes on Azure

Speakers

Sean McKenna

Principal Program Manager, Microsoft, Microsoft Azure

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Minio - Why Kubernetes Needs Object Storage: From Artifact to Applications

Speakers

Daniel Valdivia

Engineer, Minio

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Mirantis - Mirantis Container Cloud: A "Getting Started" Demo

Speakers

John Jainschigg

Technical Marketing Manager, Mirantis

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: NetApp - Contain your cabin fever with Kubernetes

Speakers

Ingo Fuchs

Chief Technologist, Cloud & DevOps, NetApp

Sayandeb Saha

Sr. Director, Product Management, NetApp

Kevin McGrath

CTO, Spot by NetApp, NetApp

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: NeuVector - Comparing Security as Code - Egress Inferno - Stayin’ Alive Edition

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Security as Code has yet to gain the same popularity or notoriety as the practice of Infrastructure as Code. Infrastructure as Code has become a cornerstone to automating software development pipelines, increasing development velocity and operational efficiency. Unfortunately, defining fine-grained security policies early in an SDLC is a much more complex, nuanced and (hopefully) layered endeavor.
To both the developer and the user, security shares neither critical path nor perceived value as new functionality is delivered. Yes, of course everyone cares when there is a breach or an attack or a laptop goes missing. But in ephemeral environments, the more granular the security the more likely it changes. When security changes have more potential to slow development velocity or “take down production”, developers, operations and security are left trying to balance creating, testing & managing security vs time spent delivering business differentiating value.
NeuVector Engineer Tracy Walker examines a single security use case - egress control - and in 15 minutes describes how the granularity and management implemented via Security as Code differs between Kubernetes, Openshift, Istio, and NeuVector.

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: New Relic - Kubernetes expert wanted! 12+ years of experience required

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

I need HELP - my team is responsible for the Kubernetes environment, but I don’t know ANYTHING about it. I know, I’ll hire someone with experience!

Over the last few years (NOT 12!), Kubernetes has emerged as the de facto standard for orchestrating and managing containers. Virtually all the cloud vendors have thrown their support behind Kubernetes as an industry standard.

With the rise of Kubernetes, engineers and operators need better visibility to understand and explore the performance of their cloud-native applications and infrastructure.

Is Kubernetes part of your current or future software delivery practice? Are you responsible for your company's Kubernetes environment?

This session will show how to get observability into your Kubernetes environment with the help of New Relic. We’ll cover how to set up and use the New Relic Kubernetes cluster explorer as well as best practices.

Speakers

Kevin Downs

Solutions Strategy Director, New Relic

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Opsani - Continuous Optimization as a Service

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Manual tuning is an impossible outdated task/ Enterprises are over-provisioning their systems with CPU, memory, among other resources, all of which drive up costs.

The solution is performance tuning automation. Come and learn from Opsani's Co-founder and CTO as he illustrates his personal journey in the cloud industry and how it has taught him the need for continuous optimization as a service for enterprises. Opsani allows companies to tune a single service or all services across the service delivery platform autonomously. Opsani continuously delivers value through higher performance, improved availability, and lower costs.

See how some of the largest enterprises have autonomously optimized thousands of their workloads across their service delivery platform with Opsani, saving countless human hours for developers and budget dollars, while delivering better customer experience.

Speakers

Peter Nikolov

Founder, and VP of Engineering, Opsani

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Portworx by Pure Storage - Zero RPO Disaster Recovery for Stateful Apps on Kubernetes

Speakers

Ryan Walker

Technology Advocate, Portworx by Pure Storage

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Rancher - Kubernetes GitOps with Rancher Continuous Delivery

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

As the number of Kubernetes clusters under management increases, application owners and cluster operators need a programmatic way to approach cluster management. Rancher CD solves this by creating a git driven engine for applying cluster changes. Declarative code is stored in a git repo. As changes are committed to the repo, linked clusters are automatically updated. Gitops keeps all your clusters consistent, version controlled, and reduces the administrative burden as you scale. Deployment manifests can be defined in Helm, Kustomize or k8s yaml files and can be tailored based on attributes of the target clusters. In this demo, we will walk through getting started with Rancher Continuous Delivery and provide examples of how to leverage this powerful new tool in Rancher 2.5. Topics we’ll cover:
1. An overview of Rancher Continuous Delivery
2. How to configure cluster groups and tie them to Git repositories
3. How to manage deployments on the local cluster
4. How to deploy an application across multiple clusters

Speakers

William Jimenez

Technical Product Manager, Rancher

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Red Hat - Kafka + Knative for Bursting Workloads

Speakers

Burr Sutter

Director, Developer Tools Product Management, Red Hat

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Salesforce - Generic Sidecar Injector for Kubernetes

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

When Kubernetes announced the support for Mutating admission controllers in 1.9 release, the sidecar pattern really became a “first-class citizen” of Kubernetes. Many of the infrastructure teams at Salesforce independently chose the Kubernetes mutating admission controller webhook model to dynamically inject sidecars in Kubernetes workloads. This worked well until we realized that each of the teams was writing the same code, debugging the same problems and testing the same code. At that point we took a step back and created a generic way of dealing with injection of sidecars and open sourced it. With very little configuration, any team can create a mutating admission controller without writing any code that works based on annotations and is battle tested. Let's take a look at the demo.

Speakers

Mayank Kumar

Software Engineering Architect, Salesforce

Hayk Baluyan

Senior MTS, Salesforce

Generic Sidecar Injector pdf

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Splunk - Finding the Issues in Microservices Applications

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

In today’s application world, complexity rules. We have elastic and ephemeral environments, clouds of all shapes; continual growth in data sources. Add to that the fact that “slow is the new down”. So while things can appear to be simpler, that doesn’t mean easier. Abstractions like containers and orchestration mean our tools need to be faster and capable of helping us discover just what is going on.
Today, you need to move to rich observability data, to cover the wide interaction of our infrastructure and applications. We need to be able to answers questions that we never considered. We need full-fidelity data in real-time and world-class monitoring, analysis and response options.
Find out how to discover the unknown unknowns and their interactions and get insights for today's cloud and microservices architecture. Learn how metrics, traces and logs means you are never in the dark.

Speakers

Dave McAllister

Sr. Technical Evangelist, Splunk

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Splunk - Splunk Opentelemetry

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

It has been said that open source software is eating the world and in the observability space, the project behind this movement is OpenTelemetry. The project is currently in beta and is quickly becoming the standard for instrumentation and data collection of observability data. When it comes to observability, there are lots of opinions, but limited answers. Understanding what data to collect and how to collect it properly is fundamental to ensuring users have the ability to address availability and performance issues quickly. Doing so in an open-source and vendor-agnostic way empowers users to instrument once and via configuration select the back-end that best serves their requirements. This talk will discuss the components of the project, how you can get started, and how you can get involved.

Speakers

Steve Flanders

Director, Engineering, Splunk

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: StackRox - KubeLinter: an open source tool to create production-ready Kubernetes YAMLs

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

If you’ve spent time deploying Kubernetes applications, you know it can be pretty arduous to configure them -- there are so many different objects, so many knobs and dials, so many cross-references to keep track of. Further, in most cases, defaults are geared towards making it easy for users to get their apps up-and-running quickly, and not for secure, production-ready configurations. In this talk, I will introduce KubeLinter, an open-source tool, that solves these problems by linting Kubernetes YAML files and Helm charts to ensure they follow best practices. I will do a hands-on demo of the tool, showing its use on a developer laptop as well as in a CI system.

Speakers

Viswajith Venugopal

Staff Software Engineer, StackRox

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: StackRox - Kubernetes Security Checklist using the MITRE ATT&CK Framework

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

You have Kubernetes workloads running in production, but how do you *really* know your applications and Kubernetes environment is protected from attacks? A comprehensive Kubernetes MITRE ATT&CK matrix is available to help your organization identify, prioritize, and mitigate security risks. However, trying to address Kubernetes security gaps without taking advantage of Kubernetes-native security controls exposes you to greater risk, higher operational costs, and lower developer productivity. This session will cover the security features built into Kubernetes and highlight some of the ways those capabilities can be aligned to the Kubernetes MITRE ATT&CK matrix so that your entire organization benefits from a developer-friendly approach to securing Kubernetes.

Speakers

Michael Foster

Technical Marketing Engineer, StackRox

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Sysdig - Securing Containers and Kubernetes on AWS

Speakers

Eric Carter

Director of Product Marketing, Sysdig

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: Trend Micro - Security as Code for Dev Teams Looking to Meet SecOps Compliance and Stop Attacks

Speakers

Mike Milner

Director of Cloud Native Technology, Trend Micro

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsored Session: VMware - Kubernetes Is Not Just Kubernetes – Ramp Up with These Eight Open Source Projects

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

When was the last time you got a Kubernetes cluster up and running and said “Welp, now we’re done”? Probably never. The cluster is only one part of the puzzle. In this demo, you will see 8 open source technologies that provide different aspects of operating Kubernetes. Get a technical demo of Kubernetes automation with Cluster API, use Kubeapps and Harbor to provide easy access to new applications, utilize Antrea and Contour to improve network performance, visualize the cluster with Octant, measure conformance with Sonobouy, and save the day with Velero. There’s a lot more to Kubernetes than just the platform and VMware is committed to open source and their communities so that we can all deliver better solutions.

Speakers

Kenny Coleman

TKG & Open Source, Technical Product Marketing Manager, VMware

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 7:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

Content Experience Level Any (Anyone can attend

1:00pm EST

Sponsor Demos + Tutorials

By accessing the sponsored demos + tutorials, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Tuesday November 17, 2020 1:00pm - Friday November 20, 2020 11:59pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Demos + Tutorials

1:50pm EST

Sponsored Session: AWS Controllers for Kubernetes -- The AWS API Universe Now Kubeified! - Jay Pipes, AWS

Speakers

Jay Pipes

Principal Open Source Engineer, AWS

Jay is a Principal Open Source Engineer at Amazon Web Services working on cloud-native technologies in the EKS team focused on open source contribution in the Kubernetes ecosystem. He's been involved in open source development for nearly two decades, working in both the cloud infrastructure... Read More →

Text Transcript MVRG 4690 txt

Tuesday November 17, 2020 1:50pm - 2:20pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Breakout

1:50pm EST

Clean Up Your Room! What Does It Mean to Delete Something in K8s - Aaron Alpar, Kasten

While issuing a `kubectl delete` and hoping for the best might work for day-to-day operations, having the knowledge of how Kubernetes effects deletes allows you to understand why some objects linger after deletion. This talk will cover how to delete objects, and what kubernetes does to coordinate the delete process. Some specifics of deleting pods, persistent volume claims, deployments and stateful sets will be covered.

Speakers

Aaron Alpar

Member Technical Staff, Kasten

Aaron Alpar is a Member of Technical Staff at Kasten by Veeam. He has extensive background in reliable production systems. He has been working with Kubernetes since 2017, has been a presenter at Kubecon, and is an active contributor on Github. Talks: Presentation: KubeCon North America... Read More →

CUYR Deleteing in K8s pdf

Text Transcript QVPG 5834 txt

Tuesday November 17, 2020 1:50pm - 2:25pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Beginner (Very basic information)

2:00pm EST

Meet the Maintainer: CoreDNS

Join the CoreDNS Office Hours Here: https://zoom.us/webinar/register/WN_UXK-pqf8TOSG1lJWbONPzg

Tuesday November 17, 2020 2:00pm - 2:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

2:00pm EST

Meet the Maintainer: Longhorn

Join the Longhorn Office Hours Here: https://zoom.us/webinar/register/WN_vsZasbQ-Sfe5_Q4K4lsSCw

Tuesday November 17, 2020 2:00pm - 2:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

2:00pm EST

Open Operators Day hosted by Canonical - Americas Edition (Additional Registration Required)

Asia: 14:00-18:00 CST (1:00 AM - 5:00 AM ET)
EMEA: 13:00-17:00 BST (8:00 AM - 12:00 PM ET)
Americas: 11:00-15:00 PST (2:00 PM - 6:00 PM ET)

Tuesday November 17, 2020 2:00pm - 6:00pm EST
External Platform

Co-Located Event

2:25pm EST

Break

Tuesday November 17, 2020 2:25pm - 2:55pm EST
Anywhere

Breaks

2:55pm EST

Graduated Project Lightning Talk: Getting Started with Jaeger - Joe Elliott, Grafana Labs

Jaeger is the most popular open source distributed tracing system in the world and, as such, often comes with people asking how to bootstrap their first cluster. If you are interested in getting started with Jaeger join us in this lightning talk where we will cover the basics of Jaeger architecture, installation and configuration in a Kubernetes cluster. We will also review the major components of Jaeger and their responsibilities, backend options, and various considerations for building your first production cluster. Additionally, key Jaeger specific metrics will be covered and other operational concerns.

Speakers

Joe Elliott

Principal Software Engineer, Grafana Labs

Joe Elliott has been working as an SRE/Devops/Infrastraucture person with Kubernetes for the last 6 years. Currently a Senior Engineer at Grafana Labs, he is the creator of Tempo, a Jaeger maintainer, and has contributed to the OpenTelemetry Collector, Loki and Cortex. When he's... Read More →

Tuesday November 17, 2020 2:55pm - 3:10pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Graduated Project Lightning Talks

2:55pm EST

Sponsored Session: What Happened to the Promise of Cloud Computing? - Doug Davis, IBM Cloud

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Back in the day we were told that cloud computing would revolutionize how we work. The complexities of the infrastructure would be abstracted away from us and we could focus on what really matters... the code in our applications. Are we there yet?

To some extent there has definitely been some progress. IaaS has abstracted how we work with VMs, and Kubernetes has abstracted how we manage containers - but in many cases the complexities of the underlying infrastructure are not just still visible but "in your face". And, not all of these issue are simply a matter of a nicer UX either.

There has been some recent advances made though, and in this session we'll explore what some of the challenges are that people are facing, and what work has been done to help us get closer to our goal of letting developers be developers, not infrastructure experts.

Speakers

Doug Davis

PM Microservices, Microsoft

Doug is currently focusing on improving the developer experience for cloud native computing in Azure Cloud. He’s been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker, Kubernetes... Read More →

Text Transcript ASVY 2622 txt

Tuesday November 17, 2020 2:55pm - 3:25pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Breakout

2:55pm EST

Tutorial: Migration 101: From VMs to Kubernetes - Luke Kysow, HashiCorp

In this hands-on tutorial, you will learn how to progressively adopt Kubernetes by migrating one of your apps from VMs onto Kubernetes. You will perform the full migration process: from preparing your app for running in Kubernetes, to configuring routing, to performing a no-downtime migration and monitoring your app.

We will cover:

- Dockerizing your app
- Creating a Kubernetes YAML spec
- Deployments
- Configuring routing between K8s and VMs and discussing different topologies including using Consul
- Performing a no-downtime migration from VMs to K8s
- Viewing application logs with Fluentd, Elasticsearch and Kibana
- Viewing application metrics with Prometheus and Grafana
- Managing your hybrid environment This will be a completely hands-on tutorial.

Pre-requisites: https://github.com/ishustava/kubecon-2020-workshop/tree/main/0-prerequisites

Speakers

Luke Kysow

Consul Kubernetes Engineer, HashiCorp

Luke Kysow is a senior engineer at HashiCorp working on Consul's Kubernetes integration. He also maintains Atlantis, an open source Terraform CI/CD tool. He is a long-time Kubernetes user and operator and still remembers what it was like "doing it the hard way", manually bringing... Read More →

Migration 101 From VMs to Kubernetes pdf

Text Transcript WHTG 6388 txt

Tuesday November 17, 2020 2:55pm - 4:20pm EST
Intrado Virtual Event Platform

Tutorials, 101 (sessions for those new to the conference overall and/or beginners to the conference content, i.e. Kubernetes 101)

Content Experience Level Beginner (Very basic information)

3:00pm EST

Meet the Maintainer: CRI-O

Join the CRI-O Office Hours Here: https://zoom.us/webinar/register/WN_5_N8ycitRnu-bNPWuFhWig

Tuesday November 17, 2020 3:00pm - 3:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

3:00pm EST

Meet the Maintainer: Envoy

Join the Envoy Office Hours Here: https://zoom.us/webinar/register/WN_6ekWPL72Tair7QCiQWQWpg

Tuesday November 17, 2020 3:00pm - 3:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

3:10pm EST

Graduated Project Lightning Talk: A Different Kind of Kubernetes Artifact - Paris Pittman, Apple & Nikhita Raghunath, VMware

Kubernetes most well known artifacts are in forms of manifest files (we’re no stranger to yaml), container images, and its objects among other things. What about it’s cultural artifacts? What are they? Throughout history, we’ve leaned on cultural artifacts to help us tell stories of the past that help shape our future. Those artifacts didn’t stop with ancient periods; they build in communities of the present, even open source communities like ours. Some of these are in git repos spread across the org, others in our hearts. Our most well known cultural artifact, the Kubernetes heptagon and wheel logo, has several stories that many of you have already heard, we’ll build on those and more in this talk.

In 15 minutes, Nikhita and Paris from Kubernetes Steering Committee will tell a story of the last five years of artifacts that have been created and impacted the most by its contributors.

Speakers

Nikhita Raghunath

Software Engineer, VMware

Paris Pittman

Program Manager, Apple

Tuesday November 17, 2020 3:10pm - 3:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Graduated Project Lightning Talks

Content Experience Level Any (Anyone can attend, no experience required)

3:25pm EST

Graduated Project Lightning Talk: Simplify Application Deployment at the Edge with Harbor - MICHAEL MICHAEL, Harbor

Harbor offers a lot of capabilities as a registry in the datacenter. Recently, we have focused our energy on better image distribution and Edge scenarios. You can't operate Kubernetes at the Edge without a registry and Harbor is making it easier and simpler to co-locate your workloads with your cloud native artifacts. Integrations with P2P providers like Uber’s Kraken and Alibaba’s Dragonfly and Proxy Cache capabilities are key features that make image distribution at the Edge possible.

Speakers

Michael Michael

Director of Product Management, VMware

Michael Michael (or M2) is a Maintainer of Harbor and Contour, co-chairs Kubernetes' SIG-Windows, and is the product lead for Velero, Octant, and Sonobuoy. M2 is focused on cloud native technologies, delivering agility and simplicity to developers and accelerating the modernization... Read More →

Nov17 Simplify Application Deployment at the Edge with Harbor MICHAEL MICHAEL pptx

Tuesday November 17, 2020 3:25pm - 3:40pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Graduated Project Lightning Talks

Content Experience Level Any (Anyone can attend, no experience required)

3:40pm EST

Graduated Project Lightning Talk: Improved TiKV Observability: How We Trace Events under Nanoseconds Latency - Wish Shi & Zhenchi Zhong, PingCAP

Observability is beneficial but often comes with a price. When adding tracing to low latency services (e.g. < 1ms), engineers might find notable performance degradation. Besides, trade-off solutions have inherent limitations. For example, sampled tracing may leave errors or unusual latency sampled out and missed.

In this talk, Wish Shi and Zhenchi Zhong will share their experience in implementing a high-performance OpenTracing-compatible tracing library, which was originally created for TiKV. The library can trace events under nanoseconds latency without sampling on the modern x64 architecture. Decisions, design details and trade-offs will be presented, along with an open-source implementation available in both Rust and Golang.

Speakers

Wish Shi

Infrastructure Engineer, PingCAP

Zhenchi Zhong

Intern Engineer, PingCAP

KubeConNA Improved TiKV Observability pdf

Tuesday November 17, 2020 3:40pm - 3:55pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Graduated Project Lightning Talks

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Sponsored Lightning Talk: 5 Reasons Why You Should Rethink Your Default Ingress Controller - Daniel Corbett, HAProxy Technologies

This session is lightning talk #1 in a series of 3 and starts at 1:10 of the session recording video.

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Are you using the default Ingress Controller to route traffic into your Kubernetes cluster? Many times when using a new product, we all tend to stick with the default settings and tools that ship with it. This gives you time to get your feet wet without needing to become an expert on all of its bells and whistles. However, the defaults may not always be the best for you! In this talk, we'll provide five reasons to rethink your decision to stick with the default ingress controller and why you may want to consider an alternative.

Attendees will leave this talk equipped with the knowledge needed to evaluate whether the default ingress controller is right for them and allow them to weigh an alternative.

Speakers

Daniel Corbett

Director of Product, HAProxy Technologies

Text Transcript WOBA 0297 txt

Tuesday November 17, 2020 3:50pm - 3:55pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Lightning Talk

3:55pm EST

Sponsored Lightning Talk: Protecting All Your Kubernetes Data - Mathew Ericson, Commvault

This session is lightning talk #2 in a series of 3 and starts at 6:11 of the session recording video.

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Kubernetes helps accelerate application modernization. When adopting K8s, you generate a lot of data that must be protected. This includes K8s persistent data, plus data on laptops, source-code control systems, and CI/CD systems. Protecting, recovering, and migrating your data and applications requires agility and deep awareness of your application data across on-prem and cloud locations.

You can take an application-centric approach focused on capturing the entire K8s application (manifests, persistent data, dependent resources) and/or an infrastructure-centric approach focused on leveraging next gen software-defined storage that is integrated into K8s via CSI. Both are valid depending on what you are trying to achieve.

In this session, we’ll cover:
o What data to protect in Kubernetes
o What data to protect outside Kubernetes (e.g., etcd)
o How to adopt a holistic data protection approach

Speakers

Mathew Ericson

Senior Product Manager - Cloud & Containerization, Commvault

Text Transcript WOBA 0297 txt

Sponsor Session Commvault Protecting All Your Kubernetes Data pptx

Tuesday November 17, 2020 3:55pm - 4:00pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Lightning Talk

3:55pm EST

Graduated Project Lightning Talk: containerd: Rootless Containers 2020 - Akihiro Suda, NTT

Rootless Containers means running the container runtimes (e.g. runc, containerd, and kubelet) as well as the containers without the host root privileges. The most significant advantage of Rootless Containers is that it can mitigate potential container-breakout vulnerability of the runtimes, but it is also useful for isolating multi-user environments on HPC hosts. This talk will contain the introduction to rootless containers and deep-dive topics about the recent updates such as Seccomp User Notification. The main focus will be on containerd (CNCF Graduated Project) and its consumer projects including Kubernetes and Docker/Moby, but topics about other runtimes will be discussed as well.

Speakers

Akihiro Suda

Software Engineer, NTT Corporation

Akihiro Suda is a software engineer at NTT Corporation, a Japan-based telecommunication company. He has been a maintainer of several opensource container software such as Moby, BuildKit, containerd, runc, and Lima. He has previously talked at several FLOSS conferences such as KubeCon... Read More →

KubeConNA2020 RootlessContainers pdf

Text Transcript PGLM 5861 txt

Tuesday November 17, 2020 3:55pm - 4:10pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Graduated Project Lightning Talks

Content Experience Level Any (Anyone can attend, no experience required)

4:00pm EST

Sponsored Lightning Talk: Why You Need Observability to Adopt Kubernetes at Scale - Shreyans Parekh, AppDynamics

This session is lightning talk #3 in a series of 3 and starts at 11:12 of the session recording video.

By accessing this sponsored session, the third party sponsor will receive some of your registration data. This data includes your First Name, Last Name, Title, Company, Address, Email, Standard Demographics Questions (I.e. Company Size, Job Function, Industry), and details about the sponsored content you interacted with. If you choose to access sponsored sessions, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Monitoring Kubernetes performance at scale presents numerous challenges. With containers and orchestrators becoming very popular - creating highly dynamic environments - there's a strong need to monitor them dynamically. Comprehensive monitoring provides enterprises running traditional or microservice-based applications on Kubernetes an end-to-end solution to deliver flawless application experiences.

Kubernetes monitoring gives organizations complete observability into application and business performance, providing unparalleled insights into containerized applications, Kubernetes clusters, Docker containers, and underlying infrastructure metrics - all through a single pane of glass. It is critical to correlate events in Kubernetes with contextual insights to help troubleshoot issues and understand how to track end-user experience from those applications.

Speakers

Shreyans Parekh

Senior Manager, Product and Solutions Marketing, AppDynamics

Shreyans Parekh is a Senior Manager who leads go-to-market strategy across the Cisco AppDynamics portfolio and cloud platforms. His thought leadership has appeared in publications from Cisco, Salesforce, Intuit, IBM, Jefferies Group and the University of Michigan Ross School of Business... Read More →

Text Transcript WOBA 0297 txt

Tuesday November 17, 2020 4:00pm - 4:05pm EST
Intrado Virtual Event Platform

Sponsor Theater, Sponsor Lightning Talk

4:00pm EST

Meet the Maintainer: Cloud Events

Join Cloud Events Office Hours Here: https://zoom.us/webinar/register/WN_ha6MiNdESsCXsPvo1LDCiw

Tuesday November 17, 2020 4:00pm - 4:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

4:00pm EST

Meet the Maintainer: Metal3.io

Join the Metal3.io Office Hours Here: https://zoom.us/webinar/register/WN_Tgb0Xyp2Rci1cNtoPG70RA

Tuesday November 17, 2020 4:00pm - 4:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

4:20pm EST

Break

Tuesday November 17, 2020 4:20pm - 4:50pm EST
Anywhere

Breaks

4:50pm EST

Build Your Own Envoy Control Plane - Steve Sloka, VMware

Envoy is a building block of many different solutions from Ingress controllers, Service mesh implementations, as well as functions as a service application frameworks. Any solution utilizing Envoy as its data path component most likely implements Envoy’s xDS API in some way. It is possible to only use a fully static configuration, but typically more complicated deployments incrementally add more complex dynamic configuration via xDS over gRCP. This talk will walk through how the xDS API is defined and what each component does. We’ll discuss lessons learned from Contour, an ingress controller for Kubernetes on how the team implemented xDS (and also struggled with it). Come take a look at how you can build a full Envoy control plane for yourself!

