2021-10-11 ~ 2021-10-15

Presentations (with video): 217 (175)

The Cloud Native Computing Foundation’s flagship conference gathers adopters and technologists from leading open source and cloud native communities from October 11-15, 2021. Join containerd, CoreDNS, Envoy, etcd, Fluentd, Harbor, Helm, Jaeger, Kubernetes, Open Policy Agent, Prometheus, Rook, TiKV, TUF, Vitess, Argo, Buildpacks, CloudEvents, CNI, Contour, Cortex, CRI-O, Dragonfly, Falco, Flux, gRPC, KubeEdge, Linkerd, NATS, Notary, OpenTelemetry, Operator Framework, SPIFFE, SPIRE, and Thanos as the community gathers for four days to further the education and advancement of cloud native computing.

Sort by:  

Authors: Paris Pittman, Luke Hinds, Christoph Blecker, Constance Caramanolis, Shatarupa Nandi, Frederick Kautz, Allan Friedman, PhD, Jimmy Guerrero, Jasmine James, Stephen Augustus, Masoud Mirmomeni

Be sure to join us for Friday's keynotes which include:Opening Remarks - Constance Caramanolis, Principal Software Engineer, Splunk; Jasmine James, Engineering Manager, Twitter; Stephen Augustus, Head of Open Source, Cisco (9:00-9:05)Machine Learning on Kubernetes Made Easy With Kubeflow - Masoud Mirmomeni, Lead Data Scientist, Shell & Jimmy Guerrero, Vice President of Marketing, Arrikto (9:05-9:20)A Secure Supply Chain Vision - Luke Hinds, Security Lead, Office of the CTO, Red Hat (9:20-9:25)Sustaining a Contributor Community’s Next Generation - Christoph Blecker, Principal Site Reliability Engineer, Red Hat & Paris Pittman, Program Manager, Apple (9:25-9:40)Breaking Tradition: The Future of Package Management with Kubernetes - Shatarupa Nandi, Engineering Director @ VMware Tanzu, VMware (9:40-9:45)Maintaining the Maintainers - Stephen Augustus, Head of Open Source, Cisco (9:45-10:00)SBOM is Coming: Why You Should Care and How You Can Help - Frederick Kautz, AI Chief; Enterprise Architect, Anthem & Allan Friedman, Senior Advisor and Strategist, CISA (10:00-10:15)Community Awards
Authors: Mayank Kumar

A small thought experiment in automating the day to day life of a Salesforce engineer became a platform for productivity that was built on top of controller-runtime, CRD’s, kubernetes, kubebuilder and a CLI. Adopting the KRM, made it really easy for them to model their service lifecycle and expose a simplified abstraction that allowed service owners at Salesforce to skip daily mundane tasks and focus on their business logic. In this talk, they will show you how easy it is to use the kubernetes control plane to create control loops that can automate the SDLC of your company . They will also show you how to build an extensible PaaS platform on top of Kubernetes and your company's existing processes that does not constraint the users, but allows the service owners to see through the abstraction. You will not only leave the talk with an even greater appreciation for the KRM model and for the strength of kubernetes apis but also with a recipe for automating the SDLC of YOUR company.
Authors: Adolfo García Veytia

tldr - powered by Generative AI

The presentation discusses the creation of a software bill of materials (S-BOM) for Kubernetes releases using SPDX and a custom tool.
  • The S-BOM includes source code, container images, binaries, packages, and dependencies.
  • The tool packages the S-BOM into more consumable documents for different tools to use.
  • The tool also generates an attestation file for compliance purposes.
  • Future directions include adding RPM and dev file analysis, merging efforts with the SPDX community, and adding validation and verification capabilities.
Authors: Pauline Lallinec, Dave Kerr

Workday is shifting to a multi-cloud approach whereby its Kubernetes platform known as Scylla can be deployed to public cloud providers as well as Workday’s own data centers. To achieve this, we needed to route tenant data across existing AWS clusters in different regions, to Workday’s own data centre, and potentially in the future, to other public cloud providers. While cloud providers usually have solutions to migrate data to their own cloud, Workday aims to be cloud-agnostic, and as such needs a solution to migrate data cross-clouds. The infrastructure, platform, and application development teams cooperated to develop a solution relying on Kubernetes operators, Istio, Consul, and Helm-delivered application configuration. This talk will give an overview of the tools and technologies used to migrate tenant data to other clusters, wherever they are deployed. We will additionally review the learnings from this experience and give an overview of the future work.
Authors: Jeff Spahr

