Loading…
In-person + Virtual
October 11-15
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon North America 2021 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Pacific Daylight Time (UTC -7). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Maintainer Track Sessions [clear filter]
Wednesday, October 13
 

11:00am PDT

Envoy Maintainer Q&A - Lizan Zhou, Tetrate
Q&A with Envoy maintainers. Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions! Come ask questions!

Speakers
avatar for Lizan Zhou

Lizan Zhou

Founding Engineer, Tetrate
Lizan Zhou is a Founding Engineer at Tetrate leading mesh backend team. He is a senior maintainer of Envoy and one of the core contributors of Istio. Previously he was working at Google Cloud, during his time at Google he worked on security and networking on Istio and Cloud Endpoints... Read More →


Wednesday October 13, 2021 11:00am - 11:35am PDT
Concourse Hall 153 ABC + Online

11:00am PDT

Hardening the Kubernetes Software Supply Chain Through Better Transparency - Adolfo García Veytia, uServers; Verónica López González, Digital Ocean; Nabarun Pal, VMware
Software supply chains are gaining increasingly complex nowadays, especially when it is about deploying cloud native environments securely. After refactoring the Kubernetes release process over the past years, SIG Release efforts have shifted towards three main areas of work. In this talk, Verónica, Nabarun, and Adolfo will cover all of them in-depth: * Starting with Kubernetes v1.22, every release includes an SPDX Bill of Materials describing the source code, binaries, and all published images. * Automatic verification of the integrity and consistency of release artifacts as part of the Kubernetes Release process. * Digital signing of released artifacts and signature verification of upstream images. In the final part of the presentation, the speakers will demonstrate some of the tools that SIG Release has created, which can be leveraged today by the community in other projects, too.

Speakers
avatar for Nabarun Pal

Nabarun Pal

Technical Staff 3, VMWare
avatar for Verónica López González

Verónica López González

Software Engineer, Digital Ocean
avatar for Adolfo García Veytia

Adolfo García Veytia

Head of Research, uServers
Adolfo García Veytia (puerco) is the Head of Research and Development at uServers, a cloud consulting company based in Mexico City. He is a Technical Lead with Kubernetes SIG Release, recently acting as Branch Manager for the 1.21 and 1.22 releases. He actively works on the Release... Read More →


Wednesday October 13, 2021 11:00am - 11:35am PDT
Room 501 ABC + Online

11:00am PDT

Helm: The Charts and the Curious - Karena Angell, Paul Czarkowski & Andrew Block, Red Hat; Scott Rigby, Weaveworks
Have you ever wondered, how can I improve the processes and tooling around my Helm Chart development and distribution? Just like with a programming language, there are OSS projects in the Helmiverse, such as linters, testing tools, and automation you can use to help you with charts. In this session, you’ll learn about some of these tools and how you can use them to improve your workflow and CI automation. Along the way you’ll learn about supply chain security, GitHub actions, YAML validation, tools you can use in any CI system, and more. Charts are at the heart of using Helm, in this session you’ll learn how to have a healthier heart.

Speakers
avatar for Andrew Block

Andrew Block

Distinguished Architect, Red Hat
Andrew Block is a Distinguished Architect who works with organizations to design and implement solutions leveraging cloud native technologies. He specializes in Continuous Integration and Continuous Delivery methodologies to reduce delivery time and automate how environments are built... Read More →
avatar for Paul Czarkowski

Paul Czarkowski

Managed OpenShift BlackBelt, Red Hat
Paul Czarkowski is a long-time practitioner of the dark arts of DevOps. Hailing from Australia, he moved to Austin,Texas to help build and run one of the largest and most successful online games. Now at Red Hat, Paul works to improve the operator experience by taking cloud native... Read More →
avatar for Karena Angell

Karena Angell

Principal Product Manager, Red Hat
Karena Angell is a Principal Product Manager at Red Hat focusing on cloud native application workloads for Kubernetes as well as solutions for the 'open' hybrid cloud.
avatar for Scott Rigby

Scott Rigby

Developer Experience, Weaveworks
Scott is a Brooklyn based interdisciplinary artist and Developer Advocate at Weaveworks. He co-founded the Basekamp art and research group in 1998 and the massively collaborative Plausible Artworlds international network. In technology he enjoys helping develop open source software... Read More →


Wednesday October 13, 2021 11:00am - 11:35am PDT
Concourse Hall 150 ABC + Online

11:00am PDT

What's New With SIG-Windows: HostProcess and Developer environments - Brandon Smith & Danny Canter, Microsoft; Jay Vyas, VMware; Friedrich Wilken, SAP Hybrid
Members of the SIG-Windows community will provide an update on the efforts to bringing Windows workloads to Kubernetes. We'll start off by going over recent improvements including a demo of the new HostProcess feature enabling “privileged” containers on Windows. Next we'll talk about planned future improvements. We'll then show our new development tooling that will enable you to get started with development for Windows in Kubernetes. Lastly we'll finish up with some Questions and Answers with the speakers.

Speakers
JV

Jay Vyas

Software Engineer, VMware
In addition to working for several years on several aspects of Kubernetes core since its inception (at Red Hat), Jay also has served as the Engineering lead for Cloud Native product lines at Synopsys (Blackduck), bringing Kubernetes based solutions at massive scales to 100s of customers... Read More →
avatar for Friedrich Wilken

Friedrich Wilken

Software Engineer, SAP Hybrid
avatar for Danny Canter

Danny Canter

Microsoft
Work on container runtime components both for Windows and Linux containers. 
avatar for Brandon Smith

Brandon Smith

Microsoft
PM Microsoft, Windows containers + kernel - brasmith-ms (Brandon Smith) · GitHub



Wednesday October 13, 2021 11:00am - 11:35am PDT
Room 402 AB + Online
  Maintainer Track Sessions
  • Talk Type Virtual
  • Presentation Slides Attached yes

11:55am PDT

Cloud Native Storage: Storage TAG Intro, Projects, Landscape & Technology - Alex Chircop, StorageOS & Raffaele Spazzoli, RedHat
This talk will introduce the CNCF Storage TAG and discuss how the TAG operates, how we work with Storage CNCF projects as well as the projects to build guidance and write whitepapers for the ecosystem. During this session we will cover: - Overview of the TAG, how to join and how to help - Overview of storage projects in the CNCF - Projects that are currently being being reviewed We will also share updates of our latest work including: - the CNCF Storage Landscape whitepaper - the Performance and Benchmarking whitepaper - the Cloud Native Disaster Recovery whitepaper

Speakers
avatar for Alex Chircop

Alex Chircop

CEO and Founder, Ondat
Alex is a founder and CEO of Ondat (formerly StoraeOS), building software defined solutions for cloud native environments. Alex is also a co-chair of the CNCF Storage TAG (previously SIG). Before embarking on the startup adventure he spent over 25 years engineering infrastructure... Read More →
RS

Raffaele Spazzoli

Senior Principal Architect, RedHat
Raffaele is a full-stack enterprise architect with 20+ years of experience. Raffaele started his career in Italy as a Java Architect then gradually moved to Integration Architect and then Enterprise Architect. Later he moved to the United States to eventually become an OpenShift Architect... Read More →



Wednesday October 13, 2021 11:55am - 12:30pm PDT
Room 501 ABC + Online
  Maintainer Track Sessions
  • Talk Type Virtual
  • Presentation Slides Attached yes

11:55am PDT

Policy Matters! The Why, What, and How of Kubernetes Policy Management - Jayashree Ramanathan, RedHat; Aradhna Chetal, TIAA; Jim Bugwadia, Nirmata; Robert Ficcaglia, SunStone Secure
Policies help address several critical challenges with managing Kubernetes clusters and workloads. In the panel-style session moderated by Robert Ficcaglia, co-chair of the Kubernetes Policy Working Group, contributors from the working group will discuss why policies are important to enterprises and other organizations using Kubernetes. Attendees will have an opportunity to ask policy engine and compliance experts about real world use cases and effective techniques for managing policy-as-code from a small cluster to enterprise multi-cluster scale. Attendees will see examples of how to map real world threats to their systems to specific policy automation tools and how compliance automation helps defend against emerging risks and provides greater visibility and enforcement of best practices.

