KubeCon + CloudNative North America 2021: Full Schedule

In-person + Virtual
October 11-15
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2021 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Daylight Time (UTC -7). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.

7:30am PDT

Registration + Vaccine Verification + Badge Pick-up

Monday October 11, 2021 7:30am - 6:00pm PDT
West Lobby

Registration + Badge Pick-up

8:00am PDT

Overcoming Data-Tier Challenges on Kubernetes and Cloud-Native Deployments hosted by DataStax (Complimentary Registration Required)

Many teams building highly scalable, cloud-native applications, have struggled with finding a data solution that can keep pace with the needs of their application. Often this has meant a choice between using a managed database, or taking on the task of deploying and managing a database on Kubernetes. Apache Cassandra™ is a powerful database used in many applications that require resilience and scalability, but has traditionally been challenging to deploy and manage effectively. Now the Kubernetes and Cassandra communities have come together in a great collaboration called K8ssandra, a production-ready platform that makes it easy to run Cassandra™ on Kubernetes. In this workshop, you will learn the challenges of managing a data tier in Kubernetes and how to overcome them using K8ssandra.

With a primarily hands-on approach, we will cover introductory and in-depth topics that include:

Creating a K8ssandra release using Helm
Monitoring database performance through metrics and alerts
Breaking nodes in the database cluster on purpose to observe self-healing
Scaling the database resources up and down
Deploying applications on top of the database using CQL and REST APIs
Backing up and restoring data
Multi region deployment (time and resources permitting)

Attendance at this workshop is free. If you’d like to attend any other sessions that KubeCon has to offer, you will need to register for the conference here!

How to Register: Pre-registration is required. To register for Overcoming Data-Tier Challenges on Kubernetes and Cloud-Native Deployments, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events@datastax.com.

Monday October 11, 2021 8:00am - 11:00am PDT
Online Only

Co-Located Events

8:00am PDT

GitLab Commit at KubeCon: DevOps hosted by GitLab (Complimentary Registration Required)

GitLab’s annual user conference is making a special appearance at KubeCon + CloudNativeCon North America 2021 to share how teams can modernize software development and delivery. Attendees will learn cutting-edge techniques to maximize the overall return on software development. From stories of digital transformation to in-depth training, attendees will gain practical insight into how DevOps can elevate teams to drive business outcomes faster with complete transparency, consistency and traceability. The event also features fun activities to delight attendees throughout the day.

Register for free to learn how modern DevOps transforms companies of all sizes and pushes teams to drive innovation to market with the DevOps platform. See you on October 11th!

Visit the event website!

How to Register: Pre-registration is required. To register for GitLab Commit, add it on during your KubeCon + CloudNativeCon registration. For questions regarding this event, please reach out to commit@gitlab.com.

Monday October 11, 2021 8:00am - 1:30pm PDT
Online Only

Co-Located Events

8:00am PDT

Quiet Rooms

All attendees may feel free to use the Quiet Rooms as needed. They are physical spaces where conversation and interaction are not allowed, where attendees can go if for any reason they can’t interact with others at that time.

Monday October 11, 2021 8:00am - 5:00pm PDT
Rooms 406 + 512

Diversity + Inclusion

Talk Type In-Person

9:00am PDT

Virtual Project Office Hours: Longhorn

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for LonghornProject Office Hours here: https://community.cncf.io/e/myj296/

>> Full list of Project Office Hours

Monday October 11, 2021 9:00am - 9:45am PDT
Project Office Hours

Project Office Hours

9:00am PDT

Getting started with Kubernetes hosted by Google Cloud (Complimentary Registration Required)

New to Kubernetes (K8s) or need a refresher? Have you started or are considering containerizing your applications? Find out how Google, the birthplace of Kubernetes, makes it easy to learn and use K8s. Join us to hear from Google Cloud experts, get exclusive access to hands-on tutorials, and learn how to build and innovate easily in a cost-optimized way.

How to Register: Pre-registration is required. Register for Getting Started with Kubernetes on Google Cloud here!

For questions regarding this event, please reach out to Denna Nazem.

Monday October 11, 2021 9:00am - 11:30am PDT
Online Only

Co-Located Events

9:00am PDT

Cloud Native eBPF Day North America Hosted By CNCF (Additional Registration + Fee Required)

eBPF is transforming Cloud Native. Co-located with KubeCon + CloudNativeCon, eBPF Day is a vendor-neutral conference that explores this transformational technology and its impact on the future of Cloud Native.

How to Register: Pre-registration is required. To register for Cloud Native eBPF Day North America, add it on during your KubeCon + CloudNativeCon registration.

Who Should Attend
The conference is targeted at Cloud Native and Kubernetes users looking to enhance the connectivity, observability and/or security of their Kubernetes environments with eBPF or eBPF-based tools. Kubernetes platform teams, security teams, and application teams each should find content that is relevant to their interests.

More event details are available here.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

Monday October 11, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

9:00am PDT

Cloud Native for Eclipse Foundation Day hosted by Eclipse Foundation (Complimentary Registration Required)

Cloud Native for Eclipse Foundation (CN4EF) Day is a full day of expert talks, demos, and thought-provoking sessions focused on enterprise applications implemented using Eclipse Foundation projects on Kubernetes — from the cloud and all the way to the edge. The Eclipse Cloud Development Tools, Jakarta EE, MicroProfile, and Eclipse Edge Native communities will all be represented.

Event website coming soon!

How to Register: Pre-registration is required. Register here for CN4EF Day!

For questions regarding this event, please reach out to anne.jacko@eclipse-foundation.org.

Monday October 11, 2021 9:00am - 5:00pm PDT
Online Only

Co-Located Events

9:00am PDT

EnvoyCon North America Hosted By CNCF (Additional Registration + Fee Required)

The Envoy maintainers are excited to announce the 4th annual EnvoyCon, a practitioner-driven community conference that emphasizes end-user case studies as well as deep technical talks from vendors that have chosen to build offerings on top of Envoy (zero product pitches!). Come join us for an exciting day of technical content and networking (both the social and computing kind).

How to Register: Pre-registration is required. To register for EnvoyCon North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Monday October 11, 2021 9:00am - 5:00pm PDT
Room 502 AB + Online

Co-Located Events

9:00am PDT

Production Identity Day: SPIFFE + SPIRE North America Hosted By CNCF (Additional Registration + Fee Required)

Production Identity Day: SPIFFE + SPIRE is a vendor-neutral conference focused on solving for zero trust security using SPIFFE/SPIRE, Workload Identity, and Hardware and Software attestation.

How to Register: Pre-registration is required. To register for Production Identity Day: SPIFFE + SPIRE North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Monday October 11, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

9:00am PDT

PromCon North America Hosted By CNCF (Additional Registration + Fee Required)

PromCon North America 2021 is the seventh installment of the PromCon conference dedicated to the Prometheus monitoring system. PromCon aims to connect Prometheus users and developers from around the world in order to exchange knowledge, best practices, and experience gained around using Prometheus. We also want to collaborate to build a community and grow professional connections around systems and service monitoring.

How to Register: Pre-registration is required. To register for PromCon North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Monday October 11, 2021 9:00am - 5:00pm PDT
Room 515 AB

Co-Located Events

9:00am PDT

SupplyChainSecurityCon North America Hosted by CNCF + CDF (Additional Registration + Fee Required)

SupplyChainSecurityCon is a new, vendor-neutral conference for security practitioners, open source developers and those interested in software supply chain security. Due to the uptick in supply chain attacks, this event is to bring the community together to discuss supply chain threats, best practices, mitigation tactics including up and coming frameworks and specifications.

How to Register: Pre-registration is required. To register for SupplyChainSecurityCon North America, add it on during your KubeCon + CloudNativeCon registration.

Who Should Attend
All developers and leaders interested in securing the software supply chain.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Monday October 11, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

9:00am PDT

Virtual: A Crash Course in mTLS and Authorization for Kubernetes with Linkerd - William Morgan, Buoyant

mTLS (mutual TLS) and policy are two hot topics in the Kubernetes world. In this 10-minute crash course, Linkerd creator William Morgan will teach you 90% of what you need to know about these two security concepts. He'll walk you through what mTLS is, how it works, and how to build authorization policy on top of it. He'll show you how to get mTLS and authz policy in about 5 minutes using Linkerd, the CNCF's flagship service mesh, and point out some common pitfalls and gotchas to avoid.

Speakers

William Morgan

CEO, Buoyant

William Morgan is the CEO of Buoyant, creators of Linkerd. Prior to founding Buoyant, he was an infrastructure engineer at Twitter, where he ran several teams building on product-facing backend infrastructure. He has worked at Powerset, Microsoft, adap.tv, and MITRE Corp, and has been contributing to open source for over 20 years... Read More →

Monday October 11, 2021 9:00am - Friday October 15, 2021 6:00pm PDT

Graduated Lightning Talk

Talk Type Virtual

9:00am PDT

Virtual: Rescuing Messy Schema Migrations with SchemaHero - Treva Williams, Replicated

Are your schema migrations threatened by a pack of super-villains like The Imperative Syntaxer, Dr. Decoupled Deployments, and Mr. McMessy Migration-pants? If so, have no fear and join this introductory session to a new CNCF Sandbox Project, SchemaHero! You’ll learn about our quest of making it possible to tightly couple database changes with application updates by using one of the superpowers we all know from Kubernetes: declarative state operators. Our rag-tag band of do-gooders believes it should be simple to deploy an application update that relies on a database change without building an orchestrated deployment process. All of this should be possible without requiring an intimate knowledge of the schema-migration language required by the specific version of the database that’s running. Kubernetes has proved that declarative desired state works, and SchemaHero is applying this solution to making database schema migrations easier and more reliable.

Speakers

Treva Williams

Senior Consultant, Pink Penguins

Treva Nichole Williams is a Red Hat certified Linux, OpenStack, & OpenShift sysadmin, instructor, & dedicated Open Source evangelist. Before venturing into the field of online learning, Treva spent 5 years managing Rackspace’s multi-region, multi-tenant public cloud infrastructure... Read More →

Monday October 11, 2021 9:00am - Friday October 15, 2021 6:00pm PDT

Graduated Lightning Talk

Talk Type Virtual

9:00am PDT

Virtual: Rook: Enterprise Storage for Kubernetes - Travis Nielsen, Red Hat

All Kubernetes clusters require storage! But how do you configure and manage it? Come catch a glimpse of how Rook provides an enterprise storage platform to the community as an upstream and open-source project, available to any Kubernetes cluster, whether running on-prem or in the cloud. Rook was accepted as a graduated project by the Cloud Native Computing Foundation in October 2020.

Speakers

Travis Nielsen

Senior Technical Staff Member, IBM

Travis Nielsen is a Senior Technical Staff Member for IBM where he is a maintainer on Rook and member of the ODF and Ceph engineering team. Prior to IBM and Red Hat, Travis worked in storage at Quantum and Symform, a P2P storage startup, and was an engineering lead for the Windows... Read More →

Monday October 11, 2021 9:00am - Friday October 15, 2021 6:00pm PDT

Graduated Lightning Talk

Talk Type Virtual

9:00am PDT

Virtual: The Roadmap of TiKV, A Cloud Native Key-value Database - Liming Deng, Pingcap

TiKV is a highly scalable, low latency, and easy to use key-value database. TiKV features geo-replication, horizontal scalability, consistent distributed transactions, and coprocessor support. In this talk, Liming Deng will walk you through the roadmap of TiKV, including some features in progress and the future plan of TiKV. He will cover TiKV API v2 which is the solid foundation for the multi-model database and the asynchronous I/O in the raftstore that will significantly reduce the write latency.

Speakers

Liming Deng

Engineer, Pingcap

Liming Deng is a database engineer at PingCAP. He bends his efforts on improving the user experience and broadening the use cases of TiKV scene. Liming is also interested in consensus algorithms and Rust programming language.

Monday October 11, 2021 9:00am - Friday October 15, 2021 6:00pm PDT

Graduated Lightning Talk

Talk Type Virtual

10:00am PDT

Virtual Project Office Hours: Krator

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Krator Project Office Hours here: https://community.cncf.io/e/m6med3/

>> Full list of Project Office Hours

Monday October 11, 2021 10:00am - 10:45am PDT
Project Office Hours

Project Office Hours

10:00am PDT

Battlesnake: KubeCon Cup - Workshop & Group Stages

Code your Battlesnake and compete for prizes in the KubeCon Cup!

This year Battlesnake is hosting the first ever KubeCon Cup – a chance for KubeCon + CloudNativeCon North America 2021 attendees to roll up their sleeves, cozy up with their favorite cloud stack, and build a web server to compete in real-time against developers all over the world.
Workshop attendees should come prepared to code in the language of their choice, and top Battlesnake developers will move on to the KubeCon Cup Finals, broadcast live on kubecon.tv on Oct 15th 1:00pm PDT.
No prior Battlesnake knowledge is required. Attendees should have beginner level programming experience in a language of their choice. Space is limited so sign up soon to reserve your spot in the tournament.
Prize Pool:

1st Place: $100 CNCF Store Gift Card, $100 Battlesnake Store, Battlesnake T-Shirt
Top 4: $50 CNCF Store Gift Card, $50 Battlesnake Store, Battlesnake T-Shirt
Top 8: $25 CNCF Store Gift Card, $25 Battlesnake Store

Registration is now closed.
*Must be registered for KubeCon + CloudNativeCon North America 2021

Monday October 11, 2021 10:00am - 2:00pm PDT
Online Only

Experiences

10:00am PDT

Bug Bash Online Kick Off!

The Bug Bash starts online on the leaderboard at 10am PST

Bug Bash brings developers together in a live, asynchronous, and cooperative model to find and fix as many bugs as possible on open source projects. The Bash takes place over a short timeframe, driving interest and engagement within the developer community. Each project interested in participating has a team of community members working through a list of bugs curated by the Bug Bash team and OS project maintainers ahead of the Bash. To date, we’ve had 30+ developers find and fix over 700 bugs on CNCF projects, and we are expanding this to a global scale, focusing specifically on the Kubernetes ecosystem in the coming months. To learn more about how these Bashes are making the Kubernetes projects you already use more secure, sign up as a maintainer or contributor to the hybrid digital/live event at KubeCon North America!

Interested in participating in the Bug Bash? Register here!

Monday October 11, 2021 10:00am - 6:45pm PDT
Online Only

Experiences

1:00pm PDT

Argo Project Meeting

Monday October 11, 2021 1:00pm - 5:00pm PDT
402AB

5:15pm PDT

cloudnative.tv Daily Recap

Join us on CloudNative.tv to hear the round up from the day's action. Our hosts will analyze the newest announcements in cloud native, dissect their favorite talks from the day, give the latest scoop from the hallway track, share their schedule for the next day, and talk about what's coming next on CloudNative.tv. You won't want to miss the Daily Wrap Up!

Monday October 11, 2021 5:15pm - 6:00pm PDT
South Hall Lobby + Online

Interactive Sessions

9:00pm PDT

Virtual Project Office Hours: CloudEvents

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Cloud Events Project Office Hours here: https://community.cncf.io/e/m5tbyb/

>> Full list of Project Office Hours

Monday October 11, 2021 9:00pm - 9:45pm PDT
Project Office Hours

Project Office Hours

5:00am PDT

(Virtual Attendance Only) Operator Day hosted by Canonical (Complimentary Registration Required)

Operators simplify everyday application management on Kubernetes. But enterprises still deploy their apps on a combination of bare metal, virtual machines and Kubernetes. Enter model-driven operations. This approach allows management of the application lifecycle regardless of the environment they run on. Operator Day is back with fresh content, focusing on the various use cases of Kubernetes operators. From MLOps and Data Ops to enterprise Observability and even vertical specific workshops. The sessions will repeat in two timezone-friendly blocks, for EMEA and Americas. Each block starts with a keynote introduction with Mark Shuttleworth, then leads attendees through a series of technical demos from the Canonical team, customers and partners. Bonus feature: Five industry thought leaders from the CNCF, AWS, Google and more, will join a one-off panel discussion on the state and future of cloud native and Kubernetes.

How to Register: Pre-registration is required. To register for Operator Day, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to Anastasia Valti.

Tuesday October 12, 2021 5:00am - 3:45pm PDT
Online Only

Co-Located Events

7:30am PDT

Registration + Vaccine Verification + Badge Pick-up

Tuesday October 12, 2021 7:30am - 6:00pm PDT
West Lobby

Registration + Badge Pick-up

8:00am PDT

College to Cloud Native: A Student's Introduction to KubeCon + CloudNativeCon

Visit CloudNative.tv to watch this session.

Are you a student and feel a little lost on the cloud native seas? Is this your first time and KubeCon and you are trying to find out what to attend and where to get started? Join the College to Cloud Native session to learn more about where you should go in the conference. Your host Bill Mulligan will show you around the event and answer any questions you may have.

Tuesday October 12, 2021 8:00am - 8:45am PDT
Online Only

Interactive Sessions

9:00am PDT

Virtual Project Office Hours: Helm

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Helm Project Office Hours here: https://community.cncf.io/e/m4zzrn/

>> Full list of Project Office Hours

Tuesday October 12, 2021 9:00am - 9:45am PDT
Project Office Hours

Project Office Hours

9:00am PDT

Virtual Project Office Hours: NATS

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for NATS Project Office Hours here: https://community.cncf.io/e/mpjbec/

>> Full list of Project Office Hours

Tuesday October 12, 2021 9:00am - 9:45am PDT
Project Office Hours

Project Office Hours

9:00am PDT

CNCF End User Partner Summit (RSVP Required)

The End User Partner Summit, hosted by Katie Gamanji virtually, will bring together cloud native users to share best practices and lessons learned. Our 40 minutes together will include a panel discussion with General Manager of CNCF, Priyanka Sharma, Chris Aniszczyk (CTO, CNCF) and members of the CNCF End User TOC. Join us for an engaging conversation centering on strategy, vision, and how to best navigate and contribute to the cloud native community!

In order to participate, your organization must be a member of the CNCF End User Community (https://cncf.io/enduser).

How to Register: Please complete our RSVP form to register!

Contact kgamanji@linuxfoundation.org with any questions.

Speakers

Katie Gamanji

Senior Field Engineer, Apple

Katie is a cloud native leader and practitioner, currently in a Senior Field Engineer role at Apple and a TOC for CNCF. As a platform engineer, Katie contributed to Conde Nast and American Express platforms and at CNCF led the End User Community. Katie is the author of the Cloud Native... Read More →

Tuesday October 12, 2021 9:00am - 10:00am PDT
Online Only

Interactive Sessions

9:00am PDT

Air Gap Lab: Delivering Kubernetes Applications to Air Gapped Environments hosted by Replicated (Complimentary Registration Required)

Air gapped environments are enjoying increased popularity with the Enterprise in cloud, on-prem, and hybrid environments. While more secure, losing the convenience of internet connectivity means that your applications are potentially inaccessible to your air gapped clients - or are they?

Fortunately, there are innovative and timely open source tools available to streamline the process of getting your customers up and running as quickly as possible. These open source tools can do everything from launching your application to even deploying an embedded Kubernetes cluster specific to your needs.

In this lab, you will receive a hands-on lesson on how to successfully build custom Kubernetes clusters, deploy and manage applications, and investigate and resolve issues in highly secured Kubernetes environments.

What you will do:

Access and verify a single-node air gap setup via a bastion server -Learn how to use KOTS (Kubernetes-Off-The-Shelf) to install in an air gap environment
Create an SSH tunnel to configure an air gap instance -Perform an upgrade of an application in an air gap environment
Use the kubectl support-bundle CLI in an air gap environment

Who this is for: This lab is for anyone who builds/maintains KOTS applications (see note below) Full Stack / DevOps / Product Engineers

Pre-requisites: Basic working knowledge of Kubernetes

Outcomes:

You will be ready to deliver a KOTS application into an air gap environment
You will build confidence in performing upgrades and troubleshooting in air gap environments

Note -- a more minimal air gap lab is in the works for non-dev teams to learn the user-side installation workflow without needing to understand the building/packaging of new air gap versions. Until that is made available, this lab is also appropriate for:

Implementation / Field Engineers
Support Engineers

How to Register: In-person registration is sold out (waitlist available). To register for Air Gap Lab virtual only, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events-team@replicated.com.

Tuesday October 12, 2021 9:00am - 11:00am PDT
Room 402 AB + Online

Co-Located Events

9:00am PDT

Instantly Debug your Kubernetes Clusters with Pixie hosted by New Relic (Complimentary Registration Required)

Kubernetes environments are inherently dynamic with teams adding 15+ services to an average K8s cluster every week. Those new services either become 15+ apps that must be instrumented with language agents every week or the absence of instrumentation results in observability blindspots.
Pixie is an open source observability platform for Kubernetes that automatically provides observability for every new service in seconds without instrumentation. By getting telemetry data at the kernel level, Pixie is a language-agnostic solution that helps developers debug faster through code-level insights and removes the observability gaps that naturally emerge in Kubernetes environments.
Join us for a hands-on workshop where we will instrument a cloud-native application with Pixie and use out-of-the-box scripts to identify and root-cause bottlenecks and errors. In 2 hours, you will learn to:

Install and Deploy Pixie
Visualize Kubernetes clusters and application performance data
Use Continuous Profiling to investigate Infrastructure anomalies
Analyze Slow DB Queries Dynamic Logging (without log.withfield())
AND MORE!

How to Register: Pre-registration is required. To register for Instantly Debug your Kubernetes Clusters Using Pixie, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to mcardiff@newrelic.com.

Tuesday October 12, 2021 9:00am - 11:00am PDT
Concourse Hall 150ABC

Co-Located Events

9:00am PDT

Cloud Native DevX Day North America Hosted by CNCF (Additional Registration + Fee Required)

Cloud Native DevX Day is a space where creators can collaborate, listen, discuss and declutter dev workflows, toolchains and minds to improve the developer experience.

How to Register: Pre-registration is required. To register for Cloud Native DevX Day North America, add it on during your KubeCon + CloudNativeCon registration.

Who Should Attend
Individual developers, teams, companies and projects who want to reduce friction for developers when trying to get the job done.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

9:00am PDT

Cloud Native Security Conference North America Hosted by CNCF (Additional Registration + Fee Required)

Cloud Native Security Conference is designed to foster collaboration, discussion and knowledge sharing of cloud native security projects and how to best use these to address security challenges and opportunities. The goal is not just to propose solutions that incrementally improve what has come before, but to give room to breakthrough technology and advances in modern security approaches.

How to Register: Pre-registration is required. To register for Cloud Native Security Conference North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

9:00am PDT

Cloud Native Wasm Day North America Hosted By CNCF (Additional Registration + Fee Required)

As an open and portable technology WebAssembly is being applied and designed in numerous independent domains such as the edge or as a web browser specific technology. The emergence and adoption of WebAssembly as a cloud native platform, embedded into application, and as cloud native applications demonstrates the power and possibility of Cloud Native technologies and WebAssembly to be Better Together.

How to Register: Pre-registration is required. To register for Cloud Native Wasm Day North America, add it on during your KubeCon + CloudNativeCon registration.

Who should attend?
All developers interested in the intersection of cloud native and web assembly.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Room 501 ABC + Online

Co-Located Events

9:00am PDT

Data on Kubernetes Day hosted by CNCF (Complimentary Registration Required)

Kubernetes is increasingly used to run databases and other stateful workloads, unlocking new potential for leveraging your data. Join experienced practitioners from the Data on Kubernetes Community (DoKC) who are at the forefront of running data on Kubernetes. Learn the use cases, techniques, and best practices from those who have been there, done that. Data on Kubernetes Community is an openly governed group of technologists who are championing the emergence and development of techniques for the use of Kubernetes for data. Join us! Visit the Data on Kubernetes Day website for more information!

How to Register: Pre-registration is required. To register for Data on Kubernetes Day, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events@dok.community.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Online Only

Co-Located Events

9:00am PDT

FluentCon North America Hosted By CNCF (Additional Registration + Fee Required)

FluentCon is a vendor-neutral conference on log and metric collection with Fluentd and Fluent Bit. Topics include running the technologies in production, general observability, getting started, and the future of how collection is evolving.

How to Register: Pre-registration is required. To register for FluentCon North America, add it on during your KubeCon + CloudNativeCon registration.

Who Should Attend
Users who are interested in learning how to get started, learning about uses cases, or contributing to how data collection is evolving should attend FluentCon.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

9:00am PDT

GitOpsCon North America hosted by CNCF (Additional Fee + Registration Required)

GitOpsCon North America (#GitOpsCon) is designed to foster collaboration, discussion and knowledge sharing on GitOps. This event is aimed at audiences that are new to GitOps as well as those currently using GitOps within their organization.

How to Register: Pre-registration is required. To register for GitOpsCon North America, add it on during your KubeCon + CloudNativeCon registration

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

Talk Type In-Person

9:00am PDT

Governance as Code Day with Cloud Custodian hosted by Stacklet (Complimentary Registration Required)

Cloud Custodian is a CNCF Sandbox project that enables you to use code to manage and automate various aspects of cloud governance, including cost, operations, security, and compliance. Cloud Custodian is adopted by thousands of organizations and has more than 300 contributors across the globe.
On October 12, join Cloud Custodian users, contributors, and maintainers virtually as they share best practices, tips, project updates, and demonstrations of Cloud Custodian’s usage in production. You will also have an opportunity to network with peers in cloud and security engineering.

Visit our event website!

How to Register: Pre-registration is required. To register for Governance as Code Day, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to c7nday@stacklet.io.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Online Only

Co-Located Events

9:00am PDT

Kubernetes AI Day North America Hosted by CNCF + LFAI & Data (Additional Registration + Fee Required)

Kubernetes is becoming a common substrate for AI that allows for workloads to be run either in the cloud or in its own data center, and to easily scale. Join us for Kubernetes AI Day to delve deeper into deploying AI at scale using Kubernetes.

How to Register: Pre-registration is required. To register for Kubernetes AI Day North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Room 502 AB + Online

Co-Located Events

9:00am PDT

Kubernetes Platform Design hosted by VMware - SOLD OUT (Waitlist Available)

Through a series of lectures and lab exercises, the operational and internal workings of Kubernetes are explored. System administrators and Cluster Operators will learn the skills of operating an existing Kubernetes cluster using common open source Kubernetes components.
Objectives: By the end of the course, you should be able to meet the following objectives:

Understand cluster logging architectures and implement a reference solution in lab
Learn how to troubleshoot cluster problems
Successfully onboard new Applications and Teams
Become confident in managing a Kubernetes Cluster
Explore community tooling to support a fully-featured Kubernetes platform

How to Register: This event is sold out (waitlist available). To add yourself to the waitlist for Kubernetes Platform Design, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to ldupuis@vmware.com.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Online Only

Co-Located Events

9:00am PDT

OpenShift Commons Gathering hosted by Red Hat (Complimentary Registration Required)

This OpenShift Commons Gathering will be held live in person in Los Angeles and virtually broadcast live to regional watch parties around the globe. As always, our focus is on creating a space for peer-to-peer interactions and we’ll be going hybrid, so if you are unable to attend in person, join us online via Hopin. This Gathering will focus on talks from and by end-users with production deployments of OpenShift sharing their use cases, insights into their workloads, and lessons learned along the way. Reserve your seat (in-person or virtual) and register today.

Topics covered during this Gathering include hybrid cloud infrastructure, cloud-native development, and new technology initiatives on the Edge and in Data Science. We have a keynote and update from Red Hat’s Clayton Coleman on all things Hybrid Cloud and Kubernetes Control Plane along with an Update/Road Map on the latest release of OpenShift with deep-dive live demos and Q/A with Red Hat engineers & upstream leads. Red Hat’s DevOps Black Belt Sasha Rosenbaum on SRE+Managed Services, and an update on the latest Red Hat OpenShift Data Science initiatives from Red Hat’s Data Scientist Audrey Reznik.
In addition, we’re hosting a Kubernetes 101 Boot Camp (virtual) limited to 100 attendees, so reserve your seat for the Boot Camp here. The event is free and registration for the virtual event is open to all. In-person event is limited to the first 300 registrants, register today if you are coming to Los Angeles!

Full agenda here!

How to Register: Pre-registration is required. To register to attend the OpenShift Commons Gathering in-person, add it on during your KubeCon + CloudNativeCon registration. Register here for the virtual event!

For questions regarding this event, please reach out to dmueller@redhat.com.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Room 403 AB + Online

Co-Located Events

9:00am PDT

ServiceMeshCon North America Hosted by CNCF (Additional Registration + Fee Required)

ServiceMeshCon is a vendor-neutral conference on service mesh technologies. Topics include getting started with and adopting a mesh, lessons learned from production deployments, and technical sessions from service mesh maintainers.

How to Register: Pre-registration is required. To register for ServiceMeshCon North America, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to CNCFcolocatedevents@cncf.io.

More event details are available here.

Tuesday October 12, 2021 9:00am - 5:00pm PDT
Los Angeles Convention Center + Online

Co-Located Events

9:00am PDT

KubeSec Enterprise vSummit 2021 hosted by Aqua Security (Additional Registration + Fee Required)

KubeSec Enterprise vSummit is a full-day virtual event that focuses on the challenges faced by larger organizations with demanding security and compliance requirements when deploying Kubernetes in production. Whether you are just now beginning to roll out your first production implementation of Kubernetes, or are an early adopter looking to learn from the experience of your peers, you are sure to get valuable insights from this educational event.

Apply to our CFP! The CFP deadline is Tuesday, August 31, 2021.

How to Register: Pre-registration is required. Register here for KubeSec Enterprise vSummit!

For questions regarding this event, please reach out to Tara Sullivan.

Tuesday October 12, 2021 9:00am - 6:00pm PDT
Online Only

Co-Located Events

9:00am PDT

From Allies to Partners: A Foundational Toolkit for Inclusive Leadership

Speakers

Yulkendy Valdez

Co-Founder & CEO, Forefront

Yulkendy Valdez is a master educator and expert in developing experiential programs focused on diversity and inclusion. She is a Forbes 30 Under 30 Social Entrepreneur and TEDx Speaker. She has received numerous fellowships from the Harvard Kennedy School, Opportunity Nation, Young... Read More →

Josuel Plasencia

Co-Founder & COO, Forefront

Josuel Plasencia is the Co-Founder and COO of Forefront. Recently, he was selected to the Forbes 30 Under 30 list for the year 2020. Josuel has corporate experience in finance, business strategy, and international development with Accenture, Goldman Sachs, EY, KPMG, BNY Mellon, and... Read More →

From Allies to Partners A Foundational Toolkit for Inclusive Leadership YulkendyValdez OnDemand V1.pptx pdf

Tuesday October 12, 2021 9:00am - Friday October 15, 2021 6:00pm PDT
Online Only

Diversity + Inclusion

Talk Type Virtual
Presentation Slides Attached yes

10:00am PDT

Virtual Project Office Hours: Flux

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Flux Project Office Hours here: https://community.cncf.io/e/mw8bz6/

>> Full list of Project Office Hours

Tuesday October 12, 2021 10:00am - 10:45am PDT
Project Office Hours

Project Office Hours

10:00am PDT

Virtual Project Office Hours: OpenEBS

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for OpenEBS Project Office Hours here: https://community.cncf.io/e/m9s2v8/

>> Full list of Project Office Hours

Tuesday October 12, 2021 10:00am - 10:45am PDT
Project Office Hours

Project Office Hours

10:00am PDT

Advanced Kubernetes: Learn How To Build Your Next App with Kube, Istio, and Advanced Services Like Watson hosted by IBM Cloud - SOLD OUT

Do you need to select the right technologies to build your next application? Get your hands dirty with those technologies before you start your build. Learn how Kubernetes and Istio give you full control over your microservices. Kubernetes minimizes outages and disruptions through self-healing, intelligent scheduling, horizontal scaling, and load balancing. Istio gives you security, advanced routing, policy, and insights into your application. Our developers will walk you through the step-by-step in this Hands-on-Lab, and you’ll walk away with a certification badge.

How to Register: This event is sold out. Please click here if you would like IBM to send you more information!

For questions regarding this event, please reach out to allie.stanton@gpj.com.

Tuesday October 12, 2021 10:00am - 1:00pm PDT
Concourse Hall 153ABC

Co-Located Events

10:30am PDT

Marketing Office Hours

Calling all CNCF members! Are you interested in learning more about your membership benefits (as it relates to marketing) or brainstorming other co-marketing activities? Join the CNCF marketing team at KubeCon + CloudNativeCon North America during Marketing Office Hours. Our team can answer any questions, as well as walk through our online programs, blogs, and other activities.

How to Register: Please RSVP to express your interest and make an appointment.

Note this session is for CNCF members only. If you would like to learn more about becoming a member, please reach out to ktan@linuxfoundation.org. We are happy to accommodate in-person or virtual attendance.