Speakers

Steve Sloka

Sr. Member of Technical Staff, VMware

Steve Sloka is a Sr. Member of Technical Staff at VMware based in Pittsburgh, PA dealing with all things Cloud, Containers, and Kubernetes. Steve is a maintainer of Contour & Gimbal and is a contributor to many other open source projects. Steve is also a Kubernetes contributor and... Read More →

BuildingAnEnvoyControlPlane pdf

Text Transcript LLTF 1021 txt

Tuesday November 17, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Any (Anyone can attend, no experience required)

5:00pm EST

Meet the Maintainer: Operator SDK

Join the Operator SDK Office Hours Here: https://zoom.us/webinar/register/WN_A1LNmrGxTGm8AOE5RugjzQ

Tuesday November 17, 2020 5:00pm - 5:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

5:00pm EST

Meet the Maintainer: Service Mesh Interface

Join the Service Mesh Interface Office Hours Here: https://zoom.us/webinar/register/WN_sYlX74Y6Q-23UKXZXl3QlQ

Tuesday November 17, 2020 5:00pm - 5:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

5:00pm EST

AMA Happy Hour with Priyanka Sharma, GM of CNCF

Watch in Zoom.
This session will also be streamed on CNCF's Twitch channel -https://www.twitch.tv/cloudnativefdn

Join CNCF General Manager Priyanka Sharma for some end-of-day socializing, recaps of the keynotes, and special guests! Come prepared with your audio and video on - we’re here to have fun and make connections!

Speakers

Priyanka Sharma

ED, CNCF

Tuesday November 17, 2020 5:00pm - 6:00pm EST
External Platform

Interactive Sessions

5:40pm EST

PID 1, SIG Handling, Hooks & Probes: Managing Container Lifecycle Correctly - Anmol Krishan Sachdeva, OLX Group, Naspers

The lifecycle of an application should be tightly linked to the container hosting it. In an environment like Kubernetes where the Pods get created and deleted left, right, and centre, if an application hasn't implemented signal handling correctly, ungraceful termination of that application is most likely to happen and it could lead to disrupted services. For running the containers in a reliable fashion with proper signal handling and lifecycle management, there are a few strategies that should be followed which this talk would be covering: ~ Signal handling through `init` system - covers PID 1, orphans and zombie processes, Linux signals, `dumb-init` or `tini`. ~ Utilizing postStart and preStop lifecycle hooks for initialization and graceful termination. ~ Liveness, Readiness, and Startup probes. ~ Key differences between the postStart hook, initContainer, and Startup Probe.

Speakers

Anmol Krishan Sachdeva

Sr. Site Reliability Engineer, OLX Group, Naspers

Anmol Krishan Sachdeva is an International Tech Speaker, a Distinguished Guest Lecturer, a Tech Panelist, and has represented India at several reputed International Hackathons. He is a Deep Learning Researcher and has around 8+ publications.Recently, Anmol helped organize EuroPython... Read More →

KubeCon AnmolKrishanSachdeva ManagingContainerLifecycleCorrectly pdf

Text Transcript UFLM 2172 txt

Tuesday November 17, 2020 5:40pm - 6:15pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Beginner (Very basic information)

10:00am EST

Meet the Maintainer: Serverless Workflow Specification

Join the Serverless Workflow Specification Office Hours Here: https://zoom.us/webinar/register/WN_-9VuxNSbRT2_ep8YyEihdw

Wednesday November 18, 2020 10:00am - 10:45am EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

11:00am EST

Meet the Maintainer: Keptn

Join the Keptn Office Hours Here: https://zoom.us/webinar/register/WN_vnr-DfORSLW56HShaOS4nQ

Wednesday November 18, 2020 11:00am - 11:45am EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

12:00pm EST

Meet the Maintainer: OpenEBS

Join the OpenEBS Office Hours Here: https://zoom.us/webinar/register/WN_aqR334fJRiWAgq3zwCfA_A

Wednesday November 18, 2020 12:00pm - 12:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

12:00pm EST

Meet the Maintainer: Vitess

Join the Vitess Office Hours Here: https://zoom.us/webinar/register/WN_GCCLkh9wRQGHjv9IvpFZ5g

Wednesday November 18, 2020 12:00pm - 12:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

12:00pm EST

Expo Hall

Wednesday November 18, 2020 12:00pm - 7:30pm EST
Intrado Virtual Event Platform

Expo Hall

1:00pm EST

Keynote: #TeamCloudNative: Diversity-Powered Resilience - Priyanka Sharma, General Manager, Cloud Native Computing Foundation

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Priyanka Sharma

ED, CNCF

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 1:00pm - 1:25pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:00pm EST

Meet the Maintainer: Harbor

Join the Harbor Office Hours Here: https://zoom.us/webinar/register/WN_y1_EojOtQ2GAzpbS7MpMtA

Wednesday November 18, 2020 1:00pm - 1:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

1:00pm EST

Meet the Maintainer: Linkerd

Join the Linkerd Office Hours Here: https://zoom.us/webinar/register/WN_yt9pXNjdRAyGwlh5fy0spQ

Wednesday November 18, 2020 1:00pm - 1:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

1:26pm EST

Keynote: Are Certifications Worth It? - Cheryl Hung, Vice President - Ecosystem, Cloud Native Computing Foundation

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Cheryl Hung

VP Ecosystem, Cloud Native Computing Foundation

Cheryl Hung is VP Ecosystem at the Cloud Native Computing Foundation, where she drives adoption of cloud native infrastructure. As a non-profit under the Linux Foundation, the CNCF hosts open source projects including Kubernetes, Prometheus and Envoy.She founded the 5000+ strong Cloud... Read More →

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 1:26pm - 1:41pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:42pm EST

Keynote: The Cloud Native Journey @Apple - Alena Prokharchyk, Software Engineer, Apple

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

If you want to evolve your applications, services and user experience around Cloud Native technologies, then adaptability is key. Apple identified the ecosystem’s potential early on, and worked hard to adopt the technologies to support the scale and variety of use cases necessary for Apple’s adoption. This talk will cover Apple’s Cloud Native journey and what it took to build a Kubernetes offering that focuses on Privacy, Security, Multi-Tenancy and Scale.

- Why Cloud Native at Apple?
- Why we migrated from Mesos to Kubernetes?
- Technical challenges faced and solutions applied
- Testing things at scale: operational challenges and collaboration with the community
- Cloud Native ecosystem projects we leverage, such as etcd and containerd

Speakers

Alena Prokharchyk

Software Engineer, Apple

Alena Prokharchyk is a Software Engineer at Apple where she works on Kubernetes clusters management system with the focus on an end user experience. For the past 11 years Alena has been building open source orchestration software, first for VMs as a part of Apache CloudStack, followed... Read More →

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 1:42pm - 1:55pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:56pm EST

Sponsored Keynote: The Rise of the End Users - Diane Mueller, Community Development, Red Hat

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Today, end users are not just “using” open source software, they are active and valuable participants in the communities and are helping to drive innovation into the upstream projects, driving projects out into the open from behind the firewall for the benefit of all.

End user participation is key to the success and health of the entire ecosystem. After all, who understands better the challenges of cloud native adoption and migration than the users themselves? Helping more companies to navigate the cloud native ecosystem and participate in open source is essential to all our success. Come hear how they are making an impact in open source and learn what we can all do to ensure their success.

Speakers

Diane Mueller

Director, Community Development, Red Hat

Director, Community Development, Red Hat (https://redhat.com) ; Co-Chair, OKD Working Group, the Community Distribution of Kubernetes that powers Red Hat OpenShift (https://okd.io) and founder/organizer of OpenShift Commons (https://commons.openshift.org)

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 1:56pm - 2:01pm EST
Intrado Virtual Event Platform

Keynote Sessions

Content Experience Level Any (Anyone can attend

2:00pm EST

Meet the Maintainer: Strimzi

Join the Strimzi Office Hours Here: https://zoom.us/webinar/register/WN_PKwXnCl9Ruq9d9K5NoaL4w

Wednesday November 18, 2020 2:00pm - 2:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

2:00pm EST

Meet the Maintainer: Thanos

Join the Thanos Office Hours Here: https://zoom.us/webinar/register/WN__5XbV0NzRNSJRzkJqPeDjg

Wednesday November 18, 2020 2:00pm - 2:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

2:02pm EST

Keynote: CNCF Projects Update - Constance Caramanolis, KubeCon + CloudNativeCon North America 2020 Co-Chair & Principal Software Engineer, Splunk

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Constance Caramanolis

Principal Software Engineer, Splunk

Constance is a principal software engineer at Splunk, formerly Omnition, contributing to OpenTelemetry. Previous to Omnition, she worked at Lyft as part of the data platform and server networking teams. While at Lyft, Constance built, deployed, and configured Envoy internally, and... Read More →

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 2:02pm - 2:13pm EST
Intrado Virtual Event Platform

Keynote Sessions

2:14pm EST

Keynote: The Cloud Native Journey of Volcano Engine - Dr. Xin Zhang, VP of Volcano Engine, ByteDance

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Dr. Xin Zhang

VP of Volcano Engine, ByteDance

Xin Zhang, VP of Volcano Engine, previously CEO & co-founder of Caicloud; ex-Googler; Xin has been actively involved in cloud native technology innovation, helping Chinese enterprises to achieve enterprise digital transformation and intelligence.

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 2:14pm - 2:18pm EST
Intrado Virtual Event Platform

Keynote Sessions

2:19pm EST

Sponsored Keynote: Kubernetes Everywhere – Briana Frank, Director of Product, IBM Cloud

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Building, deploying, and running apps in heterogenous environments can impact performance and user experience. Kubernetes can solve this pain, by acting as a common infrastructure layer across on-prem, edge, and public cloud. Learn how Kubernetes Everywhere can ultimately power 5G, tellerless banking, and distributed analytics.

Speakers

Briana Frank

Director of Product Management, IBM Cloud

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 2:19pm - 2:23pm EST
Intrado Virtual Event Platform

Keynote Sessions

Content Experience Level Any (Anyone can attend

2:24pm EST

Keynote: Kubernetes Project Update - Stephen Augustus, KubeCon + CloudNativeCon North America 2020 Co-Chair & Senior Open Source Engineer - Tanzu Kubernetes Grid Core, VMware

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Stephen Augustus

Head of Open Source, Cisco

Stephen is a Black engineering director and leader in open source communities.He is Cisco’s first Head of Open Source, within the Emerging Technologies & Incubation division.For Kubernetes, he has co-founded transformational elements of the project, including the KEP (Kubernetes Enhancements Proposal) process, the Release Engineering subproject, and Working Group Naming. Stephen has also previously served as a chair for both SIG PM and SIG Azure.He continues his work... Read More →

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 2:24pm - 2:33pm EST
Intrado Virtual Event Platform

Keynote Sessions

2:30pm EST

Break

Wednesday November 18, 2020 2:30pm - 3:00pm EST
Anywhere

Breaks

2:33pm EST

Keynote: Closing Remarks - KubeCon + CloudNativeCon North America 2020 Co-Chairs: Constance Caramanolis, Principal Engineer, Splunk & Stephen Augustus, Senior Open Source Engineer - Tanzu Kubernetes Grid Core, VMware

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Constance Caramanolis

Principal Software Engineer, Splunk

Stephen Augustus

Head of Open Source, Cisco

Text Transcript CNUE 7980 txt

Wednesday November 18, 2020 2:33pm - 2:35pm EST
Intrado Virtual Event Platform

Keynote Sessions

3:00pm EST

The Building Blocks of DX: K8s Evolution From CLI to GitOps - Katie Gamanji, Cloud Native Computing Foundation

In the past years, Kubernetes has become the default container orchestrator framework, setting the standards for application deployment in a distributed architecture. Wider adaptability of the tool prompted the diversification of the end-user base, and a consistent DX for cluster interaction became essential for Kubernetes. The community channeled herculean efforts towards the enhancement of developer experience by extending the cluster CLI, building portals, and highly-responsive UIs. This talk will focus on the cluster DX chronicles, showcasing tools which contributed to wider adoption for Kubernetes. An emphasis will be placed on cluster CLI and how it can be extended using kubectl plugins and wrappers. This will be followed by an introduction of widespread cluster state managers, covering mechanisms such as GitOps, ClickOps, and even SheetOps.

Speakers

Katie Gamanji

Senior Field Engineer, Apple

Katie is a cloud native leader and practitioner, currently in a Senior Field Engineer role at Apple and a TOC for CNCF. As a platform engineer, Katie contributed to Conde Nast and American Express platforms and at CNCF led the End User Community. Katie is the author of the Cloud Native... Read More →

Building blocks DX CLI to GitOps pdf

Text Transcript OXWA 8853 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Beginner (Very basic information)

3:00pm EST

Stop Writing Operators - Joe Thompson, HashiCorp

Since the introduction of the operator pattern by CoreOS in 2016, operators and even operator coding frameworks have proliferated seemingly without limit. But *should* you write an operator? If not, what should you be doing instead? In this session, Joe Thompson gives a quick overview of the state of the operator ecosystem, points out situations where writing and using them may not be ideal, and offers opinions on alternatives that may be more effective for maintaining your applications. You'll leave with the knowledge to be confident that whether you choose to write an operator or not in any given situation, you're making the correct choice.

Speakers

Joe Thompson

Staff Solutions Engineer, HashiCorp

Joe Thompson's IT career is near the end of its third decade. He's been part of the cloud-native community since 2014, starting with OpenStack and adding Kubernetes a few months after it debuted. He's spoken at KubeCon, Cloud Native Rejekts and many local meetups and enjoys showing... Read More →

Text Transcript STEP 0878 txt

Stop Writing Operators pdf

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Production CI/CD with CNBs: Tekton and Gitlab and CircleCI (plus), Oh My! - David Freilich & Natalie Arellano, VMware

You may have heard of Cloud Native Buildpacks (https://buildpacks.io/), a set of tools for transforming application source code to OCI images that can run on any cloud. In this session, we’ll delve into some new functionality of Cloud Native Buildpacks which can be powerful in the enterprise context, such as the ability to narrowly define trusted builders, allowing developers and operators to restrict access to registry credentials, as well as the ability to create Windows images. We’ll spend the core of our time exploring how you can use Cloud Native Buildpacks in a number of CI/CD systems, including Tekton, Gitlab and CircleCI. By the end of this session, you’ll come out with a better understanding of the capabilities of the Cloud Native Buildpacks project, and how to integrate it into your production CI/CD system.

Speakers

David Freilich

Software Engineer, AppsFlyer

David Freilich is a Software Engineer in the Platform group at AppsFlyer, where he works on providing a smooth developer experience for the entire R&D Department. He is also a platform maintainer for the Cloud Native Buildpacks project. He is passionate about clean code, delightful... Read More →

Natalie Arellano

Software Engineer, Pivotal

Natalie is a software engineer at VMware and a maintainer on the Cloud Native Buildpacks project.

kubecon pres pdf

Text Transcript YLUG 6997 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

CI/CD

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

The Quest for the Ultimate Kubernetes Homelab - Dan Garfield, Codefresh

We go way beyond the basic Raspberry Pi builds you've seen before. Built on x86, with autoscaling, networking, stateful services, on the cheap and with every single infrastructure component defined as code. Dan will share his quest for the ultimate Kubernetes homelab both to provide services for the home and family as well as implement all the components of an enterprise grade system. We'll look at node operating systems, how to build-on power management with node scaling/shutdown, which Kubernetes implementation to use and how to automate the entire thing so you can stand it up and down from scratch in minutes. The quest for the ultimate Kubernetes homelab brings all the components of DevOps and infrastructure management for a homelab nirvana.

Speakers

Dan Garfield

Chief Open Source Officer and Co-Founder, Codefresh

Dan Garfield is the Co-founder and Chief Open Source Officer of Codefresh, a CI/CD platform powered by GitOps and Argo. He helped launch the GitOps Working Group and helped lead the creation of the Open GitOps principles. As an Argo Maintainer, Kubernaut, Google Developer Expert... Read More →

Text Transcript JNHV 4329 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Community

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

High Performance Networking for Distributed DL Training in Production K8s - Nivedita Viswanath & Vatsan Kasturi, NVIDIA

Distributed DL training requires high performance networks connecting tens, hundreds, or for certain natural language processing models, even thousands of GPUs. Running these workloads on Kubernetes clusters of GPU enhanced servers requires careful engineering to avoid bottlenecks at NIC and switching fabric that act as interconnect between nodes. In this presentation we will describe the design and architecture of a 800 GPU cluster interconnected over RoCE fabric to achieve line rate performance between communicating containers in a multi-node job. Some of the topics we will cover are scalable cookie-cutter POD design for DC, low latency one hop network design that enables NCCL rings to avoid output port congestion and K8s integration with a multi-homed network for optimal GPU utilization. We will share performance numbers for training workloads from our production clusters.

Speakers

Nivedita Viswanath

Software Engineer, NVIDIA

Nivedita Viswanath is a Senior Systems Software Engineer at Nvidia and is a member of the Nvidia GPU Cloud team. During her time at Nvidia, Nivedita has worked on orchestrating execution of DL workloads on GPU clusters managed by Mesos and Kubernetes, with a focus on batch job scheduling... Read More →

Vatsan Kasturi

Architect, Nvidia Inc

Vatsan Kasturi is an Architect at Nvidia and is a member of the Nvidia GPU Cloud team. My focus areas are DCs, Networking, Systems and Clusters, AI/ML workloads and work on infrastructure projects.

Text Transcript YTZH 0034 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

CloudEvents - v1.0 and Beyond - Discovery/Subscriptions - Doug Davis, IBM & Clemens Vasters, Microsoft

With the release of CloudEvents v1.0 the project has now expanded its scope to consider other potential pain points for the community. To that end, the group is focusing on Event Discovery and Subscriptions APIs in the hopes of reducing the friction of discovering which events are available from Event Producers as well as how someone can subscribe to those receive those events. In this session we'll quickly summarize, and review, the status of CloudEvents and then jump into the goals, design and status of the new Discovery and Subscription APIs specification being developed.

Speakers

Doug Davis

PM Microservices, Microsoft

Clemens Vasters

Principal Architect, Microsoft

Clemens Vasters is Lead Architect in Microsoft’s Azure Messaging team that builds and operates a fleet of hyper-scale messaging services, including Event Grid, Service Bus, and Event Hubs. Clemens represents Microsoft in messaging standardization in OASIS (AMQP) and CNCF (CloudEvents... Read More →

KubeCon 2020 CloudEvents pdf

Text Transcript JTUU 9596 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, CloudEvents - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Contour, A High Performance Multitenant Ingress Controller for Kubernetes - MICHAEL MICHAEL, Steve Sloka, Nick Young, & James Peach, VMware

Contour, a CNCF incubating project, is a high performance ingress and load balancer solution for Kubernetes. Contour offers a richer feature set than some common alternatives while maintaining a lightweight profile. At its core, Contour is providing a control plane for the Envoy edge and service proxy. This session will show you how to leverage Contour and Envoy for Kubernetes workloads in a multi-tenant environment, demonstrate recent Contour features like authentication and preview our near term roadmap.

Speakers

Steve Sloka

Sr. Member of Technical Staff, VMware

Michael Michael

Director of Product Management, VMware

Nick Young

Senior Systems Engineer, Isovalent

Nick has been working to prevent the entropic downfall of systems for 20 years, across Windows and Linux, datacenters and clouds, networking, storage and compute. Currently he's a Senior Software Engineer at Isovalent, and a maintainer on the Kubernetes Gateway API project, where... Read More →

James Peach

Staff Engineer II, VMware

Nov18 Contour A High Performance Multitenant Ingress Controller for Kubernetes MICHAEL MICHAEL Steve Sloka Nick Young James Peac pptx

Text Transcript AQBZ 4772 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Contour - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Detecting Security Policies Violation Using Falco: A Practical Introduction - Leonardo Grasso, Sysdig

Falco, the CNCF runtime security tool, is designed to detect anomalous activity and security breaches.

Haven't used Falco yet? Want to see it in action? This talk is for you.

During this session, the Falco maintainer will introduce the project and give a tutorial about using it to discover something you do not expect.

The audience will walk away with the knowledge of how to create custom Falco rules that detect security policies violation.

Speakers

Leonardo Grasso

Open Source Software Engineer, Sysdig

Leonardo Grasso is an Open Source Software Engineer at Sysdig, based in Italy. He has a strong passion for software design and has long professional experience in the R&D field. Leonardo loves Linux, Kubernetes, Containers, Security, and building tools other engineers would like to... Read More →

Detecting Security Policies Violation Using Falco a Practical Introduction Leonardo Grasso pdf

Text Transcript KGUK 8918 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Falco - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Evolution of Metric Monitoring and Alerting: Upgrade Your Prometheus Today - Bartlomiej Płotka, Red Hat, Björn Rabenstein & Richard Hartmann, Grafana Labs, & Julius Volz, PromLabs

Infrastructure metric monitoring is constantly evolving. Similarly, Prometheus, the most adopted observability tool in the CNCF ecosystem, is under active development and constantly growing. Every release brings something new or improves existing features to help increase the reliability and debuggability of modern clouds. But Prometheus is not about a single project anymore. There’s an ever-growing Prometheus Ecosystem, including Alertmanager, tons of exporters, standards, client libraries, and long term storage projects, enabling the best and truly cloud-native observability story for you. In the first part, Prometheus Maintainers will introduce you to the universe of reliable monitoring and alerting with metrics via Prometheus with specific and actionable examples. After that, we will make sure more experienced users can learn as well, by explaining the advanced usage patterns of the Prometheus and new, useful features available in the newest versions.

Speakers

Bartłomiej Płotka

Mr, Google

Bartek Płotka is a Senior Software Engineer at Google. SWE by heart, with an SRE background, currently working on Cloud Observability. Previously Principal Software Engineer at Red Hat. Author of "Efficient Go" book with O'Reilly. As the co-founder of the CNCF Thanos project and... Read More →

Richard Hartmann

Director of Community, Grafana Labs

Richard "RichiH" Hartmann is the Director of Community at Grafana Labs, a member of the Office of the CTO of Grafana Labs, Prometheus team member, OpenMetrics founder, OpenTelemetry member, CNCF Technical Oversight Committee member, CNCF Governing Board member, and more. He also leads... Read More →

Julius Volz

Founder, PromLabs

Julius co-founded the Prometheus monitoring system and originally led the project to success at SoundCloud and beyond. He now focuses on growing the Prometheus community, started PromCon, the first conference around Prometheus, and helps companies use and adapt Prometheus through... Read More →

Björn Rabenstein

Engineer, Grafana Labs

Björn is an engineer at Grafana and a Prometheus developer. Previously, he was a Production Engineer at SoundCloud, a Site Reliability Engineer at Google, and a number cruncher for science.

Text Transcript GVBZ 4153 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Prometheus - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Introduction and Deep Dive into containerd - Michael Crosby & Derek McGowan, Apple, Phil Estes, IBM, & Wei Fu, Alibaba

Join containerd maintainers in a combined introduction and deep dive discussion. This talk will include a brief introduction to the design and architecture of containerd along with the latest updates to the project. After that, maintainers will deep dive into new features including NRI (Node Resource Interface), new Sandbox API, the CRI (Container Runtime Interface) implementation move into containerd core, and improvements in image distribution from remote snapshotters to better proxy support. Come learn about how to get started with containerd as a user or contributor.

Speakers

Derek McGowan

Software Engineer, Independent

Open source maintainer working on container technology for the last 9 years.

Phil Estes

Principal Engineer, AWS

Phil is a Principal Engineer for Amazon Web Services (AWS), focused on core container technologies that power AWS container offerings like Fargate, EKS, and ECS.Phil is currently an active contributor and maintainer for the CNCF containerd runtime project, and participates in the... Read More →

Wei Fu

Software Engineer, Microsoft

containerd maintainer: Building things for others who build things

Michael Crosby

Software Engineer, Apple

Text Transcript QMUP 5730 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, containerd - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Infrastructure for Entertainment - Justin Garrison, Amazon

Let's talk about what it takes to create movies and ship them to theaters as well as what it takes to stream movies directly to viewers. Justin has experience running infrastructure for both and wants to help you be successful in your cloud or on-prem journey.

Speakers

Justin Garrison

Sr Developer Advocate, Amazon

Justin is a developer advocate at AWS where he helps improve cloud services for everyone. He has helped make Oscar winning movies and built infrastructure for popular streaming services. In his spare time he enjoys tinkering with hardware and streaming Moana on repeat.

Text Transcript TVSD 6584 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Operations, AMA

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Panel: Introduction to the Container Orchestrated Device (COD) Working Group - Renaud Gaubert, NVIDIA; Mike Brown, IBM; Mrunal Patel & Urvashi Mohnani, Red Hat; & Alexander Kanevskiy, Intel

The Container Orchestrated Device (COD) Working Group, is a small group formed by passionate Container Runtime Maintainers and Device Vendors looking to solve many of the challenges Devices face in the cloud native space. Custom Devices are used in many industries (HPC, 5G, AI and Deep Learning, Data center, …), from single nodes accessing devices over the fabric to thousands of devices communicating over the network, the working group is helping enable new and exciting progress in the data center! Attendees will hear an overview of the issues the current ecosystem faces with device support, new and exciting changes happening in the different runtimes (e.g: the Container Device Interface) as well as in orchestrators (e.g: monitoring of Devices) and the roadmap ahead to enable the cloud native space to support exciting new workloads (e.g: 5G applications, Multi-node Deep Learning, …).

