Monday May 3, 2021 14:00 - 20:00 CEST
Virtual

Co-Located Events

15:00 CEST

College to Cloud Native - Bill Mulligan, Cloud Native Computing Foundation & Mritunjay Kumar Sharma, Linux Foundation Mentee

Watch this session on CloudNative.tv

Are you a student and feel a little lost on the cloud native seas? Join the College to Cloud Native session to learn more about where you should go in the conference. Your host Bill Mulligan will show you around the event and answer any questions you may have.

Speakers

Bill Mulligan

Marketing Manager, Cloud Native Computing Foundation

Bill Mulligan is a Marketing Manager at CNCF helping the cloud native community grow and make cloud native computing ubiquitous. He runs strategic programs around telco and edge computing, helps students see cloud native as a career path, builds local communities through Kubernetes... Read More →

Monday May 3, 2021 15:00 - 15:30 CEST
CloudNative.tv

Interactive Sessions

Student Track Yes

15:00 CEST

Build with GKE + Anthos hosted by Google Cloud (Complimentary Registration Required)

Join us at Build with GKE + Anthos, hosted alongside KubeCon + CloudNativeCon Europe 2021, to learn what is new in the world of containers and Kubernetes here at Google Cloud! Our modern end-to-end platform is built on the cloud-native principles you are already familiar with and prioritizes speed, security, and flexibility, in ways that are highly differentiated from other clouds. This event will help you kick start or accelerate your journey developing on GKE, covering everything from code, build, run, operate, manage, and secure. You'll get access to technical demos going deep into our Kubernetes services, Developer tools, Operational suite and Security solutions.

How to Register: Pre-registration is required. Register here for Build with GKE + Anthos!

For questions regarding this event, please reach out to meetusatkubecon@google.com.

Monday May 3, 2021 15:00 - 17:00 CEST
Virtual

Co-Located Events

16:00 CEST

Bug Bash Europe 2021 (Complimentary Registration Required)

The CNCF Bug Bash is a five-day competition where developers from around the world compete to smash as many bugs as they can on selected CNCF Projects. Compete as individuals and as a team for prizes, glory, and honor.

You'll compete with other developers to smash as many bugs as possible on the following CNCF Projects, most of which are written in Go.

Thanos
Serverless Workflow
Chaos Mesh
CRI-O
Tinkerbell
OpenEBS
BuildPack
schemahero

The Bash is open to developers of all levels. If you're a newer developer who wants to learn from a senior developer, or a senior developer interested in working with a junior developer, make a note when you sign up!

How to Register: Complimentary pre-registration is required to participate in Bug Bash Europe 2021. Register here!

Have some questions? Reach out to vwells@sonatype.com.

Monday May 3, 2021 16:00 - Friday May 7, 2021 16:30 CEST
Virtual

Interactive Sessions

09:00 CEST

The New Stack Makers Virtual Pancake Breakfast + Podcast: Securing GitOps: Self-Healing Through Open Source

LINK TO VIDEO RECORDING

GitOps is as hot as a campfire griddle! So cook up some hot cakes as we discuss GitOps and all that makes it hot, hot, hot! Join us for a short stack with The New Stack and sponsor Accurics to get all of your questions answered about GitOps — the movement that is defining how teams are achieving the world of desired state.

TNS Founder and Publisher Alex Williams will moderate an expert panel and take as many questions as we can answer from you and our worldwide virtual audience. Our panelists will offer their explanation and analysis about how pull request automation practices have emerged, why Infrastructure as Code is integral to GitOps practices, and how open source projects are emerging. Argo CD, Flux, Atlantis, Tekton, Kaniko, Skaffold and Terrascan can be used to create GitOps workflows with security and compliance baked in. Bring your questions for a chance to win a custom TNS spatula!

Speakers

Alex Williams

Founder and Publisher, The New Stack

Alex Williams is founder and publisher of The New Stack, a content platform for the people who build and manage software the world relies on. He was an editor at ReadWriteWeb and TechCrunch before leaving in 2014 to start The New Stack. Alex hosts The New Stack Makers pancake and... Read More →

Katie Gamanji

Senior Field Engineer, Apple | CNCF TOC

Katie is a cloud native leader, practitioner, and contributor, currently in a Senior Kubernetes Field Engineer role at Apple and a TOC for CNCF (Cloud Native Computing Foundation). As a cloud platform engineer, Katie has built the infrastructure for Conde Nast and American Express... Read More →

Cindy Blake

Senior Security Evangelist, GitLab

Cindy Blake is the Senior Security Evangelist at GitLab, a leader in the DevOps market with an innovative single application approach for the entire software development lifecycle. Cindy Blake collaborates around best practices for integrated DevSecOps application security solutions... Read More →

Om Moolchandani

Co-founder & CTO, Accurics

Om is co-founder and Chief Technology Officer at Accurics where he sets the technology strategy for the company. Prior to Accurics, Om was Chief Security Officer at AutoGrid, leading cloud security for its Energy SaaS cloud. Om was also head of cybersecurity for General Electric’s... Read More →

Frank Kim

Fellow, Sans Institute

Frank Kim is a fellow at the SANS Institute and leads the management and cloud security curricula, developing courses on strategic planning, leadership, DevSecOps and cloud security. Previously, Frank served as CISO at the SANS Institute, leading its information risk function, and... Read More →

Kubernetes: Beyond the Basics hosted by VMware (REGISTRATION NOW CLOSED)

You know how to build containers and know what a pod is. In this one-day workshop, you’ll learn more about and get hands-on experience with interacting with Kubernetes. In particular, we will look at:

Kubernetes networking
Organizing resources in clusters and namespaces
Storage and stateful applications
Dynamic application configuration
“One-off” and scheduled workloads
Security

Prerequisites:

Laptop with the latest version of Chrome or Firefox
Linux concepts and command line proficiency
General networking proficiency
Basic Familiarity with Docker container management and creation
Familiarity with Kubernetes concepts such as Pods, Services and Deployments
Knowledge of kubectl and the ability to deploy simple applications and to examine application events and logs

Sharing of Personal Information with Sponsors In order to facilitate networking and business relationships at the event, you may choose to visit a third partyʼs virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third partyʼs logo in the Solutions Showcase or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

One of the biggest advantages Kubernetes has to offer is that it is agnostic to infrastructure and capable of managing diverse workloads running on different compute resources. This allows organizations to take advantage of scalable and cost-efficient cloud resources as well as harness a secure and fully controlled on-premise environment.

Streamlined processes and automation are key for application and operation teams when managing clusters across environments while maintaining security and policy checks.

In this demo you will learn how to:
· Use GitOps model-driven automation to increase reliability and stability across EKS (cloud) and EKS-D (on premise)
· Simplify multi-cluster management with GitOps
· Enable developers to push code to production minutes from Git
· Improve utilization and capacity management through hybrid Kubernetes platforms

Tech utilized: Kubernetes, EKS, EKS-D, Git, LinkerD, GitOps, Weave Kubernetes Platform

Speakers

Paul Curtis

Principal Solutions Architect, Weaveworks

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Bridgecrew - End-to-end policy-as-code from IaC to Running Workloads

Speakers

Matt Johnson

Developer Advocate Lead, Bridgecrew

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: CircleCI - Building Arm Compatible CI/CD Pipelines

Speakers

Angel Rivera

Senior Developer Advocate, CircleCI

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Commvault - Many Apps. Many Locations. One Storage Solution.

Sharing of Personal Information with Sponsors In order to facilitate networking and business relationships at the event, you may choose to visit a third partyʼs virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third partyʼs logo in the Solutions Showcase or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Enterprises are moving their applications to the cloud at an unprecedented pace. The pandemic has accelerated this journey and hybrid-multi cloud is now a foundation of modern enterprise architectures. Along the way, you’ve become comfortable optimizing for where, when, and how your applications run. So, why wouldn’t you be equally comfortable using distributed storage that:

• Provides location transparency for all your stateful applications
• Runs anywhere SDS for predictable enterprise-grade resilience, scale, and performance delivered in an application-aware model
• Integrates natively with K8s and your existing workflows

Containerization promises application portability, yet legacy infrastructure relies on traditional snapshot and replication technology to migrate data across locations, becoming a bottleneck for modern DevOps environments.
With distributed storage, you can provision cloud-native, programmable storage when you need it with self-service access and know that your data is instantly available across multiple locations (edge, core, clouds) using our distributed architecture. In this session, you will see distributed storage in action in a K8s environment and learn how to:

• Easily setup and manage persistent volumes using our new Commvault Distributed Storage Operator
• Establish enterprise-grade high availability for stateful applications across regions and zones
• Benefit from the simplicity and efficiency of sharing the same storage across multiple OpenShift and K8s clusters

Modern solutions don’t come from bolt-ons to legacy technology – they come from a foundational architecture rooted in multi-hybrid cloud distribution.

Speakers

Abhijith Shenoy

Distinguished Engineer, Commvault

Xiangyu Wang

Principal Engineer II, Commvault

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Datadog - Policy-as-code for Kubernetes with Gatekeeper

Speakers

Ara Pulido

Technical Evangelist, Datadog

Kubecon EU 2021 Sponsor Theater Gatekeeper pdf

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

10:00 CEST

Sponsored Session: Dell Technologies - Real-Time Object Detection with Pravega and Flink

Speakers

David Adams

Sr. Principal Tech Marketing Engineer, Dell Technologies

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Dynatrace - Extending OpenTelemetry to Observability

Speakers

Daniel Kaar

Technology Strategist, Dynatrace

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Elastic - Autoscaled K8s Observability with the Elastic Operator

Speakers

Michael Morello

Principal Software Engineer, Elastic

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Google Cloud - Multi-cluster, Blue-green Traffic Splitting with the Gateway API

Speakers

Mark Church

Product Manager, GKE Networking

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: HAProxy Technologies - Benchmarking 5 Popular Ingress Controllers

Sharing of Personal Information with Sponsors In order to facilitate networking and business relationships at the event, you may choose to visit a third partyʼs virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third partyʼs logo in the Solutions Showcase or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Performance has never been more important than in a cloud-native world. Cloud-hosted resources cost money and a slow-loading application can cause a suboptimal ROI. Have you taken the time to tune your Kubernetes ingress controller and proxy? Many organizations don't until it's absolutely necessary, and most users will typically run a default, out-of-the-box configuration.

In this demo, we benchmark five popular ingress controllers and put them head-to-head against each other with their default configurations:

• Envoy
• HAProxy
• NGINX
• NGINX Inc.
• Traefik

We measure their average requests per second, latency percentiles, and user-level CPU usage; We monitor for any errors that are produced in order to go beyond performance and test reliability. You can verify the results yourself by downloading the GitHub repository and reproducing our tests. Who will come out on top? Watch the demo to find out!

In this demo, we benchmark five popular ingress controllers and put them head-to-head against each other with their default configurations: Envoy, HAProxy, NGINX, NGINX Inc., and Traefik.

Speakers

Daniel Corbett

Director of Product & Marketing, HAProxy Technologies

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: HPE - Kubernetes and the HPE Ezmeral Container Platform

Speakers

Don Wake

Technical Marketing Engineer, HPE

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Huawei - Zero Change Transitioning to Multi-Cloud Architecture

Speakers

Hongcai Ren

Senior software engineer, Huawei

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: IBM Cloud - Deploying a Simple Python App to IBM Cloud Code Engine

Speakers

JJ Asghar

Developer Advocate, IBM

JJ works as a Developer Advocate representing the IBM Cloud all over the world. He mainly focuses on the IBM Kubernetes Service and OpenShift trying to make companies and users have a successful onboarding to the Cloud Native ecosystem. He’s also been known in the DevOps tooling ecosystem and generalized Linux communities. If he isn’t... Read More →

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Intel - Cloud Native Solutions are Fueling a Telecom Revolution

Speakers

Rajesh Gadiyar

VP and CTO, Network Platforms Group; GM, Network Architecture & Systems Engineering, Intel

As Vice President (VP) and Chief Technology Officer (CTO) of Intel’s Network Platforms Group, Rajesh focuses on delivering a scalable and efficient architecture for next generation communications platforms. He also leads the architecture efforts to accelerate Network Function Virtualization... Read More →

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Kasten - Introducing Kubestr: Identify, Validate, and Evaluate Storage in Kubernetes

Speakers

Michael Cade

Senior Technologist, Kasten by Veeam

A community first technologist for Kasten by Veeam Software. Based in the UK with over 16 years of industry experience with a key focus on technologies such as cloud native, automation & data management. His role at Kasten is to act as a technical thought leader, community champion... Read More →

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Kubermatic - Fighting the Final Boss: Complex Multi-site Multi-cluster App Deployments

Sharing of Personal Information with Sponsors In order to facilitate networking and business relationships at the event, you may choose to visit a third partyʼs virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third partyʼs logo in the Solutions Showcase or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

With the rise of Kubernetes’ popularity across various use-cases, including edge computing, IoT, 5G, or AI/ML, single-cluster Kubernetes deployments are increasingly becoming an exception rather than the norm. As the number of clusters increases, the management of these clusters and the applications running in them quickly becomes the operators’ final boss.

In this tutorial, we will show you how you can master this challenge with open source platforms developed by Kubermatic: Kubermatic Kubernetes Platform for multi-cluster infrastructure management and KubeCarrier for multi-cluster application deployment and management.

Come and learn how you can use these tools to master the final boss and automate the full lifecycle of complex multi-cluster solutions consisting of applications spread across multiple Kubernetes clusters.

Speakers

Sascha Haase

VP Edge, Kubermatic

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Microsoft Azure - Kubernetes Ecosystem in Azure

Speakers

Sean KcKenna

Principal Program Manager, Microsoft Azure

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Mirantis - Introducing K0s 0.13 and kosctl

Speakers

Miska Kaipiainen

Senior Director, Engineering, Mirantis

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: NetApp - Cloud Native Application-aware Data Management in multi-cloud

Automate the backend storage configuration and provision persistent volumes when needed.
Manage your cloud native application and persistent data from multi-cloud Kubernetes clusters from a single pane of glass.
Easily snapshot, backup, clone and migrate applications with their data to another Kubernetes cluster.

Speakers

Jaimon George

Technical Marketing Engineer, NetApp

Diane Patton

Technical Marketing Engineer, NetApp

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: New Relic - Flexible, Open and Easy Observability for Developers

Speakers

Zain Asgar

GVP & Product GM - Pixie @ New Relic. Adjunct professor computer science @ Stanford University

Zain Asgar is GM/GVP – Pixie & Open Source – New Relic.Zain is also an Adjunct Professor of Computer Science at Stanford University and was an Entrepreneur in Residence at Benchmark before co-founding Pixie. He has a PhD from Stanford and has helped build at-scale data and AI/ML... Read More →

Michelle Nguyen

Principal Software Engineer - TLM, New Relic

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Palo Alto Networks - Reimagining the Cloud Native Threat Matrix

LINK TO VIDEO RECORDING

Speakers

Ashley Ward

Technical Director, Office of the CTO, Palo Alto Networks

Keith Mokris

Head of Product Marketing, Prisma Cloud, Palo Alto Networks

Keith Mokris leads product marketing for Prisma Cloud at Palo Alto Networks where he is focused on helping enterprises secure their cloud native applications. Previously, he led product marketing at Twistlock and NowSecure, a mobile application security testing startup. In his free... Read More →

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Rancher - Longhorn for Your Edge Deployments

Speakers

Joshua Moody

Staff Software Engineer, Rancher

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Red Hat - Mass Migrate VMs to Kubernetes and Move Containers across Clusters at Scale

Speakers

Miguel Pérez Colino

Senior Principal Product Manager, Red Hat

Miguel is an experienced IT enthusiast with a clear orientation towards open source software & open standards. He has an extensive background in IT, from operations to architecture of large deployments; from identifying and prototyping solutions to defining IT strategies. He has delivered... Read More →

John Matthews

Manager/Senior Principal Software Engineer, Red Hat

Fabien Dupont

Manager, Software Engineering & Senior Principal Engineer, Red Hat

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Red Hat - Use Kubernetes-native Integrated GitOps CI/CD Workflows

Speakers

Christian Hernandez

Head of Community, Akuity

Christian is a well rounded technologist with experience in infrastructure engineering, systems administration, enterprise architecture, tech support, advocacy, and product management. Passionate about OpenSource and containerizing the world one application at a time. He is currently... Read More →

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

10:00 CEST

Sponsored Session: Salesforce - Using Sloop for Monitoring Highly Available Services

Sharing of Personal Information with Sponsors In order to facilitate networking and business relationships at the event, you may choose to visit a third partyʼs virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third partyʼs logo in the Solutions Showcase or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

This is an on-demand session and will be available for the duration of the event.

Kubernetes cluster’s state is ephemeral in nature and the workloads can run on any nodes or pods. There is a set of great tools available for visualizing “current” state of the cluster. But often times, live site incidents are mitigated and root cause analysis is left for later. This becomes particularly challenging for incidents that happen due to various K8s events since these events are only available for one hour on the cluster. After this, the only way to debug what happened is by correlating various logs and timelines from control plane, hence making it harder to root cause (increases MTRR). Sloop provides a one stop shop solution with a single pane of glass by showing historic view of cluster. In this demo, we will be sharing the top real incidents for which we found the root cause in a matter of minutes using Sloop.

Speakers

Sana Jawad

Lead Software engineer, Salesforce

Hemanth Siddulugari

Principal software engineer, Salesforce

Using Sloop for monitoring highly available services pdf

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

10:00 CEST

Sponsored Session: VMware - Automatically Turn Your Source Code into Scalable Microservices on Kubernetes

Speakers

Boskey Savla

Product Line Marketing Manager, VMware

Tuesday May 4, 2021 10:00 - Friday May 7, 2021 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

13:00 CEST

Graduated Project Lightning Talk: Using Trace Data for Monitoring & Alerting of Application Health, not Just Debugging - Albert Teoh

LINK TO VIDEO RECORDING

Trace data is ideal for debugging slow or erroneous requests, but how can we find (and be alerted about) these problem “needles” in our “haystack” of requests within our constellation of services and endpoints? A proposal of aggregating trace data into metrics is presented; identifying statistically significant problems such as a consistently slow endpoint, then visualizing these results within Jaeger UI or Grafana.

Plain Text Transcript 212 PIAO 1198

Tuesday May 4, 2021 13:00 - 13:15 CEST
Maintainer Track Theater

Maintainer Track Sessions, Graduated Projects Lightning Talk

13:00 CEST

Sponsored Session: Mining Large Data Sets of Biomedical Omics Data Made Easy with Managed Kubernetes! Doug Davis, IBM & Theodore Alexandrov, EMBL

LINK TO VIDEO RECORDING

Speakers

Doug Davis

PM Microservices, Microsoft

Doug is currently focusing on improving the developer experience for cloud native computing in Azure Cloud. He’s been working on Cloud related technologies for many years and has worked on many of the most popular OSS projects, including OpenStack, CloudFoundry, Docker, Kubernetes... Read More →

Theodore Alexandrov

Team Leader, European Molecular Biology Laboratory (EMBL)

Theodore Alexandrov is a team leader at the European Molecular Biology Laboratory (EMBL), the Europe’s leading life science laboratory. He is also the head of the EMBL Metabolomics Core Facility and an Assistant Adjunct Professor at the Skaggs School of Pharmacy, University of California... Read More →

IBM SponsoredSession DougDavis TheodoreAlexandrov pdf

Tuesday May 4, 2021 13:00 - 13:30 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

13:00 CEST

First Principles of Cloud Native Technology - Ronald Petty, RX-M LLC

LINK TO VIDEO RECORDING

Have you ever inherited a system? If you ever feel unclear the system's purpose, it's time to break it down into first principles. With so many Cloud Native tools available it can be overwhelming to decide which tools are most directly solving the problem (or could solve it). We will take a systematic approach to enumerating and grouping core issues and how the related tools solve them. We start with a review of core operating concepts, basic data and network models. From there we contrast OS level solutions to these problems and their challenges. We next enter the Cloud Native layer and see how they leverage OS level concepts to solve these problems. Finally, we compare potential solutions to core issues at different levels (OS or Cloud Native). This talk is focused on how to break down tools into functional areas and contrast them to each other. Leaving this session you will have more techniques to reason about these tools and model solutions.

Speakers

Ronald Petty

Principal Consultant, RX-M LLC

Ronald Petty is a consultant at RX-M, a global cloud native advisory and training firm in the founding classes of Kubernetes Certified Service Providers (KCSP) and Kubernetes Training Providers (KTP). He has consulted, developed, and trained across many domains including academic... Read More →

FirstPrinciplesOfCloudNativeTechnologyKubeCon EU 2021 pdf

Tuesday May 4, 2021 13:00 - 13:35 CEST
101 Theater

101 Track

Content Experience Level Any (No experience required)
Student Track Yes
Presentation Slides Attached Yes

13:00 CEST

Project Office Hours: Flux

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Flux Project Office Hours here: https://community.cncf.io/e/m8rfv8/

>> Full list of Project Office Hours

Tuesday May 4, 2021 13:00 - 14:00 CEST
Project Office Hours

Project Office Hours

13:00 CEST

Project Office Hours: KEDA

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for KEDA Project Office Hours here: https://community.cncf.io/e/m6mz8a/

>> Full list of Project Office Hours

Tuesday May 4, 2021 13:00 - 14:00 CEST
Project Office Hours

Project Office Hours

13:25 CEST

Graduated Project Lightning Talk: Vitess, are we Fast Yet? - Akilan Selvacoumar, Florent Poinsard, Planetscale

LINK TO VIDEO RECORDING

Vitess is a database clustering system for horizontal scaling of MySQL. Nowadays, performance is a considerable market factor, and things have to go fast and right. With over 23 000 commits, Vitess has to ensure it’s delivering flawless performance to its users. In order to meet this need, we created AreWeFastYet, a benchmarking monitoring tool for Vitess. This talk covers how we track the performance of Vitess and a high-level overview of the benchmarking tools we created.

Speakers

Florent Poinsard

Software Engineer Intern, PlanetScale

Akilan Selvacoumar

Vitess

I am a CS student completing my 4th year at Heriot Watt University. I initially started working on integrating the Vitess benchmark Ansibles using python in August 2020 and started incrementally adding more features to the benchmark along with Florent. My major interest at the moment... Read More →

Arewefastyet Presentation PDF pdf

Plain Text Transcript 215 BPEZ 8331

Tuesday May 4, 2021 13:25 - 13:40 CEST
Maintainer Track Theater

Maintainer Track Sessions, Graduated Projects Lightning Talk

Student Track Yes

13:50 CEST

Graduated Project Lightning Talk: containerd Project Update - Derek McGowan

LINK TO VIDEO RECORDING

Come to this Lightning Talk to meet containerd's new sub projects.

Plain Text Transcript 209 UWYB 5262

Tuesday May 4, 2021 13:50 - 14:05 CEST
Maintainer Track Theater

Maintainer Track Sessions, Graduated Projects Lightning Talk

13:50 CEST

Sponsored Session: Securing S3 Backups Against Ransomware - Tom Manville & Michael Cade, Kasten by Veeam

LINK TO VIDEO RECORDING

Sharing of Personal Information with Sponsors In order to facilitate networking and business relationships at the event, you may choose to visit a third partyʼs virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third partyʼs logo in the Solutions Showcase or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

When backing up cloud-native data, there is no better place than object storage. From databases to data protection applications, the cloud-native landscape is littered with projects that backup data to object storage. With all this mission-critical data being stored in object storage it’s no wonder that it’s become a high-value target for cyber criminals. This, in combination with the rising popularity of cryptocurrency, means that ransomware protection is now a requirement for IT departments of any size.

The S3 protocol has become the de-facto standard API for interacting with Object Storage. It is implemented by nearly all object storage providers and consumed by modern cloud native applications. Thankfully it provides all the primitives needed to develop a robust strategy to protect against ransomware attacks.

In this session, we’ll walk through how backups saved in an S3-compatible can be made ransomware resistant. We’ll show which APIs are used and how to configure the buckets. If you’re considering backing up data in object storage and your data is too valuable to lose, then this talk is for you!

Speakers

Tom Manville

Director of Engineering, Kasten by Veeam

Tom graduated with an M.S.E from the University of Michigan in 2013. His first job was on the server team at Maginatics, cloud based file system company which was acquired by EMC late in 2014. After the acquisition, he joined Dropbox where he was focused on improving the efficiency... Read More →

Michael Cade

Senior Technologist, Kasten by Veeam

Sponsor Session Kasten SecuringS3BackupsAgainstRansomware pdf

Tuesday May 4, 2021 13:50 - 14:20 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

13:50 CEST

Open Standards: Anchoring Extensibility for Cloud-Native Tooling - Katie Gamanji, CNCF

LINK TO VIDEO RECORDING

Within its 7 years of existence, Kubernetes has been the centerpiece of the Cloud Native landscape, elevating a pluggable system that contributed to the diversification of the entire ecosystem. As a result, multiple areas have developed in the industry, galvanizing solutions for components such as runtime, tracing, metrics, service mesh, and many more. However, to accommodate the expanding space of cloud-native tooling, it was necessary to introduce standardization and guidelines to simplify the interoperability and consumption of these tools. This talk will focus on the evolution of open standards and manifestos within the cloud-native landscape, including OCI, OpenTelemetry, Open Service Mesh, Open Application Model, and many more. Attendees will acquire an understanding of why open standards are pivotal in the path towards the extensibility of cloud-native tooling.