Tuesday October 12, 2021 10:30am - 12:30pm PDT
Room 407

Interactive Sessions

11:00am PDT

Virtual Project Office Hours: Brigade

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Brigade Project Office Hours here: https://community.cncf.io/e/mgpemr/

>> Full list of Project Office Hours

Tuesday October 12, 2021 11:00am - 11:45am PDT
Project Office Hours

Project Office Hours

11:00am PDT

Virtual Project Office Hours: CRI-O

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for CRI-O Project Office Hours here: https://community.cncf.io/e/m42pns/

>> Full list of Project Office Hours

Tuesday October 12, 2021 11:00am - 11:45am PDT
Project Office Hours

Project Office Hours

11:30am PDT

Advanced Kubernetes Troubleshooting Made Simple with Open Source Tools hosted by Replicated (Complimentary Registration Required)

As engineers, operators, and administrators, we grapple with vexing and expensive problems. Support bottlenecks caused by technical language barriers, differing time zones, incomplete information, and other typically minor issues can extend the time between identifying an issue and resolving it by hours or even days. Fortunately, a fully open source toolset available called Troubleshoot can drastically reduce the time between diagnosis and solution. This lightweight, fully customizable Kubernetes plugin consists of two parts - preflight and support-bundle. Troubleshoot is capable of collecting, analyzing, and packaging the data needed to get and keep your cluster operating at peak functionality. If it sounds too good to be true, just wait - it gets even better.
Join our live lab to see tiny-yet-mighty troubleshoot.sh in action in a live demo, plus the opportunity to learn how to customize troubleshoot components to fit your needs.

Some background info:

Attendees will be provided with instructions on how to log into a Linux Host running a Kubernetes Application.
Attendees will also be provided with step-by-step instructions on how to find and troubleshoot an issue.
They will try to login/open a webpage
The page will error out/show an error message
The attendee will then follow the instructions to fix the issue. (This may involve running some kubectl commands)
Once the issue is fixed, the web page should load and allow the participant to sign up for the ring.

The attendee will require some Kubernetes knowledge and a laptop that they can use to SSH into a LINUX VM running in GCP.

How to Register: In-person registration is sold out (waitlist available). To register for Advanced Kubernetes Troubleshooting Made Simple with Open Source Tools virtual only, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events-team@replicated.com.

Tuesday October 12, 2021 11:30am - 1:30pm PDT
Room 402 AB + Online

Co-Located Events

12:00pm PDT

Virtual Project Office Hours: LitmusChaos

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for LitmusChaos Project Office Hours here: https://community.cncf.io/e/mrzbff/

>> Full list of Project Office Hours

Tuesday October 12, 2021 12:00pm - 12:45pm PDT
Project Office Hours

Project Office Hours

12:00pm PDT

Virtual Project Office Hours: SPIFFE/SPIRE

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for SPIFFE/SPIRE Project Office Hours here: https://community.cncf.io/e/mbd2zt/

>> Full list of Project Office Hours

Tuesday October 12, 2021 12:00pm - 12:45pm PDT
Project Office Hours

Project Office Hours

12:00pm PDT

Cloud Native Data Management Day hosted by Kasten by Veeam, MinIO, NetApp, Nutanix, Portworx, Scality, StorageOS, and VMware (REGISTRATION CLOSED))

As this event is being hosted by a third party, please be aware that this event does not fall under CNCF's health and safety onsite protocols. Click here to view CNDM Day's health and safety protocols.

Do not miss this event! Doors open at 12:00 PM, and the program begins at 1:00 PM.

This is a hybrid event, co-located with KubeCon + CloudNativeCon North America 2021, consisting of a live in-person program held at the GRAMMY® Museum L.A. Live in Los Angeles, CA and live-streamed on the CNDM Day YouTube channel including three tracks of on-demand presentations.

Registration includes: CNDM Day backpack filled with sponsor swag, Wolfgang Puck Catering boxed lunch, access to all GRAMMY® Museum exhibits, and great cloud native data management discussions with powerful speakers! Current agenda is updated on our event page.

The virtual event is free and requires no registration. The live in-person event located in the GRAMMY® Museum is limited to the first 200 registrants. Register today, and we’ll see you in Los Angeles!

We are currently seeking abstracts to provide sessions for the on-demand tracks listed below. Apply today to our CFP!

• Community Track: Customers talking about their cloud native journeys, tales from the field, and practical knowledge sharing 101
• Technical Track: Experts sharing technical knowledge, technical solutions to problems, and how-tos
• Industry Track: Lighting talks on products solving issues/pain points, vendors sharing innovations and solutions

Each prerecorded session should be 15-30 minutes long depending on content and can be given by one or more individuals.

How to Register: Registration is now closed.

For questions regarding this event, please reach out to info@cndmday.com.

Tuesday October 12, 2021 12:00pm - 5:00pm PDT
GRAMMY® Museum at L.A. LIVE

Co-Located Events

12:30pm PDT

Instantly Debug your Kubernetes Clusters with Pixie hosted by New Relic (Complimentary Registration Required)

Install and Deploy Pixie
Visualize Kubernetes clusters and application performance data
Use Continuous Profiling to investigate Infrastructure anomalies
Analyze Slow DB Queries Dynamic Logging (without log.withfield())
AND MORE!

Tuesday October 12, 2021 12:30pm - 2:30pm PDT
Concourse Hall 150ABC

Co-Located Events

1:00pm PDT

Virtual Project Office Hours: Falco

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Falco Project Office Hours here: https://community.cncf.io/e/mz2bps/

>> Full list of Project Office Hours

Tuesday October 12, 2021 1:00pm - 1:45pm PDT
Project Office Hours

Project Office Hours

1:00pm PDT

Virtual Project Office Hours: Keylime

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Keylime Project Office Hours here: https://community.cncf.io/e/m94f63/

>> Full list of Project Office Hours

Tuesday October 12, 2021 1:00pm - 1:45pm PDT
Project Office Hours

Project Office Hours

2:00pm PDT

Quest for the Kubernetes Ring hosted by Replicated (Complimentary Registration Required)

Troubleshoot.sh

Embark on a new adventure to earn the Ring of Kubernetes with Replicated! Put your troubleshooting skills to the test in this interactive session and earn a Kubernetes ring!

On this quest, you will be given instructions on how to deploy a one node Kubernetes cluster and deploy an application. But things won’t be that easy! The application will run into some issues and we’ll provide you with instructions to help you find the cause and how to fix it.

How to Register: In-person registration is sold out (waitlist available). To register for Quest for the Kubernetes Ring, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to events-team@replicated.com.

Tuesday October 12, 2021 2:00pm - 4:00pm PDT
Room 402 AB + Online

Co-Located Events

2:00pm PDT

Advanced Kubernetes: Learn How To Build Your Next App with Kube, Istio, and Advanced Services Like Watson hosted by IBM Cloud - SOLD OUT

Tuesday October 12, 2021 2:00pm - 5:00pm PDT
Concourse Hall 153ABC

Co-Located Events

3:00pm PDT

Instantly Debug your Kubernetes Clusters with Pixie hosted by New Relic (Complimentary Registration Required)

Install and Deploy Pixie
Visualize Kubernetes clusters and application performance data
Use Continuous Profiling to investigate Infrastructure anomalies
Analyze Slow DB Queries Dynamic Logging (without log.withfield())
AND MORE!

Tuesday October 12, 2021 3:00pm - 5:00pm PDT
Concourse Hall 150 ABC + Online

Co-Located Events

5:00pm PDT

Virtual Project Office Hours: Antrea

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Antrea Project Office Hours here: https://community.cncf.io/e/m8cfwg/

>> Full list of Project Office Hours

Tuesday October 12, 2021 5:00pm - 5:45pm PDT
Project Office Hours

Project Office Hours

5:15pm PDT

cloudnative.tv Daily Recap

Visit CloudNative.tv to watch this session.

Join us on CloudNative.tv to hear the round up from the day's action. Our hosts will analyze the newest announcements in cloud native, dissect their favorite talks from the day, give the latest scoop from the hallway track, share their schedule for the next day, and talk about what's coming next on CloudNative.tv. You won't want to miss the Daily Wrap Up!

Tuesday October 12, 2021 5:15pm - 6:00pm PDT
South Hall Lobby + Online

Interactive Sessions

6:00pm PDT

Virtual Project Office Hours: Harbor

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Harbor Project Office Hours here: https://community.cncf.io/e/mr92ek/

>> Full list of Project Office Hours

Tuesday October 12, 2021 6:00pm - 6:45pm PDT
Project Office Hours

Project Office Hours

6:00pm PDT

Virtual Project Office Hours: KubeVela

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for KubeVela Project Office Hours here: https://community.cncf.io/e/m85fge/

>> Full list of Project Office Hours

Tuesday October 12, 2021 6:00pm - 6:45pm PDT
Project Office Hours

Project Office Hours

7:30am PDT

Registration + Vaccine Verification + Badge Pick-up

Wednesday October 13, 2021 7:30am - 6:00pm PDT
West Lobby

Registration + Badge Pick-up

7:45am PDT

Building Your Brand with CNCF

Watch this session on CloudNative.tv

Did you ever wonder how to build your brand within the cloud native ecosystem? Do KCD, Online Programs, cloudnative.tv, and the CNCF blog (just to start) seem like an overwhelming seas of possibilities? CNCF offers a variety of programs, but it is often difficult to know where to begin. In this introductory session, you will learn about the different programs CNCF offers to help you build your cloud native voice. There will be jokes, stories, and new friends. Come be a part of the foundation of doers.

Wednesday October 13, 2021 7:45am - 8:45am PDT
Online Only

Interactive Sessions

8:00am PDT

Bug Bash, presented by CNCF + Sonatype

Bug Bash brings developers together in a live, asynchronous, and cooperative model to find and fix as many bugs as possible on open source projects. The Bash takes place over a short timeframe, driving interest and engagement within the developer community. Each project interested in participating has a team of community members working through a list of bugs curated by the Bug Bash team and OS project maintainers ahead of the Bash. To date, we’ve had 30+ developers find and fix over 700 bugs on CNCF projects, and we are expanding this to a global scale, focusing specifically on the Kubernetes ecosystem in the coming months. To learn more about how these Bashes are making the Kubernetes projects you already use more secure, sign up as a maintainer or contributor to the hybrid digital/live event at KubeCon North America!

Interested in participating in the Bug Bash? Register here!

Wednesday October 13, 2021 8:00am - Thursday October 14, 2021 5:30pm PDT
Project Pavilion (in South Hall) + Online

Experiences

9:00am PDT

Wednesday Keynote Sessions

Be sure to join us for Wednesday's keynotes which include:

Welcome & Opening Remarks - Priyanka Sharma, Executive Director, Cloud Native Computing Foundation (9:00-9:15)
A Different Kind of Cloud Native - Tim Pepper, Open Source Engineer, VMware (9:15-9:30)
End Users: Leaders of the Cloud Native Maturity - Katie Gamanji, Ecosystem Advocate, Cloud Native Computing Foundation (9:30-9:45)
From One to Many, the Road to Multicluster - Kaslin Fields, Developer Advocate, Google Cloud (9:45-9:50)
CNCF Project Updates - Constance Caramanolis, Principal Software Engineer, Splunk & Jasmine James, Engineering Manager, Twitter (9:50-10:05)
APIs, the Universe, and Everything - Vijoy Pandey, Vice President, Engineering for Emerging Technologies and Incubation, Cisco (10:05-10:10)
CNCF Technical Oversight at Scale - Cornelia Davis, Product Manager, Amazon (10:10-10:25)
Closing Remarks - Constance Caramanolis, Principal Software Engineer, Splunk; Jasmine James, Engineering Manager, Twitter; Stephen Augustus, Head of Open Source, Cisco (10:25-10:30)

Speakers

Kaslin Fields

Developer Advocate, Google

Kaslin Fields is a Developer Advocate at Google Cloud, a Cloud Native Computing Foundation (CNCF) Ambassador, and a contributor to Open Source Kubernetes. As a Developer Advocate, she engages with Open Source communities both as a member, and as an advocate for their needs as users... Read More →

Tim Pepper

Principal Engineer, VMware

Tim is a Principal Engineer in VMware's Open Source Technology Center with over 25 years in open source, working as an open source developer advocate and contributor to Kubernetes (current Steering Committee elected member, emeritus Code of Conduct Committee elected member; past SIG... Read More →

Katie Gamanji

Senior Field Engineer, Apple

Vijoy Pandey

Vice President, Engineering for Emerging Technologies and Incubation, Cisco

Vijoy Pandey is Vice President, Emerging Technologies and Incubation (ET&I) at Cisco. ET&I is chartered to create and drive the next Bold Bets for Cisco in an agile, ambitious, and entrepreneurial manner. Vijoy runs both engineering and a global framework of customer-focused co-innovation... Read More →

Constance Caramanolis

Principal Software Engineer, Splunk

Constance is a principal software engineer at Splunk, formerly Omnition, contributing to OpenTelemetry. Previous to Omnition, she worked at Lyft as part of the data platform and server networking teams. While at Lyft, Constance built, deployed, and configured Envoy internally, and... Read More →

Priyanka Sharma

ED, CNCF

Priyanka is the Executive Director of the Cloud Native Computing Foundation (CNCF) which serves as the vendor-neutral home for 100+ of the fastest-growing open source projects, including Kubernetes, Prometheus, and Envoy. She is also a co-creator of the Inclusive Naming Initiative... Read More →

Cornelia Davis

Product Management, CNCF TOC, Amazon

Cornelia has been working in IT systems for several decades with the last 10 years focused on DevOps platforms. She was part of the team that brought Cloud Foundry to the industry - both the open source project and the Pivotal CF product. In the last 5+ years she has applied that... Read More →

Jasmine James

Senior Engineering Manager-Developer Experience

Jasmine is an engineering manager leading the developer experience pillar in the engineering effectiveness organization. She has previously worked at Delta Air Lines enabling cloud native application development by providing modern tooling and capabilities utilizing various CNCF projects... Read More →

Stephen Augustus

Head of Open Source, Cisco

Stephen is a leader in open source communities and Cisco’s Head of Open Source.For Kubernetes, he has co-founded transformational elements of the project, including the KEP (Kubernetes Enhancements Proposal) process, the Release Engineering subproject, and Working Group Naming... Read More →

Wednesday October 13, 2021 9:00am - 10:30am PDT
West Hall + Online

Keynote Sessions

Talk Type In-Person

10:30am PDT

Coffee Break

Wednesday October 13, 2021 10:30am - 11:00am PDT
Solution Showcase - South Hall HJK

Breaks

10:30am PDT

Virtual Project Office Hours: Serverless Workflow Specification

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Serverless Workflow Specification Project Office Hours here: https://community.cncf.io/e/mvxf9j/

>> Full list of Project Office Hours

Wednesday October 13, 2021 10:30am - 11:15am PDT
Project Office Hours

Project Office Hours

10:30am PDT

Virtual Project Office Hours: Submariner

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Submariner Project Office Hours here: https://community.cncf.io/e/mz355p/

>> Full list of Project Office Hours

Wednesday October 13, 2021 10:30am - 11:15am PDT
Project Office Hours

Project Office Hours

10:30am PDT

Project Pavilion

Wednesday, October 13 – Friday, October 15

The Project Pavilion allows the cloud native community a chance to learn more about the CNCF projects. Join the maintainers of our graduated, incubating and sandbox projects for engaging conversations during their Project Office Hours or stop by the Project Pavilion in the South Hall (inside Sponsor Showcase) to check out the project kiosks and speak with the maintainers!

View the full list of Project Office Hours

Visit these projects in the Project Pavilion

AM Projects
Buildpacks
Helm
Jaeger
Krator
Open Service Mesh

PM Projects
Krustlet
Keptn
Keylime
Brigade
Porter

Full time Projects
Linkerd
Argo
Envoy
Fluentd
Flux
ShemaHero
Longhorn
Kyverno
Wasmedge
Pixie

Wednesday October 13, 2021 10:30am - 8:00pm PDT
Project Pavilion (in South Hall) + Online

Solutions Showcase

10:30am PDT

Solutions Showcase

Visit our sponsors in the Solutions Showcase - whether onsite or virtually - to try the latest demos, watch live presentations, talk to experts during live office hours, check out job opportunities, and score some swag.

In order to facilitate networking and business relationships at the event, you may choose to visit a third party’s booth or virtual booth or to access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth (e.g. by clicking on a third party’s logo in the virtual exhibit hall or exhibitor directory, and any actions within the booth thereafter including viewing resources), accessing swag or virtual swag provided by sponsors, or by participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a booth or virtual booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.

Wednesday October 13, 2021 10:30am - 8:00pm PDT
South Hall + Online

Solutions Showcase

10:30am PDT

Bug Bash Kick Off!

The Bug Bash starts live in the Project Pavilion!

Bug Bash brings developers together in a live, asynchronous, and cooperative model to find and fix as many bugs as possible on open source projects. The Bash takes place over a short timeframe, driving interest and engagement within the developer community. Each project interested in participating has a team of community members working through a list of bugs curated by the Bug Bash team and OS project maintainers ahead of the Bash. To date, we’ve had 30+ developers find and fix over 700 bugs on CNCF projects, and we are expanding this to a global scale, focusing specifically on the Kubernetes ecosystem in the coming months. To learn more about how these Bashes are making the Kubernetes projects you already use more secure, sign up as a maintainer or contributor to the hybrid digital/live event at KubeCon North America!

Interested in participating in the Bug Bash? Register here!

Wednesday October 13, 2021 10:30am - 8:15pm PDT
Project Pavilion (in South Hall) + Online

Experiences

11:00am PDT

How NOT to Start with Kubernetes - Christian Heckelmann, Dynatrace

To k8s or not? THAT should be the first question you answer before considering moving your workloads to k8s. Granted – in many cases - Kubernetes is going to be the right choice but don’t just default to k8s because its hip or cool. When starting with Kubernetes you will run into many challenging situations or must make important decisions that will impact the way you will benefit or not benefit from k8s, that will decide whether you have sleepless nights or whether you can enjoy your evenings and weekends with friends and family! I, Christian Heckelmann, would have loved to know a lot more about Kubernetes networking, resource limits, the importance of training people upfront, providing templates, security, the CNCF landscape and more. 2 years ago, I started my journey as DevOps engineer setting up k8s 1.9 on bare metal. In this talk I recap my lessons learned in the hope that everyone that starts with k8s doesn’t start off in the wrong direction.

Speakers

Christian Heckelmann

Principal Cloud Engineer, Dynatrace

KubeCon 2021 How not to start with Kubernetes v2 pdf

Wednesday October 13, 2021 11:00am - 11:35am PDT
Petree Hall C + Online

101 Track

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual
Presentation Slides Attached yes

11:00am PDT

Back to the Drawing Board: Building Containers with SBoMs - Nisha Kumar, VMware

A Software Bill of Materials or SBoM is a list of software components that comprise a software artifact, be it firmware, OS, a VM, and yes, a container. We can generate an SBoM for container images post build using image scanners like Claire, Trivy, Tern, and Syft. This method is not foolproof, however, as they rely on metadata existing in the container filesystem (such as package manifests) in order to report on them. If a container goes through a multistage build or tools like Docker-slim to reduce the attack surface of the container, all that metadata is gone. How do we get more accurate and consistent SBoMs for containers? We generate them at container build time. This talk demonstrates how we can do that with tools like Tern, Buildah, and the OCI specification. We will get back to the basics of building containers, learn about the OCI specification, and make a container builder which can generate an SBoM at build time.

Speakers

Nisha Kumar

Security Engineer, Oracle

Nisha is a Security Engineer at Oracle. She has been a DevOps engineer for embedded systems and a Radio Frequency Engineer in semiconductor manufacturing. She has been involved in Open Source for more than 15 years. You can follow her work on Twitter at @_ctlfsh

kubecon 2021 pptx

Wednesday October 13, 2021 11:00am - 11:35am PDT
Petree Hall D + Online

Application + Development

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

11:00am PDT

Manage More Clusters with Less Hassle, with Argo CD Application Sets - Jonathan West, Red Hat & Kshama Jain, Independent Contributor

Many organizations have discovered the advantages of using Argo CD and a GitOps workflow to manage their Kubernetes clusters, with Git repositories as the source of truth for defining the desired application state, and Argo CD responsible for keeping the cluster synchronized with those repositories. However, managing deployments of large numbers of applications/clusters with Argo CD requires complex custom scripting to keep those Applications in sync. The newly released Argo CD ApplicationSet controller aims to solve this problem, by working alongside Argo CD to automatically generate Application deployments using templates and parameterization: manage multiple Kubernetes clusters at once, deploy large numbers of applications from multiples respositories, and more. Best of all, the entire deployment is managed by only a single ApplicationSet Kubernetes custom resource, which means no more juggling of numerous Argo CD Application resources to target those multiple clusters/repos.

Speakers

Jonathan West

Senior Software Engineer, Red Hat

Jonathan West is a Senior Engineer at Red Hat, and leads the ApplicationSet project of Argo CD, as well as serving as a maintainer on the Argo CD project. He has worked in open source for much of his career, including with Red Hat on OpenShift, and with IBM on IBM Cloud tools, Open... Read More →

Kshama Jain

Senior Software Engineer

Kshama Jain is a Software Engineer and a maintainer of Argo projects. She is a core contributor to the Argo CD project. She has worked on Kubernetes and cloud-native infrastructures for majority of her career. She is passionate about contributing to open source projects and has significant... Read More →

Manage More Clusters with Less Hassle, with Argo CD Application Sets Jonathan and Kshama pdf

Wednesday October 13, 2021 11:00am - 11:35am PDT
411 Theater + Online

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual
Presentation Slides Attached yes

11:00am PDT

Customizing Kustomize with Client-Side Custom Resources - Katrina Verey, Apple & Jeff Regan, Google

Kustomize is a popular tool for declarative, template-free management of Kubernetes configuration. Under the hood, it works by defining a graph of Kubernetes resources and applying a pipeline of declaratively specified transformations to its nodes. A lesser known fact is that users aren't limited to the transformations that Kustomize comes with out of the box: it's extensible! The way Kustomize extensions work has evolved over time towards a model that closely resembles Custom Resources, but on the client side! In this talk, Katrina and Jeff will briefly review the history and future of Kustomize extensions, and then dive into practical applications. The talk will showcase how these CR-style extensions can address common yet idiosyncratic application needs, as well as how platform builders can leverage them to manage declarative configuration at scale. Attendees will leave with practical knowledge of what makes a good extension and how to use Kustomize’s kyaml tools to start building.

Speakers

Jeff Regan

Staff Software Engineer, Tesla

kustomize, declarative configuration

Katrina Verey

Senior Software Engineer, Apple

Katrina has been working with Kubernetes since early 2016. She has championed and contributed to projects in many areas, including declarative configuration management, CI/CD tooling, controller frameworks and user interfaces. She is delighted to be serving the Kubernetes community... Read More →

Customizing Kustomize Verey:Regan pdf

Wednesday October 13, 2021 11:00am - 11:35am PDT
Room 502 AB + Online

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person
Presentation Slides Attached yes

11:00am PDT

Envoy Maintainer Q&A - Lizan Zhou, Tetrate

Q&A with Envoy maintainers. Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions!

Speakers

Lizan Zhou

Founding Engineer, Tetrate

Lizan Zhou is a Founding Engineer at Tetrate leading mesh backend team. He is a senior maintainer of Envoy and one of the core contributors of Istio. Previously he was working at Google Cloud, during his time at Google he worked on security and networking on Istio and Cloud Endpoints... Read More →

Wednesday October 13, 2021 11:00am - 11:35am PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

11:00am PDT

Hardening the Kubernetes Software Supply Chain Through Better Transparency - Adolfo García Veytia, uServers; Verónica López González, Digital Ocean; Nabarun Pal, VMware

Software supply chains are gaining increasingly complex nowadays, especially when it is about deploying cloud native environments securely. After refactoring the Kubernetes release process over the past years, SIG Release efforts have shifted towards three main areas of work. In this talk, Verónica, Nabarun, and Adolfo will cover all of them in-depth: * Starting with Kubernetes v1.22, every release includes an SPDX Bill of Materials describing the source code, binaries, and all published images. * Automatic verification of the integrity and consistency of release artifacts as part of the Kubernetes Release process. * Digital signing of released artifacts and signature verification of upstream images. In the final part of the presentation, the speakers will demonstrate some of the tools that SIG Release has created, which can be leveraged today by the community in other projects, too.

Speakers

Nabarun Pal

Senior Member of Technical Staff, VMware

Nabarun is a Senior Software Engineer at VMware, a maintainer of the Kubernetes project, an elected Kubernetes Steering Committee member and a chair of Kubernetes SIG Contributor Experience. He is a Release Manager for Kubernetes and has been the Kubernetes 1.21 Release Team Lead... Read More →

Veronica Lopez

Software Engineer, PlanetScale

Verónica is a distributed systems engineer, currently serving as a tech lead for Kubernetes SIG Release.

Adolfo García Veytia

Staff OSS Engineer, Chainguard

Adolfo García Veytia (@puerco) is a software engineer with Chainguard, Inc. He is one of the Kubernetes SIG Release Technical Leads., actively working on the Release Engineering team. He specializes in improvements to the software that drives the automation behind the Kubernetes... Read More →

Wednesday October 13, 2021 11:00am - 11:35am PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

11:00am PDT

Helm: The Charts and the Curious - Karena Angell, Paul Czarkowski & Andrew Block, Red Hat; Scott Rigby, Weaveworks

Have you ever wondered, how can I improve the processes and tooling around my Helm Chart development and distribution? Just like with a programming language, there are OSS projects in the Helmiverse, such as linters, testing tools, and automation you can use to help you with charts. In this session, you’ll learn about some of these tools and how you can use them to improve your workflow and CI automation. Along the way you’ll learn about supply chain security, GitHub actions, YAML validation, tools you can use in any CI system, and more. Charts are at the heart of using Helm, in this session you’ll learn how to have a healthier heart.

Speakers

Andrew Block

Distinguished Architect, Red Hat

Andrew Block is a Distinguished Architect at Red Hat who works with organizations throughout the world to design and implement solutions leveraging cloud native technologies. He specializes in embracing security at every phase of the Software Development Lifecycle and delivering software... Read More →

Paul Czarkowski

Managed OpenShift BlackBelt, Red Hat

Paul Czarkowski is a long-time practitioner of the dark arts of DevOps. Hailing from Australia, he moved to Austin,Texas to help build and run one of the largest and most successful online games. Now at Red Hat, Paul works to improve the operator experience by taking cloud native... Read More →

Karena Angell

Senior Principal Product Manager, Technical, Red Hat

Karena Angell is a Senior Principal Product Manager at Red Hat focusing on cloud native application workloads for Kubernetes, open source software projects, as well as solutions for the 'open' hybrid cloud.

Scott Rigby

Developer Experience Engineer, Weaveworks

Wednesday October 13, 2021 11:00am - 11:35am PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

11:00am PDT

What's New With SIG-Windows: HostProcess and Developer environments - Brandon Smith & Danny Canter, Microsoft; Jay Vyas, VMware; Friedrich Wilken, SAP Hybrid

Members of the SIG-Windows community will provide an update on the efforts to bringing Windows workloads to Kubernetes. We'll start off by going over recent improvements including a demo of the new HostProcess feature enabling “privileged” containers on Windows. Next we'll talk about planned future improvements. We'll then show our new development tooling that will enable you to get started with development for Windows in Kubernetes. Lastly we'll finish up with some Questions and Answers with the speakers.

Speakers

Jay Vyas

Software Engineer, VMware

In addition to working for several years on several aspects of Kubernetes core since its inception (at Red Hat), Jay also has served as the Engineering lead for Cloud Native product lines at Synopsys (Blackduck), bringing Kubernetes based solutions at massive scales to 100s of customers... Read More →

Friedrich Wilken

Software Engineer, SAP Hybris

Danny Canter

Microsoft

Work on container runtime components both for Windows and Linux containers.

Brandon Smith

Product Manager, Microsoft

Brandon Smith is a Kubernetes SIG-Windows contributor and product manager focused on driving the performance and reliability of the Windows container technology. He helped drive the HostProcess K8s feature to fruition, has presented for SIG-Windows at previous KubeCons, and is working... Read More →

KubeCon NA 2021 SIG Windows pdf

Wednesday October 13, 2021 11:00am - 11:35am PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual
Presentation Slides Attached yes

11:00am PDT

Cloud Native and Kubernetes Observability Panel: The State of Union - Bartek Plotka, Red Hat; Liz Fong-Jones, Honeycomb; Josh Suereth, Google; Frederic Branczyk, Polar Signals; Rags Srinivas, InfoQ

With microservices and Cloud-Native solutions adoption increasing, Observability is receiving heightened interest in Site Reliability Engineering (SRE) since it enables to chase down the “unknown unknowns,” do Root Cause Analysis and fix issues. InfoQ recently did a virtual panel with experts (URL: https://www.infoq.com/articles/cloud-native-observability/ ) to address fundamental concepts of Observability, including Cloud-Native Observability, some of the misconceptions, technical challenges and industry standards like OpenTelemetry that make it possible to incorporate vendor neutral solutions. Attend this panel to learn about Observability and how to incorporate the different signals from the ground up in a coordinated manner. After attending this panel, attendees will gain a holistic picture of Observability, understand the cultural and technical challenges and how to overcome them.

Speakers

Rags Srinivas

Developer Advocate, Datastax

Raghavan "Rags" Srinivas (@ragss) works as a Developer Advocate/Architect at Datastax with a mission to help developers build highly scalable and available systems. His areas of focus are containers, microservices, Open Source and DevOps. With an extensive background in both app development... Read More →

Frederic Branczyk

Founder, Polar Signals

Frederic is the founder of Polar Signals. Before, he was a senior principal engineer and the main architect for all things Observability at Red Hat, which he joined through the CoreOS acquisition. Frederic is a Prometheus and Thanos maintainer and tenured as the tech lead for for... Read More →

Liz Fong-Jones

Field CTO, Honeycomb

Liz is a developer advocate, labor and ethics organizer, and Site Reliability Engineer (SRE) with 18+ years of experience. She is currently the Field CTO at Honeycomb, and previously was an SRE working on products ranging from the Google Cloud Load Balancer to Google Flights.

Bartek Plotka

Red Hat

Josh Suereth

Staff software engineer, Google

Wednesday October 13, 2021 11:00am - 11:35am PDT
Room 403 AB + Online

Observability

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

11:00am PDT

Case Study : Improving Resilience of Applications in Telco Environments - Uma Mukkara, ChaosNative & Samar Sidharth, Orange

Though Kubernetes acts as a common abstraction and as a platform to build other platforms or applications, challenges are unique to each environment or area of operations. Telcos operate at a larger scale compared to the other environments. In these environments, the challenges of moving the applications to cloud native include a plan on the reliability of the whole service right from the beginning to the state of operations. In this session, we discuss a case study from Orange, the telecommunications operator, where they have been using Litmus, Kubernetes and other CNCF technologies to build and scale their application development process all the way till shipping them. We discuss their resilience goals of the cloud native application, scale factor, original challenges, impediments, the approach and the actual design along with the learnings in this case study. The session will wrap up with the key takeaways around resilience building technicals for large scale applications.

Speakers

Samar Sidharth

Lead Engineer, Orange

Uma Mukkara

CEO, ChaosNative

Uma Mukkara is a maintainer of CNCF chaos engineering project LitmusChaos. He also is the CEO of ChaosNative and is a regular speaker on the subject of Chaos Engineering and cloud native DevOps at various conferences in the recent past. He is passionate about building solutions around... Read More →

UmaMukkara Session GitOpsCon2021.pptx pdf

Reslience telco KubeCon NA 2021.pptx pdf

Wednesday October 13, 2021 11:00am - 11:35am PDT
Room 408 AB + Online

Operations

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual
Presentation Slides Attached yes

11:00am PDT

Kubernetes Supply Chain Security: The Software Factory - Andrew Martin, Control Plane

The original supply chain attack was described by Ken Thompson 35 years ago, in Reflections on Trusting Trust. As the SUNBURST attacks abuse the same implicit trust relationship between consumers and vendors today, we ask ourselves: does cloud native have the answer? Based on work from the US Air Force and DoD, we present a Kubernetes Software Factory approach that can defend against supply chain risks. But can we mitigate the risk entirely? What about consuming closed source and binary artefacts? Is there a silver bullet for this producer-consumer problem, that impacts supply chain relationships at all levels of industry and technology? In this talk we: - Showcase work to build a Kubernetes Software Factory with Tekton - Deep dive on signing and verification approaches to securely build software with in-toto, TUF, SPIFFE, SPIRE, and sigstore - Review lessons learned from the SUNBURST attacks - Detail future cloud native solutions to harden Kubernetes, builds, and infrastructure

Speakers

Andrew Martin

CEO, ControlPlane

Andrew has an incisive security engineering ethos gained building and destroying high-traffic web applications. Proficient in systems development, testing, and operations, he is at his happiest profiling and securing every tier of a cloud native system, and has battle-hardened experience... Read More →

ControlPlane Kubernetes Supply Chain Security The Software Factory (KubeCon NA, October 2021) pdf

Wednesday October 13, 2021 11:00am - 11:35am PDT
Concourse Hall 151 + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

11:00am PDT

How to Improve Your Kubernetes Experience with Service Mesh and MLOps - Maksim Chudnovskii & Igor Gustomyasov, Sber

In this session, speakers will talk about using a machine learning approach to optimize application performance in Kubernetes clusters in a large private cloud (50+ On-Premise Kubernetes Clusters in a Private Cloud, 500+ Compute Nodes, 10+ Istio Meshes. The speech from Sberbank will cover concrete practical cases and tell in detail about the experience of using machine learning models, consider in detail the architecture of the models, as well as the process of preparing training data, which is based on service mesh telemetry.

