Loading…
May 2-4, 2018 - Copenhagen, Denmark
Click Here For Information & Registration
View analytic

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Monday, April 30
 

09:00

FD.io Mini-Summit
View the Agenda

FD.io (Fast Data) is the first truly open data plane project focusing on data IO performance, scalability, efficiency, and programmable flexibility for networking and storage. FD.io provides a modular, extensible userspace IO services framework that supports rapid development of high-throughput low-latency resource-efficient IO services. The design of FD.io is hardware, kernel, and deployment (bare metal, VM, container) agnostic. FD.io has been integrated with Kubernetes, OpenStack Neutron, and OpenDaylight to provide a drop-in upgrade for all of your dataplane needs.

A key component of Fido is the Vector Packet Processing (VPP) library contributed at the foundation of the project. The commercial-ready code targetable to run on standard x86, ARM, and Power servers is already running in products on the market today. VPP when connected to DPDK for network I/O has shown to perform two orders of magnitude faster than currently available open source options implementing switching or routing workloads, reaffirming one of the core principles of FD.io: a focus on performance.

Join us at the FD.io Mini summit at KubeCon+CloudNativeCon in Copenhagen, to hear and learn from FD.io community experts who will be sharing information about the projects, use cases, capabilities, integration between FD.io and Kubernetes/ODL/OPNFV/Other communities, tools and many more exciting topics. This is a great opportunity for the KubeCon+CloudNativeCon attendees to share their thought leadership and innovations at one of the industry’s premier events.
 
Beverages and breaks will be provided.

Registration: Add this workshop on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training.

Monday April 30, 2018 09:00 - 17:30
B5-M1+3

09:30

Current Contributors Workshop
Additional Information: https://github.com/kubernetes/community/tree/master/events/2018/05-contributor-summit

Monday April 30, 2018 09:30 - 13:00
C1-M2

09:30

Doc Sprint
Additional Information: https://github.com/kubernetes/community/tree/master/events/2018/05-contributor-summit

Monday April 30, 2018 09:30 - 13:00
B4-M5

09:30

New Contributor Workshop
Additional Information: https://github.com/kubernetes/community/tree/master/events/2018/05-contributor-summit

Note: The New Contributor Workshop will be a single continuous training, rather than being divided into sessions as the Current Contributor track is. New contributors should plan to stay for the whole 3 hours. Outline here.

Monday April 30, 2018 09:30 - 13:00
C1-M1

09:45

Google Kubernetes Engine Hands-on Workshop
Taken your first steps with containers and Kubernetes, and ready to host real workloads on a proven, production ready cluster? Join the Google Cloud Platform team on a deep dive into Google Kubernetes Engine (GKE), the leading hosted Kubernetes platform, Generally available with an SLA since 2015. You will learn about running reliable services with GKE, publishing them securely with the Identity-Aware Proxy, and saving money using Preemptible VMs.

Note: Workshop assumes you have basic familiarity with Linux containers and Kubernetes concepts. Bring your own laptop.

To register for this Monday, April 30 workshop, click here.

Monday April 30, 2018 09:45 - 16:45
Google Copenhagen Sankt Petri Passage 5 1165 København, Denmark

10:00

Kubernetes the AWSome Way!
Kubernetes is a popular cloud-native open-source orchestration platform for container management, scaling and automated deployment. It includes a rich set of features such as service discovery, multi-tenancy, stateful containers, resource usage monitoring, and rolling updates. This workshop will get you started with operating a Kubernetes cluster on AWS. In addition, it also explains how to deploy applications to this cluster.
Some of the questions that will be covered in this workshop are:
- How do we create and manage a Kubernetes cluster?
- How an application is mapped to Kubernetes abstractions?
- How does service discovery work between different applications?
- How to scale, generate logs and monitor an application?
- How to create a CI/CD pipeline?
- How do we integrate with tools such as Maven?
- How applications can store configuration data and secrets?
- How to use IAM for authentication and authorization?

In this code-driven workshop, you will learn how to package, deploy, scale and monitor your application using Kubernetes and the AWS cloud. Be sure to come with a valid AWS account that you have created an EC2 Instance in.

Registration: Add this training on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training.

Monday April 30, 2018 10:00 - 14:00
B5-M2+4

14:00

Registration
Monday April 30, 2018 14:00 - 17:00
Main Lobby

14:00

SIG Updates
Additional Information: https://github.com/kubernetes/community/tree/master/events/2018/05-contributor-summit

Monday April 30, 2018 14:00 - 17:30
C1-M1
 
Tuesday, May 1
 

07:30

Registration
Tuesday May 1, 2018 07:30 - 18:00
Main Lobby

08:00

Kubernetes Contributor Summit
8:00 – Breakfast
9:00 – Welcome and Intro
9:30 – New Contributor Workshop (First-time contributors welcome)
9:30 – Current Contributor Workshop + Docs Sprint (co-located)
13:00 – Lunch
14:00 – SIG Updates
14:30 – Happy Hour

Registration Fee: Free to all new and current contributors!
What: 
The Contributor Summit provides an avenue for new and current Kubernetes contributors to connect face to face. Existing contributors will have discussions about future community development and community governance endeavors, and new members will learn the processes and standards for Kubernetes contribution.
In some sense, the summit is a real-life extension of the community meetings and SIG meetings. There are three explicit goals:
  • Cross-SIG communication and announcements
  • Teach how to contribute to Kubernetes
  • Learning and development of current contributors
How to register: Sign CLA (new contributors) and fill out this Google Form for registration
For all updated details, please see the github page

Speakers
avatar for Josh Berkus

Josh Berkus

Kubernetes Community Lead, Red Hat Inc.
Josh Berkus works with the Kubernetes community on behalf of Red Hat Inc. He contributes to sig-release and sig-contribex primarily, and organizes events. In his spare time, he likes to deploy databases, particularly PostgreSQL, on top of Kubernetes and OpenShift. Josh lives in P... Read More →
avatar for Jorge Castro

Jorge Castro

Community Manager, Heptio Inc.
Jorge works at Heptio Inc. as a dedicated community manager for Kubernetes. You can find him in SIG Contributor Experience, where he is currently working on a slew of projects. If you're looking to get started contributing please introduce yourself!
avatar for Paris Pittman

Paris Pittman

Developer Relations Program Manager, Google
Paris is a Developer Relations Program Manager on the Google Cloud Open Source Strategy team focusing on Kubernetes Community. She has 13 years of professional experience in attracting and retaining engineering talent for organizations and open source projects. She has also been... Read More →


Tuesday May 1, 2018 08:00 - 17:30
C1-M2

08:45

Google Kubernetes Engine Hands-on Workshop
Taken your first steps with containers and Kubernetes, and ready to host real workloads on a proven, production ready cluster? Join the Google Cloud Platform team on a deep dive into Google Kubernetes Engine (GKE), the leading hosted Kubernetes platform, Generally available with an SLA since 2015. You will learn about running reliable services with GKE, publishing them securely with the Identity-Aware Proxy, and saving money using Preemptible VMs.

Note: Workshop assumes you have basic familiarity with Linux containers and Kubernetes concepts. Bring your own laptop.

Registration: Add this workshop on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training.

Tuesday May 1, 2018 08:45 - 16:15
C1-M5

09:00

Containers, Kubernetes and OpenShift Hands-on Training: Morning Workshop
Hands-on Training Course Outline: Introduction to Containers, Kubernetes and OpenShift
Logging in and project creation
Creating images, deploying images from public registries
Scaling, routes, and logging
Role based access control
Working with Images (S2I)
Adding databases
Application health and performing code changes
Application Templates (RHOAR)Pre-registration is required
Click here for further details

Registration: Add this training on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training.

Tuesday May 1, 2018 09:00 - 13:00
C1-M3

09:00

Cloud Foundry Day - sponsored by Dell EMC
KubeCon + CloudNativeCon is the place for the cloud-native community, and Cloud Foundry is synonymous with cloud-native. From startups to the Fortune 500, Cloud Foundry is used by enterprises around the globe to automate, scale and manage cloud apps throughout their lifecycle. Cloud Foundry Day at KubeCon + CloudNativeCon Europe is an educational event designed for the best minds of the cloud-native world attending KubeCon + CloudNativeCon. To register for Cloud Foundry Day, add it on during your KubeCon + CloudNativeCon registration.

Learn more here.
View the schedule.

Registration: Add this activity on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration.

Tuesday May 1, 2018 09:00 - 17:00
B3-M6+8

09:00

Container Solutions Production Grade Kubernetes
Registration Fee: $499
Who should attend: This workshop is for developers who are looking to learn (more) about Kubernetes.
 
Kubernetes is fast becoming one of the leading platforms for running Cloud Native applications. There are many resources out there to get you started using Kubernetes, but what happens when you actually want to take things into production?

In this hands-on workshop, we will cover the fundamental concepts and features of Kubernetes, and then move beyond this to set up a production ready Kubernetes cluster. We will cover the best practices as well as some common anti-patterns for deploying and running your applications on Kubernetes.

Topics Covered:
Basic Kubernetes concepts
Readiness / Liveness Probes
Advanced deployments (Canary, A/B, Blue/Green)
Auto Scaling
High Availability
Monitoring
RBAC Multi-master cluster

Registration: Add this workshop on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training.

Tuesday May 1, 2018 09:00 - 17:00
Meeting Room 5

09:00

Kubernetes Hands-on Workshop with Heptio
In this one-day hands-on course you will deploy Kubernetes and containers to build out a distributed, highly available, fault-tolerant application architecture. This course is delivered in an intimate setting with a ~10:1 student to teacher ratio, so you can get the help you need. Throughout the course, hands-on exercises reinforce the topics being discussed.

Registration: Add this training on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training or email us at events {at} cncf {dot} io.

Tuesday May 1, 2018 09:00 - 17:00
B5-M1+3

09:00

Your Path to Production-Ready Kubernetes
Registration Fee: €100. This event is currently full.  Note you must be registered for KubeCon + CloudNativeCon Europe to participate.
 
Weaveworks has been running Kubernetes in production for over two years. The Weaveworks Engineering and Developer Experience teams will be running a full-day workshop, sharing their expertise as users and contributors of Kubernetes and Prometheus, as well as followers of GitOps (operations by pull request) practices. The AWS Solution Architects Team will cover key topics and best practices around operating Kubernetes at Scale and in production.

Join this hands-on workshop in collaboration with AWS to learn how to define “production-ready” Kubernetes and the implications when developing, operating, and scaling your Kubernetes microservices.

Topics include:
  • Developing and operating your Kubernetes microservices at scale
  • DevOps best practices and the movement towards a “GitOps” approach
  • How to build with Kubernetes for production: caring for your apps, CI/CD best practices, and using the right metrics, monitoring tools, and automated alerts
  • Operating Kubernetes: Upgrading and managing Kubernetes, using incident response, and security best practices
Lunch, refreshments, and snacks will be provided.

Hosted by:

Stefan Prodan, a Developer Experience engineer at Weaveworks. Previously he worked as a software architect and a DevOps consultant, helping companies embrace DevOps and the SRE movement. Stefan has over 15 years of experience with software development and he enjoys programming in Go and writing about distributed systems.

Omar Lari, Solutions Architect at AWS, helps partners develop products and services to help customers run containers workloads on AWS. He has over 15 years of experience helping companies automate their datacenter operations and release management processes.


Tuesday May 1, 2018 09:00 - 17:00
Meeting Room 20

09:00

OpenSDS Mini-Summit
OpenSDS Mini-Summit Copenhagen is an educational event co-located event at KubeCon + CloudNativeCon Europe 2018. TheMini-Summitt is the place where business leaders, architects, technologists, and developers, gather to learn, network, share ideas, and discover solutions to storage challenges in the cloud native era. The Linux Foundation OpenSDS Project is supported by global enterprises - Intel,  IBM, NTT Communications, Vodafone, Toyota, Yahoo Japan, Dell-EMC, Western Digital, Hitachi, and Huawei. The OpenSDS community is developing an open software-defined storage control framework with standardized API’s for enterprise, commodity, and cloud storage that support both traditional, as well as cloud native environments.
 
OpenSDS Mini-Summit Agenda

09:00-09:30         Breakfast Buffet
09:30-09:50         Welcome and Introduction – Steven Tan, OpenSDS TSC Chair
09:50-10:00         Guest SpeakerDan Kohn, Executive Director, Cloud Native Computing Foundation
10:00-10:45         OpenSDS Aruba Release For OpenStack & Containers – Rakesh Jain, OpenSDS TSC Co-Chair, IBM
10:45-11:15         Our Cloud Storage Design and Motivation for OpenSDS – Kei Kusunoki, NTT Communications
11:15-12:00         OpenSDS 101 - Introduction and Contribution Primer - Sean McGinnis, Huawei
12:00-13:30         Lunch Break (not provided)
13:30-14:00         What Is The Container Storage Interface (CSI) – Saad Ali, Google
14:00-14:30         Reliable Storage for HA, DR, Clouds and Containers – Philip Reisner, Linbit
14:30-15:15         Managing and Protecting Persistent Volumes For Kubernetes –  Xing Yang, Huawei
15:15-15:30         Coffee Break
15:30-16:00         Storage Design & Operations for Hyperscale Environment – Yusuke Sato, Yahoo Japan
16:00-16:30         OpenSDS Interplay – Howard Huang, Huawei 
16:30-17:15         Storage Intelligence For The Data Center – Allen Samuels, Western Digital
17:15-17:45         The KPN Managed Hybrid Cloud DataExchange – Wim Jacobs, KPN
17:45-18:00         Closing – OpenSDS TSC
18:00-20:00         Happy Hour with Bites and Beer


Registration: Add this training on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the workshop.

Tuesday May 1, 2018 09:00 - 18:00
Meeting Room 6

09:30

Docs Sprint
Tuesday May 1, 2018 09:30 - 14:00
B4-M5

10:00

Kubernetes the AWSome Way!
Kubernetes is a popular cloud-native open-source orchestration platform for container management, scaling and automated deployment. It includes a rich set of features such as service discovery, multi-tenancy, stateful containers, resource usage monitoring, and rolling updates. This workshop will get you started with operating a Kubernetes cluster on AWS. In addition, it also explains how to deploy applications to this cluster.
Some of the questions that will be covered in this workshop are:
- How do we create and manage a Kubernetes cluster?
- How an application is mapped to Kubernetes abstractions?
- How does service discovery work between different applications?
- How to scale, generate logs and monitor an application?
- How to create a CI/CD pipeline?
- How do we integrate with tools such as Maven?
- How applications can store configuration data and secrets?
- How to use IAM for authentication and authorization?

In this code-driven workshop, you will learn how to package, deploy, scale and monitor your application using Kubernetes and the AWS cloud. Be sure to come with a valid AWS account that you have created an EC2 Instance in.

Registration: Add this training on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training or email us at events {at} cncf {dot} io.

Tuesday May 1, 2018 10:00 - 14:00
B5-M2+4

10:00

Managing Data in Cloud Native and Data Science: A Hackathon presented by Dotmesh and Red Hat
It’s becoming increasingly important to have a clear strategy for data management in containerized cloud native and data science environments. Learning about new techniques and tooling can help you to stay in control as the challenges become more complex.

This free, full-day session will give you the chance to discuss and use new technologies that offer a data management layer to complement your current cloud native and data science tooling. You will leave with an understanding of how this new approach can increase the usability and speed of your stack.

The day will kick off with talks from Dotmesh and Redhat to bring you up to speed with the issues at hand. We’ll then split into collaborative, non-competitive working groups based around mutual interests. We will provide some suggested topics or you can think of your own.

Attendees are welcome to drop in at their leisure or stay for the entire day.  A working knowledge of coding, Docker, and either Docker Compose or Kubernetes would be useful but everyone is welcome to join. You will also need to bring your own laptop.

Lunch will be provided along with refreshments during the morning and afternoon breaks.

Speakers
Luke Marsden, CEO at Dotmesh – “Introduction to Dotmesh”
Red Hat (Speaker to be confirmed)

Registration: Add this event to your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training.

Speakers
avatar for Luke Marsden

Luke Marsden

CEO, dotmesh
Luke is the CEO and Founder at Dotmesh. He is also a Kubernetes SIG lead for SIG-cluster-lifecycle, where he was involved in developing the first version of kubeadm. | | He previously worked on Developer Experience at Weaveworks, where he spoke and taught at conferences, meetups... Read More →


Tuesday May 1, 2018 10:00 - 17:00
B4-M1+3

13:00

Container Troubleshooting Workshop with Sysdig
Join Sysdig for a 4-hour use-case driven training session on container visibility, troubleshooting and run-time security monitoring with the Sysdig open source tools (Sysdig, Sysdig Inspect, and Falco) and learn how containers work under the hood.

Agenda:
  • Visibility and troubleshooting (~1h): Learn how to debug a 502 error on a containerized LB with HAproxy, a Python webapp crashing after working for 5 minutes, and where did you configure wrong credentials in a microservices app?
  • Analyzing performance and bottlenecks (~1h): Compare for yourself the performance of different web servers running in containers, use system call tracing to find the bottleneck in your application or learn how to use spectrograms (flame graphs) to visualize system call performance.
  • Debugging Kubernetes (~1h): Dive into Kubernetes internals using reverse engineering: why that Kubernetes service is valid but doesn't work? How does service resolution work? Or how Kubernetes instructs Docker Engine.
  • Security run-time monitoring and forensics (~1h): Last but not least, all these previous lessons can also be applied for security, not only doing forensics on an attack attempt. Sysdig Falco can alert on containers with anomalous behavior.

Speakers: Michael Ducy & Jorge Salamero Sanz

Bios:
Michael Ducy currently works as Director of Community & Evangelism for Sysdig where he is responsible for growing adoption of Sysdig’s open source solutions. Previously, Michael worked at Chef where we held a variety of roles helping customers and community members leverage Chef’s open source and paid solutions, as well as implement the ideas and practices of DevOps. Michael has also worked in a variety of roles in his career including Cloud Architecture, Systems Engineering, and Performance Engineering. Michael holds a Masters in Computer Science from the University of Chicago and an MBA from The Ohio State University.

@bencerillo
Jorge enjoys monitoring all the things, from his container clusters to writing sensors plugins and DIY projects with Raspberry PI and ESP8266.

Currently he is part of the Sysdig team, and in the past was one of the promoters of HumanOps. When he is away from computers, you will find him walking with his 2 dogs across the countryside or driving his car through a twisted road.

Registration: Add this workshop to your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add or email us at events {at} cncf {dot} io.

Tuesday May 1, 2018 13:00 - 17:00
B1-M1

13:00

Docker and Kubernetes Workshop
The latest versions of Docker for Mac and Windows, as well as Docker Enterprise Edition now incorporate Kubernetes. Come to this workshop and learn how easy it is to use Kubernetes with the Docker platform.

In this workshop, we’ll cover: 
  • Working with Kubernetes locally on a Mac or Windows machine
  • Using Docker EE for secure application deployment
  • Deploying an app on Kubernetes in Docker EE
  • And finally we’ll connect the two, using client bundles to authorize a you to use your desktop to manage the EE cluster
For the desktop portion, you need a Mac or a Windows 10 pro system with Docker for Mac or Docker for Windows. For the rest you’ll just need browser.

Registration: Request a registration code now by filling out the form and a Docker representative will respond.  Add this to your KubeCon + CloudNativeCon registration with the code provided.

Tuesday May 1, 2018 13:00 - 17:00
Meeting Room 17

13:00

Hands-on with Istio on Kubernetes
Istio is a new open platform to connect, manage, and secure microservices jointly launched by IBM, Google, and Lyft. This session will provide a technical overview of the Istio project and allow users to gain hands-on experience of various Istio features such as ingress, traffic management, policy enforcement, telemetry, and security. Users will install Istio on Kubernetes clusters and learn how Istio can help users to solve common challenges with microservices deployed within Kubernetes.

Registration: Add this workshop to your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add.

Tuesday May 1, 2018 13:00 - 17:00
B4-M2+4

13:00

Kubernetes Workshop with VMware
This workshop led by VMware will provide an overview and walkthrough of containers and Kubernetes, with key concepts, architecture, and how Kubernetes is used in enterprise environments. The session will include running Kubernetes in enterprise use case scenarios and how enterprises can operationalize Kubernetes addressing day 1 and day 2 needs.  Join us for a live interactive workshop where our experts will cover the following topics:
•        Overview of Kubernetes Architecture
•        Kubernetes Deployment Walkthrough
•        Enterprise use case scenarios and demos
•        Operationalizing Kubernetes for Day 1 and Day 2
•        Monitoring and Troubleshooting Kubernetes
•        Kubernetes Networking and Service Mesh for inter-service communication

The workshop includes a reception focused on service mesh right afterwards.

Presenters:
Michael West
Michael is a Technical Product Manager at VMware, focused on container technologies such as Docker, Kubernetes, Harbor, and Lightwave. He is a frequent speaker at industry conferences, and VMware events such as VMworld and VMware Users Groups (VMUG). When not ruining his eyesight while staring at small font CLIs, he enjoys cycling and stand up paddle boarding.

Tom Schwaller
Tom is a Technical Product Manager at VMware. Having been involved with IT operations for two decades, Tom specializes in technologies like Kubernetes, vSphere Integrated Containers, and VMware Integrated OpenStack. He has a strong container networking background from NSX. He is described as an open source person who likes comics, Quantum Computing and Geometric Algebra.

Fawad Khaliq
Fawad is developer at VMware working on service mesh and microservices. He has worked in the networking and distributed systems domain for several years and has been a contributor to various OSS projects like OpenStack, Kubernetes, and Docker. His current work is focused on Istio, Envoy, and Linkerd.


Registration: Add this training on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training or email us at events {at} cncf {dot} io.

Tuesday May 1, 2018 13:00 - 17:00
C1-M4

13:30

Containers, Kubernetes and OpenShift Hands-on Training: Afternoon Workshop
Hands-on Training Course Outline: Introduction to Containers, Kubernetes and OpenShift
Logging in and project creation
Creating images, deploying images from public registries
Scaling, routes, and logging
Role based access controlWorking with Images (S2I)
Adding databasesApplication health and performing code changes
Application Templates (RHOAR)

Pre-registration is required
External References: http://openshiftgathering.com/openshiftgathering/copenhagen

Registration: Add this training on your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training or email us at events {at} cncf {dot} io.

Tuesday May 1, 2018 13:30 - 17:30
C1-M3

17:00

Lightning Talk: Chaos Engineering In Practice - Paul Jones, Capgemini UK (Intermediate Skill Level)
Chaos Engineering facilitates experimental fault injection into our systems and infrastructure to identify systemic weaknesses and ensure resilience and confidence in our systems.

We will discuss the principles of Chaos Engineering, as well as practical examples of how open source tools can enable us to cause, learn and benefit from the ensuing chaos, and how we can use automation to continuously drive orchestration and analysis.

Speakers
avatar for Paul Jones

Paul Jones

Software Engineer, Capgemini UK
Paul is a Senior Software Engineer with Capgemini, with experience in cloud native tooling, container orchestration and infrastructure as code deploying AWS and hybrid clouds.


Tuesday May 1, 2018 17:00 - 17:05
Auditorium 10-12

17:05

Lightning Talk: Not One Size Fits All, How to Size Kubernetes Clusters - Jeff Sloyer, IBM (Any Skill Level) (Slides Attached)
Sizing Kubernetes clusters, at best, can be compared to throwing darts at a dartboard, in the dark. However our enterprise-tested rules and tips can shine a little light on the dartboard and help you have enough capacity for your apps. In this lightning talk, we will go over some tips to help you throw a bullseye for sizing your clusters. A unique demo will accompany this talk. Don't throw darts in the dark -- Kube at scale is possible.

Speakers
avatar for Jeff Sloyer

Jeff Sloyer

UX Dev Lead - IBM Kubernetes Service, IBM
Jeff is currently one of the dev leads for the IBM Kubernetes Service. Jeff is in charge of the core parts of the container service and lives and breathes Kubernetes everyday. In Jeff’s previous role he was a Developer Advocate for IBM. Jeff has spoken at many events in the pa... Read More →



Tuesday May 1, 2018 17:05 - 17:10
Auditorium 10-12

17:10

Lightning Talk: Why you Should Really Pay Attention to K8S Security Best Practices - Benjy Portnoy, Aqua Security (Intermediate Skill Level)
Some time ago, the CIS published a security benchmark for Kubernetes deployments. It's easy to regard this as a checkbox process, but what can actually happen if you neglect to follow only a few of its recommendations?
In this lightning talk, I will demonstrate how Kubernetes configuration issues that may seem trivial make it possible for an attacker to exfiltrate data from a production environment.

Speakers
avatar for Benjy Portnoy

Benjy Portnoy

Director of DevSecOps, Aqua Security
Benjy is a seasoned cyber security professional with over 15 years experience in consulting, designing, and implementing strategic information security projects for organizations across EMEA. He is currently the director of DevSecOps at Aqua Security, helping enterprises streaml... Read More →


Tuesday May 1, 2018 17:10 - 17:15
Auditorium 10-12

17:15

Lightning Talk: Schedule the Scaling of Your Kubernetes Resources Using kube-start-stop - Lili Cosic, Weaveworks (Beginner Skill Level) (Slides Attached)
Almost every Kubernetes cluster out there has unwanted resources running 24/7 even if those resources are only used within the work week. Cloud providers have schedulers to solve that problem for VMs, with them you can easily schedule your instances. But in the Kubernetes world your resources are scattered around different instances and machines. In this lighting talk you will learn all about how to easily scale your Kubernetes resources on a schedule, using the open source tool k8s-start-stop.

Speakers
avatar for Lili Cosic

Lili Cosic

Software Developer, Weaveworks
Lili is a Software Developer at Weaveworks. Previously she was at Kinvolk working on the Habitat Operator, a controller to easily create and manage Habitat Services on Kubernetes and the OSB broker for Habitat. In her free time she enjoys experimenting with Kubernetes and distrib... Read More →



Tuesday May 1, 2018 17:15 - 17:20
Auditorium 10-12

17:20

Lightning Talk: A Desktop GUI for your First Kubernetes Deployment - Alessandro Pilotti, Cloudbase Solutions (Beginner Skill Level)
Installing Kubernetes with a GUI? What? In the age of cloud APIs and command line tools?

Yes. A simple and clear user interface makes the difference between a pleasant learning experience and a frustrating one. There's already a lot to learn in Kubernetes without creating entry barriers due to learning obscure command line commands just to get started.

In this session we'll introduce and demo "Kubinstaller" a simple yet powerful open source desktop app for Windows, Macos and Linux that can deploy single and multi-node clusters on Linux and Windows hosts with just a few clicks!

Speakers
avatar for Alessandro Pilotti

Alessandro Pilotti

CEO, Cloudbase Solutions
Alessandro Pilotti is the CEO of Cloudbase Solutions, a company focused on cloud computing interoperability, contributing in particular the OpenStack Windows and Hyper-V components and the Open vSwitch support for Hyper-V and Windows Containers. Alessandro is a Microsoft Cloud an... Read More →



Tuesday May 1, 2018 17:20 - 17:25
Auditorium 10-12

17:35

Lightning Talk: Kubernetes is Blowing Up - Ron Miller, TechCrunch (Any Skill Level) (Slides Attached)
This talk will discuss how in a very short time, Kubernetes and cloud native computing has grown a economic ecosystem in the wake of  the open source project momentum.

Speakers
avatar for Ronald S Miller

Ronald S Miller

journalist, TechCrunch
I'm a journalist at TechCrunch. I cover the enterprise including the cloud, open source and Kubernetes.



Tuesday May 1, 2018 17:35 - 17:40
Auditorium 10-12

17:40

Lightning Talk: Scaling Distributed Deep Learning with Service Discovery: How CoreDNS Helps Distributed TensorFlow Tasks - Yong Tang, Infoblox Inc. (Intermediate Skill Level) (Slides Attached)
Training models with modern deep learning architecture is often computationally intensive and requires an efficient distributed system at scale. Such systems in distributed machine learning community often have special requirements and may involve additional efforts.

This talk discusses the usage of CoreDNS for service discovery on distributed TensorFlow clusters for resolving deep learning problems.

While CoreDNS has been widely used for service discovery in Kubernetes, its unique plugin based design allows CoreDNS to be easily extended and deployed in non-traditional distributed systems as well.

Deployed on cloud (AWS), our distributed TensorFlow clusters have been greatly helped by CoreDNS for robustness against partial node failures. The deployment has also been simplified for non-DevOps (e.g., machine learning researchers) to launch and execute deep learning tasks at great ease.

Speakers
YT

Yong Tang

Principal Software Engineer, Infoblox Inc.
Yong Tang is a Principal Software Engineer at CTO Office in Infoblox Inc. He works on CoreDNS at Infoblox for the open source community, with a focus on service discovery and Kubernetes integration. He also works on different machine learning projects in Infoblox. Yong Tang recei... Read More →



Tuesday May 1, 2018 17:40 - 17:45
Auditorium 10-12

17:45

Lightning Talk: Tips for Operating Kubernetes with OpenStack Cloud Provider - Yang Yu & Yifeng Xiao, VMware (Beginner Skill Level) (Slides Attached)
OpenStack, one of popular Kubernetes cloud providers, consists of diverse components and is highly configurable, this proposal introduces some tips and tuning configurations to improve the performance and stability to operate Kubernetes in a OpenStack cloud.

Problems which you never see in a small Kubernetes cluster come up as you expand it to a certain scale. Not only tons of logs are caused by polling data from each Kubernetes node, thousands of API calls also causes high CPU usage of OpenStack control nodes. OpenStack Cinder provides a natural fit to support Persistent Volume. But due to volume attaching is an interaction between Nova and Cinder, it leads to issues under large scale. Scaling out Kubernetes degrades service performance drastically because all nodes are inside OpenStack loadbalancer member pools, enabling health monitor or not can make a difference in performance.

Speakers
avatar for Yifeng Xiao

Yifeng Xiao

Software Engineer, VMware
Yifeng Xiao specializes in software automation testing, from continuous integration to system testing. He is involved in scale testing and performance testing of multiple VMware big data systems and cloud platforms, including Hadoop/HBase, OpenStack and Kubernetes.
avatar for Yang Yu

Yang Yu

Senior Software Engineer, VMware
Yang Yu is a software engineer at VMware, working on Kubernetes CNI plugin for VMware NSX. She specializes in software defined network and has previously worked on OpenStack neutron for more than 4 years. She is one of founding members of neutron driver for VMware NSX. She has al... Read More →



Tuesday May 1, 2018 17:45 - 17:50
Auditorium 10-12

17:50

Lightning Talk: Extending Kubernetes with gRPC - Vladimir Vivien, VMware (Intermediate Skill Level)
The Container Storage Interface is the latest (at the time of this writing) sub-system in Kubernetes that adopted gRPC as an extensibility mechanism. Others include the Device Plugin and the API for Key Management Service (KMS). As these implementations become successful, gRPC is poised to become an integral part of Kubernetes.

This talk explores how and why gRPC is being is being used as a plugin system to provide Kubernetes expansion points without changing the API server. We will look at CSI and other systems that uses gRPC and the design philosophy that is making this possible.

Speakers
avatar for Vladimir Vivien

Vladimir Vivien

Software Engineer, VMware
Vladimir Vivien is a software engineer and author of the book "Learning Go Programming". Currently he works at VMware in the Cloud Native Application group where he spends time promoting and contributing to open source including Kubernetes.


Tuesday May 1, 2018 17:50 - 17:55
Auditorium 10-12

17:55

Lightning Talk: TSDB: The Engine behind Prometheus - Goutham Veeramachaneni, IIT Hyderabad (Beginner Skill Level) (Slides Attached)
Prometheus 2.0 release came with a lot of features and improvements and a big contributor to that is TSDB, the new storage engine it came with. TSDB is also a Golang library this means anyone looking for a timeseries engine can now use TSDB.

This talk will introduce TSDB, its high-level usage and guarantees and will show people how, with a little Go knowledge, they can introduce a solid time-series database into their stack.

Speakers
avatar for Goutham Veeramanchaneni

Goutham Veeramanchaneni

Student, IIT Hyderabad
Goutham is a student and a developer from India. His enthusiasm for Ops got him an internship on the infra team of a large company where he worked on Production infrastructure and built the company's monitoring system on top of Prometheus. That was his first encounter with produ... Read More →



Tuesday May 1, 2018 17:55 - 18:00
Auditorium 10-12

18:00

Red Hat OpenShift Commons Machine Learning Reception
Join the OpenShift Commons and ML Community for Beers & Nibbles
  • Red Hat/CoreOS Update with Brandon Philips
  • Panel: Machine Learning on OpenShift with ML Lightning Talks from Red Hat, Google, MSFT and others.
  • Red Hat Road Map to Kubecon/EU with Diane Mueller

Registration: Add this on to your KubeCon + CloudNativeCon Europe conference registration here. If you are already registered for KubeCon + CloudNativeCon Europe 2018, modify your registration to add the training.