Speakers

Katie Gamanji

Senior Field Engineer, Apple | CNCF TOC

Open Standards Anchoring Extensibility for Cloud Native Tooling pdf

Plain Text Transcript 205 EWAC 7676

Tuesday May 4, 2021 13:50 - 14:25 CEST
101 Theater

101 Track

Content Experience Level Intermediate (Mid-level experience)
Student Track Yes
Presentation Slides Attached Yes

14:00 CEST

Project Office Hours: Harbor

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Harbor Project Office Hours here: https://community.cncf.io/e/m9k69x/

>>Full list of Project Office Hours

Tuesday May 4, 2021 14:00 - 15:00 CEST
Project Office Hours

Project Office Hours

14:00 CEST

Project Office Hours: Open Service Mesh

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Open Service Mesh Project Office Hours here: https://community.cncf.io/e/m59b4k/

>>Full list of Project Office Hours

Tuesday May 4, 2021 14:00 - 15:00 CEST
Project Office Hours

Project Office Hours

14:00 CEST

Project Office Hours: Prometheus

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Prometheus Project Office Hours here: https://community.cncf.io/e/m5b3xe/

>> Full list of Project Office Hours

Tuesday May 4, 2021 14:00 - 15:00 CEST
Project Office Hours

Project Office Hours

14:15 CEST

Graduated Project Lightning Talk: Fluent Bit - Eduardo Silva, Calyptia

LINK TO VIDEO RECORDING

Learn about Fluent ecosystem and Fluent Bit best practices for cloud native environments

Speakers

Eduardo Silva

CEO & Founder, Calyptia

Eduardo is an entrepreneur and Software Engineer. He is one of Fluentd project maintainers and creator of Fluent Bit, a lightweight Logs, Metrics, and Traces processor. He also is the founder of Calyptia, the Fluent company.

Plain Text Transcript 199 ZAXZ 2610

Tuesday May 4, 2021 14:15 - 14:30 CEST
Maintainer Track Theater

Maintainer Track Sessions, Graduated Projects Lightning Talk

14:40 CEST

Sponsored Lightning Talk: How to Follow the 3-2-1 Backup Rule in Kubernetes - Michael Cade, Kasten by Veeam

LINK TO VIDEO RECORDING

Speakers

Michael Cade

Senior Technologist, Kasten by Veeam

Kasten 5 minute lightning talk Kasten HowtoFollowthe3 2 1BackupRuleinKubernetes (1) pdf

Tuesday May 4, 2021 14:40 - 14:45 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

14:40 CEST

Graduated Project Lightning Talk: Time to Live (TTL) Support for TiKV - Bokang Zhang

LINK TO VIDEO RECORDING

Time to live (TTL) is a beneficial feature for developers to invalidate keys automatically. RocksDB supports TTL natively but with a limitation that all keys should be of the same TTL. This may cause inconvenience for developers who may have the demand to set different TTL for each key. This issue happens to TiKV, a distributed key value database built on RocksDB with Raft. To solve it, TiKV team achieved more flexible TTL support in TiKV level instead of using RocksDB’s TTL. In this talk, Bokang Zhang will walk through the TiKV architecture and talk about how they supported TTL in TiKV by leveraging the hook of RocksDB’s compaction filter and user defined properties, and how they made the disk space of TTL key-values recycled in time.

Speakers

Bokang Zhang

Infrastructure Engineer, PingCAP

Bokang Zhang works at PingCAP as an infrastructure engineer. He is a core contributor of TiKV and the maintainer of Titan.

TTL in TiKV pdf

Plain Text Transcript 191 NIRP 1851

Tuesday May 4, 2021 14:40 - 14:55 CEST
Maintainer Track Theater

Maintainer Track Sessions, Graduated Projects Lightning Talk

Presentation Slides Attached Yes

14:40 CEST

Sponsored Session: Kubernetes Package Management Using Unix Philosophy with Carvel - Helen George & João Pereira, VMware

LINK TO VIDEO RECORDING

Sharing of Personal Information with Sponsors In order to facilitate networking and business relationships at the event, you may choose to visit a third partyʼs virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third partyʼs logo in the Solutions Showcase or exhibitor directory, and any actions within the booth thereafter including viewing resources), when accessing sponsored sessions in the Sponsor Theater, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Managing hundreds or thousands of workloads on a Kubernetes cluster is not an easy task. On top of that, dealing with various workflows to customize and deploy applications can pose even more of a challenge. No single Kubernetes tool is going to solve everyone’s problem, and as an operator you might be forced to use multiple kubernetes tools to manage a single Kubernetes cluster. But then there’s no guarantee that these tools are going to work well together seamlessly.

Carvel is a suite of open-source projects that aims to solve these problems. It provides a set of reliable, single-purpose, composable tools that aid in your application building, packaging, configuration, and deployment to Kubernetes. Carvel enables users to get software installed and keep it updated on a Kubernetes cluster in a secure, scalable, and automated way.

In this session, João Pereira and Helen George will explore how the whole suite of Carvel tools (ytt, kbld, kapp, imgpkg, kapp-controller) work and show how you can integrate them for managing packages on Kubernetes. We’ll look at a few concrete examples where Carvel can be used as a part of your toolchain together with Helm Charts, kustomize and http library.

Speakers

Helen George

Product Manager, VMware

Helen is a Product Manager at VMware where she is contributing to the open-source project called, Carvel. Prior to this she was part of Pivotal Labs and ThoughtWorks where she built products for a wide range of customers from healthcare, finance, travel and retail.

João Pereira

Software Engineer, VMware

João is a Software Engineer that is currently working on the Carvel Tool Suite. Prior to this he worked on projects like CNCF Buildpacks, https://buildpacks.io/, and Kpack, https://github.com/pivotal/kpack.... Read More →

Tuesday May 4, 2021 14:40 - 15:10 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

14:40 CEST

Inside Kubernetes Networking - Dominik Tornow, Cisco

LINK TO VIDEO RECORDING

Kubernetes Networking is a core abstraction of Kubernetes: At the core, the Kubernetes Networking Model guarantees that all Kubernetes Pods on a cluster can communicate. On top of the Kubernetes Network Model, Kubernetes provides additional core abstractions, most notably Kubernetes Services and Kubernetes Ingress. Although K8s Networking is an essential aspect of every K8s Cluster and by extension every K8s Application, even experienced K8s users struggle to reason about K8s Networking end-to-end. Using a systems modeling approach, this presentation will provide a holistic mental model of K8s Networking - integrating Pod-to-Pod communication, Pod-to-Service communication, and Ingress, applicable to all CNI implementations. Walk away with a dependable, holistic understanding of the entire network stack, fill in the blanks and connect the dots between Kubernetes Networking, Kubernetes Services, and Kubernetes Ingress.

Speakers

Dominik Tornow

Principal Engineer, Temporal

Dominik Tornow is a Principal Engineer at Temporal. He focuses on systems modeling, specifically conceptual and formal modeling, to support the design and documentation of complex software systems.

Inside Kubernetes Networking pdf

Plain Text Transcript 185 ZEPX 6658

Tuesday May 4, 2021 14:40 - 15:15 CEST
101 Theater

101 Track

Content Experience Level Intermediate (Mid-level experience)
Student Track Yes
Presentation Slides Attached Yes

14:50 CEST

Sponsored Lightning Talk: Security In Plain Sight: Hardening Systems Via Open Source - Phillip Gibson, Microsoft Azure

LINK TO VIDEO RECORDING

Speakers

Phill Gibson

Senior Program Manager at Microsoft, Microsoft Azure

Phillip Gibson is a Senior Program Manager at Microsoft focused on driving the security experience of open-source cloud native projects. A veteran of the technology industry, Phillip has held many positions focused on infrastructure automation and application development supporting... Read More →

Security In Plain Sight Hardening Systems via Open Source pdf

Tuesday May 4, 2021 14:50 - 14:55 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

15:00 CEST

Sponsored Lightning Talk: Securely Bridging Cloud-Native and Traditional Workloads with SPIRE - Daniel Feldman, HPE

Speakers

Daniel Feldman

Software Engineer, HPE

Daniel Feldman works on SPIRE and other open-source security at Hewlett Packard Enterprise.

Tuesday May 4, 2021 15:00 - 15:05 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

15:00 CEST

Project Office Hours: Contour

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Contour Project Office Hours here: https://community.cncf.io/e/m25j49/

>>Full list of Project Office Hours

Tuesday May 4, 2021 15:00 - 16:00 CEST
Project Office Hours

Project Office Hours

15:00 CEST

Project Office Hours: Longhorn

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Longhorn Project Office Hours here: https://community.cncf.io/e/mb55tw/

>> Full list of Project Office Hours

Tuesday May 4, 2021 15:00 - 16:00 CEST
Project Office Hours

Project Office Hours

15:00 CEST

Project Office Hours: Service Mesh Interface

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Service Mesh Interface Project Office Hours here: https://community.cncf.io/e/mvdbdt/

>> Full list of Project Office Hours

Tuesday May 4, 2021 15:00 - 16:00 CEST
Project Office Hours

Project Office Hours

15:00 CEST

GIFEE Day hosted by Equinix Metal (REGISTRATION NOW CLOSED)

In 2016, Alex Polvi at CoreOS coined the term “GIFEE” (Google’s Infrastructure for Everyone Else) to describe the benefits unlocked by containers at scale: agility, secure, efficiency, and reliability. Five years in, the cloud native vision has thrived beyond the wildest of imaginations.

So what’s next for GIFEE? In a word: hardware. While cloud native software and management practices have proliferated, “next level” innovation increasingly depends on having specialized hardware in the right place at the right time. At GIFEE Day, we’ll look at the future of cloud native from an infrastructure lens: from provisioning and securing to monitoring and optimizing.

GIFEE Day is complimentary for all KubeCon + CloudNativeCon Europe 2021 attendees. We’ll have 8 great livestream sessions from diverse community members hosted by Equinix Metal.

View the GIFEE Day schedule on the event website!

How to Register:
Registration for GIFEE Day is now closed!

For questions regarding this event, please reach out to tcrowe@equinix.com.

Tuesday May 4, 2021 15:00 - 20:30 CEST
Virtual

Co-Located Events

15:05 CEST

Graduated Project Lightning Talk: Rook: Enterprise Storage for Kubernetes - Travis Nielsen, Red Hat

LINK TO VIDEO RECORDING

All Kubernetes clusters require storage! But how do you configure and manage it? Come catch a glimpse of how Rook provides an enterprise storage platform to the community as an upstream and open-source project, available to any Kubernetes cluster, whether running on-prem or in the cloud. Rook was accepted as a graduated project by the Cloud Native Computing Foundation in October 2020.

Speakers

Travis Nielsen

Senior Technical Staff Member, IBM

Travis Nielsen is a Senior Technical Staff Member for IBM where he is a maintainer on Rook and member of the ODF and Ceph engineering team. Prior to IBM and Red Hat, Travis worked in storage at Quantum and Symform, a P2P storage startup, and was an engineering lead for the Windows... Read More →

Rook Lightning Talk pdf

Plain Text Transcript 184 SSVD 6561

Tuesday May 4, 2021 15:05 - 15:20 CEST
Maintainer Track Theater

Maintainer Track Sessions, Graduated Projects Lightning Talk

Presentation Slides Attached Yes

15:10 CEST

Sponsored Lightning Talk: Beyond Federation: Automating Multi-cloud Workloads with K8s Native APIs - Kevin (Zefeng) Wang, Huawei

LINK TO VIDEO RECORDING

Speakers

Kevin Wang

Lead of Cloud Native Open Source Team, Huawei Cloud

Kevin Wang is a contributor in the CNCF community since its beginning, leader of the cloud native open source team at Huawei, and co-founder of the CNCF KubeEdge, Volcano and Karmada projects.Kevin has contributed to Kubenretes upstream for years and now spends 100% of his work and... Read More →

Beyond Federation Automating Multi cloud Workloads with K8s Native APIs Kevin Wang pdf

Tuesday May 4, 2021 15:10 - 15:15 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

15:20 CEST

Sponsored Lightning Talk: Wielding the Power & Potential of Kubernetes for Mere Mortals (& Deities for Whom Time is Precious) - Rob Esker, NetApp

LINK TO VIDEO RECORDING

Speakers

Rob Esker

Product Manager Cloud PM, NetApp

Member, board of directors, OpenStack; product management and strategy, NetApp - Rob's been involved in the OpenStack community dating to its origin in 2010. He founded NetApp’s OpenStack effort and presently serves as a member of the foundation's Board of Directors. He's contributed... Read More →

Tuesday May 4, 2021 15:20 - 15:25 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)

15:30 CEST

Lightning Talk: Parsec - Marc Meunier, Arm

LINK TO VIDEO RECORDING

Parsec, a security project at the CNCF is maturing and expanding. In today’s talk, Marc will go over the Parsec project and discuss the latest updates and roadmap. In the presentation, there are references to a newly published tutorial as well as a demo that walks through a multi-tenancy implementation.

Speakers

Marc Meunier

Director of Ecosystem Development, Arm

As the Director of Ecosystem Development at Arm, Marc leads inter-company projects that focus on common architectures to accelerate high tech innovation in the field of security and networking. Marc also leads developments in cloud native security with Parsec, a maturing project that... Read More →

Tuesday May 4, 2021 15:30 - 15:45 CEST
Security Theater

Security + Identity + Policy

Content Experience Level Any (No experience required)

15:30 CEST

Sponsored Session: An Open-source HCI Platform Built on Kubernetes - Sheng Yang, Rancher

LINK TO VIDEO RECORDING

Speakers

Sheng Yang

Engineering Director, SUSE

Sheng Yang is an Engineering Director at SUSE. He is currently responsible for Harvester and Longhorn in the company. He joined SUSE through the Rancher Labs acquisition, where he worked on Longhorn, Harvester, local path provisioner, and other projects. Before Rancher Labs, he joined... Read More →

Rancher Harvester KubeConEU2021 pdf

Tuesday May 4, 2021 15:30 - 16:00 CEST
Sponsor Theater

Sponsor Theater

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

15:30 CEST

Automating Your Home with K3s and Home Assistant - Eddie Zaneski, Amazon Web Services & Jeff Billimek, The Home Depot

LINK TO VIDEO RECORDING

Hey Google, turn off all the lights. Hey Siri, set the thermostat to low. Alexa, restart the nginx deployment. You may have dreamt (or had nightmares) about automating your home and connecting all things smart together. You probably haven't longed for doing all of that on top of Kubernetes. In this session you'll learn why you should and the benefits of having a homelab running Kubernetes. With everyone spending more time at home there has never been a better time to grab an old PC or a few Raspberry Pi's and install K8s. Eddie and Jeff will share their journeys of deploying Home Assistant, open source home automation software, on top of K3s, a lightweight K8s distribution. They'll cover unique solutions like building Device Plugins and using Node Feature Discovery to use external USB antennas for wireless smart home protocols. Ending with tying all of it together with Helm and using Flux for CICD. If you're looking for a personal project to learn Kubernetes this session is for you.

Speakers

Jeff Billimek

Principal Software Engineer, The Home Depot

Jeff is an open source contributor with a focus on Helm charts and is a Principal Software Engineer at The Home Depot. He lives in Atlanta, GA with his wife, two kids, and dog. In addition to hiking and photography, Jeff has a passion for tinkering with home servers, home automation... Read More →

Eddie Zaneski

Staff OSS Engineer, Chainguard

Eddie lives in Denver, CO with his wife and dog. He loves open source and is a maintainer for the Kubernetes and Sigstore projects. When not hacking on random things you'll most likely find him climbing rocks somewhere.

Plain Text Transcript 173 XQOF 5206

Tuesday May 4, 2021 15:30 - 16:05 CEST
101 Theater

101 Track

Content Experience Level Any (No experience required)
Student Track Yes

16:00 CEST

CNCF End User Partner Summit (RSVP Required)

The CNCF End User Partner Summit, hosted by Cheryl Hung and Katie Gamanji, will bring together cloud native users to share best practices and lessons learned. Our 40 minutes together will include a panel discussion with General Manager of CNCF, Priyanka Sharma, Chris Aniszczyk (CTO, CNCF), Liz Rice (Chair, CNCF TOC), and Ricardo Rocha (Computing Engineer, CERN and CNCF TOC Member). Join us for an engaging conversation centering on strategy, vision, and how to best navigate and contribute to the cloud native community!

In order to participate, your organization must be a member of the CNCF End User Community.

How to Register: Please complete our RSVP form to register!

Contact chung@linuxfoundation.org with any questions.

This session is also being streamed live to YouTube. Please join us by clicking here.

Speakers

Liz Rice

Chief Open Source Officer, Isovalent

Liz Rice is Chief Open Source Officer with eBPF specialists Isovalent, creators of the Cilium project. She was chair of the CNCF's Technical Oversight Committee 2019-2022, and Co-Chair of KubeCon + CloudNativeCon in 2018. She is also the author of Container Security and Learning eBPF... Read More →

Ricardo Rocha

Computing Engineer, CERN

Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →

Chris Aniszczyk

CTO, Linux Foundation (CNCF)

Chris Aniszczyk is an open source executive and engineer with a passion for building a better world through open collaboration. He's currently a CTO at the Linux Foundation focused on developer relations and running the Open Container Initiative (OCI) / Cloud Native Computing Foundation... Read More →

Cheryl Hung

VP Ecosystem, Cloud Native Computing Foundation

Cheryl Hung is VP Ecosystem at the Cloud Native Computing Foundation, where she drives adoption of cloud native infrastructure. As a non-profit under the Linux Foundation, the CNCF hosts open source projects including Kubernetes, Prometheus and Envoy.She founded the 5000+ strong Cloud... Read More →

Katie Gamanji

Project Office Hours

09:00 CEST

Project Office Hours: Kuma

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Kuma Project Office Hours here: https://community.cncf.io/e/mz3b2c/

>> Full list of Project Office Hours

Wednesday May 5, 2021 09:00 - 10:00 CEST
Project Office Hours

Project Office Hours

09:00 CEST

Solutions Showcase

Wednesday May 5, 2021 09:00 - 16:10 CEST
Virtual

Solutions Showcase

10:00 CEST

Keynote: Cloud Native: The Building Blocks for the Human Experience - Priyanka Sharma, General Manager, Cloud Native Computing Foundation

Speakers

Priyanka Sharma

ED, CNCF

Wednesday May 5, 2021 10:00 - 10:15 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:00 CEST

Wednesday Keynote Sessions

Be sure to join us for Wednesday's keynotes which include:

Cloud Native: The Building Blocks for the Human Experience - Priyanka Sharma, General Manager, Cloud Native Computing Foundation (10:00 - 10:15) with special guest Zain Asgar, GVP & Product GM, Pixie @ New Relic & Adjunct Professor, Computer Science, Stanford University
6 End Users and What They Love about Cloud Native - Cheryl Hung, Vice President, Ecosystem, Cloud Native Computing Foundation (10:15-10:35)
How Cloud Native Tech Helped Peloton Ride to Exponential Growth - Jim Haughwout, Vice President of Platform, Peloton (10:35-10:50)
Sponsored Keynote: Kubernetes as the Control Plane for the Hybrid Cloud - Clayton Coleman, Architect for Kubernetes and OpenShift, Red Hat (10:50-10:55)
The CNCF Sandbox: An Exploration and Guided Tour - Justin Cormack, Chief Technology Officer, Docker (10:56-11:11)
Keynote: CNCF Project Update: Flux - Stefan Prodan, Developer Experience Engineer, Weaveworks (11:12-11:22)
Sponsored Keynote: Commit to the Cause. Push for Change. Take on the World’s Greatest Challenges with Kubernetes - Briana Frank, Director of Product Management, IBM Cloud (11:23-11:28)
Predictions from the Technical Oversight Committee (TOC) - Liz Rice, Chief Open Source Officer, Isovalent & Chair, Technical Oversight Committee & Lei Zhang, Staff Engineer, Alibaba Cloud & Member, Technical Oversight Committee (11:29-11:44)
Closing Remarks - KubeCon + CloudNativeCon Europe 2021 Co-Chairs: Constance Caramanolis, Principal Engineer, Splunk & Stephen Augustus, Head of Open Source, Emerging Technologies & Incubation Division, Cisco (11:45-11:50)

Speakers

Liz Rice

Chief Open Source Officer, Isovalent

Briana Frank

Director of Product Management, IBM Cloud

Briana Frank is the Director of Product Management at IBM Cloudfocusing on Developer Services. Briana lead the Offering Management and Design team that built the IBM Cloud Kubernetes service in 5 months and now manages 10's of thousands of clusters worldwide. Briana believes in creating... Read More →

Justin Cormack

CTO, Docker

Justin is the CTO at Docker, and a member of the CNCF TOC. He has spent a lot of time working on security in the container ecosystem. He is a maintainer on the Notary project for container security.

Lei Zhang

Staff Engineer, Alibaba

Lei is leading the engineering effort in Alibaba including its Kubernetes based large-scale cluster management system and unified application platform. Lei has been working as a maintainer on Kubernetes upstream since its beginning and a popular speaker in KubeCon.

Stefan Prodan

Principal Engineer, Weaveworks

Stefan is a Principal Engineer at Weaveworks and an open source contributor to cloud-native projects. He is the creator of Flagger the progressive delivery operator for Kubernetes, and a core maintainer of the CNCF's Flux project. He worked as a software architect and a DevOps consultant... Read More →

Cheryl Hung

VP Ecosystem, Cloud Native Computing Foundation

Constance Caramanolis

Principal Software Engineer, Splunk

Constance is a principal software engineer at Splunk, formerly Omnition, contributing to OpenTelemetry. Previous to Omnition, she worked at Lyft as part of the data platform and server networking teams. While at Lyft, Constance built, deployed, and configured Envoy internally, and... Read More →

Priyanka Sharma

ED, CNCF

Stephen Augustus

Head of Open Source, Cisco

Stephen is a Black engineering director and leader in open source communities.He is Cisco’s first Head of Open Source, within the Emerging Technologies & Incubation division.For Kubernetes, he has co-founded transformational elements of the project, including the KEP (Kubernetes Enhancements Proposal) process, the Release Engineering subproject, and Working Group Naming. Stephen has also previously served as a chair for both SIG PM and SIG Azure.He continues his work... Read More →

Clayton Coleman

Sr. Distinguished Engineer, Red Hat, Red Hat

Clayton is a senior distinguished engineer at Red Hat, responsible for consolidating, evolving, and influencing our product strategy and technical direction within Products and Technologies. He has been a key contributor and leader within the application platform area from the early... Read More →

Zain Asgar

GVP & Product GM - Pixie @ New Relic. Adjunct professor computer science @ Stanford University

Jim Haughwout

VP, Platform, Peloton

Jim Haughwout is the Vice President of Platform at Peloton Interactive. He was previously the Head of Infrastructure & Operations at Spotify. Over the past 25 years, he has held leadership roles at the world’s leading companies for defense, internet, media, biotech, streaming audio... Read More →

Wednesday May 5, 2021 10:00 - 11:50 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:15 CEST

Keynote: 6 End Users and What They Love about Cloud Native - Cheryl Hung, Vice President, Ecosystem, Cloud Native Computing Foundation

Speakers

Cheryl Hung

VP Ecosystem, Cloud Native Computing Foundation

Wednesday May 5, 2021 10:15 - 10:35 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:35 CEST

Keynote: How Cloud Native Tech Helped Peloton Ride to Exponential Growth - Jim Haughwout, Vice President of Platform, Peloton

LINK TO VIDEO RECORDING

During COVID, Peloton experienced exponential growth. Countless customers flocked to the company’s at-home fitness experience, and membership grew from 1 million to more than 4 million people. To continue delivering an experience that positively impacted the physical, mental and emotional wellbeing of these new and existing Members, the Peloton team tapped into the CNCF community and cloud native technologies, helping them accommodate this exponential growth. During this time, Peloton moved 100% of its traffic to the Kubernetes orchestration to make hypergrowth easier and more efficient. It leveraged other cloud native projects such as ArgoCD, Fluentd and the OpenTelemetry observability framework to innovate faster across a wide range of engineering disciplines.

In this keynote, Jim Haughwout, Peloton’s VP of Platform, will share how Peloton engineers leveraged cloud native technology to unlock transformational growth for the company, while growing the engineering team itself by 300% in the midst of the pandemic. Haughwout will also share how Peloton will harness cloud native technologies and the power of community to boost the experience of engineers across multiple domains, unlocking further growth with the rise of IoT, streaming, edge, mobile, cloud-native, AI, and ML.

Speakers

Jim Haughwout

VP, Platform, Peloton

Wednesday May 5, 2021 10:35 - 10:50 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:50 CEST

Sponsored Keynote: Kubernetes as the Control Plane for the Hybrid Cloud - Clayton Coleman, Architect for Kubernetes and OpenShift, Red Hat

LINK TO VIDEO RECORDING

The history of Kubernetes is one of continual evolution. Starting with a set of simple yet powerful, declarative primitives for automating the deployment and management of cloud native applications, Kubernetes rapidly evolved to support an expanding set of workloads and use cases. More recently Kubernetes has expanded beyond workloads to manage its own underlying infrastructure and Kubernetes native infrastructure services like compute, storage and more. In this session, we will discuss this evolution and look ahead and explore what it would take to make Kubernetes the control plane for the hybrid cloud.

Speakers

Clayton Coleman

Sr. Distinguished Engineer, Red Hat, Red Hat

Wednesday May 5, 2021 10:50 - 10:55 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:56 CEST

Keynote: The CNCF Sandbox: An Exploration and Guided Tour - Justin Cormack, Chief Technology Officer, Docker

LINK TO VIDEO RECORDING

The biggest change in CNCF in the last year is that there are currently 44 CNCF Sandbox projects, and will be more by the time that Kubecon EU rolls around. This is an enormous expansion, bringing so much value to our community and ecosystem. But who even knows what they all do? Well, the Technical Oversight Committee does! As a member, I have had to review these projects, and I am really excited that we are bringing new ideas and projects to a wider audience. In this talk, I will take you through a good chunk of them and for each explain why I think they are interesting and the kinds of directions, explorations and contributions you could make with them. I want to convey enough that you get a flavour of how you could contribute, or learn and explore further.

Speakers

Justin Cormack

CTO, Docker

Justin is the CTO at Docker, and a member of the CNCF TOC. He has spent a lot of time working on security in the container ecosystem. He is a maintainer on the Notary project for container security.

Wednesday May 5, 2021 10:56 - 11:11 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

11:12 CEST

Keynote: CNCF Project Update: Flux - Stefan Prodan, Developer Experience Engineer, Weaveworks

LINK TO VIDEO RECORDING

Speakers

Stefan Prodan

Principal Engineer, Weaveworks

Flux Project Update Stefan Prodan pdf

Wednesday May 5, 2021 11:12 - 11:22 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

11:23 CEST

Sponsored Keynote: Commit to the Cause. Push for Change. Take on the World’s Greatest Challenges with Kubernetes - Briana Frank, Director of Product Management, IBM Cloud

LINK TO VIDEO RECORDING

The power that developers wield today has never been greater. Containers, cloud, and data provide the tools to tackle the greatest business challenges. At the same time, the existential threat posed by climate change is larger than it’s ever been. Humanitarian issues like racial injustice have divided us like never before. Can open source technology make a difference? Call for Code®, an initiative created in 2018 by David Clark Cause, IBM, the United Nations, and the Linux Foundation thinks (and shows) that it can.