Speakers
avatar for Jim Bugwadia

Jim Bugwadia

Founder and CEO, Nirmata
Jim is a co-founder and CEO at Nirmata, where he focuses on open-source and customer initiatives. Jim and his team created Kyverno, a CNCF Sandbox project, which provides Kubernetes native policy management to address Kubernetes security and automation. Jim is a co-chair of the Kubernetes... Read More →
avatar for Aradhna Chetal

Aradhna Chetal

Senior Director Executive, Cloud Security Services, TIAA
Aradhna serves as Senior Director Executive - Cloud Security Services at TIAA, A Financial Services Organization in United States. In this role, she is setting the cloud security vision, strategy, standards and security patterns for a multi cloud hybrid enterprise. She is responsible... Read More →
avatar for Jayashree Ramanathan

Jayashree Ramanathan

Distinguished Engineer, Chief Security and Governance Architect, Red Hat
RF

Robert Ficcaglia

CTO, SunStone Secure



Wednesday October 13, 2021 11:55am - 12:30pm PDT
Concourse Hall 150 ABC + Online
  Maintainer Track Sessions
  • Talk Type Virtual
  • Presentation Slides Attached yes

11:55am PDT

SIG-Multicluster Intro and Deep Dive - Paul Morie, Apple; Jeremy Olmsted-Thompson & Laura Lorenz, Google
SIG-Multicluster is focused on solving common challenges related to the management of many Kubernetes clusters, across multiple cloud providers (so-called hybrid cloud), and applications deployed across many clusters. In this session, we'll give attendees an overview of the current status of the multi-cluster problem space in Kubernetes and of the SIG. We’ll discuss current thinking around best practices for multi-cluster deployments and what it means to be part of a ClusterSet. Then we’ll highlight current SIG projects, focused use cases, and ideas for what’s next. Most importantly, we’ll provide information on how you can get involved either as a contributor or as a user who wants to provide feedback about the SIG's current efforts and future direction. Bring your questions, problems, and ideas - help us expand the multi-cluster Kubernetes landscape.

Speakers
avatar for Jeremy Olmsted-Thompson

Jeremy Olmsted-Thompson

Senior Staff Software Engineer, Google
Jeremy is a software engineer who works on Google Kubernetes Engine. His main focus is on simplifying the Kubernetes experience, and making it as easy as possible to deploy applications both within a cluster with things like GKE Autopilot, and across clusters with multi-cluster solutions.When... Read More →
avatar for Laura Lorenz

Laura Lorenz

Software Engineer, Google
Laura Lorenz is a software engineer at Google working on GKE, particularly GKE’s managed offering of the MCS API. She is an active member of Kubernetes’ special interest group SIG-Multicluster.
PM

Paul Morie

Software Engineer, Apple



Wednesday October 13, 2021 11:55am - 12:30pm PDT
Room 402 AB + Online
  Maintainer Track Sessions
  • Talk Type Virtual
  • Presentation Slides Attached yes

2:30pm PDT

Kubernetes on Edge: Bringing Your Code to Constrained Places - Steven Wong, VMware; Dejan Bosanac, Red Hat; Kilton Hopkins, Edgeworx
The main goal of IoT and edge solutions is to bring the workloads closer to sources of data, events and transactions. In many cases this means maintaining them in places with network and compute resource constraints. This session will cover technologies and best practices available to achieve this goal. We will start by covering some common challenges of creating IoT edge workloads. We’ll discuss pros and cons of using traditional containers versus upcoming technologies such as WebAssembly and WASI. Next, we’ll explore mechanisms of deploying built artifacts to the actual hardware, ranging from using different Kubernetes deployments, to simpler container runtimes and specialized Edge platforms. We’ll also focus on the evolving state of running WebAssembly workloads using Kubernetes and how to apply best practices to IoT and edge use cases. We’ll try to provide general guidance on how to choose the best approach for your project with a practical demo of one of the possible solutions.

Speakers
avatar for Dejan Bosanac

Dejan Bosanac

Software Engineer, Red Hat
I’m a software engineer at Red Hat with an interest in open source and integrating systems. Over the years I’ve been involved in various open source communities tackling problems like: Enterprise messaging and integration, IoT cloud platforms and Edge computing.
avatar for Steven Wong

Steven Wong

Software Engineer, VMware
Steve Wong has been active in the Kubernetes community since 2015. He is a Tech Lead of the Kubernetes IoT and Edge Working Group and co-chair of the VMware User Group on the Kubernetes project. He is a past speaker at KubeCon, MesosCon, Open Source Summit, SCALE, and meetups in the... Read More →
avatar for Kilton Hopkins

Kilton Hopkins

Chief Technical Officer, Edgeworx
Kilton started programming computers when he was 8 years old. He started a software company a few years later. The world is very different than it was back then, but Kilton is still bringing new technologies to life.Kilton is the co-founder and CEO of Edgeworx, a startup that provides... Read More →



Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Room 501 ABC + Online

2:30pm PDT

Overview and State of Linkerd - Oliver Gould, Buoyant
In this talk, maintainers from the Linkerd project will present an overview of the project and an update on upcoming releases. They will cover what Linkerd is and how it compares to other service meshes; what the latest features and functionality are; what to expect in upcoming releases; and how you can get involved in one of the CNCF's most talked-about projects. This talk will cover features from the latest Linkerd release, as well as the latest on Linkerd's Rust micro-proxy, Linkerd2-proxy.

Speakers
avatar for Oliver Gould

Oliver Gould

CTO, Buoyant, Inc.
Oliver is the CTO & co-founder of Buoyant, where he leads engineering. Prior to founding Buoyant, he was a staff infrastructure engineer at Twitter, where he led the Observability, Traffic, and Configuration & Coordination teams---projects essential to Twitter's adoption of a modern... Read More →



Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Concourse Hall 153 ABC + Online

2:30pm PDT

Rook: Intro and Ceph Deep Dive - Travis Nielsen, Sebastien Han & Blaine Gardner, Red Hat; Satoru Takeuchi, Cybozu, Inc
The Rook project will be introduced to attendees of all levels and experience. Rook is an open source cloud-native storage operator for Kubernetes, providing the platform, framework, and support for a diverse set of storage solutions to natively integrate with Kubernetes. Rook turns storage software into self-managing and self-healing storage services. A deep-dive will be presented for the Ceph storage provider to show how Rook provides stable block, shared file system, and object storage for your production data. The recent features in the v1.7 release will be covered to further illustrate how Rook continues to be enhanced for production environments. Rook was accepted as a graduated project by the Cloud Native Computing Foundation in October 2020.

Speakers
avatar for Travis Nielsen

Travis Nielsen

Senior Principal Software Engineer, Red Hat
Travis Nielsen is a Senior Principal Software Engineer at Red Hat where he works on “the future of storage” as part of the Ceph distributed storage system team. Travis is one of the original founders of the Rook project. Prior to Rook, Travis was the storage platform tech lead... Read More →
avatar for Satoru Takeuchi

Satoru Takeuchi

Software Developer, Cybozu, Inc
Satoru is a software developer of an on-premise Kubernetes cluster and Rook/Ceph cluster at Cybozu. He is a maintainer of Rook/Ceph.He made a presentation named "Capacity-aware Dynamic Volume Provisioning For LVM Local Storage" at KubeCon Europe 2020
avatar for Blaine Gardner

Blaine Gardner

Principal Software Engineer, Red Hat
Blaine is a Principal Software Engineer at Red Hat on the OpenShift Container Storage (OCS) team. He is a maintainer of the CNCF Rook project focused on Ceph. Blaine lives in Denver, Colorado and enjoys rock climbing and coffee.
SH

Sebastien Han

Senior Principal Software Engineer, Red Hat
Sebastien Han currently serves as a Senior Principal Software Engineer, Storage Architect for Red Hat. He has been involved with Ceph Storage since 2011 and has built strong expertise around it. Curious and passionate, he loves working on bleeding edge technologies and identifying... Read More →



Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Concourse Hall 150 ABC + Online

2:30pm PDT

TAG Observability Update - Matt Young, Everquote & Alolita Sharma, Amazon
Calling all disciplines!

At the CNCF TAG Observability session, we'll introduce the TAG and talk about why you might want to join us!

Projects, Vendors, and End Users are all encouraged to share experiences, ideas, and creations. We welcome writers, product managers, designers, producers, platform operators, enginers, end users, and cloud practitioners. We have ambitious goals and are fostering the growing Observability community. Opportunities in this rapidly expanding domain are plentiful.

TAG Observability welcomes your ideas, participation, contributions and YOU. Come check us out on the 1st and 3rd Tuesdays every month.  

Speakers
avatar for Alolita Sharma

Alolita Sharma

Principal Technologist, Amazon
Alolita Sharma is a Principal Technologist at Amazon Web Services. Currently, she drives open source strategy, infrastructure and programs for open source projects such as Open Distro for Elasticsearch. Two decades of doing open source continue to inspire her. Alolita has built and... Read More →
MY

Matt Young

Principal Cloud Architect, Everquote
Matt is a Principal Cloud Architect @ EverQuote, delivering infrastructure, services, and developer-focused tooling for cloud-native applications. With 20+ years of industry experience he’s happily worn Dev, Test, Support and Research hats across the domains of embedded systems... Read More →



Wednesday October 13, 2021 2:30pm - 3:05pm PDT
Room 402 AB + Online

3:25pm PDT

Creating Cloud Native Security - Emily Fox, Apple; Brandon Lum, IBM; Andres Vega, VMware
Cloud native security is not new, but is under constant iteration and creation. As cloud native innovation occurs, the Security TAG is lock-step in considering, analyzing, and guiding the community on the most appropriate security mechanisms, architectures, design patterns, and tooling. This presentation covers an introduction to the Security TAG, their charter and scope, and then deep dives on several efforts the TAG has undertaken (completed and in progress) with their community impact such as the Supply Chain Security Paper, CNCF Project Security Reviews, Security Pals, and so much more. This session is for anyone interested in cloud native, cloud native security, or wishes to understand how a community of passionate volunteers can change an entire technology ecosystem.