Additional information is available here.  

Tuesday May 1, 2018 18:00 - 20:00
C1-M3
  • Any Skill Level Any

18:10

Lightning Talk: I Got your RBAC - kube-rbac-proxy - Frederic Branczyk, CoreOS (Any Skill Level) (Slides Attached)
Kubernetes RBAC is great for authorizing requests to the Kubernetes API, and is a vital component for a secure Kubernetes cluster. Wouldn't it be great to use RBAC to authorize requests to your applications as well?

In this lighting talk, Frederic will showcase kube-rbac-proxy, the tool he developed just for this use case. While operating his own Kubernetes cluster, the need came about to protect applications that don't have native authentication and authorization means to utilize the methods available by Kubernetes.

Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Software Engineer, CoreOS
Frederic is an engineer at CoreOS contributing to Prometheus and Kubernetes to build state of the art modern infrastructure and monitoring tools. He discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used machine learning to detect... Read More →



Tuesday May 1, 2018 18:10 - 18:15
Auditorium 10-12

18:15

Lightning Talk: The State Of FaaS on Kubernetes - Michael Hausenblas, Red Hat (Beginner Skill Level) (Slides Attached)
FaaS (Function-as-a-Service) or serverless as some call it is a promising compute paradigm suitable for event-driven scenarios. In this session we review the current open source offerings for FaaS on Kubernetes (Apache Open Whisk, kubeless, OpenFaaS, etc.) and address pros/cons both on an architectural level as well as from a UX point of view. We will also discuss the topic FaaS vs. containers from a developers as well as an operators perspective.

Speakers
avatar for Michael Hausenblas

Michael Hausenblas

Developer Advocate, Red Hat
Michael is a Developer Advocate for Go, Kubernetes, and OpenShift at Red Hat where he helps appops to build and operate distributed services. His background is in large-scale data processing and container orchestration and he's experienced in advocacy and standardization at W3C a... Read More →



Tuesday May 1, 2018 18:15 - 18:20
Auditorium 10-12

18:20

Lightning Talk: Extending Istio Service Mesh with Envoy v2 APIs for Stateless and Stateful Services - Dmitri Chtchourov & Tim Swanson, Cisco Systems, Inc (Intermediate Skill Level) (Slides Attached)
Envoy v2 APIs have many new features for both stateless and stateful service balancing and discovery. This talk will focus on how to run Envoy v2 API with Kubernetes and Istio, in order to extend the service mesh to take advantage of new functionality in Kubernetes, Istio and Envoy to make tracing and scaling management more productive in real-world deployments.
Talk will include both overview and demo with code examples.

Speakers
avatar for Dmitri Chtchourov

Dmitri Chtchourov

Innovation Architect, Cisco Systems, Inc
Dmitri has worked as a member of Cisco Cloud CTO for the last 5 years, where was responsible for the Big Data strategy as well as distributed container architecture technologies. He was one of the co-founders of the mantl.io project. | | Prior to this, he's ran BI and Analytic... Read More →
TS

Tim Swanson

Technical Leader--Cloud & Virtualization Group, Cisco Systems, Inc.
Tim is a technical lead engineer at Cisco responsible for developing cloud infrastructure and solutions. As part of the Cloud CTO Office, Tim currently focuses on contributing to the Kubernetes & Istio communities. Previously, Tim was an active contributor to OpenStack. Prior t... Read More →



Tuesday May 1, 2018 18:20 - 18:25
Auditorium 10-12

18:25

Lightning Talk: Istio by Example - Josef Adersberger, QAware (Beginner Skill Level) (Slides Attached)
Istio is the cool new kid on the service mesh block: it can be deployed without the need for any change on the microservice-side and enhances their communication paths with encryption, resiliency, identity and access management, observability with metrics and traces and policy enforcement. In this lightning talk I'll talk you through an Istio sample application incorporating all major features. The sample will be released on github and will also run on minikube.

Speakers
avatar for Josef Adersberger

Josef Adersberger

CTO and Co-Founder, QAware
Josef Adersberger is #cloudnativenerd, CNCF member, and co-founder & CTO of QAware, an independent cloud native software manufacturer that has been repeatedly awarded Best IT Workplace in Germany. He studied computer science in Rosenheim and Munich and holds a doctoral degree in... Read More →



Tuesday May 1, 2018 18:25 - 18:30
Auditorium 10-12

18:30

Lightning Talk: What I Wish I’d Known about Fluentd with Kubernetes - Bryan Boreham, Weaveworks (Beginner Skill Level) (Slides Attached)
Fluentd is really powerful, but configuring it for best performance and getting the most out of it is not easy. Bryan spent several weeks tuning Fluentd on a production Kubernetes cluster, uploading to Loggly.
Highlights include: installing as a daemonset, using buffered writes, adding a syslog reader, debugging your config, and security considerations.

Speakers
avatar for Bryan Boreham

Bryan Boreham

Director of Engineering, Weaveworks
Bryan is Director of Engineering at Weaveworks, delivering deployment, observability and monitoring for containers and microservices. | | Previously, Bryan has worked on many kinds of systems including financial trading, factory control and bakery. Outside of work he is a fat... Read More →



Tuesday May 1, 2018 18:30 - 18:35
Auditorium 10-12

18:35

Over-engineering My Home with Kubernetes - Matthias Grüter, Spotify (Any Skill Level) (Slides Attached)
Home automation is increasingly popular. However, the one thing that is often overlooked with current solutions is their complete lack of attention to high availability: Typically a failure of your automation hub quickly renders an elegant smart home into an ordinary dumb home.

In the pursuit of building a reliable smart home, we will investigate ways to make the open-source automation platform "home-assistant" highly available by applying Kubernetes to a not quite standard problem. Some might call it over-engineering, others might call it thorough engineering. In any case, by the end of this talk, we will have explored a more exotic use case for Kubernetes.

Speakers
avatar for Matthias Grüter

Matthias Grüter

Engineering Manager, Spotify
Matthias Grüter is an engineer manager on Spotify's Infrastructure and Operations team. His team builds and operates tools and the core platform for the rest of Spotify. | | Matthias has led, coached and managed engineers for over 7 years. He strongly believes in the value of s... Read More →



Tuesday May 1, 2018 18:35 - 18:40
Auditorium 10-12

19:00

EmpowerHER Evening Event
Join other women attending KubeCon + CloudNativeCon Europe for sparkling conversation and dazzling cocktails. Attendees will have an opportunity to get to know one another and network with other women in the tech industry from around the globe. Conversation during the evening event happy hour will include adoption, usability and life-hacks of distributed systems and containers, app development and current events in Kubernetes and other cloud native technologies, ways to increase inclusivity in our fast-growing ecosystem, and how to get involved with different Cloud Native projects. Space is limited and registration is required.

Thank you to our sponsor Google Cloud!

Get there by car
Get there by metro

Tuesday May 1, 2018 19:00 - 21:00
8TALLET Cafe & Restaurant Richard Mortensens Vej 81, 2300 København, Denmark
 
Wednesday, May 2
 

07:00

Welcome Coffee
Wednesday May 2, 2018 07:00 - 08:00
Auditorium Foyer

07:00

Registration
Wednesday May 2, 2018 07:00 - 18:00
Main Lobby

09:00

Keynote: How Good Is Our Code? - Dan Kohn, Executive Director, Cloud Native Computing Foundation (Slides Attached)
Cloud native computing is defined as containerization, microservices, and orchestration but what is the most important component? In this talk, Dan looks at how continuous integration (CI) is the component of cloud-native computing that generates the most value. Through a look at SQLite and the Cloud Native Interactive Landscape, Dan investigates how CI is essential for delivering secure software.

Speakers
avatar for Dan Kohn

Dan Kohn

Executive Director, Cloud Native Computing Foundation
Dan is Executive Director of the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes and Prometheus. He also helped create and launch the Linux Foundation's Core Infrastructure Initiative as an industry-wide response to the se... Read More →


Wednesday May 2, 2018 09:00 - 09:20
Congress Hall A

09:20

Keynote: CNCF Project Update - Liz Rice, Technology Evangelist, Aqua Security; Sugu Sougoumarane, CTO, PlanetScale Data; Colin Sullivan, Product Manager, Synadia Communications, Inc. & Andrew Jessup, Co-founder, Scytale Inc. (Slides Attached)
Speakers
avatar for Andrew Jessup

Andrew Jessup

Co-founder, Scytale Inc., Scytale Inc.
Andrew is the co-founder of Scytale, who are helping bring SPIFFE into the world. Find out more at https://github.com/spiffe/spiffe | | Andrew is an engineer, and entrepreneur with a passion for building tools that help bring simplicity to software development. Prior to co-f... Read More →
avatar for Liz Rice

Liz Rice

Technology Evangelist, Aqua Security
Liz Rice is the Technology Evangelist with container security specialists Aqua Security, and also works on container-related open source projects including manifesto and kube-bench. She has a wealth of software development, team, and product management experience from working on... Read More →
avatar for Sugu Sougoumarane

Sugu Sougoumarane

CTO, PlanetScale
Sugu is CTO at PlanetScale. He is also the lead developer and community leader of the Vitess open source project which he co-created at Youtube in 2010. Vitess has helped multiple companies scale MySQL massively. Prior to Vitess, he worked on various scaling and infrastructure pr... Read More →
avatar for Colin Sullivan

Colin Sullivan

Product Manager, Synadia Communications, Inc.
Colin is the product manager of NATS (https://nats.io). He has extensive experience developing messaging products and designing distributed systems. Prior to Synadia, Colin worked at Apcera and TIBCO software.



Wednesday May 2, 2018 09:20 - 09:50
Congress Hall A

09:50

Keynote: Re-thinking Networking for Microservices - Lew Tucker, VP/CTO Cloud Computing, Cisco Systems, Inc. (Slides Attached)
It’s been said that Istio is a “network for services, not bytes.” What does that mean and what does a service mesh offer to developers and operators of microservices? We will discuss this and how Istio enables a better model for developing distributed applications in a multicloud world.

Speakers
avatar for Lew Tucker

Lew Tucker

VP/CTO Cloud Computing, Cisco Systems, Inc.
As VP/CTO of Cloud Computing at Cisco, Lew is responsible for shaping Cisco’s strategy and products in cloud computing and leads several of the company’s open source initiatives. He also serves as a member of the OpenStack Foundation board of directors. | | Lew brings to th... Read More →



Wednesday May 2, 2018 09:50 - 09:55
Congress Hall A

09:55

Keynote: CERN Experiences with Multi-Cloud Federated Kubernetes - Ricardo Rocha, Staff Member, CERN & Clenimar Filemon, Software Engineer, Federal University of Campina Grande (Slides Attached)
Using public cloud resources to cover for peak workloads is a practical and economical alternative to over provisioning on-premise resources. This is the case in environments like CERN where its large internal computing infrastructure is usually big enough but where periods prior to big international conferences or large event reconstruction campaigns see a significant spike in the amount of workloads submitted.

We will describe early experiences relying on Kubernetes federations to expand the available capacity to external clouds, while still offering a single entry point to our users - using GKE, AKS, Amazon and the Oracle cloud. We will cover some issues we had in some of the clouds (mainly networking) and how we solved them. We will show how they get integrated with our main batch system, and how workloads running on external resources access their corresponding datasets.

Speakers
avatar for Clenimar Filemon

Clenimar Filemon

Software Engineer, Federal University of Campina Grande
Clenimar is an MSc student at the Federal University of Campina Grande, Brazil. He is currently researching on distributed, secure workloads in the cloud (using OpenStack and Kubernetes). He spent last summer working at CERN as a Cloud Infrastructure Intern, where he could invest... Read More →
RR

Ricardo Rocha

Software Engineer, CERN
Ricardo is a software engineer at CERN currently part of the CERN cloud team, focusing primarily on networking and container based deployments. Previously he helped develop and deploy several components of the Worldwide LHC Computing Grid, a network of ~200 collaborating sites ar... Read More →


CERN pdf

Wednesday May 2, 2018 09:55 - 10:15
Congress Hall A

10:15

Keynote: From Innovation to Production - Dirk Hohndel, VP & Chief Open Source Officer, VMware (Slides Attached)
Speakers
avatar for Dirk Hohndel

Dirk Hohndel

Chief Open Source Officer, VMware
Dirk is VMware’s Chief Open Source Officer, leading the company’s Open Source Program Office, directing the efforts and strategy around use of and contribution to open source projects and driving common values and processes across the company for VMware’s interaction with t... Read More →



Wednesday May 2, 2018 10:15 - 10:20
Congress Hall A

10:20

Keynote: CNCF 20-20 Vision - Alexis Richardson, Founder & CEO, Weaveworks (Slides Attached)
Speakers
avatar for Alexis Richardson

Alexis Richardson

ceo, weaveworks
Alexis is the co-founder and CEO of Weaveworks. He is also the chairman of the TOC for CNCF, and the co-founder of the Coed:Code meet ups. | | Previously he was at Pivotal, as head of products for Spring, RabbitMQ, Redis, Apache Tomcat and vFabric. Alexis was responsible for r... Read More →



Wednesday May 2, 2018 10:20 - 10:40
Congress Hall A

10:30

Meet the Maintainer - Linkerd
Speakers
avatar for William Denniss

William Denniss

Product Manager, Google
William is a Product Manager at Google on Google Kubernetes Engine. He chairs the Kubernetes Conformance working group, and has a passion for interoperability and developer experience. Previously he worked in the OAuth community, authoring RFC 8252 and creating AppAuth, the leadi... Read More →


Wednesday May 2, 2018 10:30 - 11:30
CNCF Booth

10:40

Coffee Break
Wednesday May 2, 2018 10:40 - 11:10
Centerhall E & Hall C

10:40

Newcomer's Lounge
A CNCF Ambassador will be available to answer all your questions as a first-time or newish KubeCon + CloudNativeCon attendee. We're happy to welcome you an answer all your questions!

Wednesday May 2, 2018 10:40 - 11:10
Centerhall E

10:40

11:10

Diffy - Predicting and Preempting Regressions in Services - Puneet Khanduri & Prashant Khanduri, Diffy (Beginner Skill Level)
Diffy is a tool used at Twitter to automatically catch regressions in our backend services before they are deployed to production.

Diffy is open source and has been adopted into modern continuos deploy workflows by the larger community.

This talk will cover the fundamental concepts behind Diffy and how its automation helps achieve peace of mind for service owners, devops, and QA folks.

Speakers
avatar for Puneet Khanduri

Puneet Khanduri

CEO, Diffy
A veteran programmer and engineering leader with 11+ years in the industry. He developed Diffy at Twitter. | | He also helped start Twitter's India Engineering office as the site lead for 1.5 years while driving a stealth project across engineering, product, and design. | | Pri... Read More →
avatar for Prashant Khanduri

Prashant Khanduri

CTO, Diffy
Prashant is a solutions architect with over 8 years of experience in leading product design and implementation of technology solutions and processes. | | Prior to Diffy, he made significant technical contributions as a engineering manager / tech lead at Affirm, Jawbone, Hearsay... Read More →


Wednesday May 2, 2018 11:10 - 11:45
C1-M1

11:10

The Enterprise’s New Shoes - The Journey of Adidas to a Global Kubernetes Rollout -Daniel Eichten, Adidas AG & Oliver Thylmann, Giant Swarm GmbH (Any Skill Level) (Slides Attached)
adidas’ move to cloud native technologies and specifically Kubernetes started already in late 2015. This move came as the result of a general shift towards Microservices and agile software development, which included major reorganization of teams and architectures.
In this talk we describe the journey starting with the needs of the enterprise over the selection of Kubernetes and partners towards globally distributed microservices. We explain the challenges and pains we had to go through both organizationally as well as technically to arrive at production systems being live (and staying up) for end-of-year sales.

Speakers
avatar for Daniel Eichten

Daniel Eichten

Platform Engineer, adidas
Platform Engineer helping adidas to move to modern software architectures and transform to a true agile and DevOps focused organization. Occasional speaker at conferences like JavaLand of Developer Week. Hobby Barista. Nuremberg, Germany
avatar for Oliver Thylmann

Oliver Thylmann

CCO, Giant Swarm GmbH
Husband, Father of 3, Internet Entrepreneur since 1996, developer whisperer, geek, compulsive first adopter, co-founder @giantswarm, conference speaker and moderator | Cologne, Germany



Wednesday May 2, 2018 11:10 - 11:45
Auditorium 10

11:10

Git-push Workflows (using git hooks) for Deploying Applications on Kubernetes - Tanmai Gopal & Vamshi Surabhi Rao, Hasura (Intermediate Skill Level) (Slides Attached)
Tanmai will start with a motivation of why git-based tooling is useful for teams and then cover a set of functional requirements (secrets, templating for mutiple-envs, existing CI/CD integration etc.) that dev teams need for a good git-based deployment workflow. Then after a brief review of current tooling, Tanmai will propose an architecture for a DIY tooling setup that will allow developers to setup their own git-push based workflow for kubernetes.

The talk will delve into step-by-step implementation detail and touch upon how git-hooks works. Vamshi will go into more detail regarding the pre-push and the pre-receive hooks.

Tanmai will then wrap up with a demo (if possible/recorded), followed by links to boilerplates and resources for the attendees.

Speakers
TG

Tanmai Gopal

Co-founder, Hasura
Tanmai runs a startup, Hasura, where they've built a PaaS on Kubernetes. They were early adopters in the container ecosystem (pre-1.0 adopters for both Docker and Kubernetes) and have grown and contributed to the ecosystem as a company especially in India. Before this, Tanmai ran... Read More →
VS

Vamshi Surabhi Rao

CTO, Hasura
Vamshi heads engineering at Hasura. He was instrumental in leading Docker and Kubernetes adoption at Hasura and spotted its opportunity and utility to the dev-community in its nascent stages. | | Although Vamshi's Masters work was with JVM internals and compiler optimisations... Read More →



Wednesday May 2, 2018 11:10 - 11:45
Auditorium 11+12

11:10

Machines Can Do The Work: Automation and the Kubernetes Contributor Experience - Aaron Crickenberger, Samsung SDS (Beginner Skill Level) (Slides Attached)
The decision to host a project of Kubernetes' scale on GitHub has led us to confront a number of unique challenges over the past three years, both technical and cultural. We were the most active project on GitHub in 2017 as measured by contributions beyond just code.

This talk will walk you through a number of tools and processes we have developed to support this growth, including but not limited to: gubernator, mungegithub, prow, and testgrid

By the end of the talk, contributors in the Kubernetes community will know more about how to use our existing automation to make their lives easier. Maintainers of other projects large or small will know how they can try out our automation on their project today.

Speakers
avatar for Aaron Crickenberger

Aaron Crickenberger

Opensource Evangelist, Samsung SDS
Aaron has been involved in open source projects since 2007, cloud related projects since 2009, and Kubernetes since 2015. He was recently elected to the Kubernetes Steering Committee in 2017. He co-founded the Kubernetes Testing SIG, and actively contributes in the Architecture... Read More →



Wednesday May 2, 2018 11:10 - 11:45
C1-M2

11:10

Making Big Data Processing Portable. The Story of Apache Beam and gRPC - Ismaël Mejía, Talend (Any Skill Level) (Slides Attached)
Big data applications have been an almost exclusive domain of Java and Scala developers. This not only frustrates engineers who prefer other languages and their ecosystems, but also impedes companies that already have their business logic written on other platforms from achieving the benefits of reuse when they build data-intensive applications.

In this talk we introduce Apache Beam. A unified programming model designed to provide efficient and portable data processing pipelines. We will discuss in detail how Beam achieves portability by relying in two concepts: (1) Runners that translate the Beam's model so it can be executed in existing systems like Apache Spark and Apache Flink and (2) the portability APIs, an architecture of gRPC services that coordinate the execution of pipelines in containers to accomplish language portability.

Speakers
avatar for Ismaël Mejía

Ismaël Mejía

Software Engineer, Talend
Software Engineer with more than ten years of experience designing and developing information systems for financial groups, telecom companies and startups. Focused on Big Data and Cloud architectures (aka Distributed Systems). He works at Talend France as an Open Source Software... Read More →



Wednesday May 2, 2018 11:10 - 11:45
Auditorium 15

11:10

gRPC Intro – Jayant Kolhe & Sree Kuchibhotla, Google (Any Skill Level) (Slides Attached)
Speakers
avatar for Jayant Kolhe

Jayant Kolhe

Director of Engineering, Google
Jayant is Director of Engineering at Google working in Google Cloud Organization. He has been at Google for last 10 years. He manages teams that work in areas of Networking, distributed systems and APIs. He has led and managed multiple Open Source Projects such as gRPC and Protoc... Read More →
avatar for Sree Kuchibhotla

Sree Kuchibhotla

Software Engineer, Google
Sree Kuchibhotla is a Software Engineer on the gRPC team at Google. He works on gRPC C-Core and C++ stack and is currently focussing on gRPC performance and lower level components in the stack. Before joining Google, Sree worked at Twitter and Microsoft on Distributed storage sy... Read More →



Wednesday May 2, 2018 11:10 - 11:45
B3-M6+8

11:10

Kubeflow Intro – Michał Jastrzębski & Ala Raddaoui, Intel (Any Skill Level) (Slides Attached)
The Kubeflow project is aimed at simplifying developing, deploying and using ML on Kubernetes.
We will provide an introduction to Kubeflow that explains the benefits of using Kubeflow and walk through getting started. By the end of this session, attendees should be able to run and deploy an end-to-end ML model on their Kubernetes cluster.

Speakers
avatar for Michał Jastrzębski

Michał Jastrzębski

Senior cloud software engineer, Intel
Kubeflow contributor and former OpenStack Kolla project technical lead. Open source fanatic and enthusiast of all things cloud, both compute and those on the sky. Recently explores new worlds of data science, machine learning and data engineering.
avatar for Ala Raddaoui

Ala Raddaoui

Cloud software enginner, Intel
Ala Raddaoui is a Cloud Software Engineer for the Artificial Intelligence Products Group at Intel. He is an open source advocate and very passionate about any cloud-native, smart, and scalable technologies. He is currently focusing on enabling and enhancing machine learning exper... Read More →



Wednesday May 2, 2018 11:10 - 11:45
B3-M5+7

11:10

SIG Multi-Cluster Intro – Christian Bell, Madhu C.S., & Nikhil Jindal, Google (Any Skill Level)
Speakers
CB

Christian Bell

Software Engineer, Google
I am co-lead of the Kubernetes Multicluster SIG (previously Federation SIG). I am interested in how users can make use of multiple clusters for high availability, regional proximity and consistent deployments across regions and multiple cloud providers.
avatar for Madhu C.S.

Madhu C.S.

Software Engineer, Google
Madhu C.S. (madhusudancs@{github, slack, twitter}) is a Software Engineer on the Kubernetes team at Google where he works on Cluster Federation. Before Kubernetes, he worked on a number of different projects within Google Cloud. He also has a strong background in compilers and ha... Read More →
avatar for Nikhil Jindal

Nikhil Jindal

Software Engineer, Google
Nikhil Jindal (nikhiljindal@github) is a Software Engineer on the kubernetes team at Google. He had started on kubernetes by working on API machinery and is now focussed on multi cluster problems. Before getting the kubernetes bug, he was enjoying working on Google Maps.


Wednesday May 2, 2018 11:10 - 11:45
B4-M1+3

11:10

Storage WG Intro – Ben Hindman, Mesosphere, Clint Kitson, VMware & Quinton Hoole, Huawei (Any Skill Level) (Slides Attached)
The storage working group has been collaborating on all things storage in the cloud native eco-system. This session includes a panel and review of some of the basics about the working group and some general patterns that they are focused on.

Speakers
BH

Ben Hindman

Ben Hindman is one of the creators of Apache Mesos, a platform for building and running resource-efficient distributed systems at scale. Ben started working on Mesos as a PhD student at Berkeley before he brought it to Twitter where it runs on thousands of machines. An academic a... Read More →
avatar for Quinton Hoole

Quinton Hoole

Technical Vice President, Huawei
Quinton is currently Technical Vice President of Cloud Computing at Huawei. Previously he spend five years at Google, where he was an Engineering Lead on the Kubernetes team, and Technical Lead and Manager of Ads Serving SRE. He was also the founding engineer of the Amazon EC2 cl... Read More →
CK

Clint Kitson

Cloud Native Engineering Director, VMware



Wednesday May 2, 2018 11:10 - 11:45
B4-M2+4

11:10

A Survey of the OSS Tracing Ecosystem - Ben Sigelman & Ted Young, LightStep (Beginner Skill Level) (Slides Attached)
There has been great movement over the past two years in the tracing landscape. In this relatively short period of time, projects such as OpenTracing, Jaeger, and OpenCensus have joined Zipkin in the open source world. Additionally, there are multiple adjacent projects from observability and infrastructure that help proliferate the need and set up for tracing. Examples are Prometheus, Envoy, and a new w3c trace context standard. This talk will explain the complex landscape.
We will cover:
* The need for distributed tracing
* The changes in tracing open source over the past two years
* The core open-source tracing projects, their respective value propositions, and how they fit together and relate to one another
* How other projects in infrastructure help reduce time to value for tracing projects
* Best practices for today’s software practitioners

Speakers
avatar for Ben Sigelman

Ben Sigelman

Cofounder & CEO, LightStep
Ben Sigelman is the CEO and Cofounder of LightStep. He is an expert in diagnostics and performance analysis for complex software systems. He spent nine years at Google where he led the design and development of several global-scale monitoring systems. The most significant of thes... Read More →
avatar for Ted Young

Ted Young

Software Engineer, LightStep
Ted Young is a software engineer at LightStep. He has spent the last 15 years building distributed systems in a variety of environments: computer animation pipelines for VFX, national elections, and elastic compute platforms. Previously, he helped design the Diego Container Runti... Read More →



Wednesday May 2, 2018 11:10 - 11:45
C1-M0

11:10

What's Up With All The Different Container Runtimes? - Ricardo Aravena, Branch Metrics (Intermediate Skill Level) (Slides Attached)
The Kubernetes Container Runtime Interface (CRI) recently went GA (or rc?) and during the lead up we saw an a jump in the number of container runtimes hit the market, each with its own pros and cons.

In this talk Ricardo will dive deep into the variety of current and future container runtimes. What are their pros and cons depending on the type of workload and application. Why stick to old plain Docker? Why use Mesos containers? Why CRI-O? What about Kata containers?

After this session the audience will have a better understanding of the container landscape of the Kubernetes CRI and why multiple container runtimes exist and how to leverage their unique capabilities.

Speakers
avatar for Ricardo Aravena

Ricardo Aravena

Sr Data Ops Engineer, Branch Metrics
Ricardo currently works at Branch as a Sr Data Ops Engineer. He has been working in tech for more than 18 years and comes from a diverse professional background, having been in different roles at large companies such as Cisco and VMware as well as startups such as Hytrust, Exablo... Read More →



Wednesday May 2, 2018 11:10 - 11:45
C1-M5

11:10

Completely Securing the Software Supply Chain using Grafeas + in-toto - Lukas Puheringer, NYU & Wendy Dembowski, Google (Any Skill Level)
Continuous delivery, a prevalent concept in the cloud native ecosystem, has drastically simplified and accelerated development and deployment of software from its inception to the enduser. Unfortunately, the continuous delivery supply chain has become an attractive target for attacks. An attacker that compromises any of the steps of the supply chain, or alters the product in transit, can target all users at once.

In this talk Wendy Dembowski and Lukas Puehringer will introduce in-toto and grafeas(grafeas.io), a software supply chain security ecosystem to verify the supply chain integrity, authenticity and compliance of any application. The talk will feature real-life examples, such as the target deployments for various popular projects, including Debian, Arch Linux, reproducible builds and Docker.

Speakers
avatar for Wendy Dembowski

Wendy Dembowski

Staff Software Engineer, Google
Wendy is a Staff Software Engineer at Google. She is a co-founder and the Khaleesi of Grafeas.
avatar for Lukas Puehringer

Lukas Puehringer

Software Engineer, NYU
Lukas Puehringer is a research scholar and developer at NYU's Center for Cyber Security (CCS), where he leads, the development of in-toto and has been co-maintaining several of Prof. Justin Cappos' software projects, such as the Seattle and Sensibility Network Testbeds and The Up... Read More →


Wednesday May 2, 2018 11:10 - 11:45
C1-M3

11:10

Introduction to Istio Configuration - Joy Zhang, Google (Beginner Skill Level) (Slides Attached)
Istio is an open platform that allows the operator to turn workloads into "services" by intent-driven configurations without rewriting/redeploying them. Istio configuration provides the operators central controls to these diverse workloads regardless of what environments they run in, or where they run.

In this talk, we introduce how Istio configuration is designed to meet the goals of an easy-to-use schema, access controlled API, and performant system components at scale. We cover the automations Istio provides to ease a wide range of operators' tasks on multi-environment deployments, such as configuration authoring, configuration resource life-cycle management, monitored and safe configuration distribution.

Speakers
avatar for Joy Zhang

Joy Zhang

Senior Software Engineer, Google
Joy is a software engineer at Google and a technical lead of the Istio Config Working Group. She also contributes to Istio service broker and Istio integrations. Prior to that, she spent 10+ years in software development and research across a variety of areas: mobile clients, dat... Read More →



Wednesday May 2, 2018 11:10 - 11:45
C1-M4

11:30

11:55

How We Built Contour, and What You Can Learn From Our Experience - Dave Cheney, Heptio (Any Skill Level) (Slides Attached)
In 2017 Heptio launched Contour, a Kubernetes Ingress controller built using the Envoy proxy project from Lyft.

This session will cover:
- Why we chose Envoy as the data plane for our ingress controller.
- How Contour works as a translator from Kubernetes to Envoy objects. The parts that were a good match, the parts that weren't, and how we dealt with it.
- Traps, pitfalls, and ambiguities in the Ingress spec.
- Specific patterns we developed to reliably watching many different kinds of API resources at the same time.

The presentation will also give real world advice on the traps involved in the components that make up a management server, the k8s Go client, gRPC, and concurrency issues.

Speakers
avatar for Dave Cheney

Dave Cheney

Staff engineer, Heptio
You can talk to me about Go, Kubernetes, and Contour.



Wednesday May 2, 2018 11:55 - 12:30
C1-M1

11:55

Kubernetes on Supporting $8 Trillion Card Payments in China - Xin Zhang & Deyuan Deng, Caicloud (Any Skill Level)
Kubernetes use cases are far less heard in the financial industry in China, because the core financial system consists of complex “brownfield” applications that are not Kubernetes-friendly, and require better quality of service, fine-grained resource management, and stringent security guarantees.

Nevertheless, the digitalization trend urges Chinese banks to transform their business to the Internet-style where Kubernetes can shine. We share a real journey of augmenting Kubernetes to support core services for the largest financial institute in China with >$8 Trillion card payment value yearly.

We share our architectural design and techniques to overcome the aforementioned challenges, including a unified networking control plane, a hardened security and access control-plane, a full-fledged multi-tenant management layer, supporting FSI applications with custom controllers, etc.

Speakers
DD

Deyuan Deng

CTO, Caicloud
Deyuan is currently CTO and co-founder of Caicloud (https://caicloud.io), a startup that promotes Kubernetes in Chinese community and enterprises. He leads the in-house Kubernetes research and development and has successfully launched Kubernetes-based toolings and platform in ten... Read More →
XZ

Xin Zhang

CEO, Caicloud
Xin is currently CEO and co-founder of Caicloud (https://caicloud.io), a startup that fosters Kubernetes community in China and provides Kubernetes-based products and services for Fortune 500 Chinese enterprises. | | Before founding Caicloud, Xin was a Googler for almost 4 yea... Read More →



Wednesday May 2, 2018 11:55 - 12:30
Auditorium 10

11:55

Continuous Delivery Meets Custom Kubernetes Controller: A Declarative Configuration Approach to CI/CD - Suneeta Mall & Simon Cochrane, Nearmap (Intermediate Skill Level) (Slides Attached)
Building and maintaining streamlined continuous integration and delivery (CI/CD) pipelines is often challenging. It is even harder on Kubernetes since the deployments are, rightfully so, safely guarded by the API Server of the cluster. Organizations tend to lockdown the API Server, restricting the ability to use an external CI tool. Using external CI tools thus comes at a cost of security, access, and ease-of-use.
Nearmap dealt with these challenges using intrinsic Kubernetes principles. We use CircleCI, Amazon Web Service (AWS) Elastic Container Registry (ECR) and a custom Kubernetes controller to achieve a declarative configuration approach to continuous deployment. In this talk, we discuss the challenges faced, provide an in-depth analysis of our declarative CI/CD approach and how Nearmap is enabling self-managed continuous deployments of Kubernetes clusters.