Speakers

Maksim Chudnovskii

Chief Software Development Manager, Sber

10 years of experience in software development and architecture, including 5 years in the banking industry as a developer, product manager, solution architect, and system architect. Key areas of the experience: High load integration solutions, Distributed platform solutions based... Read More →

Igor Gustomyasov

Head of Integration Department, Sber

Igor holds the position of Managing Director responsible for Synapse - service mesh-based target integration platform for Sberank and its growing ecosystem. Before this Igor was leading Center of Competence for integration solutions at Sberbank-Technology. During his career Igor was... Read More →

KubeCon NA 2021 MaksimChudnovskii&IgorGustomyasov pdf

Wednesday October 13, 2021 11:00am - 11:35am PDT
Concourse Hall 152 + Online

Service Mesh

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

11:30am PDT

Virtual Project Office Hours: Linkerd

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Linkerd Project Office Hours here: https://community.cncf.io/e/m8v2s9/

>> Full list of Project Office Hours

Wednesday October 13, 2021 11:30am - 12:15pm PDT
Project Office Hours

Project Office Hours

11:30am PDT

Virtual Project Office Hours: Tremor

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Tremor Project Office Hours here: https://community.cncf.io/e/mmczhr/

>> Full list of Project Office Hours

Wednesday October 13, 2021 11:30am - 12:15pm PDT
Project Office Hours

Project Office Hours

11:55am PDT

A Safari of Kubernetes and its Natural Habitat - Noah Abrahams, StormForge

Have you ever wondered what life in the data center really looks like, after the sun goes down and the people leave? Come along on a journey as we visit some of the inhabitants of the Cloud Native savanna on this trip through the ecosystems of Kubernetes and its natural predators. Attendees will learn the warning cries of an ever alert Prometheus and watch as the cluster is hunted by a gaggle of red teamers, while they all try to drink from the same data lake. This talk will be a whimsical introduction into the daily life of kubernetes and common production deployments while you listen to some very mediocre impressions of famous naturalists.

Speakers

Noah Abrahams

Senior Principal Technical Program Manager, Oracle

I run the Las Vegas K8s community, and direct processes for CNCF and OSS contributions at Oracle. I have previously been part of the K8s contributor Experience team, helped run the Kubernetes Contributor Summits, and led the non-code contributor guide efforts.

A Safari of Kubernetes pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

11:55am PDT

Cloud-Agnostic Design for Fun and Profit - Alex Meijer & Anusha Iyer, Corsha, Inc.

There is now sufficient competition in the cloud computing space that all the major cloud providers are competing directly on pricing. Like any other market, there are significant opportunities for savings if an organization is willing to periodically switch to more competitive service providers. However, the engineering cost of a cloud provider migration typically negates those savings – but that doesn't have to be the case. This talk will cover a two-year journey spanning several cloud providers, and how to avoid vendor lock-in by making cloud agnostic design a first-class consideration. A case study will be provided on how embracing open source projects like Kubernetes, Terraform, and Helm permitted lightning-fast migration to and from cloud providers driven by economic incentives. The high level details of Corsha's Infrastructure-as-code strategy will be discussed, and how an early commitment to this approach has resulted in flexible and efficient cloud native app deployments.

Speakers

Anusha Iyer

CTO and Co-Founder, Corsha, Inc

Anusha Iyer is the CTO and Co-Founder of Corsha. She is a technology leader with over 15 years of experience in security-minded software, analytics, and managed services. A Carnegie Mellon alum, she started in the Washington, DC area at the Naval Research Lab. At NRL, her focus was... Read More →

Alex Meijer

Head of Infrastructure, Corsha, Inc.

Alex is Corsha's Head of Infrastructure, and is responsible for ensuring that Corsha's products are built and deployed using the latest possible Infrastructure as Code techniques. He has recently worked on managing the trust relationships of Corsha's various Kubernetes-based Hyperledger... Read More →

Corsha Kubecon 2021 pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Beginner (Very basic information)
Talk Type In-Person
Presentation Slides Attached yes

11:55am PDT

Microservices Made Easy! - Donovan Brown & Jessica Deen, Microsoft

Have you made the jump to microservices only to discover the development experience is less than ideal? We get it, microservices can be HARD, but they don’t have to be. In this session we will help you simplify your developer interloop and boost your productivity. We will focus on Dapr and Bridge to Kubernetes, both open source, and geared towards simplifying your life as a developer. Dapr is a portable, event-driven runtime that makes it easy for any developer to build resilient, stateless, and stateful applications using any language, targeting any cloud or the edge. Bridge to Kubernetes uses Envoy to extend the Kubernetes perimeter to your development computer allowing you to write, test, and debug microservice code while connected to any Kubernetes cluster with the rest of your application or services. The bridge to microservices harmony can be messy, but a technical deep dive powered by the open-source tooling will have you looking Dapr in no time.

Speakers

Donovan Brown

Partner Program Manager, Microsoft

Meet The Man in the Black Shirt. Donovan Brown is a Principal DevOps Manager on Microsoft's Cloud Developer Advocacy team. Why is DevOps one of the hottest topics? Because it hurts the most. Luckily, Donovan's unofficial tagline is #RubDevOpsOnIt and he's here to make it all better. Before joining Microsoft, Donovan spent seven years as a Process Consultant and a Certified Scrum Master. Developer Tools are his thing. Donovan has traveled the globe helping companies in the U.S., Canada, India, Germany, and the UK develop solutions... Read More →

Jessica Deen

Principal Cloud Advocate, Microsoft

Jessica is a Principal Cloud Advocate for Microsoft focusing on Azure, Containers, OSS, and DevOps. Prior to joining Microsoft, she spent over a decade as an IT Consultant / Systems Administrator for various corporate and enterprise environments, catering to end users and IT professionals... Read More →

Dapr pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
411 Theater + Online

Application + Development

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual
Presentation Slides Attached yes

11:55am PDT

Capacity Scheduling for Elastic Resource Sharing in Kubernetes - Qingcan Wang, Alibaba & Yuan Chen, Apple

Kubernetes manages resources capacity across multi-tenants/users/namespaces by allocating a fixed amount of resource quotas to each namespace. It lacks sufficient support of dynamic resource sharing within and across teams and organizations and can result in low cluster utilization. It has become a roadblock to migrating applications from other cluster management platforms (e.g., YARN) to Kubernetes. Qingcan Wang from Alibaba and Yuan Chen from Apple will present their collaborative work on a Kubernetes enhancement to address the issue. Capacity scheduling offers a similar feature to YARN’s capacity scheduler and enables elastic resource sharing to improve cluster utilization in Kubernetes. It supports hierarchical resource groups with guaranteed and maximum resources for dynamic sharing of resources, from CPU, memory, disk to extended resources like GPU. It is seamlessly integrated into Kubernetes as plugins and has been used in large scale production clusters such as Alibaba Cloud.

Speakers

Yuan Chen

Software Engineer, Apple

Yuan Chen is a software engineer at Apple. His current work focuses on Kubernetes scheduling and scalability. At Apple, he has been working on building cloud-native infrastructure and platforms for Apple software products and services. As a Kubernetes community member, Yuan has made... Read More →

Alex Wang

senior expert engineer, Shopee

Qingcan Wang is a senior expert engineer at Shopee. As the leader of the Shopee AI platform, he focuses on using cloud-native technology to build a unified AI infrastructure and an elastic machine-learning platform for the company. As a member of the Kubernetes community, he has made... Read More →

Elastic Quota KubeCon NA 2021 final pdf

Elastic Quota KubeCon NA 2021 revision pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Room 502 AB + Online

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

11:55am PDT

Cloud Native Storage: Storage TAG Intro, Projects, Landscape & Technology - Alex Chircop, StorageOS & Raffaele Spazzoli, RedHat

This talk will introduce the CNCF Storage TAG and discuss how the TAG operates, how we work with Storage CNCF projects as well as the projects to build guidance and write whitepapers for the ecosystem. During this session we will cover: - Overview of the TAG, how to join and how to help - Overview of storage projects in the CNCF - Projects that are currently being being reviewed We will also share updates of our latest work including: - the CNCF Storage Landscape whitepaper - the Performance and Benchmarking whitepaper - the Cloud Native Disaster Recovery whitepaper

Speakers

Alex Chircop

Chief Product Architect, Akamai

Chief Product Architect at Akamai. Previously a founder and CTO of Ondat (formerly StoraeOS), building software defined solutions for cloud native environments. Alex is also a co-chair of the CNCF Storage TAG (previously SIG). Before embarking on the startup adventure he spent over... Read More →

Raffaele Spazzoli

Senior Principal Architect, Red Hat

Raffaele is a full-stack enterprise architect with 20+ years of experience. Raffaele started his career in Italy as a Java Architect then gradually moved to Integration Architect and then Enterprise Architect. Later he moved to the United States to eventually become an OpenShift Architect... Read More →

KubeCon NA 2021 TAG Storage Session pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type Virtual
Presentation Slides Attached yes

11:55am PDT

Policy Matters! The Why, What, and How of Kubernetes Policy Management - Jayashree Ramanathan, RedHat; Aradhna Chetal, TIAA; Jim Bugwadia, Nirmata; Robert Ficcaglia, SunStone Secure

Policies help address several critical challenges with managing Kubernetes clusters and workloads. In the panel-style session moderated by Robert Ficcaglia, co-chair of the Kubernetes Policy Working Group, contributors from the working group will discuss why policies are important to enterprises and other organizations using Kubernetes. Attendees will have an opportunity to ask policy engine and compliance experts about real world use cases and effective techniques for managing policy-as-code from a small cluster to enterprise multi-cluster scale. Attendees will see examples of how to map real world threats to their systems to specific policy automation tools and how compliance automation helps defend against emerging risks and provides greater visibility and enforcement of best practices.

Speakers

Jim Bugwadia

Co-founder and CEO, Nirmata

Jim Bugwadia is a co-founder and the CEO of Nirmata, the Kubernetes policy and governance company. Jim is an active contributor in the cloud native community and currently serves as co-chair of the Kubernetes Policy and Multi-Tenancy Working Groups. Jim is also a co-creator and maintainer... Read More →

Aradhna Chetal

Managing Director - Cloud Security; Co-Chair CNCF, CNCF Security TAG

Visionary & Dynamic CISO with demonstrated success in driving Cyber & digital transformation strategies. Implementing Security at speed of Cloud, Conveying complex security topics to a variety of audiences from CEO to security engineers & developers. Transformational management style... Read More →

Jayashree Ramanathan

Distinguished Engineer, Red Hat

Dr. Jaya Ramanathan is a Distinguished Engineer within Red Hat. She has held Chief Architect roles for identity and access management, audit logging and reporting, data loss prevention, and cloud security, compliance, and governance. Her current focus is autonomous policy based governance... Read More →

Robert Ficcaglia

CTO, SunStone Secure, LLC

Robert Ficcaglia is CTO of SunStone Secure, a virtual CISO and Compliance Advisory firm, and also serves as the Kubernetes Policy Workgroup Co-Chair, CNCF Security Technical Advisory Group (TAG) Lead Assessor, and member of the Kubernetes Security Special Interest Group (SIG-security... Read More →

Policy WG KubeCon NA 2021 pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type Virtual
Presentation Slides Attached yes

11:55am PDT

SIG-Multicluster Intro and Deep Dive - Paul Morie, Apple; Jeremy Olmsted-Thompson & Laura Lorenz, Google

SIG-Multicluster is focused on solving common challenges related to the management of many Kubernetes clusters, across multiple cloud providers (so-called hybrid cloud), and applications deployed across many clusters. In this session, we'll give attendees an overview of the current status of the multi-cluster problem space in Kubernetes and of the SIG. We’ll discuss current thinking around best practices for multi-cluster deployments and what it means to be part of a ClusterSet. Then we’ll highlight current SIG projects, focused use cases, and ideas for what’s next. Most importantly, we’ll provide information on how you can get involved either as a contributor or as a user who wants to provide feedback about the SIG's current efforts and future direction. Bring your questions, problems, and ideas - help us expand the multi-cluster Kubernetes landscape.

Speakers

Jeremy Olmsted-Thompson

Senior Staff Software Engineer, Google

Jeremy is a software engineer who works on Google Kubernetes Engine. His main focus is on simplifying the Kubernetes experience, and making it as easy as possible to deploy applications both within a cluster with things like GKE Autopilot, and across clusters with multi-cluster solutions... Read More →

Laura Lorenz

Software Engineer, Google

Laura Lorenz is a software engineer at Google working on the multicluster experience on GKE. She is an active member of Kubernetes’ special interest group SIG-Multicluster, and a subproject owner for the MCS API.

Paul Morie

Software Engineer, Apple

Paul Morie is a Software Engineer

SIG Multicluster Intro & Deep Dive KubeCon NA 2021 final pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual
Presentation Slides Attached yes

11:55am PDT

Roll Out the Red Carpet for Production Kubernetes Clusters with a Kube-vip - Dan Finneran, Equinix

This talk begins with the presenter trying to improve upon a problem, namely deploying Kubernetes clusters on bare-metal and taking them into production. Often tasked by customers of making their on-premises clusters as "public cloud like" as possible, a lot of work went into writing solutions for these functionality gaps. Time and time again ensuring highly available access to clusters proved problematic to implement and implement into lifecycle patterns. Kube-vip slowly evolved from trying to fix that one use case into a widely used project that provides highly available Kubernetes clusters for various infrastructures. This talk will cover that journey, and show how from on-prem to the edge you can implement both highly available networking and extend that same functionality to "inside" the cluster with load balancer functionality for Kubernetes services with Kube-Vip.

Speakers

Daniel Finneran

Principal Community Advocate, Isovalent

Dan Finneran is a Principal Community Advocate at Isovalent. His journey to today has included bare-metal, jails, zones, vms and containers where he is currently enjoying the fast paced ride in the cloud native space. He also created & maintains a popular Open-Source load-balancer... Read More →

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Room 403 AB + Online

Networking

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

11:55am PDT

sigstore: How We Started, Where We Are, Where We are Headed - Bob Callaway, Red Hat & Dan Lorenc, Google

sigstore is a project under the Linux foundation to provide a non profit , public good software security cryptographic signing service. You can think of it like the 'Lets Encrypt' for software signing. If you have not heard of it yet, you certainly will soon. sigstore is used to protect kubernetes release container images and verify them directly in kubernetes release infrastructure. Many other communities are also in the process of looking at how they can implement sigstore (python, rubygems, wasm, maven). The sigstore community is made up of security experts from the communities such as TUF, Kubernetes, in-toto and engineers from Red Hat, Google, Smallstep, VMWare and many more.

Speakers

Bob Callaway

Sr. Principal Software Engineer, Red Hat

Bob Callaway is a Sr. Principal Software Engineer in the Office of the CTO at Red Hat. He is responsible for helping to define Red Hat’s emerging technology strategy with strategic partners. Prior to joining Red Hat, he worked on OpenStack and storage automation at NetApp, as well... Read More →

Dan Lorenc

CEO, Chainguard

Dan has been working on and worrying about containers since 2015 as an engineer and manager.He started projects like Minikube, Skaffold, and Kaniko to make containers easy and fun, then got so worried about the state of OSS supply-chains he partnered up with Kim and others to f... Read More →

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Concourse Hall 151 + Online

Security + Identity + Policy

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

11:55am PDT

Disaster Recovery of Stateful Applications in a Multi-Cluster Environment - Orit Wasserman & Shyamsundar Ranganathan, Red Hat

Have you ever wondered how to provide for disaster recovery of the state stored in your persistent volumes? What needs to happen to recover the workload on an alternate kubernetes cluster? How can the state be replicated and workloads recreated to use their replicated volumes? Our talk aims to elaborate on the various issues around recovering a workload and its state, in a multi-cluster and a multi region environment. We will demonstrate how replication capable storage systems, such as Ceph/Rook, instead of higher level tools, can be leveraged to provide disaster recovery of workloads across clusters. In addition this session will tease out features required in a multi-cluster control plane, to enable one-click disaster recovery solution for stateful workloads. Attendees will learn how to approach building disaster recovery solutions for their own clouds.

Speakers

Shyam Ranganathan

Principal Software Engineer, Red Hat

Shyam is a Principal Software Engineer at Red Hat, working on storage management automation in cloud native environments, specifically with Kubernetes. He is currently working on orchestration of storage and application recovery/relocation across Kubernetes clusters. In the past... Read More →

Orit Wasserman

Sr. Principal Software Engineer, Red Hat

Orit is an experienced software engineer who is passionate about open source and infrastructure with extensive experience with distributed systems and storage. She is OpenShift Container Storage Architect at Red Hat focusing on storage for Containers, hybrid cloud, multi cloud and... Read More →

kubecon NA Oct 2021 Slides Disaster Recovery of Stateful Applications in a Multi Cluster Environment Orit Wasserman and Shyamsun pdf

Wednesday October 13, 2021 11:55am - 12:30pm PDT
Concourse Hall 152 + Online

Storage

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual
Presentation Slides Attached yes

12:30pm PDT

Virtual Project Office Hours: k8gb

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for k8gb Project Office Hours here: https://community.cncf.io/e/m5p24f/

>> Full list of Project Office Hours

Wednesday October 13, 2021 12:30pm - 1:15pm PDT
Project Office Hours

Project Office Hours

12:30pm PDT

Virtual Project Office Hours: SchemaHero

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for SchemaHero Project Office Hours here: https://community.cncf.io/e/m5hfm4/

>> Full list of Project Office Hours

Wednesday October 13, 2021 12:30pm - 1:15pm PDT
Project Office Hours

Project Office Hours

12:30pm PDT

Lunch Break

Wednesday October 13, 2021 12:30pm - 2:30pm PDT
Solution Showcase - South Hall G

Breaks

12:30pm PDT

CNCF Member-Only - Business Development + Partnerships Networking Event (separate RSVP required)

Join us for an in-person unconference-style networking event at KubeCon + CloudNativeCon North America! This event is open to all member organizations of CNCF and is meant to facilitate networking. With limited space due to COVID, only two (2) representatives may attend per organization. If you’d like to have more attend, please email Katelin and Kristi at meeting@cncf.io to have them added to the waitlist.

This event is specifically designed to help organizations develop strategic partnerships and cross-selling opportunities with other members in the CNCF Ecosystem. A big thank you to our volunteers, Lori Lorusso of JFrog, Andrew Bassett of RX-M, Annie Talvasto of CAST.ai, Sandhya Gorman of Red Hat, and Janki Kaura of StorageOS for helping bring this event to life!

Audience:
Business Development teams, Alliance teams, Partnership leads to cross collaborate

Schedule:
12:30 PM -1:15 PM - Lunch
1:15 PM - 2:00 PM - Facilitated networking at tables
2:00 PM - 2:30 PM - Open free form networking

Individuals must be from a CNCF member company and an RSVP is required to attend. Please RSVP using this form (https://forms.gle/mYQC9rxfAe7M48Rs7) and select your topics of interest during the facilitated discussion portion of the event. See you there!

Wednesday October 13, 2021 12:30pm - 2:30pm PDT
Room 515B

Interactive Sessions

1:30pm PDT

Virtual Project Office Hours: Crossplane

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Crossplane Project Office Hours here: https://community.cncf.io/e/m7n339/

>> Full list of Project Office Hours

Wednesday October 13, 2021 1:30pm - 2:15pm PDT
Project Office Hours

Project Office Hours

1:30pm PDT

Virtual Project Office Hours: Fluentd

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Fluentd Project Office Hours here: https://community.cncf.io/e/m5zax2/

>> Full list of Project Office Hours

Wednesday October 13, 2021 1:30pm - 2:15pm PDT
Project Office Hours

Project Office Hours

1:30pm PDT

Kubernetes Project SIG Meet and Greet

The Contributor Summit SIG Meet and Greet is for both SIGs and WGs, new and experienced contributors. We will have representatives from each SIG / WG who can answer questions and talk more about how to get involved.

The SIG M&G is for both:

Experienced Kubernetes contributors who are interested in expanding their involvement in new SIGs / WGs.
New contributors, many of whom have extensive experience from other projects, and are excited to get started in Kubernetes after attending a New Contributor Workshop.

Wednesday October 13, 2021 1:30pm - 2:30pm PDT
JW Marriott L.A. Live | Platinum Ballroom D+E

Interactive Sessions

2:30pm PDT

Movienight 101: How to Power a Video Streaming with Kubernetes and WebRTC - Rachel Sheikh, Twitter

Movienight 101: How to Power Video Streaming with Kubernetes and WebRTC - Over the past several years, the streaming industry has boomed, with industry leaders like Netflix and Amazon setting the pace for newcomers like Discovery Plus. One of the most difficult challenges to watching movies with others around the world, however, is syncing playback together. Kubernetes is a great solution to solving this challenge. Through its built in ability to load balance traffic to containers, as well as self-healing capabilities, video streaming is able to function seamlessly without a large amount of computational overhead. This talk will provide a quick background on WebRTC, walk through a simplified process of setting up WebRTC to work with Kubernetes, and share some learnings/takeaways gathered from spinning up this project!

Speakers

Rachel Sheikh

Software Engineer, Twitter

I'm a software engineer at Twitter, working on live audio and video products, as well as creating discovery features for both. Feel free to talk to me about streaming, GraphQL, and Go!

Movienight KubeCon(1) pptx

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person
Presentation Slides Attached yes

2:30pm PDT

The Control Loop As An Application Development Framework - Nick Santos, Tilt

Kubernetes emerged as A Good Idea® in part because it gives you real-time, circular feedback: it's a control loop. Something watches, something reacts, equilibrium is maintained. In this talk we’ll discuss how this model is useful not only for orchestrating containers, but for many applications that handle real-time feedback loops. And thanks to Kubernetes, most of the scaffolding for it is already out there, ready to be used. As a use-case the speaker will talk about a development tool that reacts to source code and server status changes in real-time—a perfect match for a Kubernetes-style control loop. Adopting control loops led to a simpler, more modular app. It made the codebase easier to grasp for new developers, and the application as a whole more uniform and easy to extend. Plus, Kubernetes already has a rich ecosystem of tools for it. Lastly, the speaker will discuss other examples in which this model applies and whether this model makes sense for your own applications.

Speakers

Nick Santos

Principal Software Engineer, Docker

Nick co-founded Tilt Dev, a multi-service dev environment for Kubernetes. He previously led UI dev teams on Google Sheets and Medium -- WYSIWYG editors to help people get work done. He’s a fan of using computers to do just enough so that we don’t have to use computers anymore... Read More →

The Control Loop As An Application Development Framework pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person
Presentation Slides Attached yes

2:30pm PDT

GitOps+Jenkins-CI With Declarative Everything - Kingdon Barrett, Weaveworks

Flux is the incubating CNCF tool that ushered GitOps on to the scene, and Jenkins is the OG build machinery name-to-know for large enterprises. Learn to deploy Jenkins declaratively with Flux's Helm Controller, how to build an app repo with Jenkins for deployment with Flux, how to test a Helm chart with Helm Test through Flux's Flagger, and how to deploy new releases automatically with Flux’s Image Automation Controller and Helm controller. Declarative delivery with Helm and Kustomize does not require Jenkins to have direct access to the cluster; Flux runs as an agent inside a cluster and uses a pull-based model for delivery of apps, treating the git repository as a single source of truth. Configuration as code runs under the hood of an all-declarative Jenkins infrastructure from end to end, a declarative Jenkinsfile, pipeline for branches and PRs to build and push images. Flux is first configured to pull new image builds into a cluster, then Porter modernizes our image build process!

Speakers

Kingdon Barrett

Open Source Support Engineer, Weaveworks

Kingdon Barrett is a Flux maintainer and an Open Source Support Engineer on the Developer Experience team at Weaveworks. He is a long-time Helm enthusiast and Ruby/Go developer who also works on the legendary cloud-native PaaS for Kubernetes, Hephy Workflow, in his fun time.

gitops jenkins kc2021 gitops jenkins pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
411 Theater + Online

CI/CD

Content Experience Level Advanced (Expert level experience)
Talk Type In-Person

2:30pm PDT

Kubernetes on Edge: Bringing Your Code to Constrained Places - Steven Wong, VMware; Dejan Bosanac, Red Hat; Kilton Hopkins, Edgeworx

The main goal of IoT and edge solutions is to bring the workloads closer to sources of data, events and transactions. In many cases this means maintaining them in places with network and compute resource constraints. This session will cover technologies and best practices available to achieve this goal. We will start by covering some common challenges of creating IoT edge workloads. We’ll discuss pros and cons of using traditional containers versus upcoming technologies such as WebAssembly and WASI. Next, we’ll explore mechanisms of deploying built artifacts to the actual hardware, ranging from using different Kubernetes deployments, to simpler container runtimes and specialized Edge platforms. We’ll also focus on the evolving state of running WebAssembly workloads using Kubernetes and how to apply best practices to IoT and edge use cases. We’ll try to provide general guidance on how to choose the best approach for your project with a practical demo of one of the possible solutions.

Speakers

Dejan Bosanac

Software Engineer, Red Hat

I’m a software engineer at Red Hat with an interest in open source and integrating systems. Over the years I’ve been involved in various open source communities tackling problems like: Enterprise messaging and integration, IoT cloud platforms and Edge computing.

Steven Wong

VMware

Steve Wong has been active in the Kubernetes community since 2015. He is a co chair of the CNCF Working Group. Steve is co-chair of the VMware User Group on the Kubernetes project. He has implemented industrial control systems for many factories, pipelines, and process control systems... Read More →

Kilton Hopkins

CTO, Edgeworx

Kilton started programming computers when he was 8 years old. He started a software company a few years later. The world is very different than it was back then, but Kilton is still bringing new technologies to life.Kilton is the co-founder and CEO of Edgeworx, a startup that provides... Read More →

Kubernetes on Edge Bringing Your Code to Constrained Places KubeCon NA 2021 pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

2:30pm PDT

Overview and State of Linkerd - Oliver Gould, Buoyant

In this talk, maintainers from the Linkerd project will present an overview of the project and an update on upcoming releases. They will cover what Linkerd is and how it compares to other service meshes; what the latest features and functionality are; what to expect in upcoming releases; and how you can get involved in one of the CNCF's most talked-about projects. This talk will cover features from the latest Linkerd release, as well as the latest on Linkerd's Rust micro-proxy, Linkerd2-proxy.

Speakers

Oliver Gould

CTO, Buoyant, Inc.

Oliver is the CTO & co-founder of Buoyant, where he leads engineering. Prior to founding Buoyant, he was a staff infrastructure engineer at Twitter, where he led the Observability, Traffic, and Configuration & Coordination teams---projects essential to Twitter's adoption of a modern... Read More →

Overview and State of Linkerd Kubecon NA 2021 pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

2:30pm PDT

Rook: Intro and Ceph Deep Dive - Travis Nielsen, Sebastien Han & Blaine Gardner, Red Hat; Satoru Takeuchi, Cybozu, Inc

The Rook project will be introduced to attendees of all levels and experience. Rook is an open source cloud-native storage operator for Kubernetes, providing the platform, framework, and support for a diverse set of storage solutions to natively integrate with Kubernetes. Rook turns storage software into self-managing and self-healing storage services. A deep-dive will be presented for the Ceph storage provider to show how Rook provides stable block, shared file system, and object storage for your production data. The recent features in the v1.7 release will be covered to further illustrate how Rook continues to be enhanced for production environments. Rook was accepted as a graduated project by the Cloud Native Computing Foundation in October 2020.

Speakers

Travis Nielsen

Senior Technical Staff Member, IBM

Satoru Takeuchi

Storage Architect, Cybozu

Satoru is a software developer of an on-premise Kubernetes cluster and Rook/Ceph cluster at Cybozu. He is a maintainer of Rook/Ceph. He made a presentation named "Revealing BlueStore Corruption Bugs in Containerized Ceph Clusters" at Ceph Virtual 2022 and also made some Rook maintainer... Read More →

Blaine Gardner

Senior Advisory Systems and Software Engineer, IBM Storage

Blaine is a Software Engineering Professional at IBM Storage on the OpenShift Data Foundation (ODF) team. He is a maintainer of the CNCF-graduated Rook project making sure Ceph and Kubernetes live together in harmony. Blaine lives in Denver, Colorado and enjoys rock climbing, partner... Read More →

Sebastien Han

Senior Principal Software Engineer, Red Hat

Sebastien Han currently serves as a Senior Principal Software Engineer, Storage Architect for Red Hat. He has been involved with Ceph Storage since 2011 and has built strong expertise around it. Curious and passionate, he loves working on bleeding edge technologies and identifying... Read More →

Slides with notes pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

2:30pm PDT

TAG Observability Update - Matt Young, Everquote & Alolita Sharma, Amazon

Calling all disciplines!

At the CNCF TAG Observability session, we'll introduce the TAG and talk about why you might want to join us!

Projects, Vendors, and End Users are all encouraged to share experiences, ideas, and creations. We welcome writers, product managers, designers, producers, platform operators, enginers, end users, and cloud practitioners. We have ambitious goals and are fostering the growing Observability community. Opportunities in this rapidly expanding domain are plentiful.

TAG Observability welcomes your ideas, participation, contributions and YOU. Come check us out on the 1st and 3rd Tuesdays every month.

Speakers

Alolita Sharma

Apple AIML Observability Engineering, Apple

Alolita Sharma is an OpenTelemetry Governance Committee member, CNCF Observability TAG co-chair and CNCF Governing Board member from Apple. She leads Apple’s AIML observability teams. She contributes to open source and open standards at OpenTelemetry, Unicode and W3C. She has served... Read More →

Matt Young

Principal Cloud Architect, Everquote

Matt is a Principal Cloud Architect @ EverQuote, delivering infrastructure, services, and developer-focused tooling for cloud-native applications. With 20+ years of industry experience he’s happily worn Dev, Test, Support and Research hats across the domains of embedded systems... Read More →

(recorded version) KubeCon NA 2021 CNCF TAG Observability Updates pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual

2:30pm PDT

K8snetlook – Root-Causing K8s Network Problems in an Automated Way - Arun Sriraman, VMware

More and more applications in production call Kubernetes their home. As the density of workloads on a Kubernetes cluster increases, so does the probability of downtime due to an underlying network issue. Some of the most common quibbles we hear from users: I can’t connect to my service A running within a K8s cluster or my service A seems to not be responding some % of the time. What do you do in these situations; Do you call the network gurus to help out, or kubectl delete the application and let Kubernetes self heal? What if you could identify an issue without needing to master the internals of K8s Networking? Arun will go over the various issues seen in the data plane, from dns, external traffic to internal app-to-app communication, and then discuss open source tools available to identify these issues in real time. We will look at k8snetlook - a simple open source tool that empowers every Kubenretes user; expert or otherwise, to root cause these issues in an automated way.

Speakers

Arun Sriraman

Engineering Manager, VMware

Arun Sriraman currently leads his team in delivering software-defined WAN solution and is looking to evolve the SD-WAN space by leveraging cloud-native technologies. Prior to this, he was leading the Kubernetes team at Platform9 simplifying Kubernetes cluster lifecycle management... Read More →

KCCNC NA 2021 K8snetlook pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Room 403 AB + Online

Networking

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

2:30pm PDT

What Kind of CPU is it Anyways? Airbnb's Journey to Heterogeneous Clusters - David Morrison & Evan Sheng, Airbnb

In this talk we describe the technical and organizational hurdles Airbnb needed to overcome to migrate from running "homogeneous" Kubernetes clusters (i.e., clusters in which the majority of nodes are the same type) to "heterogeneous" clusters (i.e., clusters in which pods can be scheduled on a variety of different node types). Why did we make this change? Two reasons: cost and efficiency. Restructuring our clusters to support multiple different node types unlocked the ability to run workloads on the best machines for that workload, not just whatever our "default" happened to be. However, getting to this point wasn't easy. We'll describe in this presentation changes that were required in almost every part of our infrastructure, from changes to the ways we provision and scale clusters all the way down to changes in the API that our customer teams use. We'll also discuss the organizational hurdles that we had to address to build confidence in this new operating model.

Speakers

Evan Sheng

Software Engineer, Airbnb

David Morrison

Staff Software Engineer, Airbnb

What kind of CPU is it anyways (1) pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Room 408 AB + Online

Operations

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

2:30pm PDT

Kubernetes Exposed! Seven of Nine Hidden Secrets That Will Give You Pause - Ian Coldwater, Twilio & Brad Geesaman, Aqua Security

Think you know Kubernetes? Think again. Kubernetes is full of uncommon knowledge and doesn’t always behave the way we assume, containing unexpected gotchas and surprising behaviors that’ll make you say, “how come nobody told me this earlier?” In this talk, Ian Coldwater and Brad Geesaman will shine a light on hidden secrets in Kubernetes, demonstrating scary science such as pods in non-existent namespaces, bypassing network policies via DNS, fun with capable sidecar containers, and one weird trick attackers don’t want you to know. Defenders hate it! Don’t build your next threat model before watching this! Attendees will learn how not to get caught off guard by learning what to watch out for and how to better secure their systems. You won’t believe what happens next.