Speakers
avatar for Emily Fox

Emily Fox

Cloud Infrastructure Security Engineer, Apple
Emily Fox is an open source, cloud native, and DevOps security enthusiast. She promotes the cross-pollination of modern development and security practices and co-chairs the CNCF Security Technical Advisory Group. She has worked in security for over a decade and is dedicated to improving... Read More →
avatar for Brandon Lum

Brandon Lum

Senior Software Engineer, IBM
Brandon loves designing and implementing computer systems (with a focus on Security, Operating Systems, and Distributed/Parallel Systems). He enjoys tackling both technical and business challenges and has a side interest in organizational behavior and leadership. At IBM Research... Read More →
AV

Andres Vega

Network Virtualization Systems Engineer, VMWare



Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Concourse Hall 153 ABC + Online

3:25pm PDT

Deep Dive CoreDNS - Yong Tang, Ivanti Inc.; Miek Gieben, Independent; John Belamaric, Google
Best known for its ability to serve as the cluster DNS of Kubernetes, CoreDNS is a flexible and extensible DNS server with a focus on service discovery. The flexibility and extensibility of CoreDNS comes from its unique plugin-based architecture and its easy-to-use Corefile configurations. In this session, we will take a close look at the CoreDNS extension points for developers. We will learn how to build custom DNS applications based on CoreDNS, including: building a custom CoreDNS binary that includes external plugins; building a specialized binary that uses CoreDNS as a library; building your own CoreDNS plugin. We will also update the current state and the road map of CoreDNS for the near future.

Speakers
avatar for Miek Gieben

Miek Gieben

n/a, Independent
I'm lead developer of CoreDNS. Come talk to about service discovery, DNS and the future of these technologies in a cloud native world.
avatar for Yong Tang

Yong Tang

Director of Engineering, Ivanti Inc.
Yong Tang is director of engineering at Ivanti. He is a core maintainer of CoreDNS and contributes to many container, cloud-native, and machine learning projects for the open source community. In addition to CoreDNS, he is a maintainer of Docker/Moby. He is also a maintainer and SIG... Read More →
avatar for John Belamaric

John Belamaric

Senior Staff Software Engineer, Google
John Belamaric is a Senior Staff Software Engineer at Google with over 25 years of software design and development experience. As a co-chair of Kubernetes SIG Architecture, he provides leadership on production readiness, conformance, and overall software architecture for the Kubernetes... Read More →



Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Room 501 ABC + Online

3:25pm PDT

SIG Instrumentation Introduction and Deep Dive - Han Kang & David Ashpole, Google; Elana Hashman, Red Hat; Frederic Branczyk, Polar Signals
Kubernetes SIG Instrumentation is responsible for ensuring high quality and consistent instrumentation across the Kubernetes project. We will begin with an introductory overview of the efforts the SIG Instrumentation has worked on in the past and is currently working on. This deep dive session will go in detail currently ongoing efforts happening within SIG Instrumentation to share with the audience concrete pieces of work to encourage future collaboration. Software engineering and operations are both disciplines practiced in SIG Instrumentation, and any experience will help the special interest group's mission. Join this session to learn how to get involved in SIG Instrumentation to make instrumentation even better!

Speakers
avatar for Frederic Branczyk

Frederic Branczyk

CEO, Polar Signals
Frederic is the founder and CEO of Polar Signals. Before founding Polar Signals he was a senior principal engineer and the main architect for all things Observability at Red Hat, which he joined through the CoreOS acquisition. Frederic is a Prometheus and Thanos maintainer as well... Read More →
avatar for Han Kang

Han Kang

Senior Software Engineer, Google
Han Kang is a Senior Software Engineer at Google. Han co-chairs SIG instrumentation, where he focuses on efforts to improve metric quality. He also participates in SIG API Machinery, where he works on things related to control-plane boot-sequences and health-checking.
EH

Elana Hashman

Principal Software Engineer, Red Hat
Elana Hashman currently works for Red Hat as a Principal Software Engineer on the OpenShift Container Platform Node Team, working upstream in Kubernetes SIG Node. Previously, she served as an SRE and technical lead on Azure Red Hat OpenShift. She is a subproject lead for the SIG Node... Read More →
avatar for David Ashpole

David Ashpole

Senior Software Engineer, Google
David Ashpole currently works for Google on Kubernetes and OpenTelemetry.  He was previously deeply involved in Sig-Node, and drove many enhancements around monitoring and resource management. He is currently co-Tech Lead for Sig-Instrumentation, and is working on adding Distributed... Read More →



Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Concourse Hall 150 ABC + Online

3:25pm PDT

The Future of Multi-Tenancy in Kubernetes - Tasha Drew, VMware; Adrian Ludwin, Google; Fei Guo, Alibaba; Jim Bugwadia, Nirmata
Applications need multi-tenancy. Shared services need multi-tenancy. Internal users need multi-tenancy. Tenancy requires segmentations at all layers of the infrastructure and services stack, not to mention surrounding capabilities like charge back, service priority, and cost optimization. Where is it all going? What is the future of multi-tenancy? Join the leads of the upstream working group for multi-tenancy to find out! We will discuss how we see users and entrprises leveraging multi-tenancy, the tools and capabilities our group and the rest of Kubernetes upstream community have been building to make multi-tenancy … tenable … and answer audience questions.

Speakers
avatar for Jim Bugwadia

Jim Bugwadia

Founder and CEO, Nirmata
Jim is a co-founder and CEO at Nirmata, where he focuses on open-source and customer initiatives. Jim and his team created Kyverno, a CNCF Sandbox project, which provides Kubernetes native policy management to address Kubernetes security and automation. Jim is a co-chair of the Kubernetes... Read More →
avatar for Tasha Drew

Tasha Drew

Director of Product Incubation, Advanced Technologies Group, VMware
Tasha Drew leads product strategy for product incubation and innovation at VMware as part of the Office of the CTO. She also launched Tanzu Kubernetes Grid for vSphere and was part of the team that launched Project Pacific on vSphere. She is the co-chair for the Kubernetes Multi-tenancy... Read More →
FG

Fei Guo

Senior Staff Engineer, Alibaba
Fei Guo is currently a senior staff engineer in Alibaba Container Platform Group. He worked on various projects in the areas of workload automation,  multitenancy, scheduling and edge computing in Kubernetes.
avatar for Adrian Ludwin

Adrian Ludwin

Senior Software Engineer, Google
Adrian is a software engineer on the Google Kubernetes Engine (GKE) in Kitchener, Ontario, and created the Hierarchical Namespace Controller (HNC). Before Google, he was a developer at Intel’s Programmable Solutions Group (formerly Altera) in Toronto, and specialized in parallel... Read More →



Wednesday October 13, 2021 3:25pm - 4:00pm PDT
Room 402 AB + Online

4:30pm PDT

Cloud Provider Extraction: What We’ve Done, Where We Are and What's Left! - Walter Fender, Google; Steven Wong, VMware; Nick Turner, Amazon
Cloud Provider code allows Kubernetes to run on top of different platforms. Originally, support for all variations was built directly into a K8s release. This brought bloat - a running cluster used only a subset of the code within the release. Also, any cloud specific bug fix or enhancement demanded a new full K8s release as a carrier. This will be a status report on removing the cloud provider code from the main Kubernetes repository. Significant early milestones were recently achieved: the API Server no longer needs the cloud provider library; SSHTunnels have been deleted. For each in-tree cloud provider, we will report on efforts, accomplishments, and roadmap for getting "out-of-tree". We’ll also discuss the plans to handle the speed bumps that are left - including interesting topics like multi-repo e2e testing and removing the cluster directory.

Speakers
avatar for Steven Wong

Steven Wong

Software Engineer, VMware
Steve Wong has been active in the Kubernetes community since 2015. He is a Tech Lead of the Kubernetes IoT and Edge Working Group and co-chair of the VMware User Group on the Kubernetes project. He is a past speaker at KubeCon, MesosCon, Open Source Summit, SCALE, and meetups in the... Read More →
avatar for Nicholas Turner

Nicholas Turner

Software Engineer, Amazon
Nick works at Amazon Web Services as a software development engineer for EKS where he works on building and operating a Kubernetes platform for customers who run their infrastructure on AWS. In the community, he is active in sig-cloud-provider and the provider-aws subproject, and... Read More →
WF

Walter Fender

Software Developer, Google
Graduated from U.C. Berkeley. Working at Google and on Kubernetes API Machinery, Cloud Provider and Node for three years.



Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Concourse Hall 153 ABC + Online

4:30pm PDT

containerd Introduction and Deep Dive - Phil Estes, Amazon; Maksym Pavlenko & Derek McGowan, Apple; Mike Brown, IBM
Join containerd maintainers for an introduction and deep dive into the latest updates on containerd. This last year has seen tremendous growth in both project usage and contribution. From end user CLI to low level runtime implementations, there have been exciting developments and proposals toward making containerd more stable and shaping the next generation of container use cases. The maintainers will go over internal changes to containerd which help make the core project interfaces cleaner and easier to integrate with from different components and plugins. For Kubernetes use cases, we will cover related changes happening in containerd including updates in the CRI implementation. Finally, the maintainers will cover exciting new features and sub-projects such as nerdctl, lazy-pulling (stargz), shim plugability, and more.