Speakers
avatar for Simon Cochrane

Simon Cochrane

Director of Engineering, Nearmap
Simon is a Director of Engineering at Nearmap specializing in providing high resolution aerial imagery over the web and embracing the Kubernetes world in order to efficiently run services in the cloud. Simon has inhabited the Sydney startup space for over 15 years building everyt... Read More →
avatar for Suneeta Mall

Suneeta Mall

Senior Software Enginner, Nearmap
Suneeta Mall is a Senior Software Engineer at Nearmap – a leading provider of high resolution aerial imagery. She is leading the efforts of containerizing and migrating Nearmap services to Kubernetes (on Amazon Web Services) from Amazon’s Elastic Compute. In her 10 years of s... Read More →



Wednesday May 2, 2018 11:55 - 12:30
Auditorium 11+12

11:55

Building an Open Source Community to Achieve Innovation-Through-Openness - Jonas Rosland, {code} (Beginner Skill Level) (Slides Attached)
Building an open source initiative at a large enterprise such as Dell Technologies comes with both challenges and rewards. Making sure the community is engaged and that projects thrive takes time and effort. ""Innovation-through-openness"" around the world has proven that global collaboration on code and inclusivity of diverse intellectual contributions advance the technological state of the art and solve problems faster.
In this session, Jonas Rosland, Open Source Community Manager at {code}, shares experiences, failures, and gives a glimpse into how large enterprises can embrace and lead open source communities successfully, and be involved in new trends that are impacting the global IT market.

Speakers
avatar for Jonas Rosland

Jonas Rosland

Open Source Manager, VMware
Jonas Rosland is a community builder, open source advocate, blogger and speaker at many open source focused events. As Open Source Community Manager at VMware, he promotes and helps build communities around several open source projects.



Wednesday May 2, 2018 11:55 - 12:30
C1-M2

11:55

gRPC Load Balancing on Kubernetes - Jan Tattermusch, Google (Intermediate Skill Level) (Slides Attached)
Load-balancing is a must for everyone building scalable services. This talk will give an overview of gRPC's load balancing options and show how to use them in a containerized environment.

Speakers
JT

Jan Tattermusch

Software Engineer, Google
Senior Software Engineer at Google. Working on the gRPC project for the last 3 years.



Wednesday May 2, 2018 11:55 - 12:30
Auditorium 15

11:55

Envoy Project Intro – Matt Klein & Jose Nino, Lyft (Any Skill Level)
Jose Nino, Envoy maintainer from Lyft, will present on Lyft's use of Envoy primarily from a config management perspective. This will be a great talk to get a feel for how Envoy is used in practice in a large production environment.

Speakers
avatar for Matt Klein

Matt Klein

Software Engineer, Lyft
Matt Klein is a software engineer at Lyft and the architect of Envoy. Matt has been working on operating systems, virtualization, distributed systems, networking, and making systems easy to operate for over 15 years across a variety of companies. Some highlights include leading t... Read More →


Wednesday May 2, 2018 11:55 - 12:30
B3-M6+8

11:55

Fluentd Project Intro – Eduardo Silva & Masahiro Nakagawa, Treasure Data (Any Skill Level) (Slides Attached)
Speakers
MN

Masahiro Nakagawa

Senior Software Engineer, Treasure Data Inc
Fluentd maintainer
avatar for Eduardo Silva

Eduardo Silva

Senior Software Engineer, Treasure Data
Eduardo is an Open Source Software Engineer at Treasure Data. He currently leads the efforts to make logging more scalable in Containerized and Orchestrated systems such as Kubernetes.



Wednesday May 2, 2018 11:55 - 12:30
B4-M2+4

11:55

SAFE WG Intro – Jeyappragash J J, padme.io, & Ray Colline, Google (Any Skill Level)
Speakers
avatar for Ray Colline

Ray Colline

Software Engineer, Google
Ray has a diverse background with over 25 years of experience including 10+ years of system administration and site operations experience and 10+ years in software development. Ray loves to learn and explore new spaces from being an IT admin for the Paul Merage School of Busines... Read More →
avatar for Jeyappragash J J

Jeyappragash J J

Software Engineer, padme.io
Jeyappragash previously built the team and lead the technical roadmap for Twitter's Cloud Infrastructure Management Platform. This platform helps developers manage their services and provides detailed visibility to the infrastructure and the services that use the infrastructures... Read More →


Wednesday May 2, 2018 11:55 - 12:30
B5-M2+4

11:55

Scalability Intro – Shyam Jeedigunta, Google & Bob Wise, AWS (Any Skill Level)
Speakers
SJ

Shyam Jeedigunta

Software Engineer III, Google
BW

Bob Wise

Chief Cloud Technologist, Samsung SDS
Bob is the Chief Cloud Technologist for Samsung SDS Research America, and opened the Seattle office for Samsung SDS as home base for the SDS Cloud Native Computing Team. Previously he was the CIO at MTN Satellite Communications, where he was responsible for product strategy and d... Read More →


Wednesday May 2, 2018 11:55 - 12:30
B5-M1+3

11:55

SIG CLI Intro - Phil Wittrock & Mengqi Yu, Google (Any Skill Level) (Slides Attached)
Join the SIG CLI introduction session to learn our mission, recent accomplishments and discuss future work. We will also focus on how new contributors can get involved in the SIG.

Speakers
PW

Phil Wittrock

Engineering Manager, Google
Phillip Wittrock is Senior Software Engineer at Google, Kubernetes SIG CLI Lead, and a member of the Kubernetes Steering Committee.  Phillip’s hobbies include debating how kubectl is pronounced, talking about Kubernetes at social events, and appreciating code as art.
MY

Mengqi Yu

Software Engineer, Google
Mengqi has been working in the SIG CLI since 2016. And he is one of maintainers of the SIG CLI.



Wednesday May 2, 2018 11:55 - 12:30
B3-M5+7

11:55

SIG Cluster Lifecycle Intro – Justin Santa Barbara, FathomDB & Lucas Käldström (Any Skill Level) (Slides Attached)
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate. Since the group's formation we have primarily focused on creating kubeadm, a streamlined installer tool and building block to simplify the installation and upgrade experience, and enhance kops, the easiest OSS way to get a production-grade Kubernetes cluster up and running in AWS. We have recently begun building a Cluster API to provide an abstraction of machines across different deployment environments along with a common control plane configuration.

In this introduction session, we will present the SIG's mission statement, review recent accomplishments, and discuss our future plans, where you are very welcome to contribute to the discussion. We will also focus on how new contributors can get involved in helping shape the future of Kubernetes' cluster lifecycle management.

Speakers
avatar for Justin Santa Barbara

Justin Santa Barbara

Google
Justin is one of the kubernetes sig-aws leads and started the kops project, so loves to talk about how to install and operate kubernetes, or on all things kubernetes-on-AWS or on other clouds (particularly GCP, having just joined Google!)
avatar for Lucas Käldström

Lucas Käldström

CNCF Ambassador, Individual
Lucas is a passionate CNCF Ambassador, Kubernetes SIG lead and Certified Kubernetes Administrator that is excited about all things cloud native. Lucas has been engaged in Kubernetes work for about three years now and been involved in work like porting Kubernetes to multiple platf... Read More →



Wednesday May 2, 2018 11:55 - 12:30
B4-M1+3

11:55

Practical and Useful Latency Analysis using Istio and OpenCenus - Varun Talwar, Stealth Startup & Morgan McLean, Google (Intermediate Skill Level) (Slides Attached)
Imagine debugging and trying to find the cause for latency spikes for some customers in a microservices environment with hundreds of services, deployed on kubernetes. Imagine you are trying to do hotspot analysis of which service and service instances are in request path for those select requests and what is causing an increase in p95 or p99 latency. We will show in this session how Istio Proxy - Envoy integrated with OpenCensus can help achieve this very easily with minimal effort from your end.

Speakers
avatar for Morgan McLean

Morgan McLean

Product Manager, Google
PM for OpenCensus and Stackdriver Trace, Profiler, Debugger at Google. I'm based in Seattle!
avatar for Varun Talwar

Varun Talwar

Founder and CEO, Stealth Startup
Product Management lead for gRPC and Istio at Google



Wednesday May 2, 2018 11:55 - 12:30
C1-M0

11:55

Containerd, What Does it Mean for Me - Scott Coulton, Puppet (Any Skill Level) (Slides Attached)
Containerd is the foundation for all container run times whether you use Docker, cri-conatinerd in Kubernetes. As a developer, what is containerd? What can I use containerd for? In this talk, we will look into containerd's internals, walk through the relationship with cri-containerd. Then we will take the knowledge we just learned and look at how as a developer we can build applications and tooling interfacing with containerd via grpc but also on top of containerd itself by creating containerised applications only using containerd and runc

Speakers
avatar for Scott Coulton

Scott Coulton

Principal software engineer, Puppet
Scott Coulton is a platform engineering lead and Docker captain with 10 years of experience in the managed services and hosting space. He has extensive experience in architecture and rolling out systems and network solutions for national and multinational companies with a wide va... Read More →



Wednesday May 2, 2018 11:55 - 12:30
C1-M5

11:55

Establishing Image Provenance and Security in Kubernetes - Adrian Mouat, Container Solutions (Any Skill Level) (Slides Attached)
Take any container running in your Kubernetes cluster. What can you say about it and with what level of certainty? Do you know where it came from? Could an attacker have modified it? Is it up-to-date? Can you identify the exact revision of the code that the image was built from?

This talk will look at what guarantees Kubernetes gives you out-of-the-box, and what you can do to establish a trustworthy and reliable workflow for deploying and updating images. Topics and tooling covered will include:

- building images in a repeatable manner with BuildKit or Bazel
- distributing images through registries
- verifying provenance with secure hashes as well as Notary/TUF

Speakers
avatar for Adrian Mouat

Adrian Mouat

Chief Scientist, Container Solutions
Adrian Mouat is Chief Scientist at Container Solutions, a cloud-native consultancy and Kubernetes Certified Service Provider. Adrian is a member of the Docker Captains program and the author of "Using Docker", published by O’Reilly Media. | | He is currently researching imag... Read More →



Wednesday May 2, 2018 11:55 - 12:30
C1-M3

11:55

Evolving Systems Design: From Unreliable rpc to Resilience with Linkerd - Edward Wilde, Form3 (Intermediate Skill Level) (Slides Attached)
Form3 delivers cloud-based connectivity, payment processing, clearing and settlement services to a wide range of regulated financial institutions. Every transaction in fintech represents real money from real people. Protecting the integrity of service communication here is key. In this talk, Edward describes how Form3 built a payments platform that is reliable, safe, and resilient.

He starts by looking at a previous generation system that suffered from unreliable messaging and poor tail latencies. He then covers modern design techniques used to solve those legacy problems. This talk examines how Linkerd is used and deployed to protect financial transactions from failure and latency.

Warning this talk contains live demonstrations!

Speakers
avatar for Edward Wilde

Edward Wilde

Platform Architect, Form3
Edward Wilde is the Platform Architect at Form3, leading the development of a novel distributed payment system allowing connectivity, payment processing, clearing and settlement services for a wide range of regulated financial institutions, including leading banks and fintechs.



Wednesday May 2, 2018 11:55 - 12:30
C1-M4

12:30

Meet the Maintainer - Chris Aniszczyk, CNCF
Speakers
avatar for Chris Aniszczyk

Chris Aniszczyk

Executive Director, OCI/Linux Foundation
Chris Aniszczyk is an engineer by trade with a passion for open source and building communities. At Twitter, he created their open source program and led their open source efforts. For many years he served on the Eclipse Foundation's Board of Directors representing the committer... Read More →


Wednesday May 2, 2018 12:30 - 13:30
CNCF Booth

12:30

Lunch
Wednesday May 2, 2018 12:30 - 14:00
Centerhall E & Hall C

13:30

Meet the Maintainer - Eduardo Silva, Treasure Data
Speakers
avatar for Eduardo Silva

Eduardo Silva

Senior Software Engineer, Treasure Data
Eduardo is an Open Source Software Engineer at Treasure Data. He currently leads the efforts to make logging more scalable in Containerized and Orchestrated systems such as Kubernetes.


Wednesday May 2, 2018 13:30 - 15:30
CNCF Booth

14:00

Habitat Builder: Cloud Native Application Automation - Elliott Davis & Fletcher Nichol, Chef.io (Habitat.sh) (Beginner Skill Level) (Slides Attached)
There are a plethora of build tools and package managers out in the universe, but no one way to ensure a happy path from local development to production when you have a system of any interesting complexity. This talk explains why we built Habitat Builder, as an open source cloud native application automation engine, and how you can use it to build and ship your applications with Kubernetes and the packaging tools like Helm that you know and love, for a better development-to-cluster lifecycle. We'll go over existing build tools, their pro's and con's, industry best practices, and what Habitat Builder adds to the mix.

Speakers
avatar for Elliott Davis

Elliott Davis

Software Engineer, Chef
Elliott is a core maintainer on the Habitat team with a focus on developer experience and cloud native technologies. One of his favorite hobbies is disrupting team stand-ups with dad jokes.
avatar for Fletcher Nichol

Fletcher Nichol

Engineer, Habitat.sh
Software Developer, works on Habitat https://www.habitat.sh/



Wednesday May 2, 2018 14:00 - 14:35
C1-M1

14:00

Kubernetes and Taxes: Lessons Learned at the Norwegian Tax Administration - A Production Case Study - Bjarte S. Karlsen, The Norwegian Tax Administration (Intermediate Skill Level) (Slides Attached)
Day 1 Scenarios like running an application or two in a namespace are pretty well covered with blog posts, videos and talks.Handling lots of existing infrastructure, legacy culture and deploying hundreds of applications in tens of namespaces, not so much.

This talk will give other large/government organizations a valuable insight that will help them succeed in migrating to a kubernetes-based infrastructure.

The Norwegian Tax Administration (NTA) has over the last 2 1/2 years deployed a new platform based upon Kubernetes. All new Tax-applications since 2016 and old applications run on it.

The mission for our project was ‘Faster Development and More Efficient Ops’. Standardization, automation and creating tools to enable developers to add value early are key factors to achieve this.

Part of the platform is OpenSource APL 2.0 https://skatteetaten.github.io/aurora-openshift

Speakers
avatar for Bjarte S. Karlsen

Bjarte S. Karlsen

Technical Architect OpenShift, The Norwegian Tax Administration
Bjarte Karlsen is an architect and developer responsible for the development/usage side of the Container Application platform that The Norwegian Tax Administration has deployed to run modernized applications. His tasks include creating tooling and code examples to support the kub... Read More →



Wednesday May 2, 2018 14:00 - 14:35
Auditorium 10

14:00

Building Docker Images Without Docker - Matt Rickard, Google (Intermediate Skill Level) (Slides Attached)
Why would you want to build docker images without docker? You might want reproducible, minimal, or unprivileged builds. This talk will cover the alternative tools that exist to build docker images without docker. It will cover building images with tools like BuildKit, distroless, and buildah. It will compare the benefits and trade-offs of each tool as well as general patterns and anti-patterns to follow when building your images. Additionally, it will cover tools to manipulate and inspect those images.

Speakers
avatar for Matt Rickard

Matt Rickard

Software Engineer, Google
Matt Rickard is a Software Engineer at Google. He works on Kubernetes developer experience and container tooling products at Google, with a focus on local development and CI/CD tooling. He is a maintainer of many open source repositories, including kubernetes/minikube, GoogleCl... Read More →



Wednesday May 2, 2018 14:00 - 14:35
Auditorium 11+12

14:00

Open Source and Building Online Communities using Social Media and Communications - Tips, Tricks, and Being Effective - Kim McMahon, McMahon Consulting (Beginner Skill Level) (Slides Attached)
Communicating in open source is about sharing information, engaging, and building community. How to reach our audience is something we all think about!

In this interactive and audience participation talk, Kim will talk about social media techniques as well as the specific activities you can do to build community and have conversations. She will cover content types, approaches for engagement, and tips for collaborating, engaging, and building community. There will be a section on metrics and what to watch to get a feel for how you are doing.

There will also be time for audience engagement in an interactive conversation on best practices we all use in our communications activities.

Speakers
avatar for Kim McMahon

Kim McMahon

Marketing Strategies and Communications, McMahon Consulting
Technology has been in Kim’s blood working with HPC classics such as SGI and Cray and more recently in the open source and container space at {code}. | | Kim’s expertise is in marketing strategies and using communications to spread knowledge and awareness via marketing... Read More →



Wednesday May 2, 2018 14:00 - 14:35
C1-M2

14:00

A Brokerless REST Interface for gRPC Services - Roman Zimine, Turbonomic (Intermediate Skill Level) (Slides Attached)
gRPC is gaining traction due to its cross-platform, schema-driven interface design, efficiency, and use of HTTP/2. However, transitioning from REST to gRPC has some pain points due to missing alternatives for commonly-used tools. Sending free-form JSON over cURL does not work. There is no integration with Swagger/OpenAPI. Polished alternatives to GUIs like Postman or Swagger UI don't exist. Providing a REST interface over the gRPC services can solve these problems. We present a brokerless solution, using a Protobuf compiler plugin to generate a library of RESTful controllers with Swagger/OpenAPI documentation. This allows each microservice to expose both a REST and gRPC interface with no extra effort.

Speakers
RZ

Roman Zimine

Software Engineer, Turbonomic
Roman Zimine is a software engineer at Turbonomic building a distributed, service-oriented containerize system for workload automation in hybrid cloud environments.



Wednesday May 2, 2018 14:00 - 14:35
Auditorium 15

14:00

Chaos Engineering WG Intro – Sylvain Hellegouarch, ChaosIQ (Any Skill Level) (Slides Attached)
Propelled by years of success at Netflix, Chaos Engineering has recently seen a quick uptake as a critical discipline, for engineers and organizations, to keep a strong level of familiarity of production systems, as these are growing in complexity.Characteristics of Cloud Native systems (resilient, dynamic, isolation of concerns, automation, observability) lend themselves naturally to the chaos engineering discipline.

This session is about introducing a new CNCF WG to achieve a strong community of practices, and potential API, that should benefit users when they want to apply Chaos Engineering.

Speakers
avatar for Sylvain Hellegouarch

Sylvain Hellegouarch

CTO, ChaosIQ
Sylvain Hellegouarch is the CTO and lead engineer at ChaosIQ. He has been passionnate about Open Source for as long as he can remember working on various successful Python projects (CherryPy, WebSocket 4 Python and more recently, the Chaos Toolkit). He has participated to IETF wo... Read More →



Wednesday May 2, 2018 14:00 - 14:35
B5-M1+3

14:00

Kubernetes Conformance WG Intro – William Denniss, Google (Any Skill Level)
Speakers
avatar for William Denniss

William Denniss

Product Manager, Google
William is a Product Manager at Google on Google Kubernetes Engine. He chairs the Kubernetes Conformance working group, and has a passion for interoperability and developer experience. Previously he worked in the OAuth community, authoring RFC 8252 and creating AppAuth, the leadi... Read More →


Wednesday May 2, 2018 14:00 - 14:35
B3-M5+7

14:00

Kubernetes Policy WG Intro – Zhipeng Huang, Huawei (Any Skill Level)
This session will be divided into two sections, the first section will be the introduction of Kubernetes Policy WG (motivation, current work status, etc...), and second section we will invite folks from the current-forming CNCF SAFE WG to give an overview talk about their WG and future collaboration areas with k8s policy wg.

Speakers
ZH

Zhipeng Huang

Standard Manager, Huawei
Zhipeng Huang currently serve as open source operation manager for Huawei. Zhipeng have been involved with various major open source communities and is now the PTL of OpenStack Cyborg project, co-chair of OpenStack Public Cloud WG, and co-lead of the Kubernetes Policy WG


Wednesday May 2, 2018 14:00 - 14:35
B4-M1+3

14:00

OpenTracing Project Intro – Priyanka Sharma & Ted Young, LightStep (Any Skill Level)
Speakers
PS

Priyanka Sharma

Head of Product Marketing, Partnerships, & Open Source, LightStep
Priyanka Sharma is an entrepreneur with a passion for building developer products and growing them through open source communities. She heads Marketing and Partnerships at LightStep and also works on the OpenTracing project, an instrumentation standard for distributed tracing. In... Read More →
avatar for Ted Young

Ted Young

Software Engineer, LightStep
Ted Young is a software engineer at LightStep. He has spent the last 15 years building distributed systems in a variety of environments: computer animation pipelines for VFX, national elections, and elastic compute platforms. Previously, he helped design the Diego Container Runti... Read More →


Wednesday May 2, 2018 14:00 - 14:35
B4-M2+4

14:00

SIG Contributor Experience Intro – Paris Pittman, Google & Elsie Phillips, CoreOS (Any Skill Level) (Slides Attached)
In this 30 minute session, we will explore the projects we have been working on with Contributor Experience and the future work we have on deck. We will provide an update to the following [projects](https://git.k8s.io/sig-contributor-experience/projects.md) and have information on how to get involved.

Speakers
avatar for Elsie Phillips

Elsie Phillips

Product Marketer, CoreOS
Elsie herds the CoreOS Community and Co-Leads the Kubernetes Contributor Experience SIG. She's a northwest native who got her start in open source working at the Oregon State University Open Source Lab. In her free time she throws wild one woman dance parties and makes a mean veg... Read More →
avatar for Paris Pittman

Paris Pittman

Developer Relations Program Manager, Google
Paris is a Developer Relations Program Manager on the Google Cloud Open Source Strategy team focusing on Kubernetes Community. She has 13 years of professional experience in attracting and retaining engineering talent for organizations and open source projects. She has also been... Read More →



Wednesday May 2, 2018 14:00 - 14:35
B3-M6+8

14:00

Prometheus for Devs - Hubert Ströbitzer, Freelancer (Beginner Skill Level) (Slides Attached)
Having Microservices without proper monitoring tools is like driving the freeway without lights at night. One of those proper tools is Prometheus. In this workshop I will discuss/show
* the general architecture of Prometheus
* how to run Prometheus and Grafana within Docker
* how to run some exporters and how to scrape them
* how to create a simple Dashboard in Grafana
* how to write custom metrics with a Spring Boot Application

Speakers
avatar for Hubert Ströbitzer

Hubert Ströbitzer

DevOps Guy, Freelancer
Hubert is the guy who supports Devs to get into DevOps mode. He is responsible to keep a Microservice stack up and running and therefore uses Docker, Kubernetes and Ansible on a daily basis. Having a strong Java and Spring coding background he tries to fill the gap between Dev an... Read More →



Wednesday May 2, 2018 14:00 - 14:35
C1-M0

14:00

CRI: The Second Boom of Container Runtimes - Harry Zhang & Xu Wang, HyperHQ (Intermediate Skill Level) (Slides Attached)
Containers did have a boom when Docker Inc bring this concept to industry for the fist time. We then had Docker and rkt, we witnessed the start of runC and OCI. And then with the rise of Kubernetes community, all those container runtimes begin to become quite and hidden behind the orchestration layer, which is expected. But in 2017, we begin to hear more voice of container runtimes again. cri-o, containerd, Kata. But why? In this talk, we would like to say something about technical details of CRI, the killer weapon which brought new energy to "boring" container runtimes. We will introduce what is CRI spec and shim, how they are designed, how they work with CNI and CSI, also, what's the difference between those shims and why Kata is special. We will also demo how to write a CRI shim from zero. The second boom of containers is around, while this time it happens in Kubernetes community.

Speakers
avatar for Xu Wang

Xu Wang

CTO and Cofounder, HyperHQ
Xu Wang is the CTO and Cofounder of Hyper HQ, and an initial member of Kata Containers Architecture Committee. HyperHQ created hypervisor-based open source container runtime runV (secure as VM, fast as container). runV merged with clear containers from Intel, and become Kata Cont... Read More →
avatar for Harry (Lei) Zhang

Harry (Lei) Zhang

Engineer, HyperHQ
Microsoft MVP of cloud computing. Feature maintainer of Kubernetes project. Mainly working on scheduling, CRI and hypervisor based container runtime i.e. KataContainers. Focusing on kube-scheduler, kubelet and secure container runtime on Kubernetes upstream as well as Hypernetes... Read More →



Wednesday May 2, 2018 14:00 - 14:35
C1-M5

14:00

Securing your Kubernetes Delivery Pipelines with Notary and TUF - Liam White & Michael Hough, IBM (Intermediate Skill Level) (Slides Attached)
As the cloud native ecosystem matures, the focus shifts more towards security. One of the key challenges in this area for enterprises is ensuring that you trust the code that's running in your production environment and that it hasn't been tampered with by malicious third parties.

In this session, you'll learn about how Notary addresses this problem, how to get started with Notary and your image registry, and how you can use Kubernetes admission controllers to verify your images against Notary.

Speakers
avatar for Michael Hough

Michael Hough

Software Engineer, IBM
Michael works on the IBM Cloud Container Registry team. He has worked on code from the Docker Registry open source project, and is now focusing on integrating Notary with the Container Registry service. He has presented and led labs about Kubernetes and IBM Cloud Container Servic... Read More →
avatar for Liam White

Liam White

Software Engineer, IBM
Liam is part of the IBM Cloud Container Registry team and a core contributor to Istio. He works on the registry and its Notary integration and is currently leading the migration of the registry service onto Kubernetes and Istio. He is an advocate of open source technology both ut... Read More →



Wednesday May 2, 2018 14:00 - 14:35
C1-M3

14:00

Replacing NGINX with Envoy in a Traffic Control System - Mark McBride, Turbine Labs, Inc (Advanced Skill Level) (Slides Attached)
In late 2017 Turbine Labs migrated the proxy at the center of their traffic control product from NGINX from Envoy. In this talk Mark will outline the decision making criteria for embarking on this migration
and the steps they took to make this transition transparent. He will also walk through the engineering effort, from packaging, deployment, monitoring, and committing new features back to the Envoy community. At the end he will describe the benefits of the new system, and talk about future improvements.

Speakers
avatar for Mark McBride

Mark McBride

CEO, Turbine Labs, Inc
Mark McBride is founder and CEO of Turbine Labs, building products that help teams manage Envoy at scale. Previously, Mark was services engineer lead at Nest Labs and Google, where he was responsible for the development of Nest’s server infrastructure that makes it possible for... Read More →



Wednesday May 2, 2018 14:00 - 14:35
C1-M4

14:30

Meet the Maintainer - Matt Klein, Lyft
Speakers
avatar for Matt Klein

Matt Klein

Software Engineer, Lyft
Matt Klein is a software engineer at Lyft and the architect of Envoy. Matt has been working on operating systems, virtualization, distributed systems, networking, and making systems easy to operate for over 15 years across a variety of companies. Some highlights include leading t... Read More →


Wednesday May 2, 2018 14:30 - 15:30
CNCF Booth

14:45

Why Do I Need Kubernetes When I Already Have Cloud Foundry? - Sanjay Patil, SAP (Beginner Skill Level)
Like many of you, several SAP teams have also been asking this question to themselves. While the answer is singular in some cases (either Cloud Foundry or Kubernetes), in many situations, there is room or rather a need for both these technologies. In this session, you will learn why several SAP teams have adopted Kubernetes / container model for developing comprehensive solutions (more than what a typical ‘cf push’ can handle) and deploying them on premise and/or in the cloud. Some of these Kubernetes based solutions are also exposed as services in Cloud Foundry environment, whereby Cloud Foundry applications can consume them via the simple and familiar service binding paradigm.

Speakers

Wednesday May 2, 2018 14:45 - 15:20
C1-M1

14:45

Write Less Code, Use More Tools: How we Orchestrate 7M+ Builds/Month with Kubernetes + Nomad - Danielle Tomlinson, CircleCI (Any Skill Level)
When we redesigned CircleCI from the ground-up in 2016 and 2017, we knew we needed a proper scheduling solution to run jobs efficiently across our resources. Proper isolation of CircleCI's infrastructure and individual customer builds was one of the core requirements of this undertaking: for security, scalability, and reliability, we had to make sure to keep our system separate from our users' jobs. In this talk, I'll share why we chose Nomad and Kubernetes to solve these issues over other tools, present the issues and obstacles we solved, and talk about how this setup is running for us in production ~10 months after GA.

Speakers
avatar for Danielle Tomlinson

Danielle Tomlinson

Staff Software Engineer, CircleCI
Danielle is a Staff Software Engineer at CircleCI where she works on build infrastructure and operator tooling, ensuring fast and stable services for 7m builds/month. Before she started working on cloud infrastructure, she was an iOS developer for 8 years. She is also a maintaine... Read More →


Wednesday May 2, 2018 14:45 - 15:20
Auditorium 10

14:45

Continuously Deliver your Kubernetes Infrastructure - Mikkel Larsen, Zalando SE (Advanced Skill Level) (Slides Attached)
Kubernetes provides the means for making it simple to continuously deliver our apps on top of clusters. But what about the underlying Kubernetes infrastructure? How can we continuously deliver improvements to the infrastructure and be confident that new changes will not have a negative impact on apps running on top?

Using the rollout of Kubernetes at Zalando as an example Mikkel will discuss how Zalando manage 60+ production and test clusters, how they went from Kubernetes v1.4 and continuously updated all clusters to the latest stable release, and how they test every change to the cluster configuration.

The talk will also take a small dive into the topic of testing clusters and give examples of how you, with little effort, can use and build upon the extensive conformance tests suite from Kubernetes to automatically end to end test changes to your own custom Kubernetes configuration.

Speakers
avatar for Mikkel Larsen

Mikkel Larsen

Software Engineer, Zalando SE
Mikkel is a Software Engineer working at Europe's leading online Fashion platform, Zalando since 2016. He works in the Platform Infrastructure team focusing on Kubernetes and AWS infrastructure and has a big interest in Continuous Delivery and automation.



Wednesday May 2, 2018 14:45 - 15:20
Auditorium 11+12

14:45

Who What How: Understanding Kubernetes Development through DevStats - Josh Berkus, Red Hat Inc. & Łukasz Gryglicki, CNCF (Any Skill Level) (Slides Attached)

Did you know that Kubernetes has its own analytics gold mine about who contributed, when they did it, and how? DevStats.k8s.io offers a data smorgasbord which slices up Kubernetes contribution activities. This isn't jus for data geeks, though: SIG leads, team managers, project and community managers, and even regular contributors can derive useful insights about how development is doing and where they might need to pitch in through the stats.

In this talk, we will cover the charts and data offered by DevStats with an eye towards finding insights for you to take action on. We'll also discuss how you can request additional charts or develop them yourself.

Speakers
avatar for Josh Berkus

Josh Berkus

Kubernetes Community Lead, Red Hat Inc.
Josh Berkus works with the Kubernetes community on behalf of Red Hat Inc. He contributes to sig-release and sig-contribex primarily, and organizes events. In his spare time, he likes to deploy databases, particularly PostgreSQL, on top of Kubernetes and OpenShift. Josh lives in P... Read More →
UG

Łukasz Gryglicki

Senior Software Developer, CNCF
Lukas is a software developer with CNCF. He is the primary developer behind DevStats.



Wednesday May 2, 2018 14:45 - 15:20
C1-M2

14:45

Efficient IoT with Protocol Buffers and gRPC - Vladimir Vivien, {code} (Beginner Skill Level) (Slides Attached)
Building IoT applications that scales with a variety of devices and capabilities, such as network bandwidth, processor, and power consumption, can be a challenge. Furthermore, this can be complicated with a heterogenous development environment with a multitude of languages, communication frameworks, and protocols.

This talk discusses how Protocol Buffers, a language and platform neutral serialization mechanism, can be used as an efficient protocol for small embedded devices with constrained bandwidth and power. We will demonstrate how gRPC, along with Protocol Buffers, provides a performant communication framework that can be used across diverse languages and device platforms to create realtime IoT applications.

Speakers
avatar for Vladimir Vivien

Vladimir Vivien

Software Engineer, VMware
Vladimir Vivien is a software engineer and author of the book "Learning Go Programming". Currently he works at VMware in the Cloud Native Application group where he spends time promoting and contributing to open source including Kubernetes.