Speakers

Brad Geesaman

Staff Security Engineer, Ghost Security

Brad Geesaman is a Staff Security Engineer at Ghost Security and focuses on researching and building cloud-native systems with a security practitioner's mindset. When he’s not hacking on containerized environments, he enjoys spending time with his family in Virginia, eating Mexican... Read More →

Ian Coldwater

Security Researcher, Independent

Ian Coldwater is a security researcher specializing in hacking and hardening Kubernetes, containers, and cloud native infrastructure. When they're not busy being co-chair of Kubernetes SIG Security, they like to read all the docs, participate in Capture the Flag competitions, and... Read More →

Kubernetes Exposed KubeCon NA 2021 pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Concourse Hall 151 + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

2:30pm PDT

RabbitMQ on Kubernetes Deep Dive - David Ansari, VMware

RabbitMQ is one of the most widely deployed open source message brokers. It is popular for its flexible routing topologies, high scale throughput and support for multiple messaging protocols. This talk presents RabbitMQ on Kubernetes. It gives an introduction to the RabbitMQ Cluster Operator on how to reliably operate RabbitMQ clusters. It provides best practices about monitoring and upgrading RabbitMQ while millions of messages flow through the broker. The presentation covers the Messaging Topology Operator and its use cases to declaratively deploy RabbitMQ resources such as queues, exchanges, and bindings. The session ends with an update of newly released RabbitMQ features and an outlook of what the community can expect of RabbitMQ on Kubernetes in 2022.

Speakers

David Ansari

Software Engineer, VMware

David is a software engineer at VMware contributing to RabbitMQ for Kubernetes, RabbitMQ for Cloud Foundry, and RabbitMQ Core. In the past, he worked for SAP working on Cloud Foundry BOSH. He graduated from University College London with a MSc in Networked Computer Systems. In his... Read More →

KubeConNA2021RabbitMQOnK8sDeepDive pdf

Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Concourse Hall 152 + Online

Storage

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

2:30pm PDT

Virtual Project Office Hours: Meshery

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Meshery Project Office Hours here: https://community.cncf.io/e/mwa5aw/

>> Full list of Project Office Hours

Wednesday October 13, 2021 2:30pm - 3:15pm PDT
Project Office Hours

Project Office Hours

2:30pm PDT

Virtual Project Office Hours: Porter

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Porter Project Office Hours here: https://community.cncf.io/e/myf5xu/

>> Full list of Project Office Hours

Wednesday October 13, 2021 2:30pm - 3:15pm PDT
Project Office Hours

Project Office Hours

3:25pm PDT

Who Killed My Pod? #Whodunit - Suneeta Mall, Nearmap

A few weeks ago, we deployed a brand new thoroughly tested, and profiled application onto a self-managed Kubernetes cluster. Suffice to say, all hell broke loose. The pods were getting OOMKilled with error code 137 left and right. This sparked a massive crime scene investigation and some interesting insights were discovered. In this Kube-CSI [crime scene investigation] episode, we will talk about exactly whodunit, why, and the fix!

Speakers

Suneeta Mall

Director of AI Model Systems, Nearmap

Suneeta Mall is the Director of AI Model Systems at Nearmap. She is leading the ML Engineering efforts of Artificial Intelligence division at Nearmap. In the past, she has led the efforts of migrating Nearmap's engineering framework to Kubernetes. In her 12 years of software industry... Read More →

SuneetaMall WhoKilledMyPod KubeConNA 2021 pptx

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

3:25pm PDT

Panel Discussion: OpenGitOps and the GitOps Working Group - Cornelia Davis, Amazon; Dan Garfield, Codefresh; Christian Hernandez, Red Hat; Chris Sanders, Microsoft; Leonardo Murillo, Weaveworks

Hundreds of organizations today are leveraging GitOps to successfully run and manage complex software systems, benefitting from its inherent modern development best practices as well as the tools that implement its responsive continuous deployments. GitOps adoption has seen dozens of companies innovate to offer solutions, and inspired several open source projects including Argo and Flux, both CNCF projects. With innovation accelerating and the number of stakeholders increasing, the time has come for a clear, vendor-neutral definition of GitOps. Inspired by increased interest and informed by years of working toward solutions, a CNCF GitOps Working Group was formed in 2020 to discover and standardize the definition of GitOps and its principles. This group will also focus on interoperability between tools, conformance, and certification. Join us for a panel discussion with members from several of the founding organizations to learn about GitOps, OpenGitOps, and future work.

Speakers

Dan Garfield

Chief Open Source Officer and Co-Founder, Codefresh

Dan Garfield is the Co-founder and Chief Open Source Officer of Codefresh, a CI/CD platform powered by GitOps and Argo. He helped launch the GitOps Working Group and helped lead the creation of the Open GitOps principles. As an Argo Maintainer, Kubernaut, Google Developer Expert... Read More →

Christian Hernandez

Head of Community, Akuity

Christian is a well rounded technologist with experience in infrastructure engineering, systems administration, enterprise architecture, tech support, advocacy, and product management. Passionate about OpenSource and containerizing the world one application at a time. He is currently... Read More →

Cornelia Davis

Product Management, CNCF TOC, Amazon

Chris Sanders

Senior Program Manager, Microsoft

Chris is a program manager in Microsoft Azure and works on Azure Arc and Kubernetes Configuration. He manages the GitOps capability in Azure.

Leonardo Murillo

Principal Partner Solutions Architect, Weaveworks

Principal Partner Solutions Architect at Weaveworks. Co-Chair for the GitOps Working Group, Maintainer of the OpenGitOps Project and CNCF Speaker and Costa Rica Community Chapter Organizer.

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Petree Hall D + Online

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

3:25pm PDT

Shh, It’s a Secret: Managing Your Secrets in a GitOps Way - Jake Wernette & Josh Kayani, IBM

How do you handle secrets? That is the first question that is asked whenever you are talking about GitOps. And it is a valid question! Do you put secrets directly in Git? Do you inject them in runtime? This is something that is trying to be answered across the community and in many different ways. Jake and his team at IBM looked at the landscape of GitOps specifically with Argo CD and could not find something that fit their needs. This talk will showcase how they were able to build and adopt argocd-vault-plugin and how it was able to simplify their secret management while allowing them to manage it in a GitOps way. Hopefully this talk will help you along in your GitOps journey and bridge the secrets gap that we are seeing so often in the community.

Speakers

Jacob Wernette

Site Reliability Engineer, IBM

Jake is a Site Reliability Engineer at IBM. He started his career at IBM and returned after a short stint with Red Hat, where he first got involved in the open source community. Jake is very interested in the Cloud Native ecosystem and GitOps, and has recently started to contribute... Read More →

Josh Kayani

Software Engineer, IBM

Josh is a Software Engineer at IBM, supporting an internal cloud platform. He started his career at IBM 2 years ago and has been there ever since. Josh finds CI/CD integration with cloud native tools to be an interesting, and at times, challenging problem. Josh is a maintainer of... Read More →

AVP KubeCon NA 2021 pdf

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
411 Theater + Online

CI/CD

Content Experience Level Beginner (Very basic information)
Talk Type In-Person

3:25pm PDT

Cloud Native Apps with Server-Side WebAssembly - Liam Randall, Cosmonic

Server-side WebAssembly has the potential to increase security, extend application portability, and simplify cloud-native applications when operated in the Kubernetes ecosystem. This talk explores the pros and cons of different deployment models - embedded in a container, native execution, or embedded into other components. We will demonstrate the power that WebAssembly brings to even those projects hosted in traditional containers. This talk features a live build, compilation, deployment, and operation of reference applications. Featuring wasmCloud, Krustlet, and Envoy.

Speakers

Liam Randall

Founder, Cosmonic

Liam Randall - Entrepreneur. Investor. Advisor. Keynote Speaker. Open Source.With a high technology career spanning 25 years, Liam Randall has worked at every level of the information systems pipeline - from building and operating large networks, and developing and maintaining large... Read More →

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Room 502 AB + Online

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

3:25pm PDT

Creating Cloud Native Security - Emily Fox, Apple; Brandon Lum, IBM; Andres Vega, VMware

Cloud native security is not new, but is under constant iteration and creation. As cloud native innovation occurs, the Security TAG is lock-step in considering, analyzing, and guiding the community on the most appropriate security mechanisms, architectures, design patterns, and tooling. This presentation covers an introduction to the Security TAG, their charter and scope, and then deep dives on several efforts the TAG has undertaken (completed and in progress) with their community impact such as the Supply Chain Security Paper, CNCF Project Security Reviews, Security Pals, and so much more. This session is for anyone interested in cloud native, cloud native security, or wishes to understand how a community of passionate volunteers can change an entire technology ecosystem.

Speakers

Emily Fox

Security Lead for Emerging Technologies, Red Hat

Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She promotes the cross-pollination of development and security practices. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and... Read More →

Brandon Lum

Senior Software Engineer, IBM

Brandon loves designing and implementing computer systems (with a focus on Security, Operating Systems, and Distributed/Parallel Systems). He enjoys tackling both technical and business challenges and has a side interest in organizational behavior and leadership. At IBM Research... Read More →

Andres Vega

Network Virtualization Systems Engineer, VMWare

KubeCon NA 2021 (1) pdf

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

3:25pm PDT

Deep Dive CoreDNS - Yong Tang, Ivanti Inc.; Miek Gieben, Independent; John Belamaric, Google

Best known for its ability to serve as the cluster DNS of Kubernetes, CoreDNS is a flexible and extensible DNS server with a focus on service discovery. The flexibility and extensibility of CoreDNS comes from its unique plugin-based architecture and its easy-to-use Corefile configurations. In this session, we will take a close look at the CoreDNS extension points for developers. We will learn how to build custom DNS applications based on CoreDNS, including: building a custom CoreDNS binary that includes external plugins; building a specialized binary that uses CoreDNS as a library; building your own CoreDNS plugin. We will also update the current state and the road map of CoreDNS for the near future.

Speakers

Miek Gieben

n/a, Independent

I'm lead developer of CoreDNS. Come talk to about service discovery, DNS and the future of these technologies in a cloud native world.

Yong Tang

Senior Director, Engineering, Ivanti

Yong Tang is Senior Director of Engineering at Ivanti. He is a core maintainer of CoreDNS and contributes to many container, cloud-native, and machine learning projects for the open source community. In addition to CoreDNS, he is a maintainer of Docker/Moby. He is also a maintainer... Read More →

John Belamaric

Senior Staff Software Engineer, Google

John Belamaric is a Senior Staff Software Engineer at Google with over 25 years of software design and development experience. As a co-chair of Kubernetes SIG Architecture, he provides leadership on production readiness, conformance, and overall software architecture for the Kubernetes... Read More →

KubeCon Los Angeles.pptx pdf

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

3:25pm PDT

SIG Instrumentation Introduction and Deep Dive - Han Kang & David Ashpole, Google; Elana Hashman, Red Hat; Frederic Branczyk, Polar Signals

Kubernetes SIG Instrumentation is responsible for ensuring high quality and consistent instrumentation across the Kubernetes project. We will begin with an introductory overview of the efforts the SIG Instrumentation has worked on in the past and is currently working on. This deep dive session will go in detail currently ongoing efforts happening within SIG Instrumentation to share with the audience concrete pieces of work to encourage future collaboration. Software engineering and operations are both disciplines practiced in SIG Instrumentation, and any experience will help the special interest group's mission. Join this session to learn how to get involved in SIG Instrumentation to make instrumentation even better!

Speakers

Frederic Branczyk

Founder, Polar Signals

Han Kang

Senior Staff Software Engineer, Google

Han Kang is a Senior Staff Software Engineer at Google. Han co-chairs SIG instrumentation while also participating in SIG API Machinery, focusing on operational aspects of managing Kubernetes clusters.

Elana Hashman

Principal Software Engineer, Red Hat

Elana Hashman currently works for Red Hat as a Principal Software Engineer on the OpenShift Container Platform Node Team, working upstream in Kubernetes SIG Node. Previously, she served as an SRE and technical lead on Azure Red Hat OpenShift. She is a subproject lead for the SIG Node... Read More →

David Ashpole

Senior Software Engineer, Google

David Ashpole currently works for Google on Kubernetes and OpenTelemetry. He was previously deeply involved in Sig-Node, and drove many enhancements around monitoring and resource management. He is currently co-Tech Lead for Sig-Instrumentation, and is working on adding Distributed... Read More →

KubeCon NA 2021 SIG Instrumentation pdf

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

3:25pm PDT

The Future of Multi-Tenancy in Kubernetes - Tasha Drew, VMware; Adrian Ludwin, Google; Fei Guo, Alibaba; Jim Bugwadia, Nirmata

Applications need multi-tenancy. Shared services need multi-tenancy. Internal users need multi-tenancy. Tenancy requires segmentations at all layers of the infrastructure and services stack, not to mention surrounding capabilities like charge back, service priority, and cost optimization. Where is it all going? What is the future of multi-tenancy? Join the leads of the upstream working group for multi-tenancy to find out! We will discuss how we see users and entrprises leveraging multi-tenancy, the tools and capabilities our group and the rest of Kubernetes upstream community have been building to make multi-tenancy … tenable … and answer audience questions.

Speakers

Jim Bugwadia

Co-founder and CEO, Nirmata

Tasha Drew

Senior Director, xLabs, VMware

Tasha has been an innovative product leader in Silicon Valley for over a decade. She is Senior Director of xLabs in the Office of the CTO’s Advanced Technology Group at VMware. She is co-chair of the Kubernetes Working Group for Multi-Tenancy and co-chair of the Kubernetes SIG Usability... Read More →

Fei Guo

Software Engineer, Microsoft

Fei Guo has been worked on various projects in the areas of workload automation, multitenancy, scheduling and edge computing in Kubernetes.

Adrian Ludwin

Senior Software Engineer, Google

Adrian is a software engineer on the Google Kubernetes Engine (GKE) in Kitchener, Ontario, and created the Hierarchical Namespace Controller (HNC). Before Google, he was a developer at Intel’s Programmable Solutions Group (formerly Altera) in Toronto, and specialized in parallel... Read More →

Multitenancy WG KubeCon NA 2021 pdf

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual

3:25pm PDT

OpenTelemetry Collector Deployment Patterns - Juraci Paixão Kröhling, Red Hat

The OpenTelemetry Collector is a versatile piece of software and can be deployed in numerous ways. In this talk, we’ll explore some of these patterns, starting with the classic “agent and collector” and landing at “scalable tail-based sampling,” talking about “multi-tenancy” along the way. We’ll see how they look in theory and practice with live demos on a real Kubernetes cluster. You’ll leave this session with knowledge about some of the essential processors for the OpenTelemetry Collector, how to employ them individually, and as part of a vaster deployment topology.

Speakers

Juraci Paixão Kröhling

Principal Software Engineer, Grafana Labs

Juraci Paixão Kröhling is a software engineer at Grafana Labs, a maintainer of the OpenTelemetry project, a member of the project's governing board and CNCF Ambassador. He has presented about distributed tracing, OpenTelemetry, and other related topics at conferences like KubeCon... Read More →

KubeCon NA 2021 OpenTelemetry Collector Deployment Patterns pdf

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Room 403 AB + Online

Observability

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

3:25pm PDT

Trimaran: Real Load Aware Scheduling in Kubernetes - Abdul Qadeer, PayPal & Chen Wang, IBM

Kubernetes is a popular solution for container orchestration and cluster management. Cluster management creates opportunity to improve resource utilization which can provide an organization with cost savings. To achieve this, we can make the native Kubernetes scheduler aware of the gap between its declarative resource allocation model and actual node resource utilization. We can pack pods more efficiently in a lower number of nodes considering real load of nodes. Native scheduler on the other hand only considers pod requests and allocable resources on nodes with its default plugins. We introduced two plugins to the scheduler community - TargetLoadPacking and LoadVariationRiskBalancing under the Trimaran framework to address this problem with collaboration between PayPal and IBM. The plugins provide scheduling support for all pod QoS guarantees.

Speakers

Chen Wang

Research Staff Member, IBM Research

Chen Wang is a Research Staff Member at the IBM T.J. Watson Research Center. Her interests lie in Kubernetes, Container Cloud Resource Management, Cloud Native AI systems, and applying AI in Cloud system management. She is an open-source advocate, a Kubernetes contributor, and a KubeCon... Read More →

Abdul Qadeer

Senior Software Engineer, PayPal

Abdul Qadeer is a senior software engineer with focuses on distributed systems and security. He has 4+ years of experience working at PayPal and Cisco in greenfield projects with open source contributions in Apache Flink and Kubernetes communities. He has an MS in Computer Science... Read More →

Trimaran Kubecon NA 2021 pptx

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Room 408 AB + Online

Performance

Content Experience Level Beginner (Very basic information)
Talk Type In-Person

3:25pm PDT

Exploiting a Slightly Peculiar Volume Configuration with SIG-Honk - Ian Coldwater, Twilio; Brad Geesaman & Rory McCune, Aqua Security; Duffie Cooley, Isovalent

When the hacker crew of geese collectively known as “SIG-Honk” read about a new CVE in the Kubernetes ecosystem affecting the runc project (CVE-2021-30465), they flew into action. With just a few details in the initial advisory notes as guidance, they were able to collaborate and generate a proof-of-concept exploit for Kubernetes, iterate and validate it against multiple types of clusters, and kick off a renewed coordinated disclosure process to help keep users safer. Join Ian Coldwater, Brad Geesaman, Rory McCune, and Duffie Cooley as we bring our expertise and experiences to share the details of our methodology, walk through our approach, and demonstrate the exploit and its effectiveness live on stage. Attendees will learn about the process of exploit development and disclosure, find out how to stay informed about vulnerabilities in open source dependencies that may affect the security of their clusters, and walk away with a new perspective on how to honk.

Speakers

Brad Geesaman

Staff Security Engineer, Ghost Security

Ian Coldwater

Security Researcher, Independent

Duffie Cooley

Field CTO, Isovalent

Duffie is Field CTO at Isovalent focused on helping enterprises find success with Cilium and modern security tooling. Duffie has been working with all things systems and networking for 20 years and remembers most of it. A student of perspective, Duffie is always interested in working... Read More →

Rory McCune

Cloud Native Security Advocate, Aqua Security

Rory has worked in the Information and IT Security arena for the last 20 years in a variety of roles. These days he spends most of his work time on container, cloud and application security as a principal consultant with NCC Group. He's an active member of the container security community... Read More →

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Concourse Hall 151 + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

3:25pm PDT

What You Need to Know Before Using Local Persistent Volumes - Sebastien Guilloux, Elastic

As Kubernetes matures, it becomes easier to run distributed databases and other stateful workloads on top of it. In order to do so, one important thing to figure out is how to manage persistent data. Local PersistentVolumes, as opposed to network-attached ones, can be particularly tricky to operate at scale. In this talk we will explore various options to make use of local volumes, along with a few important gotchas to be aware of. Come learn about static vs. dynamic provisioning, storage-aware scheduling problems, host failures, upgrades, and why your Pods may stay stuck in a Pending state.

Speakers

Sebastien Guilloux

Principal Software Engineer, Elastic

Sébastien is a software engineer at Elastic. He has spent most of his career working with distributed systems, building resilient applications and orchestrating Apache Kafka and Elasticsearch nodes around the world. He currently works on writing a Kubernetes operator for Elasticsearch... Read More →

What you need to know before using Local PersistentVolumes Kubecon NA 2021 pdf

Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Concourse Hall 152 + Online

Storage

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

3:30pm PDT

Virtual Project Office Hours: Open Policy Agent

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Open Policy Agent Project Office Hours here: https://community.cncf.io/e/mmjpgc/

>> Full list of Project Office Hours

Wednesday October 13, 2021 3:30pm - 4:15pm PDT
Project Office Hours

Project Office Hours

3:30pm PDT

Virtual Project Office Hours: Pixie

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Pixie Project Office Hours here: https://community.cncf.io/e/m2s2f8/

>> Full list of Project Office Hours

Wednesday October 13, 2021 3:30pm - 4:15pm PDT
Project Office Hours

Project Office Hours

4:00pm PDT

Coffee Break

Wednesday October 13, 2021 4:00pm - 4:30pm PDT
Solution Showcase - South Hall HJK

Breaks

4:15pm PDT

EmpowerUs, sponsored by Chronosphere

Attendees who identify as women, non-binary individuals and allies are invited to join this special event and program, sponsored by Chronosphere. With women and non-binary individuals being minorities in tech, it’s especially important for these groups to know how to drive influence and gain respect and notoriety amongst their male peers. We will ask questions to our panelists (all women or non-binary) about how they have overcome the challenges of being a minority within their space, and how they have been able to avoid imposter syndrome.

Afternoon refreshments will be served.

RSVP not required, however seating is limited.

Moderators

Heather Joslyn

Features Editor, The New Stack

Heather Joslyn is features editor of The New Stack, with a special interest in management and careers issues that are relevant to software developers and engineers. She previously worked as editor-in-chief of Container Solutions, a Cloud Native consulting company, and as an editor/reporter... Read More →

Speakers

Aparna Dhinakaran

CPO, Arize

Aparna Dhinakaran is Chief Product Officer at Arize AI, a startup focused on ML Observability. She was previously an ML engineer at Uber, Apple, and Tubemogul (acquired by Adobe). During her time at Uber, she built a number of core ML Infrastructure platforms including Michaelangelo... Read More →

Elenore Bastian

Engineering Manager, Chronosphere

Elenore Bastian is an engineering manager at Chronosphere for the Platform team. The Platform team focuses on outcomes around how users interact with the product, and Elenore focuses on people, process, and culture - always optimizing for dev happiness and productivity. She chose... Read More →

Sophia Vargas

Research Analyst, Google

Sophia Vargas is a Research Analyst in Google’s Open Source Programs Office, supporting multiple research efforts that span project health, contributor experience, and open source economics. Sophia also works with the CHAOSS project, refining metrics for project risk and viability... Read More →

Colleen Coll

Digital Marketing Manager, The New Stack

Colleen Coll is the Manager of Digital Media Operations & Marketing for The New Stack, who works with sponsors and TNS journalists to create podcasts and livestreams for the TNS developer community. On occasion, she’ll make an appearance from behind the scenes to co-host live events... Read More →

Wednesday October 13, 2021 4:15pm - 5:45pm PDT
JW Marriott L.A. Live | Platinum Ballroom D+E + On Demand

Diversity + Inclusion

4:30pm PDT

Implementation Challenges: From HPC to Containers in the Academy - Lukáš Hejtmánek & Viktória Spišaková, Masaryk University

Container computing does not have a lengthy history in the academic environment. Traditionally, HPC holds the first place because of high resource availability, direct multi-tenancy support, and researchers having legacy experience. This session will introduce efforts made at the CERIT-SC/Institute of Computer Science of Masaryk University to implement Kubernetes infrastructure and move scientific computing to containers. We will present challenges of multi-tenancy assurance, deploying applications under users, resource sharing, and building trust towards containerization among the research community. We will discuss several created solutions, present a couple of European open-source projects and demonstrate how containers help in the academic environment. Furthermore, we present other issues we fight and propose ideas on new features.

Speakers

Lukáš Hejtmánek

IT architect, Masaryk University

Lukas Hejtmanek received his Ph.D. degree in Computer Science from the Masaryk University, Brno, Czech Republic. He works as IT architect at Masaryk University in CERIT-SC project and is also storage specialist in at CESNET. His main IT interest is to improve architecture of HPC systems... Read More →

Viktória Spišaková

IT specialist, Masaryk University

I am 22 y.o. female IT specialist in the area of container cloud computing, HPC integration with nearly 4 years experience as Linux admin and DevOps. Currently, I pursue PhD degree at Masaryk University where I research container-based solutions for problems of academic infrastructures... Read More →

kubecon 2021 pdf

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

4:30pm PDT

Automated, Distributed Systems Testing for Kubernetes Controllers - Lalith Suresh, VMware & Xudong Sun, University of Illinois at Urbana-Champaign

The Kubernetes ecosystem has thousands of controller implementations for different applications and platform capabilities. A controller’s correctness is therefore critical, and yet, can be compromised by myriad factors, such as asynchrony in the overall distributed system, unexpected failures, networking issues, and controller restarts. This in turn can lead to severe safety violations, such as incorrectly deleting StatefulSets and PVCs. Controller-developers unfortunately lack automated testing tools to harden their code against these conditions. In this talk, Xudong Sun and Lalith Suresh will describe common bug patterns in Kubernetes controllers. They will also present an automated testing tool called Sieve, which systematically tests Kubernetes controllers to harden them against the aforementioned scenarios. Sieve has already discovered (and led to fixes for) several safety-critical bugs in popular Kubernetes controllers for Zookeeper, Cassandra, RabbitMQ, MongoDB, XtraDB, etc.

Speakers

Xudong Sun

Ph.D. Student, University of Illinois at Urbana-Champaign

I am a third-year Ph.D. student from UIUC and my research interest is about system reliability.

Lalith Suresh

Researcher, VMware

sieve lalith xudong pptx

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

4:30pm PDT

SIG Events: Using CloudEvents to Create an Interoperable CI/CD Ecosystem - Andrea Frittoli, IBM

With more organizations adopting a Cloud-Native architecture and microservices, continuous delivery has evolved from mere best practices to an indispensable tool to swiftly and reliably bring new features in front of customers. The CI/CD landscape is rich and diverse, with tools like Keptn, Flux and Argo that offer opinionated solutions to specific problems. Organizations rely on various ones to address their automation requirements, but they lack a way to consistently orchestrate, monitor and measure their overall workflow. There is a real need for interoperability and standardization in the CI/CD space: solving this problem is the mission of the Events Special Interest Group at the CD foundation. The speakers will present their work at the SIG in establishing a shared dictionary and set of CloudEvents, a “lingua franca” for tools to understand each other and collaborate to solve a wide range of scenarios. They will demonstrate using shared events to let existing tools work together.

Speakers

Andrea Frittoli

Open Source Advocate, IBM

Andrea Frittoli is an Open Source Advocate at IBM. He has more than 10 years of experience serving open source communities. Andrea is the co-founder of CDEvents and a maintainer of Tekton. He serves as chair of the CD Foundation Technical Oversight Committee. Andrea is a frequent... Read More →

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
411 Theater + Online

CI/CD

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

4:30pm PDT

Container Checkpoint/Restore at Scale for Fast Pod Startup Time - Ritesh Naik, MathWorks

Are you interested in a faster startup time for your container-based application? Are you also interested in pre-warming your container-based application for faster cold start performance? You can have your cake and eat it too!   In this talk, Ritesh Naik will talk about how MathWorks cloud infrastructure was able to achieve *both* of these seemingly contradictory goals, fast startup time and pre-warming, using Container Checkpoint/Restore. With several years of experiencing using this technique in production, Ritesh will share design considerations, lessons learned and best practices for supporting container checkpoint/restore non natively in Kubernetes. He will also share a vision for what native support for CRIU in Kubernetes can look like. If you are interested in improving system scalability and utilization, this session is for you!

Speakers

Ritesh Naik

Senior Software Engineer, MathWorks

Ritesh Naik is a Senior Software Engineer at MathWorks. He has been contributing to the Mathworks cloud infrastructure with a focus on developing cloud-native applications. Solving problems in a large-scale distributed space interests him and has been his focus for the past few years... Read More →

Container CheckpointRestore at Scale for Fast Pod Startup Time RiteshNaik 101321 v1 pdf

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Room 502 AB + Online

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

4:30pm PDT

Cloud Provider Extraction: What We’ve Done, Where We Are and What's Left! - Walter Fender, Google; Steven Wong, VMware; Nick Turner, Amazon

Cloud Provider code allows Kubernetes to run on top of different platforms. Originally, support for all variations was built directly into a K8s release. This brought bloat - a running cluster used only a subset of the code within the release. Also, any cloud specific bug fix or enhancement demanded a new full K8s release as a carrier. This will be a status report on removing the cloud provider code from the main Kubernetes repository. Significant early milestones were recently achieved: the API Server no longer needs the cloud provider library; SSHTunnels have been deleted. For each in-tree cloud provider, we will report on efforts, accomplishments, and roadmap for getting "out-of-tree". We’ll also discuss the plans to handle the speed bumps that are left - including interesting topics like multi-repo e2e testing and removing the cluster directory.

Speakers

Steven Wong

VMware

Nicholas Turner

Senior Software Development Engineer, Amazon

Nick works at Amazon Web Services as a software development engineer for EKS where he works on building and operating a Kubernetes platform for customers who run their infrastructure on AWS. In the community, he is active in sig-cloud-provider and the provider-aws subproject, and... Read More →

Walter Fender

Software Developer, Google

Graduated from U.C. Berkeley. Working at Google and on Kubernetes API Machinery, Cloud Provider and Node for three years.

KubeCon NA 2021 Cloud Provider SIG rev4 pdf

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

4:30pm PDT

containerd Introduction and Deep Dive - Phil Estes, Amazon; Maksym Pavlenko & Derek McGowan, Apple; Mike Brown, IBM

Join containerd maintainers for an introduction and deep dive into the latest updates on containerd. This last year has seen tremendous growth in both project usage and contribution. From end user CLI to low level runtime implementations, there have been exciting developments and proposals toward making containerd more stable and shaping the next generation of container use cases. The maintainers will go over internal changes to containerd which help make the core project interfaces cleaner and easier to integrate with from different components and plugins. For Kubernetes use cases, we will cover related changes happening in containerd including updates in the CRI implementation. Finally, the maintainers will cover exciting new features and sub-projects such as nerdctl, lazy-pulling (stargz), shim plugability, and more.

Speakers

Mike Brown

OSS Engineer, IBM

OSS Engineer; @containerd maintainer; working @oci, @cncf, @pytorch, and @kubernetes projects

Phil Estes

Principal Engineer, AWS

Phil is a Principal Engineer for Amazon Web Services (AWS), focused on core container technologies that power AWS container offerings like Fargate, EKS, and ECS.Phil is currently an active contributor and maintainer for the CNCF containerd runtime project, and participates in the... Read More →

Derek McGowan

Software Engineer, Independent

Open source maintainer working on container technology for the last 9 years.

Maksym Pavlenko

Software Engineer, Apple

Maksym Pavlenko is a Software Engineer for Apple focused on container and microVM technologies, containerd and custom runtimes. He's been a containerd maintainer since 2019 focusing on snapshotters, new sandbox API, CRI, and overall architecture.

containerd intro deep dive slides pdf

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

4:30pm PDT

SIG-NETWORK: Updates and Directions - Tim Hockin & Bowei Du, Google

We will be presenting what has been going on in the Network SIG for the past few releases. The session will cover new and upcoming topics, including recent features and new APIs that are under development. Topics include: IPv6, Gateway API, Network Policy improvments, other improvements, as well as future directions for the rea. This session is mostly aimed at people who are already using Kubernetes, although new users are definitely welcome. Significant time will be allotted for Q&A, so bring your questions!

Speakers

Tim Hockin

Distinguished Engineer, Google

Tim has spent most of his career at Google, where he works on Kubernetes and Google Kubernetes Engine (GKE). He is one of the technical leads of the Kubernetes project, and has been part of it since before it was publicly announced. He mostly pays attention to topics like APIs, networking... Read More →

Bowei Du

Senior Staff Engineer, Google

Bowei is a lead on Kubernetes Networking at Google. He has worked on various topics in SIG-NETWORK, the most recent being helping shepard the new Gateway APIs (https://gateway-api.sigs.k8s.io/)

[PUBLIC] KubeCon NA 2021 SIG NETWORK update and directions pdf

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual

4:30pm PDT

Why is Anyone Using Kubernetes Anyway? - Tasha Drew & Josephene Pynadath, VMware; Gaby Moreno Cesar, IBM; Carl J Pearson, UserZoom

Have you ever taken a step back and wondered, what is up with this whole Kubernetes thing? Why are people using it all over the place? Is it becase of Phippy and Captain Kube? The Docker whale being so cute and retro? Or is there something else going on? The team at SIG Usability had these questions too, and we have embarked on a two year user research study to find out what exactly is going on. Our goal is to make sure the upstream Kubernetes' community deeply understands the needs and goals of the users of Kubernetes, and how they are met and not met today. Join this talk for a deep dive into our study and data, and what we're learning about our users. Spoiler: getting started with Kubernetes is real hard, and we should fix our on-ramp. Learn more at our talk!

Speakers

Tasha Drew

Senior Director, xLabs, VMware

Gaby Moreno Cesar

Design Principal, IBM

Gaby is a Design Principal at IBM working on Cloud Native & Distributed Solutions. As an artist turned computer scientist turned designer, she has spent her career designing tools for enterprise IT teams. Her recent work includes managed versions of Kubernetes, OpenShift, and Terraform... Read More →

Josephene Pynadath

Product Designer, VMware

Carl J Pearson

Senior UX Researcher, UserZoom

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

4:30pm PDT

Observe with Rust: OpenTelemetry and Tremor - Gary White Jr., Wayfair

Tremor is an early stage event processing system for unstructured data with rich support for structural pattern matching, filtering and transformation. Hundreds of companies around the world are using Rust in production today for fast, low-resource, cross-platform solutions. Gather round your screens and lecterns to hear the story of open source infrastructure helping a tech company sell furniture. We will show how it all happens with Rust and Tremor, and how we tune in and out of what matters; all with a lower cost of infrastructure and maintenance. Tremor users also appreciate the “software-like” syntax of querying through their systems, without sacrificing the performance of Rust. We're proud as supporters of Tremor to integrate OpenTelemetry into our codebase and feature set. We are excited to share details of this integration, how it works, and how we use it at Wayfair. Come to hear bad jokes and good technical content!