Speakers
avatar for Mike Brown

Mike Brown

OSS Engineer, IBM
Open Source Software Engineer, containerd maintainer, OCI maintainer, Kubernetes SIG-Node member, IBMer, github.com/mikebrow, Inventor, Coach, Proud Father. 
avatar for Phil Estes

Phil Estes

Principal Engineer, AWS
Phil is a Principal Engineer in the container compute organization at Amazon Web Services (AWS). Phil is a founding maintainer of the CNCF containerd runtime project, and participates in the Open Container Initiative (OCI) as the chairperson of the Technical Oversight Board (TOB).Phil... Read More →
avatar for Derek McGowan

Derek McGowan

Software Engineer, Apple
Maintainer of containerd since 2016, focusing primarily on image distribution, registries, overlay filesystems, and core architecture. A member of the OCI ("Open Container Initiative") Technical Oversight Board since 2019.
avatar for Maksym Pavlenko

Maksym Pavlenko

Software Engineer, Apple
containers, runtimes, microVMs, and Kubernetes.@containerd maintainer.



Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Concourse Hall 150 ABC + Online

4:30pm PDT

SIG-NETWORK: Updates and Directions - Tim Hockin & Bowei Du, Google
We will be presenting what has been going on in the Network SIG for the past few releases. The session will cover new and upcoming topics, including recent features and new APIs that are under development. Topics include: IPv6, Gateway API, Network Policy improvments, other improvements, as well as future directions for the rea. This session is mostly aimed at people who are already using Kubernetes, although new users are definitely welcome. Significant time will be allotted for Q&A, so bring your questions!

Speakers
avatar for Tim Hockin

Tim Hockin

Principal Engineer, Google
Tim is a Principal Software Engineer at Google, where he works on the Kubernetes, Google Kubernetes Engine (GKE), and Anthos. He has been working on Kubernetes since before it was announced, and mostly pays attention to topics like APIs, networking, storage, nodes, multi-cluster... Read More →
avatar for Bowei Du

Bowei Du

Staff Engineer, Google
Bowei is a tech lead at Google working on GKE Networking.



Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Room 402 AB + Online

4:30pm PDT

Why is Anyone Using Kubernetes Anyway? - Tasha Drew & Josephene Pynadath, VMware; Gaby Moreno Cesar, IBM; Carl J Pearson, UserZoom
Have you ever taken a step back and wondered, what is up with this whole Kubernetes thing? Why are people using it all over the place? Is it becase of Phippy and Captain Kube? The Docker whale being so cute and retro? Or is there something else going on? The team at SIG Usability had these questions too, and we have embarked on a two year user research study to find out what exactly is going on. Our goal is to make sure the upstream Kubernetes' community deeply understands the needs and goals of the users of Kubernetes, and how they are met and not met today. Join this talk for a deep dive into our study and data, and what we're learning about our users. Spoiler: getting started with Kubernetes is real hard, and we should fix our on-ramp. Learn more at our talk!

Speakers
avatar for Tasha Drew

Tasha Drew

Director of Product Incubation, Advanced Technologies Group, VMware
Tasha Drew leads product strategy for product incubation and innovation at VMware as part of the Office of the CTO. She also launched Tanzu Kubernetes Grid for vSphere and was part of the team that launched Project Pacific on vSphere. She is the co-chair for the Kubernetes Multi-tenancy... Read More →
avatar for Gaby Moreno Cesar

Gaby Moreno Cesar

Product Designer, IBM
Gaby Moreno Cesar is a Product Designer at IBM and a co-chair for SIG Usability. Having come from a developer + artist background, she enjoys working at the intersection of design, tech and community building. She currently designs for IBM Cloud Satellite and has worked on managed... Read More →
JP

Josephene Pynadath

Product Designer, VMware
CJ

Carl J Pearson

Senior UX Researcher, UserZoom


Wednesday October 13, 2021 4:30pm - 5:05pm PDT
Room 501 ABC + Online

5:25pm PDT

Building Catalogs of Operators for OLM the Declarative Way - Joe Lanford & Anik Bhattacharjee, Red Hat
This presentation will cover an update from the Operator-lifecycle-Manager project - a suite of production-ready operators and tools that help manage the complexity of installing and upgrading operators on a Kubernetes cluster. This talk will focus on architectural updates to the set of tools that are used to build and maintain Catalogs of Operators, the goals and motivation behind the changes, the lessons learned using the old tools in production, and the future of OLM. Interested in joining the OLM community? We have weekly meetings every Thursday — check out https://github.com/operator-framework/community/blob/master/wg-olm/README.md to get started!

Speakers
avatar for Anik Bhattacharjee

Anik Bhattacharjee

Software Developer, Red Hat
Anik joined Red Hat in their Boston office in 2019 as a Software Engineer. Since then he has been a part of the the Operator-Lifecycle-Manager team, and has been a maintainer of the Operator-Framework project ever since. In his free time, he enjoys being outdoors, playing soccer... Read More →


Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Room 501 ABC + Online

5:25pm PDT

Kubernetes Data Protection WG Intro & Deep Dive - Xiangqian Yu, Google
Data Protection WG is dedicated to promoting data protection support in Kubernetes. The Working Group is working on identifying missing functionalities and collaborating across multiple SIGs to design features to enable data protection in Kubernetes. In this session, the co-chairs of this WG will discuss what is the current state of data protection in Kubernetes and where it is heading in the future. They will also talk about how interested parties (including backup and storage vendors, application developers, and end users, etc.) can join this WG and contribute to this effort. Details of the WG can be found here: https://github.com/kubernetes/community/tree/master/wg-data-protection.

Speakers
XY

Xiangqian Yu

Software Engineer, Google


Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Room 402 AB + Online

5:25pm PDT

Kubernetes SIG Docs: A Deep Dive - Jim Angel, Google; Chris Metz, Independent; Brad Topol, IBM
This session covers Kubernetes (K8s) documentation. We'll do an overview of the docs--how they're organized, and how they're maintained--then contribute to the docs ourselves. During the introduction, we'll look at the docs repository (kubernetes/website) and how we organize content. We'll also look at the website stack: how we preview and publish docs to kubernetes.io. We'll talk about the docs workflow: how SIG Docs does the work to review and publish docs. During the deep dive, we'll explore the docs contributor guide and do some hands-on contribution. Remember that contributing to docs is a pathway to Kubernetes membership!

Speakers
avatar for Brad Topol

Brad Topol

Distinguished Engineer, IBM
Dr. Brad Topol is an IBM Distinguished Engineer leading efforts focused on Open Technologies and Developer Advocacy. In his current role, Brad leads a development team focused on contributing to and improving Kubernetes and several other cloud native open source projects. Brad is... Read More →
avatar for Chris Metz

Chris Metz

Cloud Native Tech Writer, Independent
Cloud Native Tech Writer:Lead tech writer on projects covering CNF agents, Kubernetes networking;K8s sig-docs contributor;Development, engineering and product team collaboration; Convert code, APIs and UI into docs for rapid deployment to content hosts accessible to internal and... Read More →
avatar for Jim Angel

Jim Angel

Cloud Consultant, Google



Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Concourse Hall 150 ABC + Online

5:25pm PDT

Security Through Transparency: Kubernetes SIG Security Update - Ian Coldwater, Twilio; Savitha Raghunathan, Red Hat; Rey Lejano, SUSE; Pushkar Joglekar, VMware
Kubernetes SIG Security is a newer SIG, dedicated to improving Kubernetes security by providing space for learning together, sharing our expertise, and building bridges between SIGS and externally with the broader security community. We’re here this KubeCon to tell you about what we’ve been up to! Come for this session featuring updates from our docs, tooling, and third party security audit subgroups about our efforts to keep Kubernetes secure through transparency, not obscurity. Stay to learn how you can get involved. Happy Honking!

Speakers
avatar for Savitha Raghunathan

Savitha Raghunathan

Senior Software Engineer, Red Hat
Savitha is a Senior Software Engineer at Red Hat and an active contributor to the Kubernetes ecosystem. Currently, she is leading the sig-security documentation sub-project and has been on the K8s Release Team since 1.18. She is passionate about the Kubernetes community and enjoys... Read More →
avatar for Ian Coldwater

Ian Coldwater

Security Architect, Twilio
Ian Coldwater is co-chair of Kubernetes SIG Security, a CNCF Ambassador, and a security researcher specializing in hacking and hardening Kubernetes, containers, and cloud-native infrastructure. In their spare time, they like to go roller skating, participate in Capture the Flag competitions... Read More →
avatar for Rey Lejano

Rey Lejano

Field Engineer, SUSE
Rey Lejano is a Field Engineer at SUSE by way of Rancher Labs. Currently, Rey is the Kubernetes 1.23 Release Lead and leads the Kubernetes SIG Security External Audit subproject. Rey contributes to a variety of Kubernetes SIGs including Docs, Security and Release.
avatar for Pushkar Joglekar

Pushkar Joglekar

Sr. Security Engineer, VMware
Pushkar Joglekar is a Sr. Security Engineer currently working at VMware with the goal to "Make Kubernetes Secure For All". He is an active contributor to CNCF Security - TAG and leads the Kubernetes SIG Security Tooling sub-project. During the last couple of years, he feels incredibly... Read More →



Wednesday October 13, 2021 5:25pm - 6:00pm PDT
Concourse Hall 153 ABC + Online
 
Thursday, October 14
 

11:00am PDT

gRPC Proxyless Service Mesh with Security - Sanjay M Pujare, Google
gRPC has been a popular choice for building microservices based service mesh architectures especially after the recent introduction of service mesh features such as service discovery, load balancing, and observability which eliminated the need for sidecar proxies - like Envoy - in the service mesh. The introduction of these features in gRPC enabled a "proxyless service mesh". In this session we will talk about the addition of mTLS based transport security to the proxyless service mesh. We will describe the orchestration of security by the xDS control plane, the addition of a security plugin architecture to gRPC, and the implementation of some of those plugins to take advantage of security infrastructure in the Google Kubernetes Environment (GKE).