Over the past 3 years, we’ve seen powerful cloud native solutions built for Call for Code competitions to tackle the world’s greatest challenges, by building resilient emergency communications networks, protecting wildfire responders, and improving the yields of small farmers threatened by changing weather. Learn about the Kubernetes-based open source projects under the Call for Code with the Linux Foundation umbrella. Or, build your own cloud native solution for the 2021 Call for Code Global Challenge. Commit to the cause. Push for change. Answer the call.

Speakers

Briana Frank

Director of Product Management, IBM Cloud

Wednesday May 5, 2021 11:23 - 11:28 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

11:29 CEST

Keynote: Predictions from the Technical Oversight Committee (TOC) - Liz Rice, Chief Open Source Officer, Isovalent & Chair, Technical Oversight Committee & Lei Zhang, Staff Engineer, Alibaba Cloud & Member, Technical Oversight Committee

LINK TO VIDEO RECORDING

Speakers

Liz Rice

Chief Open Source Officer, Isovalent

Lei Zhang

Staff Engineer, Alibaba

Wednesday May 5, 2021 11:29 - 11:44 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

11:45 CEST

Keynote: Closing Remarks - KubeCon + CloudNativeCon Europe 2021 Co-Chairs: Constance Caramanolis, Principal Engineer, Splunk & Stephen Augustus, Head of Open Source, Emerging Technologies & Incubation Division, Cisco

LINK TO VIDEO RECORDING

Speakers

Constance Caramanolis

Principal Software Engineer, Splunk

Stephen Augustus

Head of Open Source, Cisco

Wednesday May 5, 2021 11:45 - 11:50 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

11:50 CEST

Break

Wednesday May 5, 2021 11:50 - 12:20 CEST
TBA

Breaks

12:00 CEST

Project Office Hours: Crossplane

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Crossplane Project Office Hours here: https://community.cncf.io/e/m4u2hj/

>>Full list of Project Office Hours

Wednesday May 5, 2021 12:00 - 13:00 CEST
Project Office Hours

Project Office Hours

12:00 CEST

Project Office Hours: Keptn

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Keptn Project Office Hours here: https://community.cncf.io/e/mpsa39/

>> Full list of Project Office Hours

Wednesday May 5, 2021 12:00 - 13:00 CEST
Project Office Hours

Project Office Hours

12:20 CEST

I Can RBAC, and So Can You! - Marc Boorshtein, Tremolo Security, Inc.

LINK TO VIDEO RECORDING

This session takes the sharp edges off of Role Based Access Controls in Kubernetes and demystifies how to design and debug policies in both single tenant and multi-tenant clusters. This session will start with a quick overview of how Kubernetes integrates identity, how that identity is applied to authorization, and finally different strategies for automating authorizations in a cluster. This session will cover policy creation, debugging, aggregate role design, and automation. We'll also touch on the impacts of external systems that control your clusters, such as GitOps controllers. After this session attendees will have a clearer direction on how to approach authorizations in their clusters,

Speakers

Marc Boorshtein

CTO, Tremolo Security, Inc.

Marc Boorshtein has been a software engineer and consultant for nearly twenty years and is currently the CTO of Tremolo Security, Inc. Marc has spent most of his career building identity management solutions for large enterprises, U.S. Government civilian agencies, and local government... Read More →

i can rbac and so can you pdf

Plain Text Transcript 105 QIGR 6565

Wednesday May 5, 2021 12:20 - 12:55 CEST
101 Theater

101 Track

Content Experience Level Any (No experience required)
Student Track Yes
Presentation Slides Attached Yes

12:20 CEST

TechDocs: Unlocking the Potential of Engineers' Collective Knowledge - Emma Indal, Spotify

LINK TO VIDEO RECORDING

Emma is an engineer with a big goal: her new service should provide the best developer experience, including well-maintained, discoverable and usable documentation. So she thinks, “Which tool should I use to write my docs?” followed by “How will other engineers find it?” What if she could instead, in one click, get docs generated together with her service when it's created? Documentation that lives in her repository, together with her code. Documentation that becomes discoverable automatically, to all engineers within the organization. Documentation in one single place: Backstage. This talk will guide you through how we fulfilled Emma’s big goal by adopting the “docs like code” approach and developing TechDocs, one of the core features of Backstage. It will also walk you through why we decided to open source this successful internal product to remove the friction of writing and discovering technical documentation for all engineers.

Speakers

Emma Indal

Web Engineer, Spotify

Emma Indal (she/her/hers) is a Software Engineer at Spotify, originally from Gothenburg, Sweden. She has been a core member of the technical documentation team, almost since its founding in 2019. Now, out in the open together with Spotify and the rest of the community, she is solving... Read More →

TechDocs Unlocking the Potential of Engineers’ Collective Knowledge pdf

Plain Text Transcript 109 CGVC 7263

Wednesday May 5, 2021 12:20 - 12:55 CEST
App & Dev Theater

Application + Development

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

12:20 CEST

Demystifying Cloud Native Concepts for the Business World - Catherine Paganini & Jason Morgan, CNCF Business Value Subcommittee

LINK TO VIDEO RECORDING

As co-chairs of the CNCF Business Value Subcommittee, Jason Morgan and Catherine Paganini seek to democratize cloud native concepts. Technologists have been talking about these topics for years, yet, for many, the cloud native space is still largely inaccessible. What is a service mesh? How do containers fit in? And how do any of these technologies help my organization achieve its strategic goals?
In this session, Jason and Catherine will talk about their first project: the CNCF Cloud Native Glossary. The glossary explains these concepts in simple terms that anyone can easily understand—no computer science degree required. They'll discuss what motivated them and why they believe that now is the time to spread the cloud native gospel to a broader audience.

Speakers

Jason Morgan

Technical Evangelist, Buoyant

Jason Morgan is Technical Evangelist for Linkerd at Buoyant, maintainer of the CNCF Cloud Native Glossary, and co-author of the CNCF Landscape guide. Passionate about helping others on their cloud native journey, Jason educates engineers on Linkerd, the original service mesh. You... Read More →

Catherine Paganini

Head of Marketing & Community, Buoyant

Catherine Paganini is co-chair of the TAG Contributor Strategy, founder of the Deaf and Hard of Hearing WG and Cloud Native Glossary, and Head of Marketing at Buoyant, the creator of Linkerd. A marketing leader passionate about open source, Catherine started her CNCF engagement by... Read More →

Plain Text Transcript 111 SZOE 4645

Wednesday May 5, 2021 12:20 - 12:55 CEST
Business Value Theater

Business Value

Content Experience Level Any (No experience required)

12:20 CEST

The Road to Interoperability in Cloud Native Continuous Delivery - Kara de la Marck, CloudBees & Fatih Degirmenci, Ericsson

LINK TO VIDEO RECORDING

The emergence of cloud native has resulted in tremendous advances in enabling organizations to develop new services and make them available to end users. In addition, new paradigms such as Continuous Delivery (CD) allow organisations to do this much faster than before, empowering them to go to market ahead of the competition. Despite its many advantages, the cloud native CD ecosystem has its challenges. This session will discuss issues arising from the lack of interoperability across proliferating cloud native CD technologies. We will look at end user case studies, including existing integration initiatives such as that between Tekton and Jenkins X. However, these initiatives are localised to the projects involved and do not address the challenges holistically. We will highlight the necessity, and greater sustainability, of a holistic approach to interoperability in the CD ecosystem and invite attendees to join community efforts.

Speakers

Fatih Degirmenci

Executive Director, Continuous Delivery Foundation

Fatih works at the Linux Foundation, leading the CD Foundation initiatives. He specialises in automation, infrastructure, CI/CD, and DevOps. Before the Linux Foundation, Fatih was involved in several CI/CD initiatives at Ericsson and open source. He served in the OPNFV TSC and in... Read More →

Kara de la Marck

Senior Ecosystem Advocate, CDF

Kara is a Senior Ecosystem Advocate at the Continuous Delivery Foundation (CDF) and co-chair of the CDF’s Interoperability SIG. Having worked as a developer, Kara enjoys helping developer teams and companies get better at delivering software. She is passionate about open source... Read More →

Road to Interoperability in Cloud Native Continuous Delivery pdf

Plain Text Transcript 99 PNTO 8423

Wednesday May 5, 2021 12:20 - 12:55 CEST
CI/CD Theater

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

12:20 CEST

Evaluating Business Risk for Open Source Cloud Native Projects - Dawn Foster, VMware

LINK TO VIDEO RECORDING

Most business decisions boil down to an assessment of risk and making tradeoffs. We should all be thinking about risks relative to how we’re using cloud native open source projects within our business. If we build our business on top of an open source technology, we want it to be as low of a risk as possible. This talk will: * Compare the risk between projects under neutral foundations vs. those owned by individual companies. * Provide details about how governance impacts risk relative to leadership selection, decision-making processes, and communication. * Evaluate business risk in terms of contributors and organizations to determine the level of risk associated with individuals or organizations leaving the project. * Look at how security and release processes can impact risk. The audience will walk away with practical advice about how to assess risk and evaluate projects for your organization while also learning about ways to decrease risk in your own projects.

Speakers

Dawn Foster

Director of Data Science, CHAOSS

Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Evaluating Risk OSS CNCF KubeConEU pdf

Plain Text Transcript 101 ENJN 0689

Wednesday May 5, 2021 12:20 - 12:55 CEST
Community Theater

Community

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

12:20 CEST

Harbor - Enterprise Cloud Native Artifact Registry - Daniel Jiang & Yan Wang, VMware

LINK TO VIDEO RECORDING

Harbor is a CNCF graduated project, which help enterprise distribute and manage cloud native artifacts. We’ll use this session to give audience an overview of this project and the community we built around it. We’ll talk about Harbor’s key features and use cases, the latest updates introduced in the most recent release. In addition to that, we’ll give a sneak peek about the development that is working in progress in this project. We’ll also use this session to discuss with the users regarding the challenges the project is facing and share our thoughts on how to tackle them.

Speakers

Daniel Jiang

Harbor Maintainer, VMware

I'm a software engineer from VMware, who joined the company around the end of 2015. Currently working on a open source registry project called Harbor. I'm one of the founding member of this project.I have been giving speech in different meet-ups talking about docker image management... Read More →

Yan Wang

Staff Engineer, VMWare

Yan Wang is a Staff engineer working on VMWare. As one of the core maintainer of CNCF project Harbor and the maintainer of CNCF project distribution, his main work focuses on technology research and innovation in the cloud native field.

KubeCon EU 2021 Harbor pdf

Plain Text Transcript 104 GKUU 5207

Wednesday May 5, 2021 12:20 - 12:55 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:20 CEST

Intro and Deep Dive: Kubernetes SIG Instrumentation - Frederic Branczyk, Polar Signals

LINK TO VIDEO RECORDING

Kubernetes SIG Instrumentation is responsible for ensuring high quality and consistent instrumentation across the Kubernetes project. We will begin with an introductory overview of the efforts the SIG Instrumentation has worked on in the past and is currently working on. This deep dive session will go in detail currently ongoing efforts happening within SIG Instrumentation to share with the audience concrete pieces of work to encourage future collaboration. Software engineering and operations are both disciplines practiced in SIG Instrumentation, and any experience will help the special interest group's mission. Join this session to learn how to get involved in SIG Instrumentation to make instrumentation even better!

Speakers

Frederic Branczyk

Founder, Polar Signals

Frederic is the founder of Polar Signals. Before, he was a senior principal engineer and the main architect for all things Observability at Red Hat, which he joined through the CoreOS acquisition. Frederic is a Prometheus and Thanos maintainer and tenured as the tech lead for for... Read More →

Intro and Deep Dive Kubernetes SIG Instrumentation Frederic Branczyk 20210505 v1 pptx

Plain Text Transcript 103 CSVT 9509

Wednesday May 5, 2021 12:20 - 12:55 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:20 CEST

Introduction and Deep Dive Into Containerd - Kohei Tokunaga & Akihiro Suda, NTT Corporation

LINK TO VIDEO RECORDING

Join containerd maintainers and reviewers in a combined introduction and deep dive session. They will discuss the overview and the recent updates of containerd as well as how it is being used by Kubernetes, Docker and other container-based systems. The brief introduction about its architecture and service design will be included. The talk will also deep dive into how to leverage contained by extending and customizing it for your use case with low-level plugins like remote snapshotters, as well as by implementing your own containerd client. Upcoming features and recent discussion in containerd community will also be covered.

Speakers

Akihiro Suda

Software Engineer, NTT Corporation

Akihiro Suda is a software engineer at NTT Corporation, a Japan-based telecommunication company. He has been a maintainer of several opensource container software such as Moby, BuildKit, containerd, runc, and Lima. He has previously talked at several FLOSS conferences such as KubeCon... Read More →

Kohei Tokunaga

Software Engineer, NTT

Kohei Tokunaga is a software engineer at NTT Corporation, a Japan-based telecommunication company. He is a reviewer of CNCF containerd and a maintainer of BuildKit. He has talked about topics around container runtimes and builders at KubeCon+CloudNativeCon, Open Source Summit and... Read More →

containerd KubeConEU2021 pdf

Plain Text Transcript 102 BRLM 4239

Wednesday May 5, 2021 12:20 - 12:55 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:20 CEST

Protecting Ourselves from CNCFgate. Software Supply Chain Security at CNCF - Practices, and Tools - Andres Vega & Emily Fox, CNCF SIG-Security & Jonathan Meadows, Cyber Security at Citi

LINK TO VIDEO RECORDING

As the complexity of our software systems grows – and they ingest more and more dependencies to deliver their functionality – the supply chain becomes more complex, and thus more difficult to secure. The industry is forming a consensus around a baseline set of properties for a secure software supply chain, yet these are not enough to protect against some of the high-profile attacks we have seen in recent years. In some cases they may not even have made detection easier. The industry needs to do better, we need to do better. An attacker who compromises a software supply chain can greatly increase the blast radius of their attack to all eventual users of the system. In some cases the exploits are overlooked or unintended bugs; some others have been known to be more deliberate and insidious (most recently, SunBurst/Solarigate).

This presentation shares the experience of the CNCF SIG-Security Supply Chain Working Group with particular attention to intricacies and sharp edges of the practice of creating and maintaining a tightly-secured software supply chain.

Speakers

Emily Fox

Security Lead for Emerging Technologies, Red Hat

Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She promotes the cross-pollination of development and security practices. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and... Read More →

Andres Vega

Founder, M42

Jonathan Meadows

MD - Cyber Security and Tech Fellow, CITI

Jonathan (Jon) Meadows is the Managing Director of Cyber Security at Citigroup, a role to which he was named in December 2019. He joined Citigroup from JPMorgan Chase, where he most recently served as Executive Director and Head of Security Engineering, Corporate and Investment Banking... Read More →

Protecting Ourselves from CNCF gate pdf

Plain Text Transcript 107 BEUQ 4159

Wednesday May 5, 2021 12:20 - 12:55 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:20 CEST

Thanos: Easier Than Ever to Scale Prometheus and Make It Highly Available - Giedrius Statkevičius, Vinted & Prem Saraswat; Red Hat

LINK TO VIDEO RECORDING

Prometheus is a leading CNCF Graduated project that provides a solution for all things metrics. However, it lacks scalability and high availability features. Thanos turbocharges Prometheus by adding those features while keeping storage and maintenance costs low. In the first part of the session, you will discover how to leverage Thanos in your organization just as many other companies have already done . You will learn enough to continue on your journey toward deploying Thanos in Kubernetes or any other cloud native environment. In the deep dive, you will find out what we have been working on recently to make everything even better - deleting series from blocks, caching queries with the query frontend, making the ruler scalable and stateless, optimizing the compaction of very large blocks, streamlining the receiver, and more!

Speakers

Giedrius Statkevičius

Site Reliability Engineer, Vinted

Giedrius Statkevičius is a Site Reliability Engineer at Vinted where he works on observability. In his free time, he maintains an unofficial Golang Grafana SDK at https://github.com/grafana-tools/sdk & dabbles with C/Rust by contributing to projects such as systemd.

Prem Saraswat

Timescale

Prem is currently working as a Software Engineer at Timescale in the Observability Team. He started as a GSoC mentee with the Thanos project in the summer of 2020 and became a maintainer a few months later. Prem is interested in Observability, Go, Web Development, and SRE stuff. Aside... Read More →

KubeCon 2021 Thanos pdf

Plain Text Transcript 108 YEQT 9246

Wednesday May 5, 2021 12:20 - 12:55 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:20 CEST

Building a Portable Kubernetes Deployment Pipeline with Argo Workflows and Events - Thomas Meadows, Jetstack & Ollie Young, Improbable

LINK TO VIDEO RECORDING

In this session, Jetstack and Improbable will uncover the key learnings from building a Kubernetes based platform, driven by Argo workflows and events. Featuring discussion on the platform's strong data aggregation and the ability to deploy on any estate (including air-gapped facilities), this session will investigate the problems and benefits of using Argo and Kubernetes as the key ingredients towards the goal of a holistic approach to portable platforms. The technical content of the presentation will cover: - A general overview of why Argo Workflows and Events were selected - Best practice when building a cloud native platform to work across multi-cloud environments - Rationale for rejecting the typical CI/CD model in favour of a custom solution - Techniques for isolating workflows in multi-tenanted environments - Running Terraform in Argo - Ephemeral environments and managing highly scalable cluster configurations - Platform portability and being infrastructure agnostic

Speakers

Thomas Meadows

Solutions Engineer, Jetstack

Tom is an engineer who works for Jetstack as a Kubernetes and Cloud Native consultant. After becoming intrigued by the space, he decided to dive into the world of supply-chain security (mostly software, but also some strange food analogies). By being enabled by initiatives like the... Read More →

Ollie Young

Senior Software Engineer, Improbable

Ollie is an experienced engineer working for improbable as part of the Engineering Velocity team. Ollie brings knowledge as a DevOps engineer / SRE from various industriesto his role as a software engineer at improbable, to improve developer velocity and dev experience in Improbable's... Read More →

Kubecon Slides Final pdf

Plain Text Transcript 106 OMEO 1227

Wednesday May 5, 2021 12:20 - 12:55 CEST
Operations Theater

Operations

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

12:20 CEST

Dedicated Infrastructure in a Multitenant World - Carlos Sanchez, Adobe

LINK TO VIDEO RECORDING

Running multitenant Kubernetes clusters is challenging, particularly when different tenants require their own dedicated infrastructure. At Adobe Experience Manager Cloud Service we built solutions to provide customers with their own dedicated infrastructure, such as ips, DNS, VPN connectivity,... while running most services in multitenant Kubernetes clusters. We will share how we built our solution making extensive use of Envoy to run networking tunnels between Kubernetes pods and customer dedicated infrastructure, enforcing encryption and mutual authentication using certificates. This allows, for example, different pods to have their own dedicated egress ip instead of the cluster's, or connections from pods to multiple customer on-premise services using VPN. The solution is provisioned automatically using Terraform, Terragrunt and other services.

Speakers

Carlos Sanchez

Principal Scientist, Adobe

Carlos Sanchez is a Principal Scientist at Adobe Experience Manager, specializing in software automation, from build tools to Continuous Delivery and Progressive Delivery. Involved in Open Source for over 15 years, he is the author of the Jenkins Kubernetes plugin and a member of... Read More →

Dedicated Infrastructure in a Multitenant World pdf

Plain Text Transcript 100 ESFT 4240

Wednesday May 5, 2021 12:20 - 12:55 CEST
Service Mesh Theater

Service Mesh

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

12:20 CEST

Cloud Native Distributed Event Streaming from TiKV - Zixiong Liu, PingCAP

LINK TO VIDEO RECORDING

Data processing is evolving to be stream-oriented to enable interconnection between subsystems or microservices, but it could be challenging for distributed data stores, such as TiKV, to stream data effectively. Zixiong Liu and his team have successfully achieved distributed event streaming from TiKV with low computational cost, low latency, and elimination of single points of failure. Now it is possible to produce a stream of updates from TiKV, which, with suitable deduplication, are ordered by their commit timestamps. In his talk, Zixiong Liu will talk about the techniques used in the design of TiKV that facilitate data streaming, and the implementation of the distributed computation performed on the exported TiKV data so that the data can be converted into formats suitable for consumption by third party data solutions.

Speakers

Zixiong Liu

Software Engineer, PingCAP

Zixiong Liu is a Software Engineer at PingCAP, working on data streaming solutions. He is one of the main contributors to TiCDC, the change data capture tool of TiDB. His interests include distributed systems, database systems, formal verification and operating systems.

KubeCon Talk Cloud Native Distributed Event Streaming from TiKV pdf

Plain Text Transcript 110 BYRE 1353

Wednesday May 5, 2021 12:20 - 12:55 CEST
Storage Theater

Storage

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

13:00 CEST

Project Office Hours: Longhorn

RSVP for Longhorn Project Office Hours here: https://community.cncf.io/e/mcqevb/

>> Full list of Project Office Hours

Wednesday May 5, 2021 13:00 - 14:00 CEST
Project Office Hours

Project Office Hours

13:00 CEST

Project Office Hours: OpenEBS

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for OpenEBS Project Office Hours here: https://community.cncf.io/e/mj2ege/

>> Full list of Project Office Hours

Wednesday May 5, 2021 13:00 - 14:00 CEST
Project Office Hours

Project Office Hours

13:00 CEST

Project Office Hours: Tremor

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Tremor Project Office Hours here: https://community.cncf.io/e/m43bxc/

>> Full list of Project Office Hours

Wednesday May 5, 2021 13:00 - 14:00 CEST
Project Office Hours

Project Office Hours

13:10 CEST

The Long, Winding and Bumpy Road to CronJob’s GA - Maciej Szulik, Red Hat & Alay Patel, Red Hat

LINK TO VIDEO RECORDING

The CronJob API just reached GA, and the new controller is solving all the performance and reliability problems of the past. Come join us to learn about the 6 year journey that got us here! We will talk about the people who sparked the discussions and delivered the initial implementation. We will cover all the major problems that users were faced to handle over the years. Finally, we will discuss the solutions and our gratitude to the users and developers standing behind this part of Kubernetes. Maciej (one of the co-authors of CronJob) and Alay (developer of the new controller) will try to squeeze as much as possible in 30 minutes: - From scheduled jobs, through jobs, to cron jobs - Evolution of the API - Known issues with the old controller implementation - Performance boost and improvements in the new controller - Possible future improvements

Speakers

Maciej Szulik

Senior Principal Software Engineer, Red Hat

Maciej is a passionate developer with almost 2 decades of experience in many languages. Currently he's working on OpenShift and Kubernetes for Red Hat. Whereas at night he is hacking on side projects with python. In his spare time he enjoys reading a good book or taking photos.

Alay Patel

Senior Software Engineer, Red Hat

Alay is a Senior Software Engineer at Red Hat where he works on application migrations. He is passionate about open source with a focus on Kubernetes and OpenShift.

KubeCon EU 2021 The Long, Winding and Bumpy Road to CronJob’s GA pdf

Plain Text Transcript 89 VZII 8503

Wednesday May 5, 2021 13:10 - 13:45 CEST
App & Dev Theater

Application + Development

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

13:10 CEST

Helm Users! What Flux 2 Can Do For You - Scott Rigby & Kingdon Barrett, Weaveworks

LINK TO VIDEO RECORDING

Helm, the Package manager for Kubernetes. Flux, the GitOps continuous delivery solution for Kubernetes. Both can be used independently, but are more powerful together. Scott Rigby, Helm and Flux maintainer — and Kingdon Barrett, OSS engineer — will share the benefits of Helm and GitOps for developers, with live demos showcasing the extra awesomeness of Flux v2 and Helm together. This talk is for Helm users who have either never used Flux, or Flux v1 users looking forward to new features in Flux v2.

Speakers

Scott Rigby

Developer Advocate, Independent

Scott is a Brooklyn-based interdisciplinary artist and Developer Advocate. He co-founded the Basekamp art and research group in 1998 and the massively collaborative Plausible Artworlds international network. In technology, he enjoys helping develop open source software that anyone... Read More →

Kingdon Barrett

Open Source Support Engineer, Weaveworks

Kingdon Barrett is a Flux maintainer and an Open Source Support Engineer on the Developer Experience team at Weaveworks. He is a long-time Helm enthusiast and Ruby/Go developer who also works on the legendary cloud-native PaaS for Kubernetes, Hephy Workflow, in his fun time.

kccnceu2021 helm users flux guide pdf

Plain Text Transcript 87 FQDQ 9663

Wednesday May 5, 2021 13:10 - 13:45 CEST
CI/CD Theater

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

13:10 CEST

We Didn’t Start the Fire: Communication Breakdowns and How to Prevent Them - Ian Coldwater, Twilio & Kat Cosgrove, JFrog

LINK TO VIDEO RECORDING

When the Kubernetes project was smaller and fewer people used it, core maintainers could assume shared context, and we didn't have to think about communication as much. We've grown a lot since, but we haven't always adjusted these assumptions. We don't all know each other anymore, and can no longer rely on everyone sharing the same context or concerns. With more growth, communication becomes more critical.

Design decisions and the way we communicate about them are affected by the assumptions we make about each other. If we aren't careful, problems can arise for everyone. The Dockershim deprecation conflagration is one example of how this can go wrong, but it wasn't the first or the last communication breakdown of its kind. Let's look at this history together, learn from it, and figure out how we can prevent such breakdowns in the future.

It's on all of us to work together to address this. We can do better when we come together, communicate more, and check our assumptions. We've got this.