K3s is a lightweight single binary Kubernetes distribution that is simple to install, and it's a perfect match for the latest Raspberry Pi 4. Join the speaker as he walks through the design, implementation, and trade offs you'll have to consider for this edge architecture. In this talk I'll cover the following:The why and how of deploying a production grade highly available 3 node K3s cluster.How to capture all the configuration as code and drive changes through GitOps.How to manage automatic updates for the cluster and operating system through the Kubernetes API.The speaker will be building on https://github.com/jeffspahr/k3s-on-pi for this presentation.
Authors: Alexander Matyushentsev, Remington Breeze

Kubernetes provides powerful features and empowers developers to solve lots of use-cases. Do you want to do GitOps, Progressive Delivery, batch processing? Easy - there is a tool that provides an effective way of solving each problem. The email that notifies the team about successful deployment is the cherry on the cake and should not be hard to do, right? Well, the notifications support is not as straightforward as it sounds. Does your team prefer Slack, Telegram, or all of the above? Do you want to fine-tune notifications criteria and avoid spamming your team about each and every change? Do you need customized notification messages that include details specific to your environment? We have solved this problem for Argo by introducing a generic Notification Engine that powers a notification experience for Argo projects. You will learn how to leverage the engine to configure notifications for Argo projects as well as how to use it for any other Kubernetes-native application.
Authors: Dawn Chen, Derek Carr, Elana Hashman, Sergey Kanzhelev

Kubernetes SIG Node owns components that control interactions between pods and host resources, including the Kubelet, Container Runtime Interface (CRI), and Node API. SIG Node is responsible for the Pod’s lifecycle from allocation to teardown, to liveness checks and shared resource management. We work with the various container runtimes, kernels, networking, storage, and more; anything a pod touches is SIG Node’s responsibility! In this session, we will begin with an introductory overview of the SIG and what it has worked on in the past. We will then deep dive into ongoing efforts of the SIG, including features targeted for the 1.22 and 1.23 releases and future roadmap. Join this session to learn more about our SIG, and how you might get involved to make Node even better!
Authors: Paul Burt, Betty Junod

tldr - powered by Generative AI

The presentation discusses the challenges of distributed systems and how Kubernetes addresses them through its design choices. It also compares Kubernetes to other modern systems and explores real-world cases of failures.
  • Distributed systems are challenging because failure is inevitable and requires designing systems to handle it gracefully.
  • Kubernetes is designed to handle failure through fault tolerance and traffic routing.
  • Other modern systems, such as Docker Swarm, HashiCorp Nomad, and K3s, have different approaches to handling failure.
  • DistSys concepts such as CAP theorem, Gossip protocols, High Availability, and the RAFT consensus algorithm are discussed.
  • Real-world cases, such as Target's 2019 cascading failure, are explored to illustrate the challenges of distributed systems.
  • Understanding the problems confronting distributed systems and what 'correct' looks like is essential for designing and operating them effectively.
Authors: Priyanka Sharma

tldr - powered by Generative AI

The importance of contributing to open source projects for career growth and opportunities
  • Cloud native technologies create a need for various professionals, including designers, tech docs writers, and marketers
  • Open source projects require more than just coding contributions, such as documentation and design work
  • Contributing to open source projects can lead to career opportunities and provide real-life project experience
  • The CNCF offers mentorship programs for those interested in contributing to open source projects
  • Open source contributions can help individuals stand out to potential employers
Authors: Ricardo Aravena

tldr - powered by Generative AI

Overview of various Kubernetes-related projects and their use cases
  • Projects include Volcano, K3s, Confidential Computing, Crosslit, Cuver, Vorteil, Box, Rootless Containers, and Trial
  • Use cases range from managing Kubernetes clusters at the edge to auto-scaling based on events to creating custom operating systems for specific workloads
  • Volcano is for scheduling resource-intensive workloads, K3s is a lightweight Kubernetes distribution for the edge, and Confidential Computing provides encryption and security for running workloads without revealing information to cloud providers
  • Cuver allows for managing virtual machines with Kubernetes, Crosslit enables running web assembly modules with Kubernetes, and Vorteil creates custom operating systems for specific workloads
  • Box is a Docker container that acts like a VM, Rootless Containers allows running containers as root users without compromising the host, and Trial is a container registry with a focus on high performance and P2P distribution