Speakers

Alexander Kanevskiy

Mr., Intel

Alexander is currently employed by Intel as Principal Engineer, Cloud Software, focusing on various aspects in Kubernetes: Resource Management, Device plugins for hardware accelerators, Cluster Lifecycle and Cluster APIs. Alexander has over 25+ years of experience in areas of Linux... Read More →

Mike Brown

OSS Engineer, IBM

OSS Engineer; @containerd maintainer; working @oci, @cncf, @pytorch, and @kubernetes projects

Mrunal Patel

Senior Principal Software Engineer, Red Hat

Mrunal Patel is a Senior Principal Software Engineer at Red Hat working on containers for Openshift. He is a maintainer of runc/libcontainer and the OCI runtime specification. He started the CRI-O runtime. He is active across various projects in the kubernetes SIG Node. He has also... Read More →

Renaud Gaubert

Software Engineer, Nvidia

Renaud Gaubert has been working since 2017 at NVIDIA on making GPU applications easier to deploy and manage in data centers. He focuses on supporting GPU-accelerated machine learning frameworks in container orchestration systems such as Kubernetes, Docker swarm, and Nomad. He is an... Read More →

Urvashi Mohnani

Senior Software Engineer, Red Hat

Urvashi Mohnani is a Senior Softwar Engineer on the OpenShift Runtimes team at Red Hat. She has spent the last few years working on container technologies such as podman, buildah, cri-o, and OpenShift. She has given talks at multiple conferences about her work and also spends some... Read More →

Text Transcript OTNB 7040 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Runtimes

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Static Analysis of Kubernetes Manifests - Barak Schoster, Bridgecrew

Planning, provisioning, and changing infrastructure are becoming vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and immutability and helps prevent bad configurations upstream. In this talk, we'll cover best practices for writing, testing, and maintaining infrastructure at scale using policy-as-code both in CI/CD and kubernetes cluster runtime. We'll compare the two methods and review sample use cases that showcase the benefits of each. In addition we'll cover the current state of open source repositories and kubernetes manifests found in the wild.

Speakers

Barak Schoster

Chief Architect, Bridgecrew By Prisma Cloud

Barak Schoster is co-founder and CTO of Bridgecrew. Based in Tel Aviv, Barak spends his time helping teams secure cloud infrastructure, writing code, and talking about writing code. He is the creator of Checkov and often contributes to other open source projects. Follow him on Twitter... Read More →

Text Transcript QVQL 2532 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)

3:00pm EST

Serverless or Servicefull - Sebastien Goasguen, Triggermesh

While containers and container orchestration has taken the world by storm over the last five years, serverless offering that hides the complexity of the underlying infrastructure and the application management mechanisms are becoming the norm within the main Cloud providers. In this talk we will discuss whether or not serverless should in fact be called "servicefull". Indeed serverless computing architecture is all about using events and functions to integrate cloud services together. The world is not so much without servers, they are definitely still there somewhere, but the world is now full of services. The cloud has become our kernel, it is made of a myriad of API exposing cloud services, our world has become servicefull and not serverless. With this difference exposed we will discuss how k8s extensions can help us integrate services and move towards servicefull applications.

Speakers

Sebastien Goasguen

Co-Founder, TriggerMesh

Sebastien is a co-founder of TriggerMesh, an integration platform company enabling developers to manage cloud-native applications. He has been involved with open source for almost 20 years. Sebastien is an early contributor to the Kubernetes ecosystem. Around 2014, he became fascinated... Read More →

Kubecon Boston Serverless or Servicefull.pptx pdf

Text Transcript MDUW 4043 txt

Wednesday November 18, 2020 3:00pm - 3:35pm EST
Intrado Virtual Event Platform

Serverless

Content Experience Level Any (Anyone can attend, no experience required)

3:00pm EST

Meet the Maintainer: Crossplane

Join the Crossplane Office Hours Here: https://zoom.us/webinar/register/WN_RRn7W7jGTryOIcsaWuLLWg

Wednesday November 18, 2020 3:00pm - 3:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

3:00pm EST

Meet the Maintainer: Helm

Join the Helm Office Hours Here: https://zoom.us/webinar/register/WN_cOZ_MvWdR-eissOq0Yirbw

Wednesday November 18, 2020 3:00pm - 3:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

3:00pm EST

CNCF TechDocs Open Hours (Additional Registration Required)

Description: Need help with your project docs? CNCF tech writers can advise you with help for tooling questions, docs triage and workflow, how to attract docs contributors, and maybe review a PR or two.
We also hold monthly office hours. For more information, visit our GitHub repository: https://github.com/cncf/techdocs. (You should still open project-specific docs issues in the relevant project repo.)

How to Register: Pre-registration is required. Register here for CNCF TechDocs Open Hours.

Speakers

Celeste Horgan

Senior Technical Writer, CNCF, CNCF

Celeste is a Senior Technical Writer at CNCF. She provides technical writing and design support for cloud native projects across the organization. In her spare time, she’d prefer to be staring out of coffee shop windows, latte in hand, pondering the mysteries of the universe. She... Read More →

Zach Corleissen

Lead Technical Writer, CNCF

Zach is a Lead Technical Writer at CNCF and acts as a SIG lead for Kubernetes documentation. Prior to joining the Linux Foundation, Zach documented GitHub’s REST and GraphQL APIs and co-led the transformation of Rackspace’s developer portal. Zach holds degrees from the University... Read More →

Nate Waddington

Developer Advocate (Docs), CNCF

Nate is a Developer Advocate focusing on Documentation with the CNCF. Prior to joining, Nate worked as a Creative Technologist at AKQA, helping to build, install, and support interactive installations for retail spaces, conferences and other events. He has also tried his hand as a... Read More →

Patrice Chalin

Senior Technical Writer, CNCF

Patrice is a Senior Technical Writer, currently focusing on gRPC documentation and website design. He was previously a technical writer and lead web developer for Google's OSS flutter.dev and dart.dev projects... Read More →

Wednesday November 18, 2020 3:00pm - 5:00pm EST
External Platform

Interactive Sessions

3:50pm EST

The Open Source Revolution: How Kubernetes is Changing the Games Industry - Dominic Green, Netspeak Games

Traditional multiplayer game development involves dozens if not hundreds of engineers over several years building custom made backends - often from scratch. Companies have recently moved to GCP or AWS but most games infrastructure runs on metal - often using multiple providers. Cost, latency & security are all cited as the primary deciding factors when architecting a modern online game; but a new vector is emerging - speed. Specifically, speed of development; how fast can you FIND the game to make is the new race that modern games companies are finding themselves in & the open-source ecosystem is going to be their new best friend. Dominic Green will run through how Netspeak Games has taken advantage of cloud-native technologies and built out their games infrastructure on top of Kubernetes, Agones & Open Source Software - building an MMO that supports 100,000s of concurrent players.

Speakers

Dominic Green

Lead Engineer, Netspeak Games

Dom was the first cadet to outsmart the Kobiashi Maru, completed the Kessel Run in less than twelve parsecs, and beat Parzival to the First Gate. While not melting reality with fiction Dom works as an Engineer at Netspeak Games a London based game studio that is looking to push the... Read More →

Text Transcript EXZW 2181 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Contain Your Enthusiasm for Go Dev: Fast, Simple Go+Docker Development - Ed Warnicke, Cisco

Go modules are awesome! Docker based development is awesome! Bring them together and there are... problems: Go does a brilliant job of caching both source module dependencies and binary artifacts. When building Go in docker containers, while there are hacks to get source dependencies into the Docker cache, all the binary artifacts still have to be rebuilt, greatly increasing build times. And what happens when you need to work on some of the dependencies of the repo you are docker building? There's no good answer. What about debugging and testing? Go has fantastic debugging and testing tools, but there's no clear simple pattern for using them when doing Docker based development. This talk provides clear, simple, battle tested patterns for solving these problems in ways that are both Go-like and Docker-like. Examples will be drawn from Network Service Mesh and its usage of Spire.

Speakers

Ed Warnicke

Distinguished Engineer, Cisco Systems

Ed Warnicke is a Distinguished Engineer at Cisco Systems. He has been working for two decades in many areas of networking and Open Source. Ed is currently a co-founder of and active contributor to the OmniBOR and Network Service Mesh projects. Ed has a masters in Physics (String Theory... Read More →

Text Transcript RDGM 8878 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

DevOps Performance From a Different Dataset: What 30M Workflows Reveal - Michael Stahnke, CircleCI

What can we learn about DevOps best practices by looking at data from a SaaS with 900K dev users, 25K orgs and 30m+ builds a month, particularly when compared with surveys where users opt-in? Join CircleCI's VP of Platform, Mike Stahnke, to understand what this unique dataset uncovers about high performing engineering teams: - What trends stand out from the data? - Are they different than what is seen through surveys where responders opt-in to participating as compared to being aggregated through platform usage?

Speakers

Michael Stahnke

Vice President, Platform, CircleCI

Michael Stahnke is VP Platform at CircleCI running SRE, Security, and tooling. Prior to this, he worked at Puppet running Puppet Enterprise Engineering, Platform Engineering as well as SRE. He is an established author where he has co-authored State of DevOps Reports and State of Software... Read More →

Nov18 DevOps Performance from a Different Dataset Michael Stahnke pdf

Text Transcript ROVU 7263 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

CI/CD

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Giving and Getting Technical Help in Open Source Without Being Scared! - Sonia Singla, CNCF

As a developer, it’s exciting and challenging to stay up to speed with the latest trends in technology.Every day, new languages, frameworks and devices capture our attention and spur conversations in meetups, forums and chats.However, our developer community is made of people, not tools, and it’s fascinating to explore its sociopolitical aspects. We are always beginners at some things and experts at others.Along the way from beginner to expert we ask a lot of questions, but it can be intimidating to ask for help.This talk will be split into two halves: giving and then getting technical help.This talk gives concrete tools to help you ask with confidence, and highlights common expert mistakes that inadvertently make people feel foolish.It's important to learn how to manage your contributors in open-source.Once you learn it, your project will succeed and more contributors will flock to you!

Speakers

Sonia Singla

Intern/Mentee, CNCF

Sonia is an Information Technology student at Panjab University, Chandigarh, India. One of the shadow on Kubernetes 1.20 release notes team. She worked as an intern in the Thanos project as part of Community Bridge. Past Outreachy Intern with Mozilla. Apart from having lots of interest... Read More →

Giving and Getting Technical Help without being scared KubeCon NA 2020 pdf

Text Transcript YGJU 1412 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Community

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Machine Learning on Kubernetes at Shell: A Kubeflow Journey - Alex Iankoulski, Shell New Energies & Vangelis Koukis, Arrikto

In this session, Shell describes the lessons learned from working with multiple Machine Learning platforms and tools, the challenges of different systems, why we chose Kubeflow, and how we are now delivering successful models faster and at scale. Follow our journey as we learned how to deploy highly available, scalable, and secure Kubeflow clusters in the public cloud. We will describe the lessons learned and steps taken to improve our deployments including enterprise authentication and authorization, network integration, and data science workflows. We also discuss why we moved away from other platforms and chose Kubeflow, and how it has increased our Data Scientists’ productivity and reduced DevOps overhead. Today our teams are more self-sufficient, and iterate faster to produce production-ready models in a timely fashion. A zero to hero story made possible by Kubeflow and Kubernetes

Speakers

Vangelis Koukis

CTO, Arrikto

Vangelis Koukis is the CTO and Co-Founder of Arrikto. He holds a PhD in computer science and has a long history of working in storage, data management, and cloud computing. At Arrikto, he is leading a team of talented engineers working hard to bridge the world of low-latency, high-performance... Read More →

Alex Iankoulski

Principal Solutions Architect, AWS

Alex Iankoulski is a Principal Solutions Architect, Self-managed Machine Learning at AWS. He’s a full-stack software and infrastructure engineer who likes to do deep, hands-on work. In his role, he focuses on helping customers with containerization and orchestration of ML and AI... Read More →

KubeConVirtual Nov18 2020 MachineLearningOnKubernetesAtShell AlexIankoulski VangelisKoukis 2 pdf

Text Transcript TPAU 4908 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Harbor- Enterprise Cloud Native Artifact Registry - Steven Zou, Daniel Jiang, Alex Xu, & Steven Ren, VMware

Project Harbor is an open-source trusted cloud native registry project that stores, manages, signs, and scans content, thus resolving the management and distribution challenges of container image, Helm Chart, CNAB or other OCI compatible artifacts. In this presentation, the speakers will review and provide solutions to the challenges faced by organizations, including RBAC, content replication, vulnerability scanning, large scale content distribution, content trust (notary), webhook, tag retention, non-blocking GC, proxy cache and user defined artifact support etc.. Furthermore, the speakers are also going to share the future roadmap and challenges of Harbor including but not limited to K8s operator for Harbor, improvements of windows containers support, observability, networking(IPV6), backup & restore, and IAM&RBAC enhancements etc.. More importantly, the speakers would love to get feedback from Harbor users, contributors and partners to the current features and future roadmap.

Speakers

Steven Zou

Harbor Maintainer, VMware

Jia Zou (Steven) is a staff engineer of VMware China R&D. He is now working on the open-source Project Harbor that is an enterprise-class cloud-native artifact registry as a core maintainer and architect. He previously has worked in HPE, IBM, and Agilent as software engineer for many... Read More →

Daniel Jiang

Harbor Maintainer, VMware

I'm a software engineer from VMware, who joined the company around the end of 2015. Currently working on a open source registry project called Harbor. I'm one of the founding member of this project.I have been giving speech in different meet-ups talking about docker image management... Read More →

Steven Ren

Senior Manager, VMware

Alex Xu

Product Manager, VMware

Text Transcript KZAW 8692 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Harbor - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

How to Multiply the Power of Argo Projects By Using Them Together - Hong Wang & Alexander Matyushentsev, Intuit

The Argo Project contains three big software components: a GitOps continuous application delivery platform, a cloud-native workflow engine and an advanced deployment controller. All projects are evolving rapidly and have received a lot of new features in recent months. In this session, we are going to provide an update about project progression and demonstrate how to get even more out of Argo by using the projects together. You will see how Argo CD can declaratively define and manage powerful batch processing pipe powered by Argo Workflows and Argo Events. At the end of the session, we are going to talk about where we think GitOps future is heading and demonstrate how GitOps engine is leveraged outside of Argo CD.

Speakers

Hong Wang

Principal Software Engineer, Intuit

Hong Wang is a Principal Engineer in the Intuit Modern SaaS team. He has worked on many distributed system projects ranging from storage to cloud infrastructure at Springpath, Cisco, Yahoo, etc. Hong was a founding engineer of Applatix, a startup focussed on accelerating enterprise... Read More →

Alexander Matyushentsev

Principal Software Engineer, Intuit

Alexander Matyushentsev is a Principal Engineer in the Intuit Modern SaaS team. Alexander is focused on building tools which makes it easier to use Kubernetes. He is one of the core contributors to "Argo Workflows" and "Argo CD" projects. Alexander is passionate about open source... Read More →

Nov18 How to Multiply the Power of Argo Projects By Using Them Together Hong Wang Alexander Matyushentsev pdf

Text Transcript THKS 8084 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Argo - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Open Policy Agent Intro - Patrick East, Styra & Max Smythe, Google

Come to this session to learn about the Open Policy Agent (OPA) project. OPA is a general-purpose policy engine that solves a number of policy-related use cases for Kubernetes, microservices, CI/CD, cloud, and more. During this session the OPA maintainers will introduce the project for newcomers and then provide updates on the latest and greatest features landing in OPA and OPA Gatekeeper. If you are interested in policy and security as it relates to cloud native technology, this session is for you.

Speakers

Max Smythe

Staff Software Engineer, Google

Max Smythe is a Staff Software Engineer at Google working to make Kubernetes easier to manage at scale. He helped contribute to the CEL admission control KEP, participating in its design and contributing code used to scope enforcement of policies. He is also a maintainer of the OPA... Read More →

Patrick East

Senior Software Engineer, Styra

Patrick East is a senior software engineer at Styra focused on Open Policy Agent working closely with the founders of the project and the open source community at large. Patrick has nearly a decade working with open source projects as a consumer, contributor, and occasional evangelist... Read More →

OPA+Gatekeeper Intro & Update KubeCon NA 2020 pdf

Text Transcript UYJT 2858 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Open Policy Agent - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Service Discovery with CoreDNS Plugins in Golang - Yong Tang, Mobileiron & John Belamaric, Google

Best known as the default cluster DNS server for Kubernetes, CoreDNS is a flexible and extensible DNS server with a focus on service discovery. The extensibility of CoreDNS comes from its plugin-based architecture: new features can be added as plugins easily with Golang. In this session, we will update the current state and the road map of CoreDNS, as well as the progress of CoreDNS’s participation in GSoC and CommunityBridge program. We will also take a detailed look at the plugin system of CoreDNS, and a demo plugin that achieves source IP based service discovery. The complete golang code of the demo plugin will be walked through to showcase the simplicity and ease of convenience for adding new functionalities in CoreDNS.

Speakers

Yong Tang

Senior Director, Engineering, Ivanti

Yong Tang is Senior Director of Engineering at Ivanti. He is a core maintainer of CoreDNS and contributes to many container, cloud-native, and machine learning projects for the open source community. In addition to CoreDNS, he is a maintainer of Docker/Moby. He is also a maintainer... Read More →

John Belamaric

Senior Staff Software Engineer, Google

John Belamaric is a Senior Staff Software Engineer at Google with over 25 years of software design and development experience. As a co-chair of Kubernetes SIG Architecture, he provides leadership on production readiness, conformance, and overall software architecture for the Kubernetes... Read More →

KubeCon NA Virtual CoreDNS pdf

Text Transcript RPAG 5227 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, CoreDNS - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

SIG Multicluster Intro - Paul Morie, Red Hat & Jeremy Olmsted-Thompson, Google

SIG-Multicluster is focused on solving common challenges related to the management of many Kubernetes clusters, across multiple cloud providers (so-called hybrid cloud) and applications deployed across many clusters. In the introduction, we'll give attendees an overview of the current status of the multicluster problem space in Kubernetes and of the SIG. We’ll discuss current thinking around best practices for multicluster deployments and what it means to be part of a ClusterSet. Then we’ll highlight current SIG projects, focused use cases, and ideas for what’s next. Most importantly, we’ll provide information on how you can get involved either as a contributor or as a user who wants to provide feedback about the SIG's current efforts and future direction. This session will mostly be an open dialog; attendees will have the opportunity to ask questions in person as well as leave survey responses that the SIG will use to plan next steps.

Speakers

Paul Morie

Sr. Principal Software Engineer, Red Hat

Paul is a Principal Engineer at Red Hat and a Kubernetes maintainer. He's been working on Kubernetes since 2014, concentrating at different points on application development primitives, service catalog, container security, and multicluster problems. Before Kubernetes, he worked on... Read More →

Jeremy Olmsted-Thompson

Senior Staff Software Engineer, Google

Jeremy is a software engineer who works on Google Kubernetes Engine. His main focus is on simplifying the Kubernetes experience, and making it as easy as possible to deploy applications both within a cluster with things like GKE Autopilot, and across clusters with multi-cluster solutions... Read More →

Text Transcript OCGB 0034 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Strategies for Multi-Cluster Routing - Leigh Capili, Weaveworks

Everyday, we're dealing with more and more clusters. With that comes fun networking problems! Are you bridging the gap between Kubernetes in the cloud and your own on-premise data-centers? Perhaps you need to access a service managed by another team in an entirely different cloud! Kubernetes has great in-cluster routing, service-discovery, and policy enforcement. This lets us deploy workloads very fast, but how do we keep up with these changes across clusters? If you're struggling to integrate kubernetes into your network and preserve the benefits, this talk is for you. We'll cover: - Public & Private Load-Balancers - ACME, mTLS, & Wildcard Ingress - Route Sharing via BGP / OSPF - Using other cluster's DNS servers - Multi-Cluster Canaries - Bootstrap & Repeatable Config You'll leave knowing more on these strategies' trade-offs and how to apply them to your own cluster networks.

Speakers

Leigh Capili

Staff Developer Advocate, VMware

Leigh is an empathetic speaker and developer with niches in cloud-native systems and security. He has a background in building software to manage infrastructure. Leigh contributes to Kubernetes and Flux and is frequently working on his next software demo. He also co-maintains Ignite... Read More →

Strategies for Multi Cluster Routing pdf

Text Transcript EDTX 7695 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Networking

Content Experience Level Intermediate (Mid-level experience)

3:50pm EST

Panel: Tales from the Edge: Is the Edge More Important Than the Service Mesh? - Matt Klein, Lyft; Alyssa Wilk, Google; Lin Sun, IBM; & Bjorn Freeman-Benson, Ambassador Labs

The service mesh hype cycle is well and truly in effect, and almost everyone believes their organization needs a service mesh, even if some don’t fully understand the use case this technology covers. But what about the edge? Practically every Internet-based application needs to get traffic from users into backend services. Join this panel to learn about the importance of both use cases from a range of experts in the traffic management domain. Topics to be discussed include: - Opinions on the relevant importance of both the north-south (ingress) and east-west (service) traffic management use cases - Real-world adoption stories of cloud native proxies, such as Envoy - Experiences on migration to cloud native edge gateways - Tell-tale signs that an organization should consider adopting a service mesh (or not) - Technology choices in the edge gateway and service mesh space

Speakers

Lin Sun

Senior Technical Staff Member, IBM

Lin has been working on container and cloud-native since 2014 from Docker to Kubernetes to Service Mesh. She is currently an Istio maintainer, a member of the Istio steering committee and technical oversight committee. She is passionate about new technologies and loves to play with... Read More →

Matt Klein

Software Engineer, Lyft

Matt Klein is a software engineer at Lyft and the creator of Envoy. He has been working on operating systems, virtualization, distributed systems, networking, and making systems easy to operate for nearly 20 years across a variety of companies. Some highlights include leading the... Read More →

Bjorn Freeman-Benson

SVP of Engineering, Ambassador Labs

Bjorn Freeman-Benson is excited to be SVP of Engineering at Ambassador Labs (formerly Datawire) after having successfully built high-growth engineering organizations as SVP at New Relic and CTO/SVP at InVision, nurtured open source at the Eclipse Foundation, and even worked at Amazon... Read More →

Alyssa Wilk

Senior Staff Software Engineer, Google

Alyssa is an Envoy Senior Maintainer and a software engineer at Google. She spent over a decade at Google writing and enhancing the GFE, Google's front-line HTTP proxy, before setting her sights on making Envoy even more awesome than the GFE is.

Text Transcript HCQH 5632 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Operations

Content Experience Level Beginner (Very basic information)

3:50pm EST

Prescriptively Benchmarking Kubernetes System and Application Using K-Bench - Yong Li, Facebook & Karthik Ganesan, VMware

This session gives an introduction of K-Bench, a framework designed to benchmark Kubernetes infrastructure from various dimensions in a highly configurable manner. K-Bench accepts a rich set of configuration options and yaml specifications, and parses them into a workload execution plan to provision, manipulate, and coordinate Kubernetes resources. It produces SIG complaint latency and API responsiveness metrics with improved accuracy by adopting a novel timing model. K-Bench also provides a container interface to easily port legacy infrastructure benchmarks into k8s, includes several pre-integrated benchmarks and blueprints to evaluate infrastructure performance at scale like aggregate benchmark throughput across pods, transaction latencies, infrastructure elasticity and resource efficiency in k8s.

Speakers

Yong Li

Software Engineer, VMware

Karthik Ganesan

Staff Engineer II, VMware

Karthik Ganesan is a Staff-2 Performance Engineer at VMware R&D. He leads the data-plane performance efforts for Kubernetes on vSphere at VMware and has a keen interest in the performance aspects of Kubernetes. Previously, he was a principal engineer at Oracle and has broad experience... Read More →

KubeCon K Bench Presentation pdf

Text Transcript AHHN 1013 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Performance

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Security Kill Chain Stages in a 100k+ Daily Container Environment with Falco - Natch Ruengsakulrach & Eric Hollis, MathWorks

Security is a vital aspect of a Cloud Native infrastructure. In this talk, Eric and Natch will show how they set up monitoring to identify anomalous system calls and abnormal Kubernetes API events in MathWorks cloud infrastructure hosting 100K+ daily MATLAB containers with Falco, a CNCF Container Runtime Security project. They have mapped their detections to Security Kill Chain to detect threats in the attack lifecycle. The first part of the talk focuses on Falco, including eBPF integration and Falco rules. The second part covers a walkthrough of the event pipeline and how Falco is used to identify activity related to recon, weaponization, delivery, exploitation, installation, command & control, and actions on objectives. Attendees will leave knowing how to integrate Falco, write and test Falco rules to improve their systems’ security observability and detection.

Speakers

Natch Ruengsakulrach

Software Engineer, MathWorks

Natch Ruengakulrach has been developing cloud-native applications and architecting MathWorks cloud infrastructure for four years. In his spare time, he enjoys outdoor running, summer hiking, and watching soccer games.

Eric Hollis

Sr. Security Analyst, MathWorks

Eric Hollis is a Sr. IT Security Analyst for MathWorks, with a focus on cloud security. He has been working in security for five years and has a passion for process improvement, automation, and threat hunting. In his spare time, he enjoys attending security conferences, running ultramarathons... Read More →

KubeCon NA Virtual 2020 Cyber Kill Chain Falco pdf

Text Transcript TUUQ 3196 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Security + Identity + Policy

Content Experience Level Any (Anyone can attend, no experience required)

3:50pm EST

Hands-On Stateful Serverless Applications with K8s and Stateful Functions - Seth Wiesman, Ververica

Stateful Functions (https://statefun.io/) is a framework that makes it simple to build consistent stateful serverless applications. StateFun is designed to work with popular event-driven FaaS platforms like AWS Lambda, KNative, etc., and provides out-of-the-box consistent state and reliable messaging to FaaS platforms, in a way that preserves the serverless experience and elasticity of these platforms. Stateful Functions is not a library that proxies state access to a database, but an independent event-driven stack replacing the traditional database. The talk will take the audience step-by-step through building and deploying a Stateful Functions application that tracks user events and runs a stateful ML classifier.