Speakers

Ian Coldwater

Security Researcher, Independent

Ian Coldwater is a security researcher specializing in hacking and hardening Kubernetes, containers, and cloud native infrastructure. When they're not busy being co-chair of Kubernetes SIG Security, they like to read all the docs, participate in Capture the Flag competitions, and... Read More →

Kat Cosgrove

Lead Developer Advocate, Dell

Kat Cosgrove is a Developer Advocate, a CNCF Ambassador, and an actual cyborg. Her professional background has run the gamut from bartender, to video store clerk, to teacher, to software developer. Her specialty is approachable 101-level content for junior developers or anyone else... Read More →

We Didnt Start the Fire pdf

Plain Text Transcript 88 KQFM 0666

Wednesday May 5, 2021 13:10 - 13:45 CEST
Community Theater

Community

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

13:10 CEST

Build your Contributor Pipeline - Carolyn Van Slyck, Microsoft & Josh Berkus, Red Hat

LINK TO VIDEO RECORDING

Would you like to attract new contributors to your project and grow your contributor base? CNCF SIG Contributor Strategy has developed best practices to improve your contributor pipeline and can help you adapt them to your project's needs

Attract new contributors to your project with good first issues.
Create onboarding materials, such as a contributing guide and onboarding tutorial, to guide their first contribution towards success.
Improve the contributor experience, encouraging people to join your community and stick around after their first pull request.
Publish a contribution ladder so they see a path from new contributor to maintainer and other project roles.
Find a balance between your time commitments as a maintainer and helping new contributors.

Whether you are a new sandbox project or an established graduated projects like Kubernetes, you will come away with a realistic actionable way to sustainably grow your community.

Speakers

Carolyn Van Slyck

Principal Software Engineer, Microsoft

Carolyn is a software developer based in the wilds of suburban Chicago, working remote on the Microsoft Azure team. Her passion is developer tools, and building vibrant inclusive open-source communities around them.Carolyn is a maintainer for Porter and the Cloud Native Application... Read More →

Josh Berkus

Kubenetes Community Manager, Red Hat Inc.

Josh Berkus is the Kubernetes Community Manager for Red Hat. In a previous life, he was a database geek who did benchmarks for the TPC and Spec. He lives in Portland with a librarian, a pottery studio, and an absurdly large cat.

slides pdf

Plain Text Transcript 91 KNAI 5483

Wednesday May 5, 2021 13:10 - 13:45 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:10 CEST

CloudEvents - Looking Beyond Event Delivery - Remi Cattiau, Nuxeo

LINK TO VIDEO RECORDING

While CloudEvents helps in the delivery of events from a producer to a destination, when considering the entire lifecycle of an event there's a lot more to consider. For example, how does someone discover which events can be generated and by which producer? What transport mechanisms for event delivery are available? How does someone subscribe to receive events? Today there's no consistent mechanism to answer these questions. This session will explore how the CloudEvents project is working to solve these issues by providing a quick overview of the new specifications being developed - and, of course, give an update on the CloudEvents specification itself.

Speakers

Rémi Cattiau

CISO, Nuxeo

I am in charge of Nuxeo security as CISO — Always curious and interested in the latest cutting-edge technologies. I like to bring my expertise wherever it is useful for my company—helping customers define their architecture or product using the newest framework and technologies... Read More →

KubeCon CloudEvents 2021 pdf

Plain Text Transcript 82 HQBE 4858

Wednesday May 5, 2021 13:10 - 13:45 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:10 CEST

CoreDNS Deep Dive: Building Custom Plugins - Yong Tang, Ivanti

LINK TO VIDEO RECORDING

CoreDNS is a cloud-native DNS server with a focus on service discovery. While best known as the default cluster DNS for Kubernetes, CoreDNS is very flexible and extensible for any new features thanks to its plugin-based architecture: new functionalities can be easily added as plugins with Golang. In this session, we will take a detailed look at the plugin system of CoreDNS. We will walk through the complete code of a demo plugin from the scratch to showcase the simplicity and ease of convenience of CoreDNS plugins. We also provide updates and future roadmap of CoreDNS and the community event in this session.

Speakers

Yong Tang

Senior Director, Engineering, Ivanti

Yong Tang is Senior Director of Engineering at Ivanti. He is a core maintainer of CoreDNS and contributes to many container, cloud-native, and machine learning projects for the open source community. In addition to CoreDNS, he is a maintainer of Docker/Moby. He is also a maintainer... Read More →

KubeCon EU Virtual CoreDNS pdf

Plain Text Transcript 92 SSJF 1222

Wednesday May 5, 2021 13:10 - 13:45 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:10 CEST

Using a Distributed Key-Value Store - Nick Cameron & Andy Lok, PingCAP

LINK TO VIDEO RECORDING

Key-value stores are well-known and the concept is simple, but there are myriad differences in the details of different stores. How you choose and use a key-value store in your projects is dictated by these details. TiKV is a distributed and transactional key-value store, which makes it massively scalable and a great choice if you have huge volumes of data and need low-latency access with low tolerance for inconsistency. In this talk, Nick Cameron and Di’an Luo will walk through building an application around TiKV using a language-native client. They will delve into the features, architecture, and limitations of TiKV, and the design principles and APIs of the clients. The talk focuses on the practical aspects of building an application using TiKV, so that you can easily leverage this technology in your own projects. TiKV and its clients are open source and have an open and active community; TiKV is a graduated CNCF project.

Speakers

Nick Cameron

Senior Engineer, PingCAP

Senior engineer at PingCAP, Rust core team alumnus.Talk to me about TiKV, TiDB, or Rust.

Andy Lok

Distributed Storage Engineer, PingCAP

using a kv store pdf

Plain Text Transcript 94 XMDT 9091

Wednesday May 5, 2021 13:10 - 13:45 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:10 CEST

Windows Containers in Kubernetes and a Deep Dive into Windows Networking - Mark Rossetti, Kalya Subramanian & David Schott, Microsoft; Jay Vyas, VMware

LINK TO VIDEO RECORDING

Members of the SIG-Windows community will provide an update on the efforts to brining Windows workloads to Kubernetes. We'll start off by going over recent improvements. Next we'll talk about planned future improvements and demo privileged contianers for Windows. We'll then start deep diving into some networking topics like network load balancing with DSR, discussing network policy, and providing updates on the states of various CNI solutions for Windows. Lastly we'll finish up with some Questions and Answers with the speakers.

Speakers

Jay Vyas

Staff Engineer, VMWare

Jay Vyas is a Kubernetes engineer at VMWare (ex-RedHat, Blackduck), and has worked on K8s at its inception in 2015 as an open source project. He likes to hang out w/ the sig-network and sig-windows crews and hack on K8s stuff. On the business side ~ he's moved large on premise applications... Read More →

Mark Rossetti

Principal Software Engineer, Microsoft

Mark Rossetti is a software engineering focusing on open-source projects at Microsoft and is also the co-chair of Kubernetes' SIG-Windows. Mark focuses on improving the experience of using Windows containers in Kubernetes. Mark has also served on the Kubernetes release team since... Read More →

Kalya Subramanian

Software Engineer, Microsoft

Kalya has been a software engineer at Microsoft since graduating from Georgia Tech in 2018. While on the Windows Container Networking team, she worked on features such as Windows Overlay/VXLAN, Windows kubeadm, and Kube-Proxy/Loadbalancing. On the Azure Container Upstream team, she... Read More →

David Schott

Lutz Behnke

Senior Cloud Engineer, finleap connect GmbH

Lutz Behnke is a Senior Cloud Engineer at finleap connect, where he covers a wide range of topics in architecting and operating the finleap cloud platform. His focus is on security and he is the local go-to person for all things regarding cryptography and certificates. He has been... Read More →

Compliance the Easy Way pdf

Plain Text Transcript 96 NTNF 6980

Wednesday May 5, 2021 13:10 - 13:45 CEST
Service Mesh Theater

Service Mesh

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

13:10 CEST

Secrets Store CSI Driver: Keeping Secrets Secret - Anish Ramasekar, Microsoft & Tommy Murphy, Google

LINK TO VIDEO RECORDING

Applications running on Kubernetes require access to sensitive information (passwords, SSH keys and authentication tokens). But how do you configure your applications when the source of truth for these secrets is an external secret store? What if you need to store, retrieve and perform zero touch rotation of these secrets securely? Meet the Secrets Store CSI Driver, a sig-auth subproject providing a simple way to retrieve secrets from enterprise-grade external stores such as Azure Key Vault, Google Secret Manager and HashiCorp Vault. In this session, Anish and Tommy will demonstrate how to use the Secrets Store CSI Driver to mount and rotate sensitive information from external secrets stores in the Kubernetes application. They will also discuss trade-offs of the CSI driver versus other solutions to accessing external secret stores and how CRDs are used to make pod portability across Kubernetes environments possible.

Speakers

Anish Ramasekar

Senior Software Engineer, Microsoft

Anish Ramasekar is a software engineer at Microsoft. He is on the Azure Container Upstream team building features for Kubernetes upstream and various CNCF projects that are part of the Azure Kubernetes Service. Anish is a maintainer of the Secrets Store CSI Driver project.

Tommy Murphy

Software Engineer, Google

Tommy Murphy is an engineer at Google Cloud working on Key and Secret management. Previously he worked at DigitalOcean, ShopKeep, and the US Air Force. Tommy is passionate about providing developers with the tools to make the secure option the easiest option.

SecretsStoreCSIDriverKeepingSecretsSecret AnishRamasekar TommyMurphy 050521 pdf

Plain Text Transcript 93 MRVK 3185

Wednesday May 5, 2021 13:10 - 13:45 CEST
Storage Theater

Storage

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

13:45 CEST

Break

Wednesday May 5, 2021 13:45 - 14:15 CEST
TBA

Breaks

14:00 CEST

Project Office Hours: Harbor

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Harbor Project Office Hours here: https://community.cncf.io/e/m8j5kc/

>>Full list of Project Office Hours

Wednesday May 5, 2021 14:00 - 15:00 CEST
Project Office Hours

Project Office Hours

14:00 CEST

Project Office Hours: Thanos

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Thanos Project Office Hours here: https://community.cncf.io/e/mypak2/

>> Full list of Project Office Hours

Wednesday May 5, 2021 14:00 - 15:00 CEST
Project Office Hours

Project Office Hours

14:15 CEST

CERN's 1500 Drupal Websites on Kubernetes: Sailing With Operators - Konstantinos Samaras-Tsakiris & Rajula Vineet Reddy, CERN

LINK TO VIDEO RECORDING

Follow the learning journey of junior developers towards a Kubernetes-native SaaS and hopefully get some ideas for your next (or first!) design. This talk is the development chronicle of a service provisioning Drupal websites that are CERN's public face, to replace the ageing physical infrastructure and reduce dependency on homebrew components. The presenters give their junior engineer's perspective, thrust into a world of Microservices, Observability and Operators. They will walk you through the design implementing the specific requirements of a service that targets varied user groups and is supported by a small team of engineers. Contrary to the old website management system that was a standalone application, now Operators play this role, leveraging Kubernetes as a common API to control different kinds of resources.

Speakers

Konstantinos Samaras-Tsakiris

Junior Cloud Architect, CERN

Konstantinos is a CERN fellow working as a cloud architect, participating in the redesign of Web Frameworks on Kubernetes. His side quest is to model the brain in the Julia language. He previously presented a synthetic biology project at the iGEM competition.

Rajula Vineet Reddy

Site Reliability Engineer, CERN

Rajula is a SRE at CERN working with web services. He is also a member of Kubernetes SIG-Contribex and contributes to the Upstream Marketing Team. In his free time, he enjoys traveling, hiking & skiing.

CERN's 1500 Drupal websites on k8s Sailing with Operators pdf

Plain Text Transcript 83 CCPY 0046

Wednesday May 5, 2021 14:15 - 14:50 CEST
101 Theater

101 Track

Content Experience Level Beginner (Very basic information)
Student Track Yes
Presentation Slides Attached Yes

14:15 CEST

Multi-Cluster Service Deployments with Operators and KubeCarrier - Rastislav Szabó, Kubermatic

LINK TO VIDEO RECORDING

Complex application services consisting of multiple interconnected components can benefit from deployment in multiple Kubernetes clusters: Examples include for instance running the application core at a cloud provider and the database with sensitive data in a on-premises cluster or running computational-intensive tasks in a cluster with specialized hardware resources (e.g. GPUs) at the same time. This approach however brings several challenges. How can we interconnect the clusters so that the applications in different clusters can communicate with each other easily? How to allow for multi-tenancy and easily spin up multiple instances of such services in the same clusters? In this talk, you will learn how such a deployment may look like with the help of Kubernetes operators, the KubeCarrier service hub and the Submariner cross-cluster connectivity provider.

Speakers

Rastislav Szabo

Senior Software Engineer, Kubermatic

Rastislav is an enthusiastic and motivated infrastructure software engineer with more than 15 years of software development and 5 years of cloud-native experience. He is working as a software engineer at Kubermatic focusing mainly on the networking part of the Kubermatic Kubernetes... Read More →

Multi Cluster Service Deployments With Operators KubeCarrier Rastislav Szabo 050521 v1 pdf

Plain Text Transcript 85 FTGR 1056

Wednesday May 5, 2021 14:15 - 14:50 CEST
App & Dev Theater

Application + Development

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

14:15 CEST

How DoD Uses K8s and Flux to Achieve Compliance and Deployment Consistency - Michael Medellin & Gordon Tillman, Department of Defense

LINK TO VIDEO RECORDING

Like many other organizations, the DoD also started the journey to K8s and had its own challenges. Due to the nature of DoD systems, there are applications that are deployed in a more relaxed environment such as AWS GovCloud and also in a more restricted air-gapped environments with no internet or external connectivity. In the beginning, it was all about manual deployment and operations. By introducing Helm and Flux, DoD moved to a more declarative model where everything is version controlled and deployed by Flux thereby reducing manual operations, improving deployment consistency and also bringing more compliance with regard to change management and application life cycle. This session will walk through the migration steps, what it takes to operate Flux in an air-gapped environment and how we achieved parity when applications are deployed to environments with different constraints.

Speakers

Michael Medellin

Director of Engineering, Department of Defense

Michael leads the engineering organization for the United States Air Force that delivers a global application platform for developers to ship secure software faster. Michael is at the forefront of DevSecOps initiatives for the U.S. Department of Defense and DevSecOps practices at... Read More →

Gordon Tillman

Principal Software Engineer, Department of Defense F9 Team

Gordon is the Principal Software Engineer for F9 Teams working on projects for the Department for Defense. A veteran of the US Navy, Gordon has established himself a leader in cloud native infrastructure and software with a 20+ year career spanning firms like Shell, Kindle Publishing... Read More →

How DoD Uses K8s and Flux to Achieve Compliance and Deployment Consistency MichaelMedellin GordonTillman 050521 v1 pdf

Plain Text Transcript 80 IHAH 4450

Wednesday May 5, 2021 14:15 - 14:50 CEST
CI/CD Theater

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

14:15 CEST

Panel: Your Path To Non-code Contribution In The Kubernetes Community - Kaslin Fields, Google; Kat Cosgrove, JFrog; Matt Broberg, Red Hat; Kohei Ota, HPE

LINK TO VIDEO RECORDING

Your first look at the Kubernetes community can be intimidating. This talk is here to reassure you: whatever skills you have, Kubernetes needs them. Our panel of contributors, new and old, will talk through their unique experiences and how you can get involved. We will talk through the specific ways non-code contribution helps Kubernetes be a fun, inclusive, and expanding community and how you can be part of it. We will highlight how SIG Contribution Experience is the "front door" to your experience and provide examples of the remarkable ways people show up for others in our community. Examples include spinning up a baking show, administrating communication tools, writing blog posts, and much more. If you have an hour a week or 8 hours a day, we'll help you spend your time wisely and see how valuable you are as a contributor.

Speakers

Matt Broberg

Managing Editor, Enable Architect, Red Hat

Matt is an advocate for open source software and currently the Managing Editor of Enable Architect for Red Hat. He specializes in designing technology communities that develop products and content in a way that tells a powerful story. Matt is a maintainer and contributor in the Kubernetes... Read More →

Kohei Ota

Senior Field Engineer, Apple

Kohei Ota is a Senior Field Engineer at Apple. He is a CNCF Ambassador and contributes to Kubernetes SIG Docs as the Japanese localization owner in the CNCF communities. He also organizes Docker Meetup Tokyo and CloudNative Days Tokyo; some of the biggest "container/cloud native... Read More →

Kaslin Fields

Developer Advocate, Google

Kaslin Fields is a Developer Advocate at Google Cloud & contributor to Open Source Kubernetes. She is passionate about making technology accessible to a broad audience through creating content in many forms, such as videos, blogs, documentation, and even comics which she illustrates... Read More →

Kat Cosgrove

Lead Developer Advocate, Dell

Plain Text Transcript 75 OPKH 0586

Wednesday May 5, 2021 14:15 - 14:50 CEST
Community Theater

Community

Content Experience Level Beginner (Very basic information)
Student Track Yes

14:15 CEST

Scaling Apache Spark on Kube to Apple Scale - Amanda Moran & Holden Karau, Apple

LINK TO VIDEO RECORDING

Amanda and Holden will explore the customer workloads that easily ported to Apache Spark on Kubernetes, and which ones had more difficulty. The goal of this talk is to help the audience in their journey as either the operators of an Apache Spark-Kubernetes platform or as an end user. Considerations and best practices for end users of an Apache Spark on Kubernetes platform will be discussed. Additional advice for folks migrating from YARN with HDFS to Kubernetes will be included. This talk will include how to effectively deploy the new enhancements of Spark on Kube, like shuffle tracking and graceful decommissioning, as well as when not to use this.

Speakers

Holden Karau

Open Source Engineer, Netflix

Holden Karau is a queer transgender Canadian, Apache Spark committer, Apache Software Foundation member, and an active open source contributor. She also extends her passion for building community with industry projects including Scaling for Python for ML and teaching distributed computing... Read More →

Amanda Moran

Software Engineer, Apple

Amanda Moran is a Software Engineer at Apple, her focused is on helping teams adopt Kubernetes. Her passion is helping partners, customers, users, and the community be successful. Previously, she worked for HP, Teradata, DataStax, and Databricks. Amanda’s an Apache Committer and... Read More →

Scaling Apache Spark on Kube to Apple Scale AmandaMoran 05052021 v1 pdf

Plain Text Transcript 78 DBKD 3685

Wednesday May 5, 2021 14:15 - 14:50 CEST
ML Theater

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

14:15 CEST

Cloud Native Storage - a View of the Landscape, Projects and Technology - Alex Chircop, StorageOS; Xing Yang, VMware & Quinton Hoole, Facebook

LINK TO VIDEO RECORDING

This talk will discuss how the CNCF storage SIG in the CNCF operates, identifies projects for Cloud Native admission and where we see the future of storage in the Cloud Native Ecosystem heading.

During this session we will cover:

- Overview of the SIG, how to join and how to help
- Overview of storage projects in the CNCF
- Projects that are currently being being reviewed

We will also share updates of our latest work including:
- the CNCF Storage Landscape document
- the Performance and Benchmarking document
- the Cloud Native Disaster Recovery document

Speakers

Alex Chircop

Chief Product Architect, Akamai

Chief Product Architect at Akamai. Previously a founder and CTO of Ondat (formerly StoraeOS), building software defined solutions for cloud native environments. Alex is also a co-chair of the CNCF Storage TAG (previously SIG). Before embarking on the startup adventure he spent over... Read More →

Quinton Hoole

Production Engineering, Facebook

Xing Yang

Tech Lead, VMware

Xing Yang is a Tech Lead in the Cloud Native Storage team at VMware. She is a co-chair of CNCF Storage TAG, a co-chair of the Kubernetes Storage SIG, a co-chair of the Data Protection WG, and a maintainer in Kubernetes CSI. Before joining VMware, Xing was the Lead Architect of OpenSDS... Read More →

CloudNativeStorage KubeConEU pdf

Plain Text Transcript 98 QKET 3704

Wednesday May 5, 2021 14:15 - 14:50 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

14:15 CEST

CNCF SIG-Runtime: The Cloud Native Runtimes Outlook - Ricardo Aravena, Rakuten & Renaud Gaubert, Nvidia

LINK TO VIDEO RECORDING

This talk will discuss the purpose of the CNCF SIG-Runtime, together with how we identify projects for CNCF admission and where we see the future of runtimes in the cloud native ecosystem. The session will cover: - Overview of the SIG-Runtime, how to join, and how to help. - Overview of related projects in the CNCF and the projects that have presented in our meetings. - Existing Workgroups in the SIG and how to get involved. - Future trends for cloud native technologies in the SIG scope such as containers, VMs, WebAssembly and MLOPs.

Speakers

Ricardo Aravena

Cloud Infrastructure Lead, TruEra

Ricardo currently works at TruEra as a Cloud Infrastructure Lead helping automate everything with cloud native technologies. He's an open source enthusiast and co-chair of the CNCF TAG-Runtime. He has been working in tech and infrastructure for more than 20 years and comes from a... Read More →

Renaud Gaubert

Software Engineer, Nvidia

Renaud Gaubert has been working since 2017 at NVIDIA on making GPU applications easier to deploy and manage in data centers. He focuses on supporting GPU-accelerated machine learning frameworks in container orchestration systems such as Kubernetes, Docker swarm, and Nomad. He is an... Read More →

CNCF SIG Runtime The Cloud Native Runtimes Outlook pdf

Plain Text Transcript 82 HQBE 4858

Wednesday May 5, 2021 14:15 - 14:50 CEST
Maintainer Track Theater

Maintainer Track Sessions

14:15 CEST

Contour, a High Performance Multitenant Ingress Controller for Kubernetes - Steve Sloka, VMware

LINK TO VIDEO RECORDING

Contour, a CNCF incubating project, is a high performance ingress and load balancer solution for Kubernetes. Contour offers a richer feature set than some common alternatives while maintaining a lightweight profile. At its core, Contour is providing a control plane for the Envoy edge and service proxy. This session will show you how to leverage Contour and Envoy for Kubernetes workloads in a multi-tenant environment, demonstrate recent Contour features like authentication, rate-limiting, service-apis, as well as preview our near term roadmap.

Speakers

Steve Sloka

Sr. Member of Technical Staff, VMware

Steve Sloka is a Sr. Member of Technical Staff at VMware based in Pittsburgh, PA dealing with all things Cloud, Containers, and Kubernetes. Steve is a maintainer of Contour & Gimbal and is a contributor to many other open source projects. Steve is also a Kubernetes contributor and... Read More →

Contour a High Performance Multitenant Ingress Controller for Kubernetes 05052021 v1 pdf

Plain Text Transcript 79 PULP 6068

Wednesday May 5, 2021 14:15 - 14:50 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

14:15 CEST

Get In Containerds, We’re Going Securing: Kubernetes SIG Security is Here! - Ian Coldwater, Twilio; Tabitha Sable, Datadog; Savitha Raghunathan, MathWorks; Aaron Small, Invitae

LINK TO VIDEO RECORDING

Kubernetes SIG Security is a newer and evolving SIG, and we’re excited to be here and tell you what we’re all about! Come learn about our work on horizontal security initiatives for the Kubernetes project including regular third-party security audits, cross-cutting security documentation, and building bridges both internally and externally to improve the security of the project as a whole. Most importantly, learn how you can get involved. Bring your thoughts, questions, and ideas! Can’t wait to see you there!

Speakers

Aaron Small

Internal Cloud Engineering Lead, Invitae

Savitha Raghunathan

Senior Software Engineer, Red Hat

Savitha Raghunathan is a Senior Software Engineer at Red Hat, working on Migration and App Modernization technologies. She leads K8s sig-security-docs sub-project aiming to create security awareness through docs. As a Konveyor Maintainer, she leads the community engagement efforts... Read More →

Ian Coldwater

Security Researcher, Independent

Tabitha Sable

Staff Engineer, Datadog

Tabitha Sable never met a system she didn't want to take apart. She serves the Kubernetes community as co-chair of SIG Security and a member of the Security Response Committee. At work, Tabitha leads Runtime Infrastructure Security at Datadog. She writes exploits, hardens infrastructure... Read More →

KubeCon EU 2021 sig security audit update pdf

Plain Text Transcript 81 XUYF 7179

Wednesday May 5, 2021 14:15 - 14:50 CEST
Maintainer Track Theater

Maintainer Track Sessions

14:15 CEST

SIG Multicluster Intro - Paul Morie, Red Hat & Jeremy Olmsted-Thompson, Google

LINK TO VIDEO RECORDING

SIG-Multicluster is focused on solving common challenges related to the management of many Kubernetes clusters, across multiple cloud providers (so-called hybrid cloud) and applications deployed across many clusters. In the introduction, we'll give attendees an overview of the current status of the multi-cluster problem space in Kubernetes and of the SIG. We’ll discuss current thinking around best practices for multi-cluster deployments and what it means to be part of a ClusterSet. Then we’ll highlight current SIG projects, focused use cases, and ideas for what’s next. Most importantly, we’ll provide information on how you can get involved either as a contributor or as a user who wants to provide feedback about the SIG's current efforts and future direction. Bring your questions, problems, and ideas - help us expand the multi-cluster Kubernetes landscape.