Speakers

Gary Preston White Jr.

Staff Engineer, Wayfair

Gary White Jr. is a technologist, meme enthusiast, aspiring gearhead, and has-been musician. Working early in his career on Cloud Foundry and infrastructure automation, he has worked with many enterprise companies on solving difficult problems at scale. You can find Gary's previous... Read More →

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Room 403 AB + Online

Observability

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

4:30pm PDT

Using SLOs for Continuous Performance Optimizations of Your K8s Workloads - Andreas Grabner, Dynatrace

Moving to k8s doesn’t prevent anyone from bad architectural decisions leading to performance degradations, scalability issues or violating your SLOs in production. In fact – building smaller services running in pods connected through service meshes are even more vulnerable to bad architectural or implementation choices. To avoid any bad deployments, the CNCF project Keptn provides automated SLO-based Performance Analysis as part of your CD process. Keptn automatically detects architectural and deployment changes that have a negative impact to performance and scalability. It uses SLOs (Service Level Objectives) to ensure your services always meet your objectives. The Keptn team has also put out SLO best practices to identify well known performance patterns that have been identified over the years analyzing hundreds of distributed software architectures deployed on k8s. Join this session and learn what these patterns are and how Keptn helps you prevent them from entering production.

Speakers

Andreas Grabner

DevOps Activist and DevRel, Dynatrace

Andreas Grabner (@grabnerandi) has 20+ years of experience as a software developer, tester and architect and is an advocate for high-performing cloud scale applications. He is a contributor and DevRel for the CNCF open source project keptn (www.keptn.sh). Andreas is also a regular... Read More →

KubeCon2021 UsingSLOs for ContPerformanceOptimization pptx

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Room 408 AB + Online

Performance

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

4:30pm PDT

My Container Image has 500 Vulnerabilities, Now What? - Matt Jarvis, Snyk

As security becomes a bigger concern in the world of containers and Kubernetes, using vulnerability scanning tooling in our workflows is becoming increasingly common. But many container images can show tens if not hundreds of vulnerabilities, particularly if they are built using upstream base images from public repositories. If your container has a huge amount of vulnerabilities, what do you do ? Many of us will reach information overload when faced with such a list, and struggle to work out what actions we should take. In this talk, we’ll look at how container images are constructed, understand how potential vulnerabilities can get into our images, and explore how we can prioritize and remediate the vulnerabilities we find. Take control of your vulnerabilities !

Speakers

Matt Jarvis

Director, Developer Relations, Snyk

Matt Jarvis is a Director of Developer Relations at Snyk. Matt has spent more than 15 years building products and services around open source software, on everything from embedded devices to large scale distributed systems. Most recently he has been focused on the open cloud infrastructure... Read More →

My container image has 500 vulns now what pdf

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Concourse Hall 151 + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

4:30pm PDT

Storage and Networking: Rook on Multus - Sébastien Han & Rohan Gupta, Red Hat

Networking plays an important role in the world of baremetal cloud storage. I/O on devices are dependent on network latency. Rook-Ceph now makes use of multus to better utilize host network interfaces for Ceph Public and Cluster Networks. Having dedicated networks for storage boosts performance. This talk will introduce Ceph public and cluster networks and their use cases, the requirement of dedicated networks in baremetal environment, HostNetworking vs Multus, defining network-attachment-definitions, and how Rook-Ceph utilizes it. It will also include a demo showing an already running cluster utilizing multus networks and we will compare the performance with and without multus. By the end of the talk, you'll know the perks of using private and cluster networks, when to use them, and will be able to create a basic networking setup for Rook-Ceph.

Speakers

Rohan Gupta

Software Engineer, Red Hat

Rohan Gupta currently serves as Software Engineer at Red Hat. He is in the Storage Team, and he works primarily on Rook-Ceph.

Sebastien Han

Senior Principal Software Engineer, Red Hat

Storage and networking Rook Ceph on Multus SebastienHan RohanGupta 101321 v1 pdf

Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Concourse Hall 152 + Online

Storage

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

4:30pm PDT

Virtual Project Office Hours: Flux

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Flux Project Office Hours here: https://community.cncf.io/e/m282fq/

>> Full list of Project Office Hours

Wednesday October 13, 2021 4:30pm - 5:15pm PDT
Project Office Hours

Project Office Hours

5:25pm PDT

Unraveling the Mystery of Versioning CRDs - Harsh Thakur, Civo

CRDs have given birth to a lot of projects by extending Kubernetes. As these projects grow, the definitions of the resource start to evolve and maybe completely change, thus requiring versioning of CRDs. Versioning of CRDs can be tough as the end users need to be provided with seamless upgrades, zero downtime and backwards compatibility. Have you asked yourself questions like: “Do I need a conversion webhook if I am just changing the validations?” , “How do I migrate the existing CRs to the new version?” .This talk aims to explain the CRD lifecycle and help users quickly catch up with the changes happening in the CRD ecosystem.

Speakers

Harsh Thakur

Software Developer, Civo

Harsh is a developer passionate about storage, APIs and developer experience. He likes to contribute to open source projects which led him to be part of maintainer team at OpenEBS and Fission. He has an eye out at different solutions to problems and likes to stay involved with the... Read More →

CRD versioning pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

5:25pm PDT

Shifting Spotify Engineering from Spreadsheets to Backstage - Johan Haals & Patrik Oldsberg, Spotify

Is your bookmark bar filled to the brim with links to internal infrastructure tools? Are you using spreadsheets to track the state of your software and infrastructure? Does your company suffer from fragmentation, like hundreds of startups glued together? Then this talk is for you! It will tell the story of how Spotify created a service catalog to bring order to thousands of microservices. It grew to become Backstage, an internal developer portal supporting not just services, but also machine learning models, documentation, over 9000 data pipelines, and much more. With 115 plugins contributed by 58 different teams, Backstage is now Spotify’s single pane of glass for the entire engineering organization. In 2020 Backstage and its software catalog was open sourced and donated to the CNCF, making it available for everyone to use. The talk will also walk you through strategies for adopting Backstage in an existing organization, and how to bootstrap your own catalog.

Speakers

Johan Haals

Senior Engineer, Spotify

Johan spent many years building infrastructure tooling and platforms at Spotify. Currently working as an Open Source maintainer of Backstage.

Patrik Oldsberg

Senior Engineer, Spotify

Patrik is a Senior Software Engineer at Spotify and a core maintainer of Backstage. In 2019 he joined the team in Spotify’s platform organization that owned the Backstage platform, and worked together with the rest of the team to bring it out in the open. Before joining Spotify... Read More →

Backstage Kubecon Shifting Spotify engineering pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

5:25pm PDT

Putting Into Practice the Skills You've Learned Contributing to Kubernetes - Kiran Oliver, Camunda

Contributing to Kubernetes, learning how the community functions, and understanding the key pillars that make this large open source project, and its surrounding community a success may seem like a mystery. The secret is actually no secret at all: It’s about the people behind the project, working tirelessly and making things happen day in, and day out. It is a recurring challenge for many new open source developers to apply the skills they’ve learned when contributing to Kubernetes to the real world, particularly if they are new to the industry, changing careers, or are skilling up in their current role. This talk helps to bring clarity to the questions, “How can I truly use what I’ve learned contributing to Kubernetes to improve my career outlook long-term?” and “How can I use these skills to improve the communities, ecosystems, and other open source projects I’m a part of?”

Speakers

Kiran Oliver

Technical Community Builder, Camunda

Rin is a Technical Community Builder at Camunda. Previously, they were a Platform Evangelist at the Seattle startup Esper, a podcast producer at The New Stack, and more. They enjoy discussing all things open source, with a particular focus on improving hiring pipelines in the technology... Read More →

Putting Into Practice the Skills You’ve Learned Contributing to Kubernetes pptx

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
411 Theater + Online

Community

Content Experience Level Beginner (Very basic information)
Talk Type In-Person

5:25pm PDT

McK8s: Container Orchestration in Kubernetes Multi-Clusters - Mulugeta Ayalew Tamiru, University of Rennes 1 / Elastisys AB

Today many companies deploy their workloads across multiple Kubernetes clusters in private and public cloud data centers or in emerging computing paradigms such as Fog Computing. Recent efforts in the community such as KubeFed address some of the multi-cluster deployment challenges. However, KubeFed currently offers only manual or fully load-balanced placement. Other challenges such as autoscaling and inter-cluster network routing are solved by other projects separately. In this context, we believe there is a need for a more integrated and autonomous approach for managing geo-distributed Kubernetes clusters at scale. In this talk, we will present mck8s -- an extension and partial replacement of KubeFed for geo-distributed computing environments which aims to bring placement, autoscaling, bursting, inter-cluster routing, and cluster provisioning into one package. We will also emphasize its usability and easy adoption by using manifest files very much similar to vanilla Kubernetes.

Speakers

Mulugeta Ayalew Tamiru

PhD candidate / Systems scientist, University of Rennes 1 / Elastisys AB

Mulugeta Ayalew Tamiru is a Ph.D. candidate at the University of Rennes 1. His research interests are Fog Computing, Cloud Computing and Distributed Systems. He holds a masters degree in Cloud Computing and Services. Previously, he has worked in the IT industry in various capacities... Read More →

McK8S MulugetaAyalewTamiru KubeCon CloudNativeCon 2021 pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Room 502 AB + Online

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

5:25pm PDT

Building Catalogs of Operators for OLM the Declarative Way - Joe Lanford & Anik Bhattacharjee, Red Hat

This presentation will cover an update from the Operator-lifecycle-Manager project - a suite of production-ready operators and tools that help manage the complexity of installing and upgrading operators on a Kubernetes cluster. This talk will focus on architectural updates to the set of tools that are used to build and maintain Catalogs of Operators, the goals and motivation behind the changes, the lessons learned using the old tools in production, and the future of OLM. Interested in joining the OLM community? We have weekly meetings every Thursday — check out https://github.com/operator-framework/community/blob/master/wg-olm/README.md to get started!

Speakers

Anik Bhattacharjee

Software Developer, Red Hat

Anik joined Red Hat in their Boston office in 2019 as a Software Engineer. Since then he has been a part of the the Operator-Lifecycle-Manager team, and has been a maintainer of the Operator-Framework project ever since. In his free time, he enjoys being outdoors, playing soccer... Read More →

Joe Lanford

Red Hat

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

5:25pm PDT

Kubernetes Data Protection WG Intro & Deep Dive - Xiangqian Yu, Google

Data Protection WG is dedicated to promoting data protection support in Kubernetes. The Working Group is working on identifying missing functionalities and collaborating across multiple SIGs to design features to enable data protection in Kubernetes. In this session, the co-chairs of this WG will discuss what is the current state of data protection in Kubernetes and where it is heading in the future. They will also talk about how interested parties (including backup and storage vendors, application developers, and end users, etc.) can join this WG and contribute to this effort. Details of the WG can be found here: https://github.com/kubernetes/community/tree/master/wg-data-protection.

Speakers

Xiangqian Yu

Software Engineer, Google

Xiangqian Yu is a Software Engineer at Google. He is also a co-chair of the Data Protection WG in Kubernetes and a co-lead of the Volume Snapshot project in SIG Storage.

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual

5:25pm PDT

Kubernetes SIG Docs: A Deep Dive - Jim Angel, Google; Chris Metz, Independent; Brad Topol, IBM

This session covers Kubernetes (K8s) documentation. We'll do an overview of the docs--how they're organized, and how they're maintained--then contribute to the docs ourselves. During the introduction, we'll look at the docs repository (kubernetes/website) and how we organize content. We'll also look at the website stack: how we preview and publish docs to kubernetes.io. We'll talk about the docs workflow: how SIG Docs does the work to review and publish docs. During the deep dive, we'll explore the docs contributor guide and do some hands-on contribution. Remember that contributing to docs is a pathway to Kubernetes membership!

Speakers

Brad Topol

Distinguished Engineer, IBM

Dr. Brad Topol is an IBM Distinguished Engineer leading efforts focused on Open Technologies and Developer Advocacy. In his current role, Brad leads a development team focused on contributing to and improving Kubernetes and several other cloud native open source projects. Brad is... Read More →

Chris Metz

Cloud Native Tech Writer, Independent

Cloud Native Tech Writer:Lead tech writer on projects covering CNF agents, Kubernetes networking;K8s sig-docs contributor;Development, engineering and product team collaboration; Convert code, APIs and UI into docs for rapid deployment to content hosts accessible to internal and... Read More →

Jim Angel

Cloud Consultant, Google

Kubernetes nerd working at Google as a Cloud Consultant. Helping automate all the things upstream with SIG Release, and previously served as a co-chair for SIG Docs. Working, loving, and learning with this awesome community since 2018. When I'm not behind a computer, you'll find me... Read More →

kubecon 2021 SIG Docs Deep Dive Final pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

5:25pm PDT

Security Through Transparency: Kubernetes SIG Security Update - Ian Coldwater, Twilio; Savitha Raghunathan, Red Hat; Rey Lejano, SUSE; Pushkar Joglekar, VMware

Kubernetes SIG Security is a newer SIG, dedicated to improving Kubernetes security by providing space for learning together, sharing our expertise, and building bridges between SIGS and externally with the broader security community. We’re here this KubeCon to tell you about what we’ve been up to! Come for this session featuring updates from our docs, tooling, and third party security audit subgroups about our efforts to keep Kubernetes secure through transparency, not obscurity. Stay to learn how you can get involved. Happy Honking!

Speakers

Savitha Raghunathan

Senior Software Engineer, Red Hat

Savitha Raghunathan is a Senior Software Engineer at Red Hat, working on Migration and App Modernization technologies. She leads K8s sig-security-docs sub-project aiming to create security awareness through docs. As a Konveyor Maintainer, she leads the community engagement efforts... Read More →

Ian Coldwater

Security Researcher, Independent

Rey Lejano

Kubernetes Field Engineer, SUSE

Rey Lejano is a Field Engineer at SUSE by way of Rancher Labs and is the co-chair of Kubernetes SIG Docs. Rey contributes to various Kubernetes Special Interest Groups such as Contributor Experience, Docs, Release, and Security. He is a member of seven Kubernetes Release Teams including... Read More →

Pushkar Joglekar

Cloud Native Security Engineer, Independent

Pushkar Joglekar wears multiple hats in the community as: CNCF Security - TAG Co-Chair & Kubernetes SIG Security Tooling Sub-Project Lead to “Make Kubernetes Secure For All”. Since 2019, he feels incredibly fortunate to have written the security chapters in Nigel Poulton’s “The... Read More →

Security Through Transparency KubeCon NA 2021 pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

5:25pm PDT

Building a Multi Cluster/Env Service Mesh at Airbnb - Weibo He & Stephen Chan, Airbnb

Tutorials and demos are great, but how do real organizations implement service meshes at scale? In this talk, we will discuss some of the problems Airbnb is solving with their service mesh based on Istio. Make sure you attend if you’re interested in building out a service mesh at your own company and interested in ways to adapt to your own requirements. We will walk through: - Partitioning workloads across multiple clusters and how to manage the mesh. - Testing mesh upgrades reliably with multiple environments. - Expanding the mesh to legacy, non-container workloads. - Routing traffic between regions, not just clusters, securely.

Speakers

Stephen Chan

Senior Software Engineer, Airbnb

Weibo He

Staff Software Engineer, Airbnb

Weibo He is an infrastructure engineer at Airbnb, where he works on Cloud Foundation. He is passionate about building scalable, resilient & performant distributed systems on the cloud.

KubeCon + CloudNativeCon 2021 pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Room 403 AB + Online

Networking

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

5:25pm PDT

Effortless Profiling on Kubernetes - Eden Federman, Verizon

Finding performance issues in applications is a hard problem. It's even harder when those applications run on Kubernetes. The needed profiling tools are usually not included in the container image and require a new deployment in order to be enabled. This session covers the best practices and the different tools available to profile Java, Go, Python, and Ruby applications.

Speakers

Eden Federman

Senior Software Engineer, Yahoo

Eden Federman is a Senior Software Engineer at Verizon Media. He has spent the last few years working with Kubernetes and other Cloud-Native technologies. Eden is the creator of kubectl-flame. His recent interest is in distributed systems and making debugging performance issues e... Read More →

KubeCon 2021 Effortless Profiling pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Room 408 AB + Online

Performance

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

5:25pm PDT

Postgres Extensions in Kubernetes - Álvaro Hernández, OnGres

Postgres Extensions are one of the most distinctive and appreciated features of Postgres. Acting like “plugins”, they allow you to extend Postgres functionality. From adding simple data types to turning the database into a sharded cluster with a distributed query planner and executor. Yet they are hard to use in a container environment like Kubernetes. Because container images are immutable! So you either pack all possible extensions in a fat container, which leads to substantial problems; or you load dynamically under demand. Join this talk to explore the extension ecosystem in Kubernetes Postgres Operators; and how to solve this problem by introducing a system for dynamically loading extensions into the containers, and cache them within the cluster to avoid excessive downloads. A new operator pattern, the “pod-local controller” will also be introduced, as the technological solution that powers dynamic extension loading.

Speakers

Alvaro Hernandez

Founder, OnGres

Álvaro is a passionate database and software developer. Founder of OnGres ("ON postGRES"), he has been dedicated to Postgres and R&D in databases for more than two decades.Álvaro is at heart an open source advocate and developer. He has created software like StackGres, a Platform... Read More →

Postgres Extensions in Kubernetes pdf

Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Concourse Hall 152 + Online

Storage

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

5:30pm PDT

Virtual Project Office Hours: Harbor

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Harbor Project Office Hours here: https://community.cncf.io/e/mymf8m/

>> Full list of Project Office Hours

Wednesday October 13, 2021 5:30pm - 6:15pm PDT
Project Office Hours

Project Office Hours

5:30pm PDT

cloudnative.tv Daily Recap

Join us on CloudNative.tv to hear the round up from the day's action. Our hosts will analyze the newest announcements in cloud native, dissect their favorite talks from the day, give the latest scoop from the hallway track, share their schedule for the next day, and talk about what's coming next on CloudNative.tv. You won't want to miss the Daily Wrap Up!

Wednesday October 13, 2021 5:30pm - 6:30pm PDT
South Hall Lobby + Online

Interactive Sessions

6:00pm PDT

Virtual Game Night Sponsored by Kasten by Veeam and Humio

It’s about to go down! Join us for GO Remote, an interactive virtual game night filled with all the things we love to make a healthy competition like Trivia, Brain Burners, Pictionary, Fact Match, Name That Movie, GIF Battles, and much more. Get ready to mingle, play, and have some fun!

How to Register: RSVP by October 12 to be included. Space is limited.

Wednesday October 13, 2021 6:00pm - 7:00pm PDT

Experiences

6:00pm PDT

Welcome Reception + Booth Crawl

Join us onsite for drinks and appetizers, games, and conversations with old and new friends in the Solutions Showcase. If you are participating online, don't miss the expert office hours and interactive sessions presented by our sponsors. Explore 200+ exhibit booths to learn more about the latest technologies, browse special offers and job posts, and much more.

Wednesday October 13, 2021 6:00pm - 8:00pm PDT
South Hall + Online

Solutions Showcase

7:30pm PDT

Virtual Project Office Hours: Chaos Mesh

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Chaos Mesh Project Office Hours here: https://community.cncf.io/e/mwp5e2/

>> Full list of Project Office Hours

Wednesday October 13, 2021 7:30pm - 8:15pm PDT
Project Office Hours

Project Office Hours

7:30pm PDT

Virtual Project Office Hours: TiKV

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for TiKV Project Office Hours here: https://community.cncf.io/e/mwf28s/

>> Full list of Project Office Hours

Wednesday October 13, 2021 7:30pm - 8:15pm PDT
Project Office Hours

Project Office Hours

7:30am PDT

The New Stack Pancake Breakfast: New security workflows for GitOps and Security as Code

Get your panK8s here! Security as code is becoming a sweet spot. Learn what the trend toward codifying goals means for automated, self-sufficient processes and how it makes security easier on practitioners. Join us at the breakfast table for a short stack with The New Stack as we griddle security experts for a more practical take on GitOps and Security as Code.

TNS Founder and Publisher Alex Williams will moderate an expert panel with Managing Editor Joab Jackson and take as many questions as we can answer from you. Our panelists will offer their explanation and analysis about how …. Bring your questions for a chance to win a custom TNS spatula!

Sponsored by Accurics

No RSVP required, but seating is limited so please arrive by 7:15 AM to get a place in line.

Moderators

Joab Jackson

Editor-in-Chief, The New Stack

Joab Jackson is Editor-in-Chief for The New Stack, assuring that the TNS website gets a fresh batch of cloud native news, tutorials and perspectives each day. He has logged over 25 years in infrastructure IT journalism, including stints at IDG, and Government Computer News. He started... Read More →

Alex Williams

Founder and Publisher, The New Stack

Alex Williams is founder and publisher of The New Stack, a content platform for the people who build and manage software the world relies on. He was an editor at ReadWriteWeb and TechCrunch before leaving in 2014 to start The New Stack. Alex hosts The New Stack Makers pancake and... Read More →

Speakers

Om Moolchandani

Co-Founder & CTO, Accurics

Om serves as the co-founder and Chief Technology Officer of Accurics. He has held numerous leadership positions at innovative companies such as AutoGrid and General Electric’s Industrial Cloud and Edge platform. In addition, he has played a significant role in multiple startups... Read More →

Vineeth Rajagopal

CTO & CRO, DigitalOnUs

Vineeth Rajagopal is the North America Cloud CTO at Tech Mahindra. Before joining TechM, he was one of the founding members & CTO of the award-winning hybrid cloud automation services company DigitalOnUs that got sold to Tech Mahindra for a $120M exit.Vineeth helped to author multiple... Read More →

Brendan O’Leary

Sr. Dev Evangelist, GitLab

Brendan O'Leary is a Staff Developer Evangelist for GitLab who connects with developers, contributes to open source projects, and shares his work with about cutting-edge technologies on conference panels, meetups, in contributed articles and on blogs.

Emily Omier

Contributor, The New Stack

Emily is a positioning consultant who works with startups to stake out the right position in the cloud native / Kubernetes ecosystem so that end users immediately understand their value. She also hosts The Business of Cloud Native, a podcast about the business reasons that push and... Read More →

Cindy Blake

Senior Security Evangelist, GitLab

Cindy Blake is the Senior Security Evangelist at GitLab, a leader in the DevOps market with an innovative single application approach for the entire software development lifecycle. Cindy Blake collaborates around best practices for integrated DevSecOps application security solutions... Read More →

Thursday October 14, 2021 7:30am - 8:30am PDT
JW Marriott L.A. Live | Platinum Ballroom D+E

Experiences

7:30am PDT

Continental Breakfast

Thursday October 14, 2021 7:30am - 9:00am PDT
Petree Plaza + Concourse Plaza

8:00am PDT

Registration + Vaccine Verification + Badge Pick-up

Thursday October 14, 2021 8:00am - 6:00pm PDT
West Lobby

Registration + Badge Pick-up

9:00am PDT

Thursday Keynote Sessions

Be sure to join us for Thursday's keynotes which include:

Kubernetes Project Updates - Stephen Augustus, Head of Open Source, Cisco (9:00-9:15)
Welcome to Cloud Native - We’re Here to Help - Vaibhav Kamra, Chief Technical Officer, Kasten by Veeam (9:15-9:20)
Why a Cloud Native (CNCF) & Open Hardware (RISC-V) Alliance Makes Sense - Kim McMahon, Director of Visibility & Community Engagement, RISC-V International & Katelin Ramer, Director of Business Development, Cloud Native Computing Foundation (9:20-9:35)
Where Do We Go From Here? - Constance Caramanolis, Principal Software Engineer, Splunk (9:35-9:50)
Creating a Holistic Developer Experience - Jasmine James, Engineering Manager, Twitter (9:50-10:05)
And Here We Go: Dual-stack Networking in Kubernetes - Lachlan Evenson, Principal Program Manager, OSS at Azure, Microsoft Azure (10:05-10:10)
Building Support For Your Cloud Native Journey - Robert Duffy, Vice President, Development and Runtime Platform, Expedia (10:10-10:25)
Closing Remarks - Constance Caramanolis, Principal Software Engineer, Splunk; Jasmine James, Engineering Manager, Twitter; Stephen Augustus, Head of Open Source, Cisco (10:25-10:30)

Speakers

Kim McMahon

Leader, Community and Open Source Marketing, Cisco

Kim McMahon is well-known in the CNCF ecosystem for leading the marketing and community activities during the Dan Kohn era. She has moved to run community and open source marketing at Cisco where talking with developers is a key activity. Community building, breaking down barriers... Read More →

Lachie Evenson

Principal Program Manager, Microsoft

Lachlan is a Principal Program Manager on the open source team at Azure. As a cloud native ambassador, emeritus Kubernetes steering committee member and release lead, Lachlan has deep operational knowledge of many Cloud Native projects. He spends his days building and contributing... Read More →

Constance Caramanolis

Principal Software Engineer, Splunk

Katelin Ramer

Director of Business Development, Cloud Native Computing Foundation

Katelin is the Business Development Manager at Cloud Native Computing Foundation. She is responsible for driving growth globally for the foundation in the form of partnerships with the member community and gaining support for CNCF global events.Katelin has a background in sales from... Read More →

Vaibhav Kamra

CTO, Kasten by Veeam

Vaibhav Kamra is CTO at Kasten by Veeam, which is tackling Day 2 data management challenges to help enterprises confidently run applications on Kubernetes. Previously, Vaibhav has worked at Dell EMC, Maginatics and Microsoft, where his focus has been on storage, filesystems and databases... Read More →

Jasmine James

Senior Engineering Manager-Developer Experience

Stephen Augustus

Head of Open Source, Cisco

Robert Duffy

Vice President, Development and Runtime Platform, Expedia

Rob has spent the last 20 years working on industry leading developer platforms. Building the culture around them, driving adoption across 100-1000 team organizations with 10s of thousands of developers, and delivering on the promise of business agility. Along the way he has torn... Read More →

Thursday October 14, 2021 9:00am - 10:30am PDT
West Hall + Online

Keynote Sessions

Talk Type In-Person

10:30am PDT

Coffee Break

Thursday October 14, 2021 10:30am - 11:00am PDT
South Hall Solution Showcase + Petree Plaza

Breaks

10:30am PDT

Virtual Project Office Hours: Keptn

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Keptn Project Office Hours here: https://community.cncf.io/e/mgtfch/

>> Full list of Project Office Hours

Thursday October 14, 2021 10:30am - 11:15am PDT
Project Office Hours

Project Office Hours

10:30am PDT

Virtual Project Office Hours: Service Mesh Interface (SMI)

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Service Mesh Interface (SMI) Project Office Hours here: https://community.cncf.io/e/m2ap2p/

>> Full list of Project Office Hours

Thursday October 14, 2021 10:30am - 11:15am PDT
Project Office Hours

Project Office Hours

10:30am PDT

Marketing Office Hours

Thursday October 14, 2021 10:30am - 12:30pm PDT
Room 407

Interactive Sessions

10:30am PDT

Project Pavilion

Thursday October 14, 2021 10:30am - 5:30pm PDT
Project Pavilion (in South Hall) + Online

Solutions Showcase

10:30am PDT

Solutions Showcase

Thursday October 14, 2021 10:30am - 5:30pm PDT
South Hall + Online

Solutions Showcase

11:00am PDT

Improving Dev Experience: How We Built a Cloud Native Dev Stack At Scale - Srinidhi S & Venkatesan Vaidyanathan, Razorpay

The session will shed light work of improving Razorpay's dev experience using a bunch of open source tools that scales to 100's of engineers,in a secure and compliant fashion We talk about extending cloud native development to local desktop,how it integrates with our overall kubernetes driven CI/CD workflows.In a nutshell,the session describes building a dev centric packaged environment for reducing their cognitive load while developing sofware This talk brings clarity to the application cluster development , and shows the work being done on aggregating various open source solutions like helmfile for describing and setting up a micro service fleet , traefik routing,header propagation for ephemeral service access ,helm hooks for auxilary app requirements like queues,databases,vendor cloud components, hot reloading and devspace for integrated dev local development/debugging and autoscaler,janitor,botkube etc for cluster segregation and management In the end ,this talk hopefully aligns the developers,practitioners and operators to the benefit of local development with faster iterations , customizable dev tools in remote kubernetes cluster with an extremely simplified , cost effective ,git ops native and agile solution impacting the entire org's dev productivity

Speakers

Srinidhi S

Senior Software Developer, Razorpay

Srinidhi works as a senior engineer @ Razorpay where he is working on the developer productivity team working on the areas of automation, CI/CD , Inner dev loop ..

Venkatesan Vaidyanathan

Senior Architect, Razorpay

Venkat works as a senior architect at razorpay. He comes with around 15 yrs of industry experience. Primarily at razorpay, he has built and worked with a variety of products and platforms. In the last few years at razorpay, his focus has been on data, platform and infrastructure... Read More →

Improving Developer Experience Srinidhi VV 10142021 v1 pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Petree Hall D + Online

Application + Development

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

11:00am PDT

Regulations, Ethics And Messy Data: Tales From An Open Source Analyst - Sophia Vargas, Google

Metrics can be a valuable tool for communities to monitor project health, sustainability, operational efficiency and identify deficiencies. For individuals, projects and companies seeking to establish or mature open source metrics programs, this talk will explore opportunities and challenges in and around open source software data and analytics, from identifying relevant metrics to working with unreliable datasets while navigating the ethical challenges of data collection in and around open source communities.

Speakers

Sophia Vargas

Research Analyst, Google

Thursday October 14, 2021 11:00am - 11:35am PDT
411 Theater + Online

Community

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

11:00am PDT

Beyond Namespaces: Virtual Clusters are the Future of Multi-Tenancy - Lukas Gentele, Loft Labs

Multi-tenancy is a hot topic in the Kubernetes community. A lot of operators have started to think about lowering cost and consolidating workloads in large, multi-tenant clusters rather than creating 1000s of micro-managed, small clusters. Namespaces are a great way to separate tenants in shared clusters. But what if tenants need to install their own CRDs, run workloads across multiple namespaces or even require different versions of the Kubernetes API server? Virtual clusters are an exciting new approach that extends namespace-based multi-tenancy to address such advanced use cases. At its core, virtual clusters let you run Kubernetes clusters on top of other Kubernetes clusters by provisioning isolated Kubernetes control planes for each tenant (i.e. separate Kube API server, data store (etcd), controller manager etc). This talk will explain how virtual clusters work, show what implementations are available today, and demonstrate fascinating, real-world use cases for virtual clusters.

Speakers

Lukas Gentele

CEO, Loft Labs, Inc.

Lukas Gentele is the CEO of Loft Labs, a venture-backed startup that enables companies to operate their cloud infrastructure more efficiently using virtual Kubernetes clusters. Loft’s product boosts provisioning velocity, increases developer productivity, and can reduce infrastructure... Read More →

Beyond Namespaces Virtual Clusters are the Future of Multi Tenancy Lukas Gentele, Loft Labs pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Room 502 AB + Online

Customizing + Extending Kubernetes

Content Experience Level Advanced (Expert level experience)
Talk Type In-Person

11:00am PDT

gRPC Proxyless Service Mesh with Security - Sanjay M Pujare, Google

gRPC has been a popular choice for building microservices based service mesh architectures especially after the recent introduction of service mesh features such as service discovery, load balancing, and observability which eliminated the need for sidecar proxies - like Envoy - in the service mesh. The introduction of these features in gRPC enabled a "proxyless service mesh". In this session we will talk about the addition of mTLS based transport security to the proxyless service mesh. We will describe the orchestration of security by the xDS control plane, the addition of a security plugin architecture to gRPC, and the implementation of some of those plugins to take advantage of security infrastructure in the Google Kubernetes Environment (GKE).

Speakers

Sanjay Pujare

Staff Software Engineer, Google

I have been working at Google Cloud for 4 years. For all that time I have been part of the gRPC team. Most of my work was in the areas of proxyless gRPC, Istio, service meshes, service mesh security, observability, traffic management and Kubernetes networking.

gRPC Proxyless Service Mesh with Security pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

11:00am PDT

Kubernetes VMware User Group: Using GPUs with K8s on vSphere - Steven Wong & Myles Gray, VMware

An increasing number of applications and services can benefit from GPUs, yet costs and other constraints often prohibit installation in all compute hosts. “Landlocked” GPUs resources often lead to underutilized cycles and wasted spending. This session will describe how a pool of available GPU resources within a vSphere cluster can be shared across a broader number of Kubernetes cluster nodes to accelerate workloads like AI, deep learning and inference. This can provide full or partial GPU compute capacity at scale to Kubernetes workloads, even when these are running in pods on hosts without an installed GPU. The session will show an example based on running a TensorFlow workloads on Knative. The K8s VMware User Group shares best practices for hosting K8s on VMware infrastructure, and we will close the session with details on how you can participate in the group.