Speakers

Seth Wiesman

Senior Solutions Architect, Ververica

Seth Wiesman is a Committer on Apache Flink and Solutions Architect at Ververica, where he works with engineering teams inside of various organizations to build the best possible stream processing architecture for their use cases.

KubeCon Hands On Stateful Serverless pdf

Text Transcript YFTM 8279 txt

Wednesday November 18, 2020 3:50pm - 4:25pm EST
Intrado Virtual Event Platform

Serverless

Content Experience Level Any (Anyone can attend, no experience required)

4:00pm EST

Meet the Maintainer: containerd

Join the containerd Office Hours Here: https://zoom.us/webinar/register/WN_MLB5CsnqRby3Vdbw1NEuSg
*This session is a full two hours 4:00 - 6:00 pm EST*

Wednesday November 18, 2020 4:00pm - 4:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

4:00pm EST

Meet the Maintainer: Envoy

Join the Envoy Office Hours Here: https://zoom.us/webinar/register/WN_KevyB6cBSuai61AItTdbLQ

Wednesday November 18, 2020 4:00pm - 4:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

4:25pm EST

Break

Wednesday November 18, 2020 4:25pm - 4:55pm EST
Anywhere

Breaks

4:55pm EST

Five Hundred Twenty-five Thousand Six Hundred K8s CLI’s - Phillip Wittrock & Gabbi Fisher, Apple

With the success of the Kubernetes ecosystem, users now have a many choices when it comes to Kubernetes tools. While it's great for users to have options, lots of choices can make it difficult for Kubernetes users to make decisions or know where to start. Additionally, organizations may use several different tools internally that users must familiarize themselves with. A high-level understanding of the this ecosystem is necessary to easily navigate the world of Kubernetes. Gabbi and Phillip will provide an overview of well-known and up-and-coming Kubernetes CLIs. They will then explore the broader architectures used by these tools, and finally how users should think about their own tools they are building. CLI’s covered include kubectl, helm, kustomize, k/jsonnet, kpt, cue and k14s . CLI patterns covered include templating, DSLs, OpenAPI / schema and configuration functions.

Speakers

Phillip Wittrock

SWE, Apple

Phillip Wittrock is Software Engineer at Apple and has been a member of the Kubernetes community since 2015. Phillip is an emeritus member of the Kubernetes steering committee, and has founded or maintained the following Kubernetes SIGs and subprojects: SIG-CLI, SIG-Release, SIG-Docs... Read More →

Gabbi Fisher

Software Engineer, Apple

Gabbi Fisher is a software engineer at Apple, where her work revolves around Kubernetes cluster management. She loves the Go programming language and test-driven-development, and also likes to dabble in Rust and Webassembly from time to time. Gabbi offsets spending so much time in... Read More →

Kubecon CLI Talk Slides pdf

Text Transcript VRVF 9154 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Intermediate (Mid-level experience)

4:55pm EST

Managing Developer Workflows with the Kubernetes API - Colin Murphy, Adobe

Write your own Kubernetes client to keep application teams from breaking their products. Kubernetes is incredibly powerful. It's extensibility allows for limitless varieties of architecture. But how do you get hundreds of engineers to follow the same conventions when creating their applications? For us at Adobe Document Cloud, the answer was to write our own Kubernetes client. It's easy to get started and well worth the investment for larger organizations. Writing your own client allows you to have much greater control over the deployment process, including secrets and change management. It also allows you to integrate with your existing deployment systems and reduces the cognitive load on your engineering teams.

Speakers

Colin Murphy

Sr Software Engineer, Adobe

Colin Murphy is a senior software engineer at Adobe. He is working on upcoming products for Creative Cloud Web. Prior to his current role, he was responsible for infrastructure of Adobe Document Cloud microservices, including Adobe Sign and Acrobat Web. He has been responsible for... Read More →

Nov18 Managing Developer Workflows with the Kubernetes API Colin Murphy pptx

Text Transcript VLEU 7978 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Beginner (Very basic information)

4:55pm EST

Admission Control, We Have a Problem - Ryan Jarvinen, Red Hat

Bring a laptop to follow along with this interactive session as we learn how Admission Controllers play a critical role in securing Kubernetes APIs. Attendees will gain hands-on experience using the core Kubernetes APIs, will develop a clear understanding of the architecture and design of the control plane, and will learn how to extend Kubernetes using api aggregation and CustomResourceDefinitions. By the end of this session, attendees will be able to implement basic input validation and testing of webhooks for the Admission Controller.

Speakers

Ryan Jarvinen

Developer Advocate, Red Hat

Ryan Jarvinen is a Developer Advocate (Red Hat, previously CoreOS) focusing on developer experience and usability in the Cloud Native landscape. Terminally online as "RyanJ" via most platforms: [Twitter, GitHub, IRC].

Nov18 Admission Control We Have a Problem Ryan Jarvinen pdf

Text Transcript QYSB 7834 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Customizing + Extending Kubernetes

Content Experience Level Beginner (Very basic information)

4:55pm EST

How to Build a Cloud Native Image Recognition Solution - Rolando Carrasco, SPS & Akshai Parthasarathy, Oracle

Fn Project is an open source project for serverless functions. We want to share how we used Fn, AutoML Natural Language Processing, and K8s to improve older Optical Character Recognition (OCR) technology. The resulting image recognition application has been extensively tested at a bank in Mexico. Unlike older OCR tech, the new application does not use pre-defined markers such as “name,” “phone number,” or “address” to extract information. Instead, it works by recognizing these fields using machine learning – even if the ML model has not been trained with a document/picture of that type. The audience will learn how to create and scale serverless functions and Kubernetes. In addition, we will demonstrate how to leverage AutoML to read documents/pictures from any source, classify and extract fields of interest using a pre-trained ML model, store information to a NoSQL database.

Speakers

Rolando Carrasco

CTO, SPS

Rolando Carrasco is a Oracle Groundbreaker, Oracle ACE, MuleSoft Mentor specialized in API Management, Services Orientation, Distributed Systems, Integration, Event Driven Architectures. He has over 20 years of experience in the IT industry and has worked for companies like Hewlett... Read More →

Akshai Parthasarathy

Principal Director, Cloud Native & DevOps, Oracle Cloud

Akshai is part of the Oracle Cloud team focusing on Cloud Native and DevOps. He has over 12 years of experience in the tech industry and is a graduate of UC Berkeley and Georgia Tech. When not working, he enjoys keeping up with the latest in technology and meeting other members of... Read More →

Text Transcript ZRRB 7342 txt

Nov18 How to Build a Cloud Native Image Recognition Solution Rolando Carrasco Akshai Parthasarathy pdf

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Beginner (Very basic information)

4:55pm EST

Envoy Q&A - Matt Klein, Lyft & Harvey Tuch, Google

Come meet the Envoy maintainers for a small intro to Envoy as well as an open Q&A!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

Speakers

Matt Klein

Software Engineer, Lyft

Harvey Tuch

Software Engineer, Google

Harvey Tuch is a Staff Software Engineer at Google where he leads the Envoy Platform team. He is an Envoy senior maintainer and is a driver of the Universal Dataplane API (UDPA) initiative. His Envoy interests include xDS APIs, security, fuzzing and performance.

Text Transcript GQCT 9658 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Envoy - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

4:55pm EST

Helm: Past, Present, Future - Matt Butcher & Bridget Kromhout, Microsoft, & Matt Farina, Rancher Labs

What will Helm 4 look like? To get there, we need to go back to the beginning. In this talk, we cover the history of the Helm project from its early hackathon days through the tumultuous refactorings as Helm worked its way to becoming a graduated CNCF project. There were good times. There were rough times. And throughout, we had to continually ask ourselves what exactly we were trying to build. In the aftermath of Helm 3, we have reached new levels of clarity about where we want to go, and how we want to build a tool that continues to serve the needs of the Kubernetes community.

Speakers

Bridget Kromhout

Principal Product Manager, Microsoft

Technologist, podcaster, conference speaker, devopsdays organizer. Herds cats and wrangles docs; still team #opslife.

Matt Farina

Distinguished Engineer, SUSE

Matt works as a Distinguished Engineer at SUSE, where he works on Rancher, focusing on cloud native technologies. He is also a member of the CNCF Technical Oversight Committee. Matt is an author, speaker, and regular contributor to open source.

Matt Butcher

Principal Software Development Engineer, Microsoft Azure

Matt does cloud native open source development at Microsoft, where he has worked on Brigade, Helm, Krustlet and others. Matt is the author of a bunch of books and articles, most recently O'Reilly's book "Learn Helm" (with Matt Farina and Josh Dolitsky). When not coding, Matt enjoys... Read More →

Text Transcript FFOJ 8166 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Helm - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

4:55pm EST

Intro to CNCF’s Telecom Initiatives - Taylor Carpenter, Vulk Coop & in Remembrance with Dan Kohn, The Linux Foundation

Dedicated to the memory of Dan Kohn.

CNCF is helping Telcos navigate the cloud native and open source landscape to obtain the benefits touted by cloud native technologies. Guided by cloud native principles, CNCF hosts three main initiatives for Telco operators and service providers: Telecom User Group, CNF Testbed and CNF Conformance. The Telecom User Group (TUG) is a user group for telecom operators, vendors, and developers to share ideas and ask questions about using cloud native technologies. The CNF Testbed is a set of tools and reference implementations used for reviewing cloud native technology innovation in the Telecom domain. The CNF Conformance is a test suite to self-validate that Cloud native Network Functions (CNFs) and the underlying Telecom platforms adhere to cloud native principles and best practices. This session will introduce these Telecom Initiatives, explain how downstream projects and communities can collaborate, and discuss how service providers and their vendors can get involved.

Speakers

Dan Kohn

General Manager, Linux Foundation Public Health, Linux Foundation

Dan leads Linux Foundation Public Health, a new initiative to use open source software to help public health authorities combat COVID-19 and serves as VP, Strategic Programs for the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes... Read More →

Taylor Carpenter

CNF WG Co-Chair, Partner Vulk Coop, Vulk Coop

Partner at Vulk Cooperative & CNCF CNF Working Group Co-Chair. Taylor is helping the Telecom industry to best utilize cloud native technologies like Kubernetes and to build a Cloud native Telecom Community. 4 years as a liaison between the cloud native and telecom communities. Open... Read More →

[KubeCon NA 2020] Intro CNCF’s Telecom Initiatives pdf

Text Transcript OCQB 2531 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

4:55pm EST

Introduction to Autoscaling - Guy Templeton, Skyscanner & Joe Burnett, Google

Come and see how to reduce the cost of your cluster and make your workloads more robust by dynamically adjusting them to their current load. During this talk members of SIG-Autoscaling will explain why you should be autoscaling both applications and clusters, and the tools Kubernetes provides to do this. You will learn the mechanics of Cluster, Horizontal Pod and Vertical Pod Autoscalers, their new and upcoming features as well as the best practices for applying them in production and things to watch out for. After this talk you will know where to look for information about the different autoscalers as well as which settings can be changed to adapt to different workloads.

Speakers

Guy Templeton

Principal Software Engineer, Skyscanner

Guy is a principal software engineer at Skyscanner, working in the production platform tribe where he’s focused on providing the best possible platform for Skyscanner’s travellers and engineers. Within Skyscanner he’s the SME on scaling Kubernetes and containerised workloads... Read More →

Joseph Burnett

Senior Software Engineer, Google

Joseph Burnett is a Senior Software Engineer working on autoscaling at Google Cloud.

KubeCon NA Virtual 2020 sig autoscaling pdf

Text Transcript ARDS 4156 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

4:55pm EST

Notary v2: Redesigning the Secure Supply Chain for Containers - Justin Cormack, Docker, Steve Lasker, Microsoft, & Omar Paul, Amazon

The Notary v2 project was launched at Kubecon North America in 2019, as a joint community effort to resolve issues with the first generation Notary, which was launched five years ago. Since then we have learned a lot about how containers are used in practise and the security requirements, and Notary v2 builds on that experience from the whole community. The protocols are OCI registry native and designed to improve the supply chain security of the whole container ecosystem. This talk gives an overview of the progress, and the problems being solved, and then a deep dive into the state of the specification and implementations. We also cover current open issues and the road to production.

Speakers

Steve Lasker

Principal PM Architect, Microsoft

Steve is a PM Architect for Registries at Microsoft, and an OCI & ORAS Artifacts maintainer. He's working on Notary v2 and Microsofts secure supply chain offerings. Prior to joining Microsoft, Steve worked in software consulting and broadcast engineering, where he learned the balance... Read More →

Justin Cormack

CTO, Docker

Justin is the CTO at Docker, and a member of the CNCF TOC. He has spent a lot of time working on security in the container ecosystem. He is a maintainer on the Notary project for container security.

Omar Paul

Product Manager, Amazon

Kubecon Notary 2020 pdf

Text Transcript BAHO 7150 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Notary - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

4:55pm EST

Case Study: Integrating Azure IPv6 PrivateLink with Kubernetes - Meixing Le & Michael Wiederhold, Databricks

Databricks offers a multi-cloud SaaS platform to enable data teams to solve the world’s toughest problems, using best in class technology and providing an open ecosystem. We run an infrastructure footprint consisting of 2M+ VMs across 40+ Cloud environments/regions, processing exabytes of data per day and generating billions of events. This talk shares Databricks’ journey of supporting IPv6 traffic with our existing Kubernetes infrastructures. At Databricks, we run 2000+ Kubernetes clusters (self-managed) across multiple cloud providers and regions with IPv4. To support the populate PrivateLink feature on Azure with IPv6, we explored various architectural options to integrate IPv6 with our existing Kubernetes clusters. After back and forth discussions and experiments, we ended up with a solution which is lightweight and fits our deployment and monitoring systems naturally.

Speakers

Meixing Le

Sr. Software Engineer, Databricks

Meixing Le is a senior software engineer and tech lead on Cloud Infrastructure team at Databricks. Cloud infrastructure team's goal is to build a world class highly available, reliable, scalable, secure multi-cloud platform to enable Databricks to scale to millions of users and strategically... Read More →

Michael Wiederhold

Engineering Manager, Databricks

Michael Wiederhold is the engineering manager of app infrastructure team at Databricks. App infra team's mission is to empower Databricks engineers to release and maintain APIs that are reliable, secure, efficient, and uniform. Prior to working at Databricks he was at Couchbase for... Read More →

KubeCon PL pdf

Text Transcript ZOAE 0459 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Networking

Content Experience Level Intermediate (Mid-level experience)

4:55pm EST

Constructing Chaos Workflows with Argo and LitmusChaos - Umasankar Mukkara, MayaData & Sumit Nagal, Intuit

LitmusChaos is an open-source cloud-native Chaos Engineering framework for Kubernetes. It provides custom APIs (via CRDs) to orchestrate Chaos on your clusters while providing readily usable, off-the-shelf Chaos experiments via the ChaosHub. However, Litmus is also highly extensible and can orchestrate chaos experiments implemented using other tools in the ecosystem in its BYOC (Bring-Your-Own-Chaos) mode. In this talk, the Litmus maintainers, Sumit (Intuit) & Uma (MayaData), will discuss how Intuit, a CNCF end-user, uses Litmus to manage & orchestrate experiments implemented using ChaosToolkit in a completely cloud-native way. They will also discuss a powerful DevOps pattern from Intuit that combines Litmus with Argo for the creation of "chaos workflows" that uses the Litmus Operator to execute chaos while simulating other workload behavior (percentage load, for example) in parallel.

Speakers

Umasankar Mukkara

VP of DevOps and COO, MayaData

Uma Mukkara is the co-creator & maintainer of the CNCF Sandbox chaos engineering project - LitmusChaos & also contributes heavily towards the design, documentation & CI/CD efforts for OpenEBS, a leading containerized storage solution for Kubernetes. He also manages the operations... Read More →

Sumit Nagal

Principal Engineer, Intuit

Sumit Nagal is a Principal Engineer at Intuit & a maintainer of the CNCF sandbox project LitmusChaos. He leads Reliability Engineering & is currently working on "Intuit Kubernetes Platform" reliability via providing performance and chaos engineering practice. In his 15 years at Intuit... Read More →

KubeCon Slides Litmus+Argo pdf

Text Transcript CJAP 0313 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Operations

Content Experience Level Beginner (Very basic information)

4:55pm EST

Safely Deploying a 100K line Envoy YAML Configuration to Production - Lisa Lu & Jyoti Mahapatra, Lyft

Have you ever caused a production incident due to an Envoy misconfiguration? You’re not alone! This talk is about how Lyft has built guardrails to prevent such failures. The presenters will share their experience operating Envoy configurations at scale. They will explore the challenges around handling constantly changing cluster and routing configurations & the tools used to guarantee accuracy and consistency in those changes. These tools empower service owners less familiar with Envoy to make configuration changes independently and quickly without approval barriers. This talk will introduce the audience to various Envoy configuration testing strategies: •Validating behavior for thousands of routes to avoid blackholing traffic •Auditing & safely removing unused routes and clusters •Safely deprecating fields between Envoy versions •Validating Envoy’s static & realtime configurations

Speakers

Jyoti Mahapatra

Software Engineer, Lyft

Jyoti Mahapatra is a software engineer on the Networking team, working on the networking team at Lyft. Before Lyft, he worked at Microsoft in multiple projects, namely Azure HdInsight, Microsoft Teams and Azure Devops. Jyoti enjoys working on infrastructure projects and will be speaking... Read More →

Lisa Lu

Research Fellow, Stanford Law School

Lisa Lu was previously a software engineer on the Networking team at Lyft, where she worked on operating Envoy and its configurations for the service mesh and the edge. The router check tool was the first project she worked on for Lyft and open source Envoy, and she has been passionate... Read More →

100kyaml pdf

Text Transcript SLLN 4665 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Service Mesh

Content Experience Level Beginner (Very basic information)

4:55pm EST

Codename VIFL - How to Migrate MySQL Database Clusters to Vitess - Guido Iaquinti & Rafael Chacon, Slack

Have you ever considered migrating a database system at scale with no downtime? Many of us that have tried, often find it an insurmountable challenge for both developers and database engineers. Most of the time, companies start these kinds of migrations and leave them half done. This creates significant toil and costs in operations teams that have to pay the cost of running both legacy and new systems indefinitely. In this talk, Rafael and Guido will discuss how they designed and built a migration framework and then executed it to move petabytes of data from Slack's legacy database architecture to Vitess with zero downtime. The approach proposed in this framework is transparent to the application and didn't require coordination with the rest of the engineering team. It is also general enough that people considering migrating to Vitess can leverage it in their own environments.

Speakers

Guido Iaquinti

Slack

Guido is an engineer with academic background and experience in high volume/high availability Internet architectures. He is a technology enthusiast excited about open source software. His passion is to develop, scale and automate complex systems.

Rafael Chacon

Engineer, Slack

Rafael Chacon is a Staff Software Engineer on the infrastructure team at Slack, where he is working on the MySQL database layer on top of Vitess. Rafael has been part of the team that has migrated more than 30% of Slack database traffic from MySQL to Vitess. He is also now a core... Read More →

2020 Codename VIFL How to Migrate MySQL Database Clusters to Vitess pdf

Text Transcript KDWY 0092 txt

Wednesday November 18, 2020 4:55pm - 5:30pm EST
Intrado Virtual Event Platform

Storage

Content Experience Level Intermediate (Mid-level experience)

4:55pm EST

Tutorial: Manage Apps and Cloud Resources in Unified Approach with Kubernetes - Jianbo Sun, Alibaba & Jared Watts, Upbound

How easy is it to use cloud resources alongside with your Kubernetes applications? Actually, provisioning cloud resources and consuming them by the k8s apps is never an easy game. We usually need to struggle in creating cloud services one by one in different cloud product consoles and configuring them separately. Essentially, cloud and k8s are two different systems, interoperability is the missing part. In this tutorial, audience will walk through a unified and standard approach to manage apps and cloud resources. We will do an end-to-end workshop from modeling a distributed app which consumes various cloud resources in unified definition, to practices like dependency management, service binding, and cost management for the cloud. GitOps tool, Crossplane and OAM will be the main open source technology we use in the workshop.

Speakers

Jared Watts

Founding Engineer, Upbound

Jared Watts is a Founding Engineer at Upbound, where he is working on advancing cloud-native computing by enabling anyone to build their own cloud platform. He is also a co-creator of the open source Crossplane (https://crossplane.io) and Rook (https://rook.io) projects. Prior to... Read More →

Jianbo Sun

Staff Engineer, Alibaba

Jianbo Sun, Staff Engineer at Alibaba Cloud, and one of the creators of Open Application Model and KubeVela projects. He has almost 10 years experience working in the open source community and PaaS, he's mainly focus on how cloud native applications could be built and managed easily... Read More →

Tutorial Manage Apps and Cloud Resources in Unified Approach with Kubernetes pdf

Text Transcript NODB 3157 txt

Wednesday November 18, 2020 4:55pm - 6:20pm EST
Intrado Virtual Event Platform

Tutorials, Application & Development (includes Helm, Brigade, Telepresence, & Buildpacks)

Content Experience Level Any (Anyone can attend, no experience required)

5:00pm EST

Meet the Maintainer: containerd

Join the containerd Office Hours Here: https://zoom.us/webinar/register/WN_MLB5CsnqRby3Vdbw1NEuSg
*This session is a full two hours 4:00 - 6:00 pm EST*

Wednesday November 18, 2020 5:00pm - 5:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

5:00pm EST

Meet the Maintainer: CoreDNS

Join the CoreDNS Office Hours Here: https://zoom.us/webinar/register/WN_IYPjCSotRXO8TBroJXHgfg

Wednesday November 18, 2020 5:00pm - 5:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

5:45pm EST

Empowering Cloud Native Networking with Arm Ecosystem - Trevor Tao & HanYu Ding, Arm

Arm ecosystem is becoming much more popular in cloud native applications than ever before with its increasing wide use. Arm devotes to be a cloud native vendor and puts much resources to enable related projects on its platform. In the presentation, the following key takeaways would be given but not limit to, which would exhibits our work on cloud native projects, especially for networking: 1. The reference cloud native reference stack, use cases and its supporting technologies on arm; 2. The enabled K8s networking solutions and service mesh for arm64 platform: Cilium, OVN-k8s, Envoy etc; 3. Senior features when meeting multi-interface requirements with SRIOV/DPDK by Multus/SRIOV CNI; 4. Performance evaluation and bottleneck fixing with the typical tunnel solutions(IPIP) used by most CNIs on arm with respect to x86; 5. Our exact contributions to the related OSS projects and future work

Speakers

Trevor Tao

Staff Software Engineer, Arm

Trevor Tao(Zijin Tao) is a Ph.D in Computer Networking, who has worked in this area for more than 15 years. He has worked as a network engineer in research institute of university for more than 10 years. Then he worked in IBM for almost 5 years for SDN and Cloud Networking. Now he... Read More →

HanYu Ding

Senior Software Engineer, Arm

Hanyu Ding, Master's degree, is the project manager in China Mobile Research Institute. His undergraduate study was in Beijing University of Posts and Telecommunications and got master’s degree from King's College London. His major work directions are ETSI MEC standard study，MEC... Read More →

Empowering Cloud Native Networking with Arm Ecosystem pdf

Text Transcript QZCX 7333 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Beginner (Very basic information)

5:45pm EST

Project Tye: Building Developer Focused Tooling for Kubernetes and .NET - David Fowler & Justin Kotalik, Microsoft

As Kubernetes and Docker become more prevalent, we have made some hypotheses about the current state of microservices: • Container orchestrators were made for operations teams, not developers. • Kubernetes popularized patterns that are now prominent for microservices that are very hard to replicate locally (for e.g. sidecars). • Developers want to use the tools they are accustomed to when running locally. • Developers rarely need to run the full application during development. • Dockerfiles and Kubernetes manifests duplicate lots of information that exist in developer assets. Project Tye is an experiment by the .NET team to solve common challenges that developers have while developing and deploying microservices. Project Tye includes a local orchestrator to make developing microservices easier and the ability to deploy microservices to Kubernetes with minimal configuration.

Speakers

David Fowler

Partner Software Architect, Microsoft

Partner Software Architect on the .NET team focused on building scalable services. Has been working at Microsoft for 12 years working on web frameworks and developer tools

Justin Kotalik

Software Engineer, Microsoft

He/Him. Developer on the .NET team, working on servers (Kestrel, IIS), microservices (Tye) and developer tooling.

KubeCon NA Virtual 2020 speaker pres template pdf

Text Transcript FUSG 8827 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Beginner (Very basic information)

5:45pm EST

Being a Good Citizen of the Multi-operator World - Devdatta Kulkarni, CloudARK

DevOps teams are increasingly using multiple Kubernetes Operators in their clusters. What does it take to develop an Operator that is a good citizen of the multi-Operator world? The talk focuses on this question. To develop an Operator that plays nicely with other Operators in a cluster, Operator developers need to consider various aspects like, what should go in Custom Resource Spec definition, in the CRD YAML and in the Operator's Helm chart? To help Operator developers build Operators that are good citizen of the multi-Operator world, we have developed a framework named as, Operator Maturity Model (https://github.com/cloud-ark/kubeplus/blob/master/Operator-Maturity-Model.md). Community Operators like DataStax Cassandra, PressLabs MySQL, Elastic ELK, Cert Manager have benefited from this model. The talk will cover this framework for the broader benefit.