Wednesday May 2, 2018 14:45 - 15:20
Auditorium 15

14:45

containerd Intro – Stephen Day, Docker (Any Skill Level) (Slides Attached)
Containerd is the core container runtime originally used in Docker to execute containers and distribute images. It was designed from the ground up to support the OCI image and runtime specifications. The design of containerd is carefully crafted to fit the use cases of modern container orchestrators like Kubernetes and Swarm. In this talk, we'll provide an introduction to containerd and how you can get started with leveraging it in your infrastructure.

Speakers
avatar for Stephen Day

Stephen Day

Senior Software Engineer, Docker
Stephen Day is a software engineer at Docker. His many contributions to Docker ecosystem projects include SwarmKit and the version 2 specification for the Docker Registry HTTP API, and evolving the available models for container image distribution. He currently works on container... Read More →



Wednesday May 2, 2018 14:45 - 15:20
B5-M1+3

14:45

Jaeger Project Intro - Juraci Kröhling, Red Hat (Any Skill Level) (Slides Attached)
Speakers
avatar for Juraci Paixão Kröhling

Juraci Paixão Kröhling

Software Engineer, Red Hat
Juraci is a software engineer at Red Hat working with the Distributed Tracing team on the Kiali project. He is a core contributor to Jaeger and is also active in the OpenTracing community.



Wednesday May 2, 2018 14:45 - 15:20
B3-M6+8

14:45

OpenStack SIG Intro – Chris Hoge, OpenStack Foundation, & David Lyle, Intel (Any Skill Level) (Slides Attached)
SIG OpenStack coordinates the cross-community efforts of the OpenStack
and Kubernetes communities. This includes coordinating improvements to
and documentation of the OpenStack cloud provider implementation in
Kubernetes as well as supporting efforts to deploy OpenStack itself
using Kubernetes. Attend this session to learn more about the SIG's
mission, recent accomplishments, and future plans.

Speakers
avatar for Chris Hoge

Chris Hoge

Interop Engineer, OpenStack Foundation
Chris Hoge is a Strategic Program Manager for the OpenStack Foundation. He's been an active contributor to the Interop Working Group (formerly DefCore), and helps run the trademark program for the OpenStack Foundation. He also works on collaborations between the OpenStack and Kub... Read More →
avatar for David   Lyle

David Lyle

Senior Software Engineer, Intel
David Lyle works on cloud technologies as a Cloud Software Architect in Intel's Open Source Technology Center. David is primarily focused on Kubernetes and OpenStack.



Wednesday May 2, 2018 14:45 - 15:20
B4-M1+3

14:45

Prometheus Project Intro – Julius Volz, Prometheus (Any Skill Level) (Slides Attached)
Speakers
avatar for Julius Volz

Julius Volz

Co-Founder, Prometheus
Julius co-founded Prometheus and lead the project to success at SoundCloud and beyond. He now focuses on growing the Prometheus community and is the main organizer of PromCon, the first conference around Prometheus. In a previous life, Julius was a Site Reliability Engineer at Go... Read More →



Wednesday May 2, 2018 14:45 - 15:20
B3-M5+7

14:45

TUF / Notary Project Intro – David Lawrence, Docker, & Justin Cappos, NYU, TUF (Any Skill Level)
Software distribution and packaging systems are rapidly becoming the weak link in the software lifecycle. This talk provides an accessible overview of two CNCF projects (Notary and TUF), that provide a secure (compromise resilient) mechanism for distributing software.

Notary, which implements the TUF specification, signs and transparently validates metadata to enable the system to recover from the compromise of servers, theft of keys, insider attacks, etc.  Notary / TUF are surprisingly easy to use and are deployed not only across major cloud companies, but a diverse set of adopters, including automobiles.  

WARNING: Attending this talk may cause (justifiable) fear in the software update mechanism on your devices!

Speakers
avatar for Justin Cappos

Justin Cappos

Professor, NYU
Justin Cappos is a professor in the Computer Science and Engineering department at New York University. His research includes the TUF project (which is hosted by the Linux Foundation / CNCF), which provides a compromise-resilient mechanism for the secure distribution of software... Read More →
DL

David Lawrence

Senior Security Engineer, Docker
Lay security developer that has learned a lot of mistakes the hard way. David started off building authentication systems, moved on to encrypted cloud storage for a few years, and is now working on the Security Team at Docker, presently focused on securing software distribution


Wednesday May 2, 2018 14:45 - 15:20
B4-M2+4

14:45

How to Export Prometheus Metrics from Just About Anything - Matt Layher, DigitalOcean (Intermediate Skill Level) (Slides Attached)
Prometheus exporters bridge the gap between Prometheus and systems which cannot export metrics in the Prometheus format. During this talk, you will learn how to gather metrics from a wide variety of data sources, including files, network services, hardware devices, and system calls to the Linux kernel. You will also learn how to build a reliable Prometheus exporter using the Go programming language. This talk is intended for developers who are interested in bridging the gap between Prometheus and other hardware or software.

Speakers
avatar for Matt Layher

Matt Layher

Senior Software Engineer, DigitalOcean
Matt Layher is a Senior Software Engineer at DigitalOcean, a member of the Prometheus team, and a regular contributor to a wide variety of open source networking applications and libraries written in Go.



Wednesday May 2, 2018 14:45 - 15:20
C1-M0

14:45

You Ever Wonder Why We're Here? - Sarah Christoff, Cloudreach (Beginner Skill Level) (Slides Attached)
Let's journey back to the 1960s, and start with the beginning of Virtual Machines. Why were these old behemoths made, and how do they work again? Let's recall when to use Virtual Machines, and their best practices. Then we'll travel to the dawn of containers, exploring their conception, birth, and where we are today. Finally, wrapping things up with figuring out why were are here, right now, at KubeCon! We'll unwrap Container Orchestration, container runtimes, and the many acronyms buzzing around.


Wednesday May 2, 2018 14:45 - 15:20
C1-M5

14:45

Cloud Native Identity Management - Andreas Zitzelsberger, QAware GmbH & Andrew Jessup, Scytale Inc. (Intermediate Skill Level) (Slides Attached)
Identity Management (IDM) incorporates a definition of identity, authentication and authorization. Cloud native workload IDM is necessary to protect against an untrusted network and compromised or rogue workloads. As organisations start to take advantage of elastic scaling and dynamic scheduling IDM becomes more important, and more challenging.

This talk will examine how we are working to solve these challenges in a large cloud project at a major insurance company.
We’ll describe a real world architecture, built on the SPIFFE standard, open-source software including SPIRE and Vault and a sprinkle of custom code to provide workload authentication and authorization, zero-trust networking and rotating secrets.
And finally we’ll discuss how this solution can also serve as the foundation for more security policy and traffic management capabilities based on technologies like Envoy and Istio.

Speakers
avatar for Andrew Jessup

Andrew Jessup

Co-founder, Scytale Inc., Scytale Inc.
Andrew is the co-founder of Scytale, who are helping bring SPIFFE into the world. Find out more at https://github.com/spiffe/spiffe | | Andrew is an engineer, and entrepreneur with a passion for building tools that help bring simplicity to software development. Prior to co-f... Read More →
avatar for Andreas Zitzelsberger

Andreas Zitzelsberger

Principal Software Architect, QAware GmbH
Andreas is Principal Software Architect at QAware, an independent cloud native software manufacturer that has been repeatedly awarded Best IT Workplace in Germany. His focus is cloud native computing in all its glory. He is responsible for the heavy lifting at a large-scale cloud... Read More →



Wednesday May 2, 2018 14:45 - 15:20
C1-M3

14:45

Building Hybrid Clouds with Istio - Allan Naim, Google & Rohit Agarwalla, Cisco (Intermediate Skill Level)
More and more applications are moving towards a hybrid/multi-cloud deployment model. Enabling request routing, A/B deployments, enforcing security and providing observability are all important elements for modern cloud workloads. Istio’s goal is to connect, manage and secure service endpoints and enabling Istio in a hybrid cloud environment enables superior operations without impacting developer workflows. In this session, we will provide an overview of Istio hybrid cloud deployment models and discuss integration touch points that are important from a hybrid cloud perspective.

Speakers
avatar for Rohit Agarwalla

Rohit Agarwalla

Senior Technical Leader, Cisco
Rohit Agarwalla is currently part of the Cloud Platform and Solutions Group within Cisco. As a cloud computing expert, Rohit is the primary architect for the Cisco-Google open hybrid cloud solution and is a cloud architect and technical product manager in areas of cloud native, m... Read More →
avatar for Allan Naim

Allan Naim

Senior Manager, Google
Allan is a Kubernetes Platform Lead at Google focused on Kubernetes and Kubernetes Engine. Prior to Kubernetes, Allan played a key role in developing Google Compute Engine’s go-to-market. Prior to Google, Allan held a variety of global roles spanning from Solutions Architecture... Read More →


Wednesday May 2, 2018 14:45 - 15:20
C1-M4

15:20

Coffee Break
Wednesday May 2, 2018 15:20 - 15:40
Centerhall E & Hall C

15:20

Newcomer's Lounge
A CNCF Ambassador will be available to answer all your questions as a first-time or newish KubeCon + CloudNativeCon attendee. We're happy to welcome you an answer all your questions!

Wednesday May 2, 2018 15:20 - 15:40
Centerhall E

15:30

15:40

Seamless Development Environments on Kubernetes using Telepresence - Ara Pulido, Bitnami (Intermediate Skill Level) (Slides Attached)
When developing API extensions or services that deeply integrate with Kubernetes, you may find yourself juggling kubeconfig contexts or iterating through a slow build-push-deploy cycle. Telepresence allows you to develop services locally as if they were running in your cluster. It does this by proxying pods to your local machine and gives your local services seamless access to service discovery and volumes. With Telepresence, you no longer have to maintain Docker Compose files for local orchestration, and you can take full advantage of Kubernetes features such as Ingress, Secrets/ConfigMaps, RBAC and more.

In this demo-led session, we’ll take a look at how Telepresence works, the different ways you can use it and how it makes iteratively developing on Kubernetes a breeze.

Speakers
avatar for Ara Pulido

Ara Pulido

Engineering Manager, Bitnami
Ara Pulido is an engineering manager with more than 10 years of experience working on open source companies. She manages the Kubernetes and SRE teams at Bitnami. She is a Certified Kubernetes Administrator.



Wednesday May 2, 2018 15:40 - 16:15
C1-M1

15:40

Grafeas Community Meetup BOF - Wendy Dembowski, Google (Any Skill Level)
Grafeas is an open source project whose goal is to provide organizations with a central source of truth for tracking software artifact metadata across an ever growing set of software development teams, pipeline, and technologies (see grafeas.io and github.com/grafeas). 

This meet-up is an opportunity to meet in person and discuss community collaboration opportunities and priorities for the project. Topics we may discuss include: extending the types of artifacts and metadata we support, metadata signing, Kubernetes integration, hybrid cloud stories, etc.

Speakers
avatar for Wendy Dembowski

Wendy Dembowski

Staff Software Engineer, Google
Wendy is a Staff Software Engineer at Google. She is a co-founder and the Khaleesi of Grafeas.


Wednesday May 2, 2018 15:40 - 16:15
B4-M2+4

15:40

Building a Cloud Native Culture in an Enterprise - Deep Kapadia & Tony Li, The New York Times Company (Any Skill Level) (Slides Attached)
The New York Times has been on the Internet since 1996. Long before most Internet or tech giants even existed. The Times is one of the most trafficked news sites on the Internet today with a fairly complex set of services and modules driving our internet presence.

We have been using public clouds since 2010 but In 2016 we decided to go all in with the intent to retire our data centers in 2018. As a result one of the biggest projects we undertook was moving our website, CMS and a slew of other internal tools to Amazon and Google's cloud offering. We jumped on the Kubernetes bandwagon and have had a hell of a ride. A lot of our learnings were not technical but cultural.

As we went down this path, we found ourselves embracing open standards and tools. We also had learned how to work with product teams who were at various levels of maturity and discipline w.r.t. CI/CD and SRE concepts.

Speakers
avatar for Deep Kapadia

Deep Kapadia

Executive Director, Engineering, The New York Times Company
Deep runs the Delivery Engineering team, responsible for developer tooling and automation, test automation and Site Reliability functions at The New York Times. | | The New York Times recently underwent a significant transition by moving their entire infrastructure from their... Read More →
avatar for Tony Li

Tony Li

SRE, The New York Times
I am an engineer on the Delivery and Site Reliability Engineering team at The New York Times, building tools, creating processes, and writing documentation for our many teams of developers. | | I am currently working on establishing best practices and platforms (Prometheus) to... Read More →



Wednesday May 2, 2018 15:40 - 16:15
Auditorium 10

15:40

Experience Report - Evolving a Continuous Delivery Workflow to Kubernetes using Spinnaker - Gard Rimestad, Schibsted & Øyvind Ingebrigtsen Øvergaard, Finn.no (Intermediate Skill Level) (Slides Attached)
Schibsted started deploying to Kubernetes with Spinnaker about a year ago. In that time, application deployment has evolved from simple point and click pipelines in Spinnaker to being fully defined as code with custom integrations against Kubernetes. The combination of everything-as-code and using contracts and conventions to abstract irrelevant details, has simplified configuration and led to improved usability and reduced maintenance.

Gard and Øyvind will talk about Schibsted's journey, motivations for each step of the progression, key lessons learned, and challenges still to come.

Speakers
GR

Gard Rimestad

Staff DevOps Engineer, Schibsted
Gard is an engineer that lives for traceable, stable and fast delivery pipelines. The weekly number of production deployments is why he goes to work. When he is not working on optimizations of deployment, he goes into his man cave and plays with arduino, raspberry, quadcopter or... Read More →
avatar for Øyvind Ingebrigtsen Øvergaard

Øyvind Ingebrigtsen Øvergaard

Infrastructure Developer, FINN.no/Schibsted
Developer, ops-er and everything in between-er. Currently interested in leveraging modern infrastructure to build robust systems that support delivering applications continuously. Has been using Kubernetes in production since 1.1. | | Previous speaking experience: | - Kubecon... Read More →



Wednesday May 2, 2018 15:40 - 16:15
Auditorium 11+12

15:40

Scaling Non-Traditional Contributor Mentoring Initiatives - Paris Pittman, Google (Any Skill Level) (Slides Attached)
Contributor growth is vital to the health of any open source project. So how do you do it?

The common practice of 1:1 mentoring doesn't scale - takes up a considerable number of resources and forced relationships can be toxic. However, help in finding a mentor continues to be one of the most frequent requests by new contributors. What do you do when you have major skill gaps or need contributors of certain roles in large numbers?

This talk will discuss modern, non-traditional approaches that can be applied to Kubernetes. We will cover the current strategies of the project, provide an update, and showcase how you can get involved.

Speakers
avatar for Paris Pittman

Paris Pittman

Developer Relations Program Manager, Google
Paris is a Developer Relations Program Manager on the Google Cloud Open Source Strategy team focusing on Kubernetes Community. She has 13 years of professional experience in attracting and retaining engineering talent for organizations and open source projects. She has also been... Read More →



Wednesday May 2, 2018 15:40 - 16:15
C1-M2

15:40

Cloud Native Landscape Intro – Dan Kohn, Cloud Native Computing Foundation (Any Skill Level)
The interactive landscape -- l.cncf.io -- allows you to filter and sort hundreds of cloud-native projects and products, and review details including GitHub stars, funding or market cap, first and last commits, contributor counts, headquarters location, and recent tweets. Engage in a small group to discuss how the landscape was built and what should change about it going forward

Speakers
avatar for Dan Kohn

Dan Kohn

Executive Director, Cloud Native Computing Foundation
Dan is Executive Director of the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes and Prometheus. He also helped create and launch the Linux Foundation's Core Infrastructure Initiative as an industry-wide response to the se... Read More →


Wednesday May 2, 2018 15:40 - 16:15
B4-M1+3

15:40

SIG Instrumentation Intro – Frederic Branczyk, CoreOS, & Piotr Szczesniak, Google (Any Skill Level) (Slides Attached)
Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Software Engineer, CoreOS
Frederic is an engineer at CoreOS contributing to Prometheus and Kubernetes to build state of the art modern infrastructure and monitoring tools. He discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used machine learning to detect... Read More →
avatar for Piotr Szczesniak

Piotr Szczesniak

Senior Software Engineer, Google
Piotr is Tech Lead/Manager working at Google since 2014. He works on GKE/Kubernetes for 3 years, joining the project in its early days. Piotr leads GKE Monitoring team and Special Interest Group “Instrumentation” in Kubernetes open source community. | | Piotr graduated fro... Read More →



Wednesday May 2, 2018 15:40 - 16:15
B3-M5+7

15:40

SIG Service-Catalog Intro – Michael Kibbe, Google, Morgan Bauer & Doug Davis, IBM (Any Skill Level) (Slides Attached)
Speakers
MB

Morgan Bauer

Software Engineer, IBM Corp.
Morgan Bauer works on Open Source at IBM in San Jose as part of the Cloud Division. Morgan is a maintainer on the core Docker Engine and also a founding contributor of the Kubernetes Service-Catalog.
avatar for Doug Davis

Doug Davis

STSM, IBM
Doug works in IBM's Digial Business Group. He's been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker and Kubernetes. He's currently co-leading the CNCF's Serverless WG, the Clo... Read More →
MK

Michael Kibbe

Software Engineer, Google
Michael Kibbe is a software engineer on the Cloud Services team at Google. Michael works on the Kubernetes Service Catalog project and the Open Service Broker API. His goal is to get us to a world where it is easy to consume hosted services, such as those offered by Google Cloud... Read More →



Wednesday May 2, 2018 15:40 - 16:15
B3-M6+8

15:40

The Untapped Power of Services - L7 Load Balancing Without a Service Mesh - Damien Lespiau, Weaveworks (Advanced Skill Level) (Slides Attached)
At Weaveworks, we sometimes need more than the L3/L4 load balancing offered today with the Service abstraction. The Kubernetes Service & Endpoint objects have some extraordinary untapped powers: they can be used to build artisanal, high-level load balancing and session affinity schemes. This talk will go through a few examples: sharding across endpoints based on a layer 7 key, master endpoint election and demonstrate a tiny reverse proxy implementing service affinity using consistent hashing with bounded load.

Speakers
avatar for Damien Lespiau

Damien Lespiau

Software Engineer, Weaveworks
Damien has spent way too much time playing with Linux over the past 20 years. He has worked on all sorts of embedded products, is a GNOME contributor, has spend 4 years in the Linux kernel making Intel GPUs behave and is now working at Weaveworks, helping defining what the future... Read More →



Wednesday May 2, 2018 15:40 - 16:15
Auditorium 15

15:40

Scalable Monitoring Using Prometheus with Apache Spark - Diane Feddema & Zak Hassan, Red Hat Inc (Intermediate Skill Level) (Slides Attached)
As spark applications move to a containerized environment, there are many questions about how to best configure server systems in the container world. In this talk we will demonstrate a set of tools to better monitor performance and identify optimal configuration settings. We will demonstrate how Prometheus, a project that is now part of the Cloud Native Computing Foundation (CNCF), can be applied to monitor and archive system performance data in a containerized spark environment. In our examples, we will gather spark metric output through Prometheus and present the data with Grafana dashboards. We will use our examples to demonstrate how performance can be enhanced through different tuned configuration settings. Our demo will show how to configure settings across the cluster as well as within each node.

Speakers
avatar for Diane Feddema

Diane Feddema

Principal Software Engineer, Red Hat Inc
Diane Feddema is a principal software engineer at Red Hat Inc Canada, Emerging Technologies Group. Diane is currently focused on developing and applying Data Science and Machine Learning techniques for performance analysis, automating these analyses and displaying data in novel w... Read More →
avatar for Zak Hassan

Zak Hassan

Software Engineer, Red Hat Inc
Zak Hassan is a Software Engineer on the Emerging Technology Group working on Data Science and Machine Learning. Zak previously worked as a Software Consultant in the financial services and insurance industry, building end-to-end software solutions for clients.



Wednesday May 2, 2018 15:40 - 16:15
C1-M0

15:40

Kata Containers: Getting Involved with the Kata Community - Anne Bertucio, OpenStack & Samuel Ortiz, Intel (Any Skill Level) (Slides Attached)
Kata Containers is a new open source project that combines the security of VMs with the speed of containers by providing extremely lightweight VMs for each container, while meeting OCI standards. This approach allows for true, hardware-backed isolation between containers -- a must for many multi-tenant or regulated environments. In this session, Kata Containers community leaders will introduce opportunities for newcomers to contribute to the project, including code contribution, community engagement, documentation, and more. Come learn how you can get involved!

Speakers
avatar for Anne Bertucio

Anne Bertucio

Community & Marketing, OpenStack Foundation
I work at the OpenStack Foundation where I work on both the OpenStack and Kata Containers projects. I help organize the communities, work with newcomers to navigate resources and start contributing, and lead release communications.
SO

Samuel Ortiz

Principal Engineer, Intel
TBD



Wednesday May 2, 2018 15:40 - 16:15
C1-M5

15:40

The Route To Rootless Containers - Ed King, Pivotal & Julz Friedman, IBM (Any Skill Level) (Slides Attached)
Rootless containers are a new and exciting development in the container community, offering the ability to create and manage containers as a completely unprivileged, non-root user. This is appealing both in terms of security, as well as in making container-based workloads accessible to a much wider audience.

During this presentation, Julz and Ed will share their learnings from the journey to adopting rootless containers in production for a large multi-tenant PaaS (Cloud Foundry). The talk contains a technical overview of rootless containers - what they are, how they work and how to enable them in runC as well as a discussion of the limitations of rootless containers and how we overcame those limitations. If you’re interested in using rootless containers in production, this talk is for you!

Speakers
avatar for Julian Friedman

Julian Friedman

Product Manager / Software Engineer,  IBM
Julian Friedman (julz) is an IBMer and the project lead for Cloud Foundy's low-level container engine ("Garden") and the Application Autoscaler component. Over a long career he has worked on early cloud environments, Map/Reduce, performance optimisation for AI systems and, of cou... Read More →
avatar for Ed King

Ed King

Software Engineer, Pivotal
Ed is a Systems Engineer currently working on the Cloud Foundry Garden project. He has spoken at CFSummit Santa Clara 2016.



Wednesday May 2, 2018 15:40 - 16:15
C1-M3

15:40

Performance and Scale @ Istio Service Mesh - Fawad Khaliq, VMware Inc, Laurent Demailly, Google & Surya V Duggirala, IBM (Intermediate Skill Level) (Slides Attached)
In this session, members from Istio Performance and Scalability working group will talk about the work they have done over the past few months on performance and scalability using a four pronged approach: microservices applications across multiple industry domains, synthetic end to end per component load generation using Fortio, code level micro benchmarks and integration with the test and release. In this session, we will discuss best practices and tuning guidelines for effectively using Istio service mesh to obtain best performance and scalability. This session also talks about Istio performance characteristics on multiple cloud platforms including Kubernetes with few pointers on what to expect in the coming releases.

Speakers
avatar for Laurent Demailly

Laurent Demailly

Staff Engineer, Google Inc
Laurent is one of the core contributors to Istio. He spent 20 years so far in top companies and small startups alike in Silicon Valley, currently works at Google after almost 6 years at Facebook's core infrastructure. He has been an open source advocate and contributor since the... Read More →
avatar for Surya V Duggirala

Surya V Duggirala

STSM, IBM Watson and Cloud Platform Architecture & Performance Engineering, IBM
Surya Duggirala is IBM STSM responsible for Architecture and Performance Engineering of IBM Watson and Cloud Platform. He directs a globally distributed team and chairs IBM Cloud performance engineering Guild. He also works closely with various Open Technology Communities and joi... Read More →
avatar for Fawad Khaliq

Fawad Khaliq

Senior Software Engineer, VMware Inc
Fawad is a senior software engineer at VMware working on Istio, APIs and microservices. Previously, he was a technical lead for the Cloud Group at PLUMgrid, a network virtualization and security startup. He has worked in the networking and distributed systems domain for several y... Read More →



Wednesday May 2, 2018 15:40 - 16:15
C1-M4

16:25

Panel Discussion: Containers in Enterprise Cloud Strategy: Pitfalls, Best Practices, and Predictions - Moderated by Anni Lai, Huawei (Intermediate Skill Level)
Container technology promises to help enterprises modernize legacy apps & create cloud-native apps for today’s fast growing digital economy. But, the container ecosystem, built around open src, is still relatively new & evolving at a breakneck pace. CIOs/CTOs today face the need to develop & implement a container strategy, knowing the risks of deploying a still immature technology into production environments that require 0 downtime.

This panel will bring together stakeholders from enterprise IT & open src cloud vendors to discuss the role of open src container technologies in their cloud strategies. Panelists will recount challenges & pitfalls faced in deploying containers in production environments & highlight gaps before containers are fully “enterprise ready", & best practices. Panelists will offer their views on the near future of containers as an enabler of the enterprise cloud.

Moderators
AL

Anni Lai

Open Source Strategy & Business Dev, Cloud BU, Huawei
I lead all the Cloud related open source community operations for Huawei, which currently includes OpenStack, CNCF, OCI, OpenSDS, and AI/ML. I work with our upstream team on daily basis to ensure we are effectively contributing to various open source technologies and meeting user... Read More →

Speakers
NM

Nils Magnus

Cloud Architect for the Open Telekom Cloud, T-Systems International GmbH
Nils designs with his team the Open Telekom Cloud, providing a public cloud offering based on OpenStack. As a strong believer and 20+ year user of Open Source technology, he envisions solutions on top of classic cloud services that both create value (business’ perspective) as w... Read More →
avatar for Brandon Philips

Brandon Philips

CTO of CoreOS, Red Hat
Brandon Philips is helping to shape the future of modern Linux server infrastructure at Red Hat. Brandon joined Red Hat as member of technical staff following the acquisition of CoreOS where he served as CTO. Prior to CoreOS, he worked at Rackspace hacking on cloud monitoring... Read More →
avatar for Brad Topol

Brad Topol

IBM Distinguished Engineer, IBM
Dr. Brad Topol is an IBM DE leading efforts focused on Open Technologies and Developer Advocacy. Brad is a Kubernetes contributor and serves as a member of the Kubernetes conformance wg.
avatar for Ying Xiong

Ying Xiong

Chief Architect, Cloud Platform, Huawei
Dr. Ying Xiong is currently responsible for leading an US R&D team and building PaaS on open source technologies for Huawei. Dr. Xiong has been involved in Kubernetes/container technologies and communities for over 3 years, ICT technologies for over 20 years. Prior to Huawei, he... Read More →


Wednesday May 2, 2018 16:25 - 17:00
C1-M1

16:25

Serverless WG BoF - Doug Davis, IBM (Any Skill Level)
Speakers
avatar for Doug Davis

Doug Davis

STSM, IBM
Doug works in IBM's Digial Business Group. He's been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker and Kubernetes. He's currently co-leading the CNCF's Serverless WG, the Clo... Read More →


Wednesday May 2, 2018 16:25 - 17:00
B5-M2+4

16:25

From Data Centers to Cloud Native - Dave Zolotusky & James Wen, Spotify (Intermediate Skill Level) (Slides Attached)
Spotify’s infrastructure is undergoing a drastic transformation from data centers running a large amount of proprietary services to public cloud hosted, cloud native services. Two years ago, all of Spotify’s services ran on on our own hardware. Today, they are running in Google Cloud Platform, and Spotify is in the process of replacing many of the proprietary systems with cloud native solutions like kubernetes, gRPC, and istio.

James and Dave will talk about the work that went into moving services into GCP and how Spotify got to where it is today. They will then cover ongoing work and plans to modernize the service infrastructure and migrate to cloud native services. This includes running service in kubernetes on GKE, migrating from a proprietary messaging stack to gRPC, as well as integrating the new infrastructure with existing service discovery and monitoring systems.

Speakers
avatar for James Wen

James Wen

Site Reliability Engineer, Spotify
James Wen is a Site Reliability Engineer at Spotify. He's currently on a Spotify task force focused on revamping Spotify's infrastructure and adopting Kubernetes and co. Prior, James was the Team Lead (Anchor) of the Cloud Foundry Buildpacks team at Pivotal and a core contributor... Read More →
avatar for Dave Zolotusky

Dave Zolotusky

Software Engineer, Spotify
Dave Zolotusky is a software engineer on Spotify's Infrastructure and Operations team in Stockholm, Sweden. His team builds and maintains the core platform that the rest of Spotify runs on. Before joining Spotify, Dave worked at Amazon Web Services, VMware, and Microsoft.



Wednesday May 2, 2018 16:25 - 17:00
Auditorium 10

16:25

Jenkins X: Easy CI/CD for Kubernetes - James Strachan, CloudBees (Intermediate Skill Level)
This talk will introduce you to a new open source project, Jenkins X, which is an open source CI / CD platform for Kubernetes based on Jenkins.

After a short introduction James will spent most of the talk demonstrating how to develop applications with CI / CD on Kubernetes with Jenkins X:

* easily setup your own CI / CD system on your cloud of choice using standard tools: kubernetes, draft, helm, jenkins
* quickly create new microservices or import existing projects with automated CI / CD
* use Pull Requests to trigger CI, Preview Environments, human approval then a full CD release
* use automated provisioning to Preview, Testing, Staging & Production environments via helm charts and GitOps

After this talk you should be able to develop cloud native apps at full speed with automated CI / CD in any language on any kubernetes cluster! Lest go faster!

Speakers
JS

James Strachan

Senior Architect, CloudBees
I work on CI + CD for Kubernetes with Jenkins for CloudBees. I'm the lead architect of Jenkins X. | | I also created the Groovy programming language, Apache Camel & was a founder of fabric8 & ActiveMQ. | | I've spoken at many conferences over the years (DevOxx, QCon, JavaOn... Read More →


Wednesday May 2, 2018 16:25 - 17:00
Auditorium 11+12

16:25

Growing in Your Contributor Role – Insights From a k8s Newcomer Working Within the Release Process - Tim Pepper, VMware (Beginner Skill Level) (Slides Attached)
New open source contributors often struggle to orient to a project’s processes and cadence, and kubernetes is no different in this regard. Approaching such a large and dynamic project can be daunting. While a relative newcomer to the kubernetes project, the speaker has twenty plus years of open source developer experience from which to draw on within the 1.10 release team as bug triage shadow and for 1.11 as the bug triage lead. Embedded service to the community within the release team, especially in a cross-SIG bug-focused role, provides a unique opportunity for contributor insights. This is not a 1.10 release retrospective (see pres. by Jaice Singer DuMars & Ihor Dvoretskyi), but the talk will walk through the release process, its phases, how the process is evolving through time and will use 1.10 specific examples to highlight areas ripe for new contributors to engage and grow.

Speakers
avatar for Tim Pepper

Tim Pepper

Open Source Engineer, VMware
Tim is a software engineer with over 20 years open source development experience. He is currently a member of VMware's Open Source Technology Center acting as an open source developer advocate and contributing to upstream projects such as kubernetes. In his past he's worked on th... Read More →



Wednesday May 2, 2018 16:25 - 17:00
C1-M2

16:25

Rook Project Intro – Bassam Tabbara, Tony Allen & Jared Watts, Upbound (Any Skill Level) (Slides Attached)
Speakers
avatar for Tony Allen

Tony Allen

Tony Allen is a software engineer at Upbound, where he is working on advancing cloud-native computing. He is currently a contributor to the Rook project (rook.io). Prior to Upbound, Tony worked on the storage engine at Nutanix as part of their file systems and core data path grou... Read More →
avatar for Bassam Tabbara

Bassam Tabbara

Founder & CEO, Upbound
Bassam Tabbara is the founder and CEO of Upbound, a new stealth-stage startup in the cloud-native computing space. He created the Rook project which provides Storage Orchestration for Kubernetes. Prior to Upbound Bassam was the CTO @ Quantum, co-founder and CTO @ Symform (a P2P s... Read More →
avatar for Jared Watts

Jared Watts

Founding Engineer, Upbound
Jared Watts is a Founding Engineer at Upbound, where he is working on advancing cloud-native computing by "freeing the cloud" and is also a maintainer for the open source Rook project (https://rook.io/). Before Upbound, he worked on innovative storage projects at Quantum Corp. an... Read More →



Wednesday May 2, 2018 16:25 - 17:00
B4-M1+3

16:25

SIG Autoscaling Intro – Marcin Wielgus, Google, & Solly Ross, Red Hat (Any Skill Level)
Come join members of SIG Autoscaling for a look at a "big picture" view of autoscaling in Kubernetes. We'll briefly discuss the different types of autoscaling (horizontal, vertical, and cluster), how they fit together, and where to use them. 