Speakers
avatar for Sanjay M Pujare

Sanjay M Pujare

Software Engineer, Google LLC
I am an engineering lead at Google Cloud working in Cloud Networking. My area of expertise is gRPC, xDS protocols, proxyless service mesh, security/mTLS and Kubernetes. My interests are service mesh security, workload and user identity, authentication and authorization.



Thursday October 14, 2021 11:00am - 11:35am PDT
Room 501 ABC + Online

11:00am PDT

Kubernetes VMware User Group: Using GPUs with K8s on vSphere - Steven Wong & Myles Gray, VMware
An increasing number of applications and services can benefit from GPUs, yet costs and other constraints often prohibit installation in all compute hosts. “Landlocked” GPUs resources often lead to underutilized cycles and wasted spending. This session will describe how a pool of available GPU resources within a vSphere cluster can be shared across a broader number of Kubernetes cluster nodes to accelerate workloads like AI, deep learning and inference. This can provide full or partial GPU compute capacity at scale to Kubernetes workloads, even when these are running in pods on hosts without an installed GPU. The session will show an example based on running a TensorFlow workloads on Knative. The K8s VMware User Group shares best practices for hosting K8s on VMware infrastructure, and we will close the session with details on how you can participate in the group.

Speakers
avatar for Steven Wong

Steven Wong

Software Engineer, VMware
Steve Wong has been active in the Kubernetes community since 2015. He is a Tech Lead of the Kubernetes IoT and Edge Working Group and co-chair of the VMware User Group on the Kubernetes project. He is a past speaker at KubeCon, MesosCon, Open Source Summit, SCALE, and meetups in the... Read More →
avatar for Myles Gray

Myles Gray

Staff Technical Marketing Architect, VMware



Thursday October 14, 2021 11:00am - 11:35am PDT
Concourse Hall 150 ABC + Online

11:00am PDT

Turn Contributors into Maintainers with TAG Contributor Strategy - Josh Berkus, Red Hat & Catherine Paganini, Bouyant
TAG Contributor Strategy focuses on writing guides and templates to help CNCF maintainers build successful projects and communities. In this session, we will walk you through how to use a contributor ladder along with governance documentation to provide a structure for turning contributors into maintainers. This is done through a gradual process where contributors gain increased responsibility within a project jointly with governance documentation that defines the decision making process, values, and principles. The primary topics for this session will include: Promoting and recognizing contributors using a ladder framework The role of governance in contributor promotion and value communication Evolving these concepts as projects move from sandbox to incubating to graduated The audience will walk away with tools, templates, and best practices for building successful CNCF projects and communities.

Speakers
avatar for Josh Berkus

Josh Berkus

Community Architect, Red Hat
Josh Berkus contributes to Kubernetes for Red Hat, working on contributor experience, multicluster, releases, and all of Red Hat's many Kubernetes-related projects. He lives in Portland, OR, USA.
avatar for Catherine Paganini

Catherine Paganini

Head of Marketing & Community, Bouyant
Catherine Paganini is co-chair of the CNCF Business Value Subcommittee and Head of Marketing at Buoyant, the creator of Linkerd. A marketing leader turned cloud native evangelist, Catherine is passionate about educating the broader community on the new stack and the critical flexibility... Read More →



Thursday October 14, 2021 11:00am - 11:35am PDT
Room 402 AB + Online

11:00am PDT

What's New in CRI-O? - Mrunal Patel, Urvashi Mohnani, Sascha Grunert & Peter Hunt, Red Hat
CRI-O is a lightweight container runtime written exclusively for Kubernetes. In addition to being a standard component for deploying secure and stable Kubernetes clusters, CRI-O has the unique advantage of being able to tailor its behavior to the needs of the Kubernetes ecosystem. In this talk, Mrunal Patel, Urvashi Mohnani, Sascha Grunert and Peter Hunt, the maintainers of CRI-O, will provide an update about the latest feature developments, as well as live demonstrating typical real world use cases around them. In addition to a review of the basics of setting up and using CRI-O with Kubernetes, the talk will cover improvements around the handling of CNI resources, the ability to tailor container resources with workload types, and updates to the collection and broadcasting of stats and metrics. Join the CRI-O maintainers to learn more about how CRI-O works in action and why it’s the perfect choice for your Kubernetes cluster!

Speakers
avatar for Urvashi Mohnani

Urvashi Mohnani

Senior Software Engineer, Red Hat
Urvashi Mohnani is a Senior Software Engineer at Red Hat on the Container Runtimes team. She has spent the past few years developing emerging Open Source container technologies such as CRI-O, Buildah, and Podman. She is also a co-organizer for DevConf.US.
PH

Peter Hunt

Senior Software Engineer, Red Hat
Peter Hunt is a Senior Software Engineer working on Openshift at Red Hat. Passionate about free software, Peter focuses on maintaining the container engines CRI-O and Podman. Outside of the virtual world, Peter likes collecting floral-printed pants, gardening, and dancing.
MP

Mrunal Patel

Senior Principle Software Engineer, Red Hat
Mrunal Patel is a Principal Software Engineer at Red Hat working on containers for Openshift. He is a maintainer of runc/libcontainer and the OCI runtime specification. He is the lead developer of CRI-O. He has helped contribute support for user namespaces to the Go programming language... Read More →
avatar for Sascha Grunert

Sascha Grunert

Senior Software Engineer, Red Hat
Sascha is a Senior Software Engineer at Red Hat, where he works on many different container related open-source projects like Kubernetes and CRI-O. He joined the open-source community in November 2018, having gained container experience before. Sascha's passions include contributing... Read More →


Thursday October 14, 2021 11:00am - 11:35am PDT
Concourse Hall 153 ABC + Online

11:55am PDT

Flux's Roadmap to General Availability - Hidde Beydals & Michael Bridgen, Weaveworks
The past year has been an important one for Flux and GitOps. The team has built a new Flux made of multiple controllers that are now seeing production use. The project has matured and is on its way to General Availability. Flux v2's core is a set of precise API’s for controlling and delegating every element of a GitOps platform. A single Flux install can now work with many parts of multiple git repositories, and Flux is more usable and observable than ever. The project has first-class support for popular technologies like Kustomize, Helm, Prometheus, SOPS, GitHub, and GitLab, and it provides extension points in all areas to integrate with other technologies and platforms, much like Kubernetes itself. This session will consist of a cool 15 minute demo of common and novel Flux use-cases that show just much progress the community has made. Join in afterwards for a 20 minute discussion on the remaining roadmap items for the v2.0.0 GA release candidates.

Speakers
MB

Michael Bridgen

Flux Project Maintainer / Principal Engineer, Weaveworks
avatar for Hidde Beydals

Hidde Beydals

Flux Project Maintainer / Senior Software Engineer, Weaveworks
Hidde is a Software Engineer at Weaveworks where he spends most of his time contributing to CNCF Flux. He joined Weaveworks naturally after being a contributor - and later maintainer - to the projects.Previously, he worked as a software engineer for the publisher of two Dutch rental... Read More →



Thursday October 14, 2021 11:55am - 12:30pm PDT
Concourse Hall 153 ABC + Online

11:55am PDT

Harbor - Enterprise Cloud Native Artifact Registry - Alex Xu, Wang Yan, Steven Zou, Deng Qian & Ziming Zhang, VMware
Harbor is a CNCF graduated project, which help enterprises distribute and manage cloud native artifacts. We’ll use this session to give the audience an overview of the Harbor project and the community we built around it. We’ll talk about Harbor’s key features and use cases, and updates introduced in the most recent release. In addition to that, we’ll give a sneak peek into the development that is in progress. We’ll also use this session to discuss with the users regarding the challenges the project is facing and share our thoughts on how to tackle them.