Speakers

Steven Wong

VMware

Myles Gray

Staff Technical Marketing Architect, VMware

Kubernetes VMware User Group Using GPUs with K8s on vSphere KUBECON NA 2021 pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

11:00am PDT

Turn Contributors into Maintainers with TAG Contributor Strategy - Josh Berkus, Red Hat & Catherine Paganini, Bouyant

TAG Contributor Strategy focuses on writing guides and templates to help CNCF maintainers build successful projects and communities. In this session, we will walk you through how to use a contributor ladder along with governance documentation to provide a structure for turning contributors into maintainers. This is done through a gradual process where contributors gain increased responsibility within a project jointly with governance documentation that defines the decision making process, values, and principles. The primary topics for this session will include: Promoting and recognizing contributors using a ladder framework The role of governance in contributor promotion and value communication Evolving these concepts as projects move from sandbox to incubating to graduated The audience will walk away with tools, templates, and best practices for building successful CNCF projects and communities.

Speakers

Josh Berkus

Kubenetes Community Manager, Red Hat Inc.

Josh Berkus is the Kubernetes Community Manager for Red Hat. In a previous life, he was a database geek who did benchmarks for the TPC and Spec. He lives in Portland with a librarian, a pottery studio, and an absurdly large cat.

Catherine Paganini

Head of Marketing & Community, Buoyant

Catherine Paganini is co-chair of the TAG Contributor Strategy, founder of the Deaf and Hard of Hearing WG and Cloud Native Glossary, and Head of Marketing at Buoyant, the creator of Linkerd. A marketing leader passionate about open source, Catherine started her CNCF engagement by... Read More →

KubeCon Contributor Strategy TAG pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type In-Person

11:00am PDT

What's New in CRI-O? - Mrunal Patel, Urvashi Mohnani, Sascha Grunert & Peter Hunt, Red Hat

CRI-O is a lightweight container runtime written exclusively for Kubernetes. In addition to being a standard component for deploying secure and stable Kubernetes clusters, CRI-O has the unique advantage of being able to tailor its behavior to the needs of the Kubernetes ecosystem. In this talk, Mrunal Patel, Urvashi Mohnani, Sascha Grunert and Peter Hunt, the maintainers of CRI-O, will provide an update about the latest feature developments, as well as live demonstrating typical real world use cases around them. In addition to a review of the basics of setting up and using CRI-O with Kubernetes, the talk will cover improvements around the handling of CNI resources, the ability to tailor container resources with workload types, and updates to the collection and broadcasting of stats and metrics. Join the CRI-O maintainers to learn more about how CRI-O works in action and why it’s the perfect choice for your Kubernetes cluster!

Speakers

Urvashi Mohnani

Senior Software Engineer, Red Hat

Urvashi Mohnani is a Senior Softwar Engineer on the OpenShift Runtimes team at Red Hat. She has spent the last few years working on container technologies such as podman, buildah, cri-o, and OpenShift. She has given talks at multiple conferences about her work and also spends some... Read More →

Peter Hunt

Red Hat

Peter Hunt is a Senior Software Engineer working at Red Hat. Passionate about free software, Peter focuses on maintaining CRI-O, attending SIG node, and ~writing~ squashing bugs. Outside of the virtual world, Peter likes collecting floral-printed pants, gardening, and dancing.

Mrunal Patel

Senior Principal Software Engineer, Red Hat

Mrunal Patel is a Senior Principal Software Engineer at Red Hat working on containers for Openshift. He is a maintainer of runc/libcontainer and the OCI runtime specification. He started the CRI-O runtime. He is active across various projects in the kubernetes SIG Node. He has also... Read More →

Sascha Grunert

Software Engineer, RedHat

Sascha currently works for RedHat and has wrote numerous technical articles on Kubernetes and is an avid open source contributor. He is one of the maintainers for the Security Profile Operator.

Thursday October 14, 2021 11:00am - 11:35am PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

11:00am PDT

Stream vs. Batch: Leveraging M3 and Thanos for Real-Time Aggregation - Gibbs Cullen, Chronosphere

The debate over stream vs. batch processing has been ongoing for years. While batch processing is optimized for large volumes of data, stream processing allows for real-time analysis. With monitoring workflows aimed at minimizing time to detect incidents, having real-time insights is critical for maintaining reliable cloud-native applications. Monitoring business-critical applications can become difficult at scale. How do you continue processing large volumes of real time data while maintaining valuable insights? There are OSS metrics solutions designed to ingest high volumes of data, but they also need to efficiently aggregate metrics for viewing and analyzing these volumes in real time. This talk will explore how two popular OSS projects, M3 and Thanos, have approached the problem of real time aggregation. The audience will learn how stream and batch processing methodologies have been leveraged by the community to aggregate data in real time, and the tradeoffs of each approach.

Speakers

Gibbs Cullen

Developer Advocate, Chronosphere

Gibbs Cullen is a developer advocate at Chronosphere and makes it possible for the community to understand the concepts behind Prometheus and using M3 as a long term storage, in addition to helping the community with best practices in alerting, monitoring and configuring their deployment... Read More →

KubeCon NA '21 Stream vs batch (Gibbs Cullen) pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Room 403 AB + Online

Observability

Content Experience Level Beginner (Very basic information)
Talk Type In-Person

11:00am PDT

Fine-Grained User Authorization for Kubernetes with OPA and LDAP - Cagri Cetin & Quentin Long, Yelp Inc.

Yelp recently migrated their container-orchestration system from Mesos to Kubernetes. However, existing Kubernetes authorization mechanisms were insufficient to implement least-privilege access control rules. Yelp needed to authorize its users to hundreds of services owned by hundreds of different teams. By leveraging the Open Policy Agent (OPA), Yelp has implemented an authorization system that allows defining fine-grained authorization rules: These can rely on service ownerships, resources’ or actions’ sensitivity levels. This talk covers Yelp’s journey to a fine-grained Kubernetes authorization using OPA and LDAP. It will discuss: - Shortcomings of existing Kubernetes authorization mechanisms - Design details of the new OPA-based system - Strategies for provisioning authorization rules at scale - Migration to the new system with zero downtime - Issues encountered along the way and lessons learned

Speakers

Cagri Cetin

Security Engineer, Yelp Inc

Cagri (Charlie) Cetin is a Security Engineer at Yelp Inc. working as a tech lead in the Identity and Access Management team. He received a Ph.D. in Computer Science from the University of South Florida focusing on access control and cryptographic protocols. His interests include enforcing... Read More →

Quentin Long

Security Engineer, Yelp inc.

[Kubecon 2021] Kubernetes AuthNZ with Okta and OPA at Yelp pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Concourse Hall 151 + Online

Security + Identity + Policy

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

11:00am PDT

Insights into Unsecured Kubernetes in the Wild - Jay Chen & Aviv Sasson, Palo Alto Networks

As much as the cloud-native community devoted to building a rock-solid platform, the weakest link has always been the users who inadvertently introduced insecure configurations. Jay and Aviv will share their findings of misconfigured Kubernetes clusters in the wild and malware campaign that exploited these misconfigurations. Their research found 2,100 unsecured Kubernetes clusters that consist of 5,300 nodes, 31,340 CPUs, and 75,270 pods on the internet. Many sensitive data leaked from these clusters, including access credentials, source code, and PII. The researchers will share how they architected their honeypot infrastructure to collect and monitor malicious activities targeting Kubernetes environments. The research also uncovered the first malware that exploited Kubelets to compromise Kubernetes. The malware used sophisticated tactics to evade detection, harvest credentials, move laterally, and perform cryptojacking operations in compromised clusters.

Speakers

Aviv Sasson

Security research team lead, Palo Alto Networks

Aviv Sasson is a security research team lead in Palo Alto Networks under Prisma Cloud, specializing in cloud, network, and application security. He started his career in the Israeli intelligence forces and continued to work in the cyber security industry. In his current role, he looks... Read More →

Jay Chen

Security Researcher, Palo Alto Networks

I'm a cloud security researcher with Prisma Cloud and Unit 42. My research has been around container, microservices, and public clouds security in the past few years. I look forwards to meeting all the cloud-native enthusiasts in KubeCon!

Insights into Unsecured Kubernetes in the Wild (1) pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Petree Hall C + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

11:00am PDT

Know Your Enemy: Mapping Security Risks Using Threat Matrix for Kubernetes - Yossi Weizman & Ram Pliskin, Microsoft

In April, Microsoft released an updated version of the Threat Matrix for Kubernetes which was originally released in 2020. The Threat Matrix is a knowledge base for security threats that target Kubernetes. This matrix was the first attempt to systematically cover the attack landscape of Kubernetes. In this session, we will explain how defenders and SecOps engineers can use the matrix to protect their Kubernetes workloads. We will demonstrate how a real-world attack is mapped to the techniques in the matrix and how organizations can measure their coverage to the attack using the matrix. Inspired by the Threat Matrix for Kubernetes, MITRE expanded their ATT&CK framework to include also containers. In the session, we will examine the differences between the Threat Matrix and MITRE ATT&CK and explain how users can leverage both matrices to gain a better security visibility for their environments.

Speakers

Ram Pliskin

Principal Security Research Manager, Microsoft

Ram is a Principal Security research manager in the Cloud Security Research team at Microsoft. Ram gained his expertise serving more than a decade for the IDF Intelligence Corp, where he had hands-on experience in research and software development. He also led a team of security researchers... Read More →

Yossi Weizman

Senior Security Research Manager, Microsoft

Yossi Weizman is a Senior Security Research Manager at Microsoft Defender for Cloud. He has 12 years of experience in the security research field, starting in the Israeli military. In his current role, Yossi’s main focus is container security. Yossi holds a B.Sc. in Computer Science... Read More →

Know Your Enemy Mapping Security Risks Using Threat Matrix for Kubernetes Yossi Weizman Ram Pliskin 101421 V1 pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Room 408 AB + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

11:00am PDT

Large-Scale Practice of Persistent Memory in Alibaba Cloud - Junbao Kan, Alibaba

Persistent memory allows programs to access data as memory, directly byte-addressable, while the contents are non-volatile, preserved across power cycles. Alibaba have millions of databases and memory prefered applications which need massive of memory resource and make a huge cost every year. PMEM device provides the high performance and lower price which have been widely used in Alibaba Cloud. We have developed a combined system focus on PMEM resource optimization and capacity scheduler, which is widely used in our Kubernetes platforms. With the system, PMEM device is used as kuberentes volume object, and can be configed in different types: kmem, quotapath, lvm, direct. Also we optimize the scheduler to implement that PMEM device has best match with numa node.

Speakers

Junbao Kan

Software Development Expert, Alibaba

Large Scale Practice of Persistent Memory In Alibaba pdf

Thursday October 14, 2021 11:00am - 11:35am PDT
Concourse Hall 152 + Online

Storage

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

11:00am PDT

Admiral Bash's Island Adventure with Phippy + Friends | A Book Reading

Admiral Bash's ship has been sunk by pirates and his mainframe is at the bottom of the sea! Washed up on a deserted island, join Admiral Bash as he navigates his cloud native transformation, helped by Phippy, Zee, Captain Kube, Goldie and some very special new friends. Will the team ever get to enjoy cocktails on the beach, or will this cloud native transformation prove too much? Authors Simon Forster, Danielle Cook, John Forman, and Robert Glenn, from the Cartografos working group, present a first-look at this brand new book!

Speakers

John Forman

Director; Master Technology Architect, Accenture, LLC NA

John T. Forman is a Director; Master Technology Architect and serves as the Global Anthos/Kubernetes lead for Accenture Cloud First. John has a passion for Cloud Native technologies and along with being a hands-on practitioner, he serves as a SME for Open Source, the Metaverse, DevSecOps... Read More →

Simon Forster

Owner, Stackegy

Simon is a freelance cloud-technology architect and engineer based in London, UK. Simon works with regulated institutions on the design, delivery and security of critical cloud-native applications. He cooperates with both developer and platform teams to ensure applications and project... Read More →

Danielle Cook

VP, Fairwinds

Danielle Cook is a VP at Fairwinds, a provider of software for platform teams running Kubernetes to standardize and enable development best practices. Danielle has worked in the cloud native industry since 2016 helping organizations adopt cloud native technology. She co-authored and... Read More →

Robert Glenn

Delivery Manager, Accenture

Robert is a cloud technology architect with experience leveraging automated infrastructure as code to deliver GCP foundations and configuring Kubernetes clusters of various flavors for a diverse portfolio of clients. His experience in designing cloud native tooling roadmaps of varied... Read More →

Thursday October 14, 2021 11:00am - 12:00pm PDT
Room 404B + Online

Interactive Sessions

11:30am PDT

Virtual Project Office Hours: Flux

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Flux Project Office Hours here: https://community.cncf.io/e/mcm23h/

>> Full list of Project Office Hours

Thursday October 14, 2021 11:30am - 12:15pm PDT
Project Office Hours

Project Office Hours

11:30am PDT

Virtual Project Office Hours: Linkerd

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Linkerd Project Office Hours here: https://community.cncf.io/e/m6gfk8/

>> Full list of Project Office Hours

Thursday October 14, 2021 11:30am - 12:15pm PDT
Project Office Hours

Project Office Hours

11:55am PDT

How to put a Database in Kubernetes - Jeffrey Carpenter, DataStax

The idea of running a stateful workload in Kubernetes can be intimidating, especially if you haven’t done it before. How do you deploy a database? Where is the actual storage? How is the storage mapped to the database or application that uses it? In this talk, we’ll demystify the deployment of databases and stateful workloads in K8s by showing that databases are just applications composed of compute, network and storage. We can deploy them like any other Kubernetes application and take advantage of resources that K8s provides including Storage Classes, Persistent Volumes, Persistent Volume Claims, and Stateful Sets. We will demonstrate how to make it all work by deploying a relational database (MySQL) and a NoSQL database (Apache Cassandra).

Speakers

Jeffrey Carpenter

Developer Advocate, DataStax

I've worked as a developer and architect in multiple industries and have focused for the past few years on helping engineers get up to speed on Apache Cassandra. Recently I've gotten involved with the Data on Kubernetes community and the K8ssandra project - running Cassandra on K8s... Read More →

Kubecon How To Put a Database in K8s (1) pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Beginner (Very basic information)
Talk Type In-Person

11:55am PDT

A Safer Curl | Bash for the Cloud - Carolyn Van Slyck, Microsoft

Most of us have used curl to download a script and run it immediately. Using curl | bash provides instant gratification. We can quickly get up and running with an application without requiring a steep learning curve or a strong attention span. Unfortunately, the common advice is that this is not safe! But what if it was?

Let's walk through how we can work with people's natural tendencies, keep the one-liner and make it more secure. We will use Porter and Notary to transform an example cloud-native application deployment from a dicey bash script, executed with bash and hope, into a safer one-liner installation that was designed to be used in production.

You will learn:

Why curling a script to bash is insecure, and why bundles mitigate those risks.
How to reuse existing tools and scripts in a bundle, without starting over from scratch.
What a safer one-line user experience could look like.

Speakers

Carolyn Van Slyck

Principal Software Engineer, Microsoft

Carolyn is a software developer based in the wilds of suburban Chicago, working remote on the Microsoft Azure team. Her passion is developer tools, and building vibrant inclusive open-source communities around them.Carolyn is a maintainer for Porter and the Cloud Native Application... Read More →

slides pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

11:55am PDT

A Vulnerable Tale About Burnout - Julia Simon, CloudOps

This vulnerable tale is a personal journey through the unpredictable world of depression and burnout. It could have been easily predicted because Julia was "doing it all". Yet it was totally unexpected because she assumed her mental health was strong and stable; she could handle anything. Until she couldn’t and everything became unbearable. She made the impossible and necessary decision to stop working in order to recover, setting out on what became four months of self-discovery. Julia will talk about what what led her to this state, what it looked like, and how she was able to get the necessary help to feel strong enough to not only go back to work, but to shift career paths all together as a hopeful and positive outcome that arose out of dark times. Julia will talk about key takeaways that allow her to maintain a healthier balance at work and in life.

Speakers

Julia Simon

People Partner, Learning & Community, CloudOps

For the past 6+ years, I have been working at a Montreal-based cloud services company, CloudOps. I strive to understand what motivates people, creates effective and collaborative teams, and how the role of community participation and ongoing learning affects people. I am the co-founder... Read More →

Julia Simon A Vulnerable Tale About Burnout KubeCon & CloudNativeCon 2021 pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
411 Theater + Online

Community

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

11:55am PDT

AIoT Ops - Using Kubernetes and ML Ops to Build Edge ML Applications - Asheesh Goja, Cisco

Whether you are developing an IIoT application or an IoMT solution that requires closed-loop decisions, bringing machine intelligence closer to the edge offers significant advantages. Energy-efficient ML hardware for tensor operations is driving the move towards Edge ML and the emergence of a new domain of edge computing called AIoT or Artificial Intelligence of Things. This talk will propose a novel approach to build AIoT applications using Kubernetes. Using an illustrative reference architecture, the talk will explain emergent AIoT behaviors and architecture patterns. Such patterns can help in deciding what open source projects to choose for AIoT solutions. You will also see a demo simulating an industrial IoT setting where sensors measure conditions in real-time and feed them to an edge device. The device uses a TPU accelerator to apply logistic regression to predict future equipment breakdown. You will see how ML pipelines measure drift and re-train and re-deploy the model.

Speakers

asheesh goja

Senior Solutions Architect, Cisco

Asheesh Goja is a Senior Solutions Architect at Cisco’s Emerging technologies and Incubation team, where he works cross-functionally across Cisco to drive outside-in innovation by way of ideation, co-design, incubation, and venture products.Prior to Cisco, he worked at UPS as an... Read More →

KubeCon 2021 AIoT pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Room 502 AB + Online

Machine Learning + Data

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

11:55am PDT

Flux's Roadmap to General Availability - Hidde Beydals & Michael Bridgen, Weaveworks

The past year has been an important one for Flux and GitOps. The team has built a new Flux made of multiple controllers that are now seeing production use. The project has matured and is on its way to General Availability. Flux v2's core is a set of precise API’s for controlling and delegating every element of a GitOps platform. A single Flux install can now work with many parts of multiple git repositories, and Flux is more usable and observable than ever. The project has first-class support for popular technologies like Kustomize, Helm, Prometheus, SOPS, GitHub, and GitLab, and it provides extension points in all areas to integrate with other technologies and platforms, much like Kubernetes itself. This session will consist of a cool 15 minute demo of common and novel Flux use-cases that show just much progress the community has made. Join in afterwards for a 20 minute discussion on the remaining roadmap items for the v2.0.0 GA release candidates.

Speakers

Michael Bridgen

Flux Project Maintainer / Principal Engineer, Weaveworks

Hidde Beydals

Senior Software Engineer, Weaveworks

Hidde is a Senior Software Engineer at Weaveworks, and a seasoned maintainer of the CNCF Flux project. With over 15 years of experience in software development, he has been a significant contributor to the project since 2018, developing and maintaining key features such as the Helm... Read More →

KubeCon NA 2021 flux pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

11:55am PDT

Harbor - Enterprise Cloud Native Artifact Registry - Alex Xu, Wang Yan, Steven Zou, Deng Qian & Ziming Zhang, VMware

Harbor is a CNCF graduated project, which help enterprises distribute and manage cloud native artifacts. We’ll use this session to give the audience an overview of the Harbor project and the community we built around it. We’ll talk about Harbor’s key features and use cases, and updates introduced in the most recent release. In addition to that, we’ll give a sneak peek into the development that is in progress. We’ll also use this session to discuss with the users regarding the challenges the project is facing and share our thoughts on how to tackle them.

Speakers

Steven Zou

Harbor Maintainer, VMware

Jia Zou (Steven) is a staff engineer of VMware China R&D. He is now working on the open-source Project Harbor that is an enterprise-class cloud-native artifact registry as a core maintainer and architect. He previously has worked in HPE, IBM, and Agilent as software engineer for many... Read More →

Yan Wang

Staff Engineer, VMWare

Yan Wang is a Staff engineer working on VMWare. As one of the core maintainer of CNCF project Harbor and the maintainer of CNCF project distribution, his main work focuses on technology research and innovation in the cloud native field.

Alex Xu

Product Manager, VMware

Deng Qian

Software Engineer, VMware

Ziming Zhang

Senior Software Engineer, VMWare

KubeCon NA 2021 Harbor v3 pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

11:55am PDT

Introduction and Deep-Dive into TAG Delivery - Jennifer Strejevitch, VMware & Alois Reitbauer, Dynatrace

TAG App Delivery focuses on simplifying application delivery on Kubernetes as well as improving developer experience. This session will showcase recent development around operators, chaos engineering, application delivery methods and demo applications. Whether you are just getting started with cloud-native application deliver or getting up to speed on the latest this session will provide you with ongoing activities, recent developments and selected trends based on feedback from CNCF projects in the app delivery space.

Speakers

Jennifer Strejevitch

Senior Technical Specialist (Cloud Native), Kainos

Jennifer is Senior Technical Specialist (Cloud Native) at Kainos, previously an Engineer at VMWare and Conde Nast. She has been in the industry for over 15 years with experience in Software Development, Cloud Infrastructure and SRE. She’s a co-Chair at CNCF TAG App Delivery, co... Read More →

Alois Reitbauer

Chief Technology Strategist/Head of Open Source, Dynatrace

Alois works as Chief Technology Strategist at Dynatrace, where he is response for all open source activities and research. He is currently heavily engaged in the cloud-native ecosystem as a maintainer and founder of several open source projects and as co-chair and founder of TAG App... Read More →

Thursday October 14, 2021 11:55am - 12:30pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type In-Person

11:55am PDT

OpenMetrics Update - Richard Hartmann, Grafana Labs

OpenMetrics is now an Incubating project withing CNCF. It's also a required part of the Prometheus Conformance Program. What does that mean? What are the updates to be aware of? How can you leverage all of this today?

Speakers

Richard Hartmann

Director of Community, Grafana Labs

Richard "RichiH" Hartmann is the Director of Community at Grafana Labs, a member of the Office of the CTO of Grafana Labs, Prometheus team member, OpenMetrics founder, OpenTelemetry member, CNCF Technical Oversight Committee member, CNCF Governing Board member, and more. He also leads... Read More →

Thursday October 14, 2021 11:55am - 12:30pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

11:55am PDT

Argo and Tekton: Pushing the Boundaries of the Possible on Kubernetes - Alex Collins, Intuit & Jason Hall, Red Hat

Kubernetes isn’t just a platform for running apps anymore. Increasingly, it’s also becoming a platform for platforms, some of which challenge the idea of what Kubernetes can and should be used for. Tekton and Argo are two such projects, there are more, and there will be many more to come. These projects run unconventional workloads which often have quite different needs to running vanilla deployments. They often need to manage large amounts of data, manage massive parallelism, and special lifecycle requirements, none of which Kubernetes provides by default. In this talk, you’ll hear from the technical leads on the Tekton and Argo projects about how they’ve pushed the boundaries of Kubernetes to provide this new functionality. You’ll hear how users have benefitted from this work, how you can apply these same techniques, and how we can further improve Kubernetes as a platform for this kind of workload.

Speakers

Alex Collins

Principle Software Engineer, Intuit

Alex Collins is a Principal Engineer working on Intuit’s Kubernetes platform. He’s the lead engineer for Argo Workflows and Events, and one of the core contributors to Argo CD. He’s a dedicated Open Source advocate. Previously he was the EMEA Software Architect on QuickBooks... Read More →

Jason Hall

Senior Principal Software Engineer, Red Hat

Jason co-founded Google Cloud Build and the Tekton project at Google, and recently joined Red Hat to continue working on Tekton, Shipwright, and other related development and delivery projects. He contributes to various container-image-related projects, and has never heard a joke... Read More →

Argo and Tekton Pushing the Boundaries.pptx pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Room 403 AB + Online

Operations

Content Experience Level Advanced (Expert level experience)
Talk Type In-Person

11:55am PDT

Faster Container Image Distribution on a Variety of Tools with Lazy Pulling - Kohei Tokunaga, NTT Corporation & Tao Peng, Ant Financial

Pull is known as one of the time-consuming steps in the container lifecycle. One of the root causes is the current OCI Image Specification because it can't run containers before the entire image contents become locally available. In this session, Kohei and Tao introduce state-of-the-art OCI-alternative image formats discussed in the community for speeding up pulling images, especially putting the focus on eStargz and nydus. These formats enable "lazy pulling" that allows container runtime to startup a container without waiting for the entire image. Over the past year, lazy pulling has been available on more and more container-related tools including Kubernetes, containerd, CRI-O, Podman, BuildKit, etc. So they will show how widely these image formats can be used on these tools in daily activity. eStargz has been proposed to OCI Image Specification as an extension and nydus has so to the next version of that spec (a.k.a. OCIv2). The talk will also share the discussion status.

Speakers

Kohei Tokunaga

Software Engineer, NTT

Kohei Tokunaga is a software engineer at NTT Corporation, a Japan-based telecommunication company. He is a reviewer of CNCF containerd and a maintainer of BuildKit. He has talked about topics around container runtimes and builders at KubeCon+CloudNativeCon, Open Source Summit and... Read More →

Tao Peng

Staff Engineer, Ant Group

Tao is a software developer at Ant Group working on kata containers and related technologies. He is a member of Kata Containers project architecture committee, and a maintainer of the Dragonfly image service Nydus project. His interests include all kinds of file systems and virtualization... Read More →

slides pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Room 408 AB + Online

Runtimes

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

11:55am PDT

Real-Time Data Anonymization the Serverless Way - Yuval Lifshitz & Huamin Chen, Red Hat

How do you ensure privacy protection in the far-flung computing workloads that make up many Edge infrastructures? One way is to ensure that personal information is hidden, on the fly, without introducing lag. Seems like a tall order, but it can be done. This talk presents a Cloud Native Serverless architecture to ensure real time data anonymization, using KEDA and Rook. Specifically, we have extended Ceph to support AWS SQS compatible APIs and developed an external Scaler in KEDA to allow Serverless functions to query, pull, and anonymize objects. This architecture is lightweight, reliable, and scalable. More importantly, the queue trigger mechanism in this architecture does not require us to expose external endpoints to Serverless functions that could become additional attack surfaces. This talk will demo an open source Serverless workflow based on the above technologies. It uses object detection AI models to anonymize images that are produced by Edge workloads.

Speakers

Huamin Chen

Sr. Principal Software Engineer, RedHat

Dr. Huamin Chen is a passionate developer at Red Hat' CTO office. He is one of the founding members of Kubernetes SIG Storage, member of Ceph, Knative, and Rook. He previously spoke at KubeCon, OpenStack Summits, and other technical conferences.

Yuval Lifshitz

Software Engineering Professional, IBM

Yuval Lifshitz works as a Software Engineering Professional at IBM. His current focus is enriching the Ceph ecosystem by adding connectivity between the Rados Object Gateway and external message brokers (Kafka, Knative, RabbitMQ, etc.). He also added Lua scripting into the Rados Object... Read More →

Real Time Data Anonymization the Serverless Way Yuval Lifshitz Huamin Chen pdf

Thursday October 14, 2021 11:55am - 12:30pm PDT
Concourse Hall 151 + Online

Serverless

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

11:55am PDT

Panel Discussion: Cloud Native Computing Foundation Mentees - Kunal Kushwaha, Civo; Ihor Dvoretskyi, Cloud Native Computing Foundation; Divya Mohan, HSBC; Uchechukwu Obasi, Grafana Labs

The CNCF community has proven that open source is for everyone and every contribution counts. To support this statement, there have been numerous opportunities provided by the CNCF community to get more young people and new contributors get involved in the project. Namely, GSoC, GSoD, LFX Mentorship programs, CROSS, Outreachy. Although, the problem of lack of awareness about these opportunities still exists. As well all saw, over 69% of the attendees were first-timers, and many students joined as well. This panel consists of ex-CNCF mentees & CNCF program managers. They are going to share their experiences & tips, regarding how they got started with CNCF, their journey with the internship opportunities & mentorship programs. In addition to that, viewers would also learn how to get started with CNC projects, right from picking an organisation, to making their first contributions. In the end, the panel will share some community best practices and resources.

Speakers

Ihor Dvoretskyi

Developer Advocate, Cloud Native Computing Foundation

Kunal Kushwaha

Developer Relations Manager, Civo

Kunal is empowering communities via open-source and education. He finds passion in teaching and has taught thousands of folks online and in person. He is a developer relations manager at Civo, CNCF Ambassador, TEDx speaker and a GitHub Star. He is the founder of WeMakeDevs and al... Read More →

Uchechukwu Obasi

SWE, Cloud Native Computing Foundation

Uchechukwu is a software engineer and full-time open source contributor. He is a past CNCF Mentee at Thanos and currently serves the CNCF community as an Ambassador. He’s the co-organizer of the CNCF Mentees Meetup and Kubernetes community days (KCD) Africa. He is really passionate... Read More →

Divya Mohan

Senior Technical Evangelist, SUSE

Divya is a Senior Technical Evangelist at SUSE, where she contributes to Rancher’s cloud native open source projects. She co-chairs the documentation for the Kubernetes & LitmusChaos projects & has previously worked extensively in the systems engineering space during her tenure... Read More →

Thursday October 14, 2021 11:55am - 12:30pm PDT
Concourse Hall 152 + Online

Student Track

Talk Type Virtual

12:00pm PDT

Admiral Bash's Island Adventure | A Book Signing

Following the new Phippy + Friends book reading, join us to get your own signed copy!

Thursday October 14, 2021 12:00pm - 1:00pm PDT
Room 404AB

Interactive Sessions

12:30pm PDT

Virtual Project Office Hours: Pravega

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Pravega Project Office Hours here: https://community.cncf.io/e/mjuft7/

>> Full list of Project Office Hours

Thursday October 14, 2021 12:30pm - 1:15pm PDT
Project Office Hours

Project Office Hours

12:30pm PDT

Virtual Project Office Hours: WasmEdge Runtime

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for WasmEdge Project Office Hours here: https://community.cncf.io/e/mp553z/

>> Full list of Project Office Hours

Thursday October 14, 2021 12:30pm - 1:15pm PDT
Project Office Hours

Project Office Hours

12:30pm PDT

Lunch Break

Thursday October 14, 2021 12:30pm - 2:30pm PDT
Solution Showcase - South Hall G

Breaks

12:45pm PDT

Diversity + Inclusion Workshop and Lunch, sponsored by Trend Micro

Please join this special lunch and program, sponsored by Trend Micro.

Global integration. New business models. Technology. Shifting demographics. Increasingly informed customers. According to research by IBM, these have been drivers of rapid change in our world—and this was prior to the pandemic which ramped ambiguity to levels never seen before. When faced with uncertainty, organizations and people become risk averse, reactionary, less open to additional change, and therefore less inclusive. Ironically, strong decision-making benefits from the opposite—more diversity and more inclusion. In this workshop, participants will explore this tension and learn specific practices to drive the inclusion needed for success in unpredictable times.

RSVP not required, however seating is limited.

A box lunch will be served

Speakers

Chaka Booker

Chief People Officer, The Broad Foundation and Family Office

Chaka Booker is the chief people officer for The Broad Foundation and Family Office. Prior to this role, Chaka was managing director for The Broad Center, a national organization focused on leadership development. Through his work, Chaka has crisscrossed the country developing talent... Read More →

Thursday October 14, 2021 12:45pm - 2:15pm PDT
JW Marriott L.A. Live | Platinum Ballroom D+E

Diversity + Inclusion

1:30pm PDT

Virtual Project Office Hours: Buildpacks

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Buildpacks Project Office Hours here: https://community.cncf.io/e/mgaaqz/

>> Full list of Project Office Hours

Thursday October 14, 2021 1:30pm - 2:15pm PDT
Project Office Hours

Project Office Hours

1:30pm PDT

Virtual Project Office Hours: Contour

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Contour Project Office Hours here: https://community.cncf.io/e/mnkp8t/

>> Full list of Project Office Hours

Thursday October 14, 2021 1:30pm - 2:15pm PDT
Project Office Hours

Project Office Hours

1:30pm PDT

Maintainer's Circle

As maintainers, your leadership is expansive; it is critical right now, more than ever. How you show up guiding your group and supporting the individuals within it requires thoughtful attention.
What does effective leadership look like when impossible-to-predict challenges arise, loss within your group occurs, collective human grief is undeniable, and burnout is ongoing.
How do you manage healthy discussions during challenging times? What challenges get in the way of communicating and leading effectively? How do you guide a team when you, too, are dealing with a lot?
The thoughtful attention required of effective leadership starts with first observing yourself, identifying your needs, and determining how you want to show up to support your team. Collaborative breakout sessions will follow key concepts for consideration and application to your work as a maintainer.

Agenda:
- intro and about this session
- emotional triggers + breakout discussion
- emotional safety/boundaries
- leadership scripts breakout
- burnout, grief/loss and other significant hardships + breakout discussion
- wrap up + closing exercise on compassion

Thursday October 14, 2021 1:30pm - 3:00pm PDT
Room 404AB

Interactive Sessions

2:30pm PDT

A Tall Tale of GitOps - Prasanjit Singh, Starzplay

In 1962, in his book “Profiles of the Future: An Inquiry into the Limits of the Possible”, science fiction writer Arthur C. Clarke formulated his famous Three Laws, of which the third law is the best-known and most widely cited: “Any sufficiently advanced technology is indistinguishable from magic”. This quote is the seed of the session "A Tall Tale of GitOps!" It is a 'Tall Tale' because it is nothing short of that! What GitOps can do is larger-than-life and the session will see it unfold.