Speakers
avatar for Solly Ross

Solly Ross

Software Engineer, Red Hat
Solly Ross is the SIG lead for SIG Autoscaling, and works on Kubernetes and OpenShift at Red Hat, with a focus on autoscaling and metrics. When not dabbling in other parts of the Kubernetes code base, Solly enjoys a wide range of programming topics, and can be found most places o... Read More →
avatar for Marcin Wielgus

Marcin Wielgus

Senior Software Engineer, Google
Marcin Wielgus is a Senior Software Engineer at Google. Marcin joined the internet search giant in 2010 and since then he has been working on various projects, ranging from Android applications to recommendation engines. Currently he is a Tech Lead of the Kubernetes Autoscaling a... Read More →


Wednesday May 2, 2018 16:25 - 17:00
B3-M5+7

16:25

SIG AWS Update - Justin Santa Barbara, FathomDB (Any Skill Level) (Slides Attached)
Come hear the report on recent developments for AWS-on-Kubernetes.  There's ongoing work inside the "core" for things like NVME & ALB, but also an increasing amount of work outside the core - with new repository projects for encryption and more coming soon for authentication ... and more.  This makes for an exciting time both for Kubernetes users on AWS, and for anyone interested in contributing.

Speakers
avatar for Justin Santa Barbara

Justin Santa Barbara

Google
Justin is one of the kubernetes sig-aws leads and started the kops project, so loves to talk about how to install and operate kubernetes, or on all things kubernetes-on-AWS or on other clouds (particularly GCP, having just joined Google!)



Wednesday May 2, 2018 16:25 - 17:00
B3-M6+8

16:25

SPIFFE Project Intro - Andrew Jessup & Emiliano Berenbaum, Scytale, Inc. (Any Skill Level)
Join SPIFFE and SPIRE contributors for an overview of the newest project to join the CNCF.

Modern software development relies on many microservices working together, that in production may be distributed over different middleware systems, container schedulers, PaaS platforms and even different cloud providers. As production environments become more complex, and dynamic - establishing trust between microservices is becomes more difficult, creating challenges for developers, operations teams, and security teams alike.

Enter SPIFFE (Secure Production Infrastructure for Everyone) and which builds on designs first championed at Google, Twitter and elsewhere to provide robust authentication and trust between disparate micro-services. SPIFFE and SPIRE make it trivial to establish trust between workloads that may be elastically scaled and dynamically scheduled, and deployed in deeply heterogenous environments.

We'll walk through the design goals for SPIFFE (a specification) and SPIRE (a multi-cloud implementation of SPIFFE), an overview of SPIRE's modular architecture, and an overview of how it can be used in conjunction with other tools such as secret stores and service meshes to build secure and scalable microservice architectures.

Speakers
avatar for Emiliano Berenbaum

Emiliano Berenbaum

CTO, Scytale Inc.
avatar for Andrew Jessup

Andrew Jessup

Co-founder, Scytale Inc., Scytale Inc.
Andrew is the co-founder of Scytale, who are helping bring SPIFFE into the world. Find out more at https://github.com/spiffe/spiffe | | Andrew is an engineer, and entrepreneur with a passion for building tools that help bring simplicity to software development. Prior to co-f... Read More →


Wednesday May 2, 2018 16:25 - 17:00
B4-M2+4

16:25

SRv6LB: Leveraging IPv6, Segment Routing, and VPP for Very Fast, Reliable, and Efficient Distributed Data Center Workload Balancing - Mark Townsley & Pierre Pfister, Cisco (Advanced Skill Level)
In this talk, we present performance and scalability numbers from our open source implementation of the Maglev data-plane (part of Google’s load balancing architecture as defined in [1]) in fd.io/VPP, as well as extensions that leverage IPv6 and Segment Routing (SRv6LB [2]) in ways that improve the fairness and reliability for workload balancing in a Data Center. In systems like Kubernetes that serve a large number of connections to micro-service instances in containers, our analytical and experimental results show that processing with SRv6LB is more fairly balanced than with Maglev alone. This results in significantly faster overall response times for end users and more efficient utilization of compute resources, especially under very high load.

Speakers
avatar for Pierre Pfister

Pierre Pfister

Pierre Pfister is Software Engineer at Cisco's CTAO organization. He is an active participant and author at IETF (homenet, 6man, bier and hackathons) and co-developed the reference implementation of HNCP on OpenWrt platforms: hnetd. He is now commiter to FD.io's VPP-Sandbox proje... Read More →
avatar for Mark Townsley

Mark Townsley

Fellow, Cisco
Mark Townsley is a Cisco Fellow, Ecole Polytechnique Professor, and co-Founder of the Paris Innovation and Research Laboratory (PIRL). Before Joining Cisco in 1997, he held positions at IBM, the Institute for Systems Research (ISR) and the Center for Satellite and Hybrid Communic... Read More →


Wednesday May 2, 2018 16:25 - 17:00
Auditorium 15

16:25

Low-Overhead Tracing Using eBPF for Observability into Kubernetes Apps and Services - Gaurav Gupta, SAP Labs (Intermediate Skill Level) (Slides Attached)
In the Kubernetes world, there is a need to build observability around apps and backing services deployed in Pods.
The observability should allow to capture on demand low level metrics at a very low overhead.
The proposal is to use ebpf as the tracing technology to capture details at kernel and user level, and generate on demand flamegraphs, heat maps for applications & backend services.
The in-kernel BPF JIT compiler, bpf program verifier and in-kernel storage maps implementation allow users to run the programs in kernel that can never interfere with the kernel negatively, without much overhead.
These features make eBPF programs safe to run in production, and allow admins and engineers to collect crucial data from systems for performance analysis and monitoring.

Link: https://docs.google.com/presentation/d/1tnhlVqddPQ7wvhxp0_YiqCrowjB29RqV3sK2U7dKPug/edit?usp=sharing

Speakers
avatar for Gaurav Gupta

Gaurav Gupta

Developer, SAP Labs
Gaurav is a Software Engineer at SAP Labs, working with the Cloud Platform team. Gaurav is currently working on design and implementation of Service Brokers for SAP's Cloud Foundry and Kubernetes Cloud Platforms. He also has experience in Linux Kernel and User space profiling and... Read More →



Wednesday May 2, 2018 16:25 - 17:00
C1-M0

16:25

Take Control of your Filesystems with containerd’s Snapshotters - Stephen Day, Docker, Inc. (Advanced Skill Level) (Slides Attached)
Containers have had uncanny abilities to build, manage, and distribute changes as part of the container’s filesystems through the use of layers and graphdrivers. A critical part of the magic making people’s experience with containers delightful, this is considered a necessity in any container-based system. The complexity and integration of graphdrivers makes working with them directly cumbersome and error prone.

containerd departs from this and introduces a new abstraction, known as “snapshotters”. Mounting a container’s filesystem, direct manipulation, arbitrary diffing, and native copying, previously a challenge, are all now possible with minimal effort. In this talk, we’ll cover the evolution of Docker’s graphdrivers to containerd snapshotters, demonstrating the wonderful properties of snapshotters in the process.

Speakers
avatar for Stephen Day

Stephen Day

Senior Software Engineer, Docker
Stephen Day is a software engineer at Docker. His many contributions to Docker ecosystem projects include SwarmKit and the version 2 specification for the Docker Registry HTTP API, and evolving the available models for container image distribution. He currently works on container... Read More →



Wednesday May 2, 2018 16:25 - 17:00
C1-M5

16:25

Improving your Kubernetes Workload Security with Hardware Virtualization - Fabian Deutsch, Red Hat & Samuel Ortiz, Intel (Intermediate Skill Level) (Slides Attached)
On any given node, all Kubernetes workloads are running through software-only isolation. The security concerns related to that level of isolation could be mitigated by using hardware virtualization for both pods and traditional (legacy?) workloads.
This talk will present two complementary approaches for doing so: Kata Containers and KubeVirt. We'll be describing how both projects leverage CPU virtualization to implement a stronger security architecture for Kubernetes. When combining both approaches, one can run a wider range of workloads, from untrusted containers through Kata Containers to more traditional, lift and shift applications with KubeVirt.

Speakers
avatar for Fabian Deutsch

Fabian Deutsch

Associate Manager, Red Hat
Fabian Deutsch is working at Red Hat and used to be much more active in the Fedora community as he is today, worked on the oVirt project for a few years, and is now involved in KubeVirt.
SO

Samuel Ortiz

Principal Engineer, Intel
TBD



Wednesday May 2, 2018 16:25 - 17:00
C1-M3

16:25

Introducing Envoy-Based Service Mesh at Booking.com - Ivan Kruglov, Booking.com (Intermediate Skill Level) (Slides Attached)
Service mesh is a dedicated layer of a company's infrastructure which should simplify communication between services and make it reliable, secure and observable.

In this talk, we'll go deep into Booking.com's case study of introducing service mesh. We will discover the reasons and objectives of the project. Why Envoy was selected as the base rather than other available options. Find out what is the setup and features of the homegrown control plane. We will expand on what service is provided for developers and how they safely deploy potentially dangerous configuration changes. Finally, we will talk about pitfalls met along the way.

Speakers
avatar for Ivan Kruglov

Ivan Kruglov

Principal Developer, Booking.com
Since joining Booking.com in 2013, Ivan has worked on various infrastructure related projects: distributed delivery and processing of telemetry data, Big Data, Web stack, hotel search engine, storage for PII data. Ivan is now tackling questions related to migration toward a servi... Read More →



Wednesday May 2, 2018 16:25 - 17:00
C1-M4

16:30

Meet the Maintainer - Torin Sandall, Styra
Speakers
avatar for Torin Sandall

Torin Sandall

Software Engineer, Styra
Torin Sandall is the technical lead of the open source Open Policy Agent project. Torin has spent his 10 years as a software engineer working on large-scale distributed systems projects. Torin has recently given talks on policy-related topics in Kubernetes at KubeCon, ContainerDa... Read More →


Wednesday May 2, 2018 16:30 - 17:00
CNCF Booth

17:10

Keynote: Anatomy of a Production Kubernetes Outage - Oliver Beattie, Head of Engineering, Monzo Bank (Slides Attached)
This talk will dive into a production Kubernetes outage that Monzo experienced a few months ago, its causes and effects, and the architectural and operational lessons learned.

Speakers
avatar for Oliver Beattie

Oliver Beattie

Head of Engineering, Monzo
Oliver Beattie is Head of Engineering at Monzo, leading the development of the distributed systems to power a new kind of bank. He previously worked on Hailo's global micro-services platform.



Wednesday May 2, 2018 17:10 - 17:30
Congress Hall A

17:30

Keynote: Container-Native Dev-and-ops Experience: It's Getting Easier, Fast. - Ralph Squillace, Principal PM – Azure Container Platform, Microsoft (Slides Attached)
The theme of Austin's KubeCon was that kubernetes is still too hard for developers. The Azure team has been working hard to improve the ease of container-native app development, using 100% open source technology. Come see how much has changed building applications for Kubernetes; things you can use anywhere Kubernetes is; anywhere you are.

Speakers
avatar for Ralph Squillace

Ralph Squillace

Principal Program Manager, Microsoft
Ralph Squillace is a Principal Program Manager for the open-source, container-native dev and ops Kubernetes tooling built by Azure. He oversees contributions to Helm, Draft, Brigade, VS Code Kubernetes extensions, and any random thing that makes building apps in containers easier... Read More →



Wednesday May 2, 2018 17:30 - 17:35
Congress Hall A

17:35

Keynote: Cloud Native Observability & Security from Google Cloud - Craig Box, Staff Developer Advocate, Google (Slides Attached)
Speakers
avatar for Craig Box

Craig Box

Craig Box leads the Cloud Native advocacy team at Google Cloud. He has worked with customers and communities since the launch of Kubernetes in 2014, and last year delivered talks on 5 continents. He is the co-host of the Kubernetes Podcast from Google. | | Craig started his care... Read More →



Wednesday May 2, 2018 17:35 - 17:40
Congress Hall A

17:40

Keynote: CNCF End User Awards - Presented by Chris Aniszczyk, COO, Cloud Native Computing Foundation (Slides Attached)
Speakers
avatar for Chris Aniszczyk

Chris Aniszczyk

Executive Director, OCI/Linux Foundation
Chris Aniszczyk is an engineer by trade with a passion for open source and building communities. At Twitter, he created their open source program and led their open source efforts. For many years he served on the Eclipse Foundation's Board of Directors representing the committer... Read More →



Wednesday May 2, 2018 17:40 - 17:45
Congress Hall A

17:45

Keynote: Prometheus 2.0 – The Next Scale of Cloud Native Monitoring - Fabian Reinartz, Software Engineer, Google (Slides Attached)
In November 2017 Prometheus 2.0 was released. Along with several semantical improvements it got fitted with a new storage engine that addresses the new relatives of highly dynamic Cloud Native infrastructures.

This talk will walk through the latest and greatest changes of the Prometheus's second big iteration. We explore the challenges of scaling a monitoring systems to dozens of millions of time series and how Prometheus 2.0 achieves performance improvements of up to two orders of magnitude.


Speakers
avatar for Fabian Reinartz

Fabian Reinartz

Software Engineer, Google
| Fabian Reinartz is a software engineer at Google and one of the core developers of Prometheus, a monitoring system and time series database. Previously, he was a production engineer at SoundCloud and worked on information retrieval during his time at Saarland University.



Wednesday May 2, 2018 17:45 - 18:05
Congress Hall A

18:05

Keynote: Serverless, Not So FaaS - Kelsey Hightower, Kubernetes Community Member, Google (Slides Attached)
Speakers
avatar for Kelsey Hightower

Kelsey Hightower

Kubernetes Community Member, Google
Kelsey Hightower has worn every hat possible throughout his career in tech, and enjoys leadership roles focused on making things happen and shipping software. Kelsey is a strong open source advocate focused on building simple tools that make people smile. When he is not slinging Go code, you can catch him giving technical workshops covering everything from programming to system administration... Read More →



Wednesday May 2, 2018 18:05 - 18:13
Congress Hall A

18:13

Keynote: Closing Remarks - Liz Rice, Technology Evangelist, Aqua Security (Slides Attached)
Speakers
avatar for Liz Rice

Liz Rice

Technology Evangelist, Aqua Security
Liz Rice is the Technology Evangelist with container security specialists Aqua Security, and also works on container-related open source projects including manifesto and kube-bench. She has a wealth of software development, team, and product management experience from working on... Read More →



Wednesday May 2, 2018 18:13 - 18:15
Congress Hall A

18:15

Welcome Reception + Sponsor Booth Crawl
Join us in the Sponsor Showcase to meet our sponsors, network with community members, and enjoy food and drinks.

Thank you to our sponsor Accenture!

Wednesday May 2, 2018 18:15 - 20:15
Sponsor Showcase

18:30

20:00

Tungsten Fabric User Group Reception
Join Tungsten Fabric User Group for a BeerBash & pizza!

Wednesday May 2, 2018 20:00 - 22:00
Meeting Room 178, AC Hotel Bella Sky Copenhagen

20:20

AWS / kops Deep Dive / Hacking Session – Justin Santa Barbara, FathomDB (Intermediate Skill Level)
Come hack on AWS, or kops (or anything kubernetes)!  The goal is to help you get your PR into kubernetes - whether it's your first PR and you just want some pointers on how the PR / review process works, or if you want to get into deep design discussion.  If numbers allow we'll try to do 1:1 time, but otherwise we may ask for "volunteers"!

Speakers
avatar for Justin Santa Barbara

Justin Santa Barbara

Google
Justin is one of the kubernetes sig-aws leads and started the kops project, so loves to talk about how to install and operate kubernetes, or on all things kubernetes-on-AWS or on other clouds (particularly GCP, having just joined Google!)


Wednesday May 2, 2018 20:20 - 21:40
C1-M1

20:20

CNCF: CloudEvents Working Group F2F – Doug Davis, IBM (Intermediate Skill Level)
As an off-shoot of the CNCF Serverless working group, the CloudEvents WG is developing an interoperable specification around Events for the Cloud ecosystem. This is a working session of the group, so we will be meeting to discuss the latest issues and proposals from its members. Additionally, we'll be discussing our plans for the future and scheduling our activities for achieving those goals. As the WG is open to anyone, come join us and see what we're up to!

Speakers
avatar for Doug Davis

Doug Davis

STSM, IBM
Doug works in IBM's Digial Business Group. He's been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker and Kubernetes. He's currently co-leading the CNCF's Serverless WG, the Clo... Read More →


Wednesday May 2, 2018 20:20 - 21:40
C1-M4

20:20

SIG Apps Deep Dive – Janet Kuo & Kenneth Owens, Google (Intermediate Skill Level)
SIG Apps is dedicated to all facets of designing, developing, and running applications on Kubernetes. This is a working sessions and the content will be driven by the interests of the attendees. Topics could involve Helm, Charts, the workload APIs, tool development, tool interoperability, or any other topic relevant to the space. This is your opportunity to let your ideas help shape the future direction of the community.

Speakers
avatar for Janet Kuo

Janet Kuo

Software Engineer, Google
Janet is a Software Engineer for Google Cloud. She joined the Kubernetes project before the 1.0 launch in 2015. She is an active SIG Apps contributor and the owner of Kubernetes workload APIs. She strives to build the best experience for running workloads in Kubernetes.
KO

Kenneth Owens

Software Engineer, Google


Wednesday May 2, 2018 20:20 - 21:40
Auditorium 10
 
Thursday, May 3
 

06:30

Fun Run

Location: Meet at the main entrance of The Bella Center at 6:15.

RSVP required.  Signups for the running tour will close at 11:59pm (CET) on Monday, April 30.

A complimentary, one-hour scenic run will be provided by Running Tours Copenhagen to get your energy going for the day.  Meet at the main entrance of the Bella Center at 6:15am to form pace groups for a 6:30am start.  All paces are welcome!

Participants will be required to provide their own running attire and water.


Thursday May 3, 2018 06:30 - 07:30
Bella Center

07:30

The NewStack Pancake Breakfast & Podcast: Securing Kubernetes
Topic:   Securing Kubernetes

Is an application architecture ever fully secure? Enter SPIFFE, a whimsical sounding term that is now an official CNCF project. It’s focus: build a way to create a secure identity framework for production environments. It’s a new level of complexity that also raises discussions about access, authentication and network-level ACL configurations. Come learn, engage in conversation and enjoy a short stack with The New Stack. And of course, our special sponsor, VMware, deserves the chef’s gratitude for making this breakfast possible.

Space is limited and available on a first come, first served basis.

Moderators
avatar for Joab Jackson

Joab Jackson

Managing Editor, The New Stack
avatar for Alex Williams

Alex Williams

Founder & Editor-in-Chief, The New Stack

Speakers
KG

Krishna Ganugapati

VP Research & Development, Cloud-Native Applications / VMware
Krishna Ganugapati is VP, Cloud Native R&D at VMware. He leads Kubernetes engineering efforts at VMware. In addition, he was responsible for the creation of Photon OS, VMware’s container-centric Linux distribution and Project Lightwave, VMware’s open source identity platform... Read More →
avatar for Andrew Jessup

Andrew Jessup

Co-founder, Scytale Inc., Scytale Inc.
Andrew is the co-founder of Scytale, who are helping bring SPIFFE into the world. Find out more at https://github.com/spiffe/spiffe | | Andrew is an engineer, and entrepreneur with a passion for building tools that help bring simplicity to software development. Prior to co-f... Read More →
avatar for Maya Kaczorowski

Maya Kaczorowski

Product Manager, Security & Privacy, Google
Maya Kaczorowski is a Product Manager at Google, working in container security, and was previously the Product Manager for Google Cloud KMS.
TP

Tom Petrocelli

Analyst, Amalgam Insights
Tom Petrocelli is a contributing analyst with Amalgam Insights. His area ofinterest is collaboration and new ways of work, developer tools, IT projectefficiency, governance, and methodologies, and DevOps. He is looks at howlarge regulated companies, especially financial services... Read More →
avatar for Andreas Zitzelsberger

Andreas Zitzelsberger

Principal Software Architect, QAware GmbH
Andreas is Principal Software Architect at QAware, an independent cloud native software manufacturer that has been repeatedly awarded Best IT Workplace in Germany. His focus is cloud native computing in all its glory. He is responsible for the heavy lifting at a large-scale cloud... Read More →


Thursday May 3, 2018 07:30 - 08:45
B3 M1-M4

08:00

Welcome Coffee
Thursday May 3, 2018 08:00 - 09:00
Auditorium Foyer

08:00

Registration
Thursday May 3, 2018 08:00 - 18:00
Main Lobby

09:00

Keynote: Kubernetes Project Update - Aparna Sinha, Group Product Manager, Kubernetes and Google Kubernetes Engine, Google (Slides Attached)
Speakers
avatar for Aparna Sinha

Aparna Sinha

Group Product Manager, Google
Aparna Sinha leads the product team at Google for Kubernetes OSS and Kubernetes Engine. She started and co-leads the Product Management SIG to maintain an open backlog for the Kubernetes project on Github. Aparna is currently a secondary member of the CNCF Governing Board. She ha... Read More →



Thursday May 3, 2018 09:00 - 09:30
Congress Hall A

09:30

Keynote: Accelerating Kubernetes Native Applications - Brandon Philips, CTO of CoreOS, Red Hat (Slides Attached)
CoreOS introduced the Operator concept to the Kubernetes community in 2016: a tool that automates the operational tasks necessary to deploy, update, and run a distributed application on Kubernetes. Operators reduce the barriers to entry to develop applications on Kubernetes - but building an Operator from scratch is a time-consuming task that requires a deep understanding of Kubernetes. Join Brandon Philips for a look at what’s new to help accelerate your ability to build your own Operator and get back to developing your innovative application.

Speakers
avatar for Brandon Philips

Brandon Philips

CTO of CoreOS, Red Hat
Brandon Philips is helping to shape the future of modern Linux server infrastructure at Red Hat. Brandon joined Red Hat as member of technical staff following the acquisition of CoreOS where he served as CTO. Prior to CoreOS, he worked at Rackspace hacking on cloud monitoring... Read More →



Thursday May 3, 2018 09:30 - 09:35
Congress Hall A

09:35

Keynote: Switching Horses Midstream: The Challenges of Migrating 150+ Microservices to Kubernetes - Sarah Wells, Technical Director for Operations and Reliability, Financial Times (Slides Attached)
The FT’s content platform team put our first containers live in mid-2015 and migrated the rest of our services over by April 2016. At that point, we weren't using Kubernetes - and much of what we were using, we built ourselves.

At the end of 2016, we decided we wanted to benefit from the work other people were doing and switch over to Kubernetes. But it's not easy to do that kind of move when you have 150+ microservices and you need to keep the existing platform running in parallel while you do the migration.

I'm going to talk about this migration and the challenges we faced. 

Speakers
avatar for Sarah Wells

Sarah Wells

Technical Director for Operations and Reliability, Financial Times
Sarah Wells has been a developer for 15 years, leading delivery teams across consultancy, financial services and media. Over the last few years she has developed a deep interest in operability, observability and devops, and this has recently led to her taking over responsibility... Read More →



Thursday May 3, 2018 09:35 - 09:55
Congress Hall A

09:55

Keynote: Shaping the Cloud Native Future - Abby Kearns, Executive Director, Cloud Foundry Foundation (Slides Attached)
Cloud Foundry is an integral part of the movement creating interoperability among the open source, cloud-native ecosystem. Complementary, interlocking open source technologies like Cloud Foundry, Kubernetes and the Open Service Broker API are shifting the way industries function. These technologies weave together flexibility and application development for virtually any type of business.

What began as a grassroots movement among developers has mushroomed into a massive collaborative community. Linux laid the groundwork in 1991, and the Linux Foundation continues to host the world’s leading open source projects. Today, projects like Cloud Foundry and Cloud Native Computing Foundation, as well as standards like the Open Container Initiative, effectively serve as the voice of the people. The developers creating these projects are defining the next generation of technology infrastructure.

In this talk, Abby Kearns will discuss the importance of interoperability, and how it is critical to the future success of technologies. Abby will also discuss the role that open source plays in cloud technologies -- delivering a flexible, scalable strategy to drive the future of business.


Speakers
avatar for Abby Kearns

Abby Kearns

Executive Director, Cloud Foundry Foundation
With nearly twenty years in the tech world, Abby Kearns is a true veteran of the industry. Her lengthy career has spanned product marketing, product management and consulting across Fortune 500 companies and startups alike. As Executive Director of Cloud Foundry Foundation, Abby... Read More →



Thursday May 3, 2018 09:55 - 10:15
Congress Hall A

10:15

Keynote: Skip the Anxiety Attack - Build Secure Apps with Kubernetes - Jason McGee, Fellow, IBM (Slides Attached)
Software development today is more rapid, more distributed and more dynamic. As a developer, you really want to be able to focus your time on creating new solutions. But as much as you might want to ignore it, you still have to ensure the apps you build scale, stay up and stay secure. Developers still need to understand and control the software supply chain: you still need to know who built what. You need to understand if your software is vulnerable, compliant with your processes and regulations, and secure. And you need to know what is running right now, where it is running, and to be able to control when it changes.  

So the trick is how to spend as little time as possible on these issues so you can focus on building your app. The combination of Kubernetes and Cloud can make that happen for you.

At IBM we are focused on helping you focus. The IBM Cloud Container Service, which leverages Kubernetes, provides advanced capabilities for building cloud-native apps, adding DevOps to existing apps, and ultimately relieves the pain around security, scale, and infrastructure management. 

Speakers
avatar for Jason McGee

Jason McGee

Fellow, IBM
Jason McGee, IBM Fellow, is VP and CTO of Container and Microservice Tribe. Jason leads the technical strategy and architecture across all of IBM Cloud, with specific focus on core foundational cloud services, including containers, micro-services, continuous delivery and operatio... Read More →



Thursday May 3, 2018 10:15 - 10:20
Congress Hall A

10:20

Keynote: Software's Community - Dave Zolotusky, Software Engineer, Spotify (Slides Attached)
We talk about community software and about how companies are adopting it and using it, but we often ignore the community around that software in those conversations. As Spotify has ramped up its use of Kubernetes and other cloud native software, we have also been working on involving ourselves more in the community around that software. Dave will talk about how Spotify is changing its approach and culture around infrastructure to be more open and to be more involved in the infrastructure software community.

Speakers
avatar for Dave Zolotusky

Dave Zolotusky

Software Engineer, Spotify
Dave Zolotusky is a software engineer on Spotify's Infrastructure and Operations team in Stockholm, Sweden. His team builds and maintains the core platform that the rest of Spotify runs on. Before joining Spotify, Dave worked at Amazon Web Services, VMware, and Microsoft.



Thursday May 3, 2018 10:20 - 10:40
Congress Hall A

10:30

Meet the Maintainer - Rook
Speakers
avatar for Bassam Tabbara

Bassam Tabbara

Founder & CEO, Upbound
Bassam Tabbara is the founder and CEO of Upbound, a new stealth-stage startup in the cloud-native computing space. He created the Rook project which provides Storage Orchestration for Kubernetes. Prior to Upbound Bassam was the CTO @ Quantum, co-founder and CTO @ Symform (a P2P s... Read More →


Thursday May 3, 2018 10:30 - 11:30
CNCF Booth

10:40

Coffee Break
Thursday May 3, 2018 10:40 - 11:10
Centerhall E & Hall C

10:40

Newcomer's Lounge
A CNCF Ambassador will be available to answer all your questions as a first-time or newish KubeCon + CloudNativeCon attendee. We're happy to welcome you an answer all your questions!

Thursday May 3, 2018 10:40 - 11:10
Centerhall E

10:40

11:10

From PaaS to Kubernetes: Combining the Power of Kubernetes with the Most Innovative Features of PaaS - William Denniss, Google (Beginner Skill Level)
The PaaS application deployment model innovated by abstracting away the infrastructure layer and pioneered production deployments from version control – but at a cost of portability, and flexibility. This talk covers how to wire up Kubernetes to get the best elements of a PaaS like push-to-deploy, and infrastructure abstraction, while gaining the flexibility, portability and interoperability that Kubernetes offers.

Topics covered will include ways to use Kubernetes without needing to be on-call (no more 3am phone calls!), and why it makes sense to start with Kubernetes, even for early-stage products using a single-node cluster. This presentation isn't about running a PaaS on Kubernetes or hiding the Kubernetes API from application developers, it's is about applying the best elements from the PaaS pattern, while keeping all the innovations and flexibility of Kubernetes.

Speakers
avatar for William Denniss

William Denniss

Product Manager, Google
William is a Product Manager at Google on Google Kubernetes Engine. He chairs the Kubernetes Conformance working group, and has a passion for interoperability and developer experience. Previously he worked in the OAuth community, authoring RFC 8252 and creating AppAuth, the leadi... Read More →


Thursday May 3, 2018 11:10 - 11:45
C1-M1

11:10

OCI BoF - Alban Crequy, Kinvolk & Chris Aniszczyk, CNCF (Any Skill Level) (Slides Attached)
Speakers
avatar for Chris Aniszczyk

Chris Aniszczyk

Executive Director, OCI/Linux Foundation
Chris Aniszczyk is an engineer by trade with a passion for open source and building communities. At Twitter, he created their open source program and led their open source efforts. For many years he served on the Eclipse Foundation's Board of Directors representing the committer... Read More →
avatar for Alban Crequy

Alban Crequy

CTO, Kinvolk
Originally from France, Alban currently lives in Berlin where he is a CTO & co-founder at Kinvolk, a software engineering team focused on building foundational Linux technologies for the cloud. He is a contributor to rkt, a container runtime for Linux, Weave Scope, a container vi... Read More →



Thursday May 3, 2018 11:10 - 11:45
B3-M5+7

11:10

Higher-Order Deployments: Reducing Boilerplate With Kubernetes Custom Resource Definitions - James Bowes, Manifold (Intermediate Skill Level) (Slides Attached)
Custom Resource Definitions (CRDs) with associated Controllers can provide a more powerful alternative to templating YAML manifests in Kubernetes. This talk will cover how we use CRDs and Controllers at Manifold to define higher-order composite Kubernetes resources for our deployments at Manifold. These CRDs combine the definition of Deployments, Services, and Ingresses into a single resource that is continually reconciled by Kubernetes, preventing accidental deletion or modification of one of the components. With the associated Controllers, we are able to define new styles of deployment rollouts, and trigger automatic deployments when secrets or container images change, based on definable policies.

Speakers
avatar for James Bowes

James Bowes

Technical Lead, Manifold
James Bowes is the Technical Lead at Manifold. Over his 13 year career he has worked for companies like Red Hat and Salesforce as a senior member of the technical staff. James has scaled early stage startups and also managed and sustained large organizations. James is mainly a ba... Read More →



Thursday May 3, 2018 11:10 - 11:45
C1-M0

11:10

Jaeger Project Deep Dive - Juraci Kröhling, Red Hat (Intermediate Skill Level) (Slides Attached)
Speakers
avatar for Juraci Paixão Kröhling

Juraci Paixão Kröhling

Software Engineer, Red Hat
Juraci is a software engineer at Red Hat working with the Distributed Tracing team on the Kiali project. He is a core contributor to Jaeger and is also active in the OpenTracing community.



Thursday May 3, 2018 11:10 - 11:45
B4-M1+3

11:10

SIG Scheduling Deep Dive – Bobby Salamat & Jonathan Basseri, Google (Intermediate Skill Level) (Slides Attached)
Please join us for in-depth understanding of Kubernetes Scheduler and its advanced features.In this presentation we talk about the internals of Kubernetes Scheduler and how it keeps track of the cluster resources in order to make scheduling decisions. We will cover the scheduling workflow and the life of a Pod during a scheduling cycle. Then we will talk about some of the advanced scheduling features that enable users to customize placement of their workloads in Kubernetes clusters to achieve higher reliability and/or better resource utilization.This session is most useful for cluster admins or those who want to start contributing to Kubernetes scheduler.

Speakers
avatar for Jonathan Basseri

Jonathan Basseri

Software Engineer, Google
avatar for Bobby (Babak) Salamat

Bobby (Babak) Salamat

Software Engineer, Google
Bobby Salamat is co-lead of Kubernetes SIG Scheduling and co-maintainer of Kubernetes default scheduler. He is interested in advanced scheduling techniques to improve resource efficiency of clusters. He is also interested in improving user experience and making default behavior o... Read More →



Thursday May 3, 2018 11:10 - 11:45
B4-M2+4

11:10

CNCF Cross-Cloud CI Intro – Denver Williams, Cloud Native Computing Foundation, & Taylor Carpenter, Vulk Coop (Any Skill Level) (Slides Attached)
Speakers
avatar for Taylor Carpenter

Taylor Carpenter

Partner, Vulk Coop
Partner at Vulk Cooperative - http://vulk.coop | Co-Lead Cross-Cloud CI project - http://crosscloud.ci | | OpsDev geek. Elixir and Ruby programmer. Father, book devourer, dark beer lover. | | I think the concept of a delightful user experience should be applied to all parts o... Read More →
DW

Denver Williams

Cross-Cloud Project Founder, CNCF



Thursday May 3, 2018 11:10 - 11:45
B3-M6+8

11:10

SIG Storage (K8s) Intro - Saad Ali, Google (Any Skill Level)
Join Kubernetes SIG Storage to learn about the areas of our focus, what we are working on currently, and how you can get involved. Veteran SIG Storage members will be on hand to help answer questions.