Speakers

Paul Morie

Sr. Principal Software Engineer, Red Hat

Paul is a Principal Engineer at Red Hat and a Kubernetes maintainer. He's been working on Kubernetes since 2014, concentrating at different points on application development primitives, service catalog, container security, and multicluster problems. Before Kubernetes, he worked on... Read More →

Jeremy Olmsted-Thompson

Senior Staff Software Engineer, Google

Jeremy is a software engineer who works on Google Kubernetes Engine. His main focus is on simplifying the Kubernetes experience, and making it as easy as possible to deploy applications both within a cluster with things like GKE Autopilot, and across clusters with multi-cluster solutions... Read More →

SIG Multicluster Intro KubeCon EU 2021 pdf

Plain Text Transcript 86 SYWS 3533

Wednesday May 5, 2021 14:15 - 14:50 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

14:15 CEST

Multi-Tenancy in Kubernetes: How We Avoided Clusters Sprawl With Capsule - Dario Tranchitella, CLASTIX & Maksim Fedotov, Wargaming.net

LINK TO VIDEO RECORDING

Kubernetes is great when you have to deal with it as is and plays well with isolating workloads and limiting resources due to its primitives as ResourceQuota, LimitRange, NetworkPolicy, Namespace, and so on. But is it enough? Can you create a real isolated multi-tenant environment in it? With our experience with many production environments, we discovered it's not entirely. That is the reason why Capsule, an open-source Kubernetes Operator for multi-tenancy was born. Expanding the authentication Kubernetes capabilities, Capsule provides a viable and robust solution to avoid the hyped cluster sprawl while maintaining a native Kubernetes UX. And, last but not least, allowing a BYOD to push compute, storage, and network isolation and avoiding the noisy neighbors' effect. After a brief overview of the project by Dario Tranchitella (maintainer), Max Fedotov will explain how Capsule enhanced the operations and supercharged the provisioning mechanism for their k8s cluster at Wargaming.net

Speakers

Dario Tranchitella

Open Source Developer, CLASTIX

Former web developer fell in love with containers and the Cloud Native ecosystem, addicted to internals and their black magic, worked for start-ups and enterprises and built Kubernetes clusters at scale: been there, done that. Highly committed to making locally more awareness of Kubernetes... Read More →

Maxim Fedotov

Lead Infrastructure engineer, Wargaming.net

Multi Tenancy in Kubernetes: How We Avoided Clusters Sprawl With Capsule Dario Tranchitella, CLASTIX pdf

Multi Tenancy In Kubernetes How We Avoided Clusters Sprawl With Capsule Max Fedotov, Wargaming pdf

Plain Text Transcript 76 PNML 6284

Wednesday May 5, 2021 14:15 - 14:50 CEST
Operations Theater

Operations

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

14:15 CEST

Turning Your Cloud Native Apps Inside Out With a Service Mesh - Adam Zwickey & Liam White, Tetrate

LINK TO VIDEO RECORDING

Cloud native best practices have come a long way from the mid-2010’s when adopters of cloud native patterns were utilizing in-app libraries to manage concerns around load balancing, circuit breaking, service discovery, etc. Many adopters of modern cloud platforms have now realized greater agility and ease of use when those primitives are separated away from the application and managed independently in a cloud platform. This talk will review the pitfalls of those earlier application patterns with an assessment of why we've moved on and, most importantly, the benefits of now operating with an Envoy-based Service Mesh to help you manage your environment and enhance your development practices. It will also address how using a service mesh will help you migrate to this newer development style faster and safer to better enhance your organization's delivery times for updates to products and services.

Speakers

Liam White

Software Engineer, Tetrate

Liam leads the platform team at Tetrate where he focuses on simplifying and streamlining cloud infrastructure. He is a former maintainer in the Istio UX working group where he worked on several Istio networking and debugging features.

Adam Zwickey

Director, Global Solutions Engineering, Tetrate

Adam is a solutions engineering leader at Tetrate. Prior to Tetrate, Adam worked as a Field Principal for VMware’s Modern Application Platform business unit. His focus for nearly the past decade has been helping Global 2000 companies modernize their infrastructure platforms and... Read More →

Kubecon+CloudNativeCon pdf

Plain Text Transcript 77 FVMF 9933

Wednesday May 5, 2021 14:15 - 14:50 CEST
Service Mesh Theater

Service Mesh

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

14:15 CEST

Lessons Learned from Operating ETCD - Pierre Zemb, OVHcloud

LINK TO VIDEO RECORDING

OVHcloud is the biggest European cloud provider. From dedicated servers to Managed Kubernetes, from VMware® based Hosted Private Cloud to OpenStack-based Public Cloud, we have over 1.4 million customers worldwide. Because of our Kubinception design(using Kubernetes to run Kubernetes), we are putting hundreds of customers in an ETCD cluster. This design is great to easily spawn control-planes for customers, but it is also putting a lot of pressure on ETCD. To keep it healthy while growing up constantly, we had to learn many things about how ETCD works under the hood and how we can operate it efficiently. In this talk, you will have the insights of how we are operating our ETCD clusters. We will tell you our journey to use ETCD, from our observability to deployments and management, what did work and what did not.

Speakers

Pierre Zemb

Technical Leader, OVHcloud

Pierre Zemb is a Technical Leader working around distributed and storage systems at OVHcloud. He has been working around stateful systems like HBase, Flink, Kafka, Pulsar and lately ETCD. Pierre is currently working on the Managed Kubernetes to improve ETCD's scalability. He is also... Read More →

Lessons learned from operating ETCD(2) pdf

Plain Text Transcript 84 VOVO 5356

Wednesday May 5, 2021 14:15 - 14:50 CEST
Storage Theater

Storage

Content Experience Level Beginner (Very basic information)
Presentation Slides Attached Yes

15:00 CEST

Project Office Hours: CloudEvents

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for CloudEvents Project Office Hours here: https://community.cncf.io/e/my52vv/

>>Full list of Project Office Hours

Wednesday May 5, 2021 15:00 - 16:00 CEST
Project Office Hours

Project Office Hours

15:00 CEST

Project Office Hours: SPIFFE/SPIRE

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for SPIFFE/SPIRE Project Office Hours here: https://community.cncf.io/e/mc2b3z/

>>Full list of Project Office Hours

Wednesday May 5, 2021 15:00 - 16:00 CEST
Project Office Hours

Project Office Hours

15:05 CEST

eBPF on the Rise - Getting Started - Quentin Monnet, Isovalent

LINK TO VIDEO RECORDING

eBPF is rising as an essential component for observability and networking programmability on Linux and in containers. Due to its performance, flexibility, and scalability, Liz Rice listed it as one of the five CNCF technologies to watch for 2021! In an opportunity to fully comprehend its potential, this introduction will help you get started with eBPF. First, the core architecture. What is an eBPF program? How to attach and run it safely in the kernel, and most importantly, what for? And what are the other components of the eBPF subsystem? Come and learn the basics. Then, augment your toolbox with utilities to manipulate eBPF objects. Inspect, debug or trace with bpftool, bcc tools, bpftrace, or libbpf and its Golang equivalent. Equipped with knowledge and tools, here you come, now prepared to instrument clusters with eBPF! Before you go load-balancing traffic and chasing metrics, the last part focuses on eBPF's benefits for cloud-native environments. Ready to surf the eBPF wave?

Speakers

Quentin Monnet

Software Engineer, Isovalent

Quentin Monnet has been covering eBPF since its early days. He has been publishing regular blog articles related to the technology, including the new series of eBPF updates on ebpf.io, and is considered as one of the top ten committers to the eBPF subsystem on Linux. Quentin discovered... Read More →

kubecon eu 2021 ebpf on the rise pdf

Plain Text Transcript 65 KLDA 2368

Wednesday May 5, 2021 15:05 - 15:40 CEST
101 Theater

101 Track

Content Experience Level Any (No experience required)
Student Track Yes
Presentation Slides Attached Yes

15:05 CEST

Zero Pain Microservice Development and Deployment with Dapr and KubeVela - Hongchao Deng, Alibaba Cloud

LINK TO VIDEO RECORDING

Developing and deploying microservices could be cumbersome on Kubernetes as developers need to manage deployment configurations of the services per se, MySQL, Kafka, Redis, etc. Those config files are complex and time consuming to learn and write. It becomes a huge burden to developers as they want to focus on business logic, not underlying platform details. In this talk, we will introduce how Alibaba abstracts away infrastructure details and provides consistent experience across various deployment environments by leveraging Dapr and KubeVela. In Alibaba, many developers can now focus only on app code, and the microservice components and their environments will all be setup and managed by the platform with sidecar based approach.

Speakers

Hongchao Deng

Staff Software Engineer, Alibaba Cloud

Hongchao is the founder and maintainer of the OAM and KubeVela projects. He focuses on cloud native application delivery as well as cluster management in Alibaba. Before that, Hongchao worked for CoreOS as the founder engineer of K8s Operator.

KubeCon EU 2021 ppt pdf

Plain Text Transcript 73 RHWK 7249

Wednesday May 5, 2021 15:05 - 15:40 CEST
App & Dev Theater

Application + Development

Content Experience Level Beginner (Very basic information)
Presentation Slides Attached Yes

15:05 CEST

Houston, We’ve Got a Problem! : How to Debug your Pipeline in Tekton - Vibhav Bobade & Vincent Demeester, Red Hat

LINK TO VIDEO RECORDING

It’s always been nice to have CI/CD as a part of your infrastructure. Nothing better than being able to automate your workflows and have jobs done for you in a timely manner. It would be a shame if your jobs/pipelines break now would it. Now all you need to do is sit and take apart the individual components of your pipeline and figure out where you went wrong. We have all been there. Only if we could debug our Pipelines :) As common as task debugging is in the programming world, in the CI/CD world, it is ridden with complexities of the infrastructure and reiterative approaches which kill time. With Tekton, it is possible to debug your pipelines on the go without stopping/restarting your PipelineRun. Tekton is a Kubernetes based, lightweight, serverless, and an easy to manage CI/CD solution which a user can use to create as well as debug their PipelineRuns at a Step level to understand what is wrong with their pipeline providing a more complete CI/CD solution.

Speakers

Vibhav Bobade

Software Engineer, Red Hat

Vibhav Bobade works as a Software Engineer at Red Hat with a focus on CI/CD systems (Jenkins and Tekton). He is into retro game systems, programmatic art, running, cycling and playing the guitar.

Vincent Demeester

Principal Software Engineer, Red Hat

Vincent Demeester is a french developer, Gopher, sysadmin, factotum, free-software fan and unicode lover. He is working RedHat as a principal software engineer, previously at Docker, in the core team. He is a maintainer of the docker project (moby/moby, docker/cli, …), one the lead... Read More →

Houston, we've got a problem: debugging your pipelines in Tekton pdf

Plain Text Transcript 61 PAEJ 5195

Wednesday May 5, 2021 15:05 - 15:40 CEST
CI/CD Theater

CI/CD

Content Experience Level Intermediate (Mid-level experience)

15:05 CEST

Writing for Developers: Take your Project Docs to the Next Level - Celeste Horgan, CNCF

LINK TO VIDEO RECORDING

As maintainers know, when choosing an open source project to use in production, great documentation and community support are key. Yet they often struggle with creating and maintaining documentation because of lack of time and skill. This talk, delivered by one of CNCF’s full-time technical writers, will teach you how to approach writing for developers. We’ll go over deciding what to write, thinking about documentation from a user’s perspective, and what makes great writing. We’ll walk through improving an existing page of documentation on an actual CNCF project(*), as well as how to draft new feature documentation from scratch. This talk is aimed at developers who would like to write better, and folks considering a career switch into technical writing. (*) Project TBD.

Speakers

Celeste Horgan

Senior Technical Writer, CNCF, CNCF

Celeste is a Senior Technical Writer at CNCF. She provides technical writing and design support for cloud native projects across the organization. In her spare time, she’d prefer to be staring out of coffee shop windows, latte in hand, pondering the mysteries of the universe. She... Read More →

KCCNC EU 2021 Writing for Developers take your project docs to the next level pdf

Plain Text Transcript 67 ELTC 2363

Wednesday May 5, 2021 15:05 - 15:40 CEST
Community Theater

Community

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

15:05 CEST

Efficient Model Exploring and Continuous Delivery With Polyaxon + Kubeflow - Shotaro Kohama, Mercari Inc

Machine learning projects are highly iterative. A project begins with an experiment phase, a productionization phase, an operation phase, and the next experiment phase. The smooth transition from the experimental stage to the productionization phase is the key to accelerate the iterations. Polyaxon is a cloud-native machine learning experiments platform that allows developers to run parallel and scalable hyperparameter tuning job in a declarative way. KubeflowPipelines is a workflow engine for machine learning pipelines. This talk shows how the Machine Learning Platform team at Mercari helps accelerate machine learning projects by Polyaxon and KubeflowPipelines.

Speakers

Shotaro Kohama

Software Engineer, Machine Learning Platform, Mercari

Shotaro Kohama is a Machine Learning Platform engineer working for Mercari, Inc. He develops and manages a platform to run parallel hyperparameter tuning jobs for efficient model exploration and to train models continuously on top of Kubernetes. He also creates and maintains tools... Read More →

EfficientModelExploringAndContinuousDeliveryWithPolyaxon+Kubeflow ShotaroKohama 050521 v1 pdf

Plain Text Transcript 71 JKSY 2201

Wednesday May 5, 2021 15:05 - 15:40 CEST
ML Theater

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

15:05 CEST

App Delivery in Cloud Native: Where are We? What's Next? - Lei Zhang, Alibaba & Alois Reitbauer, Dynatrace

LINK TO VIDEO RECORDING

In 2021, there are more and more buzz around the CNCF landscape and it's getting overly complex! So, where are we now? Where are we heading to? In this session we walk through key trends we observed in cloud native application delivery ecosystem and illustrate major challenges we are facing. We will also demo practices tried to solve these issues based on real world case studies collected by SIG App Delivery, with projects available in open source community, for example, the full application delivery workflow from defining your application all the way to running it in production. Whether you are just about to start running applications on Kubernetes or want to improve your skills. This session will help you to identify what to consider when building app platforms, share good practices, compare different approaches and learn about key trends and quick tour through the CNCF ecosystem with a focus on delivering and running applications.

Speakers

Lei Zhang

Staff Engineer, Alibaba

Alois Reitbauer

Chief Technology Strategist/Head of Open Source, Dynatrace

Alois works as Chief Technology Strategist at Dynatrace, where he is response for all open source activities and research. He is currently heavily engaged in the cloud-native ecosystem as a maintainer and founder of several open source projects and as co-chair and founder of TAG App... Read More →

App Delivery Session pdf

Plain Text Transcript 64 MXBW 3068

Wednesday May 5, 2021 15:05 - 15:40 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

15:05 CEST

Cortex: Multi-tenant Scalable Prometheus - Bryan Boreham, Weaveworks & Jacob Tlisi, Grafana Labs

LINK TO VIDEO RECORDING

Cortex is a time-series data store based on Prometheus.
Cortex adds:
- Scalability: run across dozens of servers to handle millions of samples per second.
- Availability: if one server fails then work will be redirected to others.
- Multi-tenancy: store data from different groups or customers, segregated so a user from one tenant cannot see data from another.
- Durability: use cloud stores (such as S3) to reduce the chance of data loss.

This session will provide an overview of Cortex, an update on recent news from the project, and a deeper look at the recently added administrator feature to query across multiple tenants.

Speakers

Bryan Boreham

Distinguished Engineer, Grafana Labs

Bryan is a Distinguished Engineer at Grafana Labs, the observability company.After first getting into programming as a kid, creating a video game called "Splat", Bryan's career has ranged from charting pie sales at a bakery to real-time pricing of billion-dollar bond trades.At Grafana... Read More →

Jacob Lisi

Senior Software Engineer, Grafana Labs

Cortex maintainer session KubeCon EU 2021 pdf

Plain Text Transcript 72 CWIQ 3667

Wednesday May 5, 2021 15:05 - 15:40 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

15:05 CEST

Dragonfly 2.0 — Bring a breakthrough Leap to the Domain of Cloud Native File and Image Distribution - Zuozheng Hu, Alibaba & Jim Ma, Ant Group

LINK TO VIDEO RECORDING

With the continuous development of dragonfly 1.X, more and more companies use it to solve the problems of image download and file distribution in their production environment. In this process, it also gradually exposed some deficiencies of the current system in architecture design, security and function, and faced more and more challenges. Therefore, it is necessary for us to launch the dragonfly 2.0 project and give it a clearer positioning: providing enterprise level (efficient, stable, secure, low-cost, product oriented) file distribution and management services, becoming the cloud native best practice and standard solution in this field. The new Dragonfly 2.0 will definitely bring a breakthrough in the field of file and image distribution.

Speakers

Zuozheng Hu

Senior Engineer, Alibaba Cloud

Zuozheng Hu, a Senior Engineer at Alibaba Group, is the founder of dragonfly and the primary member of SRE Team in Alibaba. I have been involved in devops for five years and have very rich experience in this field. At present, I am mainly responsible for the construction of hybrid... Read More →

Jim Ma

Senior Engineer, Ant Group

Dragonfly 2.0 Bring a breakthrough Leap to the Domain of Cloud Native File and Image Distribution pdf

Plain Text Transcript 70 MJNL 5008

Wednesday May 5, 2021 15:05 - 15:40 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

15:05 CEST

Kubernetes SIG Node Intro and Deep Dive - Elana Hashman, Red Hat & Sergey Kanzhelev, Google

LINK TO VIDEO RECORDING

Kubernetes SIG Node is responsible for components that control interactions between pods and host resources, including the Kubelet, Container Runtime Interface (CRI), and Node API. SIG Node is responsible for the Pod’s lifecycle from allocation to teardown, to liveness checks and shared resource management. We work with the various container runtimes, kernels, networking, storage, and more; anything a pod touches is SIG Node’s responsibility! In this session, we will begin with an introductory overview of the SIG and what it has worked on in the past. We will then deep dive into ongoing efforts of the SIG, including features targeted for the 1.21 and 1.22 releases and future roadmap. Join this session to learn more about our SIG, and how you might get involved to make Node even better!

Speakers

Elana Hashman

Principal Software Engineer, Red Hat

Elana Hashman currently works for Red Hat as a Principal Software Engineer on the OpenShift Container Platform Node Team, working upstream in Kubernetes SIG Node. Previously, she served as an SRE and technical lead on Azure Red Hat OpenShift. She is a subproject lead for the SIG Node... Read More →

Sergey Kanzhelev

Staff Software Engineer, Google

Sergey Kanzhelev is a seasoned open source and cloud native maintainer working actively on Kubernetes. Sergey is serving as co-chair of SIG node. He is also one of OpenTelemetry founders. He is working on engineering aspect of software and its practical application. With the Kubernetes... Read More →

KubeCon EU 2021 Node pdf

Plain Text Transcript 69 RZRA 2507

Wednesday May 5, 2021 15:05 - 15:40 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

15:05 CEST

Towards CNI v2.0 - Casey Callendrello, Red Hat

LINK TO VIDEO RECORDING

CNI v1.0 is out! In this talk, we'll discuss some directions the CNI project could take as we look to define the next generation of container networking.
We'll look at -- Where CNI is today -- What it does and doesn't do well -- How we might improve it -- How can Kubernetes better use CNI?

Speakers

Casey Callendrello

Principal Engineer, Red Hat

Casey Callendrello is a Principal Software Engineer at Red Hat, where he works on Kubernetes networking and the libraries that support it. He is a maintainer of the CNI project as well as a Kubernetes contributor.He is a Track Chair for Networking at KubeCon EU 2021.

Towards CNI 2.0 pdf

Plain Text Transcript 66 JNUH 1111

Wednesday May 5, 2021 15:05 - 15:40 CEST
Maintainer Track Theater

Maintainer Track Sessions

15:05 CEST

Ghosts in the Runtime: Who Ate My Capabilities and Other Mysteries - Laurent Bernaille & Eric Mountain, Datadog

LINK TO VIDEO RECORDING

In the last 3 years Datadog migrated most of its workloads to dozens of Kubernetes clusters, many of which consist of thousands of nodes each. At this scale, our engineers encounter strange and surprising bugs on a regular basis. Some of the most difficult bugs to investigate are those related to the kubelet and its interactions with the container runtime.

In this talk we will share some of our favorite investigations on this front, such as the container image that only worked when built on our laptops, rather than by our CI. You'll leave with a stronger understanding of the low level components that are responsible of a critical task: running your containers.

Speakers

Laurent Bernaille

Principal Engineer, Datadog

Laurent Bernaille worked several years as a consultant specializing in cloud, containers, and automation and helped organizations migrate to the public cloud, adopt containers and improve their deployment pipelines. He is now Staff Engineer at Datadog and works in the Compute team... Read More →

Eric Mountain

Senior Software Development Engineer, Datadog

Eric Mountain began working with Kubernetes in 2014 migrating applications built in a custom middleware ecosystem to container and cloud technology. Eric is now a Senior Engineer in Datadog’s Compute team providing large scale Kubernetes to our internal users. Eric enjoys debugging... Read More →

Ghosts in the Runtime, Who Ate My Capabilities and Other Mysteries Laurent Bernaille and Eric Mountain 2021 05 05 v1 pdf

Plain Text Transcript 63 LHOY 9690

Wednesday May 5, 2021 15:05 - 15:40 CEST
Operations Theater

Operations

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

15:05 CEST

Seamless multi-cluster Communication and Observability with Linkerd - Max Körbächer, Liquid Reply

LINK TO VIDEO RECORDING

Considering migrating a traditional cross-cluster app containing sensitive data to a meshed microservices-based application? In this session, Max will discuss how his team migrated an app with GDPR protected data to a Kubernetes-based architecture meshed with Linkerd for one of their telco customers. He'll share lessons learned, insights into the motivation driving this change, as well the challenges faced along the way. Technical examples and concrete solutions implemented by his team will illustrate how other teams can start tackling their multi-cluster journey.

Speakers

Max Körbächer

Co-Founder & Manager Cloud Native Engineering, Liquid Reply

seamless multi cluster communication and observability with linkerd MaxKoerbaecher 50521 v1 pdf

Plain Text Transcript 62 WWOP 3936

Wednesday May 5, 2021 15:05 - 15:40 CEST
Service Mesh Theater

Service Mesh

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

15:05 CEST

CSI Volume Attacks – The SRE Strikes Back - Hendrik Land, NetApp

LINK TO VIDEO RECORDING

Container Storage Interface (CSI) has made it easy for stateful workloads to consume storage - but does it protect your data from unauthorized access? The CSI standard only orchestrates the creation of volumes, snapshots or clones. How do you ensure that neither other workloads in the same Kubernetes cluster nor someone outside the cluster can access your data? You will learn the inherent security models provided by Kubernetes as well as additional configurations you can and should apply. Beyond concepts and architecture, a series of short demos will cover topics such as: - Security of Persistent Volume Claims and Persistent Volumes throughout their lifecycle - Pod Security Policies and volume types - File system permissions on your volumes - Securing common storage protocols such as iSCSI and NFS - Securing CSI drivers in your cluster

Speakers

Hendrik Land

Solution Architect DevOps, NetApp

Hendrik has worked for NetApp on storage and data management aspects since 2007. His interest in new technologies has led him into the DevOps space, where he focuses on storage for stateful workloads and application mobility delivered by infrastructure agnostic platforms such as Kubernetes... Read More →

CSI Volume Attacks – The SRE Strikes Back pdf

Plain Text Transcript 68 LOQS 8769

Wednesday May 5, 2021 15:05 - 15:40 CEST
Storage Theater

Storage

Content Experience Level Beginner (Very basic information)
Presentation Slides Attached Yes

15:30 CEST

EmpowerUs, Sponsored by Google Cloud

Join us for the EmpowerUs session, sponsored by Google Cloud. You'll hear inspiring stories from women in open source, and an opportunity for meaningful interaction. This session will take place on Zoom and required a RSVP. Those who RSVP'd will receive Zoom details.

Moderators

Radha Jhatakia

Program Manager, Google

Speakers

Aish Sundar

Software Engineering Manager, Google

Jeana Jorgensen

Senior Director, Product Marketing - Infra, App Mod, and Developer, Google

María Cruz

Program Manager, Google

Wednesday May 5, 2021 15:30 - 16:05 CEST
Zoom

Diversity + Inclusion Sessions

15:30 CEST

End User Community Lounge: Benefits Edition

Come hang out with Cheryl Hung, Katelin Ramer, Kristi Tan, and Mary Campbell of CNCF!
You’ll learn about:

the Linux Foundation training benefits End Users get access to
the branding opportunities your company can participate in to boost recruitment and retention
how to collaborate with other end users in CNCF’s End User Community

This space is open to all and no RSVP is required. Come see us!

This session is being hosted in Zoom and can be found here.

End user lounge Benefits edition KubeCon EU 2021 pdf

Wednesday May 5, 2021 15:30 - 16:30 CEST
Virtual

Interactive Sessions

16:00 CEST

Building Your Brand with CNCF AMA

Did you ever wonder how to build your brand within the cloud native ecosystem? Do KCD, Online Programs, cloudnative.tv, and the CNCF blog (just to start) seem like an overwhelming seas of possibilities? CNCF offers a variety of programs, but it is often difficult to know where to begin. In this introductory session, you will learn about the different programs CNCF offers to help you build your cloud native voice. There will be jokes, stories, and new friends. Come be a part of the foundation of doers.

This session will be hosted in Zoom and can be found here.

Speakers

Shilla Saebi

Program Manager, Open Source, Comcast

Shilla Saebi is an Open Source Program Manager who focuses on community and has been with Comcast for almost a decade. She has worked in many diverse roles within the tech industry in positions ranging from operations engineering, system administration, customer service, and network... Read More →

Bill Mulligan

Marketing Manager, Cloud Native Computing Foundation

Building your Brand with CNCF KubeCon EU 2021 pdf

Wednesday May 5, 2021 16:00 - 17:00 CEST
Virtual

Business Value Interactive Sessions

Presentation Slides Attached Yes

16:00 CEST

Daily Wrap Up on CloudNative.tv - Moderated by Kat Cosgrove, JFrog & Matt Stratton, Pulumi

Speakers

AMA Happy Hour with Priyanka Sharma

Join CNCF General Manager Priyanka Sharma for some end-of-day socializing, recaps of the keynotes, and special guests! Come prepared with your audio and video on – we’re here to have fun and make connections!
*This session will be streamed on CNCF’s Twitch channel – https://www.twitch.tv/cloudnativefdn
How to Register: No need! These sessions are open to all in the community that are interested, space permitting. Details on how to join the meetings will be coming soon.

To join us live on Zoom, please click here.