We will also share a repository of "Awesome GitOps" resources that you can use for hands-on demonstration about how one can write code, build it, create infrastructure, deploy the application and monitor the application all from a git version control push! The talk is focussed at beginners and will introduce the concept of GitOps and explain the building blocks of the architecture with a fictional story analogy.

Speakers

Prasanjit Singh

Engineering Manager (DevOps), STARZPLAY

Prasanjit Singh is an Engineering Manager & DevOps practitioner at STARZPLAY. He has been serving in the IT industry for 15 years in various roles right from being a Systems Engineer, Datacenter Operations Lead, Engineering Manager to being an Architect for DevOps Transformation and Reliability for large scale Cloud Native Platforms. He loves to discuss technology... Read More →

A Tall Tale of GitOps pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

2:30pm PDT

Getting Involved in the K8s Release Shadow Program - Divya Mohan, HSBC

As an aspiring contributor, it can be daunting to get started with the vast ecosystem of the K8s project. The Release Shadow program is the perfect way for all contributors - novice & veteran to be familiarized with different aspects of the release + different SIGs within the ecosystem. Join in to learn more about - What a K8s release looks like - What the Release Shadow program is - how you, as a student, can get involved - some pre-requisites

Speakers

Divya Mohan

Senior Technical Evangelist, SUSE

Getting involved in the K8s Release Shadow program pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Concourse Hall 151 + Online

101 Track Student Track

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

2:30pm PDT

Taking Your Database Beyond the Border of a Single Kubernetes Cluster - Christopher Bradford, DataStax & Ty Morton, Google

Deploying applications on Kubernetes is getting easier every day. From a minimal deployment to distributed service mesh enabled applications with planning and a little bit of YAML resilient cloud-native applications are the norm. In this session, Christopher Bradford and Ty Morton will help answer the following questions: - What about your data behind these apps? - Are you running those in a multi-cluster environment or sending everything back to a common location? - How do you modernize to a distributed peer-to-peer data architecture? - How do you plan for this change? - Are there pitfalls on the road to enlightened data? Join this session to explore the key concepts needed when investigating multi-cluster deployments for data. This includes: - Cluster planning - Network design - Security - Failure handling

Speakers

Christopher Bradford

Product Manager, DataStax

Programming LanguagesContainersSecurityAutomation

Ty Morton

Customer Engineer, Google

KUBECON NAM 2021 Taking your database beyond the border of a single Kubernetes cluster pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

2:30pm PDT

Measuring the Health of Your CNCF Project: Going Beyond Stars and Forks - Dawn Foster, VMware

You can brag about stars and forks, but these popularity measures don’t actually help you improve the health of your open source projects. A better approach is to look at some commonly used metrics as a starting point for learning about which parts of your project are doing well and identifying areas for improvement. The challenge is that there are many possible metrics, so the real value is in selecting the right metrics and interpreting them. Every CNCF project is a little different, and you’ll need to interpret your metrics in ways that make sense for your project. This talk will cover: * Finding data for some commonly used metrics, including responsiveness, contributor activity and risk, project velocity, inclusivity, and more * Things to think about when interpreting these metrics for your project * Best practices for measuring and improving project health The audience will walk away with practical advice for measuring and improving the health of their CNCF projects.

Speakers

Dawn Foster

Director of Data Science, CHAOSS

Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Measuring Health CNCF Project pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
411 Theater + Online

Community

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

2:30pm PDT

Serving Machine Learning Models at Scale Using KServe - Animesh Singh, IBM

KServe (previously known as KFServing) is a serverless open source solution to serve machine learning models. With machine learning becoming more widely adopted in organizations, the trend is to deploy larger numbers of models. Plus, there is an increasing need to serve models using GPUs. As GPUs are expensive, engineers are seeking ways to serve multiple models with one GPU. The KServe community designed a Multi-Model Serving solution to scale the number of models that can be served in a Kubernetes cluster. By sharing the serving container that is enabled to host multiple models, Multi-Model Serving addresses three limitations that the current ‘one model, one service’ paradigm encounters: 1) Compute resources (including the cost for public cloud), 2) Maximum number of pods, 3) Maximum number of IP addresses. 4) Maximum number of services This talk will present the design of Multi-Model Serving, describe how to use it to serve models for different frameworks, and share benchmark stats that demonstrate its scalability.

Speakers

Animesh Singh

Distinguished Engineer and CTO - Watson Data and AI OSS Platform, IBM

Animesh Singh is CTO and Director for IBM Watson Data and AI Open Technology, responsible for Data and AI Open Technology strategy. Creating, designing and implementing IBM’s Data and AI engine for AI and ML platform, leading IBM`s Trusted AI efforts, driving the strategy and execution... Read More →

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 502 AB + Online

Machine Learning + Data

Content Experience Level Beginner (Very basic information)
Talk Type In-Person

2:30pm PDT

A New Generation of NATS - Matthias Hanel & Jean-Noël Moyne, Synadia

NATS is a high performance cloud native distributed communications utility that allows you to build globally available and secure applications based on streams and services that are both fast and simple to operate. In this talk you will learn about all the numerous new features that have been introduced NATS version 2 and more specifically in the last few months and with the introduction of JetStream a new distributed persistence layer that enables NATS to offer new higher qualities of services and functionalities such as streaming. You will also see a demo showcasing the flexibility of the NATS Adaptive Edge Architecture including how it can be combined with the new functionalities enabled by JetStream to offer continuous and guaranteed publication of data on streams even during network failures.

Speakers

Matthias Hanel

Software Engineer, Synadia

Developing messaging systems for 15 years.

Jean-Noël Moyne

Solutions Lead, Synadia

KubeCon NA 2021 NATS pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

2:30pm PDT

Kubernetes SIG Storage Introduction and Update - Xing Yang, VMware & Michelle Au, Google

Kubernetes SIG Storage is responsible for ensuring that different types of file and block storage are available wherever a container is scheduled, storage capacity management (container ephemeral storage usage, volume resizing, etc.), influencing scheduling of containers based on storage (data gravity, availability, etc.), and generic operations on storage (snapshotting, etc.). In this session, we will give an introduction to SIG Storage and then deep dive into some projects that SIG Storage is currently working on, provide an update on the current status, and discuss what might be coming in the future.

Speakers

Michelle Au

Software Engineer, Google

Michelle Au is a software engineer at Google and is a Kubernetes SIG Storage tech lead. She has been a Kubernetes maintainer since 2018, working on projects including the Container Storage Interface, volume security, volume topology, and local persistent storage.

Xing Yang

Tech Lead, VMware

Xing Yang is a Tech Lead in the Cloud Native Storage team at VMware. She is a co-chair of CNCF Storage TAG, a co-chair of the Kubernetes Storage SIG, a co-chair of the Data Protection WG, and a maintainer in Kubernetes CSI. Before joining VMware, Xing was the Lead Architect of OpenSDS... Read More →

Final KubeCon NA 2021 SIG Storage Introduction & Update pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

2:30pm PDT

Securing Content Repositories with the Update Framework (TUF) - Marina Moore, NYU & Joshua Lock, VMware

The Update Framework (TUF) is a framework for secure content delivery and updates that protects against many known attacks on software update systems. In this talk, Joshua Lock and Marina Moore will describe how TUF works, why content delivery systems need the protections offered by TUF, and share some recent developments in TUF and related projects. Following this introductory content, we will deep dive into proposed new features for TUF by reviewing a TUF Augmentation Proposal (TAP). Come to this talk to learn about how many organizations, including Docker, Amazon, and Google secure software updates and how you can get involved.

Speakers

Marina Moore

PhD Candidate, New York University

Marina Moore is a PhD candidate at NYU Tandon’s Secure Systems Lab researching secure software updates and software supply chain security. She is a maintainer of The Update Framework (TUF), a CNCF graduated project, as well as in-toto, an incubating project. She contributed to the... Read More →

Joshua Lock

Open Source Architect, Verizon

Joshua is Open Source Architect in Verizon's Open Source Program Office where he leads efforts to improve consistency around how Verizon uses open source. As part of his work at Verizon he works upstream on software supply chain security standards and tools; he is a steering committee... Read More →

KubeCon NA 2021 TUF Maintainer Track pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type In-Person

2:30pm PDT

The Argo Ecosystem: Tailoring Your Installation Through Community Add-ons - Jesse Suen, Akuity & Alexander Matyushentsev, Intuit

You are probably already familiar with the core set of Argo projects such as Workflows, CD, Rollouts, and Events. But did you know there is also an entire suite of ecosystem projects which complement these core offerings? These operators unlock support for additional features including notifications, docker registry integration, git writeback, cluster bootstrapping/add-on management, all in a composable way. In this talk, we showcase many of the Argo community projects which will supercharge your Argo installation by providing features outside of the base functionality. Discover ways to custom tailor your setup according to your organization’s needs. Learn about new and upcoming enhancements to make Argo CD even more extensible, including a redesigned config management plugin system, UI component library, and UI/API extensions. Finally, learn how you can even leverage Argo engines and building blocks in your own operators to gain new capabilities, completely independent of Argo!

Speakers

Alexander Matyushentsev

Principal Software Engineer, Intuit

Alexander Matyushentsev is a Principal Engineer in the Intuit Modern SaaS team. Alexander is focused on building tools which makes it easier to use Kubernetes. He is one of the core contributors to "Argo Workflows" and "Argo CD" projects. Alexander is passionate about open source... Read More →

Jesse Suen

CTO, Akuity

Jesse Suen is the CTO and co-founder of Akuity, and co-creator and a project lead on the Argo project. Prior to founding Akuity, Jesse was a Principal Software Engineer and technical lead for the Argo team at Intuit, leading the design and architecture for Workflows, CD, and Rollouts... Read More →

The Argo Ecosystem Tailoring Your Installation Through Community Add ons pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

2:30pm PDT

Level Unlocked: GitOps to the Edge and Infrastructure Provisioning - Katie Gamanji, Cloud Native Computing Foundation

ithin its 7 years of existence, Kubernetes has been the centerpiece of the cloud native landscape, elevating a pluggable system that led to the diversification of the technology ecosystem. As a result, multiple areas have developed in the industry, galvanizing solutions for components that introduce standardization, guidelines, and interoperability of the tools. To innovate the developer experience and delivery of the application, the community focused on restructuring and modernizing the CI/CD operations. This talk will outline how cloud native GitOps tools, such as ArgoCD and Flux, unlock the zero-touch deployment of infrastructure and applications at the edge. Attendees will acquire an understanding of GitOps usage in association with ClusterAPI for infrastructure provisioning and KubeEdge for the service propagation to the edge.

Speakers

Katie Gamanji

Senior Field Engineer, Apple

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 403 AB + Online

Operations

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

2:30pm PDT

Deploying Unikernels in Production with Kubernetes - Alexander Jung, Lancaster University

In data center and cloud deployments, the virtual machine is the basic unit of isolation and Kubernetes has emerged as the de-facto standard for orchestration. This points to the container-in-a-vm model: the VM for isolation, and the container to seamlessly integrate with the orchestrator. But is this optimal for deployments where containers are not a requirements? Is it possible to use VMs for isolation, use Kubernetes and all of its wide array of features for orchestration, but without having to rely on containers? In this talk we will present KubeKraft, a novel runtime along with modifications to containerd that allow for running VMs with Kubernetes *natively*, without any container overhead. We will present KubeKraft's architecture, its integration with Kubernetes and will show performance results; for instance, when using a Unikraft NGINX unikernel (less than 2MBs in size) KubeKraft results in 2x the throughput of an official Docker NGINX image (42M image size).

Speakers

Alexander Jung

Co-Founder & CPO, Unikraft

Alexander Jung is a Co-Founder and Chief Product Officer at the Lightweight Virtualization company Unikraft, focusing on leading unikernels into market and mass deployment. He is also a PhD student at Lancaster University, where he focuses primarily on optimizations of unikernels... Read More →

KubeCon21 Unikraft pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 408 AB + Online

Runtimes

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

2:30pm PDT

Panel Discussion: OSS101 - Introduction to Open Source for Students - Savitha Raghunathan, Red Hat; Joe Kutner, Salesforce; Mritunjay Sharma, JSSATE Noida; Anushka Mittal, Ramaiah Institute Of Technology

But this is such a huge Open-Source project, where to start?, "Oh, I am from a non-coding background, Open-Source is not for me", "I am fixing a typo, is this even an Open-Source Contribution?" Okay, okay - if you have any such questions in your mind and if Open-Source feels daunting to you - you are not alone. This talk aims to allay all your fears and doubts related to Open-Source. Whatever skills you have - Open-Source is open for you and this talk will help you learn how you can make your first move with any of them. From fixing a typo to designing a logo or writing a blog post, asking a question in the community, or maybe simply hosting a local-community meetup related to even a huge open-source project like Kubernetes or Helm - Open Source has a lot of doors for you to enter and this talk aims to knock a lot of them for you! This talk will make you more confident in open-source and help you understand the value of your contributions to the open-source communities.

Speakers

Joe Kutner

Software Architect, Salesforce

Joe is a Software Architect at Salesforce working on internal platform and developer experience. He's the author of several titles from the Pragmatic Bookshelf, including The Healthy Programmer.

Savitha Raghunathan

Senior Software Engineer, Red Hat

Mritunjay Sharma

Member of Technical Staff, Slim.AI

Mritunjay is a Member of Technical Staff with Slim.AI, with active involvement in various open-source communities for almost two years now. He was previously an SDE Intern at HackerRank and Nirmata too. A speaker for two talks at KubeCon NA'21 and at the maintainer’s track talk... Read More →

Anushka Mittal

I am a junior, pursuing engineering at Ramaiah Institute of Technology. My journey in open-source started with the support of the Cloud Native Community. I was selected for the `CNCF - Kubernetes Policy WG: Falco Adapter` project under the mentorship of Jim Bugwadia. Since then, I... Read More →

Panel Discussion OSS101 Introduction to Open Source for Students pdf

Thursday October 14, 2021 2:30pm - 3:05pm PDT
Concourse Hall 152 + Online

Student Track

Talk Type Virtual

2:30pm PDT

Virtual Project Office Hours: Krustlet

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Krustlet Project Office Hours here: https://community.cncf.io/e/m56bgd/

>> Full list of Project Office Hours

Thursday October 14, 2021 2:30pm - 3:15pm PDT
Project Office Hours

Project Office Hours

2:30pm PDT

Virtual Project Office Hours: Vitess

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Vitess Project Office Hours here: https://community.cncf.io/e/m4qeyg/

>> Full list of Project Office Hours

Thursday October 14, 2021 2:30pm - 3:15pm PDT
Project Office Hours

Project Office Hours

3:25pm PDT

CNCF Governing Board Session

Join a conversation with the CNCF governing board leadership about how the foundation runs itself.

Speakers

Arun Gupta

Head of the Open Source Program Office, Apple

Arun Gupta is head of the Open Source Program Office at Apple and chairperson of CNCF Governing Board. Previously, he worked at Amazon, partnering with multiple engineering teams to help define their open source strategy. He has spent over a decade at Sun Microsystems and Oracle... Read More →

Aparna Sinha

Group Product Manager for Kubernetes, Google

Aparna Sinha leads the product team for Kubernetes at Google. Her work is focused on transforming the way we work through technology innovation. Before Kubernetes, Aparna worked on the Android platform at Google. Prior to that she was Director of Product at NetApp where she led storage... Read More →

Priyanka Sharma

ED, CNCF

Thursday October 14, 2021 3:25pm - 4:00pm PDT
411 Theater + Online

Talk Type In-Person

3:25pm PDT

Beyond Block Diagrams: Different Ways of Understanding K8s Architecture - Kim Schlesinger, DigitalOcean

Most introductory Kubernetes videos and blog posts use static block diagrams to illustrate the core components of Kubernetes and how they interact. These diagrams don’t convey the dynamic communication between the K8s control plane, nodes, and pods, and we owe it to ourselves and people new to the field more accurate and engaging ways of representing Kubernetes architecture. This talk will demonstrate a few different methods to visualize how Kubernetes components work together including a time-sequence diagram that models what happens when a user creates a pod using the Kubernetes command line tool, kubectl, and how to use Jaeger to see an http request move onto different nodes by traveling through a load balancer, to a service, and arriving at a specific pod. This talk is for people who are new to Kubernetes and want to understand how the system is designed, as well as experienced engineers who are curious about alternative ways of visualizing Kubernetes architecture.

Speakers

Kim Schlesinger

Developer Advocate, DigitalOcean

Kim Schlesinger is a teacher and technologist. She is currently a Developer Advocate at DigitalOcean, and before that she was an SRE at Fairwinds. Kim has given talks at KubeCon + CloudNativeCon North America, SRECon, LISA, DevOps Days Rockies and Develop Denver.

schlesinger 2021 kubecon talk pdf

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Petree Hall C + Online

101 Track

Talk Type Virtual

3:25pm PDT

Registries After Dark - Daniel Mangum, Upbound & Jon Johnson, Google

You know the registry as your most boring friend. You push and pull images, and it just works, but have you ever taken the time to really get to know it? What is the registry really like behind that unassuming OCI specification? What does it do when it’s not just distributing your images? Maybe it gets a little crazy on the weekend - maybe it has hidden talents you don’t know about. What would happen if this thankless hero went rogue? In this talk we will demonstrate unconventional registry implementations, including those that serve self-modifying and dynamically generated images. Along the way we’ll also take a look at how clients can utilize registries in interesting and unexpected ways, e.g. as a content-addressable key-value store or a general-purpose directed acyclic graph database. Attendees will walk away with a better understanding of what guarantees OCI images and registries provide, as well as how they can exploit the registry’s flexibility to benefit their own use cases.

Speakers

Jon Johnson

Software Engineer, Google

Jon is a Software Engineer at Google working on Artifact Registry and GCR. He currently serves on the OCI Technical Oversight Board, trying as much as possible to avoid breaking things. Jon also maintains the go-containerregistry library and various container tools like crane and... Read More →

Daniel Mangum

Principal Software Engineer, Upbound

Daniel Mangum is a Principal Software Engineer at Upbound and a maintainer of Crossplane, an open source CNCF incubating project. He has served in a variety of roles in the upstream Kubernetes project, most recently as a Tech Lead of SIG Release, and is active in multiple other open... Read More →

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

3:25pm PDT

Fluid - Build Data Orchestration in Kubernetes - Yang Che, Alibaba & Yuandong Xie, Tencent

In the cloud-native field, data-intensive tasks such as big data and AI will face many problems in the context of the separation of storage and computing architecture. For example, network IO bottlenecks lead to reduced computing efficiency, and the underlying storage system is under huge overhead pressure. On the other hand, the management of multi-source data is very complicated, which is a challenge for algorithm scientists. In this talk, we introduce an efficient and convenient data abstraction, which abstracts data from storage, provides data affinity scheduling, distributed cache engine acceleration, and multi-source data integration data lake through Fluid. In Alibaba Cloud and Tencent Cloud, a large number of Big data and AI workloads are accelerated through Fluid’s data scheduling.

Speakers

Yang Che

senior engineer, Alibaba Cloud

Yang Che, is a senior engineer of Alibaba Cloud. He works in Alibaba cloud container service team, and focuses on Kubernetes and container related product development. Yang also works on building elastic machine learning platform on those technologies. He is an active contributor... Read More →

Yuandong Xie

Senior Engineer, Tencent

YuanDong Xie, is a senior engineer of Tencent Cloud.He works in Tencent Kubernetes Engine(TKE) team, focuses on cloud native AI infrastructure and other kubernetes related products. Yuandong also focus on elastic kubernetes service on tencent cloud.He likes to explore and contribute... Read More →

Fluid kubecon submit pdf

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Room 502 AB + Online

Machine Learning + Data

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

3:25pm PDT

Cloud Provider OpenStack Intro & Update - Anusha Ramineni, NEC Corporation India Private Ltd & Lingxian Kong, Catalyst Cloud

In this session we will give overview of provider-openstack subproject. cloud-provider-openstack repository hosts various plugins relevant to OpenStack and Kubernetes Integration which includes OpenStack Cloud Controller Manager, Octavia Ingress Controller, Cinder CSI Plugin, Keystone Webhook Auth, Manila CSI Plugin, Barbican KMS Plugin and Magnum Auto Healer. This session covers the overview of all hosted plugins as well as recent work/enhancements that are being done and future roadmap of the project.

Speakers

Anusha Ramineni

Technical Specialist, NEC Corporation India Private Ltd

Lingxian Kong

Senior Cloud Engineer, Catalyst Cloud

Lingxian is a Senior Cloud Engineer at Catalyst Cloud (New Zealand) with almost 10 years of industrial experience designing and developing cloud services based on open source projects. Before joining Catalyst Cloud, he worked in the cloud computing department in Huawei for 4 years... Read More →

Introduction Provider Openstack KubeCon Virtual 2021.pptx pdf

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

3:25pm PDT

Kubernetes SIG Apps Updates - Janet Kuo, Google; Kenneth Owens, Brex; Maciej Szulik, Red Hat

SIG Apps is the special interest group covering deploying and operating applications in Kubernetes with a focus on the application developer and application operator experience. In this session the SIG Apps leads will provide an overview of what we’ve accomplished over the past year, including API promotions, controller improvements, leadership changes, subprojects status etc. They will also share the work that is being planned for the upcoming releases. The session will conclude with an open discussion and Q&A.

Speakers

Janet Kuo

Staff Software Engineer, Google

Janet Kuo is a Staff Software Engineer at Google. She's joined the Kubernetes project since before the 1.0 launch in 2015. She is Kubernetes project maintainer, SIG Apps chair, and KubeCon co-chair emeritus. In her free time, she enjoys traveling and taking photos.

Maciej Szulik

Senior Principal Software Engineer, Red Hat

Maciej is a passionate developer with almost 2 decades of experience in many languages. Currently he's working on OpenShift and Kubernetes for Red Hat. Whereas at night he is hacking on side projects with python. In his spare time he enjoys reading a good book or taking photos.

Kenneth Owens

Software Engineer, Snowflake

SIG Chair for SIG Apps. Xoogler. Current FinTech enthusiast. Has been working with containers since Mesos was cutting edge in OSS.

KubeCon NA 2021 SIG Apps pdf

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

3:25pm PDT

Correlating Signals in Opentelemetry: Benefits, Stories, and the Road Ahead - Morgan McLean, Splunk & Jaana Dogan, Amazon

OpenTelemetry is used across the industry to capture distributed traces, however this is just a sliver of the value that the project provides. OpenTelemetry also gathers metrics (launched earlier this year) and logs (beta) from your applications and infrastructure, allowing you to capture all telemetry through a single pipeline and powerful analysis in whatever tools you choose! In this session we will discuss: - How OpenTelemetry correlates these signals, which allows your investigations to jump flow seamlessly between all of your services and underlying infrastructure - The deep functionality that OpenTelemetry provides for metrics and logs, including metric formats and aggregations, tailing logs from flat files, and the a high-performance strongly-typed logging pipeline for new applications - Real stories about how large well-known organizations use OpenTelemetry and the improvements that they’ve gained - What’s next for OpenTelemetry: new data sources, signals, and more

Speakers

Morgan McLean

Director of Product Management, Splunk

Morgan is one of the co-founders of OpenTelemetry, and he sits on the project's governance committee and runs multiple initiatives within the project. He is a Director of Product Management at Splunk, where he is responsible for the core platform behind Splunk Observability Cloud... Read More →

Jaana Dogan

Principal Engineer, Amazon

Jaana Dogan is working on monitoring, observability and performance tools for ECS, EKS, App Runner, Batch, and other container services.

Slides pdf

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Room 403 AB + Online

Observability

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

3:25pm PDT

Kubernetes and Checkpoint Restore - Adrian Reber, Red Hat

Over 6 years ago a ticket (#3949) was opened asking for Pod migration in Kubernetes and until now there is no support in Kubernetes to migrate a container. Container migration is based on checkpointing and restoring containers and checkpointing and restoring containers is one the main reasons Checkpoint/Restore in User-Space (CRIU) exists. Although container migration is always viewed as an outlier or corner case of containers, because containers are supposed to be stateless, CRIU continues to get better at container migration and even if containers are supposed to be stateless, CRIU still sees growing interest in its container migration features and especially the integration in container runtimes. This talk wants to present the multiple use cases for checkpointing and restoring containers. The talk wants to give a technical background how CRIU is enabling container runtimes to checkpoint and restore containers and the plan how to integrate checkpoint and restore into Kubernetes.

Speakers

Adrian Reber

Principal Software Engineer, Red Hat

Adrian is a Principal Software Engineer at Red Hat and is migrating processes at least since 2010. He started to migrate processes in a high performance computing environment and at some point he migrated so many processes that he got a PhD for that. Most of the time he is now migrating... Read More →

2021 kubecon na pdf

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Room 408 AB + Online

Runtimes

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

3:25pm PDT

Panel Discussion: Marketing as Code: How to Rock Out with Non-Code Contributions - Bart Farrell, Data on Kubernetes Community; Kunal Kushwaha, Civo; Kaslin Fields, Google; Matt Broberg, Red Hat; Chris Short, Red Hat

For new folks in the CNCF space, becoming a contributor may sound daunting, and even overwhelming. But guess what? There are tons of ways to contribute apart from code. 5 members of the Contibex Marketing working group (Kunal, Bart, Chris, Kaslin, and Matt) are all participating and contributing through positive attitudes, documentation, networking, videos, drawings, and even raps. They want to share the welcoming spirit of the CNCF where no contribution is too small, and everyone will have something to share. Contributors' stories must be heard, and that's where the upstream marketing team comes in. (This proposal is for the Students' track)

Speakers

Kunal Kushwaha

Developer Relations Manager, Civo

Kaslin Fields

Developer Advocate, Google

Kaslin Fields is a Developer Advocate at Google Cloud & contributor to Open Source Kubernetes. She is passionate about making technology accessible to a broad audience through creating content in many forms, such as videos, blogs, documentation, and even comics which she illustrates... Read More →

Chris Short

Sr. Developer Advocate, AWS

Chris Short has been a proponent of open source solutions throughout his 20+ years in various IT disciplines, including systems, security, networks, DevOps management, and cloud native advocacy across the public and private sectors. He currently works as a Developer Advocate at Amazon... Read More →

Bart Farrell

Content Creator & CNCF Ambassador, Bartfarrell.com

Bart Farrell is a CNCF Ambassador and Freelance Content Creator, event host, and community consultant. He brings creativity and passion to everything he does, whether it's rapping about Kubernetes or producing creative videos to bring technical concepts to life. Bart engages with... Read More →

Matt Broberg

Managing Editor, Enable Architect, Red Hat

Matt is an advocate for open source software and currently the Managing Editor of Enable Architect for Red Hat. He specializes in designing technology communities that develop products and content in a way that tells a powerful story. Matt is a maintainer and contributor in the Kubernetes... Read More →

Thursday October 14, 2021 3:25pm - 4:00pm PDT
Concourse Hall 152 + Online

Student Track

Talk Type Virtual

3:30pm PDT

Virtual Project Office Hours: Fluentd

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Fluentd Project Office Hours here: https://community.cncf.io/e/mnxcja/

>> Full list of Project Office Hours

Thursday October 14, 2021 3:30pm - 4:15pm PDT
Project Office Hours

Project Office Hours

4:00pm PDT

Coffee Break

Thursday October 14, 2021 4:00pm - 4:30pm PDT
South Hall Solution Showcase + Petree Plaza

Breaks

4:30pm PDT

Testing Kubernetes Clusters - Building Confidence in Your Changes - Guy Templeton & Matteo Ruina, Skyscanner

Operating Kubernetes clusters involves a large number of components, each of which can impact the functionality of clusters. As cluster operators, building confidence in the changes being made is key to allowing frequent updates without compromising on reliability. Running the full Kubernetes conformance test suite every time is generally too slow, and doesn't always cover the functionality users of clusters care about. In this talk, you will learn how Skyscanner uses Kubernetes' existing test codebase along with Sonobuoy and Spinnaker to build a custom test suite. This allows cluster operators to build confidence in changes made to their clusters and their components, focussing on the functionality developers care about. This case study will enable you to make a start in developing your own tests for Kubernetes clusters, understanding the benefits this can bring, as well as the drawbacks you need to beware of.

Speakers

Matteo Ruina

Senior Software Engineer, Skyscanner

Matteo is a Senior Software Engineer at Skyscanner where he’s been working on Kubernetes since version 1.8. He’s currently involved in several CI/CD initiatives across Skyscanner to modernize the deployment pipeline. His focus areas are cluster management and lifecycle, CD and... Read More →

Guy Templeton

Principal Software Engineer, Skyscanner

Guy is a principal software engineer at Skyscanner, working in the production platform tribe where he’s focused on providing the best possible platform for Skyscanner’s travellers and engineers. Within Skyscanner he’s the SME on scaling Kubernetes and containerised workloads... Read More →

TestingKubernetesClusters MatteoRuina GuyTempleton 141021 pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

4:30pm PDT

Migrating to Service Mesh at Scale to Support Billions of $ Transactions - Imre Nagi & Giri Kuncoro, Gojek

Gopay, one of the biggest payments companies in South East Asia, processes transactions worth billions of dollars, with peak scale of more than 15000 financial transactions per minute. Gopay has heavily adopted Kubernetes to run its hundreds of microservices and has very recently migrated to a service mesh based architecture. As we grow, our infrastructure was becoming more complex and fragmented, our engineers less productive. Instead of writing code, teams were constantly interrupted by migration requests and spending more time looking for the right information just to get started. "Why do I need to migrate to newer helm chart again, I just upgraded it!" "This service isn’t responding, who owns it?" This talk will guide you how we fulfilled those challenges and fasten service mesh adoption through a developer friendly platform. The platform simplifies end-to-end software development with an abstraction layer that sits on top of our infrastructure and developer tooling.

Speakers

Giri Kuncoro

Senior Software Engineer, Gojek

Giri Kuncoro is currently working for Gojek, one of the fastest growing unicorns in South East Asia. He is focusing on containers, Kubernetes, and cloud native infrastructure. Giri is also an ambassador for the Cloud Native Computing Foundation and Google Developer Expert. Previously... Read More →

Imre Nagi

Senior Software Engineer, Gojek

Imre Nagi, Cloud Platform Engineer in GoPay, focuses on software architecture and cloud native technology.

Migrating to Service Mesh at Scale Giri Imre Kubecon US 2021 Final pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Petree Hall D + Online

Application + Development

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

4:30pm PDT

From Storming to Performing: Growing Your Project's Contributor Experience - Matt Butcher & Karen Chu, Microsoft

The early days of a project seem so clear. Write some code, author some documentation, & post it on GitHub. Then wait for those GitHub stars! But OSS is as much about people as code. We’ll take an honest look at the contributor experience for a sustainable open source project. We apply the form/storm/norm/perform model as a way to approach growth. With stories, examples, & our own experiences, we share practical guidance on how you can set your open source contributor community on a course to not just survive, but thrive. Part 1: Form — Tackling first tasks together *Code *Website *Messaging *Docs Part 2: Storm — Gaining trust & sorting things out *Resolving disputes *Code of Conduct *Governance *Coding standards *Contributors are not employees/coworkers Part 3: Norm — Sharing responsibility *Issue management *Delegating work *Standardizing communication channels Part 4: Perform — Optimizing for the long haul *Retaining maintainers *Maintainer turnover & recruiting *Emeritus status

Speakers

Karen Chu

Head of Community, Fermyon

Karen Chu is the Head of Community at Fermyon Technologies. Having participated in the cloud native community since 2015, she is a CNCF Ambassador, Helm community manager/maintainer, emeritus Kubernetes Code of Conduct Committee member, meet-up organizer, and conference organizer... Read More →

Matt Butcher

Principal Software Development Engineer, Microsoft Azure

Matt does cloud native open source development at Microsoft, where he has worked on Brigade, Helm, Krustlet and others. Matt is the author of a bunch of books and articles, most recently O'Reilly's book "Learn Helm" (with Matt Farina and Josh Dolitsky). When not coding, Matt enjoys... Read More →

From Storming to Performing pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
411 Theater + Online

Community

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

4:30pm PDT

A K8s-Based Workload Allocation Optimizer for Minimizing Power Consumption - Ying-Feng Hsu, Osaka University

Many K8s extensions have been focused on large scale container computation. But, how to strike a balance between energy efficiency and service performance for container operations due to the continuous growth of IoT devices and edge computing systems? The current K8s does not provide container orchestration from the perspective of data center power reduction. This talk presents a Workload Allocation Optimizer (WAO) based on the K8s architecture. WAO uses ML to predict the power increasing of workloads and introduces a scoring plugin to the K8s scheduler framework for Node selection. WAO-load balancer enables Pods to Nodes assignment with optimal power consumption. This talk gives you details on how power saving can be realized for cloud-edge computing systems. Instead of using the virtual environment, we demonstrate the proposed WAO in a real edge data center with 200+ servers and show you how WAO manipulates the tradeoff between service performance and data center power saving.