Speakers
avatar for Saad Ali

Saad Ali

Senior Software Engineer, Google
Saad Ali is a senior software engineer at Google where he works on the open-source Kubernetes project. He joined the project in December 2014, and has led the development of the Kubernetes storage and volume subsystem. He serves as a lead of the Kubernetes Storage SIG, and is co... Read More →


Thursday May 3, 2018 11:10 - 11:45
B5-M1+3

11:10

Managing Kubernetes: What You Need to Know About Day 2 - Craig Tracey, Heptio (Intermediate Skill Level) (Slides Attached)
OK, so you have successfully deployed Kubernetes, but now what? This presentation will provide insights on how to best leverage your "Day 2" software deployment and operations with Kubernetes.

With dozens of real-world customer use cases to dissect from, we will cover the commonalities amongst deployments, the unforeseen failures, the most-often misunderstood features, and a redux of top-ranked best-practices that will result in a successful production roll-out. From user management to labelling policies and all the way through to upgrades, we will show you how our customers "went live."

Beyond just the technical, this talk will also cover the organizational constructs that have yielded successful outcomes.

Speakers
CT

Craig Tracey

Solutions Engineer, Heptio
For the last 20 years Craig has helped build the infrastructure that powers the Internet. In this time he has had the opportunity to develop everything from kernel device drivers, to massive-scale cloud storage services, and even a few distributed compute platforms. Now as a Soft... Read More →



Thursday May 3, 2018 11:10 - 11:45
Auditorium 10

11:10

Building a Go AI with Kubernetes and TensorFlow - Andrew Jackson & Josh Hoak, Google (Beginner Skill Level) (Slides Attached)
Reinforcement learning approaches can be massively parallelized, so Kubernetes seems like a natural fit, as Kubernetes is all about reducing the overhead for managing applications. However, it can be daunting to wade into Kubernetes and Machine Learning, especially when you add in hardware accelerators like GPUs or TPUs!

This talk will break down how you can use Kubernetes and TensorFlow to create, in relatively few lines of code, a tabula rasa AI that can play the game of go, inspired by the AlphaZero algorithm published by Deepmind. This talk will rely on GPUs, TPUs, TensorFlow, KubeFlow, and large-scale Kubernetes Engine clusters.

Speakers
avatar for Josh Hoak

Josh Hoak

Senior Software Engineer, Google
Josh has been a software engineer at Google for the last 6 years, most recently working on Google Kubernetes Engine. Josh learned to program a decade ago writing python scripts to generate go books, and has been a go enthusiast ever since.
AJ

Andrew Jackson

Software Enginer, Google
Andrew Jackson currently works on machine learning at Google, previously working on the Google Clips camera. Outside of Google, Andrew Jackson serves on the board of directors of the American Go Association.



Thursday May 3, 2018 11:10 - 11:45
C1-M5

11:10

Make Ingress-Nginx Work for You, and the Community - Fernando Diaz, IBM (Any Skill Level) (Slides Attached)
Have you been using Ingress-Nginx in your deployment and have features you wish to Contribute to the community, but are unsure how? Don't worry with the easy to follow session, you'll be up and running in no time.

This session is perfect for beginners or community experts alike who wish to get more involved with Nginx-Ingress.
https://youtu.be/GDm-7BlmPPg
From our demos, you'll learn:

1. How the ingress-controller works, from the internals to the templates.
2. How to add a simple feature, eg. Annotation, ConfigMap config change.
3. Building and Deploying the Ingress Controller and description of resources.
4. Configuring the Ingress Controller using Annotations and the Config Map.
5. Tips for Contributing back.

Speakers
avatar for Fernando Diaz

Fernando Diaz

Software Developer, IBM
Fernando Diaz is an active contributor to Kubernetes, mainly focusing on Ingress-Nginx. Fernando is currently a Cloud Developer for IBM and works on the IBM Cloud Container Service primarily focusing on ingress. | | In the past Fernando was an OpenStack Core Contributor, focusin... Read More →



Thursday May 3, 2018 11:10 - 11:45
Auditorium 15

11:10

Autoscale your Kubernetes Workload with Prometheus - Frederic Branczyk, CoreOS (Intermediate Skill Level) (Slides Attached)
Time to autoscale your cloud native deployments, but how do you make it happen? In the past, easier said than done. Lack of guidance and inconsistent implementations of solutions have made autoscaling on Kubernetes a pain. Tedious extensibility and difficult maintenance with Heapster were some of the causes for this. Those days are over! At Kubernetes sig-instrumentation, we have developed and standardised the resource and custom metrics APIs. These APIs are finally giving Kubernetes the autoscaling capabilities it so desperately needed.

Frederic Branczyk, software engineer at CoreOS, will explain the history of autoscaling on Kubernetes, elaborate on the design and usage of these newly developed APIs, and describe how they benefit the consistency of autoscaling. He will talk about the recommended way to autoscale Kubernetes using Prometheus, and end with a demo showcasing just that.

Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Software Engineer, CoreOS
Frederic is an engineer at CoreOS contributing to Prometheus and Kubernetes to build state of the art modern infrastructure and monitoring tools. He discovered his interest in monitoring tools and distributed systems in his previous jobs, where he used machine learning to detect... Read More →



Thursday May 3, 2018 11:10 - 11:45
Auditorium 11+12

11:10

Building cert-manager: Migrating Thousands of Users from kube-lego to use CRDs - James Munnelly, Jetstack (Intermediate Skill Level)
cert-manager is a new project, built to replace kube-lego and make x509 certificates first class citizens in Kubernetes. Using custom resource definitions to introduce the concept of Issuers into a cluster, end-users can request signed TLS certificates from an ACME server (e.g. Let’s Encrypt), a signing key pair, Hashicorp Vault, or your organisations custom CA through its extensible design.

This talk presents cert-manager and demonstrates its new features over its predecessor, and specifically our approach to migrate thousands of users from kube-lego to the new custom resource backed system, without hindering future cert-manager functionality or effecting production users. At the end, we’ll go over the roadmap and future plans for the project, as well as how you can get involved!

Speakers
JM

James Munnelly

Solutions Engineer, Jetstack
James is a Solutions Engineer at Jetstack, which involves helping customers bend and break Kubernetes to their will. He's created a number of extensions to Kubernetes core, including cert-manager (a kube-lego successor), Navigator (DBaaS for Kubernetes), a simple cloud provider f... Read More →


Thursday May 3, 2018 11:10 - 11:45
C1-M2

11:10

Applying Least Privileges through Kubernetes Admission Controllers - Benjy Portnoy, Aqua Security (Intermediate Skill Level)
An admission controller intercepts requests to the Kubernetes API server prior to persistence of the object. By applying proper admission controls in your Kubernetes cluster, it's possible to generate deployments that adhere to the least privilege model, limiting user and container activity based on their business usage needs. 

In this session, we will review the latest and greatest Kubernetes 1.9 admission controller capabilities, we will demonstrate in a live demo a dynamic admission control webhook that can be customized to limit privileged user access.

Speakers
avatar for Benjy Portnoy

Benjy Portnoy

Director of DevSecOps, Aqua Security
Benjy is a seasoned cyber security professional with over 15 years experience in consulting, designing, and implementing strategic information security projects for organizations across EMEA. He is currently the director of DevSecOps at Aqua Security, helping enterprises streaml... Read More →


Thursday May 3, 2018 11:10 - 11:45
C1-M3

11:10

How to Get a Service Mesh Into Prod without Getting Fired - William Morgan, Buoyant, Inc (Any Skill Level) (Slides Attached)
You’ve researched your service mesh options, made your decision, and are ready to deploy your very first service mesh. But how do you add a new communications infra layer across your entire production stack without bringing the whole thing down?

In this talk, William Morgan (Buoyant) shares war stories from two years of helping users get their service mesh running in production. He shares examples of how teams with hybrid infrastructures adopt a service mesh between modern and legacy systems, how they use a service mesh to migrate production services from on-premises to the cloud, and other alternative approaches that don’t require a high-risk revamp of your entire architecture..

Speakers
avatar for William Morgan

William Morgan

CEO, Buoyant, Inc
Talky person @ Buoyant. Service mesh connoisseur.



Thursday May 3, 2018 11:10 - 11:45
C1-M4

11:30

Meet the Maintainer - Jan Tattermusch, gRPC, Google
Speakers
JT

Jan Tattermusch

Software Engineer, Google
Senior Software Engineer at Google. Working on the gRPC project for the last 3 years.


Thursday May 3, 2018 11:30 - 12:30
CNCF Booth

11:55

Happy Helming with Service Catalog - Jeremy Rickard, Microsoft (Intermediate Skill Level) (Slides Attached)
Helm has emerged as a popular tool for distributing and using applications on Kubernetes. The kubernetes/charts repo has almost 150 different packages today! Helm works by bundling Kubernetes resources together into an easy to use package and allows you to specify dependencies on other packages, enabling deployment of services like databases alongside your application.

But what if you wanted to use a managed database from a cloud provider, instead of running it in your cluster? What if it was as simple as selecting it from a catalog? The service-catalog project is being built to bring this capability to the Kubernetes eco-system using the Open Service Broker API.

In this talk, Jeremy will introduce service-catalog and the new resources it brings to Kubernetes. He will also demo how you can use Helm to deliver an application configured to use services provided by the service catalog.

Speakers
avatar for Jeremy Rickard

Jeremy Rickard

Software Engineer, Microsoft
Jeremy Rickard is a software engineer at Microsoft in Colorado working on the Open Service Broker for Azure. Before that, he worked at VMware and helped build infrastructure and services that support VMware Cloud Services.



Thursday May 3, 2018 11:55 - 12:30
C1-M1

11:55

Writing Kube Controllers for Everyone - Maciej Szulik, Red Hat (Beginner Skill Level) (Slides Attached)
With the introduction of Custom Resource Definition, as well as external API servers everyone is now able to create its own resources and store them inside kubernetes cluster. But that is only half of the work that needs to be done. During this presentation Maciej, who co-authored both Job and CronJob controllers, and is a frequent reviewer of controller and apiserver-related code will guide you through basic set of steps that are necessary to write a simple controller. As an example he will discuss his recent work around improving CronJob controller, as well as introduce the 11 rules that needs to be fulfilled when writing a good controller.

Topics to be covered include:

1. How controllers work, loop over:
* monitor resources
* react to changes
2. Shared Informers.
3. Owner references.
4. Emitting status.
5. Handling errors.

Speakers
avatar for Maciej Szulik

Maciej Szulik

Software Engineer, Red Hat, Inc.
Maciej is a passionate developer with over 10 years of experience in many languages. He's working on OpenShift and Kubernetes for Red Hat. In his free time he enjoys hacking on bugs.python.org and CPython's IMAP library. He's a frequent speaker at various events and meet ups, inc... Read More →



Thursday May 3, 2018 11:55 - 12:30
C1-M0

11:55

SIG Multi-Cluster Deep Dive – Christian Bell, Madhu C.S., & Nikhil Jindal, Google (Intermediate Skill Level)
Speakers
CB

Christian Bell

Software Engineer, Google
I am co-lead of the Kubernetes Multicluster SIG (previously Federation SIG). I am interested in how users can make use of multiple clusters for high availability, regional proximity and consistent deployments across regions and multiple cloud providers.
avatar for Madhu C.S.

Madhu C.S.

Software Engineer, Google
Madhu C.S. (madhusudancs@{github, slack, twitter}) is a Software Engineer on the Kubernetes team at Google where he works on Cluster Federation. Before Kubernetes, he worked on a number of different projects within Google Cloud. He also has a strong background in compilers and ha... Read More →
avatar for Nikhil Jindal

Nikhil Jindal

Software Engineer, Google
Nikhil Jindal (nikhiljindal@github) is a Software Engineer on the kubernetes team at Google. He had started on kubernetes by working on API machinery and is now focussed on multi cluster problems. Before getting the kubernetes bug, he was enjoying working on Google Maps.


Thursday May 3, 2018 11:55 - 12:30
B4-M1+3

11:55

Kubespray Intro – Antoine Legrand, Red Hat, & Matthew Mosesohn, Virtustream (Any Skill Level)
Join the Kubespray Intro session to learn about deploying a manageable Kubernetes clusterAntoine and Matthew will help you decide which options to consider when deploying Kubernetes. Included in the presentation will be coverage on how you can use Ansible to extend what Kubespray does out of the box.Kubespray can deploy Kubernetes clusters from small to large with an intuitive and logic based approach. This session is best for users who have tried out Kubernetes in a virtual machine and are now ready to prepare for bare metal and/or production Kubernetes.

Speakers
AL

Antoine Legrand

Software Engineer, Red Hat
Antoine Legrand is a software engineer at CoreOS co-leading the working-group 'app-definition' and works closely with major actors in the ecosystem to improve the user experience in managing application in Kubernetes. Antoine is involved with open source and cloud native software... Read More →
MM

Matthew Mosesohn

Software Engineer, Virtustream
Matthew is a software engineer at Virtustream developing platform services on top of Kubernetes, providing containerized infrastructure. Matthew is one of the maintainers of the Kubespray project and participates in the Kubernetes SIG Cluster Lifecycle.


Thursday May 3, 2018 11:55 - 12:30
B5-M1+3

11:55

rkt Intro – Alban Crequy & Iago López Galeiras, Kinvolk (Any Skill Level) (Slides Attached)
rkt is a modern container runtime, built for security, efficiency, and
composability. Learn what rkt has to offer and how you can use it for
running your containers.

Speakers
avatar for Alban Crequy

Alban Crequy

CTO, Kinvolk
Originally from France, Alban currently lives in Berlin where he is a CTO & co-founder at Kinvolk, a software engineering team focused on building foundational Linux technologies for the cloud. He is a contributor to rkt, a container runtime for Linux, Weave Scope, a container vi... Read More →
avatar for Iago López Galeiras

Iago López Galeiras

Software Engineer, Kinvolk
Iago brought his relaxed Spanish demeanor to Berlin a few years back. Sincenthen, he’s been diving and swimming around the internals of various Linuxnflavors; Android, embedded and Cloud. Container technologies are his currentnfocus; specifically on the rkt project where he’s... Read More →



Thursday May 3, 2018 11:55 - 12:30
B4-M2+4

11:55

SIG Apps Intro – Janet Kuo & Kenneth Owens, Google (Any Skill Level) (Slides Attached)
Join Kubernetes SIG Apps to learn about the areas of our focus, what we are working on currently, and how you can get involved. Veteran SIG Apps members will be on hand to help answer questions.

Speakers
avatar for Janet Kuo

Janet Kuo

Software Engineer, Google
Janet is a Software Engineer for Google Cloud. She joined the Kubernetes project before the 1.0 launch in 2015. She is an active SIG Apps contributor and the owner of Kubernetes workload APIs. She strives to build the best experience for running workloads in Kubernetes.
KO

Kenneth Owens

Software Engineer, Google



Thursday May 3, 2018 11:55 - 12:30
B3-M6+8

11:55

VMware SIG Intro – Fabio Rapposelli & Steve Wong, VMware (Any Skill Level) (Slides Attached)
Speakers
avatar for Fabio Rapposelli

Fabio Rapposelli

Staff Engineer 2, VMware
Purveyor of all things open source, loves distributed systems and solving complex problems. | | Renaissance man and human Rube Goldberg machine, Fabio is responsible for many of the Open Source integrations between Vagrant, Docker and VMware. Frequent speaker at conferences suc... Read More →
avatar for Steve Wong

Steve Wong

Software Engineer, Cloud Native Business Unit, VMware
Developer interested in containers, storage, virtualization, IoT, machine learning, streaming data analytics, and cloud native application technology. Active in Kubernetes storage community since 2015. Chair of Kubernetes VMware SIG. Frequent speaker at open source conferences an... Read More →



Thursday May 3, 2018 11:55 - 12:30
B3-M5+7

11:55

Understanding Distributed Consensus in etcd and Kubernetes - Laura Frank, CloudBees (Intermediate Skill Level) (Slides Attached)
The Raft consensus algorithm is at the core of etcd, allowing you to run highly available services across your Kubernetes cluster. But how exactly does quorum work, what happens when a node goes down, and how do all of the machines agree on the actual state of your services? Where is the Raft log stored, and how can you inspect it? Come away with deeper understanding of two of Raft’s main responsibilities, log replication and leader election, and be better equipped to make informed choices about your service declarations and cluster configurations.

Speakers
avatar for Laura Frank

Laura Frank

Director of Engineering, CloudBees
As the Director of Engineering at CloudBees and a Docker Captain, Laura's primary focus is making tools for other developers. At CloudBees, she works on improving the Docker infrastructure of the Codeship product and overall experience for all users of the CI/CD platform. Previou... Read More →



Thursday May 3, 2018 11:55 - 12:30
Auditorium 10

11:55

Building ML Products With Kubeflow - Jeremy Lewi, Google & Stephan Fabel, Canonical (Intermediate Skill Level) (Slides Attached)
ML researchers spend too much time building infrastructure to support their work. Kubeflow aims to solve that by using Kubernetes to build an open, scalable, and extensible platform for ML.

Since our launch at Kubecon in December, Kubeflow has grown to a substantial Github community with over 2200 stars and contributors from companies across the Kubernetes ecosystem, including Red Hat, Canonical, Weaveworks, CoreOS, CaiCloud, Alibaba, NVidia and many more.

In this talk, we discuss how Kubeflow enables machine learning workflows that are easy enough for anyone to deploy, and run anywhere Kubernetes runs. We will talk about our experience building Kubeflow by leveraging Kubernetes technologies like CRDs and ksonnet to build an extensible, community driven ecosystem. Finally, we will talk about how we are trying to grow the community around Kubeflow to continue evolving the platform.

Speakers
avatar for Stephan Fabel

Stephan Fabel

Product Manager, Canonical
Stephan Fabel is Product Manager for all things cloud at Canonical and has been working on enabling Kubeflow on Canonical’s Distribution of Kubernetes. Stephan has been working with OpenStack and Kubernetes for over four years and led some of the world’s most challenging clou... Read More →
avatar for Jeremy Lewi

Jeremy Lewi

Software Engineer, Google
Jeremy Lewi is a co-founder and lead engineer at Google for the Kubeflow project, an effort to help developers and enterprises deploy and use ML cloud-natively everywhere. He's been building on Kubernetes since its inception starting with Dataflow and then moving onto Cloud ML En... Read More →



Thursday May 3, 2018 11:55 - 12:30
C1-M5

11:55

Kubernetes and the CNI: Where We Are and What's Next - Casey Callendrello, CoreOS (Intermediate Skill Level) (Slides Attached)
The Container Networking Interface, or CNI, is a standard for networking vendors and projects to integrate with Kubernetes. First released in 2016, CNI has become the default way to network a Kubernetes cluster.

In this talk, I'll explain why CNI is designed the way it is. I'll talk about how CNI is typically used in a Kubernetes installation, including some common and not-so-common gotchas and pain points. I'll go into detail about the best-practices for writing a CNI plugin with Kubernetes. I'll also discuss the future of the project, some possible improvements, and next steps for the ecosystem as a whole.

Speakers
CC

Casey Callendrello

Senior Software Engineer, CoreOS
Casey Callendrello is an open-source developer at CoreOS. He is a maintainer for the Container Networking Interface (CNI) project. He also contributes to the the Kubernetes project and the Rkt container runtime.



Thursday May 3, 2018 11:55 - 12:30
Auditorium 15

11:55

Pod Anomaly Detection and Eviction using Prometheus Metrics - David Benque & Cedric Lamoriniere, Amadeus (Beginner Skill Level) (Slides Attached)
Dealing with system stability in a distributed and changing environment is a challenge: a single failing pod can affect the majority of your system responses. From Kubernetes probes to Istio circuit breaker, the CNCF projects provide us multiple means of containing this kind of problem.

After a quick review of all these means, understanding in which cases they can be used and their limitations, we will see how to react to problems that can only be revealed by internal application KPIs.

Maybe you would have liked to use a service mesh circuit breaker feature, however your traffic is not HTTP based; or, one pod continues to reply with HTTP code 200 alongside incorrect functional content. And yet, you have functional indicators that that could help take an immediate and orchestrated operational response.

We will see how to cover such cases thanks to dedicated controllers and Prometheus.

Speakers
avatar for David Benque

David Benque

Senior Software Engineer, Amadeus
Senior software engineer at Amadeus. Area of expertize: PaaS. Working on: application development, automation, system operability at scale, distributed systems. Languages: Go, C++ mainly. Like: sharing experience, learn and teach. My mission at Amadeus is to implement the trans... Read More →
avatar for Cedric Lamoriniere

Cedric Lamoriniere

Software Engineer, Amadeus
Cedric Lamoriniere is a software developer at Amadeus working on the integration of Openshift in the new internal PaaS "Amadeus Cloud Services". Cedric is specialized in distributed systems development. His first public speaking experience happens last year at the RedisConf (SF... Read More →



Thursday May 3, 2018 11:55 - 12:30
Auditorium 11+12

11:55

Stories from the Playbook - Tina Zhang & Fred van den Driessche, Google (Any Skill Level) (Slides Attached)
Have you ever wondered how GKE Site Reliability Engineers (SRE) manage an entire fleet of GKE clusters in 15 regions around the world? This talk provides an overview on how the SRE team approach this challenge, what tools are used, the problems encountered and war stories/learning experiences.

The talk introduces the most frequently used parts of our playbook and how SRE endeavours to save your cluster while oncall in an effort to meet our SLOs.

Speakers
avatar for Fred van den Driessche

Fred van den Driessche

Site Reliability Engineer, Google
Fred is an SRE at Google working on Google Kubernetes Engine, primarily focused on improving system observability, both at single cluster and fleet-wide levels. Previously he worked at Microsoft, writing and wrangling Java web apps for their Yammer product.
avatar for Tina Zhang

Tina Zhang

Site Reliability Engineer, Google
Tina joined the Google as a Site Reliability Engineer for GKE in March 2017 and has primarily been working on delivering High Availability Masters in GKE, bringing GKE to more cloud regions and improving monitoring and alerting for the system. Prior to this, she had a previous li... Read More →



Thursday May 3, 2018 11:55 - 12:30
C1-M2

11:55

Good Enough for the Finance Industry: Achieving High Security at Scale with Microservices in Kubernetes - Zachary Arnold & Austin Adams, Ygrene Energy Fund (Any Skill Level) (Slides Attached)
Security is a challenge for most companies. Especially those in periods of rapid growth. It is often taken for granted as we trust the frameworks we use to implement the necessary security protocols for us. However, one only needs to pick up the paper to find out that this simply isn't true. Information security is now a chief concern of many small and mid-size companies as well. We'll show you how we use AWS, Calico, OWASP Dependency Checker, CoreOS’s Clair, and Notary to achieve reliable observable security at the code level, container level, cluster level, and even the AWS account level to maintain the Gold Standard of security (authentication, authorization, and auditing.) We will focus on the security mindset and the specific implementation we have at Ygrene to keep data secure.

Speakers
avatar for Austin Adams

Austin Adams

Senior Software Engineer, Ygrene Energy Fund
Software Engineer with 7 years professional experience. People oriented, fast learning and excited to challenge tough problems with modern solutions. Able to lead and follow, has management experience and knows how to see a project through all stages of execution. Loves to have f... Read More →
avatar for Zachary Arnold

Zachary Arnold

Senior Software Engineer, Ygrene Energy Fund
Zach works currently for Ygrene Energy Fund as a Platform Engineer spearheading the organization's adoption of Kubernetes for production workloads. He works on championing the Microservice movement at Ygrene and is helping to establish information security best practices for the... Read More →



Thursday May 3, 2018 11:55 - 12:30
C1-M3

11:55

From eval to prod: How a Service Mesh Helped Us Build Production Cloud-Native Services - Israel Sotomayor, Moltin (Beginner Skill Level) (Slides Attached)
Moltin is an online solution that builds unified APIs to help companies process payments, inventories, and ecommerce. Helping other companies process financial transactions means that running robust reliable systems is a key business concern.

In this talk, Israel Sotomayor (Software Engineer) covers how Moltin used Linkerd in production from day 0; in other words, this is a look at going from evaluation through running in production. Israel explains how Moltin systems started as a monolithic beast that needed a full architectural revamp to decompose it into microservices. In shifting to microservices, several key concerns presented themselves and his team was able to use Linkerd throughout the process to solve practical problems. Israel shares his insights, lessons learned, and practical tips you can use to make adopting cloud-native architectures achievable using a service mesh.

Speakers
avatar for Israel Sotomayor

Israel Sotomayor

Infrastructure Engineer, Moltin
Israel Sotomayor is an Infrastructure Engineer at Moltin. He has a multi disciplinary background in different technologies and areas, including work as both a platform engineer and infrastructure engineer. Although his background is varied, he's passionate about distributed syste... Read More →


slides pdf

Thursday May 3, 2018 11:55 - 12:30
C1-M4

12:30

Meet the Maintainer - Justin Cappos, NYU, TUF
Speakers
avatar for Justin Cappos

Justin Cappos

Professor, NYU
Justin Cappos is a professor in the Computer Science and Engineering department at New York University. His research includes the TUF project (which is hosted by the Linux Foundation / CNCF), which provides a compromise-resilient mechanism for the secure distribution of software... Read More →


Thursday May 3, 2018 12:30 - 13:30
CNCF Booth

12:30

Diversity Luncheon & Program - Sponsored by Google Cloud & Heptio

We invite everyone attending KubeCon + CloudNativeCon Europe 2018 to join us for a special luncheon & program featuring discussions around diversity and inclusion.

Attendees must be registered to attend KubeCon + CloudNativeCon Europe in order to attend this event.

Space is limited and registration is required.  Signup now!

Thank you to our sponsors, Google Cloud & Heptio!


Thursday May 3, 2018 12:30 - 14:00
B3 M1-M4

12:30

Lunch
Thursday May 3, 2018 12:30 - 14:00
Centerhall E & Hall C

14:00

Challenges to Writing Cloud Native Applications - Vallery Lancey, Checkfront (Intermediate Skill Level) (Slides Attached)
“Cloud native” means designing software explicitly for the cloud, not trying to deploy to the cloud in retrospect - shoving a single replica of a monolith into Kubernetes won’t cut it.

Developing for cloud platforms has many requirements for tooling and behavior of the target cloud platform(s) - for example, maintaining Dockerfiles. There are also many challenges to designing a distributed system that can maintain high consistency, reliability, and availability. We’ll explain high level solutions and get into concrete code examples.

Key topics are:
- Bringing ops requirements into development
- Designing for accurate testing
- Caching and short term data
- Long term storage
- Service composition

This talk will give developers a foundational understanding of cloud architecture patterns, data management, and requirements building, to empower attendees to hit the ground running.

Speakers
avatar for Vallery Lancey

Vallery Lancey

Lead Devops Engineer, Checkfront
Vallery Lancey is a DevOps Engineer (whatever that means) at Checkfront. She can be found at @vllry on Twitter.



Thursday May 3, 2018 14:00 - 14:35
C1-M1

14:00

Kubernetes-style APIs of the Future - Daniel Smith, Google (Any Skill Level) (Slides Attached)
Over the past 4 years, the Kubernetes project has a built an extensive API platform centered around the needs of the Kubernetes cluster management system, because nothing else was suitable. What are those needs, and are they really unique to the domain of cluster management? They are not, and therefore there is a Kubernetes-style API in your future--come learn what it will look like.

Speakers
avatar for Daniel Smith

Daniel Smith

Staff Software Engineer, Google
Currently TL of Kubernetes’ API Machinery sub-team, Daniel has been working on Kubernetes since before it was open sourced, and contributed enough in the early days that he’s still one of the top contributors overall. Before that, Daniel worked on Google’s borg and AppEngin... Read More →



Thursday May 3, 2018 14:00 - 14:35
C1-M0

14:00

Prometheus Deep Dive – Julius Volz, Prometheus, & Max Inden, Red Hat (Intermediate Skill Level)
This deep dive will include a panel of Prometheus developers answering your questions around Prometheus. 

Speakers
avatar for Max Leonard Inden

Max Leonard Inden

Red Hat
Max is a software developer at Red Hat and member of the upstream Prometheus project, working both on Prometheus and Kubernetes. Previously hacking on data quality analysis, he decided to stop suppressing his interest for distributed systems at scale and joined CoreOS (now Red Ha... Read More →
avatar for Julius Volz

Julius Volz

Co-Founder, Prometheus
Julius co-founded Prometheus and lead the project to success at SoundCloud and beyond. He now focuses on growing the Prometheus community and is the main organizer of PromCon, the first conference around Prometheus. In a previous life, Julius was a Site Reliability Engineer at Go... Read More →


Thursday May 3, 2018 14:00 - 14:35
B4-M1+3

14:00

Resource Management WG Deep Dive – Vishnu Kannan, Google (Intermediate Skill Level)
This session provides a deep dive into the features and technologies that the Kubernetes Resource Management Working Group has been working on recently. Specifically, this would include support for hardware devices like GPUs, improved performance via smarter CPU and Memory management, and overall compute resource extensibility. You will benefit from this session if you care about performance and performance sensitive workloads like Machine Learning.

Speakers
avatar for Vishnu Kannan

Vishnu Kannan

Sr. Software Engineer, Googe
Vishnu Kannan is a Senior Software Engineer at Google. Vishnu received his Masters in ECE from Georgia Tech. He has been a systems engineer ever since he graduated. He hacked on the Linux Kernel for a couple of years at Cisco. He then worked on Borg at Google. He is currently an... Read More →


Thursday May 3, 2018 14:00 - 14:35
B3-M6+8

14:00

SIG Service-Catalog Deep Dive – Michael Kibbe, Google; Morgan Bauer & Doug Davis, IBM (Intermediate Skill Level) (Slides Attached)
In the "SIG Service-Catalog Intro" session we provided an overview of the Open Service Broker API and the Kubernetes implementation being developed by the Service Catalog SIG. With that background, this session will go into some of the challenges we faced in making it a reality. Whether it was because we were trying to use bleeding edge features of K8s, or trying to align very radically different processing models between K8s and other OSB API Platforms, our SIG has had an interesting time trying to navigate these waters. Come learn about these these challenges and how we've chosen to solve them.

Speakers
MB

Morgan Bauer

Software Engineer, IBM Corp.
Morgan Bauer works on Open Source at IBM in San Jose as part of the Cloud Division. Morgan is a maintainer on the core Docker Engine and also a founding contributor of the Kubernetes Service-Catalog.
avatar for Doug Davis

Doug Davis

STSM, IBM
Doug works in IBM's Digial Business Group. He's been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker and Kubernetes. He's currently co-leading the CNCF's Serverless WG, the Clo... Read More →
MK

Michael Kibbe

Software Engineer, Google
Michael Kibbe is a software engineer on the Cloud Services team at Google. Michael works on the Kubernetes Service Catalog project and the Open Service Broker API. His goal is to get us to a world where it is easy to consume hosted services, such as those offered by Google Cloud... Read More →



Thursday May 3, 2018 14:00 - 14:35
B5-M1+3

14:00

SPIFFE Deep Dive - Neel Shah, VMware; Andrew Jessup & Emiliano Berenbaum, Scytale, Inc., (Intermediate Skill Level) (Slides Attached)
SPIFFE (Secure Production Infrastructure for Everyone) and SPIRE are two of the newest projects to join the CNCF. These projects build on designs first championed at Google, Twitter and elsewhere to provide robust authentication and trust between disparate micro-services in heterogeneous operating environments.

This talk will expand on concepts introduced during the SPIFFE Intro Session to explore in detail how SPIRE performs attestation to workloads in diverse infrastructure and middleware settings, how it leans on different secrets storage backends and how PKI material is automatically delivered to a node and workload. The talk also will cover how these capabilities can be extended and customized through SPIRE’s plugin framework.

In this session, we will demo a Kerberos Node-Attestor for SPIRE in a Kubernetes cluster using the pluggable SPIRE model.  Using Project Lightwave—an open source multi-tenanted and enterprise-grade Kerberized identity platform—we will demonstrate how enterprise identity stacks can be used to identify and trust the next generation of cloud-native workloads.