Speakers

Solutions Showcase

Thursday May 6, 2021 09:00 - 16:00 CEST
Virtual

Solutions Showcase

10:00 CEST

Keynote: Kubernetes Project Update - Stephen Augustus, KubeCon + CloudNativeCon Europe 2021 Co-Chair & Head of Open Source, Emerging Technologies & Incubation Division, Cisco

LINK TO VIDEO RECORDING

Speakers

Stephen Augustus

Head of Open Source, Cisco

Thursday May 6, 2021 10:00 - 10:15 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:00 CEST

Thursday Keynote Sessions

Be sure to join us for Thursday's keynotes which include:

Kubernetes Project Update - Stephen Augustus, KubeCon + CloudNativeCon Europe 2021 Co-Chair & Head of Open Source, Emerging Technologies & Incubation Division, Cisco (10:00-10:15)
Sponsored Keynote: Day 2 with Kubernetes - This Is Fine! - Vaibhav Kamra, Chief Technology Officer, Kasten by Veeam (10:15-10:20)
Linkerd vs. COVID-19: Addressing the global Pandemic with a Service Mesh - William Morgan, Chief Executive Officer, Buoyant (10:22-10:37)
Sponsored Keynote: Smoothing the onramp to Kubernetes with Knative - Brenda Chan, Director of Engineering, VMware Tanzu Developer Experience, VMware
How Deutsche Telekom Technik Built Das Schiff for Sailing the Cloud Native Seas - Vuk Gojnic, Squad Lead, Container & Cloud-native Engine, Deutsche Telekom Technik (10:44-10:59)
Closing Remarks - KubeCon + CloudNativeCon Europe 2021 Co-Chairs: Constance Caramanolis, Principal Engineer, Splunk & Stephen Augustus, Head of Open Source, Emerging Technologies & Incubation Division, Cisco (11:00-11:05)

Speakers

William Morgan

CEO, Buoyant

William Morgan is the CEO of Buoyant. Prior to founding Buoyant, he was an infrastructure engineer at Twitter, where he ran several teams building on product-facing backend infrastructure. He has worked at Powerset, Microsoft, adap.tv, and MITRE Corp, and has been contributing to... Read More →

Vaibhav Kamra

CTO, Kasten by Veeam

Vaibhav Kamra is CTO at Kasten by Veeam, which is tackling Day 2 data management challenges to help enterprises confidently run applications on Kubernetes. Previously, Vaibhav has worked at Dell EMC, Maginatics and Microsoft, where his focus has been on storage, filesystems and databases... Read More →

Constance Caramanolis

Principal Software Engineer, Splunk

Stephen Augustus

Head of Open Source, Cisco

Brenda Chan

Director of Engineering, VMware Tanzu Developer Experience, VMware

Brenda Chan is an Engineering Director at VMware, focused on the developer experience for Tanzu. Brenda has worked at multiple start ups and joined VMware in 2020 through an acquisition. Brenda was the first external contributor to the Knative project and has been on the Steering... Read More →

Vuk Gojnic

Squad Lead, Platform, Deutsche Telekom Technik

Vuk Gojnic is a squad leader for the Kubernetes Engine at Deutsche Telekom. Originally a developer, Vuk discovered open source and has been a convert ever since. At Deutsche Telekom, he’s responsible for T-CaaS / Das Schiff their Infrastructure as a Service platform built on Kubernetes... Read More →

Thursday May 6, 2021 10:00 - 11:05 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:15 CEST

Sponsored Keynote: Day 2 with Kubernetes - This Is Fine! - Vaibhav Kamra, Chief Technology Officer, Kasten by Veeam

LINK TO VIDEO RECORDING

In the recent CNCF Cloud Native Survey, 83% of Kubernetes users reported running in production. The focus of platform teams has shifted from defining what the platform looks like and how it will be consumed, to Day 2 operations - keeping the lights on and scaling it out.

In this session, we’ll highlight some of the challenges faced by teams as they move past initial Kubernetes deployments and recommendations on how to address these. This is based on the learnings from building and managing our Kubernetes environments as well as working with several customers who’ve made a similar journey over the past few years.

Speakers

Vaibhav Kamra

CTO, Kasten by Veeam

Thursday May 6, 2021 10:15 - 10:20 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:22 CEST

Keynote: Linkerd vs COVID-19: Addressing the global Pandemic with a Service Mesh - William Morgan, Chief Executive Officer, Buoyant

LINK TO VIDEO RECORDING

In this keynote, Linkerd project member William Morgan will present an overview of the various ways in which the Linkerd service mesh has been used to address the global COVID-19 pandemic in practice, ranging from test scheduling for college students to locating available vaccine sources, to the rollout of curbside delivery features at a major grocery chain.

Speakers

William Morgan

CEO, Buoyant

Thursday May 6, 2021 10:22 - 10:37 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:38 CEST

Sponsored Keynote: Smoothing the onramp to Kubernetes with Knative - Brenda Chan, Director of Engineering, VMware Tanzu Developer Experience, VMware

LINK TO VIDEO RECORDING

Every year millions of software developers build their first application on Kubernetes. For developers used to VMs and monolithic architectures, taking advantage of all that Kubernetes has to offer can feel daunting. In this keynote, we’ll highlight how Knative is helping developers quickly realize value from Kubernetes today, and how it will help in the future to form a new layer of abstraction that will accelerate every developer’s Kubernetes journey.

Speakers

Brenda Chan

Director of Engineering, VMware Tanzu Developer Experience, VMware

Thursday May 6, 2021 10:38 - 10:43 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

10:44 CEST

Keynote: How Deutsche Telekom Technik Built Das Schiff for Sailing the Cloud Native Seas - Vuk Gojnic, Squad Lead, Container & Cloud-native Engine, Deutsche Telekom Technik

LINK TO VIDEO RECORDING

In mid 2019, Deutsche Telekom Technik started its cloud native journey. We quickly realized our task was: "How do you provide and manage hundreds or even thousands of Kubernetes clusters that are distributed over hundreds of locations with only open source software and a 10 person dedicated SRE team?" “Das Schiff” was born to run telco workloads including 5G Core, remote 5G UPFs, ORAN, MEC across all of these locations.

Sailing in cloud native sea, we have found many wonderful communities from which to make our port of call. The marriage of ClusterAPI and FluxCD gave us the ability to drive automation through GitOps, but this time for infrastructure management at 5G scale. Bare metal Kubernetes is also core to our journey, with many small nodes for horizontal scalability to run cloud native network functions (CNFs). Deutsche Telekom has also found a home giving back to the community, through the CNF Working Group, helping make networking cloud native. Our ultimate aim is to bring our learnings and results into generalized and consumable formats for the community to build an open platform for 5G and cloud native telcos.

Thursday May 6, 2021 10:44 - 10:59 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

11:00 CEST

LINK TO VIDEO RECORDING

Speakers

Constance Caramanolis

Principal Software Engineer, Splunk

Stephen Augustus

Head of Open Source, Cisco

Thursday May 6, 2021 11:00 - 11:05 CEST
Keynote Theater

Keynote Sessions

Content Experience Level Any (No experience required)

11:05 CEST

Break

Thursday May 6, 2021 11:05 - 11:35 CEST
TBA

Breaks

11:15 CEST

Project Office Hours: Cortex

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Cortex Project Office Hours here: https://community.cncf.io/e/mv5f8s/

>>Full list of Project Office Hours

Thursday May 6, 2021 11:15 - 12:15 CEST
Project Office Hours

Project Office Hours

11:15 CEST

Project Office Hours: Strimzi

RSVP for Strimzi Project Office Hours here: https://community.cncf.io/e/m5t2m2/

>> Full list of Project Office Hours

Thursday May 6, 2021 11:15 - 12:15 CEST
Project Office Hours

Project Office Hours

11:35 CEST

A Pathway to CNCF Citizenship - via Communitybridge - Darshan Chaudhary & Ken Owens, Mastercard

LINK TO VIDEO RECORDING

In this session, we will share how you can use the importance of getting involved with the Community bridge internship program to start your contributor journey for the cncf projects. The speakers are Ken Owens, who mentored me on the internship and Darshan, the mentee in this program. Specifically, we will share how CB works, how to get selected etc. In the first half of the talk, Darshan will share the story from the mentee's point of view. He will discuss how he discovered the program, applied, and what the experience was after getting selected. Ken will share his story from the mentor's point of view. He will discuss how he vetted the candidates, what the mentors look out for in the applicants and finally , his experience providing mentorship during the course of the internship and beyond, and the value CB has on the enterprise. Hopefully you will be more encouraged to apply for community bridge after this talk!

Speakers

Kenneth Owens

Vice President, Cyber Cloud Security, Fiserv

Technical executive with 20+ years’ experience in architecture, analysis, design, research, and implementation of cloud native patterns, data center and cloud computing infrastructures consisting of SOA software design, virtualization, server, network, security, storage, automation... Read More →

Darshan Chaudhary

Software Developer, Self

I work as a Software Developer with Draup, a sales enablement platform powered by machine learning. I have built core services to help us sift through and process terrabytes of data while also provisioning and managing the underlying infrastructure. Earlier, I worked at Appknox, where... Read More →

KubeCon EU 2021 ppt pdf

Plain Text Transcript 57 TVNK 4435

Thursday May 6, 2021 11:35 - 12:05 CEST
Community Theater

Community

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

11:35 CEST

What Do You Mean K8s Doesn't Have Users? How Do I Manage User Access Then? - Jussi Nummelin, Mirantis Inc.

LINK TO VIDEO RECORDING

What if I told you that once you give someone client certificate access to your Kubernetes cluster you can't take it away again? It's true. Once you create an authentication key and give it access to the cluster, there's no way to revoke it. That person has access forever. And that's just one of the weird things about Kubernetes Authentication and Authorization. In this session, you will learn about how Kubernetes handles users and permissions, and how to set up your cluster to do it more efficiently and securely. You'll learn: How access keys work How permissions work How to segment your cluster for greater security How Role-Based Access Control limits what individual users can see and do How to use OpenID Connect to get around the issue of permanent access without having to manage hundreds or thousands of individual Roles You will leave this session ready to create a more secure and convenient way to manage your cluster.

Speakers

Jussi Nummelin

Senior Principal Engineer, Mirantis

Jussi has been working with and building cloud-native technologies for the past 9+ years, even before they were actually called “cloud native”. He’s excited to build technologies and tools to help bring cloud-native to the masses. Jussi is currently working at Mirantis OSS “division... Read More →

KubeConEU2021 UserMgmt pdf

Plain Text Transcript 51 TQLE 2749

Thursday May 6, 2021 11:35 - 12:10 CEST
101 Theater

101 Track

Content Experience Level Beginner (Very basic information)
Student Track Yes
Presentation Slides Attached Yes

11:35 CEST

Building the Multi-Cluster Data Layer - Chirag Narang, Yugabyte

LINK TO VIDEO RECORDING

Getting the data layer right is critical to building a cloud-native application. The global accessibility of persistent data across multi-cluster Kubernetes environments is the biggest challenge for building stateful workloads. As organizations rush to scale their infrastructure on multi-cluster Kubernetes, they often struggle with database deployments. Many traditional databases have not worked at the scale needed; either they are not horizontally scalable or highly available and do not provide strong consistency across multiple clusters. We’re here to show you that it’s easy to deploy a distributed database across multiple clusters. In this talk, join Chirag Narang, Product Manager from YugabyteDB to learn: Cross cluster deployment challenges in distributed databases How practitioners can adopt a service mesh to run a distributed SQL database across clusters How to solve global consistency, scalability, high availability, and geo-distribution challenges with YugabyteDB

Speakers

Chirag Narang

Product Manager, Yugabyte

Chirag Narang has ten years of experience working in the IT industry in various product management, technical support and consulting roles encompassing almost all aspects of systems architecture, design, and development. Currently, he is the Product Manager for Yugabyte Platform and... Read More →

Kubecon Europe 2021 Building the Multi Cluster Data Layer pdf

Plain Text Transcript 48 ZBCM 4377

Thursday May 6, 2021 11:35 - 12:10 CEST
App & Dev Theater

Application + Development

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

11:35 CEST

Achieving the Tipping Point for Open-source Software: Making the Business Value Obvious for Upper Management - Joshua Grose, Splunk

LINK TO VIDEO RECORDING

Cloud-native has been taking the world by storm. However, I'm only a recent convert, having begun my tech career by selling against open-source software. As I began working with more complex organizations and applications, I started to see areas where OSS actually became a critical component to delivering an overall solution. Jeff Lawson, CEO of Twilio, has coined this as the "digital supply chain". And it makes sense, the advent of cloud-native development presented engineering teams with new challenges that many of their vendor-provided solutions just weren't prepared to overcome. Making matters worse, at many companies, management didn't have a grasp on the severity of this disconnect.

This is where open-source came in to fill the gaps that were created. Open-source software consumption and participation was on a tremendous upswing even prior to the pandemic, with studies showing that 68% of companies planned to use more OSS than in the previous year. Additionally, Github found that at the start of the shelter-in-place lockdowns, individual users created 40% more open-source projects than in previous periods. In spite of these data points, you're still facing scrutiny and being asked to provide business justification when evaluating OSS as a possible solution for your technical challenges.

This session will give you the inside scoop on how to position and align your OSS recommendation with business value so that all stakeholders hop on board. And for leaders, you'll see first-hand why OSS is preferrable in many instances, and a framework for how technology recommendations should be presented. As someone that has spent years convincing folks not to use OSS and then to definitely use it, I possess the real-world experience to show you what you're up against.

Speakers

Josh Grose

Splunk

On the sales front, I've lived through just about everything - first sales hire at pre-launch startups (2x), all the way up to running account strategy at a $50B company, selling into the most iconic company in the world. I've also done it across multiple industries - web conferencing... Read More →

Selling OSS Internally KubeCon EU 21 pdf

Plain Text Transcript 55 EQCB 0908

Thursday May 6, 2021 11:35 - 12:10 CEST
Business Value Theater

Business Value

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

11:35 CEST

Putting Chaos Into Continuous Delivery to Increase Application Resiliency - Juergen Etzlstorfer, Dynatrace & Karthik Satchitanand, Mayadata

LINK TO VIDEO RECORDING

Continuous Delivery practices have evolved significantly with the cloud-native paradigm. GitOps & Chaos Engineering are at the forefront of this new CD approach, with an ever-increasing pattern involving Git-backed pipeline definitions that implement “chaos stages” in pre-prod environments to gauge SLO compliance. In this talk, maintainers of the Keptn (Juergen) & LitmusChaos (Karthik) CNCF sandbox projects will discuss how you can construct pipelines that include chaos experimentation (mapped to declarative hypothesis around application steady-state) while simulating real-world load, and implement quality gates to ensure resilient applications are deployed into production. All this - in a GitOps native manner. They will also demonstrate how you can include chaos tests to your existing CD pipelines without the need of rewriting them.

Speakers

Karthik Satchitanand

Software Architect, Mayadata

Karthik is a Software Architect at MayaData & one of the core maintainers of the LitmusChaos project. He primarily works on design and development of tools for e2e testing, performance benchmarking & chaos engineering. Also one of the early contributors to the OpenEBS project, Karthik... Read More →

Juergen Etzlstorfer

Technology Strategist, Dynatrace

Jürgen is a Technology Strategist at Dynatrace and a maintainer of the Keptn open-source project. Within Keptn, he is working with the broader open-source tooling landscape on tools integrations and takes care about its growing community & ecosystem. He also loves to share his experience... Read More →

PuttingChaosIntoCD JuergenEtzlstorfer pdf

Plain Text Transcript 52 MNAA 9523

Thursday May 6, 2021 11:35 - 12:10 CEST
CI/CD Theater

CI/CD

Presentation Slides Attached Yes

11:35 CEST

From Tweet to BadIdea: Creating an Embeddable Kubernetes Style API Server - Jason DeTiberus, Equinix Metal

LINK TO VIDEO RECORDING

Kubernetes Custom Resource Definitions (CRDs) have made building Kubernetes-style declarative APIs easy. However they depend on an existing Kubernetes cluster, which can lead to difficult bootstrapping issues when building infrastructure management tooling. Would it be possible to remove the Kubernetes cluster dependency by piecing together the components that Kubernetes itself uses to implement the features needed to support CRDs? This talk explores the process of attempting to do just that through the process of building a minimal and embeddable Kubernetes style API Server with CRD support.

Speakers

Jason DeTiberus

Technical Leader, OSPO, Cisco

Jason is a Technical Leader within Cisco's Open Source Program Office. Jason lives in Eastern North Carolina and enjoys collecting various hobbies and projects that rarely see completion. He can often be found daydreaming what hobby to start next, watching the Geese fly by, or honking... Read More →

From Tweet to BadIdea pdf

Plain Text Transcript 54 GKNU 0340

Thursday May 6, 2021 11:35 - 12:10 CEST
K8s Theater

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

11:35 CEST

Building and Managing a Centralized ML Platform with Kubeflow at CERN - Ricardo Rocha & Dejan Golubovic, CERN

LINK TO VIDEO RECORDING

CERN’s main mission is to expand human knowledge trying to understand the nature of the universe, and machine learning has been growing as a solution for challenges in different areas of development and operations. Areas where ML is being looked at include particle classification using graph neural networks during reconstruction, 3DGANs for much faster generation of simulation data, or reinforced learning for beam calibration. This session presents a recently introduced centralized service covering most use cases, handling data preparation, model training and serving. How it tries to improve resource usage (especially important when handling scarce resources such as accelerators) by offering different resource types (GPU, vGPU, TPU) for each use case. The session will also describe our journey with Kubeflow, the machine learning platform running on top of Kubernetes, and how we integrated on-premises resources and the different possibilities being looked at to extend to public clouds.

Speakers

Ricardo Rocha

Computing Engineer, CERN

Dejan Golubovic

Junior Fellow, CERN

Dejan Golubovic is a CERN software engineer with experience in machine learning. His interests are containerized applications, Python programming, and large-scale distributed systems. Dejan is currently working on machine learning infrastructure with Kubernetes and Kubeflow at CERN... Read More →

Building and Managing a Centralized ML Platform with Kubeflow at CERN pdf

Plain Text Transcript 50 TXQM 2525

Thursday May 6, 2021 11:35 - 12:10 CEST
ML Theater

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

11:35 CEST

An Introduction to the Financial Services User Group - Scott Surovich, HSBC & Michael Lieberman

LINK TO VIDEO RECORDING

The Financial Services User Group is looking to increase collaboration with the technology community. Whether you are working in FinServ, a vendor or just interested in learning more about how financial institutions approach cloud native, come join us to find out more about the FSUG, what our goals are and how we plan to achieve them. Find out about the often unique challenges financial services organizations face in the cloud native space and how we are beginning to collaborate with the broader community including open source projects, vendors and our peers. We want to help solve the shared technology problems of financial services. FinServ has a reputation of not being open in the tech community. We hope through this introduction and the broader work of the FSUG to change that.

Speakers

Michael Lieberman

Chief Technology Officer, Kusari

Michael Lieberman is a Chief Technology Officer at Kusari focused on technology transformation especially with regards to cloud native architectures, technologies and migrations. Most recently he has been focused on work within the software supply chain security space. He is co-chair... Read More →

Scott Surovich

Global Container Engineering Lead, HSBC Bank, USA

Scott has been engineering solutions at HSBC for twenty years. His roles include Global engineering and leadership in Windows, Linux, Virtualization, and Kubernetes. He is currently the Global Container Engineering Lead, and Product Owner, designing and implementing the bank’s global... Read More →

presentation pdf

Plain Text Transcript 56 XPSC 8481

Thursday May 6, 2021 11:35 - 12:10 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

11:35 CEST

Cluster API Provider AWS (CAPA) Update - Richard Case, Weaveworks & Sedef Savas, VMware

LINK TO VIDEO RECORDING

Cluster API Provider AWS (CAPA) is a SIG Cluster Lifecycle project, which is responsible for building the UX for deploying and upgrading Kubernetes clusters by also handling infrastructure provisioning in AWS. It can be utilized to build declarative, replicable, scalable Kubernetes clusters in AWS.
Learn about the new features in Cluster API (CAPI)/Cluster API Provider AWS (CAPA), the roadmap ahead, and how you can contribute to the project.

Speakers

sedef savas

Senior Software Engineer, VMware

Sedef Savas works at VMware as a software engineer and she is one of the maintainers of Cluster API Provider AWS project. Prior to this, her experience mostly lies in the networking domain from Kubernetes networking to Optical networking.

Richard Case

Principal Engineer, SUSE

Richard Case is a Principal Engineer @SUSE where he works on building Kubernetes products and open source. He's currently one of the maintainers of the AWS, GCP, Microvm & RKE2 Cluster API providers.

ClusterAPIProviderAWS Update pdf

Plain Text Transcript 49 SHVB 2994

Thursday May 6, 2021 11:35 - 12:10 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

11:35 CEST

CNCF SIG Observability Updates - Bartlomiej Płotka, Red Hat, Richard Hartmann, Grafana Labs & Simone Ferlin, Ericsson

LINK TO VIDEO RECORDING

The CNCF SIG Observability started in Summer 2020 to gather contributors and users from different areas passionate about Observability topics. During this talk, we will be giving an overview of work done, work to come, and areas where you can get involved and help. Consisting of open source project maintainers, standards authors, end-users, and more, we cover a wide range of experience and invite you to join us as well! Help us make the CNCF Observability space better, diverse, and more approachable!

Speakers

Bartłomiej Płotka

Mr, Google

Bartek Płotka is a Senior Software Engineer at Google. SWE by heart, with an SRE background, currently working on Cloud Observability. Previously Principal Software Engineer at Red Hat. Author of "Efficient Go" book with O'Reilly. As the co-founder of the CNCF Thanos project and... Read More →

Richard Hartmann

Director of Community, Grafana Labs

Richard "RichiH" Hartmann is the Director of Community at Grafana Labs, a member of the Office of the CTO of Grafana Labs, Prometheus team member, OpenMetrics founder, OpenTelemetry member, CNCF Technical Oversight Committee member, CNCF Governing Board member, and more. He also leads... Read More →

Simone Ferlin

Ericsson

Plain Text Transcript 59 JIXA 7954

Thursday May 6, 2021 11:35 - 12:10 CEST
Maintainer Track Theater

Maintainer Track Sessions

11:35 CEST

Contributing to Kubernetes Conformance Coverage - Zach Mandeville & Caleb Woodbine, ii.coop - https://ii.coop/

LINK TO VIDEO RECORDING

In this session we'll walk through the Certified Kubernetes program (cncf.io/ck) followed by a deep-dive into the tooling developed for identification, removal and prevention of gaps in certification test coverage.In the intro, we will cover the steps required to become a CNCF Certified Kubernetes provider.We will also deep dive into the APISnoop technologies supporting conformance, specifically:- Identifying Gaps (apisnoop.cncf.io) Closing Gaps (apisnoop audit sink + test writing w/ humacs.org) Preventing Gaps (release blocking w/ prow.k8s.io) Verifying cloud provider submissions (prow.cncf.io)

Speakers

Zach Mandeville

Software Engineer, ii.coop - https://ii.coop/

Zach is a software engineer at ii. He loves sharing the excitement and awesome potential of technology through his work, storytelling, and mad science projects.

Caleb Woodbine

Software engineer at ii, ii.nz

Caleb is a software engineer at ii. Driven by community, he loves the collaboration of individuals - especially through Open Source.Caleb contributes to the Kubernetes sig-testing, Kubernetes conformance working group, and wg-k8s-infra. Caleb also spends way too much time with container... Read More →

kubecon2021 europe conformance pdf

Plain Text Transcript 58 JIUU 3120

Thursday May 6, 2021 11:35 - 12:10 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

11:35 CEST

Taking the Helm: Becoming a Maintainer - Bridget Kromhout & Matt Butcher, Microsoft; Karena Angell, Red Hat; Matt Farina, Rancher Labs

LINK TO VIDEO RECORDING

As a graduated CNCF project, Helm is well-known as the package manager for Kubernetes. Despite being established for years, Helm continues to require ongoing work in the realm of growing the maintainer community. Join long-time and new Helm maintainers as we discuss scaling an open source project, illustrated by specifics from Helm’s journey. We’ll talk about where new contributors can make the most impact and how to navigate when the waters get choppy. Learn about where the Helm project is headed and how you can help steer it!

Speakers

Bridget Kromhout

Principal Product Manager, Microsoft

Technologist, podcaster, conference speaker, devopsdays organizer. Herds cats and wrangles docs; still team #opslife.

Matt Farina

Distinguished Engineer, SUSE

Matt works as a Distinguished Engineer at SUSE, where he works on Rancher, focusing on cloud native technologies. He is also a member of the CNCF Technical Oversight Committee. Matt is an author, speaker, and regular contributor to open source.

Matt Butcher

Principal Software Development Engineer, Microsoft Azure

Matt does cloud native open source development at Microsoft, where he has worked on Brigade, Helm, Krustlet and others. Matt is the author of a bunch of books and articles, most recently O'Reilly's book "Learn Helm" (with Matt Farina and Josh Dolitsky). When not coding, Matt enjoys... Read More →

Karena Angell

Senior Principal Product Manager, Technical, Red Hat

Karena Angell is a Senior Principal Product Manager at Red Hat focusing on cloud native application workloads for Kubernetes, open source software projects, as well as solutions for the 'open' hybrid cloud.

Plain Text Transcript 46 JLEO 6238

Thursday May 6, 2021 11:35 - 12:10 CEST
Maintainer Track Theater

Maintainer Track Sessions

11:35 CEST

Cluster API as Code - David McKay, Equinix Metal

LINK TO VIDEO RECORDING

Cluster API is a Kubernetes sub-project focused on providing declarative APIs and tooling to simplify provisioning, upgrading, and operating multiple Kubernetes clusters. Cluster API provides clusterctl, which can be configured with environment variables and allows the generation of Kubernetes manifests that describe your workload clusters. While this provides a great on-boarding experience, managing and wrangling more YAML isn't something we're all yearning to do. Fortunately, there's a better way. Introducing Cluster API bindings for TypeScript, Go, and Python. In this talk, I'll introduce you to managing Cluster API through your favourite programming languages.

Speakers

David McKay

Senior Developer Advocate, Equinix Metal

David is a Senior Developer Advocate at Equinix Metal, CNCF Ambassador, and a member of the Kubernetes org and release team. As a professional technology magpie, David was an early adopter of cloud, container, and cloud-native technologies; crossing the murky waters of AWS in 2008... Read More →

Cluster API as Code pdf

Plain Text Transcript 47 OCBR 2341

Thursday May 6, 2021 11:35 - 12:10 CEST
Operations Theater

Operations

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

11:35 CEST

The Art of Hiding Yourself - Lorenzo Fontana, Sysdig

LINK TO VIDEO RECORDING

Kubernetes security is an ongoing effort today. In this talk we look at how a hacker would attempt to remain anonymous while compromising a Kubernetes cluster. Seconds after a node or a cluster are compromised, the bad actors start to take measures to make sure their hard work can profit for a while. What do they do? They start hiding their traces. Depending on the attack vector, they will need to hide their traces at multiple levels. They will begin by asking themselves some questions: - Are there are audit log mechanisms? - Kubernetes audit log is enabled? Can I tamper it? - There is deep packet inspection? Can I tamper it? - How to hide processes, containers, tasks to the owners? - There’s any non-conventional place where I can put files? - What about hiding my files in the kubernetes etcd? - How can I hide the network connections I make? In this talk we are going to discuss the broader picture of how the second part of an attack is handled by a bad actor.