Speakers

Devdatta Kulkarni

Founder, CEO, CloudARK

Devdatta Kulkarni is Founder of CloudARK (https://cloudark.io/). Prior to founding CloudARK, Devdatta worked at Rackspace where he led the team that built PaaS for OpenStack. Devdatta has published papers in research journals and given presentations at industry conferences. Devdatta... Read More →

Nov18 Being a good citizen of the multi Operator World Devdatta Kulkarni pdf

Text Transcript XCUH 5376 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Customizing + Extending Kubernetes

Content Experience Level Beginner (Very basic information)

5:45pm EST

Owned by Statistics: Using Kubeflow to Defend vs Attacks on Your ML Models - David Aronchick, Microsoft

Machine learning continues its spread across the tech world and is now in use by more than 80% of enterprises world wide. However, with the increased reliance on this technology, the spectre of additional security attack surface areas rises up. Machine learning attacks are a new area of opportunity for adversaries, and require a new way to approach defense. In this talk, we will cover several of the most common ML attacks today and how to defend against them. We will also show how to use a sophisticated, cloud-native pipeline with Kubeflow will to enable organizations to detect, remediate and defend against future attacks.

Speakers

David Aronchick

Program Manager, Azure, Microsoft

David Aronchick leads open source machine learning strategy at Azure. He spends most of his time helping humans convince machines to be smarter. (He’s only moderately successful at this.) Previously, he led product management for Kubernetes on behalf of Google, launched Google Kubernetes... Read More →

Text Transcript HNGL 5347 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)

5:45pm EST

Dragonfly: Make Image Distribution Efficiently and Safely in Cloud Native - Yuxing Liu, Alibaba Cloud & Tao Peng, Ant Group

With the increasing scale of cloud native services in industry, how to distribute images efficiently is a new challenge for enterprises. Dragonfly is an intelligent P2P based container image distribution system which provides a native image distribution solution. In this session, we will cover the general Introduction to introduce you how dragonfly makes image delivery fast in data center. In addition, we have developed a new container image service that aims to provide more efficient way to deliver container images and address some outstanding issues of the current OCI image spec. We will dive into the new image service and show how it supplements to Dragonfly’s goal of making container image distribution fast and secure. Audiences will also learn the latest updates and what is next step in community.

Speakers

Yuxing Liu

Software Engineer, Alibaba Cloud

Tao Peng

Staff Engineer, Ant Group

Tao is a software developer at Ant Group working on kata containers and related technologies. He is a member of Kata Containers project architecture committee, and a maintainer of the Dragonfly image service Nydus project. His interests include all kinds of file systems and virtualization... Read More →

KubeCon NA Virtual 2020 Dragonfly pptx

Text Transcript SNEF 1860 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Dragonfly - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

5:45pm EST

Elastic Scheduling with TiKV - Song Gao & Yutong Liang, PingCAP

In the world of cloud computing, it is well-known that Elastic Scheduling can automatically balance the cost and load of stateless applications, but it is rare to see distributed database systems have the elastic scheduling feature as scaling is always not easy for the stateful system. Yutong Liang, Song Gao and their teammates implemented the Elastic Scheduling feature based on TiKV, a cloud-native, distributed Key-Value database , which helps TiKV automatically handle the burst of load and traffic. In this session, Yutong Liang and Song Gao will share their experience of implementing elastic scheduling in TiKV on Kubernetes and introduce the mechanism behind it.

Speakers

Song Gao

Infrastructure Engineer, PingCAP

Song Gao is an engineer at PingCAP, responsible for the development of TiDB Scheduling. He is passionate about cloud-native and open-source technologies.

Yutong Liang

Infrastructure Engineer, PingCAP

Elastic Scheduling with TiKV KubeCon NA 2020 pdf

Text Transcript WUET 9679 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, TiKV - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

5:45pm EST

KubeEdge: Kubernetes Native Edge Computing Framework - Zefeng Wang (Kevin), Huawei

KubeEdge is an open source edge computing framework that extends the power of kubernetes from central cloud to edge. It provides edge autonomy, application management and service communication across cloud and edge sites, device management for multiple IoT/Edge device communication protocols with lightweight implementation. During this talk, Kevin will review KubeEdge motivation, architecture; then go through latest updates on new features and user adoptions. After that Kevin will introduce where the project is heading to, new SIGs formed recently and how new contributors to get involved. There will be an open Q&A for attendees to ask questions.

Speakers

Kevin Wang

Lead of Cloud Native Open Source Team, Huawei Cloud

Kevin Wang is a contributor in the CNCF community since its beginning, leader of the cloud native open source team at Huawei, and co-founder of the CNCF KubeEdge, Volcano and Karmada projects.Kevin has contributed to Kubenretes upstream for years and now spends 100% of his work and... Read More →

Text Transcript QGTV 3245 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, KubeEdge - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

5:45pm EST

Logging: Fluentd & Fluent Bit - Eduardo Silva & Masahiro Nakagawa, Treasure Data

In this presentation, we will cover the basics, internals and best practices of Logging applied to distributed systems, we will do this through the CNCF projects Fluentd and Fluent Bit. We will introduce the pipeline of data collection, filtering, buffering and routing to external services for data centralization. In addition we will cover best practices for Kubernetes for different types of deployments such as DaemonSets and Sidecars. If you are interested in observability, this session is a must!

Speakers

Eduardo Silva

Principal Engineer, Arm Treasure Data

Eduardo is a Principal Engineer at Arm Treasure Data, he is the author and maintainer of Fluent Bit Log Processor, a CNCF sub-project under the umbrella of Fluentd. He is an international speaker in Open Source conferences, he has participated in Scale California, LinuxConf AU, Linux... Read More →

Masahiro Nakagawa

Principal Engineer, Treasure Data

Fluentd maintainer

fluentd intro kubecon 2020 na pdf

Text Transcript WZQX 9865 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Fluentd - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

5:45pm EST

Vitess: Introduction and New Features - Sugu Sougoumarane & Deepthi Sigireddi, Planetscale, Inc.

Vitess is a cloud-native storage solution that can scale indefinitely. In this session, we will first cover a high level overview of Vitess features, the architecture, and what database workloads are a good fit. This will be followed by demos of the exciting new features that have been built in the last 6 months: - Automatic failover - Online schema changes with gh-ost or pt-osc - Compatibility with popular MySQL frameworks like Ruby on Rails and Spring - Streaming and Change Data Capture workflows with VReplication

Speakers

Sugu Sougoumarane

CTO, Planetscale, Inc.

Sugu is the co-creator of Vitess, and has been working on it since 2010. Prior to Vitess, Sugu worked on scalability at YouTube and was also part of PayPal in the early days. His recent interest is in distributed systems and consensus algorithms. He occasionally shares his thoughts... Read More →

Deepthi Sigireddi

Software Engineer, PlanetScale

Deepthi is a Software Engineer at PlanetScale, where she leads the open-source engineering team for Vitess, a CNCF graduated project. She is also the Technical Lead for Vitess in the open-source community. She brings over 20 years of experience building scalable systems to this role... Read More →

KubeCon NA 2020 Vitess pdf

Text Transcript WFRE 4476 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Vitess - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

5:45pm EST

Cloud Native & SD-WAN: Improving K8s Application Experience Over SD-WAN - Alberto Rodriguez-Natal, Cisco & Mark Church, Google

Access to Kubernetes-hosted applications across Wide Area Networks (WANs) is a standard pattern for Enterprise apps. Software-Defined WAN (SD-WAN) technologies have democratized access patterns across the Internet through latency reduction, throughput improvement, and packet loss prevention. However, integration between SD-WAN and K8s is still an emerging field, despite the automation opportunities. This talk shows how to link K8s application attributes with SD-WAN network capabilities. The recently open-sourced Cloud-Native SD-WAN (CNWAN) K8s Operator offers a reference implementation for how SD-WAN controllers can use K8s application metadata to optimize application WAN traffic. This talk discusses developer workflows for deploying K8s-hosted apps defining WAN attributes and patterns for publishing those apps via service discovery systems as an interface for SD-WAN controllers.

Speakers

Alberto Rodriguez-Natal

Tech Lead, Cisco

Alberto Rodriguez-Natal is a Tech Lead in the Enterprise Networking CTO team at Cisco, working on network virtualization, systems architecture, and protocol design. Before joining Cisco, he earned a PhD in Software-Defined Networking at BarcelonaTech. Alberto is one of the co-founders... Read More →

Mark Church

Product Manager, Google

Mark Church is a Google Product Manager for GKE & Kubernetes Networking. He started his career at Cisco architecting web-scale data centers back when the network was still physical. He spent 3 years at Docker evangelizing containers during the advent of early container orchestration... Read More →

KubeConNA2020 CNWAN pdf

Text Transcript ONNF 4285 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Networking

Content Experience Level Any (Anyone can attend, no experience required)

5:45pm EST

An SLO-Driven Approach to Enhance Kubernetes Cluster Reliability - Qian Ding & Cong Chen, Ant Financial

How to define reliability of a Kubernetes cluster? What are the SLOs? How many 9s is enough to ensure end-users are happy for a Kubernetes cluster with thousands of nodes? Service-level-objective (SLO) is the key to run large-scale production cluster reliably. Defining SLOs for classic web services is simple, since web requests are served synchronously with distinct status code. On the contrast, defining SLOs for Kubernetes services is obscured due to its intent-oriented design and declarative APIs. This talk first briefs the philosophy behind the SLO-driven approach for reliability engineering, followed by a deep dive of how SREs define SLOs for one of the world largest Kubernetes cluster in Ant Financial. Finally this talk shares concrete cases and lessons learned of building SLOs framework from several perspectives, including monitoring, alerting and tracing.

Speakers

Qian Ding

Staff Engineer, Ant Financial

Qian works at Ant Group as a staff engineer focusing on site reliability engineering. He is the SRE tech lead of adopting Kubernetes in Ant Financial's production environment. He is passionate about adopting and promoting SRE's philosophy for managing large-scale production systems... Read More →

Cong Chen

Senior Software Engineer, Ant Financial

Cong Chen is a senior site reliability engineer at Ant Financial. Currently he is in charge of the stability of large-scale Kubernetes clusters of Ant Financial. Previously he worked at DIDI and RedHat as an architect and virtualization engineer. He has been focusing on the topic... Read More →

Nov18 AnSLODrivenApproachToEnhanceKubernetesClusterReliability QianDing CongChen pdf

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Observability

Content Experience Level Beginner (Very basic information)

5:45pm EST

PKI the Wrong Way: Simple TLS Mistakes and Surprising Consequences - Tabitha Sable, Datadog

Effective management of TLS certificates and keys is a serious challenge when running Kubernetes at scale. TLS mutual authentication secures all the Kubernetes control plane components, but there are many details that must be right. This talk looks at some of the ways common mTLS configuration mistakes can be abused and how you can reduce that risk. The presentation begins with a tour of the basics of TLS mutual authentication and how it is used by each control plane component. Then, Tabitha will demonstrate several example misconfigurations, exploit them for your education and amusement, and share recommendations to prevent them in your own clusters. You'll leave with a stronger understanding of this essential element of Kubernetes cluster deployment.

Speakers

Tabitha Sable

Staff Engineer, Datadog

Tabitha Sable never met a system she didn't want to take apart. She serves the Kubernetes community as co-chair of SIG Security and a member of the Security Response Committee. At work, Tabitha leads Runtime Infrastructure Security at Datadog. She writes exploits, hardens infrastructure... Read More →

slides 20201022 pdf

Text Transcript JMML 1600 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)

5:45pm EST

Service Mesh Specifications and Why They Matter in Your Deployment - Lee Calcote & Kush Trivedi, Layer5

As the ubiquity of service meshes unfolds so does the need for vendor and technology-agnostic interfaces to interact with them. The Service Mesh Interface (SMI), the Service Mesh Performance Specification (SMPS), and Multi-Vendor Service Mesh Interoperation (Hamlet) are three open specifications solving the challenge of interoperability, workload and performance management between service meshes. Learn what makes each of these specifications unique and why they are very much needed. See each of these three specifications in-action as we use Meshery, the open source service mesh management plane to demonstrate the value and functionality of each service mesh abstraction, and the adherence of these specifications by Istio, Linkerd, Consul and other popular service meshes.

Speakers

Lee Calcote

Founder and CEO, Layer5

Lee Calcote is an innovative product and technology leader, passionate about empowering engineers and enabling organizations. As Founder and CEO of Layer5, he is at the forefront of the cloud native movement. Open source, advanced and emerging technologies have been a consistent focus... Read More →

Kush Trivedi

Maintainer, Layer5

Kush Trivedi is a senior year undergraduate at the Indian Institute of Technology (IIT), Jodhpur from Indore, India. In addition to his obligations as an Undergraduate in Computer Science, he has been involved in a plethora of open-source projects and has contributed to various OSS... Read More →

Text Transcript PWJG 4982 txt

KubeCon NA 2020: Service Mesh Specifications and Why They Matter in Your Deployment: Slides pdf

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Service Mesh

Content Experience Level Intermediate (Mid-level experience)

5:45pm EST

Beyond File and Block Storage in Kubernetes - Sidhartha Mani, MinIO

Kubernetes graduated Container Storage Interface (CSI) to GA status in v1.13. It has since evolved to support a large number of vendors and storage formats. It has brought the industry together in consensus about the best practices in storage. CSI only supports Block and File storage. Object storage is a fundamentally different paradigm where data is accessed over the network rather than locally. It allows applications to remain stateless, while offloading state into a blackbox over the network. Object storage is the key enabler for cloud migration. This paradigm however, does not have a standard mechanism for consumption in Kubernetes. In this talk, we discuss our efforts in bringing object storage into the forefront of kubernetes and introduce the Container Object Storage Interface (COSI) and cover: - Need for COSI - Best practices for using COSI - Designing apps to leverage COSI

Speakers

Sidhartha Mani

Software Engineer, MinIO

Sidhartha (Sid) Mani is a software engineer at MinIO, building out petabyte scale infrastructure software. Previously a founder at Caascade.io, and Senior Software Engineer at Rancher Labs, he has been involved with the container ecosystem since 2014. Sid is a community leader in... Read More →

kubecon2020 pdf

Text Transcript ACQG 3750 txt

Wednesday November 18, 2020 5:45pm - 6:20pm EST
Intrado Virtual Event Platform

Storage

Content Experience Level Intermediate (Mid-level experience)

6:00pm EST

Meet the Maintainer: Contour

Join the Contour Office Hours Here: https://zoom.us/webinar/register/WN_sDdMQWXqSNa0kWJ-l_K8VA

Wednesday November 18, 2020 6:00pm - 6:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

6:00pm EST

Meet the Maintainer: Prometheus

Join the Prometheus Office Hours Here: https://zoom.us/webinar/register/WN_4H94A90PQiq3vkkPjY8BiQ

Wednesday November 18, 2020 6:00pm - 6:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

6:25pm EST

AMA Happy Hour with Priyanka Sharma, GM of CNCF

Join in Zoom

Join CNCF General Manager Priyanka Sharma for some end-of-day socializing, recaps of the keynotes, and special guests! Come prepared with your audio and video on - we’re here to have fun and make connections!

*This session will be streamed on CNCF's Twitch channel -https://www.twitch.tv/cloudnativefdn

Speakers

Priyanka Sharma

ED, CNCF

Wednesday November 18, 2020 6:25pm - 7:25pm EST
External Platform

Interactive Sessions

6:30pm EST

Virtual Happy Hour: Disney Movie Trivia Sponsored by SAIC (RSVP Required)

We may not be able to meet at the local pub, but we can still crack a cold one and play online! Enjoy two nights with two trivia games each – all with a different theme and two meant to engage the kids at home if you’re so inclined. All players will be automatically placed in teams and prizes will be awarded for winners!

Tonight's Theme: Disney Movies (Family-Friendly)

Space is limited – don’t miss your chance to participate and RSVP now!
RSVP required by Tuesday, November 17, 6:30 PM EST
Due to space constrictions, families will count as one player.

Wednesday November 18, 2020 6:30pm - 7:30pm EST
External Platform

Experiences

6:30pm EST

Virtual Happy Hour: Escape Rooms Sponsored by SAIC (RSVP Required)

Don’t miss out on this immersive experience designed to stimulate your senses, emotions, and place you in environments that are believable and above all FUN! Participants will be randomly placed in teams and in a themed escape room. Can you make it out in under 60 minutes? Only time will tell…

Space is limited – don’t miss your chance to participate and RSVP now!
RSVP required by Tuesday, November 17, 6:30 PM EST

Wednesday November 18, 2020 6:30pm - 8:00pm EST
External Platform

Experiences

8:00pm EST

Virtual Happy Hour: 90's Music + Movies Trivia Sponsored by SAIC (RSVP Required)

We may not be able to meet at the local pub, but we can still crack a cold one and play online! Enjoy two nights with two trivia games each – all with a different theme and two meant to engage the kids at home if you’re so inclined. All players will be automatically placed in teams and prizes will be awarded for winners!

Tonight's Theme: 90's Music + Movies

Space is limited – don’t miss your chance to participate and RSVP now!
RSVP required by Tuesday, November 17, 6:30 PM EST
Due to space constrictions, families will count as one player.

Wednesday November 18, 2020 8:00pm - 9:30pm EST
External Platform

Experiences

8:00pm EST

Virtual Happy Hour: Escape Rooms Sponsored by SAIC (RSVP Required)

Wednesday November 18, 2020 8:00pm - 9:30pm EST
External Platform

Experiences

10:00am EST

Meet the Maintainer: Keptn

Join the Keptn Office Hours Here:https://zoom.us/webinar/register/WN_7deIg7q9TTy8LBqbPGFqkw

Thursday November 19, 2020 10:00am - 10:45am EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

11:00am EST

Meet the Maintainer: LitmusChaos

Join the LitmusChaos Office Hours Here: https://zoom.us/webinar/register/WN_9KVfRIsZQt6R-mqDPcV2aA

Thursday November 19, 2020 11:00am - 11:45am EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

11:00am EST

Cloud Native Network Functions (CNF) Working Group Kick-off

Join the session on Zoom

Join us for the kick-off meeting of the Cloud Native Network Functions (CNF) Working Group. The goal for the group is to create a software conformance program, similar to the Kubernetes Conformance Program, that any telco application implementation can use to demonstrate that they are conformant and interoperable with cloud native principles. This will aid companies such as communications service providers and large scale enterprises, running internal telecommunications-like infrastructure, to better understand what cloud native means for telecommunications workloads and help build consensus around industry adoption of cloud native technologies.

See https://github.com/cncf/cnf-conformance/pull/450 for background.

Speakers

Taylor Carpenter

CNF WG Co-Chair, Partner Vulk Coop, Vulk Coop

Bill Mulligan

Marketing Manager, Cloud Native Computing Foundation

Bill Mulligan is a Marketing Manager at CNCF helping the cloud native community grow and make cloud native computing ubiquitous. He runs strategic programs around telco and edge computing, helps students see cloud native as a career path, builds local communities through Kubernetes... Read More →

Cloud Native Network Functions (CNF) Working Group Kick off pdf

Thursday November 19, 2020 11:00am - 12:00pm EST
External Platform

Interactive Sessions

12:00pm EST

Meet the Maintainer: OpenEBS

Join the OpenEBS Office Hours Here: https://zoom.us/webinar/register/WN_Gz-alQYAT3CmdzosZmCQTw

Thursday November 19, 2020 12:00pm - 12:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

12:00pm EST

Meet the Maintainer: Thanos

Join the Thanos Office Hours Here: https://zoom.us/webinar/register/WN_36YMYi86STmZsg1J0NPm_w

Thursday November 19, 2020 12:00pm - 12:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

12:00pm EST

Inclusive Language in Code Community Meeting

Join the session on Zoom

Join us for the inaugural kick-off meeting for the Inclusive Language Initiative, a cross-organizational effort to use more inclusive language in code and documentation and standardize replacement language.

Thursday November 19, 2020 12:00pm - 1:00pm EST
External Platform

Interactive Sessions

12:00pm EST

Expo Hall

Thursday November 19, 2020 12:00pm - 7:30pm EST
Intrado Virtual Event Platform

Expo Hall

1:00pm EST

Keynote: Opening Remarks - Stephen Augustus, KubeCon + CloudNativeCon North America 2020 Co-Chair & Senior Open Source Engineer – Tanzu Kubernetes Grid Core, VMware

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Stephen Augustus

Head of Open Source, Cisco

Text Transcript HEVK 7917 txt

Thursday November 19, 2020 1:00pm - 1:01pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:00pm EST

Meet the Maintainer: Harbor

Join the Harbor Office Hours Here: https://zoom.us/webinar/register/WN_CVF8X8KxTmWg5J1KFwETAQ

Thursday November 19, 2020 1:00pm - 1:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

1:00pm EST

Meet the Maintainer: Strimzi

Join the Strimzi Office Hours Here: https://zoom.us/webinar/register/WN_mGUwSrdrQ5KHTLFCBoFWFw

Thursday November 19, 2020 1:00pm - 1:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

1:01pm EST

Keynote: Using the OpenTelemetry Collector to Empower End Users - Constance Caramanolis, KubeCon + CloudNativeCon North America 2020 Co-Chair & Principal Engineer, Splunk

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Constance Caramanolis

Principal Software Engineer, Splunk

KubeconNA2020 Otel EndUser Keynote pptx

Text Transcript HEVK 7917 txt

Thursday November 19, 2020 1:01pm - 1:17pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:18pm EST

Sponsored Keynote: Scaling Machine Learning Without Compromising Privacy - Nanda Vijaydev, Lead Data Scientist and a Distinguished Technologist, HPE

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

No matter what kind of machine learning (ML) applications you are building for your business, securing your end-to-end ML pipeline is essential yet complicated. ML pipelines become more powerful by distributing a complex network of stages across many environments, often with multiple users and roles. This session will cover how you can leverage open source projects such as SPIRE, OPA, and Envoy to provide a fine-grained policy overlay for your ML pipeline.

Speakers

Nanda Vijaydev

Lead Data Scientist and a Distinguished Technologist, HPE

Nanda Vijaydev is the Lead Data Scientist and a Distinguished Technologist at HPE, where she leverages technologies like Kubernetes, TensorFlow, H2O, and Spark to build solutions for enterprise machine learning and deep learning use cases. She is also well versed in container orchestration... Read More →

Text Transcript HEVK 7917 txt

Thursday November 19, 2020 1:18pm - 1:22pm EST
Intrado Virtual Event Platform

Keynote Sessions

Content Experience Level Any (Anyone can attend

1:23pm EST

Keynote: Moving Cloud Native Beyond HTTP: Adding Protocols to Unlock New Use Cases - Jonathan Beri, Founder, Stealth

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Kubernetes and related projects have first-class support for serving and managing HTTP traffic. This makes sense since the most common protocol used by web servers is HTTP. However, there are many popular protocols in the world that are *not* HTTP. These protocols are used across a variety of domains, from IoT to gaming to telephony and more. In order to build cloud native services with these protocols, we need to understand how and where networking protocols are supported to uncover roadblocks preventing new applications in domains like IoT & gaming. This talk will provide you with a deep understanding of various projects and their protocol support to uncover what’s available today, what’s being worked and opportunities for the ecosystem to collaborate.

Speakers

Jonathan Beri

Founder, Golioth

Jonathan has been working on developer products for over a decade. From open source projects like openthread.io to building global-scale physical security systems (think turnstiles and door locks) to advising hardware startups, he has spent the latter part of his career focused o... Read More →

Text Transcript HEVK 7917 txt

moving beyond http jonathan beri pdf

Thursday November 19, 2020 1:23pm - 1:35pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:36pm EST

Sponsored Keynote: Marvin, Where is My Secure API? - Vijoy Pandey, Vice President, Engineering for Emerging Technologies and Incubations, Cisco

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Modern cloud native developers use APIs and services from a variety of organic, public cloud and SaaS offers to build their apps and drive velocity. Unfortunately, this implies that the developer, security teams, infrastructure teams, the responsible SREs, and the management chain (e.g., CISOs) are out-of-sync and in the dark on the security ramifications behind any developer’s API choices. And worse, they have no visibility to the security exposure of the app's customers and their data.

This talk will highlight these challenges due to the velocity mismatch between these teams, the potential lack of compliance, and the risk to customer data due to these API decisions. We will explore how solving it earlier in the application development lifecycle will lower the cost of the exposure of the entire software (and hardware) stack as well as what needs to be done in the community to solve these problems in a software-driven manner. It’s time to Go Up and Shift Left.

Speakers

Vijoy Pandey

Vice President, Engineering for Emerging Technologies and Incubation, Cisco

Vijoy Pandey is Vice President, Emerging Technologies and Incubation (ET&I) at Cisco. ET&I is chartered to create and drive the next Bold Bets for Cisco in an agile, ambitious, and entrepreneurial manner. Vijoy runs both engineering and a global framework of customer-focused co-innovation... Read More →

Text Transcript HEVK 7917 txt

Thursday November 19, 2020 1:36pm - 1:42pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:42pm EST

Keynote: Kubernetes and etcd Features That Unlocked 15k Node Clusters - Wojciech Tyczyński, Staff Software Engineer, Google

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

In this presentation you will learn about improvements made to Kubernetes and etcd that unlocked running massive clusters with 15,000 nodes. We will show how we tackled this challenge from different angles focusing on its technical aspect. You will learn about the most important changes like watch bookmarks, etcd concurrent reads and more, but also our cooperation with other communities (e.g. golang). We will also describe how we approached validating our work and how real Kubernetes users helped us here.