Speakers
avatar for Emiliano Berenbaum

Emiliano Berenbaum

CTO, Scytale Inc.
avatar for Andrew Jessup

Andrew Jessup

Co-founder, Scytale Inc., Scytale Inc.
Andrew is the co-founder of Scytale, who are helping bring SPIFFE into the world. Find out more at https://github.com/spiffe/spiffe | | Andrew is an engineer, and entrepreneur with a passion for building tools that help bring simplicity to software development. Prior to co-f... Read More →
avatar for Neel Shah

Neel Shah

Member of Technical Staff, VMware
Neel Shah is a software engineer in the Cloud Native Group at VMware. At VMware, he has implemented secure dynamic DNS update with Kerberos GSS-API and actively works on an enterprise grade Kubernetes as a service solution. Outside of VMware, he maintains an open source SDN/NFV p... Read More →



Thursday May 3, 2018 14:00 - 14:35
B4-M2+4

14:00

SIG Release Intro – Jaice Singer DuMars & Caleb Miles, Google (Any Skill Level)
For those curious about how Kubernetes releases happen, this is the session for you. This introduction will explain what the Release Special Interest Group does, and an overview of how releases are staffed and managed. It will also provide an onramp for anyone interested in volunteering for a release team position in the future.

Speakers
avatar for Jaice Singer DuMars

Jaice Singer DuMars

OSS Governance Program Manager, Google
I am passionate about vibrant, diverse, and inclusive open source communities, all things governance, continuous improvement, and Agile at scale. I have been a Kubernetes release manager, and co-lead various Kubernetes Special Interest Groups.


Thursday May 3, 2018 14:00 - 14:35
B3-M5+7

14:00

Blackholes and Wormholes: Understand and Troubleshoot the “Magic” of Kubernetes Networking - Minhan Xia & Rohit Ramkumar, Google (Intermediate Skill Level) (Slides Attached)
Networking is hard. Kubernetes networking can be even harder. On one hand, kubernetes provides a nice abstraction of infrastructure underneath. On the other hand, k8s contributors and cluster operators bear the burden to seal the gap. Especially for kubernetes networking, it has to work seamlessly with both k8s internals and underlying infrastructure. This brings challenges for understanding and troubleshooting the system.

In this talk, we will share real-world experience in running Google Kubernetes Engine and explore the pain points in the current kubernetes networking design, troubleshooting best practices and future improvements.

Speakers
avatar for Rohit Ramkumar

Rohit Ramkumar

Software Engineer, Google
Rohit joined Google in August 2017 as a SWE working on GKE Networking and has been working on better monitoring and testing of core GKE systems. Previously, Rohit interned with Google working on Cloud Pub/Sub.
avatar for Minhan Xia

Minhan Xia

Software Engineer, Google
Minhan Xia has been a member of Kubernetes networking team at Google since 2015. He has contributed to various aspects of K8s networking, including pod networking, K8s service and K8s ingress.



Thursday May 3, 2018 14:00 - 14:35
Auditorium 10

14:00

The Path to GPU as a Service in Kubernetes - Renaud Gaubert, NVIDIA (Intermediate Skill Level) (Slides Attached)
TLDR: Kubernetes modern production patterns for Deep Learning applications and a deep dive into the Kubernetes GPU and Hardware accelerators subsystem and it’s challenges (performance, scheduling, monitoring).

Autonomous vehicles, face recognition, High Performance Computing, Virtual Reality, NVIDIA GPUs are enabling a new computer era with cloud computing at its center. With kubernetes being the next iteration in cloud technologies, the NVIDIA container team is driving with the community the advances in GPU integration.

During this talk we will take a look at the possibilities and limitations provided by the kubernetes infrastructure for hardware accelerators. We will also be discussing the latest improvements in the device plugin subsystem of Kubernetes, powering GPU support, and the challenges ahead of it.

Speakers
avatar for Renaud Gaubert

Renaud Gaubert

Lead Kubernetes Engineer, NVIDIA
Renaud Gaubert has been working for a year at NVIDIA on making GPU applications easier to deploy and manage in data centers. He focuses on supporting GPU-accelerated machine learning frameworks in container orchestration systems such as Kubernetes and Docker swarm. | | He is a... Read More →



Thursday May 3, 2018 14:00 - 14:35
C1-M5

14:00

The “Silk” Road: Building a CNI Plugin from Scratch - Usha Ramachandran & Angela Chin, Pivotal (Any Skill Level) (Slides Attached)
CNI promises container runtime systems the ability to swap in different third party networking plugins. With many 3rd party plugins available, it can be difficult to determine which, if any, are the best match for your system.

Angela and Usha will highlight their journey through the CNI ecosystem from adding support for CNI in Cloud Foundry to building “Silk” - their very own CNI plugin. Attendees will gain insight into the process of both deciding to and building a CNI plugin and considerations that must be made about how to integrate the plugin with existing platform concerns about networking and security.

Speakers
avatar for Angela Chin

Angela Chin

Senior Software Engineer, Pivotal
Angela is a software engineer at Pivotal, currently working on Pivotal Container Service (PKS) team. Previously, she was the engineering lead of the Cloud Foundry Networking team, which develops the container networking and policy enforcement systems inside Cloud Foundry Applicat... Read More →
avatar for Usha Ramachandran

Usha Ramachandran

Staff Product Manager, Pivotal
Usha is a Staff Product Manager at Pivotal and the Product Lead for CF Networking. She is responsible for prioritizing and delivering core networking capabilities for Cloud Foundry. Usha has over 15 years of networking experience, having worked at Cisco, Alcatel and Ericsson. She... Read More →



Thursday May 3, 2018 14:00 - 14:35
Auditorium 15

14:00

How We Used Jaeger and Prometheus to Deliver Lightning-Fast User Queries - Bryan Boreham, Weaveworks (Intermediate Skill Level) (Slides Attached)
This talk comes from practical experience of running a cloud-based SAAS under Kubernetes for the last two years. Prometheus is good for the big picture view of how things are running, while Jaeger acts like a microscope on the internal workings of your system.

You will learn about:
* Setting up Jaeger and Prometheus in your Kubernetes cluster
* Inspecting Jaeger and Prometheus output for tell-tale signs of trouble
* Instrumenting your code (with examples in Go) for more detail
* Applying the information gained to optimise your code and tune your system

Speakers
avatar for Bryan Boreham

Bryan Boreham

Director of Engineering, Weaveworks
Bryan is Director of Engineering at Weaveworks, delivering deployment, observability and monitoring for containers and microservices. | | Previously, Bryan has worked on many kinds of systems including financial trading, factory control and bakery. Outside of work he is a fat... Read More →



Thursday May 3, 2018 14:00 - 14:35
Auditorium 11+12

14:00

101 Ways to “Break and Recover” Kubernetes Cluster - Suresh Visvanathan & Nandhakumar Venkatachalam, Oath (Yahoo) (Intermediate Skill Level) (Slides Attached)
At Oath (yahoo), we operate one of biggest on-prem kubernetes cluster. We manage about dozen kubernetes clusters and 7000+ pods are running across the dozen clusters, major application such as Yahoo Sports, Yahoo Finance are powered by kubernetes. Managing at scale has its own challenges, in this talk we will cover 101 Ways to “break and recover” kubernetes cluster.

Speakers
avatar for Nandhakumar Venkatachalam

Nandhakumar Venkatachalam

Princi Production Engineer, Oath Inc
Nandhakumar Venkatachalam is a Princ Production Engineer, Lead for Kubernetes Infrastructure/ Cluster management team at Oath Media Build and Products. He is a subject matter expert and solution architect specialized in high availability. Nandha has been under Oath for 11 years a... Read More →
avatar for Suresh Visvanathan

Suresh Visvanathan

Sr Architect, Oath (Yahoo)
Suresh Visvanathan, Sr Architect, has over 13 years of experience in IT and Software. Suresh’s current responsibilities include the architecture, vision, strategy and design of cloud platform as-a-service (PaaS). Suresh has been architecting solutions and building products arou... Read More →



Thursday May 3, 2018 14:00 - 14:35
C1-M2

14:00

Container Isolation at Scale (Introducing gVisor) - Dawn Chen & Zhengyu He, Google (Intermediate Skill Level) (Slides Attached)
Containers are the modern way of running your services at scale because of the portability and lightweightness. However, due to the fact that they depend on OS multi-tenancy as they share the same host OS (usually Linux which represents a large attack surface), containers are considered providing weaker isolation than virtual machines.

We will start from discussing the security principles in running services in Google, and then summarize a list of best practices we have explored for preventing, auditing and mitigating security threats. Specifically, we will focus on the challenges we have faced at the host operating system level.

Speakers
DC

Dawn Chen

Senior Staff Software Engineer, Google
Dawn Chen (dchen1107@github) is a Senior Staff Software Engineer from Google Kubernetes Team. She has been one of tech leads in both Kubernetes and GKE, mostly focus on Node area. Prior Kubernetes, she was the one of the tech leads for Google internal container infrastructure for... Read More →
ZH

Zhengyu He

Staff Software Engineer and Manager, Google
Zhengyu is one of the tech leads and managers in Google infrastructure team, mostly focus on kernel and security.



Thursday May 3, 2018 14:00 - 14:35
C1-M3

14:00

GitOps for Istio - Manage Istio Config like Code - Varun Talwar, Stealth Startup & Alexis Richardson, WeaveWorks (Intermediate Skill Level)
Services Meshes like Istio enable devops to drive service behavior via configurations. The model with Istio is to enable changing service behavior and their interactions including things like timeouts, circuit breakers, traffic routing, load balancing, A/B testing, canary releases via configuration and such critical configurations need lifecycle, audit, rollout, versioning, rollback etc like code does. This makes developers lives easier because config can be changed and managed like code code using familiar CI/CD pipelines. This can make changing configuration for resiliency controls and their subsequent testing with feedback metrics very easy. Overall, In this talk we talk about how istio config can be managed like code through git based workflows.

Speakers
avatar for Alexis Richardson

Alexis Richardson

ceo, weaveworks
Alexis is the co-founder and CEO of Weaveworks. He is also the chairman of the TOC for CNCF, and the co-founder of the Coed:Code meet ups. | | Previously he was at Pivotal, as head of products for Spring, RabbitMQ, Redis, Apache Tomcat and vFabric. Alexis was responsible for r... Read More →
avatar for Varun Talwar

Varun Talwar

Founder and CEO, Stealth Startup
Product Management lead for gRPC and Istio at Google


Thursday May 3, 2018 14:00 - 14:35
C1-M4

14:30

Meet the Maintainer - Dave Cheney, Heptio
Speakers
avatar for Dave Cheney

Dave Cheney

Staff engineer, Heptio
You can talk to me about Go, Kubernetes, and Contour.


Thursday May 3, 2018 14:30 - 15:30
CNCF Booth

14:45

Building Applications to Increase Kubernetes Adoption, and Make Life Easier Once You've Adopted It - Kate Kuchin, Heptio (Any Skill Level) (Slides Attached)
Web UIs have the potential to both make experienced cluster administrators' jobs easier and help drive adoption of cloud-native technologies. So how do we build these interfaces?

Kate will share what is needed to design and build user interfaces to make Kubernetes concepts more accessible to all experience levels. She will talk about how frontend engineers and designers can first ramp up on Kubernetes, so they understand the problem space. Once a product team is equipped with the knowledge to build tools, their next task is to define the problems that can be solved with a UI, and the ones that cannot. She will highlight the work her team at Heptio has done on Sonobuoy Scanner, a UI for running CNCF conformance tests, and other Heptio tools in the making. Lastly, she will speak to what problems (with potential UI solutions) still exist, and how we can work together to solve them.

Speakers
avatar for Kate Kuchin

Kate Kuchin

Software Engineer, Heptio
Kate is a Software Engineer at Heptio, where she works on the UX team to build tools to make Kubernetes easier to adopt and use. She started her career at Google, where she worked on the Consumer Operations team of (the now sadly defunct) orkut. She has since worked at startups t... Read More →



Thursday May 3, 2018 14:45 - 15:20
C1-M1

14:45

Writing Kubernetes Controllers for CRDs: Challenges, Approaches and Solutions - Alena Prokharchyk, Rancher Labs, Inc. (Intermediate Skill Level) (Slides Attached)
Kubernetes as a platform is at the stage where more and more features are being developed and deployed as external controllers. And writing an extension in most of the cases implies use of CRD - a Custom Resource Definition - to manage and represent the resources your application creates. During this talk we will go over the entire management cycle for CRD resource starting with defining types, schema and client, following by controlling the resource using informers and leveraging object's fields like:

* Spec, Status, Metadata, Labels
* Finalizers
* Owner References
* Conditions

Each aspect of CRD management has its own challenges, and they will be highlighted along with the alternative solutions as a part of a live demo.

Speakers
avatar for Alena Prokharchyk

Alena Prokharchyk

Principal Software Engineer, Rancher Labs, Inc.
Alena is a Principal Software Engineer at Rancher Labs, who's been working on building infrastructure services first for Virtual Machines, now for containers with main focus on Kubernetes. She enjoys helping others make sense of problems and explore solutions together. In her fre... Read More →



Thursday May 3, 2018 14:45 - 15:20
C1-M0

14:45

Cloud Native Landscape Deep Dive – Dan Kohn, Cloud Native Computing Foundation (Intermediate Skill Level)
The interactive landscape -- l.cncf.io -- allows you to filter and sort hundreds of cloud-native projects and products, and review details including GitHub stars, funding or market cap, first and last commits, contributor counts, headquarters location, and recent tweets. Engage in a small group to discuss how the landscape was built and what should change about it going forward

Speakers
avatar for Dan Kohn

Dan Kohn

Executive Director, Cloud Native Computing Foundation
Dan is Executive Director of the Cloud Native Computing Foundation, which sustains and integrates open source technologies like Kubernetes and Prometheus. He also helped create and launch the Linux Foundation's Core Infrastructure Initiative as an industry-wide response to the se... Read More →


Thursday May 3, 2018 14:45 - 15:20
B3-M6+8

14:45

CoreDNS Intro – Miek Gieben, Google (Any Skill Level)
Learn about CoreDNS' current state and the plans for the near
future. We also take a detailed look at the plugin system.

Speakers
avatar for Miek Gieben

Miek Gieben

SRE, Google
I'm lead developer of CoreDNS. Come talk to about service discovery, DNS and the future of these technologies in a cloud native world.


Thursday May 3, 2018 14:45 - 15:20
B3-M5+7

14:45

Minikube Intro – Dan Lorenc, Google (Any Skill Level)
This session is dedicated to providing users with an introduction to the Minikube project. Attendees will learn the basics of Minikube's architecture, how to use and configure it, and some "power-tips" for using Minikube to setup an excellent development environment.

Speakers
DL

Dan Lorenc

Software Engineer, Google


Thursday May 3, 2018 14:45 - 15:20
B5-M1+3

14:45

NATS Intro – Colin Sullivan & Waldemar Quevedo, Synadia (Any Skill Level) (Slides Attached)
Join members of the NATS team to learn about NATS Messaging!

Distributed systems architecture has been disrupted via decomposition as cloud technology has matured - a move from monolithic applications to microservices.  This has created a need for multiple communication patterns, location transparency, and the decoupling of data producers and consumers.  NATS is a cloud-native messaging project that addresses these needs and others.

In this discussion, we'll introduce you to NATS: how NATS came to be, it's DNA, the problems it solves and how NATS can be leveraged in cloud applications.

Speakers
avatar for Waldemar Quevedo

Waldemar Quevedo

Software Engineer, Synadia Communications, Inc
Waldemar is a Software Engineer at Synadia Communications, Inc, working on NATS (@nats_io)
avatar for Colin Sullivan

Colin Sullivan

Product Manager, Synadia Communications, Inc.
Colin is the product manager of NATS (https://nats.io). He has extensive experience developing messaging products and designing distributed systems. Prior to Synadia, Colin worked at Apcera and TIBCO software.



Thursday May 3, 2018 14:45 - 15:20
B4-M2+4

14:45

Source2Image Intro – Ben Parees, Red Hat & Matt Moore, Google (Any Skill Level) (Slides Attached)
Over the years Kubernetes has had a number of different approaches to building images on or for Kubernetes. Now is a good time to take stock of Kubernetes' image building support from the perspective of different types of users. In this session, we'll look at a little history of building images for use with Kubernetes. We will review and demo some specific examples with working in this space dating back to the very beginning of Kubernetes and containerized applications, then lead a conversation around some of the challenges and techniques when either building images on or for Kubernetes. Challenges that need to be considered when building images on kubernetes include dependencies on a local docker daemon, security/privilege requirements, and caching+reuse of build artifacts.

Speakers
avatar for Matt Moore

Matt Moore

Staff Software Engineer, Google
Matthew co-founded and was the original Tech Lead for the Google Container Registry product, and has been involved with Docker at Google since the beginning. | | These days, Matthew is focused on Uber TLing container development and firmly believes that we can do better tha... Read More →
avatar for Ben Parees

Ben Parees

Principal Engineer, Red Hat
Ben Parees is a Principal Engineer on OpenShift. He serves as the lead for the Developer Experience team which focuses on workflows that take developers from source code to PaaS deployed Docker image based applications, including continuous integration and delivery flows.



Thursday May 3, 2018 14:45 - 15:20
B4-M1+3

14:45

Exploring Container Mechanisms Through the Story of a Syscall - Alban Crequy, Kinvolk (Intermediate Skill Level) (Slides Attached)
Alban will explore different container mechanisms on Linux by following a simple example: what is happening when an application in a Kubernetes pod performs a syscall such as “open()”? In particular, he will go through the following subsystems: SELinux LSM, seccomp-bpf, capabilities, overlayfs and copy-on-write, and path lookups in the container mount namespace. He will see how it interacts with different pod configurations.

Speakers
avatar for Alban Crequy

Alban Crequy

CTO, Kinvolk
Originally from France, Alban currently lives in Berlin where he is a CTO & co-founder at Kinvolk, a software engineering team focused on building foundational Linux technologies for the cloud. He is a contributor to rkt, a container runtime for Linux, Weave Scope, a container vi... Read More →



Thursday May 3, 2018 14:45 - 15:20
Auditorium 10

14:45

Bringing Your Data Pipeline into The Machine Learning Era - Chris Gaun & Jörg Schad, Mesosphere (Intermediate Skill Level)
Kubeflow is a new tool that makes it easy to run distributed machine learning solutions (e.g. Tensorflow) on Kubernetes. However, much of the data that can feed machine learning algorithms is already in existing distributed data stores. This presentation shows how to connect existing distributed data services running on Apache Mesos to Tensorflow on Kubernetes using the Kubeflow tool.  

Chris Gaun will show you how this existing data can now leverage machine learning, such as Tensorflow, on Kubernetes using the Kubeflow tool. These lessons can be extrapolated to any local distributed data. 

Speakers
CG

Chris Gaun

Chris Gaun is a CNCF ambassador and product marketing manager at Mesosphere. He has presented at Kubecon in 2016 and has put on over 40 free Kubernetes workshops across US and EU in 2017.
avatar for Jörg Schad

Jörg Schad

Technical Lead, Mesosphere
Jörg Schad is a Technical Lead for Community Projects at Mesosphere in San Francisco. In his previous life he implemented distributed and in memory databases and conducted research in the Hadoop and Cloud area. His speaking experience includes various Meetups, international conf... Read More →


Thursday May 3, 2018 14:45 - 15:20
C1-M5

14:45

Global Container Networks on Kubernetes at DigitalOcean - Andrew Sy Kim, DigitalOcean (Intermediate Skill Level) (Slides Attached)
Building a container network that is reliable, fast and easy to operate has become increasingly important in DigitalOcean’s distributed systems running on Kubernetes. Today’s container networking technologies can be restrictive as Pod and Service IPs are not reachable externally which forces cluster administrators to operate load balancers. The addition of load balancers introduces new points of failure in a cluster and hinders observability since source IPs are either NAT’d or masqueraded.

This talk will be a deep dive of how DigitalOcean uses BGP, Anycast and a variety of open source technologies (kube-router, CNI, etc) to achieve a fast and reliable container network where Pod and Service IPs are reachable from anywhere on DigitalOcean’s global network. Design considerations for scalability, lessons learned in production and advanced use cases will also be discussed.

Speakers
avatar for Andrew Sy Kim

Andrew Sy Kim

Software Engineer, DigitalOcean
Andrew is a Software Engineer at DigitalOcean and an active member of the Kubernetes community. At DigitalOcean, his team provides a robust and comprehensive set of tools for delivering services to production.



Thursday May 3, 2018 14:45 - 15:20
Auditorium 15

14:45

TSDB: The Past, Present and the Future - Goutham Veeramachaneni, IIT Hyderabad (Advanced Skill Level)
TSDB is the storage engine that powers Prometheus 2.0 and brought most of the drastic improvements in speed and utilization across the board. But it is also a golang library that Prometheus imports and is a solid time-series database that anyone can use.

It is undergoing active development and this talk will take you the journey, benchmarks, new features, ghastly bugs and moonshot ideas. This will also help the audience understand the library and hopefully get them to use and contribute to it.

Speakers
avatar for Goutham Veeramanchaneni

Goutham Veeramanchaneni

Student, IIT Hyderabad
Goutham is a student and a developer from India. His enthusiasm for Ops got him an internship on the infra team of a large company where he worked on Production infrastructure and built the company's monitoring system on top of Prometheus. That was his first encounter with produ... Read More →


Thursday May 3, 2018 14:45 - 15:20
Auditorium 11+12

14:45

Kubernetes Multi-Cluster Operations without Federation - Rob Szumski, CoreOS (Intermediate Skill Level)
Federation is typically thought of as the only way to do multi-cluster operations, but that's not the case. I explore more secure and scalable methods for connecting clusters together. This is key to hybrid scenarios where you want two or more clusters set up in a consistent way, and then deploy an application in all regions or on all clouds.

I will dive deep into sharing RBAC roles and resource limits, plus setting up the same namespaces with important default config like Pod Security Policies.

Speakers
avatar for Rob Szumski

Rob Szumski

Tectonic Product Manager, CoreOS
Rob Szumski is the Tectonic product manager at CoreOS, a provider of infrastructure software to securely run application containers anywhere. Focused on product design from open source to commercial offerings, Rob has deep experience in UX, web interfaces, and CLI. Rob likes to e... Read More →


Thursday May 3, 2018 14:45 - 15:20
C1-M2

14:45

OPA: The Cloud Native Policy Engine - Torin Sandall, Styra (Intermediate Skill Level) (Slides Attached)
How does your organization control “who can do what” across the stack? How do you enforce auth/z, admission control, and risk management policies in your micro-services, orchestrators, and CI/CD systems? How do you implement low-latency policy enforcement in the polyglot environments that your company depends on?

In this talk we introduce the Open Policy Agent (OPA) project. OPA is an open source policy engine used by companies like Netflix and Medallia to enforce rules consistently, up and down the stack. We will showcase OPA features like hot-reload, tracing, and optimizations with demos of auth/z and admission control policies. Finally we will show how to integrate your services with OPA and provide examples of integrations for projects like Kubernetes, Istio, and more.

Attendees can expect to walk away with fresh ideas about how to achieve fine-grained control throughout their systems.

Speakers
avatar for Torin Sandall

Torin Sandall

Software Engineer, Styra
Torin Sandall is the technical lead of the open source Open Policy Agent project. Torin has spent his 10 years as a software engineer working on large-scale distributed systems projects. Torin has recently given talks on policy-related topics in Kubernetes at KubeCon, ContainerDa... Read More →



Thursday May 3, 2018 14:45 - 15:20
C1-M3

14:45

Envoy Internals Deep Dive - Matt Klein, Lyft (Advanced Skill Level) (Slides Attached)
Envoy (https://www.envoyproxy.io/) is a high performance L4/L7 network proxy with a pluggable filter chain model; this allows Envoy to be used for a variety of different scenarios, including HTTP/2, gRPC, MongoDB, and Redis. Envoy provides advanced load balancing support, including eventually consistent service discovery, circuit breakers, retries, rate limiting, and zone-aware load balancing. Envoy also has best-in-class observability, using statistics, logging, and distributed tracing.

Since becoming OSS in 2016, Envoy has gained substantial traction in both "service mesh" and edge (API gateway) deployments.

In this talk, Matt Klein will dive deep into Envoy internals from a systems perspective, covering threading model, stats, hot restart, the xDS APIs, and other core concepts.

This is an advanced talk and prior knowledge of what Envoy is at a high level is assumed.

Speakers
avatar for Matt Klein

Matt Klein

Software Engineer, Lyft
Matt Klein is a software engineer at Lyft and the architect of Envoy. Matt has been working on operating systems, virtualization, distributed systems, networking, and making systems easy to operate for over 15 years across a variety of companies. Some highlights include leading t... Read More →



Thursday May 3, 2018 14:45 - 15:20
C1-M4

15:20

Coffee Break
Thursday May 3, 2018 15:20 - 15:50
Centerhall E & Hall C

15:30

Meet the Maintainer - Daniel Smith, Google
Speakers
avatar for Daniel Smith

Daniel Smith

Staff Software Engineer, Google
Currently TL of Kubernetes’ API Machinery sub-team, Daniel has been working on Kubernetes since before it was open sourced, and contributed enough in the early days that he’s still one of the top contributors overall. Before that, Daniel worked on Google’s borg and AppEngin... Read More →


Thursday May 3, 2018 15:30 - 16:30
CNCF Booth

15:50

Building Event-Driven Pipelines with Brigade - Brian Redmond, Microsoft (Intermediate Skill Level)
Building complex or even simple event-driven pipelines on Kubernetes has always been somewhat of an elusive task, until now. Enter Brigade, a lightweight opensource event-driven tool that accepts a Javascript expression of a pipeline that gets seamlessly converted into the associated Kubernetes runtime objects. In this session we will build a pipeline from the ground up, hands on, to demonstrate just how simple to solve sometimes complex tasks with Brigade.

Speakers
avatar for Brian Redmond

Brian Redmond

Cloud Architect, Microsoft
I am Cloud Architect on the Azure Global Black Belt team at Microsoft. I focus on containers, microservices, DevOps, and cloud native applications in the Azure cloud platform. I have been working in technology for over 20 years and has a mixed background across application develo... Read More →



Thursday May 3, 2018 15:50 - 16:25
C1-M1

15:50

Building a Kubernetes Scheduler using Custom Metrics - Mateo Burillo, Sysdig (Intermediate Skill Level)
The default Kubernetes scheduler does a fantastic job for typical workloads, but when you have specific requirements (like higher level application metrics) you might need other scheduling methods.

You probably know how to use node affinity, inter-pod affinity, taints, and tolerations. But what if you could use any of the metrics already present in your monitoring infrastructure to dynamically configure the Kubernetes pod scheduler?

In this session we will demonstrate how to create a custom Kubernetes scheduler using any monitoring source such as statsd, JMX or Prometheus. We will walk through the code required for a custom scheduler, and end with a short demo.

We will provide attendees the source code and placeholder containers required to run the examples in their clusters during this practical session.

Speakers
avatar for Mateo Burillo

Mateo Burillo

Integrations Engineer and tech writer, Sysdig
Integrations engineer and tech writer @sysdig Mateo greatly enjoys tinkering with container technologies, creating homebrew lab environments, and the perpetual newbie feeling of this fast moving world of tech. He spends most of the day getting in the shoes of the user at many d... Read More →



Thursday May 3, 2018 15:50 - 16:25
C1-M0

15:50

Kubeflow Deep Dive – David Aronchick & Jeremy Lewi, Google (Intermediate Skill Level)
The Kubeflow project is aimed at simplifying developing, deploying and using ML on Kubernetes. 
This session will provide an in-depth understanding of Kubeflow. The talk will focus on the different components that comprise Kubeflow and how we connect them together using ksonnet. We will also give a project update and review the roadmap for the rest of the year. After the session attendees should better understand Kubeflow's architecture and know how to get involved.

Speakers
avatar for David Aronchick

David Aronchick

Product Manager, Cloud AI and co-founder of Kubeflow, Google
David Aronchick was the Senior Product Manager for the Google Container Engine and led product management on behalf of Google for Kubernetes. David has been helping to ship software for nearly 20 years, founding and being part of the management team for three different startups... Read More →
avatar for Jeremy Lewi

Jeremy Lewi

Software Engineer, Google
Jeremy Lewi is a co-founder and lead engineer at Google for the Kubeflow project, an effort to help developers and enterprises deploy and use ML cloud-natively everywhere. He's been building on Kubernetes since its inception starting with Dataflow and then moving onto Cloud ML En... Read More →



Thursday May 3, 2018 15:50 - 16:25
B4-M1+3

15:50

SIG Contributor Experience Deep Dive – Paris Pittman, Google & Tim Pepper, VMware (Intermediate Skill Level) (Slides Attached)
In this 30 minute session, we will deep dive into one of Contributor Experience’s current projects - a new [developers guide][https://github.com/kubernetes/community/issues/1919]. Join this session if you have feedback on where you would like to see this guide go - content suggestions, organizational standards, etc.? We want to hear from you!

Speakers
avatar for Tim Pepper

Tim Pepper

Open Source Engineer, VMware
Tim is a software engineer with over 20 years open source development experience. He is currently a member of VMware's Open Source Technology Center acting as an open source developer advocate and contributing to upstream projects such as kubernetes. In his past he's worked on th... Read More →
avatar for Paris Pittman

Paris Pittman

Developer Relations Program Manager, Google
Paris is a Developer Relations Program Manager on the Google Cloud Open Source Strategy team focusing on Kubernetes Community. She has 13 years of professional experience in attracting and retaining engineering talent for organizations and open source projects. She has also been... Read More →



Thursday May 3, 2018 15:50 - 16:25
B3-M5+7

15:50

Storage WG Deep Dive – Ben Hindman, Mesosphere; Clint Kitson, VMware & Quinton Hoole, Huawei (Intermediate Skill Level)
The storage working group has some guidance from the ToC. This session is of roundtable format where we will be able to discuss the structure and goals to help support the ToC.

Speakers
BH

Ben Hindman

Ben Hindman is one of the creators of Apache Mesos, a platform for building and running resource-efficient distributed systems at scale. Ben started working on Mesos as a PhD student at Berkeley before he brought it to Twitter where it runs on thousands of machines. An academic a... Read More →
avatar for Quinton Hoole

Quinton Hoole

Technical Vice President, Huawei
Quinton is currently Technical Vice President of Cloud Computing at Huawei. Previously he spend five years at Google, where he was an Engineering Lead on the Kubernetes team, and Technical Lead and Manager of Ads Serving SRE. He was also the founding engineer of the Amazon EC2 cl... Read More →
CK

Clint Kitson

Cloud Native Engineering Director, VMware


Thursday May 3, 2018 15:50 - 16:25
B4-M2+4

15:50

CNI Intro – Bryan Boreham, Weaveworks & Casey Callendrello, CoreOS (Any Skill Level)

Speakers
avatar for Bryan Boreham

Bryan Boreham

Director of Engineering, Weaveworks
Bryan is Director of Engineering at Weaveworks, delivering deployment, observability and monitoring for containers and microservices. | | Previously, Bryan has worked on many kinds of systems including financial trading, factory control and bakery. Outside of work he is a fat... Read More →
CC

Casey Callendrello

Senior Software Engineer, CoreOS
Casey Callendrello is an open-source developer at CoreOS. He is a maintainer for the Container Networking Interface (CNI) project. He also contributes to the the Kubernetes project and the Rkt container runtime.


Thursday May 3, 2018 15:50 - 16:25
B3-M6+8
  • Any Skill Level Any

15:50

Linkerd Intro – Andrew Siegner & George Miranda, Buoyant.io (Any Skill Level)
In this talk, you’ll learn about the problems a service mesh solves and how to do that using Linkerd. We’ll cover concepts using a demo that you can follow along with (bring your laptops!) and have a conversation where you can ask questions as we show you some possibly counterintuitive things like how to make things inside your applications faster by adding more steps.

Speakers
avatar for Andrew Seigner

Andrew Seigner

Software Engineer, Buoyant.io
I work on https://linkerd.io and https://conduit.io. Writing mostly in Go. Integrates with Kubernetes, Prometheus, and Grafana.



Thursday May 3, 2018 15:50 - 16:25
B5-M1+3
  • Any Skill Level Any

15:50

Multicluster Ingress Powered by Kubernetes Cluster Registry - Greg Harmon & Nikhil Jindal, Google (Advanced Skill Level)
Multicluster Ingress (MCI) is useful for a variety of scenarios: high-availability services, low-latency access, setting up hybrid multi-cloud and on-prem architectures, canarying clusters with new release versions and running experimental releases.