Speakers
avatar for Steven Zou

Steven Zou

Harbor Maintainer, VMware
Jia Zou (Steven) is a staff engineer of VMware China R&D. He is now working on the open-source Project Harbor that is an enterprise-class cloud-native artifact registry as a core maintainer and architect. He previously has worked in HPE, IBM, and Agilent as software engineer for many... Read More →
WY

Wang Yan

Software Engineer, VMware
Yan Wang is a Senior Software Developer currently working at VMWare, living in Peking. I have a Master of Science in Computer Science from Beijing JiaoTong University and started my career in Adobe System 8 years ago. I am a core maintainer of open source project Harbor, which is... Read More →
AX

Alex Xu

Product Manager, VMware
DQ

Deng Qian

Software Engineer, VMware
ZZ

Ziming Zhang

Software Engineer, VMware



Thursday October 14, 2021 11:55am - 12:30pm PDT
Concourse Hall 150 ABC + Online

11:55am PDT

Introduction and Deep-Dive into TAG Delivery - Jennifer Strejevitch, VMware & Alois Reitbauer, Dynatrace
TAG App Delivery focuses on simplifying application delivery on Kubernetes as well as improving developer experience. This session will showcase recent development around operators, chaos engineering, application delivery methods and demo applications. Whether you are just getting started with cloud-native application deliver or getting up to speed on the latest this session will provide you with ongoing activities, recent developments and selected trends based on feedback from CNCF projects in the app delivery space.

Speakers
avatar for Jennifer Strejevitch

Jennifer Strejevitch

Senior Member of Technical Staff, VMWare
Jennifer is a Senior Engineer at VMware and TAG App Delivery Co-Chair at CNCF, previously Senior SRE at Conde Nast. She has been in the industry for over 13 years with experience in Software Development, Cloud Infrastructure, leadership and SRE. Recently she was co-chair of the CNCF... Read More →
avatar for Alois Reitbauer

Alois Reitbauer

Chief Technology Strategist, Dynatrace
Alois is an executive member of the technical staff at Dynatrace. He has been building monitoring and application management solutions for more than 15 years. Alois has successfully brought multiple products to market that are used by the biggest companies on the planet. His current... Read More →


Thursday October 14, 2021 11:55am - 12:30pm PDT
Room 402 AB + Online

11:55am PDT

OpenMetrics Update - Richard Hartmann, Grafana Labs
OpenMetrics is now an Incubating project withing CNCF. It's also a required part of the Prometheus Conformance Program. What does that mean? What are the updates to be aware of? How can you leverage all of this today?

Speakers
avatar for Richard Hartmann

Richard Hartmann

Director of Community, Grafana Labs
Richard "RichiH" Hartmann is Director of Community at Grafana Labs, Prometheus team member, OpenMetrics founder, CNCF SIG Observability chair, and other things. He also organizes various conferences, including FOSDEM, DENOG, DebConf, and Chaos Communication Congress. In the past... Read More →


Thursday October 14, 2021 11:55am - 12:30pm PDT
Room 501 ABC + Online

2:30pm PDT

A New Generation of NATS - Matthias Hanel & Jean-Noël Moyne, Synadia
NATS is a high performance cloud native distributed communications utility that allows you to build globally available and secure applications based on streams and services that are both fast and simple to operate. In this talk you will learn about all the numerous new features that have been introduced NATS version 2 and more specifically in the last few months and with the introduction of JetStream a new distributed persistence layer that enables NATS to offer new higher qualities of services and functionalities such as streaming. You will also see a demo showcasing the flexibility of the NATS Adaptive Edge Architecture including how it can be combined with the new functionalities enabled by JetStream to offer continuous and guaranteed publication of data on streams even during network failures.

Speakers
MH

Matthias Hanel

Software Engineer, Synadia
Developing messaging systems for 15 years.
JM

Jean-Noël Moyne

Solutions Lead, Synadia



Thursday October 14, 2021 2:30pm - 3:05pm PDT
Concourse Hall 153 ABC + Online

2:30pm PDT

Kubernetes SIG Storage Introduction and Update - Xing Yang, VMware & Michelle Au, Google
Kubernetes SIG Storage is responsible for ensuring that different types of file and block storage are available wherever a container is scheduled, storage capacity management (container ephemeral storage usage, volume resizing, etc.), influencing scheduling of containers based on storage (data gravity, availability, etc.), and generic operations on storage (snapshotting, etc.). In this session, we will give an introduction to SIG Storage and then deep dive into some projects that SIG Storage is currently working on, provide an update on the current status, and discuss what might be coming in the future.

Speakers
avatar for Michelle Au

Michelle Au

Software Engineer, Google
Michelle Au is a software engineer at Google and is a Kubernetes SIG Storage tech lead. She has worked on Kubernetes volume security, the Container Storage Interface, volume topology, and local persistent storage.
avatar for Xing Yang

Xing Yang

Tech Lead, VMware
Xing Yang is a Tech Lead in the Cloud Native Storage team at VMware. She is a co-chair of CNCF Storage TAG, a co-chair of the Kubernetes Storage SIG, a co-chair of the Data Protection WG, and a maintainer in Kubernetes CSI. Before joining VMware, Xing was the Lead Architect of OpenSDS... Read More →



Thursday October 14, 2021 2:30pm - 3:05pm PDT
Concourse Hall 150 ABC + Online

2:30pm PDT

Securing Content Repositories with the Update Framework (TUF) - Marina Moore, NYU & Joshua Lock, VMware
The Update Framework (TUF) is a framework for secure content delivery and updates that protects against many known attacks on software update systems. In this talk, Joshua Lock and Marina Moore will describe how TUF works, why content delivery systems need the protections offered by TUF, and share some recent developments in TUF and related projects. Following this introductory content, we will deep dive into proposed new features for TUF by reviewing a TUF Augmentation Proposal (TAP). Come to this talk to learn about how many organizations, including Docker, Amazon, and Google secure software updates and how you can get involved.

Speakers
avatar for Marina Moore

Marina Moore

PhD Student, NYU
Marina Moore is a PhD student at NYU Tandon’s Secure Systems Lab focusing on secure software updates and supply chain security. While at NYU she has worked primarily on research and development for The Update Framework (TUF), Uptane, and Notary. She has spoken at KubeCon + CloudNativeCon... Read More →
avatar for Joshua Lock

Joshua Lock

Open Source Engineer, VMware
Joshua is a maintainer of The Update Framework (TUF) and Supply-chain Levels for Software Artifacts (SLSA) projects. He works at VMware as the security team lead in their Open Source Technology Center. In a past life he spent many years working on and with the Yocto Project. Joshua... Read More →



Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 402 AB + Online

2:30pm PDT

The Argo Ecosystem: Tailoring Your Installation Through Community Add-ons - Jesse Suen, Akuity & Alexander Matyushentsev, Intuit
You are probably already familiar with the core set of Argo projects such as Workflows, CD, Rollouts, and Events. But did you know there is also an entire suite of ecosystem projects which complement these core offerings? These operators unlock support for additional features including notifications, docker registry integration, git writeback, cluster bootstrapping/add-on management, all in a composable way. In this talk, we showcase many of the Argo community projects which will supercharge your Argo installation by providing features outside of the base functionality. Discover ways to custom tailor your setup according to your organization’s needs. Learn about new and upcoming enhancements to make Argo CD even more extensible, including a redesigned config management plugin system, UI component library, and UI/API extensions. Finally, learn how you can even leverage Argo engines and building blocks in your own operators to gain new capabilities, completely independent of Argo!

Speakers
avatar for Alexander Matyushentsev

Alexander Matyushentsev

Principal Software Engineer, Intuit
Alexander Matyushentsev is a Principal Engineer in the Intuit Modern SaaS team. Alexander is focused on building tools which makes it easier to use Kubernetes. He is one of the core contributors to "Argo Workflows" and "Argo CD" projects. Alexander is passionate about open source... Read More →
avatar for Jesse Suen

Jesse Suen

Co-Founder, Akuity
Jesse is a software engineer and project lead on the open-source Argo suite of projects. He has spent the past five years developing microservices-based, distributed applications, and controllers for Kubernetes. While at Intuit, Jesse was the technical lead for the Argo team and co-creator... Read More →



Thursday October 14, 2021 2:30pm - 3:05pm PDT
Room 501 ABC + Online

3:25pm PDT

Cloud Provider OpenStack Intro & Update - Anusha Ramineni, NEC Corporation India Private Ltd & Lingxian Kong, Catalyst Cloud
In this session we will give overview of provider-openstack subproject. cloud-provider-openstack repository hosts various plugins relevant to OpenStack and Kubernetes Integration which includes OpenStack Cloud Controller Manager, Octavia Ingress Controller, Cinder CSI Plugin, Keystone Webhook Auth, Manila CSI Plugin, Barbican KMS Plugin and Magnum Auto Healer. This session covers the overview of all hosted plugins as well as recent work/enhancements that are being done and future roadmap of the project.

Speakers
AR

Anusha Ramineni

Technical Specialist, NEC Corporation India Private Ltd
avatar for Lingxian Kong

Lingxian Kong

Senior Cloud Engineer, Catalyst Cloud
Lingxian is a Senior Cloud Engineer at Catalyst Cloud (New Zealand) with almost 10 years of industrial experience designing and developing cloud services based on open source projects. Before joining Catalyst Cloud, he worked in the cloud computing department in Huawei for 4 years... Read More →



Thursday October 14, 2021 3:25pm - 4:00pm PDT
Concourse Hall 153 ABC + Online

3:25pm PDT

Kubernetes SIG Apps Updates - Janet Kuo, Google; Kenneth Owens, Brex; Maciej Szulik, Red Hat
SIG Apps is the special interest group covering deploying and operating applications in Kubernetes with a focus on the application developer and application operator experience. In this session the SIG Apps leads will provide an overview of what we’ve accomplished over the past year, including API promotions, controller improvements, leadership changes, subprojects status etc. They will also share the work that is being planned for the upcoming releases. The session will conclude with an open discussion and Q&A.