Speakers

Lorenzo Fontana

Independent

deck pdf

Plain Text Transcript 53 LRJD 9658

Thursday May 6, 2021 11:35 - 12:10 CEST
Security Theater

Security + Identity + Policy

Content Experience Level Beginner (Very basic information)

12:15 CEST

Project Office Hours: KEDA

RSVP for KEDA Project Office Hours here: https://community.cncf.io/e/mpj2bq/

>> Full list of Project Office Hours

Thursday May 6, 2021 12:15 - 13:15 CEST
Project Office Hours

Project Office Hours

12:15 CEST

Project Office Hours: LitmusChaos

RSVP for LitmusChaos Project Office Hours here: https://community.cncf.io/e/mngfe4/

>> Full list of Project Office Hours

Thursday May 6, 2021 12:15 - 13:15 CEST
Project Office Hours

Project Office Hours

12:15 CEST

Project Office Hours: Vitess

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Vitess Project Office Hours here: https://community.cncf.io/e/mrvbt9/

>> Full list of Project Office Hours

Thursday May 6, 2021 12:15 - 13:15 CEST
Project Office Hours

Project Office Hours

12:25 CEST

Hacking into Kubernetes Security for Beginners - Ellen Körbes, Tilt & Tabitha Sable, Datadog

LINK TO VIDEO RECORDING

While Kubernetes can be challenging to newcomers, Kubernetes security overwhelms even the most seasoned professionals. It's a big challenge, so where should you even start? In this talk, Ellen and Tabitha will present an overview of concerns in Kubernetes security. And not only that: they’ll exploit issues along the way! Topics covered will include RBAC, admission control, and vulnerabilities in Kubernetes, Linux, your code, and underlying dependencies. You'll learn a mental framework, see its real-world impact, and leave with the knowledge you need to be able to “look it up, baby."

Speakers

V Körbes

Senior Product Line Manager, VMware

At VMware, V works on security for Tanzu Kubernetes Platform. Before that, they’ve done extensive work in the development experience side of the Kubernetes ecosystem, as Head of Product at Tilt, and previously at Garden. They got their start in the ecosystem by building Kubernetes... Read More →

Tabitha Sable

Staff Engineer, Datadog

Hacking K8s Beginners pdf

Plain Text Transcript 37 NONB 2223

Thursday May 6, 2021 12:25 - 13:00 CEST
101 Theater

101 Track

Content Experience Level Beginner (Very basic information)
Student Track Yes
Presentation Slides Attached Yes

12:25 CEST

BuildKit CLI for kubectl: A New Way to Build Container Images - Daniel Hiltgen & Patrick Devine, VMware

LINK TO VIDEO RECORDING

The Dockerfile is a tremendously popular format used to build container images. Various projects exist that focus on CI for Dockerfiles inside a kubernetes cluster, but what about developers and their inner loop? In this talk we’ll introduce a new CLI plugin optimized for developers which implements a familiar UX for building container images. It utilizes a powerful open source component called BuildKit to build Dockerfiles into images directly inside your Kubernetes cluster. When you build images, they are immediately available on the cluster for testing without requiring pushing to an external registry, providing an extremely efficient inner loop for development. The builder supports the two most popular container runtimes–containerd and dockerd–and will auto-detect the correct runtime in most cases. kubectl build -t myimage:latest -f Dockerfile .

Speakers

Daniel Hiltgen

Senior Staff Engineer, VMware

Daniel is a Senior Staff Engineer in the Security Business Unit at VMware. Previously he worked at Docker Inc. as a tech lead focusing on their commercial products. With over 20 years of industry experience in software development and technical leadership, Daniel has broad experience... Read More →

Patrick Devine

Senior Staff Engineer, VMware

Patrick is a Senior Staff Engineer in VMware’s Security Business Unit. He previously worked at Docker Inc. as a Functional Architect and Product Line Manager for Docker Hub and Docker Trusted Registry.

BuildKit CLI for kubectl DanielHiltgen PatrickDevine 50621 v1 pdf

Thursday May 6, 2021 12:25 - 13:00 CEST
App & Dev Theater

Application + Development

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

12:25 CEST

Running Cache-Efficient Builds at Scale on Kubernetes with BuildKit - Gautier Delorme, Apple Inc.

LINK TO VIDEO RECORDING

Many organizations already deploy services to Kubernetes, but to fully transition from bare-metal to ephemeral infrastructure they need a cache-efficient way to run build systems on top of Kubernetes (e.g. to build docker images). In this talk, Gautier Delorme will demonstrate how to use rootless and daemonless BuildKit to run secure, fast and cache-efficient builds in Kubernetes. As an operator, you will learn how to leverage BuildKit caching mechanisms and Kubernetes Scheduler features to scale your build systems and make sure builds always run as fast as they should. As a developer, you will learn how to write secure and cache-efficient Dockerfile using new features (e.g. RUN --mount flag) to produce docker images or any other type of artifacts.

Speakers

Gautier Delorme

Software Engineer, Apple

Gautier Delorme is a Software Engineer at Apple with a focus on Kubernetes, open source and cloud-native technologies. He is working with his team on Automation and Orchestration systems on top of Kubernetes.

Running cache efficient builds at scale on kubernetes with buildkit pdf

Plain Text Transcript 40 XLWN 3295

Thursday May 6, 2021 12:25 - 13:00 CEST
CI/CD Theater

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

12:25 CEST

Building a Community: How Cortex Went from a Vendor Project to a Community - Goutham Veeramachaneni, Grafana Labs

LINK TO VIDEO RECORDING

In 2018, Cortex was largely vendor-driven, and almost no one other than maintainers could run it. Its docs were lacking; you had to read the code instead. While that might be acceptable for a new project, it's not for wide adoption. Over the last few years, since joining the CNCF, we have put a focus on building a vibrant community. It was a long and arduous journey, but we're very happy with the healthy community we have today, with maintainers from 5 different companies and a 5x increase in activity on the Cortex Slack and GitHub! While our _public_ adopters document lists more than 15 companies, with several providing Cortex as a service, we have a lot more companies running it, from international banks and Fortune 50 enterprises to small startups. In this talk, we will walk through the key changes we made and how our philosophy on community-building helped us thrive and led to fruitful collaboration with sibling projects Thanos and Prometheus.

Speakers

Gouthan Veeramachaneni

Senior Software Engineer, Grafana Labs

Goutham is a developer from India who started his journey as an infra intern at a large company where he worked on deploying Prometheus. After the initial encounter, he started contributing to Prometheus and interned with CoreOS, working on Prometheus's new storage engine. He is now... Read More →

Plain Text Transcript 32 XNGI 1333

Thursday May 6, 2021 12:25 - 13:00 CEST
Community Theater

Community

Content Experience Level Any (No experience required)

12:25 CEST

Akri: Making IoT Devices Accessible to Your Edge Kubernetes Clusters - Kate Goldenring, Microsoft & Jiří Appl, Microsoft

LINK TO VIDEO RECORDING

As Kubernetes solutions move to the edge, nodes are taken out of the homogeneity of the cloud and put in environments surrounded by an array of IoT devices such as sensors and cameras. These devices are often too small to run Kubernetes, so how can they be dynamically leveraged by Kubernetes workloads? Akri is an extensible open-source Kubernetes-native project that aims to provide a solution. Akri provides an abstraction layer, removing the work of finding, utilizing, and monitoring the availability of IoT devices. We’ll dive into how Akri can discover IoT devices, advertise them as resources in your cluster, and then automatically deploy workloads to utilize those devices. Akri handles the dynamic appearance and disappearance of devices and automatically creates services, removing the need for an application to track the state of devices, pods, or nodes. Come learn about Akri and how it can be leveraged to build a more connected edge with Kubernetes!

Speakers

Kate Goldenring

Senior Software Engineer, Fermyon

Kate Goldenring is a senior software engineer at Fermyon and serves as co-chair of the Cloud Native Computing Foundation IoT Edge Working Group. She is an open-source developer who is drawn to building the best of what’s to come, maintaining projects focused on serverless WebAssembly... Read More →

Jiří Appl

Principal Software Engineer, Microsoft

Jiří is a Principal Software Engineer on the Edge OS team in Azure and is the original architect of Akri. He has a passion for small IoT devices and small operating systems, which is his area of technology focus at Microsoft. As a geek at heart, Jirí loves to play with technology... Read More →

Akri KubeCon EU 2021 pdf

Plain Text Transcript 44 CDDD 5467

Thursday May 6, 2021 12:25 - 13:00 CEST
K8s Theater

Customizing + Extending Kubernetes

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

12:25 CEST

Automated Machine Learning Performance Evaluation - Alejandro Saucedo, The Institute for Ethical AI & Machine Learning

LINK TO VIDEO RECORDING

## Overview Deployed production machine learning models come on different sizes, shapes and flavours when deployed in cloud native infrastructure - each with varying hardware (and software) requirements. Whether it is RAM, CPU, GPU or Disk Space, there won't be an optimal global configuration for all your models' training and inference. In this talk we will cover the motivations and concepts around general benchmarking in software, as well as the key nuanced requirements to leverage these concepts in machine learning systems. We will learn about the theory behind benchmarking specifically on machine learning models, as well as the parameters that need to be accounted for, including latency, throughput, spikes, performance percentiles, outliers, between others. We will dive into a hands on example, where we will benchmark a model across multiple parameters to identify optimal performance on a specific hardware using Argo, Kubernetes and Seldon Core.

Speakers

Alejandro Saucedo

Engineering Director, Seldon Technologies

Alejandro Saucedo is the Director of Machine Learning Engineering at Seldon Technologies, where he leads teams of machine learning engineers focused on the scalability and extensibility of machine learning deployment and monitoring products with over 5 million installations. Alejandro... Read More →

Automating Machine Learning Benchmarking at Scale pdf

Plain Text Transcript 38 PZPI 2407

Thursday May 6, 2021 12:25 - 13:00 CEST
ML Theater

Machine Learning + Data

Content Experience Level Beginner (Very basic information)
Presentation Slides Attached Yes

12:25 CEST

Cloud-Native Computing For Research Users - Jamie Poole, G-Research & Ricardo Rocha, CERN

LINK TO VIDEO RECORDING

The CNCF Research User Group’s purpose is to function as a focal point for the discussion and advancement of Research Computing using “Cloud Native” technologies. This includes enumerating current practices, identifying gaps, and directing effort to improve the Research Cloud Computing ecosystem. In this session we will introduce the user group, discuss our mission and the particular challenges that research institutions face that we aim to meet with cloud-native technology. We will hear from speakers from public and private research institutions such as CERN (physics) and G-Research (fintech) and discuss various relevant projects in flight.

Speakers

Ricardo Rocha

Computing Engineer, CERN

Jamie Poole

Compute Platform Engineering Manager, G-Research

Jamie Poole is the manager of the Compute Platform Engineering group at G-Research. He has an academic background in mathematics and physics, and professional background in software development and platforms in the government, defence and financial sectors. He is very enthusiastic... Read More →

Plain Text Transcript 35 VMHR 0568

Thursday May 6, 2021 12:25 - 13:00 CEST
Maintainer Track Theater

Maintainer Track Sessions

12:25 CEST

FalcOMG That's AWESOME - New Things, Fixed Things, and YOU Panel - Leo Di Donato, Leonardo Grasso & Radhika Puthiyetath, Sysdig & Thomas Labarussias, Qonto

LINK TO VIDEO RECORDING

On this panel, the Falco maintainers will discuss the great things happening in Falco a cloud-native runtime security project, the de facto Kubernetes threat detection engine. This panel of key Falco maintainers will cover: *Brief Overview of Falco and its history *Updates on Falco and its subprojects (Falco, Falco sidekick etc) *Driver Donation(libsinsp , libscap, the kernel module driver the eBPF driver source) and what this means for the community *Roadmap Capabilities. Whats Coming! *Interactive QA on what you would like to see in the project

Speakers

Radhika Puthiyetath

Technical Writer, Sysdig

Radhika loves to call herself a technically-oriented technical writer and a community enabler. She is passionate about Open Source technologies and has been contributing since 2006. Radhika holds a bachelor’s degree in Computer Science and a master's degree in Mass Communication... Read More →

Leonardo Di Donato

Senior Software Engineer

Leo is an Open Source Senior Software Engineer with a fondness for Security, eBPF, and Linux in general. He loves to mix such low-level concepts with Kubernetes and Cloud Native stuff. He's a core maintainer of Falco, the CNCF tool for Runtime Security, focusing on its low-level tech... Read More →

Leonardo Grasso

Open Source Software Engineer, Sysdig

Leonardo Grasso is an Open Source Software Engineer at Sysdig, based in Italy. He has a strong passion for software design and has long professional experience in the R&D field. Leonardo loves Linux, Kubernetes, Containers, Security, and building tools other engineers would like to... Read More →

Thomas Labarussias

SRE, Qonto

Thomas is a Site Reliability Engineer for Qonto, a modern banking for SMEs and freelancers, where he manages their Kubernetes clusters and the enthusiastic tools around, like ArgoCD, Traefik, Prometheus. He assisted for many years pure-players and e-business companies for a large... Read More →

FalcOMG That's AWESOME New Things, Fixed Things, and YOU [KubeCon + CloudNativeCon Europe 2021] pdf

Plain Text Transcript 36 MEAH 6039

Thursday May 6, 2021 12:25 - 13:00 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:25 CEST

Flux: Multi-tenancy Deep Dive - Philip Laine, Xenit

LINK TO VIDEO RECORDING

Flux is a tool for keeping Kubernetes clusters in sync with sources of configuration (like Git repositories) and automating updates to the configuration when there is new code to deploy. In this presentation, we will look at how Flux can be used in multi-tenant environments to simplify the day to day work of developers and Kubernetes cluster operators.

Speakers

Philip Laine

DevOps Engineer, Xenit

Philip is a DevOps Engineer at Xenit where he develops and operates a multi tenant Kubernetes service for multiple customers. He is also a maintainer for the Flux project.

KubeCon 2021 Flux Maintainer Talk pdf

Plain Text Transcript 39 SFHD 0595

Thursday May 6, 2021 12:25 - 13:00 CEST
Maintainer Track Theater

Maintainer Track Sessions

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

12:25 CEST

Intro + DeepDive: Kubernetes Cloud Provider Project for IBM Cloud - Sahdev Zala & Richard Theis, IBM

LINK TO VIDEO RECORDING

In this session, the project leads will provide an overview of the IBM Cloud Provider subproject, its activities, and learning resources. The introduction will be followed by the newly added support in Kubernetes IBM Cluster API Provider for IBM VPC Gen 2 and PowerVS. The session will also deep dive into the IBM Cloud Provider and provide updates on the general Cloud Provider SIG. This session will be of value to a broad audience including active contributors, new contributors, and those with an interest in the IBM Cloud Provider features and capabilities or the Kubernetes Cloud Provider in general.

Speakers

Richard Theis

Senior Software Engineer, IBM

Richard Theis is a Senior Software Engineer in the IBM Cloud division. In his current role, Richard leads Kubernetes and OpenShift update development and support for IBM Cloud Kubernetes Service and Red Hat OpenShift on IBM Cloud. He is a co-chair of the Kubernetes provider IBM Cloud... Read More →

Sahdev P. Zala

Senior Software Engineer, IBM

Sahdev P. Zala is a senior software engineer and open source developer at IBM. He is a CNCF etcd project maintainer, Kubernetes contributor and co-lead of Kubernetes Provider IBM Cloud. Previously, Sahdev was a core contributor in OpenStack and a Technical Committee member of OASIS... Read More →

KubeCon EU 2021 SahdevZalaRichardTheis pdf

Plain Text Transcript 34 WXDH 9365

Thursday May 6, 2021 12:25 - 13:00 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:25 CEST

Jaeger Intro and Deep Dive - Prithvi Raj, Uber & Joe Elliott, Grafana Labs

LINK TO VIDEO RECORDING

In this session we will cover both introductory and deep dive material for the Jaeger distributed tracing backend. For intro we will review methods of getting started installing Jaeger and the basics of distributed tracing. For the deep dive we will be discuss the future of Jaeger built on top of the OpenTelemetry collector and what that means for Jaeger architecture, future development and features. Jaeger is the most popular open source distributed tracing backend. Whether your goal is to get acquainted with Jaeger and distributed tracing or to keep abreast with the latest and greatest, please join us!

Speakers

Prithvi Raj

Software Engineer, Uber

Prithvi is a Software Engineer at Uber, working in the telemetry platform team. He has been a Jaeger maintainer since 2016, and is now spending most of his time on realizing ways to get more out of tracing at Uber.When not in front of a computer, he can be found behind a camera, or... Read More →

Joe Elliott

Principal Software Engineer, Grafana Labs

Joe Elliott has been working as an SRE/Devops/Infrastraucture person with Kubernetes for the last 6 years. Currently a Senior Engineer at Grafana Labs, he is the creator of Tempo, a Jaeger maintainer, and has contributed to the OpenTelemetry Collector, Loki and Cortex. When he's... Read More →

Jaeger Kubecon EU 2021 pdf

Jaeger Intro Kubecon 2021 pdf

Plain Text Transcript 33 TMUY 7128

Thursday May 6, 2021 12:25 - 13:00 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:25 CEST

SIG Contributor Experience Deep Dive - Bob Killen, Google; Alison Dowdney, Weaveworks; Christoph Blecker, Red Hat; Nikhita Raghunath, VMware

LINK TO VIDEO RECORDING

The Kubernetes Contributor Experience Special Interest Group (SIG) is tasked with developing and sustaining a healthy contributor community. Things like feature velocity, community scaling, mentoring, pull request latency, and more all fall within scope of the SIG. In this talk, we will provide an introduction to SIG Contributor Experience, its role within the project, and dive into the various subprojects that support its mission. Additionally, we will provide a general community update and go over how you can get involved.

Speakers

Bob Killen

OSS Program Manager, Google

Bob is a Program Manager at the Google Open Source Programs Office with a focus on Cloud Native computing. He serves the Kubernetes project as a Steering Committee member and chair of the Contributor Experience SIG. Bob comes from an academic background, spending 15 years at the University... Read More →

Christoph Blecker

Senior Principal Site Reliability Engineer, Red Hat

Christoph is an Architect and Senior Principal SRE on Red Hat's OpenShift team and a contributor to the Kubernetes project. He's a Technical Lead for SIG Contributor Experience, a member of the Kubernetes Steering Committee, and a regular contributor to SIG Architecture, SIG Testing... Read More →

Alison Dowdney

-, -

Alison is a Customer Reliability Engineer at Weaveworks, a CNCF ambassador and an active member of SIG Contributor Experience for the Kubernetes project. She is passionate about helping others get more involved with the cloud native community. Coming from a startup background, she... Read More →

Nikhita Raghunath

Staff Engineer, VMware

Nikhita is a staff software engineer at VMware and a core maintainer of the Kubernetes project. She is a member of the CNCF Technical Oversight Committee overseeing all technical matters of the cloud native ecosystem and has won the CNCF Top Committer Award for her technical contributions... Read More →

Introduction to SIG Contributor Experience KubeConEU 2021 pdf

Plain Text Transcript 42 YYPJ 3760

Thursday May 6, 2021 12:25 - 13:00 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

12:25 CEST

Resource Requests and Limits Under the Hood: The Journey of a Pod Spec - Kohei Ota, Hewlett Packard Enterprise & Kaslin Fields, Google

LINK TO VIDEO RECORDING

Let's learn how resource requests and limits work by illustrating what is really happening inside of your cluster - literally! CNCF Ambassadors Kohei Ota and Kaslin Fields will use fun hand-drawn artwork to walk you through understanding what your cluster is really doing when you set a resource restriction in Kubernetes. Engineers and their applications are going through a transformation. From running apps on a machine or VM directly, to running it in containers, and then to container orchestration via Kubernetes. During this journey, it is easy to become disconnected from what’s really happening on the underlying infrastructure. By learning what Kubernetes is doing under the hood, you can get a deep understanding for how Kubernetes manages compute resources. This talk will cover what happens, starting from setting the restriction on a Kubernetes Pod, then how these parameters will be delivered from the Pod spec to the Linux kernel layer through kubelet and CRI/OCI runtimes.

Speakers

Kohei Ota

Senior Field Engineer, Apple

Kaslin Fields

Developer Advocate, Google

Resource Requests and Limits Under the Hood The Journey of a Pod Spec pdf

Plain Text Transcript 41 ZILP 1044

Thursday May 6, 2021 12:25 - 13:00 CEST
Operations Theater

Operations

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

12:25 CEST

Compliance Beyond Security: a Cloud Native GDPR Implementation Experience - Johan Tordsson, Elastisys AB

LINK TO VIDEO RECORDING

Regulatory compliance has traditionally been focused on core system aspects such as availability, data integrity, and overall IT system security. Compliance has been achieved through various processes and (security) tooling. With recent evolution of the regulatory landscape (including the European GDPR, Californian CCPA, and Japanese APPI legislations), there is a stronger focus on end user rights to data, in particular the right to be forgotten. This session will discuss the technical challenges of this movement and give some recommendations for how to address these issues in a cloud native setting. This includes how to handle (and timely remove) data across the full stack, including logs, backups, and any other sort of stateful resources.

Speakers

Johan Tordsson

CTO, Elastisys AB

Johan Tordsson has extensive experience in working as technical manager on various cloud native implementation projects for companies in regulated industry vertical, as well as the public sector. He has also given quite a few tutorials on Kubernetes and cloud native transformations... Read More →

Compliance Beyond Security a cloud native GDPR implementation experience. Johan Tordsson Elastisys pdf

Plain Text Transcript 43 EPYC 4790

Thursday May 6, 2021 12:25 - 13:00 CEST
Security Theater

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

13:00 CEST

Break

Thursday May 6, 2021 13:00 - 13:30 CEST
TBA

Breaks

13:15 CEST

Project Office Hours: Thanos

RSVP for Thanos Project Office Hours here: https://community.cncf.io/e/mrxfpm/

>> Full list of Project Office Hours

Thursday May 6, 2021 13:15 - 14:15 CEST
Project Office Hours

Project Office Hours

13:15 CEST

Project Office Hours: Tremor

RSVP for Tremor Project Office Hours here: https://community.cncf.io/e/m9q3ug/

>> Full list of Project Office Hours

Thursday May 6, 2021 13:15 - 14:15 CEST
Project Office Hours

Project Office Hours

13:30 CEST

Why Use Managed Kubernetes?: It's Dangerous to Go Alone! - Seth McCombs, Workday

LINK TO VIDEO RECORDING

Seth will cover common misconceptions and dispel myths around the usage of managed Kubernetes services. Without focus on specific services in particular, more of a push towards acceptance of managed services, especially if you're an engineer or leader that is considering Kubernetes but don't know how to get started. When discussing a managed Kubernetes service, responses have range from “why?” or “managed services aren’t as powerful” or the all too common reference to "vendor lock in" - often leaving those on the receiving end with a feeling of being lesser. Viewers will walk away from this session with more acceptance of managed services, and realize that using a managed service doesn't make one a bad engineer. There are many benefits to be had adoption of Kubernetes, and it's not a contest to prove how much you can build. If you have a small team and want to use Kubernetes, then a managed service can be the first step or only step towards Kubernetes usage.

Speakers

Seth McCombs

Software Development Engineer III, Workday

Seth McCombs is a Software Development Engineer, III at Workday - currently helping build the company’s future focused Kubernetes based platform on various cloud providers. Past roles have ranged from Infrastructure Engineer, DevOps Engineer and Site Reliability Engineer, Seth has... Read More →

why use managed k8s pdf

Plain Text Transcript 26 EMKS 6282

Thursday May 6, 2021 13:30 - 14:05 CEST
101 Theater

101 Track

Content Experience Level Any (No experience required)
Student Track Yes
Presentation Slides Attached Yes

13:30 CEST

Kubernetes on Windows - A Journey - Jerry Lozano, RX-M LLC

LINK TO VIDEO RECORDING

Kubernetes is almost always used in a Linux environment. Tutorials and examples, regardless of hardware platform, always run some distribution of Linux. Yet since 1.14, Kubernetes worker nodes are actively supported on Windows. This session describes one developer’s journey of designing, developing, installing, and deploying Kubernetes on modern Windows Server. The need for microservice implementations on Windows is just as valid as it is on Linux. Windows Server is hosted on at least 3-times the number of servers in use in the world and market share is still increasing (Statista). Most of these servers run enterprise applications that must meet the requirements for scalability, availability, and maintainability that any modern application faces. This session describes the benefits of hosting Kubernetes nodes on Windows Server, similarities and differences from execution on Linux, and lessons learned when implementing a microservice application with the Windows infrastructure.

Speakers

Jerry Lozano

Senior Consultant, RX-M LLC

Jerry Lozano is a senior consultant with RX-M LLC, a cloud native consulting and training company. Jerry is an electrical engineer, with over 30 years of software development experience with several firms. For most of his career, Jerry has focused on system level development of the... Read More →

Windows On Kubernetes KubeConEU Virtual 2020 pdf

Plain Text Transcript 19 QDDU 2192

Thursday May 6, 2021 13:30 - 14:05 CEST
App & Dev Theater

Application + Development

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

13:30 CEST

Live Experiments with K8s Applications: Pitfalls and How to Avoid Them - Fabio Oliveira & Srinivasan Parthasarathy, IBM Research

LINK TO VIDEO RECORDING

Your K8s apps are instrumented for observability. You are using ingress controllers/service meshes in your production K8s cluster and can shift traffic between different versions of your app. You wish to take your CI/CD to the next level by introducing metrics-driven automated rollouts using live experiments like canary, A/B, and A/B/n comparisons. What could go wrong? We demonstrate how subtle differences in the design of the experiment---how metrics are collected, queried, and used; the traffic shifting policy; the number of requests sent to different versions during the experiment and its duration; and when/how it is terminated---can lead to dramatically different outcomes, and in turn, directly impact the version of the app chosen to run in production. We also discuss simple and statistically effective remedies for the above problem, so that experiments become repeatable and their outcomes are more accurate and trustworthy.