In this talk, we will show how we can leverage the Cluster Registry to create multicluster ingresses with Kubernetes-style semantics. Using a controller against the Cluster Registry server, we can watch multicluster ingress resources and the list of clusters. This allows us to manage MCIs and automatically add/remove them from clusters as they are added/removed from the registry using label selection.
We will also demo a sample application and show how users can make it resilient to cluster failures using multi cluster ingress.

Speakers
GH

Greg Harmon

Software Engineer, Google
Greg Harmon (G-Harmon@github) is a Software Engineer on Google’s Kubernetes team. He’s currently contributing to the multicluster efforts. Before Kubernetes he worked on Google Compute Engine for 5 years, including the launch of live migration.
avatar for Nikhil Jindal

Nikhil Jindal

Software Engineer, Google
Nikhil Jindal (nikhiljindal@github) is a Software Engineer on the kubernetes team at Google. He had started on kubernetes by working on API machinery and is now focussed on multi cluster problems. Before getting the kubernetes bug, he was enjoying working on Google Maps.



Thursday May 3, 2018 15:50 - 16:25
Auditorium 10

15:50

Compliant Data Management and Machine Learning on Kubernetes - Daniel Whitenack, Pachyderm (Intermediate Skill Level)
Data scientists, machine learning engineers, and researchers are under increasing pressure to provide explanations for how they are processing and managing user data. In particular, the EU's GDPR regulations taking effect this year are forcing organizations to rethink their data management and processing strategies. In this talk, we will demonstrate a data management and processing methodology/framework that is helping organization deploy compliant workflows on top of Kubernetes. The framework, based on the open source Pachyderm project, gives data scientists automatic tracking of changes to data and of all the various pieces of data and processing that lead to particular results. This, along with access control strategies and anonymization (which will also be discussed in the talk), gives organizations a framework that is easy to manage, scalable for AI/ML workflows, and compliant.

Speakers
avatar for Daniel Whitenack

Daniel Whitenack

Lead Data Scientist and Advocate, Pachyderm
Daniel Whitenack (@dwhitena) is a Ph.D. trained data scientist working with Pachyderm (@pachydermIO). Daniel develops innovative, distributed data pipelines which include predictive models, data visualizations, statistical analyses, and more. He has spoken at conferences around t... Read More →



Thursday May 3, 2018 15:50 - 16:25
C1-M5

15:50

Getting Started with Logging in Kubernetes - Eduardo Silva, Treasure Data (Any Skill Level)
A good practice when deploying applications in Kubernetes is to set proper instrumentation to gather insights and solve general monitoring needs. Logging is a fundamental piece of the instrumentation cycle and is continually evolving to solve pains associated with unstructured formats, performance and monitoring.

In this presentation you will learn the concepts involved in log processing for containerized applications. You will also be introduced to these hot new features in Logging: metering the logging pipeline with Prometheus, performance improvements, scalability and the ability to customize the log processor behavior through declarative resource annotations.

Speakers
avatar for Eduardo Silva

Eduardo Silva

Senior Software Engineer, Treasure Data
Eduardo is an Open Source Software Engineer at Treasure Data. He currently leads the efforts to make logging more scalable in Containerized and Orchestrated systems such as Kubernetes.



Thursday May 3, 2018 15:50 - 16:25
Auditorium 11+12
  • Any Skill Level Any

15:50

Case Study: How Containers Makes Security and Compliance Instantly Easier - John Morello, Twistlock (Intermediate Skill Level)
As containers become the commonplace method for delivering and deploying applications, we’ve seen more of our customers taking a “lift-and-shift” approach to migrating their existing applications. In this session, John Morello at Twistlock will discuss a non-profit that provides environmental science and engineering oversight to some of the world’s largest civil waterworks projects. This organization relies on a critical 14-year old app that models storm surge. The move to containers for this application delivered immediate benefits, making it easier to manage vulnerabilities, ensure regulatory compliance, and provide runtime defense. Throughout this session, we’ll break down the security advantages of containers relative to traditional architectures using this real-life app as an example.

Speakers
avatar for John Morello

John Morello

Chief Technology Officer, Twistlock
John Morello is the Chief Technology Officer at Twistlock. As CTO, John leads the work with strategic customers and partners and drives the product roadmap. Prior to Twistlock, John was the CISO of Albemarle, a Fortune 500 global chemical company. Before that, John spent 14 years... Read More →


Thursday May 3, 2018 15:50 - 16:25
C1-M3

15:50

Panel Discussion: Ask Us Anything: Microservices and Service Mesh - Moderated by Jason McGee, IBM (Any Skill Level)
Have you heard the buzz around microservices and containers lately? With containers becoming the new standard to building microservice based applications for production, users are leveraging the service mesh to solve common issues with routing, re-routing for graceful degradation as services fail, secure inter-service communication and rate limiting between services. Join us for a live interactive session where our panel of experts from IBM, Google, Envoy, and RedHat will address your most challenging inquiries around microservice and service mesh!

Moderators
avatar for Jason McGee

Jason McGee

Fellow, IBM
Jason McGee, IBM Fellow, is VP and CTO of Container and Microservice Tribe. Jason leads the technical strategy and architecture across all of IBM Cloud, with specific focus on core foundational cloud services, including containers, micro-services, continuous delivery and operatio... Read More →

Speakers
avatar for Matt Klein

Matt Klein

Software Engineer, Lyft
Matt Klein is a software engineer at Lyft and the architect of Envoy. Matt has been working on operating systems, virtualization, distributed systems, networking, and making systems easy to operate for over 15 years across a variety of companies. Some highlights include leading t... Read More →
avatar for Sven Mawson

Sven Mawson

Senior Staff Software Engineer, Google
Sven is a Senior Staff Software Engineer at Google, and one of the founders of the open source Istio project. He joined Google in 2006, and has spent the past 10 years working on several generations of Google's API Management platform, starting with the AtomPub-based Google Data... Read More →
avatar for Joy Zhang

Joy Zhang

Senior Software Engineer, Google
Joy is a software engineer at Google and a technical lead of the Istio Config Working Group. She also contributes to Istio service broker and Istio integrations. Prior to that, she spent 10+ years in software development and research across a variety of areas: mobile clients, dat... Read More →


Thursday May 3, 2018 15:50 - 16:25
C1-M4
  • Any Skill Level Any

16:35

YAML is for Computers. ksonnet is for Humans - Bryan Liles, Heptio (Any Skill Level)
YAML as a configuration language for Kubernetes means the configuration is accessible to the API service and mostly accessible to humans. The open source project, ksonnet, provides an intuitive way to create and edit Kubernetes configuration files in a declarative fashion. It also allows configuration of applications across multiple environments.

In this session, the audience will be introduced to the world of easier Kubernetes configurations. They will learn how to simplify their deployments, take advantage of reusable components, and integrate with other tools. They will be able to do this while reducing complexity by separating parameters from resources. Finally, we will review why GitOps is an important technique for ensuring your organization always knows what is in production.

At the conclusion the audience will be able to immediately start integrating ksonnet into their stacks.

Speakers
BL

Bryan Liles

Staff Engineer, Heptio
Bryan Liles is developer with Heptio. He currently works on the ksonnet project looking for ways to make configuring Kubernetes easier for users. Previously, Bryan was an early engineer at DigitalOcean, worked on disease discovery models, and has spent 20 years in the greater ope... Read More →


Thursday May 3, 2018 16:35 - 17:10
C1-M1
  • Any Skill Level Any

16:35

Horizontal Pod Autoscaler Reloaded - Scale on Custom Metrics - Maciej Pytel, Google & Solly Ross, Red Hat (Intermediate Skill Level)
Horizontal Pod Autoscaling enables any cloud based service to handle changing demand while keeping resource utilization at the optimal level. In this talk Maciej and Solly will show how the introduction of custom metrics support makes Kubernetes autoscaling more powerful. You are now able to easily express scalability needs of your application and scale more types of workloads. Maciej and Solly will show how you can set it up for your application in just a few minutes and discuss best practices for using Horizontal Pod Autoscaling.

Speakers
MP

Maciej Pytel

Software Engineer, Google
Maciej Pytel works on Kubernetes autoscaling at Google, focusing on Horizontal Pod Autoscaler and Cluster Autoscaler. Prior to Google, Maciej worked on multiple cloud orchestration projects (usually related to OpenStack) at Codilime.
avatar for Solly Ross

Solly Ross

Software Engineer, Red Hat
Solly Ross is the SIG lead for SIG Autoscaling, and works on Kubernetes and OpenShift at Red Hat, with a focus on autoscaling and metrics. When not dabbling in other parts of the Kubernetes code base, Solly enjoys a wide range of programming topics, and can be found most places o... Read More →


Thursday May 3, 2018 16:35 - 17:10
C1-M0

16:35

gRPC Deep Dive: gRPC C-Core Architecture and Life of an RPC – Jayant Kolhe & Sree Kuchibhotla, Google (Intermediate Skill Level)
Speakers
avatar for Jayant Kolhe

Jayant Kolhe

Director of Engineering, Google
Jayant is Director of Engineering at Google working in Google Cloud Organization. He has been at Google for last 10 years. He manages teams that work in areas of Networking, distributed systems and APIs. He has led and managed multiple Open Source Projects such as gRPC and Protoc... Read More →
avatar for Sree Kuchibhotla

Sree Kuchibhotla

Software Engineer, Google
Sree Kuchibhotla is a Software Engineer on the gRPC team at Google. He works on gRPC C-Core and C++ stack and is currently focussing on gRPC performance and lower level components in the stack. Before joining Google, Sree worked at Twitter and Microsoft on Distributed storage sy... Read More →


Thursday May 3, 2018 16:35 - 17:10
B3-M6+8

16:35

Kubernetes Policy WG Deep Dive - Zhipeng Huang, Huawei (Intermediate Skill Level)
This session is dedicated to the technical side of policy implementation. This session will be divided into the following six lightning talks each 5 mins:

- Kubernetes Security Profile Demo (David Oppenheimer)
- sig-auth/sig-arch policy discussion update (Tim Allclair)
- kube-arbitrator talk (Michael Elder)
- open policy agent update (Torin Sandall)
- Istio policy talk (Etai Lev-Ran)
- SPIFEE policy talk (Andrew Jessup)

Speakers
ZH

Zhipeng Huang

Standard Manager, Huawei
Zhipeng Huang currently serve as open source operation manager for Huawei. Zhipeng have been involved with various major open source communities and is now the PTL of OpenStack Cyborg project, co-chair of OpenStack Public Cloud WG, and co-lead of the Kubernetes Policy WG


Thursday May 3, 2018 16:35 - 17:10
B4-M1+3

16:35

NATS Deep Dive – Colin Sullivan & Waldemar Quevedo, Synadia (Intermediate Skill Level)
 NATS is a high performance messaging server and also one of the latest additions to the CNCF.  In this talk, we will make a deep dive to the internals of the project covering its design, protocol, clustering implementation, security and authorization features that make it an attractive solution for microservices and low latency applications.

After this talk, attendees should be ready to become contributors and also familiar with the future roadmap of the project. If you are looking for a simple project to contribute or a fan of performance, definitely consider joining!



Speakers
avatar for Waldemar Quevedo

Waldemar Quevedo

Software Engineer, Synadia Communications, Inc
Waldemar is a Software Engineer at Synadia Communications, Inc, working on NATS (@nats_io)
avatar for Colin Sullivan

Colin Sullivan

Product Manager, Synadia Communications, Inc.
Colin is the product manager of NATS (https://nats.io). He has extensive experience developing messaging products and designing distributed systems. Prior to Synadia, Colin worked at Apcera and TIBCO software.



Thursday May 3, 2018 16:35 - 17:10
B3-M5+7

16:35

rkt Deep Dive – Alban Crequy & Iago López Galeiras, Kinvolk (Intermediate Skill Level)
This rkt deep dive session will provide a detailed overview of the
technical aspects of rkt from its core contributors. We'll explore
exactly what is meant when we say rkt is secure, efficient and
composable and compare and contrast it to other container runtimes. It
will also touch on rktlet, the Kubernetes CRI implementation of rkt
and some of the challenges in its implementation.

Speakers
avatar for Alban Crequy

Alban Crequy

CTO, Kinvolk
Originally from France, Alban currently lives in Berlin where he is a CTO & co-founder at Kinvolk, a software engineering team focused on building foundational Linux technologies for the cloud. He is a contributor to rkt, a container runtime for Linux, Weave Scope, a container vi... Read More →
avatar for Iago López Galeiras

Iago López Galeiras

Software Engineer, Kinvolk
Iago brought his relaxed Spanish demeanor to Berlin a few years back. Sincenthen, he’s been diving and swimming around the internals of various Linuxnflavors; Android, embedded and Cloud. Container technologies are his currentnfocus; specifically on the rkt project where he’s... Read More →



Thursday May 3, 2018 16:35 - 17:10
B4-M2+4

16:35

SIG PM Intro - Ihor Dvoretskyi, Cloud Native Computing Foundation & Aparna Sinha, Google (Any Skill Level)
Speakers
avatar for Ihor Dvoretskyi

Ihor Dvoretskyi

Developer Advocate, Cloud Native Computing Foundation
Ihor Dvoretskyi is a Developer Advocate at Cloud Native Computing Foundation, focused on Kubernetes-related efforts in the open source community. He is a Product Manager for Kubernetes, co-leading the Product Management Special Interest Group, focused on enhancing Kubernetes as a... Read More →
avatar for Aparna Sinha

Aparna Sinha

Group Product Manager, Google
Aparna Sinha leads the product team at Google for Kubernetes OSS and Kubernetes Engine. She started and co-leads the Product Management SIG to maintain an open backlog for the Kubernetes project on Github. Aparna is currently a secondary member of the CNCF Governing Board. She ha... Read More →


Thursday May 3, 2018 16:35 - 17:10
B5-M1+3
  • Any Skill Level Any

16:35

Who Shot the Cluster? - Audit Logging in Kubernetes - Marian Lobur & Mik Vyatskov, Google (Intermediate Skill Level)
Did you ever face a case when you did not know who created the resource or modified the security settings. Have you wondered how you can get this information without spending weeks on investigations? Are you required to audit your infrastructure for compliance?
In this talk Marian will walk you through the setup and best practices of using Kubernetes Audit Logging along with a demo.

Speakers
ML

Marian Lobur

Software Engineer, Google
Marian is a Kubernetes project contributor since May 2017. He is working on monitoring and logging pipelines. Marian has experience of working on other open source projects, for example he has contributed to Bazel build tool. In his free time Marian makes 3d printings and takes a... Read More →
MV

Mik Vyatskov

Software Engineer, Google
Mik is a Kubernetes project contributor since September 2016. He is an active sig-instrumentation member, working on monitoring, logging, and related topics, e.g. audit logging. Mik is especially experienced with logging systems of different kinds, having several years of industr... Read More →


Thursday May 3, 2018 16:35 - 17:10
Auditorium 10

16:35

What’s in the Box? Resource Management in Kubernetes - Louise Daly & Ivan Coughlan, Intel (Intermediate Skill Level)
As the cloud native ecosystem evolves, it is determined to align platforms and technologies into a well-orchestrated infrastructure for optimum utilisation of compute, network and storage. This infrastructure needs to cater to the needs of a variety of workloads in fields such as telecomms, scientific computing, machine learning, financial services and data analytics. In order to provide the best performance for such workloads, features to provide performance isolation (e.g., CPU pinning, huge pages and accelerators) are required. The resource management working group (RMWG) in Kubernetes is working on the design, development and implementation of such features through the introduction of CPU manager, Huge Pages and Device Plugins.

In this presentation, we will demonstrate how to leverage some introduced by RMWG via specific use cases from networking and machine learning (ML).

Speakers
IC

Ivan Coughlan

Senior Software Architect, Intel Corp
Ivan Coughlan is a Senior Software Architect working for the Intel Software Defined Datacenter Solutions Group (SDSG) with a broad range of experience from embedded real time product development for the Telecoms industry to manufacturing IT systems development, integration and co... Read More →
avatar for Louise Daly

Louise Daly

Network Software Engineer, Intel
Software Engineer at Intel. Working towards cloud native orchestration of workloads, currently looking at enabling compute resources in Kubernetes to improve application performance, provide predicable performance and effectively manage server resources,



Thursday May 3, 2018 16:35 - 17:10
C1-M5

16:35

Cloud Native Networking for Containers in AWS using CNI Plugins - Anirudh Aithal, Amazon Web Services (Intermediate Skill Level)
The Container networking interface (CNI) project makes it really simple for container orchestrators to configure networking for containers. In this presentation, Anirudh Aithal will provide a detailed walkthrough of developing a plugin, from prototyping to integrating with orchestration frameworks such as Elastic Container Service (ECS) and Elastic Container Service for Kubernetes (EKS). We'll start with a brief introduction of CNI project and plugins. We will also review how CNI plugins enabled us to iterate fast on enabling cloud-native networking capabilities for containers such as routable IPs, network ACLs, firewall rules by provisioning elastic network interfaces on a per-container basis, without modifications to the orchestration framework itself. We will also review the best practices for developing a plugin including testing, logging, versioning and operationalizing the same.

Speakers
avatar for Anirudh Aithal

Anirudh Aithal

Sr. Software Dev Engineer, Amazon Web Services
Anirudh is a Sr. Software Engineer in the Container Services team at AWS. He has been involved with bringing many of the virtual machine abstractions to containers running on AWS including elastic network interfaces, identity and access management and telemetry. He's also a maint... Read More →



Thursday May 3, 2018 16:35 - 17:10
Auditorium 15

16:35

Reveal Your Deepest Kubernetes Metrics - Bob Cotton, Freshtracks.io (Intermediate Skill Level)
Kubernetes generates a wealth of metrics. Some explicitly within the Kubernetes API server, the Kublet, and cAdvisor or implicitly by observing events such as the kube-state-metrics project. A subset of these metrics are used within Kubernetes itself to make scheduling decisions, however, other metrics can be used to determine the overall health of the system or for capacity planning purposes.

Kubernetes exposes metrics from several places, some available internally, others through add-on projects. In this session you will learn about:
- Node level metrics, as exposed from the node_exporter
- Kublet metrics
- API server metrics
- etcd metrics
- cAdvisor metrics
- Metrics exposed from kube-state-metrics

Join this session to learn about how these metrics are calculated, their use within Kubernetes scheduling decisions and application in monitoring, alerting and capacity planning.

Speakers
avatar for Bob Cotton

Bob Cotton

Cofounder, FreshTracks.io
Bob Cotton is a co-founder of FreshTracks.io, a Kubernetes and Prometheus focused monitoring startup. Mr. Cotton bleeds observability based on 22 years designing, architecting, building and running distributed SaaS solutions. Infrastructure and application metrics, full-stack dis... Read More →



Thursday May 3, 2018 16:35 - 17:10
Auditorium 11+12

16:35

Clusters as Cattle: How to Seamlessly Migrate Apps across Kubernetes Clusters - Andy Goldstein, Heptio (Intermediate Skill Level)
Before the arrival of Cloud Native, IT departments frequently treated each component--a service/application, a virtual machine, or a bare metal server--as a special, fragile entity that required the utmost of care.

Kubernetes, and more broadly Cloud Native, presents us with better ways to handle our infrastructure. For example, when we need to upgrade to a newer Kubernetes version, we can use automation and tooling to create a new cluster and migrate existing workloads over to it.

In this talk, Andy will describe different strategies for moving workloads between clusters. He'll show you how to use tools such as Ansible and Kubeadm to quickly install a new cluster, along with Heptio Ark to back up one cluster and restore into a new one. Andy will also demonstrate how you can perform zero-downtime migrations using Envoy for cluster ingress, traffic shifting, and some DNS “magic.”

Speakers
avatar for Andy Goldstein

Andy Goldstein

Staff Systems Engineer, Heptio
Andy Goldstein is an engineer at Heptio where he works on tooling to make operating Kubernetes clusters easier, such as Ark, a disaster recovery tool for backing up and restoring Kubernetes workloads and persistent data. He is also a contributor to Kubernetes. Prior to his curren... Read More →



Thursday May 3, 2018 16:35 - 17:10
C1-M2

16:35

Entitlements: Understandable Container Security Controls - Justin Cormack & Nassim Eddequiouaq, Docker (Intermediate Skill Level)
In this talk Justin Cormack introduces a new system of security entitlements for container workloads. These specify the types of access a pod should have in a human readable way. He will also demonstrate an example implementation running in Kubernetes.

The current pod security configuration is very low level, and does not really make any sense to users of the system. How can we make security configuration understandable? One route comes from the model of application entitlements that Apple uses on the iPhone to control things like access to Push Notifcations and Payments. The open source libentitlement library, being developed at Docker, enables similarly high level controls to be used for managing containers. The talk will also cover the relationship with Open Policy Agent and other access control frameworks, and relation to Linux Security Modules and PodSecurityPolicy.

Speakers
avatar for Justin Cormack

Justin Cormack

Engineer, Docker
Justin is a Senior Software Engineer at Docker, working on security. He is based in Cambridge, UK. He is a maintainer of the Moby engine and LinuxKit, and has worked across many open source container projects. He was involved in the work to include Kubernetes in Docker for Mac. H... Read More →
avatar for Nassim Eddequiouaq

Nassim Eddequiouaq

Security Engineer, Docker
Nassim is a security engineer at Docker where he focuses on designing | and creating new security features for the container ecosystem and | making existing ones as usable as possible. Nassim previously spent a | couple of years working on hobby kernels and reverse-engineering... Read More →



Thursday May 3, 2018 16:35 - 17:10
C1-M3

16:35

Observability and the Depths of Debugging Cloud-Native Applications using Linkerd and Conduit - Franziska von der Goltz, Buoyant, Inc (Intermediate Skill Level)
Observability and monitoring are different, but complementary, needs for production applications. While monitoring focuses on measuring the overall health of your systems, observability aims to provide granular metrics that describe the behavior of your systems along with their context. Due to both its architecture and focus on providing observability, the service mesh can be a powerful debugging solution when trying to figure out what went wrong with your cloud native applications.

In this talk, Franziska shows you how to debug your Kubernetes applications using features of a service mesh in tandem with use of other CNCF projects like OpenTracing. She compares and contrast two different debugging techniques using both Linkerd and Conduit. After attending this talk, you’ll be able to use either approach to debug your Kubernetes-based applications.

Speakers
avatar for Franziska von der Goltz

Franziska von der Goltz

Software Development Engineer, Buoyant, Inc
Franziska von der Goltz is a software development engineer working on open-source service mesh technology at Buoyant. Prior to Buoyant, she was a part of the education team at the Hackbright Academy in San Francisco, an engineering school for women with a mission to change the ra... Read More →



Thursday May 3, 2018 16:35 - 17:10
C1-M4

18:00

All Attendee Party - Join us at Tivoli Gardens!
Attendees will experience the magic of Tivoli Gardens at the KubeCon + CloudNativeCon Europe 2018 attendee party. Join us for an evening filled with amusement rides, beautiful gardens, and more - on Thursday, May 3. This year marks their 175th anniversary!
All conference attendees are invited; food and drinks provided.

Don't forget your name badge & coat - the evening will be chilly!

Thanks to our Bar Sponsor mLab!


Thursday May 3, 2018 18:00 - 21:00
Tivoli Gardens
 
Friday, May 4
 

08:00

Welcome Coffee
Friday May 4, 2018 08:00 - 09:00
Auditorium Foyer

08:00

Registration
Friday May 4, 2018 08:00 - 15:00
Main Lobby

09:00

Keynote: Cloud Native ML on Kubernetes - David Aronchick, Product Manager, Cloud AI and Co-Founder of Kubeflow, Google & Vishnu Kannan, Sr. Software Engineer, Google (Slides Attached)
Speakers
avatar for David Aronchick

David Aronchick

Product Manager, Cloud AI and co-founder of Kubeflow, Google
David Aronchick was the Senior Product Manager for the Google Container Engine and led product management on behalf of Google for Kubernetes. David has been helping to ship software for nearly 20 years, founding and being part of the management team for three different startups... Read More →
avatar for Vishnu Kannan

Vishnu Kannan

Sr. Software Engineer, Googe
Vishnu Kannan is a Senior Software Engineer at Google. Vishnu received his Masters in ECE from Georgia Tech. He has been a systems engineer ever since he graduated. He hacked on the Linux Kernel for a couple of years at Cisco. He then worked on Borg at Google. He is currently an... Read More →


Friday May 4, 2018 09:00 - 09:20
Congress Hall A

09:20

Keynote: Running with Scissors - Liz Rice, Technology Evangelist, Aqua Security (Slides Attached)
Liz explores some common risks that many users are - often unknowingly - taking with their cloud native deployment, by running workloads with more privileges than they need. 

Speakers
avatar for Liz Rice

Liz Rice

Technology Evangelist, Aqua Security
Liz Rice is the Technology Evangelist with container security specialists Aqua Security, and also works on container-related open source projects including manifesto and kube-bench. She has a wealth of software development, team, and product management experience from working on... Read More →



Friday May 4, 2018 09:20 - 09:40
Congress Hall A

09:40

Keynote: Scaling Deep Learning Models in Production Using Kubernetes - Sahil Dua, Software Developer, Booking.com (Slides Attached)
While there are a lot of machine learning frameworks and libraries available, putting the models in production at large scale is still a challenge. Sahil would like to talk about how they took on the challenge of deploying deep learning models in production: how they chose their tools and developed their internal deep learning infrastructure using Kubernetes. He will cover how they do model training in Docker containers, distributed TensorFlow training in a cluster of containers, automated re-training of models and finally, the deployment of models to serve predictions.

At the large scale which they operate on, nothing comes easy. He will also talk about how they optimize their model predictions infrastructure for latency or throughput depending on the use case.

Speakers
avatar for Sahil Dua

Sahil Dua

Software Developer, Booking.com
Sahil is a software developer at Booking.com. He has been involved in leveraging container infrastructure to help Booking.com’s internal teams in taking advantage of deep learning techniques at scale. | An open source software enthusiast, Sahil is a core contributor and commun... Read More →


Friday May 4, 2018 09:40 - 10:00
Congress Hall A

10:00

Keynote: Crossing the River by Feeling the Stones - Simon Wardley, Researcher, Leading Edge Forum (Slides Attached)
Deng Xiaoping once described managing the economy as crossing the river by feeling the stones — in other words have a direction but be adaptive. But in a world of constant change, how do you determine the right thing to do? Which pebble to tread on? How do you understand where you’re going and where you need to go? How do you know if your strategy is right? Is there even such a thing?
In this talk, we start by examining the issue of situational awareness and how it applies to technology. Using examples from government and the commercial world, we then explore how you can map your environment, identify opportunities to exploit and learn patterns of change. 

Speakers
avatar for Simon Wardley

Simon Wardley

Researcher, Leading Edge Forum
Simon Wardley is a Researcher for Leading Edge Forum, a global research and thought leadership programme dedicated to helping large organizations reimagine their organizations and leadership for a technology-driven future. Simon is also lead practitioner for LEFs Wardley Maps Adv... Read More →



Friday May 4, 2018 10:00 - 10:20
Congress Hall A

10:20

Keynote: Closing Remarks – Kelsey Hightower, Kubernetes Community Member, Google & Liz Rice, Technology Evangelist, Aqua Security
Speakers
avatar for Kelsey Hightower

Kelsey Hightower

Kubernetes Community Member, Google
Kelsey Hightower has worn every hat possible throughout his career in tech, and enjoys leadership roles focused on making things happen and shipping software. Kelsey is a strong open source advocate focused on building simple tools that make people smile. When he is not slinging Go code, you can catch him giving technical workshops covering everything from programming to system administration... Read More →
avatar for Liz Rice

Liz Rice

Technology Evangelist, Aqua Security
Liz Rice is the Technology Evangelist with container security specialists Aqua Security, and also works on container-related open source projects including manifesto and kube-bench. She has a wealth of software development, team, and product management experience from working on... Read More →


Friday May 4, 2018 10:20 - 10:25
Congress Hall A

10:25

10:25

10:30

Meet the Maintainer - Waldemar Quevedo, Synadia Communications Inc
Speakers
avatar for Waldemar Quevedo

Waldemar Quevedo

Software Engineer, Synadia Communications, Inc
Waldemar is a Software Engineer at Synadia Communications, Inc, working on NATS (@nats_io)


Friday May 4, 2018 10:30 - 11:30
CNCF Booth

11:10

Using kubectl to Run your End-to-End Tests - Amit Kumar Das, MayaData & Uday Kiran, CloudByte (Intermediate Skill Level) (Slides Attached)
End-to-end (e2e) tests are tasked to verify that a system with all its moving components (without mocks) can work together and satisfy the end user goals. Just as Kubernetes helps us with managing microservices based application containers, converting e2e tests into containers that can be versioned and orchestrated using Kubernetes helps us to test for functionality, performance benchmarking, upgrades and backward compatibility.

Amit and Uday will demonstrate their e2e test containers for testing a storage infrastructure service added to Kubernetes that can be used on different platforms like GKE, OpenShift, etc., These e2e test containers can also be used by customers of the infrastructure service to augment their own CI/CD pipelines. The e2e tests have moved from being scripts to Kubernetes YAML files that are used by service providers and the customers.

Speakers
avatar for Amit Kumar Das

Amit Kumar Das

Architect, Full Stack Engineer, MayaData
Amit is a strong open source advocate and a firm believer of `taco bell programming` that helps him building simple & easy to use software. When he is not into programming, you will find him understanding the world from his daughter's perspective. | | Amit is the maintainer... Read More →
avatar for Uday Kiran

Uday Kiran

Senior Software Engineer, MayaData
Uday has been a Kubernetes user for almost 2 Years now. This will be his first talk at a KubeCon Event. Uday has been part of various Kubernetes and GoLang meetups. Uday also conducts Kubernetes trainings for interested users . Uday is an avid programmer and hacker, he is current... Read More →



Friday May 4, 2018 11:10 - 11:45
C1-M0

11:10

Chaos Engineering WG Deep Dive – Sylvain Hellegouarch, ChaosIQ (Intermediate Skill Level) (Slides Attached)
This session is dedicated to using the Open Source Chaos Toolkit project, as a unified driver, to explore your system weaknesses through Chaos Engineering.The talk will walk you through a practical scenario of an application living a Kubernetes cluster, and how using the Chaos Engineering experimental approach, using various chaos tools driven by the Chaos Toolkit, you can learn about your system in order to improve it.

Speakers
avatar for Sylvain Hellegouarch

Sylvain Hellegouarch

CTO, ChaosIQ
Sylvain Hellegouarch is the CTO and lead engineer at ChaosIQ. He has been passionnate about Open Source for as long as he can remember working on various successful Python projects (CherryPy, WebSocket 4 Python and more recently, the Chaos Toolkit). He has participated to IETF wo... Read More →



Friday May 4, 2018 11:10 - 11:45
B5-M1+3

11:10

CNCF Cross-Cloud CI Deep Dive – Denver Williams, Cloud Native Computing Foundation & Taylor Carpenter, Vulk Coop (Intermediate Skill Level) (Slides Attached)
Speakers
avatar for Taylor Carpenter

Taylor Carpenter

Partner, Vulk Coop
Partner at Vulk Cooperative - http://vulk.coop | Co-Lead Cross-Cloud CI project - http://crosscloud.ci | | OpsDev geek. Elixir and Ruby programmer. Father, book devourer, dark beer lover. | | I think the concept of a delightful user experience should be applied to all parts o... Read More →
DW

Denver Williams

Cross-Cloud Project Founder, CNCF



Friday May 4, 2018 11:10 - 11:45
B4-M2+4

11:10

Open Policy Agent Deep Dive – Tim Hinrichs & Torin Sandall, Styra (Intermediate Skill Level) (Slides Attached)
Speakers
avatar for Tim Hinrichs

Tim Hinrichs

CTO, Styra
Tim Hinrichs is the CTO and Co-founder of Styra. For the last 15 years, he designed and built policy languages across different domains, most recently the CNCF Open Policy Agent and prior to that OpenStack Congress. Before Styra he worked as a kernel developer at VMware on Nici... Read More →
avatar for Torin Sandall

Torin Sandall

Software Engineer, Styra
Torin Sandall is the technical lead of the open source Open Policy Agent project. Torin has spent his 10 years as a software engineer working on large-scale distributed systems projects. Torin has recently given talks on policy-related topics in Kubernetes at KubeCon, ContainerDa... Read More →



Friday May 4, 2018 11:10 - 11:45
B5-M2+4

11:10