Speakers

Wojciech Tyczyński

Mr, Google

Wojciech is working on Google Technical Infrastructure & Cloud since 2012. Since 2015 he works on Kubernetes and GKE. With the main focus on scalability, performance and reliability, he gained experience and contributed to many Kubernetes features and most of its components. Before... Read More →

Text Transcript HEVK 7917 txt

Thursday November 19, 2020 1:42pm - 1:57pm EST
Intrado Virtual Event Platform

Keynote Sessions

1:58pm EST

Keynote: More Power, Less Pain: Building an Internal Platform with CNCF Tools - David Sudia, Senior DevOps Engineer, GoSpotCheck, Inc.

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Last year GoSpotCheck migrated from a PaaS to Kubernetes, and devs asked "Does it have to be this hard?" The engineering organization's major initiative this year was to be able to say "no," by building an internal Platform-as-a-Service...with no platform team. And keeping to a goal of using as many open-source and CNCF technologies as possible. Learn how GoSpotCheck used and put together tooling around Buildpacks, Helm, OpenTelemetry, Prometheus, Envoy, LinkerD and gRPC to make a much smoother experience for developers, from "local" development (which now happens in the cluster) through the first SLO alert. Also learn guidelines about where to make the strategic trade-off of what to do in-house and when to go with a vendor. Most of all, learn how to make a pleasant user experience for developers with Cloud Native tech.

Speakers

David Sudia

Senior DevOps Engineer, GoSpotCheck, Inc

David Sudia (he/him) is a former educator turned developer turned DevOps Engineer. He's passionate about supporting other developers in doing their best work by making sure they have the right tools and environments. In his day to day he's responsible for managing Kubernetes clusters... Read More →

Text Transcript HEVK 7917 txt

Thursday November 19, 2020 1:58pm - 2:13pm EST
Intrado Virtual Event Platform

Keynote Sessions

2:00pm EST

Meet the Maintainer: Cloud Events

Join the Cloud Events Office Hours Here: https://zoom.us/webinar/register/WN_yDG-u6HVQLWAywJHWzlvug

Thursday November 19, 2020 2:00pm - 2:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

2:00pm EST

Meet the Maintainer: Contour

Join the Contour Office Hours Here: https://zoom.us/webinar/register/WN_6ZWO9pkGRJmGRE7_WbKSOA

Thursday November 19, 2020 2:00pm - 2:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

2:13pm EST

Keynote: Closing Remarks - Stephen Augustus, KubeCon + CloudNativeCon North America 2020 Co-Chair & Senior Open Source Engineer - Tanzu Kubernetes Grid Core, VMware

If you purchased a Keynote-Only Pass, please watch the keynote on the LFX Event Dashboard.

Speakers

Stephen Augustus

Head of Open Source, Cisco

Text Transcript HEVK 7917 txt

Thursday November 19, 2020 2:13pm - 2:15pm EST
Intrado Virtual Event Platform

Keynote Sessions

2:25pm EST

Break

Thursday November 19, 2020 2:25pm - 2:55pm EST
Anywhere

Breaks

2:55pm EST

A High-Schooler’s Guide to Kubernetes Network Observability - Drew Ripberger, Nirmata

The Kubernetes ecosystem provides fine attention to the use cases of almost all projects. At the same time, to a novice developer trying to break into distributed systems, Kubernetes can also be incredibly daunting at times. Kube-netc was a project developed by Drew Ripberger, a recent high school graduate turned summer intern at Nirmata. Kube-netc is built around creating all encompassing network observability. With eBPF capturing connection statistics and Prometheus exposing the processed metrics, kube-netc is a compelling example of how users can easily implement enhanced system awareness. Though prior to his internship, Drew had not used Kubernetes, or even heard of eBPF or Prometheus before getting assigned the project, this talk will take you through the creation of kube-netc and his journey from hacks and workarounds to utilizing everything that the CNCF ecosystem has to offer.

Speakers

Drew Ripberger

Consultant, Nirmata

Drew Ripberger is a recent high school graduate that will be attending The Ohio State University in the fall. He is involved with distributed systems research at The Ohio State and has competed at the highest level of science fair in the state of Ohio for his independent research... Read More →

A High Schoolers Guide to Kubernetes Network Observability pdf

Text Transcript HMKH 2149 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Beginner (Very basic information)

2:55pm EST

A Walk Through the Kubernetes UI Landscape - Joaquim Rocha, Kinvolk & Henning Jacobs, Zalando SE

Working with Kubernetes clusters and workloads can be overwhelming, both for operators, as well as application developers. While kubectl is the de-facto standard interface to interact with Kubernetes' API, a graphical user interface can provide a better experience for newcomers and advanced users alike. This talk will look at the current landscape of Open Source Kubernetes web and desktop UIs, including Kubernetes Dashboard, Lens, Octant, Kubernetes Web View, and Headlamp. Particularly, how different dashboards are built, for what purpose they can be used, and how they compare in terms of functionality, so attendees can get the most out of the vast landscape of Kubernetes UIs.

Speakers

Henning Jacobs

Senior Principal Engineer, Zalando SE

Henning joined Zalando in the beginning of 2010 and accompanied the transformation of Zalando’s technology department through the eras of PHP/MySQL, Java/PostgreSQL, and "Radical Agility". He was leading the Developer Productivity department where his five teams helped streamline... Read More →

Joaquim Rocha

Director of Product Engineering, Kinvolk

Joaquim leads the Product Engineering team for Kinvolk's user interface and managed service offerings. He has been active in the Open Source community for over 10 years as a developer and/or author, from desktop software (he is a member of the GNOME Foundation), to museum installations... Read More →

A Walk Through the Kubernetes UI Landscape (KubeCon Talk 2020) pdf

Text Transcript EURO 7393 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Beginner (Very basic information)

2:55pm EST

App Testing at Scale: How Bitnami Tests Thousands of Releases Per Month - Juan Jose Martos Castro, VMware

Bitnami publishes a collection of over 180 open source applications and components on over twenty platforms, resulting in thousands of unique image builds and releases every month. Every single one of those releases is automatically tested in the environment in which it will be deployed by users, before being pushed to its destination. In this session, we will show you how we automate thousands of tests across multiple platforms including public clouds, vSphere, containers and Kubernetes, and even Windows installers. Using the popular open source blog application WordPress as an example, we will demonstrate how we accomplish this scale of testing and how you can apply what we have learned to your own testing best practices.

Speakers

Juan Jose Martos Castro

Member of Technical Staff, VMware

I've been working at Bitnami since 2015 and have learned how to test all the different solutions we provide since then. That means that I can let the audience know more about how to solve different issues when performing the tests in their solutions and how we have evolved the testing... Read More →

App Testing at Scale How Bitnami Tests Thousands of Release Per Month pdf

Text Transcript HUXD 1778 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

CI/CD

Content Experience Level Any (Anyone can attend, no experience required)

2:55pm EST

Making the Business Case for Contributing to Open Source - Tobie Langel, UnlockOpen

Today, pretty much all companies have embraced open source. But while they’re all keen to use open source, at lot fewer actually contribute to it. And yet, there’s real value in doing so. Companies use their contribution to open source to boost recruiting (Facebook claims 75% of their new engineering recruits mention Facebook’s open source program as a key reason they accepted their offer), increase their market, build a moat around their business, or position themselves as leaders in their field. In this talk, we’ll look at the different ways contributing to open source can benefit a business and become a competitive advantage. We’ll look at the open source strategies of different companies, big and small, and provide you with the knowledge to start building a business case for open source in your own company.

Speakers

Tobie Langel

Principal, UnlockOpen

Tobie Langel is the founder of UnlockOpen, a boutique consulting firm that helps large organizations build a strong open source culture and leverage it to recruit, retain, and foster top software engineering talent, improve team efficiency and boost innovation. His clients include... Read More →

making the business case slide deck pdf

Text Transcript WXNV 2210 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Community

Content Experience Level Any (Anyone can attend, no experience required)

2:55pm EST

Building a Global Supercomputer with Virtual Kubelet - Dmitry Mishin, University of California San Diego & Adrien Trouillaud, Admiralty

Nautilus is a global Kubernetes cluster, product of the Pacific Research Platform (PRP) project at The University of California San Diego (UCSD) and many collaborating campuses. It aggregates compute resources from around the world. While that's impressive, there are issues that a single cluster cannot solve: in this case, decentralized governance. PRP participants delegate the control of some of their compute resources to UCSD. That wouldn't scale to a global network of independent institutions. So PRP, along with peer projects nationwide, decided to adopt Admiralty's open-source multi-cluster scheduler, which allows for decentralized control plane topologies. Dmitry will demo the federation of Nautilus with the clusters of other large scientific networks; Adrien will explain how Admiralty implemented Virtual Kubelet and the Kubernetes scheduler framework to make this possible.

Speakers

Adrien Trouillaud

CEO, Admiralty

Adrien Trouillaud is the founder and CEO of Admiralty, a Seattle-based startup building open-source and enterprise multi-cluster products for Kubernetes. Adrien is the main author of multicluster-scheduler. Prior to Admiralty, he worked at PayScale, developing and operating machine... Read More →

Dmitry Mishin

Applications Developer, University of California San Diego

Dmitry Mishin, PhD is an Applications Developer at The University of California San Diego, working at the Supercomputer Center on enhancing the Comet supercomputer, and at Calit2 on supporting and expanding Nautilus, a global Kubernetes cluster. Dmitry holds a Master's degree from... Read More →

Building a Global Supercomputer with Virtual Kubelet pdf

Text Transcript SFON 7297 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)

2:55pm EST

Cloud Native Machine Learning Systems at Day Two and Beyond - Sophie Watson & William Benton, Red Hat

You’re probably already convinced that Kubernetes is the right infrastructure for your next machine learning initiative, but you may not be ready for some of the speedbumps that await you on the way. This talk will introduce some of the challenges unique to machine learning systems, prepare you for the tradeoffs you’ll face supporting practitioners and putting systems in production, and present some of the additional tools you’ll need in your DevOps toolbox as your cloud-native machine learning systems mature. You’ll learn how to negotiate pitfalls related to interactive development, reproducibility, and monitoring machine learning systems in production with concrete solutions inspired by our experience with end-users in various industries.

Speakers

Sophie Watson

Senior Data Scientist, Red Hat

Sophie Watson is a data scientist at Red Hat, where she helps customers use machine learning to solve business problems in the hybrid cloud. She is a frequent public speaker on topics including machine learning workflows on Kubernetes, recommendation engines, and machine learning... Read More →

William Benton

Principal Product Architect, NVIDIA

William Benton is passionate about making it easier for machine learning practitioners to benefit from advanced infrastructure and making it possible for organizations to manage machine learning systems. His recent roles have included defining product strategy and professional services... Read More →

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)

2:55pm EST

CRI-O: The Runtime Control Room - Sascha Grunert, SUSE, Peter Hunt, Urvashi Mohnani, Mrunal Patel, Red Hat

There are many ways to customize the underlying container runtime in Kubernetes. Where Kubernetes API offers many knobs for tuning your workloads, using CRI-O gives you access to even more. CRI-O is a container runtime that provides an incubation space for new runtime features in a secure way. It exposes lower-level features with container annotations, runtime classes, and configuration variables, giving admins control over how and when these features are available, and paving a path for their eventual stabalization and wider adoption in Kubernetes. Join the CRI-O maintainers Peter Hunt, Sascha Grunert, Urvashi Mohnani and Mrunal Patel as they give an introduction of CRI-O and walk through the features and knobs CRI-O exposes.

Speakers

Mrunal Patel

Senior Principal Software Engineer, Red Hat

Urvashi Mohnani

Senior Software Engineer, Red Hat

Peter Hunt

Red Hat

Peter Hunt is a Senior Software Engineer working at Red Hat. Passionate about free software, Peter focuses on maintaining CRI-O, attending SIG node, and ~writing~ squashing bugs. Outside of the virtual world, Peter likes collecting floral-printed pants, gardening, and dancing.

Control Room KubeCon NA pdf

Text Transcript CNHB 3985 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, CRI-O - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

2:55pm EST

Image-Builder Deep Dive - Moshe Immerman, Flanksource & Tushar Aggarwal, VMware

Image-builder is a subproject of SIG Cluster Lifecycle that was created with idea to host a number of different utilities for creating virtual machine images. It has the following goals: 1) To build images for Kubernetes-conformant clusters in a consistent way across infrastructures, providers, and business needs. 2) To provide assurances in the binaries and configuration in images for purposes of security auditing and operational stability 3) To ensure that the creation of images is performed via well defined phases. Where users could choose specific phases that they needed.

Speakers

Moshe Immerman

Chief Kubernetes Officer

Moshe is the Chief Kubernetes Officer at Flanksource where he is driving a vision of Kubernetes as the OS for the Datacenter. Moshe is an active member of the SIG Cluster Lifecycle group where he leads the image-builder sub-project and was involved in the design of early alpha versions... Read More →

Tushar Aggarwal

Software Engineer, VMware

Cloud platform engineer @vmware. Working with k8s image builder and related projects

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

2:55pm EST

Intro to Scaling Prometheus with Cortex - Tom Wilkie, Grafana Labs & Ken Haines, Microsoft

Have many, disparate Prometheus instances scattered around your organisation? Want a single, centralised place to store and query all your metrics? Don’t want to manually shard your metrics across instance? Want faster queries and indefinite retention? If you answered “yes” to any of those questions, Cortex might be for you. Cortex is a horizontally scalable, highly available Prometheus-compatible TSDB. Cortex allows users to deploy a centralised, globally aggregated view of all their Prometheus instances, storing data indefinitely and scaling to hundred of millions of series. In this talk we will discuss a bit of Cortex's history, Cortex's architecture and how to get started with Cortex. Cortex is an Apache-licensed CNCF incubation project.

Speakers

Tom Wilkie

VP Product, Grafana Labs

Tom is VP Product at Grafana Labs, a member of Prometheus team and one of the original authors of the Cortex and Loki projects. In his spare time he builds 3D printers and make craft beer.

Ken Haines

Principle Software Engineer, Microsoft

KubeCon NA Cortex Intro pdf

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Cortex - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

2:55pm EST

Jaeger Deep Dive - Yuri Shkuro, Facebook, Pavol Loffay, Red Hat & Annanay Agarwal, Grafana Labs

This session is dedicated to an in-depth understanding of the Jaeger project. We will give a short demo of the recently added features, talk about various topics including the architecture, deployment models, configuration, different types of sampling, multi-tenancy, and best practices. We will discuss integration with OpenTelemetry, and review the roadmap. After this session the attendees should better understand the Jaeger architecture, how to deploy it and get the best benefits, and to make contributions to the project.

Speakers

Pavol Loffay

Pavol Loffay, Red hat

Pavol Loffay is a principal software engineer at Red Hat working on open-source observability technology for modern cloud-native applications. Pavol contributes and maintains Cloud Native Computing Foundation (CNCF) projects OpenTelemetry and Jaeger. In his free time, Pavol likes... Read More →

Annanay Agarwal

Software Engineer, Grafana Labs

Yuri Shkuro

Software Engineer, Facebook

Yuri works on distributed tracing, observability, reliability, and performance problems; author of the book "Mastering Distributed Tracing"; creator of Jaeger, an open source distributed tracing platform and a graduated CNCF project; co-founder of the OpenTracing and OpenTelemetry CNCF projects; member of the W3C Distributed Tracing Working Group... Read More →

KCCNC NA20 Jaeger Deep Dive pdf

Text Transcript SZMO 2406 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Jaeger - Graduated CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

2:55pm EST

Navigating the App Delivery Landscape While Solving Everyday Problems - Lei Zhang, Alibaba & Alois Reitbauer, Dynatrace

Recently there was a lot of buzz around the CNCF landscape getting overly complex. There are more and more options to choose from which is good to see a growing ecosystem. However, this can sometimes also become overwhelming. In this session we walk through major challenges that people are facing and show how they can be solved with projects available today. We will look into scenarios from defining your application all the way to running it in production. Whether you are just about to start running applications on Kubernetes or want to improve your skills. This session will help you to identify what to consider when building app platforms, share good practices, compare different approaches and give you an interactive and quick tour through the CNCF landscape with a focus on delivering and running applications. You will also get some demo code samples to try everything hands on and have a reference to get started with your own projects.

Speakers

Lei Zhang

Staff Engineer, Alibaba

Lei is leading the engineering effort in Alibaba including its Kubernetes based large-scale cluster management system and unified application platform. Lei has been working as a maintainer on Kubernetes upstream since its beginning and a popular speaker in KubeCon.

Alois Reitbauer

Chief Technology Strategist/Head of Open Source, Dynatrace

Alois works as Chief Technology Strategist at Dynatrace, where he is response for all open source activities and research. He is currently heavily engaged in the cloud-native ecosystem as a maintainer and founder of several open source projects and as co-chair and founder of TAG App... Read More →

KubeCon App Delivery Talk pdf

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

2:55pm EST

All You Can Eat Networking. Kubernetes Goodness for the Hungriest Workloads - Aloys Augustin, Cisco & Casey Davenport, Tigera

There are classes of workloads that are notoriously hungry when it comes to networking. Think big data, storage, analytics, 5G, virtual network functions, then encrypt it all at 40Gbps line rates. Kubernetes and the Kubernetes network model are increasingly seen as essential to help manage these workloads at scale. But the cost of containerization and container networking can be hard to swallow for workloads that are often used to having dedicated NICs and physical hardware. Our novel solution was to cook up a feast that is a fusion of two worlds: combining Calico, the popular cloud native Kubernetes network plugin, with VPP, a very fast and scalable userspace packet processing software. In this talk we will lift the lid on what we’ve been cooking and the key ingredients that made it possible to offer an all you can eat buffet for your hungriest workloads.

Speakers

Casey Davenport

Senior Software Engineer, Tigera

Casey Davenport is one of the lead maintainers for Project Calico and has worked on software defined networking solutions since 2012. He is an active Kubernetes community member and currently co-leads the Kubernetes networking special interest group (k8s-sig-network).

Aloys Augustin

Software Engineer, Cisco

Aloys Augustin is the main author of the Calico/VPP integration, and he has worked on cloud infrastructure technologies since 2016. He joined the VPP team at Cisco in 2018 where he focuses on container networking. He is also the maintainer of the QUIC stack in VPP.

CalicoVPP KubeConNA 2020 pdf

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Networking

Content Experience Level Intermediate (Mid-level experience)

2:55pm EST

Observability Brings Clarity in 5G World - Yamini Sridaran & Praveen George, Affirmed Networks

Kubernetes has become the de-facto standard for running 5G core virtual network functions (VNFs) - a set of standards defined applications, each implemented as dozens of microservices and often run across multiple K8s clusters. Centralized monitoring, early detection of problems, and deep troubleshooting tools are essential to ensure telco-grade availability of this complex set of inter-connected microservices. In this talk we present our experience building and using our telco observability platform using CNCF projects. This platform provides: End to End 5G call tracing across multiple VNFs using Jaeger 5G network performance monitoring using 1000s of base and derived metrics using Prometheus Fault detection and troubleshooting using AlertManager, Fluentd and Kibana Attend this talk to learn how observability brings clarity to complex, high-reliability applications such as 5G VNFs.

Speakers

Yamini Sridaran

Senior Principal Software Engineer, Affirmed Networks

Yamini Sridaran is a Senior Principal Software Engineer at Affirmed Networks. As a member of Cloud Native Infra team, she works on improving and building the cloud security and observability of 5G Core VNFs on Kubernetes using open source projects OpenPolicyAgent, Grafana,Prometheus... Read More →

Praveen George

Senior Principal QA Engineer, Affirmed Networks

Praveen George is a Senior Principal QA engineer at Affirmed Networks. As a member of Quality Assurance team, he works in System test and Product validation of 5G core VNFs on Kubernetes. He has prior experience on product validation of various 2G, 3G, 4G telecom core network applications... Read More →

Nov19 Observability brings clarity in 5G world Yamini Sridaran Praveen George pptx

Text Transcript DSES 7399 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Observability

Content Experience Level Intermediate (Mid-level experience)

2:55pm EST

Multi-Cluster is Easier Than You Think with Linkerd and Ambassador - Thomas Rampelberg, Buoyant & Daniel Bryant, Datawire

Multicluster is becoming the new norm; practically everyone runs multiple dev and staging clusters, and running multiple cross-AZ/DC production clusters is a best practice for high availability. However, connecting multiple clusters is often seen as challenging. We’re here to convince you that it’s easy to get started with Linkerd and Ambassador. Join Thomas and Daniel to learn: - The motivations for cross-cluster communication - Key requirements for multi-cluster comms, including: providing a unified trust domain, separating failure domains, support heterogeneous networks, and providing a unified model with in-cluster comms. - An exploration of the “service mirror” pattern and how this is implemented within Linkerd - How to connect and manage an Ingress to a multi-cluster deployment using service mirroring (including live demo)

Speakers

Daniel Bryant

Head of DevRel, Ambassador Labs

Daniel Bryant works as a Product Architect at Datawire, and is the News Manager at InfoQ, and Chair for QCon London. His current technical expertise focuses on ‘DevOps’ tooling, cloud/container platforms and microservice implementations. Daniel is a leader within the London Java... Read More →

Thomas Rampelberg

Software Engineer, Buoyant

Thomas Rampelberg is a Software Engineer at Buoyant Inc. He has made a career of building infrastructure software that allows developers and operators to focus on what is important to them. He is a contributor to Linkerd and has been maintaining Kubernetes applications at scale and... Read More →

slides pdf

Text Transcript FDUY 7776 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Operations

Content Experience Level Beginner (Very basic information)

2:55pm EST

Kata Containers Performance Evaluation and Optimization on Arm64 - Jia He, Arm

Kata Containers builds extremely lightweight virtual machines that seamlessly plug into the containers ecosystem. It is a multi-architecture project which has been supported on X86, aarch64, ppc, s390. Jia He will introduce current status of kata containers on aarch64, focusing on the performance evaluation on aarch64. Includes: 1. metrics report: boot time, memory footprint, network and storage io. 2. Real-life test case includes nginx, redis and tensorflow 3. Kata containers vs runc containers Besides, Jia He will also introduce what Arm container team has done to optimize the performance: 1. virtiofs enablement and bugfix 2. nvdimm support and bugfix 3. kvm ptp enablement 4. Misc performance optimization

Speakers

Jia He

Principle Software Engineer, Arm China

Justin He is a Principal Software Engineer at Arm in the Opensource Software Ecosystem. He focuses on virtualization/container areas. He and his team will focus on the CoCo projects (short for Confidential Containers). CoCo is a CNCF sandbox open source project to enable cloud native... Read More →

Nov 19 Kata Containers Performance Evaluation and Optimization on Arm64 Jia He pdf

Text Transcript QCBZ 3821 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Performance

Content Experience Level Beginner (Very basic information)

2:55pm EST

Kubernetes-native Security with Starboard - Liz Rice & Daniel Pacak, Aqua Security

Starboard is an open source project that gathers security information from various different tools into Kubernetes CRDs, so users can manage & access security reports through familiar Kubernetes interfaces, like kubectl or Octant. This talk uses plenty of demos to describe the motivations behind Starboard, and design challenges such as: - how reports can relate to different resources, from pods through to entire clusters - showing security information for running workloads - extensibility and plugins Learn how to use Starboard generate to actionable security information that's visible to the people who need it. See how to extend Starboard to integrate your favourite security tool, if it isn't already covered today. This “Advanced” talk won’t hold back from showing you the code! It assumes basic familiarity with security tools like vulnerability scanning, YAML checks & CIS benchmarks.

Speakers

Liz Rice

Chief Open Source Officer, Isovalent

Liz Rice is Chief Open Source Officer with eBPF specialists Isovalent, creators of the Cilium cloud native networking, security and observability project. She is the author of Container Security, and Learning eBPF, both published by O'Reilly, and she sits on the CNCF Governing Board... Read More →

Daniel Pacak

Open Source Engineer, Aqua Security

Daniel Pacak is an Open Source Engineer at Aqua Security. He works on Kubernetes and container security related projects, and he is a maintainer on the CNCF project Harbor. When he isn't at work, he enjoys taking walks in the woods with his family.

kubecon starboard pdf

Text Transcript FWPY 0728 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Security + Identity + Policy

Content Experience Level Advanced (Expert level experience)

2:55pm EST

Optimizing Storage Assignment via Pod Scheduling Under Disturbance Factors - Kenji Morimoto, Cybozu, Inc.

For distributed storage systems like Ceph, it is essential to allocate node-local storage devices evenly among racks or regions. This talk introduces how to automate this allocation by using the "WaitForFirstConsumer" volume binding mode and tuning kube-scheduler. The use of "WaitForFirstConsumer" translates the problem of storage allocation into that of pod scheduling. Kenji and his colleagues in Cybozu utilize the feature of Topology Spread Constraints to distribute storage pods. They found that kube-scheduler needs tuning from the default to spread pods optimally under disturbance such as CPU consuming workloads. Since kube-scheduler is being improved, the tuning method varies according to the Kubernetes version. The talk covers the tuning methods for Kubernetes 1.17, 1.18, and 1.19. By distributing storage pods among racks, they achieved fault tolerance against a full rack failure.

Speakers

Kenji Morimoto

Software Engineer, Cybozu, Inc.