Speakers

Fabio Oliveira

Research Scientist, IBM Research

Fabio is a Research Scientist and Manager at IBM Research where he leads the Cloud-native Computing and Analytics team in the Hybrid Cloud Platform Research Department. Fabio has co-founded the iter8 open source project and has worked on several projects related to cloud computing... Read More →

Srinivasan Parthasarathy

Senior Research Scientist and Manager, DevSecOps, IBM

Sri is a senior research scientist and manager at IBM Research, where he leads the DevSecOps group. Sri co-founded the Iter8 open-source project, and has presented at Kubecon EU 2020 and 2021, and at multiple community meetups like Knative and KFServing. He holds 25+ patents and has... Read More →

iter8 pdf

Plain Text Transcript 21 WEXD 6666

Thursday May 6, 2021 13:30 - 14:05 CEST
CI/CD Theater

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

13:30 CEST

Improving the Impact of Diversity Initiatives in Africa - Abubakar Siddiq Ango, GitLab

LINK TO VIDEO RECORDING

Africa as a whole is making giant strides in terms of technology adoption but job and educational opportunities remain scarce. Not everyone has the chance to be in the right place at the right time to access these opportunities.. Thankfully, alot of organizations have been creating new initiatives and programs to help Africans better access these opportunities. Despite these new intiatives, the impact has been limited. It will take more time and continued investment for them to generate a meaningful impact. . Some of these programs also struggle from a lack of experienced leadership, an inability to target the right audience, and unreasonable expectations. In this talk, Abubakar will be sharing how we can improve the success of outreach in Africa by approaching Africa as a continent and not as a single entity, how to reach the right audience, and how to get traction for your diversity programs.

Speakers

Abubakar Siddiq Ango

Developer Evangelism Program Manager, GitLab

Abubakar Siddiq Ango is a Developer Evangelism Program Manager at GitLab, where he finds better ways for the Developer Evangelism team to engage with the community and measure its impact. He is a Certified Kubernetes Security Specialist and when not working, he engages with the community... Read More →

KubeCon EU 2021 Talk pdf

Plain Text Transcript 25 TLLE 9437

Thursday May 6, 2021 13:30 - 14:05 CEST
Community Theater

Community

Content Experience Level Any (No experience required)
Student Track Yes
Presentation Slides Attached Yes

13:30 CEST

Optimizing Knowledge Distillation Training With Volcano - Ti Zhou, Baidu & William Wang, Huawei

LINK TO VIDEO RECORDING

Knowledge distillation is a classic model compression technology, which is a way of migrating knowledge from a complex model (Teacher) to another lightweight model (Student) to achieve model compression. EDL use Volcano as scheduler to deploy the Teacher model to an online Kubernetes GPU inference card cluster, and use the resources of the online inference GPU card to increase the throughput of the teacher model in knowledge distillation. At the same time, because the Teacher model can be flexibly scheduled by Volcano, there is no need to worry about task failures caused by preemption of online instances during peak hours. You can also deploy the Teacher model to cluster fragmented resources, or low-usage resources such as k40, to make full use of the cluster's idle and fragmented resources. In this lecture, we will explain in detail how to use Volcano to optimize elastic distillation training and give the corresponding benchmark data.

Speakers

Ti Zhou

Senior Architect, Baidu

Ti Zhou, Kubernetes member, LF AI & Data TAC member, currently serves as senior architect in Baidu Inc, focusing on PaddlePaddle Deep Learning Framework and Baidu Cloud Container Engine, helps developers to deploy cloud-native machine learning on private and public cloud.

William Wang

Software Architect, HuaWei

William Wang, Volcano community tech-lead, experienced in batch system, bigdata and AI workload performance acceleration.Currently working on multi-cluster scheduling project and hybird scheduling project.

KubeCon EU 2021 TiZhou LeiboWang v1 pdf

Plain Text Transcript 22 UKWA 7332

Thursday May 6, 2021 13:30 - 14:05 CEST
ML Theater

Machine Learning + Data

Content Experience Level Beginner (Very basic information)
Presentation Slides Attached Yes

13:30 CEST

"Extend All The Things!": Cloud Provider Edition - Joe Betz, Google

LINK TO VIDEO RECORDING

Kubernetes integrates with a ton of Cloud Provider platforms, and as part of the "Cloud Provider Extraction" effort, all platform integration code in the main Kubernetes code base is being moved out of into separate repos. To make this possible, extensibility points have been introduced that create interesting ways to extend Kubernetes, including Cloud Controller Managers, Credential Provider Extensions and the Konnectivity server and agent.

Learn the details from an engineer who helped bring the CRD and webhook extensibility mechanisms to GA, and who leads the adoption of extracted Cloud Providers at Google. How do these new extensibility points work? Why are they important? What can you do with them? We will discuss each extension point in detail, covering best practices learned as we migrated cloud providers to them.

The Cloud Provider abstraction delivers cross platform portability. We’ll close with details on how you (attn: tooling authors, cloud operators) can get involved with the community effort martialed by SIG Cloud Provider.

Speakers

Joe Betz

Staff Software Engineer, Google

Joe Betz is a contributor to Kubernetes with a focus on extensibility features including custom resources, admission webhooks, and CEL. Joe has also contributed to etcd as a project maintainer.

Extend all the things pdf

Plain Text Transcript 23 DPQG 1356

Thursday May 6, 2021 13:30 - 14:05 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:30 CEST

Cloud Native Network Function (CNF) WG: K8s Best Practices for Telco Apps - Taylor Carpenter, Vulk Coop & Bill Mulligan, Cloud Native Computing Foundation

LINK TO VIDEO RECORDING

The Cloud Native Network Function (CNF) Working Group is focused on identifying cloud native best practices for networking applications in order to help CNF Developers and telco operators best utilize the capabilities of Kubernetes. In the session, attendees will get an overview of the working group, updates since its kick-off at KubeCon NA 2020, what’s next, and how to get involved. Ready to get started now? Join the CNF WG mailing list at https://lists.cncf.io/g/cnf-wg or talk to us in the #cnf-wg channel of the CNCF Slack. Recordings of previous CNF WG meetings are available at https://youtube.com/playlist?list=PLj6h78yzYM2PyMYvw5wiH01hthFb0qrOn.

Speakers

Taylor Carpenter

CNF WG Co-Chair, Partner Vulk Coop, Vulk Coop

Partner at Vulk Cooperative & CNCF CNF Working Group Co-Chair. Taylor is helping the Telecom industry to best utilize cloud native technologies like Kubernetes and to build a Cloud native Telecom Community. 4 years as a liaison between the cloud native and telecom communities. Open... Read More →

Bill Mulligan

Marketing Manager, Cloud Native Computing Foundation

[KubeCon EU 2021] CNF WG K8s Best Practices for Telco Apps pdf

Plain Text Transcript 29 PJVZ 7425

Thursday May 6, 2021 13:30 - 14:05 CEST
Maintainer Track Theater

Maintainer Track Sessions

13:30 CEST

CRI-O Still Loves Kubernetes - Sasha Grunert, Peter Hunt, Urvashi Mohnani & Mrunal Patel, Red Hat

LINK TO VIDEO RECORDING

In Kubernetes 1.20, support for the dockershim was deprecated, leaving many wondering what will take its place. Wonder no longer: CRI-O is a container runtime written exclusively for Kubernetes, and is ready to take the dockershim’s place. In addition to being a standard component for deploying secure and stable Kubernetes clusters, CRI-O has the unique advantage of being able to tailor its behavior to the needs of the Kubelet. In this talk, the maintainers of CRI-O will provide an update about the latest feature developments, as well as live demonstrating typical real world use cases around them. Join the CRI-O maintainers as they walk through the latest improvements in communication with the Kubelet under load, container stats reporting, user namespaces, and seccomp profile generation, as well as a general project update. After this session, you should know more about how CRI-O works in action and why it’s the perfect choice for your Kubernetes cluster!

Speakers

Urvashi Mohnani

Senior Software Engineer, Red Hat

Urvashi Mohnani is a Senior Softwar Engineer on the OpenShift Runtimes team at Red Hat. She has spent the last few years working on container technologies such as podman, buildah, cri-o, and OpenShift. She has given talks at multiple conferences about her work and also spends some... Read More →

Peter Hunt

Red Hat

Peter Hunt is a Senior Software Engineer working at Red Hat. Passionate about free software, Peter focuses on maintaining CRI-O, attending SIG node, and ~writing~ squashing bugs. Outside of the virtual world, Peter likes collecting floral-printed pants, gardening, and dancing.

Mrunal Patel

Senior Principal Software Engineer, Red Hat

Mrunal Patel is a Senior Principal Software Engineer at Red Hat working on containers for Openshift. He is a maintainer of runc/libcontainer and the OCI runtime specification. He started the CRI-O runtime. He is active across various projects in the kubernetes SIG Node. He has also... Read More →

kubecon eu 2021 crio pdf

Plain Text Transcript 18 GKMZ 8730

Thursday May 6, 2021 13:30 - 14:05 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:30 CEST

Kubernetes VMware UG: What’s New for K8s Users on VMware Infrastructure - Steven Wong & Myles Gray, VMware

LINK TO VIDEO RECORDING

The K8s VMware User Group exists to serve users, and authors of tooling and support applications for running K8s on vSphere and desktop hypervisors. Agenda: -Users who initially deployed K8s using the legacy in-tree cloud provider and storage plugins have already received a deprecation warning and will be facing a migration in the 1.22-1.24 release timeframe - we'll cover what this means for those affected. -Recent and upcoming features and changes. -Top 3 under-recognized do’s and don’t’s for K8s on vSphere. -How to get involved in the User Group, to meet other users, and share advice and experiences.

Speakers

Steven Wong

VMware

Steve Wong has been active in the Kubernetes community since 2015. He is a co chair of the CNCF Working Group. Steve is co-chair of the VMware User Group on the Kubernetes project. He has implemented industrial control systems for many factories, pipelines, and process control systems... Read More →

Myles Gray

Staff Technical Marketing Architect, VMware

Kubernetes VMare UG StevenWongMylesGray 50621 v1 pdf

Plain Text Transcript 31 SAFB 8112

Thursday May 6, 2021 13:30 - 14:05 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:30 CEST

Overview and State of Linkerd - William Morgan & Matei David, Buoyant, Inc.

LINK TO VIDEO RECORDING

In this talk, maintainers from the Linkerd project will present an overview of the project and an update on upcoming releases. They'll cover what Linkerd is and how it compares to other service meshes; what the latest features and functionality are; what to expect in upcoming releases; and how you can get involved in one of the CNCF's most talked-about projects. This talk will cover Linkerd's modular control plane (2.10) and upcoming policy (2.11) features, as well as the latest on Linkerd's Rust micro-proxy, Linkerd2-proxy.

Speakers

William Morgan

CEO, Buoyant

Matei David

Software Engineer, Buoyant, Inc.

Matei David is a software engineer at Buoyant and one of the maintainers of the Linkerd project, the CNCF's graduated service mesh. Passionate about open source, Matei got involved in the cloud native space early on in his career. As a Community Bridge Mentee (a CNCF program for young... Read More →

Overview and State of Linkerd Kubecon EU 2021 pdf

Plain Text Transcript 30 NBMH 1037

Thursday May 6, 2021 13:30 - 14:05 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:30 CEST

SIG Scheduling Intro and Deep Dive - Mike Dame & Jan Chaloupka, Red Hat

LINK TO VIDEO RECORDING

SIG Scheduling is responsible for kube-scheduler and its related subprojects such as the scheduling framework and Descheduler. These projects share the common goal of enabling users and developers to ensure that pods are assigned to the appropriate nodes based on various scheduling criteria. This talk will introduce attendees to SIG-Scheduling with an overview of the current goals and ongoing work within the SIG, as well as opportunities for new contributors to get involved. About half of the time will be devoted to informal Q&A and feedback.

Speakers

Jan Chaloupka

Senior Software Engineer, Red Hat

Interested in math in computer science, scheduling in Kubernetes, Go code data flow analysis, beer, guitar, hiking, chilling, traveling

Mike Dame

Senior Software Engineer, Red Hat

Mike is an engineer for Red Hat OpenShift and a sig-scheduling maintainer.

KubeConEU21 SIG Scheduling.pptx pdf

Plain Text Transcript 24 UUJA 2423

Thursday May 6, 2021 13:30 - 14:05 CEST
Maintainer Track Theater

Maintainer Track Sessions

Presentation Slides Attached Yes

13:30 CEST

Panel Discussion: Cloud Native Networking State of the Union - Raghavan Srinivas, InfoQ; Lin Sun & Christian Posta, Solo.io; Alyssa Wilk & Tim Hockin, Google

Note: LIVE panel. The Cloud Native networking landscape is particularly frightening. With the advent of service mesh and containers being deployed in the tens of thousands, L4/L7 load balancing, plus networking implementations for each public cloud being different, it's important for application developers and devops audiences to understand the nuances of Cloud Native networking.

The panelists, all cloud native networking experts including the Kubernetes Networking SIG chair, etc. will go into some of the fundamental design challenges and address some advanced scalability issues. We will include select questions from the audience as well.

This panel, intended for application developers and devops audience will look at the Cloud Native networking ecosystem, past present and future. Attendees will walk away with a better understanding of the challenges of some of the tools for the trade and how to best implement Cloud Native networking best practices.

Speakers

Rags Srinivas

Developer Advocate, Datastax

Raghavan "Rags" Srinivas (@ragss) works as a Developer Advocate/Architect at Datastax with a mission to help developers build highly scalable and available systems. His areas of focus are containers, microservices, Open Source and DevOps. With an extensive background in both app development... Read More →

Tim Hockin

Distinguished Engineer, Google

Tim has spent most of his career at Google, where he works on Kubernetes and Google Kubernetes Engine (GKE). He is one of the technical leads of the Kubernetes project, and has been part of it since before it was publicly announced. He mostly pays attention to topics like APIs, networking... Read More →

Alyssa Wilk

Senior Staff Software engineer, Google

Alyssa is an Envoy Senior Maintainer and a software engineer at Google. She spent over a decade at Google writing and enhancing the GFE, Google's front-line HTTP proxy, before setting her sights on making Envoy even more awesome than the GFE is.

Christian Posta

Global Field CTO, Solo.io

Christian Posta (@christianposta) is VP, Global Field CTO at Solo.io. He is the author of Istio in Action as well as many other books on cloud-native architecture and is well known in the cloud-native community for being a speaker, blogger (https://blog.christianposta.com) and contributor... Read More →

Lin Sun

Director of Open-Source, Solo.io

Lin is the Director of Open Source at Solo.io and an ex-CNCF ambassador. She has worked on Istio service mesh since 2017 and serves on the Istio Technical Oversight Committee and Steering Committee. Previously, she was a Senior Technical Staff Member and Master Inventor at IBM for... Read More →

May6 Panel Cloud Native Networking Rags Srinivas V2.pptx pdf

Thursday May 6, 2021 13:30 - 14:05 CEST
Networking Theater

Networking

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

13:30 CEST

When Prometheus Can’t Take the Load Anymore - Liron Cohen, Riskified

LINK TO VIDEO RECORDING

Riskified started from using a pair of Prometheus servers in each of its clusters, but soon enough, Prometheus couldn’t take the load anymore. Once it happened, the SRE team started to check what is the best tool for Multi, HA, long-term Prometheus. They decided to check Thanos, Cortex, and M3. In this session, Liron will share her outtakes of the different tools - which tool can provide the best performance and High Availability, the most cost-effective, and the easiest to deploy and operate.
By the end, you’ll get a better understanding of the different tools and which one is the best solution for your use case.

Speakers

Liron Cohen

Site Reliability Engineer, Riskified

Liron is a DevOps Engineer, passionate about learning new things, using cutting-edge technologies, and sharing her knowledge.Currently she is working at Riskified, responsible for designing and implementing DevOps processes and technologies, In charge of multiple Kubernetes environments... Read More →

pdf of kubecon pdf

Plain Text Transcript 20 HPHP 0689

Thursday May 6, 2021 13:30 - 14:05 CEST
Observability Theater

Observability

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

13:30 CEST

COSI: The Common Operating System Interface - Steven Borrelli, Mastercard & Andrew Rynhard, Talos-Systems

LINK TO VIDEO RECORDING

This talk introduces COSI, the Common Operating System Interface, which defines an API for the configuration of container operating systems. While there has been innovation in the development of minimal Linux distributions for running Kubernetes, the distributions diverge from each other in terms of management and API endpoints. Similar to other projects such as the Container Network Interface (CNI) , COSI has a focus on the configuration of the underlying operating system, providing Protocol Buffer definitions and a gRPC API reference implementation for configuration settings such as DNS, network, and kernel settings By utilizing a flexible plugin system, multiple backend implementations can provide a consistent API to consumers. In this talk we’ll review the configuration and APIs of popular container operating systems and Kubelet-node interactions. We will then review the COSI API, the plugin architecture, and demo node management using backend plugins written in Go and Rust.

Speakers

Steven Borrelli

Principal Solutions Engineer, upbound.io

Steven Borrelli is a Principal Software Engineer for Mastercard where he develops infrastructure automation software. Prior to Mastercard, Steven founded aster.is and was a core contributor to the open source Mantl.io project. He has held various roles over the past 20+ years, from... Read More →

Andrew Rynhard

CTO, Talos Systems, Inc.

Andrew Rynhard is the founder and CTO of Talos Systems, and creator of Talos OS. Prior to Talos Systems, Andrew worked as an SRE designing and maintaining Kubernetes Clusters for Virtustream, and LogicMonitor. Andrew has been a long time open source contributor, with contributions... Read More →

COSI KubeconEU 2021 pdf

Plain Text Transcript 27 YNNH 3309

Thursday May 6, 2021 13:30 - 14:05 CEST
Operations Theater

Operations

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

13:30 CEST

Uncovering a Sophisticated Kubernetes Attack in Real-Time - Jed Salazar & Natália Réka Ivánkó, Isovalent

LINK TO VIDEO RECORDING

As Kubernetes adoption continues to explode, the threat actors working on attacks are growing in sophistication. Simple mitigations and security best practices are no longer sufficient alone to protect production workloads. While tools like vulnerability scanning, signed container images, and distroless containers help, constant monitoring must take place in a running environment to ensure it remains safe from compromise. eBPF, an emerging Linux kernel technology, provides us unique visibility directly into any Kubernetes pod. Because pods on a node share a single kernel, a single eBPF program has full visibility to the entire node’s workloads. We’ll show how using such a program gives us the network and process-level visibility to detect and a live sophisticated attack on our cluster. We’ll finish by showcasing how security teams can easily put these same tools to use to protect their critical Kubernetes environments from threats.

Speakers

Jed Salazar

Security Architect, Chainguard

Jed Salazar started his Security and SRE journey working on Borg clusters and securing Alphabet companies at Google. He's passionate about security and SRE and spreading knowledge to benefit everyone in the community. In his free time he enjoys trail running the mountains.

Natalia Reka Ivanko

Security Product Manager, Isovalent

Security Product Lead and previous Security Engineer with a strong background in Container and Cloud Security. Passionate about building things that matter and working with Software Engineers to apply Security Best Practices. Inclined towards modern and innovative technologies like... Read More →

UncoveringASophisticatedAttackInRealTime JedSalazar NataliaRekaIvanko 06052021 pdf

Plain Text Transcript 28 DHTW 4475

Thursday May 6, 2021 13:30 - 14:05 CEST
Security Theater

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

14:15 CEST

Project Office Hours: Harbor

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Harbor Project Office Hours here: https://community.cncf.io/e/m2zepn/

>>Full list of Project Office Hours

Thursday May 6, 2021 14:15 - 15:15 CEST
Project Office Hours

Project Office Hours

14:15 CEST

Project Office Hours: NATS

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for NATS Project Office Hour here: https://community.cncf.io/e/m6ufs9/

>>Full list of Project Office Hours

Thursday May 6, 2021 14:15 - 15:15 CEST
Project Office Hours

Project Office Hours

14:15 CEST

Project Office Hours: Prometheus

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Prometheus Project Office Hours here: https://community.cncf.io/e/mn7p2b/

>> Full list of Project Office Hours

Thursday May 6, 2021 14:15 - 15:15 CEST
Project Office Hours

Project Office Hours

14:20 CEST

Choose Wisely: Understanding Kubernetes Selectors - Christopher Hanson, RX-M,llc.

LINK TO VIDEO RECORDING

Kubernetes uses labels and selectors to tie otherwise distinct API objects together. Application controllers like ReplicaSets use labels on pods to enforce replication factor; Services (via Endpoint controllers) also use labels on pods to identify endpoints for routing client traffic. However, not all controller behavior is the same! Some controllers add extra label metadata to avoid potential collisions and others do not! Through a series of live demos, this session explores the use of labels and selectors used by controllers so that you can clearly understand and use both to your advantage when deploying apps on Kubernetes. The talk will conclude with examples of advanced deployment patterns such as red/black, highlander, and canary that can be achieved natively in Kubernetes via labels/selectors.

Speakers

Christopher Hanson

Senior Cloud Native Engineer, RX-M,llc.

Christopher is an engineer, instructor, and consultant at RX-M, a leading cloud native advisory, consulting, and training firm. Chris has spoken at conferences, written blogs, authored courseware, and delivered training globally to hundreds of DevOps engineers at Fortune 100 companies... Read More →

ChooseWisely ChristopherHanson 20210506 v1 pdf

Plain Text Transcript 2 UKDK 4251

Thursday May 6, 2021 14:20 - 14:55 CEST
101 Theater

101 Track

Content Experience Level Beginner (Very basic information)
Student Track Yes
Presentation Slides Attached Yes

14:20 CEST

Lessons Learned Deploying Traditional Web Applications on Top of Kubernetes - Marcos Bjoerkelund, VMware

LINK TO VIDEO RECORDING

Traditional web applications are still very popular among developers, and it is unlikely that this will change over the course of the next few years. Deploying these applications on top of Kubernetes is a challenge as they are not usually designed to be run in such environments. In this session, you will learn from Bitnami’s experience how best to make your traditional web application run on Kubernetes. Attend this session to see a step by step guide on how you can create a container image for a traditional application, build its configuration scripts, and run it on Kubernetes with a Helm template. We will also talk about some of the challenges you may face, such as supporting for scaling or automatic application updates, and ways to solve them.

Speakers

Marcos Bjoerkelund

Member of Technical Staff, VMware

Marcos is based in Seville, Spain, and is part of the VMware Tanzu Application Catalog team. He has worked for more than 4 years on improving and adding new solutions to the Bitnami Container Catalog and Bitnami Charts Catalog as a maintainer. He also provides support to Bitnami users... Read More →

DeployingTraditionalWebApplicationsOnTopOfKubernetes MarcosBjoerkelund pdf

Plain Text Transcript 7 RHBF 8255

Thursday May 6, 2021 14:20 - 14:55 CEST
App & Dev Theater

Application + Development

Content Experience Level Intermediate (Mid-level experience)
Presentation Slides Attached Yes

14:20 CEST

GitOps Working Group Update - Cornelia Davis, Weaveworks & Chris Sanders, Microsoft

LINK TO VIDEO RECORDING

In late 2020 the GitOps Working Group was formed under the App Delivery SIG. The goal for the WG is to “provide companies and individuals with the skills, knowledge and competency to implement GitOps tooling and methodologies which simplify the operation and management of infrastructure and cloud native applications.” Within days of the announcement more than 60 individuals from more the 30 companies expressed an interest in participating and the working group was launched. The group is meeting these goals through content creation and evangelism – white papers, blog posts, sample applications, demonstrations and more. In this session we will give an update on the working group and we will evangelize. We’ll present agreed upon key principles and practices, and we’ll teach through demonstrations using a variety of CNCF and other OSS projects such as Flux, Argo, Tekton and more. Most importantly, we will present concrete steps that will help folks get started with cloud-native (Git)ops.

Speakers

Cornelia Davis

Product Management, CNCF TOC, Amazon

Cornelia has been working in IT systems for several decades with the last 10 years focused on DevOps platforms. She was part of the team that brought Cloud Foundry to the industry - both the open source project and the Pivotal CF product. In the last 5+ years she has applied that... Read More →

Chris Sanders

Senior Program Manager, Microsoft

Chris is a program manager in Microsoft Azure and works on Azure Arc and Kubernetes Configuration. He manages the GitOps capability in Azure.

GitOps Working Group Update pdf

Plain Text Transcript 15 WEAK 8571

Thursday May 6, 2021 14:20 - 14:55 CEST
CI/CD Theater

CI/CD

Content Experience Level Any (No experience required)
Presentation Slides Attached Yes

14:20 CEST

From Zero to Hero: Outcomes from Cloud-Native El Salvador Community Creation - Raul Flamenco, Acopula Networks & Mauricio Quevedo, KORINVER

LINK TO VIDEO RECORDING

People in El Salvador, Honduras and Guatemala leave the region for two reasons: security and lack of opportunities. We want people in those countries to have access to Cloud Native technologies. Our mission is: building the foundation to inspire talent. During the last few months, we have created a virtual space offering resources which help enthusiasts to understand and contribute to open source projects. The pandemic brought many challenges to local preexisting communities but this wasn't our case, we have to opportunity to establish the community in a region where cloud computing technologies are barely known. This talk will share lessons that we learned in our journey to establish a local technical community remotely.

Speakers

Raul Flamenco

Founder, Acopula Networks

Raul is a founder of Acopula Networks and co-organizer of Cloud Native San Salvador. Raul is a Salvadoran-American entrepreneur passionate about Central America.

Mauricio Quevedo

CEO, KORINVER

Interested in forging long-lasting alliances with companies and individuals grasping opportunities from solving local and international problems through Technology. IT Professional with experience in Management, Designing and Implementing Decision-Support Software Tools. 20+ years... Read More →

Plain Text Transcript 16 XRYV 5056

Thursday May 6, 2021 14:20 - 14:55 CEST
Community Theater

Community

Content Experience Level Any (No experience required)

14:20 CEST

Mental Health In Unprecedented Times - Dr. Jennifer Akullian, Growth Coaching Institute

LINK TO VIDEO RECORDING

We work in a demanding industry with unusually high expectations; one that has normalized long hours and burnout. Innovation has a high frequency of failure, t