Speakers
avatar for Janet Kuo

Janet Kuo

Senior Software Engineer, Google
Janet Kuo is a Senior Software Engineer at Google. She's joined the Kubernetes project since before the 1.0 launch in 2015. She is Kubernetes project maintainer, SIG Apps chair, and KubeCon co-chair emeritus. In her free time, she enjoys traveling and taking photos.
avatar for Maciej Szulik

Maciej Szulik

Senior Principal Software Engineer, Red Hat
Maciej is a passionate developer with over 10 years of experience in many languages. Currently he's working on OpenShift and Kubernetes for Red Hat. Whereas at night he is hacking on side projects with python.
avatar for Kenneth Owens

Kenneth Owens

Software Engineer, Brex



Thursday October 14, 2021 3:25pm - 4:00pm PDT
Concourse Hall 150 ABC + Online

4:30pm PDT

Fluentd and Fluent Bit - Eduardo Silva, Calyptia
Observability pipelines are a critical component on every production environment. Fluentd and Fluent Bit are well known and used for Log collection and processing. But for years our community of users have asked for a unified experience with Metrics collection. In this presentation, you will learn about our new Metrics collection and processing with Fluentd and Fluent Bit. You will learn the best practices for monitoring and how to leverage your current Prometheus services and infrastructure by using all the component together without any observability disruption.

Speakers
avatar for Eduardo Silva

Eduardo Silva

Founder, Calyptia
Eduardo is an entrepreneur and Software Engineer. He is currently one of Fluentd project maintainers and creator of Fluent Bit, a lightweight Logs and Metrics processor. He also is the founder of Calyptia (the Fluent company).


Thursday October 14, 2021 4:30pm - 5:05pm PDT
Room 501 ABC + Online

4:30pm PDT

Kubernetes SIG CLI: Intro and Updates - Eddie Zaneski, Amazon Web Services; Katrina Verey, Apple; Sean Sullivan, Google
SIG CLI is the special interest group for the command line tooling of the Kubernetes project. The SIG maintains kubectl, kustomize, and related libraries. In this session the SIG CLI leads will provide an introduction to the SIG and an overview of how to contribute including how kubectl is built and tested. They will share the work that's been done the past year and discuss several current and future Kubernetes Enhancement Proposals (KEPs). The session will conclude with open discussion and Q&A.

Speakers
avatar for Sean Sullivan

Sean Sullivan

Software Engineer, Google
Sean Sullivan is a Software Engineer at Google, a co-chair of the SIG CLI (Command Line Interface), and an active SIG CLI contributor. His most recent work includes moving kubectl out of the Kubernetes core repository, and into its own repository (https://github.com/kubernetes/ku... Read More →
avatar for Eddie Zaneski

Eddie Zaneski

Senior Developer Advocate, Amazon Web Services
Eddie serves the Kubernetes community as a SIG-CLI Co-Chair and Developer Advocate at AWS. He lives in Denver, CO with his wife and dog and is a lover of JavaScript, infrastructure tools, and automating things in his home. When not hacking on random stuff you'll most likely find him... Read More →
avatar for Katrina Verey

Katrina Verey

Senior Software Engineer, Apple
Katrina has been working with Kubernetes since early 2016. She has championed and contributed to projects in many areas, including declarative configuration management, CI/CD tooling, controller frameworks and user interfaces. She is delighted to be serving the Kubernetes community... Read More →



Thursday October 14, 2021 4:30pm - 5:05pm PDT
Concourse Hall 150 ABC + Online

4:30pm PDT

Notary: State of the Container Supply Chain - Justin Cormack, Docker & Steve Lasker, Microsoft
As supply chain security becomes a larger concern for all types of organization, the tooling for supply chain security becomes critical. The Notary v2 project was set up to address issues with the original v1 project that did not see widespread use, and to gather consensus on the types of security mechanisms that were needed. This talk will show the progress we have made, and go through the decisions we made so far, as we are going into early production use. We will look at the future roadmap and the supply chain landscape.

Speakers
avatar for Justin Cormack

Justin Cormack

CTO, Docker
Justin is a senior engineer and security lead at Docker. He is a maintainer of the Notary project, and a member of the CNCF TOC and SIG Security. He has been working in container security for five years.
avatar for Steve Lasker

Steve Lasker

Principal PM Architect, Microsoft
Steve is a PM Architect for Registries at Microsoft, an OCI TOB member and OCI Artifacts maintainer. Prior to joining Microsoft, Steve worked in software consulting and broadcast engineering, where he learned the balance of designing reliable, performant, available, secure and usable... Read More →



Thursday October 14, 2021 4:30pm - 5:05pm PDT
Concourse Hall 153 ABC + Online

4:30pm PDT

SIG-Autoscaling: Introduction + HPA/VPA Updates - Joe Burnett‎ & Marcin Wielgus, Google
During this talk we will give a detailed overview of autoscaling features in Kubernetes, covering both horizontal, vertical as well as cluster autoscalers. You will learn how to automatically adjust your Kubernetes cluster and pods to match your current capacity needs, which components should be used when and how to configure them properly to get best efficiency and cost savings. We will also discuss upcoming features like the new HPA v2 stable API and support for alternative recommenders in VPA.

Speakers
avatar for Marcin Wielgus

Marcin Wielgus

Staff Software Engineer, Google
Marcin Wielgus is a Staff Software Engineer at Google. Marcin joined the internet search giant in 2010 and since then he has been working on various projects, ranging from Android applications to recommendation engines. He started contributing to Kuberentes before the 1.0 release... Read More →
avatar for Joseph Burnett

Joseph Burnett

Senior Software Engineer, Google
Joseph Burnett is a Senior Software Engineer working on autoscaling at Google Cloud.



Thursday October 14, 2021 4:30pm - 5:05pm PDT
Room 402 AB + Online

5:25pm PDT

Conformance Testing the Kubernetes API: Tooling that Makes the Difference - Stephen Heywood & Caleb Woodbine, ii.nz
The Certified Kubernetes Conformance Program enables organizations to have confidence that their workloads will interoperate from one installation of Kubernetes to the next. In 2018, to ensure that organization can have the assurance that their workloads can move between vendors the CNCF turned the spotlight on improving the conformance test coverage of the Kubernetes API. This effort has brought us from ~20% of endpoints conformance tested in 1.15 to over 75% by 1.22. Most of the success can be attributed to the tooling developed to streamline the process of locating new endpoints to test before creating a PR to the Kubernetes repo. The tooling helps with identifying the current gaps in conformance, exploring endpoints, writing tests and verifying the test results. In this presentation Stephen will walk us through the tooling that will help us test the remaining 25% of the Kubernetes API.

Speakers
avatar for Caleb Woodbine

Caleb Woodbine

Software engineer at ii, ii.nz
Caleb is a software engineer at ii. Driven by community, he loves the collaboration of individuals - especially through Open Source.Caleb contributes to the Kubernetes sig-testing, Kubernetes conformance working group, and wg-k8s-infra. Caleb also spends way too much time with container... Read More →
SH

Stephen Heywood

Software engineer at ii, ii.nz
Stephen Heywood is a cloud-native advocate that brings together 20 years of exploring open source technologies with an extensive set of skills from various industries (education; corporate IT and the electricity sector). To unwind, Stephen enjoys an eclectic range of hobbies, from... Read More →



Thursday October 14, 2021 5:25pm - 6:00pm PDT
Room 402 AB + Online

5:25pm PDT

SPIFFE: In Theory and in Practice - Evan Gilman & Andrew Harding, VMware
Please join us on the maintainer track to learn more about the SPIFFE vision, it's components, and how it fits into the cloud native landscape. In this session, we will do a short intro and deep dive on SPIFFE, followed by a Q&A. This will be an informal session - please bring your questions and use cases! We'll discuss recently completed works, where the project is headed, and how SPIFFE compares/contrasts to other seemingly similar options. Finally, stick around after the session for an extended meetup with the maintainers and other SPIFFE users.

Speakers
avatar for Evan Gilman

Evan Gilman

Staff Engineer, VMware
Evan Gilman is an engineer with a background in computer networks. With roots in academia, and currently working on the SPIFFE project, he has been building and operating systems in hostile environments his entire professional career. An open source contributor, speaker, and author... Read More →
avatar for Andrew Harding

Andrew Harding

Staff Engineer, VMware
Andrew Harding is at heart a software engineer who enjoys building software that solves practical problems. He has spent a large chunk of his career in software infrastructure and distributed systems. He is a maintainer and core contributor on the SPIFFE/SPIRE projects.