Kenji Morimoto is a Software Engineer at Cybozu. He is working on the open-source Neco project to provide and maintain computer clusters with Kubernetes for their cloud services. He has built management software and related components for the Kubernetes clusters, which help application... Read More →

Storage Assignment via Pod Scheduling pdf

Text Transcript SMHW 5208 txt

Thursday November 19, 2020 2:55pm - 3:30pm EST
Intrado Virtual Event Platform

Storage

Content Experience Level Intermediate (Mid-level experience)

3:00pm EST

Meet the Maintainer: Serverless Workflow Specification

Join the Serverless Workflow Specification Office Hours Here: https://zoom.us/webinar/register/WN_q6aKdSQ6Q6Wmy17uyKWArQ

Thursday November 19, 2020 3:00pm - 3:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

3:00pm EST

Meet the Maintainer: SPIFFE/SPIRE

Join the SPIFFE/SPIRE Office Hours Here: https://zoom.us/webinar/register/WN_kSgcx7a0RYi6XvZZwXb_tA

Thursday November 19, 2020 3:00pm - 3:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

3:45pm EST

Selecting the Right Identity Provider for Kubernetes: A Comparative Survey - Cameron Seader, SUSE

This is intended to be a comparative view of common identity providers available to Kubernetes. I'll compare all of the details ranging from authentication (Authn), authorization (Authz), user management, mapping, federation and so on. We will discover together the positive and negative of each for your situation. This will allow all attendees to make the right choice when it comes to their situation for their workloads. Identity provider examples to include Dex, UAA, Keycloak, OpenUnison, and others. Please join us as we delve into the sea of feature and function between all of the identity providers today. Your sure to come away with the right choice in mind for your next project.

Speakers

Cameron Seader

Technology Strategist, SUSE

Cameron Seader is a Technology Strategist at SUSE, working with the most strategic opportunities and premium customers around open source technologies like Linux, Kubernetes, Ceph, Cloud Foundry, and more. With over 20 years of experience in data center systems to application platforms... Read More →

KubeCon20 IdP Compare pdf

Text Transcript EWRK 3224 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

Eating Your Vegetables: How to Manage 2.5 Million Lines of YAML - Daniel Thomson & Jesse Suen, Intuit

Configuration management, while overlooked and underappreciated, is a necessary component of a healthy Kubernetes diet. With over 200 clusters, 2500 git repositories, and 9000 namespaces, Intuit manages and deploys 2.5 million lines of Kubernetes configuration using GitOps. To handle this scale, over the years Intuit has experimented with different config management approaches including templating (Helm), overlays (Kustomize), codifying and abstracting (jsonnet, cdk8s), ultimately settling on Kustomize. Kustomize’s remote base capabilities allow our central team to define and distribute standard patterns and templates, while still allowing developers to overlay last-mile customizations on these templates. This session will explain our journey, hard lessons faced for managing YAML at scale, and where Intuit thinks the future of Kubernetes configuration management needs to head.

Speakers

Jesse Suen

CTO, Akuity

The co-creator and a project lead on the Argo project. Prior to founding Akuity, Jesse was a Principal Software Engineer and technical lead for the Argo team at Intuit, leading the design and architecture for Workflows, CD, and Rollouts. Jesse was a founding engineer at Applatix (acquired... Read More →

Daniel Thomson

Software Engineer, Stytch

Danny Thomson is a software engineer at Stytch working to build the future of user authentication through passwordless options. Previously, Danny worked at Intuit on their Modern Saas platform and contributed to their open-source project: Argoproj. He believes that developer services... Read More →

Eating Your Vegetables How to Manage 2.5 Million Lines of YAML pdf

Text Transcript PANG 6855 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Intermediate (Mid-level experience)

3:45pm EST

Panel: End User Panel: GITOPS in the Enterprise -Real World Experiences - Cheryl Hung, Cloud Native Computing Foundation; Fabio Giannetti, Mastercard; Matt Young, EverQuote Inc.; & Amr Abdelhalem, Fidelity Investments

This panel brings together engineers from the CNCF End User Community to provide their insights on the journey their respective companies have undergone in their transformation to Cloud Native. Each End User member company will discuss their Cloud Native principles and what has worked along with what has not worked. Topics will include operating GITOPS in real world practice, developer experience (CI & CD), CNCF projects evaluated and implemented, and vendor management along with the lessons learned along the journey.

Speakers

Cheryl Hung

VP Ecosystem, Cloud Native Computing Foundation

Fabio Giannetti

Director Software Engineering, Mastercard

Fabio is a Director of Software Engineering. He is responsible for the internal cloud platforms in Mastercard, a global distributed platform with more than 10 datacenter across the world. This includes building and supporting Kubernetes as well as Cloud Foundry. Prior to that Fabio... Read More →

Matt Young

Principal Cloud Architect, Everquote

Matt is a Principal Cloud Architect @ EverQuote, delivering infrastructure, services, and developer-focused tooling for cloud-native applications. With 20+ years of industry experience he’s happily worn Dev, Test, Support and Research hats across the domains of embedded systems... Read More →

Amr Abdelhalem

SVP, Head of Cloud Platforms; CNCF Governing Board Member, Fidelity

Lead Fidelity cloud platform team in transforming Fidelity’s application workloads to take advantage of the hybrid multi-cloud model.

Text Transcript RFYJ 4317 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

CI/CD

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

Enhancing the Kubernetes Scheduler for Diverse Workloads in Large Clusters - Yuan Chen & Yan Xu, Apple

As a wide diversity of workloads are being deployed in Kubernetes, the default scheduler has become insufficient in the light of scheduling performance and functionality. In this talk, Yuan Chen and Yan Xu will present their experience and results of leveraging the Kubernetes scheduling framework and developing new plugins to create a custom scheduler. The scheduler can meet different scheduling needs of diverse workloads in large scale clusters, from stateless to stateful services, big data jobs and machine learning applications. They will deep dive into (1) the design and implementation of the scheduling plugins for performance optimization, custom pod placement and group scheduling, and (2) the use of plugins and scheduling profiles to achieve a better balance between scheduling performance and quality. New features and enhancements of the scheduling framework will also be discussed.

Speakers

Yan Xu

Softwae Engineer, Apple

Yan Xu is an engineering manager at Apple where he focuses on Kubernetes and containerization. He has also been a committer and PMC member of Apache Mesos since its early days when he worked at Twitter.

Yuan Chen

Software Engineer, Apple

Yuan Chen is a software engineer at Apple. His current work focuses on Kubernetes scheduling and scalability. At Apple, he has been working on building cloud-native infrastructure and platforms for Apple software products and services. As a Kubernetes community member, Yuan has made... Read More →

kubecon scheduler enhancements final pdf

Text Transcript CTFX 2024 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)

3:45pm EST

Accelerate and Autoscale Deep Learning Inference on GPUs with KFServing - Dan Sun, Bloomberg & David Goodwin, NVIDIA

Large-scale language models, such as BERT and GPT-2, have brought exciting leaps in state-of-the-art accuracy for many NLP tasks. BERT requires significant compute during inference, which poses challenges for real-time application performance. KFServing provides a simple model serving interface across common model servers with a standardized REST/gRPC inference protocol to serve single or co-located multiple models on CPU or GPU. KFServing enables hardware acceleration and autoscaling of Bloomberg's own BERT models trained on a corpora of specialized, financial news data. In this talk, we will discuss how we use KFServing in a production application to address scalability, latency, and throughput with Knative’s Autoscaler and Activator. We will also discuss some performance debugging tips and show the GPU benchmark results with TensorFlow/PyTorch BERT models deployed to KFServing.

Speakers

Dan Sun

Software Engineer Team Lead, Bloomberg

Dan Sun is a team lead of the Data Science Serverless Runtime team at Bloomberg. Focused on building mission-critical production ML inference managed solutions, he strives to understand and tackle data scientists' complex problems. He also has many years of experience at Bloomberg... Read More →

David Goodwin

Principal Software Engineer, NVIDIA

David Goodwin is a principal software engineer in the Machine Learning group at NVIDIA where he is currently working on tools and usability for deep learning inference. He possesses in-depth knowledge of a wide range of hardware and software components, and software engineering processes... Read More →

Accelerate and Standardize Deep Learning Inference with KFServing pdf

Text Transcript ANHA 6784 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)

3:45pm EST

Absorbing Thanos Infinite Powers for Multi-Cluster Telemetry - Bartlomiej Płotka & Kemal Akkoyun, Red Hat & Frederic Branczyk, Independent

Thanos is an open-source, CNCF’s Incubated project that horizontally scales Prometheus to create a global-scale highly available monitoring system. It seamlessly extends Prometheus in a few simple steps and it is already used in production by hundreds of companies that aim for high multi-cloud scale for metrics while keeping low maintenance cost. During this talk, core Thanos (and Prometheus) maintainers, will briefly introduce basic ideas behind Thanos and deployment models and use cases. After that, to satisfy more experienced users, they will explain more advanced concepts, tips for running on the scale, and the latest shiny usability improvements. Thanks to the growing community there is much to talk about!

Speakers

Bartłomiej Płotka

Mr, Google

Frederic Branczyk

Founder, Polar Signals

Frederic is the founder of Polar Signals. Before, he was a senior principal engineer and the main architect for all things Observability at Red Hat, which he joined through the CoreOS acquisition. Frederic is a Prometheus and Thanos maintainer and tenured as the tech lead for for... Read More →

Kemal Akkoyun

Software Engineer, Polar Signals

Kemal Akkoyun is a Senior Software Engineer at Polar Signals. He is one of the maintainers of Thanos and Prometheus. He is heavily invested in observability, profiling, and performance engineering. Kemal is interested in tools like Go, eBPF, Kubernetes, Prometheus, and Rust. He likes... Read More →

Text Transcript ZULS 1223 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Thanos - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

CNCF Project Paperwork Working Session - Josh Berkus, Red Hat, Carolyn Van Slyck, Microsoft & Dawn Foster, VMware

At each stage from Sandbox to Graduated, you’ll need to add community and process documentation – and there’s even more that’s good to have even if it’s not required. Let us help you create this “project paperwork” now instead of waiting for a deadline. With just a little planning, it doesn’t need to overwhelm you. SIG Contributor Strategy will walk you through required and desired community docs, how to use the new template repo, and which docs you need at which level. We’ll also be on hand to answer your questions and provide 1-on-1 help and editorial support. You can get your project ready, and we’ll show you how.

Speakers

Josh Berkus

Kubenetes Community Manager, Red Hat Inc.

Josh Berkus is the Kubernetes Community Manager for Red Hat. In a previous life, he was a database geek who did benchmarks for the TPC and Spec. He lives in Portland with a librarian, a pottery studio, and an absurdly large cat.

Carolyn Van Slyck

Principle Software Engineer, Microsoft

Carolyn is a software developer based in the wilds of suburban Chicago, working remotely on the Microsoft Azure Containers team. Her passion is developer tools, and automating all the things with a sidecar of containers. She is a maintainer for the Go dependency manager (dep), a Kubernetes... Read More →

Dawn Foster

Director of Data Science, CHAOSS

Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Text Transcript TDQH 8469 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

Contributing to Kubernetes Conformance Coverage - Hippie Hacker & Caleb Woodbine, ii.coop

In this session we'll walk through the Certified Kubernetes program (cncf.io/ck) followed by a deep-dive into the tooling developed for identification, removal and prevention of gaps in certification test coverage.

In the intro, we will cover the steps required to become a CNCF Certified Kubernetes provider.

We will also deep dive into the APISnoop technologies supporting conformance, specifically:

Identifying Gaps (apisnoop.cncf.io)
Closing Gaps (apisnoop audit sink + test writing w/ humacs.org)
Preventing Gaps (release blocking w/ prow.k8s.io)
Verifying cloud provider submissions (prow.cncf.io)

Speakers

Hippie Hacker

Chief Executive Hippie, ii.nz c/o CNCF

Hippie Hacker's unique approach to storytelling includes practical application of technology with a focus on humanity as a whole. He has a lifelong interest in the creation of vehicles of viral generosity that everyone can ride.His travels starting in an avocado green Volkswagen took... Read More →

Caleb Woodbine

Software engineer at ii, ii.nz

Caleb is a software engineer at ii. Driven by community, he loves the collaboration of individuals - especially through Open Source.Caleb contributes to the Kubernetes sig-testing, Kubernetes conformance working group, and wg-k8s-infra. Caleb also spends way too much time with container... Read More →

2020.north america pptx

Text Transcript MAKG 4397 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

Intro + Deep Dive - Provider IBM Cloud - Sahdev Zala, Richard Theis, & Brad Topol, IBM

In this session, the project leads will provide an overview of the IBM Cloud Provider subproject, its open source activities, and learning resources. It will be followed by a discussion on the recent developments as well as future work in the IBM Cloud Provider and Kubernetes Cluster API Provider IBM Cloud. This session will be of value to a broad audience including active contributors, new contributors, and those with an interest in the IBM Cloud Provider features and capabilities or the Kubernetes Cloud Provider in general.

Speakers

Brad Topol

Distinguished Engineer, IBM

Dr. Brad Topol is an IBM Distinguished Engineer leading efforts focused on Open Technologies and Developer Advocacy. In his current role, Brad leads a development team focused on contributing to and improving Kubernetes and several other cloud native open source projects. Brad is... Read More →

Richard Theis

Senior Software Engineer, IBM

Richard Theis is a Senior Software Engineer in the IBM Cloud division. In his current role, Richard leads Kubernetes and OpenShift update development and support for IBM Cloud Kubernetes Service and Red Hat OpenShift on IBM Cloud. He is a co-chair of the Kubernetes provider IBM Cloud... Read More →

Sahdev P. Zala

Senior Software Engineer, IBM

Sahdev P. Zala is a senior software engineer and open source developer at IBM. He is a CNCF etcd project maintainer, Kubernetes contributor and co-lead of Kubernetes Provider IBM Cloud. Previously, Sahdev was a core contributor in OpenStack and a Technical Committee member of OASIS... Read More →

KubeCon NA2020 IBMCloudProvider pdf

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

Intro: CNCF SIG-Runtime - Ricardo Aravena, Rakuten & Renaud Gaubert , NVIDIA

The CNCF SIG Runtime (https://github.com/cncf/sig-runtime) collaborates to explore how different runtime infrastructure technologies make it possible to run cloud-native workloads. Discussions are about generalized orchestration, autoscaling, scheduling, execution, container runtimes, sandboxing, virtualization, image packaging/distribution, and specialized architectures. Furthermore, technologies and projects, aimed specifically at Edge, IoT, Batch, Big Data, AI/ML, etc. and incorporating specialized computing elements beyond CPUs, including GPUs, TPUs, FPGAs, ASICs, etc. In this session, we'll provide an overview of the current cloud-native projects and future technologies that fall within the SIG scope. You'll find out how to get involved and contribute, get to know some of the SIG members, and a showcase of the work thus far. The audience will come away with a basic understanding of the SIG and its place in the CNCF ecosystem.

Speakers

Ricardo Aravena

Cloud Infrastructure Lead, TruEra

Ricardo currently works at TruEra as a Cloud Infrastructure Lead helping automate everything with cloud native technologies. He's an open source enthusiast and co-chair of the CNCF TAG-Runtime. He has been working in tech and infrastructure for more than 20 years and comes from a... Read More →

Renaud Gaubert

Software Engineer, Nvidia

Text Transcript DPZQ 3569 txt

Intro SIG Runtime pdf

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

SIG Architecture Intro and Update - John Belamaric, Google & Derek Carr, Red Hat

SIG Architecture maintains and evolves the design principles of Kubernetes, and provides a consistent body of expertise necessary to ensure architectural consistency over time. The SIG takes care of evolution of conformance definitions, API definitions/conventions, deprecation policy, design principles, and other cross-cutting concerns. In this talk, we will provide an introduction to SIG architecture, including its role and the various subprojects that support its activities. Additionally, we will provide a community update on the status of those efforts.

Speakers

Derek Carr

Distinguished Engineer, Ancestry

John Belamaric

Senior Staff Software Engineer, Google

Text Transcript AHQD 5609 txt

Kubernetes SIG Architecture Intro and Update (KubeCon NA 2020) pdf

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

gRPC Communication Patterns – A Deep Dive - Kasun Indrasiri & Danesh Kuruppu, WSO2

Real-World microservices implementations often use a variety of communication protocols and standards to build different services. gRPC has emerged as an efficient, reliable, and robust way to build inter-microservice communication owing to its rich service definition capabilities with protocol buffers, a variety of language support, and high performance. In this session, we will discuss how gRPC can be used to build inter-microservices communications. In this talk, we’ll explore fundamental gRPC communication patterns; Unary RPC, Server-side Streaming, Client-side Streaming, and Bi-directional Streaming, Understanding when and how to use gRPC Interceptors, Deadlines, Cancellation, Error Handling, Multiplexing, and Metadata, a network analysis of how gRPC communication works behind the scenes.

Speakers

Kasun Indrasiri

Senior Program Manager at Azure Messaging Services, O'Reilly Author, Microsoft

Kasun Indrasiri is an author, a product manager, and a software architect with extensive experience in microservices, cloud native architecture and building messaging and integration platforms.He is the author of the Design Patterns for Cloud Native Applications (O'Reilly, 2021... Read More →

Danesh Kuruppu

Associate Technical Lead, WSO2

Danesh Kuruppu is an associate technical Lead at WSO2 and with over five years of experience in enterprise integration and microservices technologies. Danesh is the main designer and developer of adding gRPC support for the open source, cloud native programming language Ballerina... Read More →

gRPC Communication Patterns Deep Dive pdf

Text Transcript DSNO 4759 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Networking

Content Experience Level Intermediate (Mid-level experience)

3:45pm EST

Supercharged Analytics for Prometheus Metrics with Spark, Presto, & Superset - Rob Skillington & Gibbs Cullen, Chronosphere

Prometheus continues to make it simple to alert, monitor and understand systems in a cloud native world with growing complexity. New connectors to big data query engines such as Spark and Presto enable us to ask more complex questions than ever before. We can ask questions such as “Which of my deployments in Kubernetes account for the majority of compute and network costs, and how has that grown and shrunk with respect to doing real work such as query volume from users?” We’ll walk through a working example to run Superset and Presto in docker connected to a remote Prometheus to perform advanced SQL queries of arbitrary size reliably without timeout. We’ll also demo joining metrics data using the Kubernetes node name Prometheus label to detailed Kubernetes object metadata (events, pods, etc) collected by Fluentd using a simple SQL join thanks to Presto’s query federation capabilities.

Speakers

Rob Skillington

CTO, Chronosphere

Rob Skillington is the CTO at Chronosphere and creator of open source M3 which is a Prometheus long term storage metrics platform. He is also a member of OpenMetrics, an open standard for transmitting metrics at scale.

Gibbs Cullen

Developer Advocate, Chronosphere

Gibbs Cullen is a developer advocate at Chronosphere and makes it possible for the community to understand the concepts behind Prometheus and using M3 as a long term storage, in addition to helping the community with best practices in alerting, monitoring and configuring their deployment... Read More →

Supercharged Analytics for Prometheus Metrics with Spark, Presto, & Superset pdf

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Observability

Content Experience Level Intermediate (Mid-level experience)

3:45pm EST

Kubernetes CronJobs - Does Anyone Actually Use This [in Production]? - Kevin Yang, Lyft

Considering CronJob? Think again! CronJobs sound great on paper–a higher-order API built on the bread and butter of K8s that automates fault tolerance, orchestration, etc., for distributed, repetitive tasks. On top of that, you benefit from efficient resource usage when your cron is idle. Who wouldn't want that? At Lyft, we run hundreds of CronJobs on our platform; however, the road to get there was not easy. In this talk, Kevin will dive deep into the guts of CronJobs, discuss subtle issues like how the control-plane can get bogged down at scale, and share how we addressed these problems in our K8s stack (including forking and patching Kubernetes itself!). You will leave with a better understanding of the trade-offs of CronJob and what features to look for in a cron solution to make your developers (and you) happy.

Speakers

Kevin Yang

Software Engineer, Lyft

Kevin is a Software Engineer at Lyft where he works on building out Lyft’s Compute platform based on Kubernetes. When he isn’t furiously typing “kubectl get pods” at his terminal for the 10000th time, Kevin enjoys biking, rock climbing, and fiddling with his vimrc.

Kubernetes CronJobs Does Anyone Actually Use This pdf

Text Transcript QXTU 3796 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Operations

Content Experience Level Intermediate (Mid-level experience)

3:45pm EST

Lives On the Line. Learning Disaster Response From the Coronavirus Pandemic - Kris Nova & Dr. Rachel Beda, Wisepatient

Join us for an exciting session where two worlds collide to bring a deep look at disaster response in cloud-native from the lense of a global viral pandemic. Two unsuspecting women will grace the stage to share a powerful lesson. Join a practicing MD from Seattle, and a security expert from San Francisco as they look at the top lessons learned in the global response to the CoVID-19 Pandemic. They draw stark comparison to the incident response, detection, and disaster recovery in the medical field that with the same issues we see in software. Learn how open source was able to save lives. Learn how tools like Falco are used identically to the response field testing we saw during the outbreak. Learn how the world has taught itself to expect the unexpected, and respond to catastrophe. The audience walks away feeling secure and prepared for an unexpected disaster in their infrastructure.

Speakers

Kris Nóva

Chief OSS, Sysdig

Kris Nova, Chief Open Source Advocate at Sysdig, focuses on security, intrusion detection, and the Linux kernel with Kubernetes and eBPF. As an active advocate for open source, Nova is an ambassador for the CNCF and the creator of kubicorn, a successful Kubernetes infrastructure management... Read More →

Dr. Rachel Beda

Physician and Co-Owner, Wise Patient Internal Medicine

Dr. Rachel Beda, MD is an Internal Medicine Physician in Seattle, WA and has over 19 years of experience in the medical field, including 7 years as a supervising physician in the Level 1 Emergency Department at Harvborview Medical Center. She has extensive experience with medical... Read More →

Text Transcript XJCW 6194 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Security + Identity + Policy

Content Experience Level Any (Anyone can attend, no experience required)

3:45pm EST

Persistent Memory in Kubernetes - Patrick Ohly, Intel

The term persistent memory (PMEM) is used to describe technologies which allow programs to access data as memory, directly byte-addressable, while the contents are non-volatile, preserved across power cycles. It has aspects that are like memory, and aspects that are like storage. Instead of replacing them, persistent memory is a third tier that sits in the middle. With this new ingredient, systems containing persistent memory can outperform legacy configurations, providing faster start-up times, faster access to large in-memory datasets, and often improved total cost of ownership. This talk will present the concept, briefly describe the available hardware (Intel® Optane™ Persistent Memory), and then cover PMEM-CSI, a storage driver that makes PMEM available to applications running inside a Kubernetes cluster.

Speakers

Patrick Ohly

Cloud Native Architect, Intel GmbH

Patrick Ohly is a software engineer at Intel GmbH, Germany. In the past he has worked on performance analysis software for HPC clusters ("Intel Trace Analyzer and Collector") and cluster technology in general (PTP and hardware time stamping). Since January 2009 he has worked for Intel... Read More →

PMEM KubeCon NA 2020 pdf

Text Transcript APBC 4018 txt

Thursday November 19, 2020 3:45pm - 4:20pm EST
Intrado Virtual Event Platform

Storage

Content Experience Level Intermediate (Mid-level experience)

4:00pm EST

Meet the Maintainer: Envoy

Join the Envoy Office Hours Here: https://zoom.us/webinar/register/WN_ZhcIbTGwRiWmduqq90uEQg

Thursday November 19, 2020 4:00pm - 4:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

4:00pm EST

Meet the Maintainer: Longhorn

Join the Longhorn Office Hours Here: https://zoom.us/webinar/register/WN_7w8m27RbQYCuyZ6_GTIZvg

Thursday November 19, 2020 4:00pm - 4:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

4:20pm EST

Break

Thursday November 19, 2020 4:20pm - 4:50pm EST
Anywhere

Breaks

4:50pm EST

Kubernetes and Logging: Do It Right - Eduardo Silva, Arm Treasure Data

Logging in distributed systems is not as simple as it sounds. The nature of having distributed applications comes with challenges for data processing such as parsing and unstructured/structured data handling, metadata correlation (labels/annotations), data centralization, and overall reliability. In this session, we will dive and explain all the concepts of Logging for distributed systems, specifically applicable for Kubernetes environments, best practices, and open-source tools available to satisfy the final needs of every user: data analysis. Doing Logging right is not hard if the concepts are understood, after this session you will be in a good position to implement a unified logging layer in Kubernetes with further knowledge of best practices for performance, security, and data transfer reliability.

Speakers

Eduardo Silva

Principal Engineer, Arm Treasure Data

Text Transcript TEEE 4531 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Any (Anyone can attend, no experience required)

4:50pm EST

The Cloud Native Journey at Adobe - Carlos Sanchez, Adobe

We will share our journey migrating one of Adobe's enterprise products to Kubernetes, running multiple clusters across regions, as well as the processes and technologies that made this possible, including Envoy, Helm or Prometheus. Adopting DevOps has improved the communication between teams, which are now organized by functional areas, no more Dev, QA, Ops teams. Continuous Delivery allows us to highly automate software delivery with multiple deploys a day, and using GitOps we have improved visibility of the services running in the different environments. Using Prometheus and Grafana allows us to provide visibility into the state of the system to everyone in the team, as the whole engineering organization participates on on-call rotation to foster a shared responsibility across services.