Speakers

Ying-Feng Hsu

Associate professor, Osaka University

Ying-Feng Hsu is an associate professor at the Cybermedia Center, Osaka University. His research interests include machine learning and cloud computing, with a special focus on data center power consumption optimization. He has been serving as a TPC member for various international... Read More →

A K8s Based Workload Allocation Optimizer for Minimizing Power Consumption YingfengHsu 101421 v3.1 pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Room 502 AB + Online

Machine Learning + Data

Content Experience Level Beginner (Very basic information)
Talk Type Virtual

4:30pm PDT

Fluentd and Fluent Bit - Eduardo Silva, Calyptia

Observability pipelines are a critical component on every production environment. Fluentd and Fluent Bit are well known and used for Log collection and processing. But for years our community of users have asked for a unified experience with Metrics collection. In this presentation, you will learn about our new Metrics collection and processing with Fluentd and Fluent Bit. You will learn the best practices for monitoring and how to leverage your current Prometheus services and infrastructure by using all the component together without any observability disruption.

Speakers

Eduardo Silva

CEO & Founder, Calyptia

Eduardo is an entrepreneur and Software Engineer. He is one of Fluentd project maintainers and creator of Fluent Bit, a lightweight Logs, Metrics, and Traces processor. He also is the founder of Calyptia, the Fluent company.

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

4:30pm PDT

Kubernetes SIG CLI: Intro and Updates - Eddie Zaneski, Amazon Web Services; Katrina Verey, Apple; Sean Sullivan, Google

SIG CLI is the special interest group for the command line tooling of the Kubernetes project. The SIG maintains kubectl, kustomize, and related libraries. In this session the SIG CLI leads will provide an introduction to the SIG and an overview of how to contribute including how kubectl is built and tested. They will share the work that's been done the past year and discuss several current and future Kubernetes Enhancement Proposals (KEPs). The session will conclude with open discussion and Q&A.

Speakers

Sean Sullivan

Software Engineer, Google

Sean Sullivan is a Software Engineer at Google, a co-chair of the SIG CLI (Command Line Interface), and an active SIG CLI and Kubernetes contributor since 2017. Sean has presented at a Kubecon conference every year since 2018. In his free time, Sean likes to surf and read.

Eddie Zaneski

Staff OSS Engineer, Chainguard

Eddie lives in Denver, CO with his wife and dog. He loves open source and is a maintainer for the Kubernetes and Sigstore projects. When not hacking on random things you'll most likely find him climbing rocks somewhere.

Katrina Verey

Senior Software Engineer, Apple

SIG CLI KubeCon NA 2021.pptx pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

4:30pm PDT

Notary: State of the Container Supply Chain - Justin Cormack, Docker & Steve Lasker, Microsoft

As supply chain security becomes a larger concern for all types of organization, the tooling for supply chain security becomes critical. The Notary v2 project was set up to address issues with the original v1 project that did not see widespread use, and to gather consensus on the types of security mechanisms that were needed. This talk will show the progress we have made, and go through the decisions we made so far, as we are going into early production use. We will look at the future roadmap and the supply chain landscape.

Speakers

Justin Cormack

CTO, Docker

Justin is the CTO at Docker, and a member of the CNCF TOC. He has spent a lot of time working on security in the container ecosystem. He is a maintainer on the Notary project for container security.

Steve Lasker

Principal PM Architect, Microsoft

Steve is a PM Architect for Registries at Microsoft, an OCI TOB member and OCI Artifacts maintainer. Prior to joining Microsoft, Steve worked in software consulting and broadcast engineering, where he learned the balance of designing reliable, performant, available, secure and usable... Read More →

KubeCon NA 2021 Notaryv2 pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

4:30pm PDT

SIG-Autoscaling: Introduction + HPA/VPA Updates - Joe Burnett‎ & Marcin Wielgus, Google

During this talk we will give a detailed overview of autoscaling features in Kubernetes, covering both horizontal, vertical as well as cluster autoscalers. You will learn how to automatically adjust your Kubernetes cluster and pods to match your current capacity needs, which components should be used when and how to configure them properly to get best efficiency and cost savings. We will also discuss upcoming features like the new HPA v2 stable API and support for alternative recommenders in VPA.

Speakers

Marcin Wielgus

Staff Software Engineer, Google

Marcin Wielgus is a Staff Software Engineer at Google. Marcin joined the company in 2010 and since then he has been working on various projects, ranging from Android applications to recommendation engines. He started contributing to Kubernetes before the 1.0 release and currently... Read More →

Joseph Burnett

Senior Software Engineer, Google

Joseph Burnett is a Senior Software Engineer working on autoscaling at Google Cloud.

KubeCon NA 2021 SIG Autoscaling pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual

4:30pm PDT

Cloud Native Superpowers with eBPF - Liz Rice, Isovalent

Netflix’s Brendan Gregg coined the term “Superpowers for Linux” to describe eBPF back in 2016. Today there are a whole crop of eBPF-based tools for cloud native observability, networking and security, such as Falco, Pixie and Cilium. What makes eBPF such a powerful platform for building this new generation of tools? This talk uses live-coding & demos from across the cloud native ecosystem to illustrate how eBPF programs can - Collect performance & behavioral insights from across an entire system - Relate observed data to Kubernetes objects - Reliably instrument workloads without making any changes to apps or configurations But eBPF isn't a magic wand. We’ll look at its limitations and potential misconceptions that are emerging from the use of this powerful new technology. Even if you’re not a Linux kernel aficionado you’ll leave this talk with an understanding of how eBPF enables high-performance tools that help you manage, debug and secure applications in the cloud.

Speakers

Liz Rice

Chief Open Source Officer, Isovalent

Liz Rice is Chief Open Source Officer with eBPF specialists Isovalent, creators of the Cilium cloud native networking, security and observability project. She is the author of Container Security, and Learning eBPF, both published by O'Reilly, and she sits on the CNCF Governing Board... Read More →

KubeCon Cloud Native Superpowers with eBPF pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Room 403 AB + Online

Observability

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

4:30pm PDT

Untangling the Multi-Cloud Identity and Access Problem With SPIFFE Tornjak - Brandon Lum & Mariusz Sabath, IBM

When an organization moves to a multi-cloud environment, one of the first questions a developer will ask is “How do I access my S3 bucket in AWS from my GCP cluster?” (or any other permutations thereof cloud services/providers). This is an unsurprising request. However, the solutions to these problems today are surprisingly inadequate, especially when security and compliance are considered. This problem stems from cloud providers/services each having their own notion of workload identity and schema, which makes federation difficult. This talk proposes a shift in the perspective of workload identity from being “platform specific” to “organization wide” using SPIFFE/SPIRE and the new SPIFFE Tornjak project to provide a consistent and secure organization-wide management plane for workload identity and access across multiple clouds. After all, user identities are managed on the organization level (e.g. LDAP, etc.), why should our handling of workload identities be any different?

Speakers

Brandon Lum

Senior Software Engineer, IBM

Mariusz Sabath

Senior Software Engineer, IBM Research

Mr. Sabath is a Senior Software Engineer at the IBM T. J. Watson Research Center in Yorktown Heights, NY. Mr. Sabath joined IBM Research in 1997, and since then, he has led several development projects in the area of monitoring, reporting, and performance analysis. His research interests... Read More →

UntanglingMultiCloudAccessProblem pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Room 408 AB + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

4:30pm PDT

Clusterless - Utilizing a Cluster of Clusters Seamlessly - Fei Guo, Alibaba & Chris Hein, Apple

Multi-cluster support in Kubernetes becomes more and more important for application efficiency, better resource utilization and breaking the geographic boundary. While existing open source projects like Karmada, Tensile-Kube, Liqo, Admiralty, and more have addressed challenges in multi-cluster management such as configuration, lifecycle management, they either introduce new APIs/management workflows or have scalability limitations in terms of scheduling throughput. In this talk, a new Clusterless design is introduced to reduce the management burden of multi-cluster users. Basically, multiple clusters are abstracted as Pod resource providers, connecting to a management cluster which is exposed to the users. There are no new APIs introduced hence the consistent user experiences are preserved. The Pod dispatching is done by a highly efficient two-level scheduling algorithm which can achieve O(n) scheduling throughput, where n is the number of managed clusters.

Speakers

Chris Hein

Software Engineer, Apple, Inc

Chris is a Software Engineer at Apple with a focus on Kubernetes, multi-tenancy, open source and cloud-native technologies. Chris helps to maintain multiple open source projects such as the Cluster API Provider Nested and VirtualCluster. Prior to Apple, Chris worked for AWS, GoPro... Read More →

Fei Guo

Software Engineer, Microsoft

Fei Guo has been worked on various projects in the areas of workload automation, multitenancy, scheduling and edge computing in Kubernetes.

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Concourse Hall 152 + Online

Serverless

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

4:30pm PDT

Function to Container - Building a FaaS Experience - Evan Anderson, VMware

Function as a Service (FaaS) is a hot topic in serverless and cloud computing at the moment, and there are a variety of open-source and CNCF projects which provide some level of serverless capability. Many of these open-source serverless solutions actually operate at the level of the container abstraction, which makes them a powerful bridge for traditional application models, but sacrifices the simplicity of the "functions" approach. Function buildpacks aim to provide this developer simplicity by injecting both a main method and invocation glue such as an HTTP server into the application code before building a container image. Unlike traditional buildpacks which aim to package a complete application with specific protocol bindings specified by the developer, function buildpacks rely on inversion of control to adapt business logic (in the form of a CloudEvents-processing function) to the protocol needs of the application.

Speakers

Evan Anderson

Software Engineer, VMware

Knative founder and serverless enthusiast. Currently at VMware, previously at Google; recovering SRE. Dad of two. Ultrarunner. Vegan.

Function to Container pdf

Function to Container (with demo link) pdf

Thursday October 14, 2021 4:30pm - 5:05pm PDT
Concourse Hall 151 + Online

Serverless

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

4:30pm PDT

Virtual Project Office Hours: Kyverno

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Kyverno Project Office Hours here: https://community.cncf.io/e/mpxbdx/

>> Full list of Project Office Hours

Thursday October 14, 2021 4:30pm - 5:15pm PDT
Project Office Hours

Project Office Hours

5:00pm PDT

cloudnative.tv Daily Recap

Thursday October 14, 2021 5:00pm - 5:45pm PDT
South Hall Lobby + Online

Interactive Sessions

5:25pm PDT

The Hitchhikers Guide to Container Security - Tunde Olu-Isa, Oteemo & Jed Salazar, Isovalent

You’ve seen the Kubernetes security announcements: CAP_NET_RAW rogue advertisements, runc breakout, hostNetwork hijack.. oh my! It seems that the best you can do is keep up with patching, but often these vulnerabilities take advantage of overly permissive Pods. In this talk, we’ll introduce the riskiest privileges that Pods can request, what allowing those privileges means for your cluster, and how to create security policy to protect your cluster and its users. If you’ve ever wondered, “what does enabling privileged actually mean?”, hitch a ride on a whirlwind and fun guide about the basics of Pod security and how you can easily configure security policy to keep Kubernetes safe. Any level of experience can benefit from learning about the riskiest privileges Pods can request and reducing the threats in your environment by running your workloads safely.

Speakers

Jed Salazar

Security Architect, Chainguard

Jed Salazar started his Security and SRE journey working on Borg clusters and securing Alphabet companies at Google. He's passionate about security and SRE and spreading knowledge to benefit everyone in the community. In his free time he enjoys trail running the mountains.

Tunde Olu-Isa

Managing Consultant, Oteemo

Tunde is currently the Chief Architect at the Department of Defense, Platform One, and Managing Consultant at Oteemo. Tunde worked at VMware, Heptio, and IBM. He helped build highly performant distributed systems, provided recommendations and advice on best practices on open source... Read More →

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Petree Hall C + Online

101 Track

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

5:25pm PDT

Quantifying the Business Value of Cloud-Native Data Management - Prashanto Kochavara, Trilio

Data management and protection in the age of ransomware, cloud outages, and fat finger namespace deletions is too often justified with a loss prevention and insurance policy mentality. While these factors are important and can be quantified, there are other quantifiable measures that should be considered to seek the proper funding and approval for a cloud-native data management project. Learn the basic principles of writing a comprehensive business value analysis that will speak the language of both the finance organization and also allow your companies leadership to fully understand the big picture of improving application migration capabilities, test data related to your CI/CD pipeline, and getting a complete view of the costs of development across the application lifecycle. Learn to easily compare the costs of efforts associated with development time and infrastructure costs as well as the cost of maintaining cloud-native data management in a private or multi-cloud environment.

Speakers

Prashanto Kochavara

Director, Product - Kubernetes, Trilio

Prashanto Kochavara is Director of Product at Trilio, a leader in cloud-native data protection. Kochavara is responsible for the product strategy, roadmap, and execution of the company's backup and recovery platform for Kubernetes.

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Petree Hall D + Online

Business Value

Talk Type In-Person

5:25pm PDT

Public Technical Oversight Committee (TOC) Meeting - Moderated by Chris Aniszczyk, CTO, The Linux Foundation

Speakers

Chris Aniszczyk

CTO, Linux Foundation (CNCF)

Chris Aniszczyk is an open source executive and engineer with a passion for building a better world through open collaboration. He's currently a CTO at the Linux Foundation focused on developer relations and running the Open Container Initiative (OCI) / Cloud Native Computing Foundation... Read More →

CNCF TOC Panel KubeCon NA 2021 pdf

Thursday October 14, 2021 5:25pm - 6:00pm PDT
411 Theater + Online

Community

Talk Type In-Person

5:25pm PDT

How We Built a Cloud On K3s: The Learnings Of Growing Up Fast - Alex Jones & Anaïs Urlichs, Civo

K3s has radically altered the way we think about interacting with Kubernetes by reducing operational knowledge to an API. This promotes a highly compelling experience through its simplicity and speed. At Civo, we have spent the past two years building an ethical cloud computing company around this technology in collaboration with the open-source community. But the journey has been hard... Running hundreds of micro-clusters has had a steep learning curve. Observability, production support and reliability have been dramatically scaled and tested as services have become popular. We have found nuances in K3s, changes within the hardware requirements and had to rebuild server racks. This talk will illustrate our journey of making clusters resilient within a multi-tenant environment and how company culture had to scale with the tech and community to support it.

Speakers

Alex Jones

Principal Engineer, AWS

As both a contributor and end-user of cloud-native technology, Alex has a unique perspective on how to translate tooling, practices, and behaviours into generators of strategic value and positive cultural change.

Anais Urlichs

Developer Advocate, Aqua Security

Anaïs is a Developer Advocate at Aqua Security, where she contributes to Aqua’s cloud native open source projects. When she is not advocating DevOps best practices, she runs her own YouTube Channel centered around cloud native technologies. Before joining Aqua, Anais worked as... Read More →

How We Built a Cloud On K3s The Learnings Of Growing Up Fast pdf

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Room 502 AB + Online

Customizing + Extending Kubernetes

Content Experience Level Intermediate (Mid-level experience)
Talk Type Virtual

5:25pm PDT

Conformance Testing the Kubernetes API: Tooling that Makes the Difference - Stephen Heywood & Caleb Woodbine, ii.nz

The Certified Kubernetes Conformance Program enables organizations to have confidence that their workloads will interoperate from one installation of Kubernetes to the next. In 2018, to ensure that organization can have the assurance that their workloads can move between vendors the CNCF turned the spotlight on improving the conformance test coverage of the Kubernetes API. This effort has brought us from ~20% of endpoints conformance tested in 1.15 to over 75% by 1.22. Most of the success can be attributed to the tooling developed to streamline the process of locating new endpoints to test before creating a PR to the Kubernetes repo. The tooling helps with identifying the current gaps in conformance, exploring endpoints, writing tests and verifying the test results. In this presentation Stephen will walk us through the tooling that will help us test the remaining 25% of the Kubernetes API.

Speakers

Caleb Woodbine

Software engineer at ii, ii.nz

Caleb is a software engineer at ii. Driven by community, he loves the collaboration of individuals - especially through Open Source.Caleb contributes to the Kubernetes sig-testing, Kubernetes conformance working group, and wg-k8s-infra. Caleb also spends way too much time with container... Read More →

Stephen Heywood

Software engineer at ii, ii.nz

Stephen Heywood is a cloud-native advocate that brings together 20 years of exploring open source technologies with an extensive set of skills from various industries (education; corporate IT and the electricity sector). To unwind, Stephen enjoys an eclectic range of hobbies, from... Read More →

kubecon na 2021 tooling that makes the difference pdf

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Room 402 AB + Online

Maintainer Track Sessions

Talk Type Virtual

5:25pm PDT

SPIFFE: In Theory and in Practice - Evan Gilman & Andrew Harding, VMware

Please join us on the maintainer track to learn more about the SPIFFE vision, it's components, and how it fits into the cloud native landscape. In this session, we will do a short intro and deep dive on SPIFFE, followed by a Q&A. This will be an informal session - please bring your questions and use cases! We'll discuss recently completed works, where the project is headed, and how SPIFFE compares/contrasts to other seemingly similar options. Finally, stick around after the session for an extended meetup with the maintainers and other SPIFFE users.

Speakers

Evan Gilman

Staff Engineer, VMware

Evan Gilman is an engineer with a background in computer networks. With roots in academia, and currently working on the SPIFFE project, he has been building and operating systems in hostile environments his entire professional career. An open source contributor, speaker, and author... Read More →

Andrew Harding

Founding Software Engineer, SPIRL

Andrew Harding is at heart a software engineer who enjoys building software that solves practical problems. He has spent a large chunk of his career in software infrastructure and distributed systems. He is a long-time maintainer and core contributor on the CNCF-graduated SPIFFE and... Read More →

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Room 501 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

5:25pm PDT

Thanos: Highly Available, Pluggable, Long Term Metric Storage for Everyone! - Wiard van Rij, Fullstaq

Prometheus was initially made for short metric retention to answer questions on “what is happening ‘now’”. It is a strong project that solves certain problems really well, but still as a monolith when doing so. Thanos has been made to enable scaling, highly available setups and long term (cheap) storage for Prometheus. Everyone could leverage Thanos for these features. It does not stop there; Thanos has multiple components that could be used for multi-cluster telemetry, remote writes, and multi-tenancy. We want to introduce everyone to Thanos. Explaining the use-cases and how it could benefit your stack now observability becomes such an important factor in tech.

Speakers

Wiard van Rij

Engineer, Fullstaq

Wiard van Rij’s main focus is in the field of observability at Fullstaq. As a consultant he is helping people, teams, and organizations with various cloud-native challenges with a strong focus on Kubernetes and Observability. Wiard is a Thanos team member, open source enthusiast... Read More →

Thanos Talk pdf

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Concourse Hall 153 ABC + Online

Maintainer Track Sessions

Talk Type Virtual

5:25pm PDT

Vitess: Introduction and New Features - Deepthi Sigireddi & Alkin Tezuysal, PlanetScale, Inc.; Andrew Mason & Malcolm Akinje, Slack Corp.

Vitess is a cloud-native storage solution that can scale indefinitely. In this session, we will first cover a high level overview of Vitess features, the architecture, and what database workloads are a good fit. Then we will demonstrate how to get started with Vitess on Kubernetes. This will be followed by VTAdmin, the next generation of tooling and UIs for managing large-scale, multi-cluster Vitess deployments, built for developers and operators alike. We will demo resharding using VTAdmin, and will talk about improvements to performance and scalability along the way.

Speakers

Deepthi Sigireddi

Software Engineer, PlanetScale

Deepthi is a Software Engineer at PlanetScale, where she leads the open-source engineering team for Vitess, a CNCF graduated project. She is also the Technical Lead for Vitess in the open-source community. She brings over 20 years of experience building scalable systems to this role... Read More →

ALKIN TEZUYSAL

EVP - Global Services, ChistaData

* Open source database evangelist* Global database operations expert* Storyteller* Inspiring technical and strategic leader* Creative team builder* Speaker, mentor, and coach* Born to sail, forced to work

Andrew Mason

Senior Software Engineer, Slack Corp.

Andrew is a senior software engineer at Slack and a Vitess maintainer working on cluster management and vtadmin. He likes running and tennis and FromSoftware games.

Malcolm Akinje

Software Engineer, Slack Corp.

KubeCon NA 2021 pdf

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Concourse Hall 150 ABC + Online

Maintainer Track Sessions

Talk Type In-Person

5:25pm PDT

The Prometheus Conformance Program - Richard Hartmann, Grafana Labs

Prometheus is the standard for cloud-native metric monitoring and beyond. We're a victim of our own success inasmuch as everyone claims to be compatible with Prometheus when many are not. In the best case, this leads to user confusion. In the worst case, this leads to data loss, data change, and missed alerts. In our experience as Prometheus team supporting end users, the latter is scarily common. To fix this situation, CNCF and Prometheus team have launched the Prometheus Conformance Program. We will walk through its design, through current test suites available, through current test results, and show you how to apply for the official mark of Prometheus compatibility. Depending on overall timeline, we might use this talk to publish official marks for projects and products.

Speakers

Richard Hartmann

Director of Community, Grafana Labs

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Room 403 AB + Online

Observability

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type Virtual

5:25pm PDT

Keeping Up with the CVEs: How to Find a Needle in a Haystack? - Pushkar Joglekar, VMware

An end user team bought a new product that ships as a set of container images. Their CISO requests a scan of the images before going live. The internal scan, to everyone’s surprise results in 314159 vulnerabilities. The CISO is furious & rejects any claims that the scanner is faulty, since it worked fine for VM images. After multiple back and forth exchanges with the product’s vendor, the vast majority of the detected vulnerabilities are false positives / do not have a fix / are not in the code execution path. Everyone breathes a sigh of relief until a few weeks later, the same thing happens for another product & the story repeats itself. It does not have to be this way! In this talk using the Kubernetes images as an example we will unravel how vulnerability scanners work, their blind spots and discuss how to implement a practical approach that allows end users to assess product’s security not by the raw vulnerability numbers & severity but by the risk it poses to their environment.

Speakers

Pushkar Joglekar

Cloud Native Security Engineer, Independent

Keeping Up with the CVEs KubeCon NA 2021 PJ pdf

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Room 408 AB + Online

Security + Identity + Policy

Content Experience Level Intermediate (Mid-level experience)
Talk Type In-Person

5:25pm PDT

How Event Driven Autoscaling in Kubernetes Can Combat Climate Change - Annie Talvasto, CAST AI & Adi Polak, Microsoft

Climate change is one of the biggest challenges of this century, and at the same time adoption of cloud services increases the world’s CO2 production. We will show a demo showcasing how we can combat climate change with Kubernetes, e.g. by using event driven autoscaling (KEDA), spot instances, aggregated data from multiple sources as well as CNCF projects. We will take you through the creation & ideation of the open source project and prove that by optimising your cloud & Kubernetes, you can also decrease the environmental impact of your compute.

Speakers

Adi Polak

Sr. Manager - Big Data, Microsoft

Adi is a Sr. Software Engineer and Developer Advocate in the Azure Engineering organization at Microsoft. Her work focuses on distributed systems, big data analysis, and machine learning pipelines. In her advocacy work, she brings her vast industry research and engineering experience... Read More →

Annie Talvasto

CNCF Ambassador & CMO, VSHN

Annie Talvasto is an award-winning international technology speaker and leader. She has been recognized with the CNCF Ambassador and Azure MVP awards. Annie has co-organized the Kubernetes & CNCF Finland meetup since 2017. She has spoken at technology conferences worldwide, including... Read More →

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Concourse Hall 151 + Online

Serverless

Content Experience Level Any (Anyone can attend - no experience required)
Talk Type In-Person

5:25pm PDT

Deciphering Your Way to the World of Golang - Mritunjay Sharma, JSSATE Noida

A World War-II memo has been found, a mystery is about to unravel and Agent Mritunjay needs your help. The road to lost treasure goes through the mysterious message and Agent Mritunjay is on a mission to decipher it - are you ready to join him in this journey? Pack your bags, put on your spooky hoodie, get that hacker hat on and open that terminal screen to get ready to Go! This is not merely a workshop - this is your journey with Agent Mritunjay to find the lost treasure but wait a minute - how do you plan to decipher the message? Don't you worry - Agent Mritunjay - to your rescue! Join him to learn about the fundamentals of Golang in this special Student's Track workshop where you will learn how Go modules work, what are Go packages, how functions interact to build into an algorithm that will not only help you solve the mystery with your first Golang CLI app but also pave your way to cloud-native projects like Kubernetes, Helm, etcetera. So what are you waiting for? Let's go!

Speakers

Mritunjay Sharma

Member of Technical Staff, Slim.AI

Deciphering Your Way to the World of Golang pdf

Thursday October 14, 2021 5:25pm - 6:00pm PDT
Concourse Hall 152 + Online

Student Track

Talk Type Virtual

5:45pm PDT

AMA Happy Hour with Priyanka Sharma, GM of CNCF

Join CNCF General Manager Priyanka Sharma for some end-of-day socializing, recaps of the keynotes, and special guests! Come prepared with your audio and video on – we’re here to have fun and make connections!

How to Register: No need! Happy hour is open to all in the community that are interested, space permitting. Details on how to join will be shared closer to the event.

Join Zoom: https://zoom.us/j/98133686388

Thursday October 14, 2021 5:45pm - 6:45pm PDT
Online Only

Experiences

6:00pm PDT

All-Attendee Party sponsored by Kasten by Veeam and Humio

Don’t miss the party of the week! Let’s spend our last night together in recognition of our collective resilience and ability to continue growing through tough times. Reconnect with new and old friends, share stories and libations, and delve into fun games and entertainment.

Thursday October 14, 2021 6:00pm - 9:00pm PDT
Xbox Plaza + The GRAMMY Museum at L.A. LIVE 800 W. Olympic Blvd. Los Angeles, CA 90015

Experiences

7:30am PDT

AMA Coffee Klatch with Priyanka Sharma, GM of CNCF

Join CNCF General Manager Priyanka Sharma for some early morning socializing, a recap of the week, and special guests! Come prepared with your audio and video on – we’re here to have fun and make connections!

*This event will be streamed to cloudnative.tv.

How to Register: No need! The coffee klatch is open to all interested community members, space permitting. Details on how to join will be shared closer to the event.

Join Zoom: https://zoom.us/j/95839612454

Speakers

Priyanka Sharma

ED, CNCF

Friday October 15, 2021 7:30am - 8:15am PDT
Online Only

Experiences

7:30am PDT

The New Stack Pancake Breakfast: The Cloud Native Datacenter as the Future of Modern Infrastructure

Pancakes may taste best from scratch, but nobody loves DIY cloud. The datacenter of the future is going to be based on cloud native open source components, but how are technology leaders going to manage all the needed technology components while still driving value for the business? Join Mirantis and The New Stack to learn what's cooking in the future of the datacenter, including how to effectively leverage open source and complex cloud native technologies across multiple infrastructures.

TNS Founder and Publisher Alex Williams will moderate an expert panel with Managing Editor Joab Jackson and take as many questions as we can answer from you. Our panelists will offer their explanation and analysis about how …. Bring your questions for a chance to win a custom TNS spatula!

Sponsored by Mirantis

No RSVP required, but seating is limited so please arrive by 7:15 AM to get a place in line.

Moderators

Joab Jackson

Editor-in-Chief, The New Stack

Alex Williams

Founder and Publisher, The New Stack

Speakers

Sophia Vargas

Research Analyst, Open Source Strategy, Google

Jeremy Tanner

Developer Relations, Equinix

Mark Hinkle

Co-founder & CEO, TriggerMesh

Adam Parco

Chief Technology Officer, Mirantis

Shaun O'Meara

Field CTO, Mirantis

Friday October 15, 2021 7:30am - 8:30am PDT
JW Marriott L.A. Live | Platinum Ballroom D+E

Experiences

8:00am PDT

Continental Breakfast

Friday October 15, 2021 8:00am - 9:00am PDT
Petree Plaza + Concourse Plaza

8:00am PDT

Registration + Vaccine Verification + Badge Pick-up

Friday October 15, 2021 8:00am - 4:00pm PDT
West Lobby

Registration + Badge Pick-up

9:00am PDT

Friday Keynote Sessions

Be sure to join us for Friday's keynotes which include:

Opening Remarks - Constance Caramanolis, Principal Software Engineer, Splunk; Jasmine James, Engineering Manager, Twitter; Stephen Augustus, Head of Open Source, Cisco (9:00-9:05)
Machine Learning on Kubernetes Made Easy With Kubeflow - Masoud Mirmomeni, Lead Data Scientist, Shell & Jimmy Guerrero, Vice President of Marketing, Arrikto (9:05-9:20)
A Secure Supply Chain Vision - Luke Hinds, Security Lead, Office of the CTO, Red Hat (9:20-9:25)
Sustaining a Contributor Community’s Next Generation - Christoph Blecker, Principal Site Reliability Engineer, Red Hat & Paris Pittman, Program Manager, Apple (9:25-9:40)
Breaking Tradition: The Future of Package Management with Kubernetes - Shatarupa Nandi, Engineering Director @ VMware Tanzu, VMware (9:40-9:45)
Maintaining the Maintainers - Stephen Augustus, Head of Open Source, Cisco (9:45-10:00)
SBOM is Coming: Why You Should Care and How You Can Help - Frederick Kautz, AI Chief; Enterprise Architect, Anthem & Allan Friedman, Senior Advisor and Strategist, CISA (10:00-10:15)
Community Awards

Speakers

Paris Pittman

various project roles, independent

Paris Pittman has spent the last 20 years helping communities grow and flourish — from building hometown Baltimore tech communities to driving belonging and sustainability in massive open source ecosystems like Kubernetes. Paris has contributed to Kubernetes for 6 years and serves... Read More →

Luke Hinds

Senior Principal Software Engineer, Red Hat

Luke Hinds works within the Emerging Technologies group in Red Hat's CTO office, where he leads a team working on open source security. Luke started the project sigstore, alongside many other OSS security projects. He has held numerous OSS community leadership roles, such as the Kubernetes... Read More →

Christoph Blecker

Senior Principal Site Reliability Engineer, Red Hat

Christoph is an Architect and Senior Principal SRE on Red Hat's OpenShift team and a contributor to the Kubernetes project. He's a Technical Lead for SIG Contributor Experience, a member of the Kubernetes Steering Committee, and a regular contributor to SIG Architecture, SIG Testing... Read More →

Constance Caramanolis

Principal Software Engineer, Splunk

Shatarupa Nandi

Engineering Director @ VMware Tanzu, VMware

Shatarupa Nandi is an engineering leader focused on software distribution and lifecycle management problems with a strong emphasis on improving Day 2 operational experiences. Her interest follows naturally from past work building infrastructure management tools and tools for running... Read More →

Frederick Kautz

Co-Chair, KubeCon

Frederick collaborates on security and networking. He is on the SPIFFE Steering Committee, focusing on providing Zero Trust Workload Identity to compute workloads and resources. Frederick co-authored Solving the Bottom Turtle. He is a co-founder of OmniBOR and maintains the reference... Read More →

Allan Friedman, PhD

Senior Advisor and Strategist, Department of Homeland Security

Dr. Allan Friedman is Senior Advisor and Strategist at the Cybersecurity and Infrastructure Security Agency. He coordinates the global cross-sector community efforts around software bill of materials (SBOM) and related vulnerability initiatives and works to advance their adoption... Read More →

Jimmy Guerrero

VP Community & Marketing, Arrikto

VP of Community and Marketing at Arrikto - one of the leading contributors to the latest 1.3 Kubeflow release.

Jasmine James

Senior Engineering Manager-Developer Experience

Stephen Augustus

Head of Open Source, Cisco

Masoud Mirmomeni

Lead Data Scientist, Shell

Friday October 15, 2021 9:00am - 10:30am PDT
West Hall + Online

Keynote Sessions

Talk Type In-Person

10:30am PDT

Coffee Break

Friday October 15, 2021 10:30am - 11:00am PDT
South Hall Solution Showcase + Petree Plaza

Breaks

10:30am PDT

Virtual Project Office Hours: Helm

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Helm Project Office Hours here: https://community.cncf.io/e/mn8eev/

>> Full list of Project Office Hours

Friday October 15, 2021 10:30am - 11:15am PDT
Project Office Hours

Project Office Hours

10:30am PDT

Virtual Project Office Hours: Strimzi

Project Office Hours is an opportunity for KubeCon + CloudNativeCon attendees to meet the maintainers of the projects, learn more about the project, ask questions, learn about new features and upcoming updates. Below you'll find a list of upcoming Project Office Hours for Graduated, Incubating, and Sandbox projects with the date the office hour will be hosted. Click on the 'View Details' button for the project office hour in order to view additional information. Login is required to RSVP for the event. Once you register for an office hour, you will receive a confirmation email after you RSVP with the event details and how to join the project office hours.

RSVP for Strimzi Project Office Hours here: https://community.cncf.io/e/mn7z55/

>> Full list of Project Office Hours

Friday October 15, 2021 10:30am - 11:15am PDT
Project Office Hours

Project Office Hours

10:30am PDT

Project Pavilion