Speakers

Carlos Sanchez

Principal Scientist, Adobe

Carlos Sanchez is a Principal Scientist at Adobe Experience Manager, specializing in software automation, from build tools to Continuous Delivery and Progressive Delivery. Involved in Open Source for over 15 years, he is the author of the Jenkins Kubernetes plugin and a member of... Read More →

The Cloud Native Journey at Adobe pdf

Text Transcript NMYF 5790 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

Progressive Delivery Techniques with Flagger - Stefan Prodan, Weaveworks

You might have heard about progressive delivery - it’s an umbrella term for various deployment techniques (eg. Canary releases, Dark launches, A/B testing, Blue-Green mirroring) meant to reduce the risk of introducing new software versions in production. In this session, Stefan will talk about what it takes to adopt progressive delivery for Kubernetes and how Flagger and service meshes can make deployments safer by limiting the impact of a failed release. We will look at different progressive delivery techniques, discuss the pros and cons, suggest what type of applications are best suited for each technique, and review added complexities that come with each option. We’ll close with a live demo of a GitOps pipeline powered by Flux, Flagger, and Linkerd to showcase the deployment techniques presented.

Speakers

Stefan Prodan

Principal Engineer, Weaveworks

Stefan is a Principal Engineer at Weaveworks and an open source contributor to cloud-native projects. He is the creator of Flagger the progressive delivery operator for Kubernetes, and a core maintainer of the CNCF's Flux project. He worked as a software architect and a DevOps consultant... Read More →

Flagger KubeCon NA 2020 pdf

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

CI/CD

Content Experience Level Beginner (Very basic information)

4:50pm EST

Having Cloud Native Fun with HonkCTL - Jeffrey Sica, Red Hat

In the last year, geese have come to symbolize a harbinger of chaos in the technical community. Many have taken this opportunity to post many GIFs and make many jokes. One of the jokes, is a Kubernetes-based CTF game called honkCTL. This talk will outline why having fun benefits communities, where HonkCTL came from, and will spin up a HonkCTL instance that mischievous cloud-native fowls can play at home. Included in this talk will also be a sneak peek at the next game being cooked up at HonkCI Laboratories.

Speakers

Jeff Sica

Principal Developer Experience Engineer, CNCF

When not poking holes at test plans, he can usually be found working on upstream Kubernetes in various sub-projects or posting an unhealthy amount of GIFs on Twitter. He is a Goose Enthusiast and enjoys referring to himself as a Michigander (though has relocated to Minnesota)

Having Cloud Native Fun with HonkCTL pdf

Text Transcript VXZX 0133 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Community

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

MLOps at Snapchat: Continuous Machine Learning with Kubeflow & Spinnaker - Kevin Dela Rosa, Snap Inc.

Training a machine learning model to support your use case can be difficult, but in actuality model creation is only the beginning. ML systems are complex and differ from traditional software systems; as such unique challenges arise when engineers or data scientists try to integrate and continuously operate ML systems in production. Applying best practices and principles from DevOps to machine learning systems (MLOps) can help practitioners navigate the entire ML lifecycle. In this talk, we will share our experience so far in applying MLOps to a computer vision use case at Snapchat. We will walkthrough the process of transforming a manual script driven process into a more robust and automated experience. We will describe our ML pipeline and how we leveraged Kubernetes, Kubeflow pipelines, and Spinnaker to achieve continuous integration, continuous delivery, and continuous training.

Speakers

Kevin Dela Rosa

Machine Learning Engineer, Snap Inc.

Kevin Dela Rosa is a machine learning engineer on the Perception team at Snap. Alongside his colleagues, he is responsible for finding ways to apply machine learning and deep learning to create exciting products and breakthrough interactive experiences for millions of Snapchatters... Read More →

KevinDelaRosa MLOps Kubecon2020 pdf

Text Transcript MNNH 4388 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

A Special Interest in Cloud Native Security - Emily Fox, National Security Agency (NSA) & Brandon Lum, IBM

Wonder about the security of CNCF projects? What about the state of security in cloud native? Security is not binary, it’s a practice of reducing risk. With fast-changing infrastructure and emerging best practices, there’s no simple, cookie-cutter solution. The Special Interest Group (SIG) Security is a group of security minded folks in the cloud native community. These awesome people are focused on improving security of cloud native projects & minimizing security gaps in cloud native adoption. In this session you will learn about our current and future projects, efforts, and how you can get involved in the future of cloud native security.

Speakers

Emily Fox

Security Lead for Emerging Technologies, Red Hat

Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She promotes the cross-pollination of development and security practices. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and... Read More →

Brandon Lum

Senior Software Engineer, IBM

Brandon loves designing and implementing computer systems (with a focus on Security, Operating Systems, and Distributed/Parallel Systems). He enjoys tackling both technical and business challenges and has a side interest in organizational behavior and leadership. At IBM Research... Read More →

CNCF Security SIG Intro NA 2020 (1) pdf

Text Transcript PTRC 2831 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

4:50pm EST

Kubernetes VMware User Group Intro: Best Practices for Running on VMware - Steven Wong & Myles Gray, VMware

This will be a presentation by organizers and members of the Kubernetes VMware User Group. This group addresses running all forms of Kubernetes on VMware infrastructure. The group exists to serve users, along with those who develop, test and support running K8s on vSphere and desktop hypervisors. This group is also here to support those building/using cluster installation tooling for VMware hypervisors. Agenda: - Overview of vSphere cloud provider and related storage plugins – with coverage of recent features/changes. - Recommended path for migration from the deprecated in-tree storage plugin to CSI. - New features for running Kubernetes on "desktop" hypervisors. - How to get involved in the User Group to meet other users to share advice and experiences.

Speakers

Steven Wong

VMware

Steve Wong has been active in the Kubernetes community since 2015. He is a co chair of the CNCF Working Group. Steve is co-chair of the VMware User Group on the Kubernetes project. He has implemented industrial control systems for many factories, pipelines, and process control systems... Read More →

Myles Gray

Staff Technical Marketing Architect, VMware

VMware User Group Intro KubeCon NA 2020 pdf

Text Transcript CYKD 9459 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

4:50pm EST

Overview and State of Linkerd - William Morgan & Tarun Pothulapati, Buoyant, Inc.

In this talk, maintainers from the Linkerd project will present an overview of the project and an update on upcoming releases. They'll cover what Linkerd is and how it compares to other service meshes; what the latest features and functionality are; what to expect in upcoming releases; and how you can get involved in one of the CNCF's most talked-about projects. This talk will include Linkerd's new seamless multi-cluster and TCP mutual TLS (mtls) features in the 2.8 and 2.9 releases, as well as performance benchmarks and recent changes in Linkerd's underlying micro-proxy, Linkerd2-proxy.

Speakers

William Morgan

CEO, Buoyant

William Morgan is the CEO of Buoyant. Prior to founding Buoyant, he was an infrastructure engineer at Twitter, where he ran several teams building on product-facing backend infrastructure. He has worked at Powerset, Microsoft, adap.tv, and MITRE Corp, and has been contributing to... Read More →

Tarun Pothulapati

Software Engineer, Buoyant

Text Transcript QZDQ 6245 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions, Linkerd - Incubating CNCF Project

Content Experience Level Any (Anyone can attend, no experience required)

4:50pm EST

SIG CLI Intro and Updates - Phillip Wittrock, Apple, Maciej Szulik, Red Hat, Sean Sullivan, Google & Eddie Zaneski, AWS

Maintainers from SIG CLI will introduce the audience to the projects hosted under the SIG and the SIG CLI community. They will provide a brief overview for each of these projects, including giving on update on the current state of the kubectl and kustomize CLIs. Maintainers will also cover the contribution process for the SIG, and they ways they have seen new contributors successfully onboard into the SIG. The final 15 minutes of the session will be reserved for answering questions from the audience.

Speakers

Sean Sullivan

Software Engineer, Google

Sean Sullivan is a Software Engineer at Google, a co-chair of the SIG CLI (Command Line Interface), and an active SIG CLI and Kubernetes contributor since 2017. Sean has presented at a Kubecon conference every year since 2018. In his free time, Sean likes to surf and read.

Maciej Szulik

Senior Principal Software Engineer, Red Hat

Maciej is a passionate developer with almost 2 decades of experience in many languages. Currently he's working on OpenShift and Kubernetes for Red Hat. Whereas at night he is hacking on side projects with python. In his spare time he enjoys reading a good book or taking photos.

Phillip Wittrock

SWE, Apple

Eddie Zaneski

Staff OSS Engineer, Chainguard

Eddie lives in Denver, CO with his wife and dog. He loves open source and is a maintainer for the Kubernetes and Sigstore projects. When not hacking on random things you'll most likely find him climbing rocks somewhere.

Text Transcript RKRH 2969 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

4:50pm EST

The Stateful Landscape: The Then and Now and the Future - Erin Boyd, Apple, Quinton Hoole, Facebook, & Alex Chircop, StorageOS

This talk will discuss how the CNCF storage SIG in the CNCF operates, identifies projects for Cloud Native admission and where we see the future of storage in the Cloud Native Ecosystem heading.

During this session we will cover:

- Overview of the SIG, how to join and how to help
- Overview of storage projects in the CNCF
- Projects that are currently being being reviewed
- Areas we would like to see, and gaps in the landscape
- Overview of the CNCF Storage Landscape document
- Overview of the Performance and Benchmarking document

Speakers

Alex Chircop

Chief Product Architect, Akamai

Chief Product Architect at Akamai. Previously a founder and CTO of Ondat (formerly StoraeOS), building software defined solutions for cloud native environments. Alex is also a co-chair of the CNCF Storage TAG (previously SIG). Before embarking on the startup adventure he spent over... Read More →

Quinton Hoole

Production Engineering, Facebook

Erin Boyd

Engineer, Apple

The Stateful Landscape The Then and Now and the Future pdf

Text Transcript PQEB 1035 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

4:50pm EST

What is the Kubernetes Code of Conduct Committee and What is it Working On - Karen Chu & Aeva Black, Microsoft

The Kubernetes community has its own elected Code of Conduct Committee (CoCC) but what exactly does this group do? In this session, we will cover the purpose and scope of the CoCC, introduce the current committee members, and share our progress on public, transparent process documentation as we continue to help build a healthy inclusive open source community.

Speakers

Karen Chu

Head of Community, Fermyon

Karen Chu is the Head of Community at Fermyon Technologies. Having participated in the cloud native community since 2015, she is a CNCF Ambassador, Helm community manager/maintainer, emeritus Kubernetes Code of Conduct Committee member, meet-up organizer, and conference organizer... Read More →

Aeva Black

Open Source Hacker, Azure Office of the CTO, Microsoft

Once described as "an ancient and powerful open source dragon," Aeva Black is a dot-com veteran, an open source hacker, and a queer and non-binary geek. They work in the Azure Office of the CTO to improve the state of open source software supply chain security, and to support teams... Read More →

KC+CNC NA 2020 – CoCC Maintainer Session Deck pdf

Text Transcript VTJO 7432 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Maintainer Track Sessions

Content Experience Level Any (Anyone can attend, no experience required)

4:50pm EST

Improving Network Efficiency with Topology Aware Routing - Rob Scott, Google

As Kubernetes clusters grew to span multiple zones and regions, it became clear that we needed to improve network routing. The initial kube-proxy implementation meant that all requests were equally likely to go to any endpoint, regardless of how far away it was. With topology aware routing, kube-proxy will attempt to keep network traffic within the same zone or region if there is sufficient capacity. This can have huge impacts on network efficiency, performance, and scalability. This talk will cover the evolution of topology aware routing in Kubernetes including the options that didn’t end up working. It will demonstrate how the current algorithm works, discuss the tradeoffs of the approach, and show the simulations that were run to develop the algorithm. Finally, this talk will provide some data showing the significant impacts this feature can have on Kubernetes networking.

Speakers

Rob Scott

Software Engineer, Google

Rob is an open source enthusiast currently working on Kubernetes Networking at Google. He's been a maintainer of Gateway API since the very early days of the project and led the development of other Kubernetes networking APIs like EndpointSlices.

Improving Network Efficiency with Topology Aware Routing pdf

Text Transcript PMEV 7536 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Networking

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

How the OOM-Killer Deleted My Namespace, and Other Kubernetes Tales - Laurent Bernaille, Datadog

Running Kubernetes at scale is challenging and you can often end up in situations where you have to debug complex and unexpected issues. This requires understanding in detail how the different components work and interact with each other. Over the last 3 years, Datadog migrated most of its workloads to Kubernetes and now manages dozens of clusters consisting of thousands of nodes each. During this journey, engineers have debugged complex issues with root causes that were sometimes very surprising. In this talk Laurent and Tabitha will share some of these stories, including a favorite: how a complex interaction between familiar Kubernetes components allowed an OOM-killer invocation to trigger the deletion of a namespace.

Speakers

Laurent Bernaille

Principal Engineer, Datadog

Laurent Bernaille worked several years as a consultant specializing in cloud, containers, and automation and helped organizations migrate to the public cloud, adopt containers and improve their deployment pipelines. He is now Staff Engineer at Datadog and works in the Compute team... Read More →

How the oom killer deleted my namespace pdf

Text Transcript PMSQ 7841 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Operations

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

Speeding Up Analysis Pipelines with Remote Container Images - Ricardo Rocha & Spyridon Trigazis, CERN

Containers have taken a key role in the daily life of physicists at CERN, helping with packaging and sharing code as well as ensuring analysis reproducibility. This session will describe how processes have been adapted to containerize software releases of tens of gigabytes, and how they're used to process hundreds of petabytes of new data every year. In particular, it will focus on how container images are distributed in a large network of connected sites across the world and show how lazy loading of container images using the containerd remote snapshotter has ensured a flat startup time under 6 seconds while dramatically reducing network traffic. A live demo will include a real physics analysis pipeline of hundreds of parallel jobs using the setup described above.

Speakers

Ricardo Rocha

Computing Engineer, CERN

Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →

Spyros Trigazis

Computing Engineer, CERN

Spyros Trigazis is a computing engineer and a member of the CERN Cloud infrastructure team which provides computing resources to the High Energy Physics community. He has been contributing to open source projects like Fedora, Kubernetes and OpenStack.

Speeding Up Analysis Pipelines with Remote Container Images pdf

Text Transcript YNVQ 4188 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Performance

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

DevOps All the Things: Creating a Pipeline to Validate Your OPA Policies - Goran Osim & Karpagam Balan, Booz Allen Hamilton

Open Policy Agent is quickly becoming the de facto tool for applying configuration governance as code to your Kubernetes clusters. It can be challenging to understand how to optimize your workflows after finishing the getting started guide. This talk will focus on how to streamline the validation of your Rego policies using unit, mock, and integration testing to validate your OPA policy changes against your application manifests prior to applying these changes to production using OPA Gatekeeper. This talk will feature a live demo of using a combination of Rego unit tests, using your application’s Kubernetes manifests as input data to your OPA test suite, and using Terratest to perform end-to-end integration testing to apply your proposed policy changes to an ephemeral cluster orchestrated. Once validated, policy changes will be deployed using a GitOps strategy to a live cluster.

Speakers

Goran Osim

Senior Lead Technologist, Booz Allen Hamilton

Goran Osim is a Senior Lead Technologist at Booz Allen Hamilton focused developing enterprise scale multi-tenant Platform as a Service offerings. He enjoys mentoring new adopters of the cloud and Kubernetes to apply pragmatic DevOps principles.

Karpagam Balan

Senior Lead Technologist, Booz Allen Hamilton

DevOps All The Things Goran Osim Karpagam Balan pdf

Text Transcript BWYT 6877 txt

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

Whatever Can Go Wrong, Will Go Wrong – Rook/Ceph and Storage Failures - Sagy Volkov, Red Hat

Imagine running a 200-node Kubernetes cluster, and suddenly you lost a node or even a ToR switch. What is the state of your persistent storage that your application relies on? How can you make sure your storage is always available? How can you time and plan how long it takes for your storage to get back to 100% resiliency? In this presentation we’ll go over the basics of storage demands (RPO/RTO), How different types of replications in Ceph impact our recovery time, and how components failure such as drive, node or cluster determine how long we are at risk. We'll include a live demo of a Rook/Ceph recovery process from a failed component. We'll show what components of Rook are recreated, how Ceph behaves during components/pods recreation, and what is the impact on the application while these failures occur (In our case the application will be MariaDB).

Speakers

Sagy Volkov

Storage Performance Architect, Red Hat

Sagy Volkov is a former performance engineer in ScaleIO (initiated the performance engineering group and the ScaleIO enterprise advocates group) and architected the ScaleIO storage appliance reporting to the CTO/founder of ScaleIO. He is now with Red Hat as a storage performance instigator... Read More →

kubecon2020v whatever can go wrong pdf

Thursday November 19, 2020 4:50pm - 5:25pm EST
Intrado Virtual Event Platform

Storage

Content Experience Level Intermediate (Mid-level experience)

4:50pm EST

Diversity + Inclusion Workshop: Removing Barriers to Innovation in Becoming a Better Ally, Sponsored by Amazon Web Services

As we find ourselves at a pivotal time in history where racial equality has never been more important, join national and international speaker Christopher Lafayette as he shares best practices toward removing barriers to innovation.

Join us for a workshop on sharing, expressing and learning new ideas for companies and individuals toward becoming better allies for underserved communities in technology.

Speakers

Christopher Lafayette

Christopher Lafayette is an Emergent Technologist in medtech, virtual & augmented reality, ai, climate and applied sciences. He is a Silicon Valley national and international speaker. Thought Leader. Culture & Inclusion Advocate.

Text Transcript VBAJ 8763 txt

Thursday November 19, 2020 4:50pm - 5:40pm EST
Intrado Virtual Event Platform

Diversity + Inclusion Sessions

Content Experience Level Any (Anyone can attend, no experience required)

4:50pm EST

Tutorial: Say Goodbye to YAML Engineering with the CDK for Kubernetes - Nathan Taber & Elad Ben-Israel, Amazon

Applications running on Kubernetes are composed of dozens of resources maintained through an intricate collection of carefully maintained YAML files. As applications evolve and teams grow, these files become hard to manage and reuse — copying & pasting from previous projects is not the solution! The CDK for Kubernetes (cdk8s) is a new open-source software development framework for defining Kubernetes applications and resources using familiar programming languages. In this tutorial, the creators of cdk8s show you how to define your first cdk8s application, design a reusable construct and package it as a library, and generally say goodbye (and thank you very much) to writing in YAML. Bring your laptops set up with your favorite development environment in one of the supported languages (TypeScript, JavaScript, Python, Java, or .NET).

Speakers

Nathan Taber

Sr. Product Manager, Amazon

Nathan is a Sr. Product Manager on the AWS Kubernetes team. Nathan has been part of the launch teams for several AWS container services and currently helps to set the vision and direction for Amazon Elastic Kubernetes Service, AWS’ managed Kubernetes service. He works closely with... Read More →

Elad Ben-Israel

Principal Engineer, Amazon Web Services

Elad is a Principal Engineer at AWS and the technical lead of the AWS CDK project. Elad’s obsession is to enable developers to model high-level abstractions through software in every possible domain. The AWS CDK is one of the largest open-source projects released by AWS and its... Read More →

Text Transcript PURR 7251 txt

Thursday November 19, 2020 4:50pm - 6:15pm EST
Intrado Virtual Event Platform

Tutorials, Application & Development (includes Helm, Brigade, Telepresence, & Buildpacks)

Content Experience Level Intermediate (Mid-level experience)

5:00pm EST

Meet the Maintainer: Fluentd

Join the Fluentd Office Hours Here: https://zoom.us/webinar/register/WN_gb5itchWS06dSZV_UshXMA

Thursday November 19, 2020 5:00pm - 5:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 2

Meet the Maintainers

5:00pm EST

Meet the Maintainer: Helm

Join the Helm Office Hours Here: https://zoom.us/webinar/register/WN_UEBgwVmWRpSW5AgCJty_eg

Thursday November 19, 2020 5:00pm - 5:45pm EST
Virtual Project Pavilion - Project Office Hours via Zoom - Room 1

Meet the Maintainers

5:40pm EST

10 More Weird Ways to Blow Up Your Kubernetes - Jian Cheung & Joseph Kim, Airbnb

Over the past couple of years, Airbnb has standardized microservices, containerization, Kubernetes, and service mesh in our ecosystem, and have built tools around it to make our workloads more robust. We’ve seen great results with thousands of services now aboard Kubernetes, but it wasn’t without mistakes and painful/insightful learnings along the way. Airbnb is back at KubeCon again to share 10 more ways we’ve messed up in just the past year -- come discover what can go wrong as we share some of our experiences running on Kubernetes. Favorites include: - “What do you mean CPU Limits caused OOM-kills?” - “Half the pods are gone and this was broken for 7 days?” - “Yes, things do break when all the masters are down” And more!

Speakers

Jian Cheung

Software Engineer, Airbnb

Jian Cheung is a software engineer on the Compute Infrastructure Team at Airbnb. He works on supporting application and infrastructure service abstractions running on Kubernetes. He has previously spoken about [performance gotchas on Kubernetes](https://kccncna19.sched.com/event/UaXm/did-kubernetes-make-my-p95s-worse-jian-cheung-stephen-chan-airbnb... Read More →

Joseph Kim

Software Engineer, Airbnb

Joseph Kim is a software engineer on the Computer Infra team. As a new grad, he has been working on internal tooling around kubernetes. Though he has not given talks about kubernetes before, Joseph is excited to share his experiences so far working with it!

10 more weird ways to blow up your k8s airbnb pdf

Text Transcript TKVT 3502 txt

Thursday November 19, 2020 5:40pm - 6:15pm EST
Intrado Virtual Event Platform

101 Track

Content Experience Level Intermediate (Mid-level experience)

5:40pm EST

Standardizing Cloud Native Application Delivery Across Different Clouds - Hongchao Deng, Alibaba

At its heart, Kubernetes is an infrastructure platform: It abstracts at the infrastructure layer, but does little to resolve application layer dependencies. Today, a Kubernetes application cannot be defined and deployed uniformly across multiple platforms without modification, because its definitions depend on specific platform implementation. For example, one platform might choose Nginx as the ingress solution, while another might choose Traefik. To solve this problem, we need a standard application model to bridge the gap between application and infrastructure. This talk introduces Open Application Model (OAM) which enables developers to build and deploy k8s applications in a platform-agnostic way. We will look at how it approaches the problem and how it leverages cloud services and open source projects to facilitate standardized application development across multiple environments.

Speakers

Hongchao Deng

Staff Software Engineer, Alibaba Cloud

Hongchao is the founder and maintainer of the OAM and KubeVela projects. He focuses on cloud native application delivery as well as cluster management in Alibaba. Before that, Hongchao worked for CoreOS as the founder engineer of K8s Operator.

Standardizing Cloud Native Application Delivery Across Different Clouds pdf

Text Transcript HYJF 9199 txt

Thursday November 19, 2020 5:40pm - 6:15pm EST
Intrado Virtual Event Platform

Application + Development

Content Experience Level Intermediate (Mid-level experience)

5:40pm EST

Practice of Fine-grained Cgroups Resources Scheduling in Kubernetes - Xianlu Chen & Qingcan Wang, Alibaba

Alibaba supports resource scheduling for hundreds of thousands of nodes, millions of containers, and tens of thousands of applications. Many online services need to dynamically increase the resource limit during operation, and cannot accept the impact of restart.Other applications may require NUMA awareness, CPU Core binding, reduce data copy between CPU caches, and speed up data processing tasks.

We have developed a combined scheduling system based on Kubernetes Scheduler framework and Cgroups controller. The scheduler perceives cgroups level resources, such as numa, cpu core, memory limit, etc., and applies scheduler dynamic scheduling to specified nodes, while allowing certain Pod is bound to the specified cpu core. The cgroups controller can also dynamically adjust the pod resources limit without causing the Pod to restart.

Speakers

Qingcan Wang

Senior Engineer, Alibaba

Kubernetes member, currently serves in Alibaba Cloud and focus on large scale cluster management and scheduling. Love open source culture and participate in community activities.

Xianlu Chen

Senior Developer, Alibaba

Kubernetes & Docker contributor, Kubernetes & Argo & Helm group member, author of "Handwritten Docker" book. Working in Alibaba Cloud and focus on the layout of container technology and basic environment research. Loving open source culture and actively participate in the development... Read More →

Practice of Fine grained Cgroups Resources Scheduling in Kubernetes pdf

Text Transcript KSUV 6019 txt

Thursday November 19, 2020 5:40pm - 6:15pm EST
Intrado Virtual Event Platform

Customizing + Extending Kubernetes

5:40pm EST

Serverless for ML Inference on Kubernetes: Panacea or Folly? - Manasi Vartak, Verta Inc

As providers of an end-to-end MLOps platform, we find that autoscaling ML inference is a frequent customer ask. Recently, serverless computing has been touted as the panacea for elastic compute that can provide flexibility and lower operating costs. However, for ML, the need to precisely define hardware configurations and long warm-up times of certain ML models exacerbate the limitations of serverless. To provide the best solution to our customers, we have run extensive benchmarking experiments comparing the performance of serverless and traditional computing for inference workloads running on Kubernetes (with KubeFlow and with the ModelDB MLOps Toolkit). Our experiments have spanned a variety of model types, data modalities, hardware, and workloads. In this talk, we present the results from our benchmarking study and provide a guide to architect your own k8s-based ML inference system.

Speakers

Manasi Vartak

Founder & CEO. (Ph.D.), Verta Inc

Manasi Vartak is the founder and CEO of Verta, an MIT spinoff building an open-core MLOps platform for the full ML lifecycle. Verta grew out of Manasi's Ph.D. work at MIT on ModelDB, the first open-source model management system deployed at Fortune 500 companies. The Verta MLOps platform... Read More →

KubeCon Slides Final pdf

Text Transcript TSRL 7730 txt

Thursday November 19, 2020 5:40pm - 6:15pm EST
Intrado Virtual Event Platform

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)

5:40pm EST

Intro to Kubernetes Docs - Celeste Horgan, Linux Foundation; Brad Topol, IBM; Tim Bannister, The Scale Factory; & Irvi Aini, Spotify