Thursday October 14, 2021 5:25pm - 6:00pm PDT
Room 501 ABC + Online

5:25pm PDT

Thanos: Highly Available, Pluggable, Long Term Metric Storage for Everyone! - Wiard van Rij, Fullstaq
Prometheus was initially made for short metric retention to answer questions on “what is happening ‘now’”. It is a strong project that solves certain problems really well, but still as a monolith when doing so. Thanos has been made to enable scaling, highly available setups and long term (cheap) storage for Prometheus. Everyone could leverage Thanos for these features. It does not stop there; Thanos has multiple components that could be used for multi-cluster telemetry, remote writes, and multi-tenancy. We want to introduce everyone to Thanos. Explaining the use-cases and how it could benefit your stack now observability becomes such an important factor in tech.

Speakers
avatar for Wiard van Rij

Wiard van Rij

Engineer, Fullstaq
Wiard van Rij’s main focus is in the field of observability at Fullstaq. As a consultant he is helping people, teams, and organizations with various cloud-native challenges with a strong focus on Kubernetes and Observability. Wiard is a Thanos team member, open source enthusiast... Read More →



Thursday October 14, 2021 5:25pm - 6:00pm PDT
Concourse Hall 153 ABC + Online

5:25pm PDT

Vitess: Introduction and New Features - Deepthi Sigireddi & Alkin Tezuysal, PlanetScale, Inc.; Andrew Mason & Malcolm Akinje, Slack Corp.
Vitess is a cloud-native storage solution that can scale indefinitely. In this session, we will first cover a high level overview of Vitess features, the architecture, and what database workloads are a good fit. Then we will demonstrate how to get started with Vitess on Kubernetes. This will be followed by VTAdmin, the next generation of tooling and UIs for managing large-scale, multi-cluster Vitess deployments, built for developers and operators alike. We will demo resharding using VTAdmin, and will talk about improvements to performance and scalability along the way.

Speakers
avatar for Deepthi Sigireddi

Deepthi Sigireddi

Software Engineer, PlanetScale, Inc.
Deepthi is a Software Engineer at PlanetScale, where she leads the open source engineering team for Vitess, a CNCF project. She is also the Technical Lead for Vitess in the open source community. She brings over 20 years of experience building scalable systems to this role. She enjoys... Read More →
avatar for ALKIN TEZUYSAL

ALKIN TEZUYSAL

Sr. Technical Manager, PlanetScale
* Open source database evangelist* Global database operations expert* Storyteller* Inspiring technical and strategic leader* Creative team builder* Speaker, mentor, and coach* Born to sail, forced to work
avatar for Andrew Mason

Andrew Mason

Senior Software Engineer, Slack Corp.
Andrew is a senior software engineer at Slack and a Vitess maintainer working on cluster management and vtadmin. He likes running and tennis and FromSoftware games.
MA

Malcolm Akinje

Software Engineer, Slack Corp.



Thursday October 14, 2021 5:25pm - 6:00pm PDT
Concourse Hall 150 ABC + Online
 
Friday, October 15
 

11:00am PDT

CNCF TAG-Runtime: What's Next in Cloud Native Workloads? - Ricardo Aravena, Rakuten
What is the CNCF TAG-Runtime? How do we identify projects for CNCF admission? Where do we see the future of runtimes in the cloud native ecosystem? The session will cover: 1) Overview of the TAG-Runtime, how to join, and how to get involved. 2) Update of the related projects that have presented in our meetings. 3) Existing and potential working groups in the TAG and how to get involved. 4) How the TAG provides advise to the CNCF TOC. 5) Future trends for cloud native technologies in the TAG scope such as containers, VMs, WebAssembly and MLOPs.

Speakers
avatar for Ricardo Aravena

Ricardo Aravena

Infrastructure Engineering Manager, Rakuten
Ricardo currently works at Rakuten as an SRE Manager, automating everything in containers using open source. He's a co-chair of the CNCF SIG-Runtime and Kata Containers project contributor. He has been working in tech for more than 20 years and comes from a diverse professional background... Read More →



Friday October 15, 2021 11:00am - 11:35am PDT
Room 402 AB + Online

11:00am PDT

Cortex: Intro and Production Tips - Bryan Boreham, Grafana Labs & Alvin Lin, Amazon Web Services
Cortex is a time-series data store based on Prometheus. Cortex adds: - Scalability: run across dozens of servers to handle millions of samples per second. - Availability: if one server fails then work will be redirected to others. - Multi-tenancy: store data from different groups or customers, segregated so a user from one tenant cannot see data from another. - Durability: use cloud stores (such as S3) to reduce the chance of data loss. This session will provide an overview of Cortex, an update on recent news from the project, and a run-through of top 5 tips for running Cortex in production.

Speakers
avatar for Bryan Boreham

Bryan Boreham

Distinguished Engineer, Grafana Labs
Bryan is a Distinguished Engineer at Grafana Labs, the observability company.After first getting into programming as a kid, creating a video game called "Splat", Bryan's career has ranged from charting pie sales at a bakery to real-time pricing of billion-dollar bond trades.At Grafana... Read More →
avatar for Alvin Lin

Alvin Lin

Senior Software Development Engineer, Amazon Web Services
Alvin is a senior software engineer at AWS currently working on AWS Managed Service for Prometheus. He had worked on many other AWS services such as Route 53 Domain Registration, SQS, and AmazonMQ. He became Cortex maintainer recently.He lives in beautiful Vancouver BC and refuses... Read More →



Friday October 15, 2021 11:00am - 11:35am PDT
Concourse Hall 153 ABC + Online

11:00am PDT

Jaeger: Intro and Deep Dive - Jonah Kowall, Logz.io
In this session we will cover both introductory and deep dive material for the Jaeger distributed tracing backend. For intro we will review methods of getting started installing Jaeger and the basics of distributed tracing. For the deep dive we will be discuss the future of Jaeger built on top of the OpenTelemetry collector and what that means for Jaeger architecture, future development and features. Jaeger is the most popular open source distributed tracing backend. Whether your goal is to get acquainted with Jaeger and distributed tracing or to keep abreast with the latest and greatest, please join us!

Speakers
avatar for Jonah Kowall

Jonah Kowall

CTO, Logz.io
Jonah Kowall a computer scientist and open-source contributor committing code to observability projects and such as OpenSearch, Jaeger, and OpenTelemetry. Throughout 15 years as a practitioner and manager across startups and large enterprises specialized in operations, security, and... Read More →



Friday October 15, 2021 11:00am - 11:35am PDT
Concourse Hall 150 ABC + Online

11:00am PDT

SIG API Machinery Deep Dive - Applying What We've Learned - Abu Kashem & Stefan Schimanski, Red Hat; Joe Betz & Federico Bongiovanni, Google
We will have at least 2 deep dive topics in this session. It will be mostly focused around Server Side Apply and the how can client-go and other clients use apply server side. We might cover also several other topics around extensibility using CRDs and Webhooks, touching on the deprecation of v1beta1 and related issues. Additionally, we will remind everybody attenting about the structure of the sig, our areas of coverage, our regular meetings, the places where you can find us to chat, and how to become a contributor.

Speakers
avatar for Stefan Schimanski

Stefan Schimanski

Senior Prinicpal Software Engineer, Red Hat
Stefan is a Senior Principal Software Developer at Red Hat working on Kubernetes and OpenShift, with a focus on API machinery, extension points and developer tools as part of Sig API Machinery. He contributed a major part of the CRD feature set. Stefan is a 2nd time GoogleSummer of... Read More →
avatar for Joe Betz

Joe Betz

Staff Software Engineer, Google
Joe Betz is a contributor to Kubernetes with a focus on custom resource, admission webhook extensibility features and server side apply. Joe is also etcd project maintainer and directly responsible for the health and stability of the GKE etcd fleet and leads improvements to etcd via... Read More →
avatar for Federico Bongiovanni

Federico Bongiovanni

Senior Engineering Manager, Google
Federico is an Engineering Manager who is passionate about people development and growth, building diverse and inclusive teams, and solving large scale technical challenges. With a large technical background in development, cloud computing, building and running successful teams, and... Read More →
avatar for Abu Kashem

Abu Kashem

Principal Software Engineer, Red Hat



Friday October 15, 2021 11:00am - 11:35am PDT
Room 501 ABC + Online

11:55am PDT

CloudEvents: Intro, Status and the Future... - Scott Nichols, VMware
The CloudEvents specification is one of those unsung hero projects that doesn't get a lot of attention, but is slowly making its way into some of the most popular OSS projects out there today. Why? Come join this session to see why and to learn more about how it can help make your eventing infrastructure more robust. After a quick introduction to CloudEvents we'll then look at what's been going on since we shipped v1.0 - including the new specifications that are under development all aimed at making it easier to produce and consumer events.

Speakers
avatar for Scott Nichols

Scott Nichols

Software Engineer
Scott Nichols is a focused on making it easy to create and understand portable event driven serverless workloads. This work is done through Kubernetes, Knative and CloudEvents.



Friday October 15, 2021 11:55am - 12:30pm PDT
Room 402 AB + Online

11:55am PDT

Evolving Prometheus for More Use Cases - Bartek Plotka, Red Hat & Chris Marchbanks, Grafana Labs
Prometheus is a well-known CNCF Graduated project that allows cheap and effective monitoring capabilities using metrics. With a rich ecosystem of exporters and integrations, Prometheus allows you to collect metrics from your applications running in Kubernetes and beyond in no time. There were many opportunities to learn about Prometheus, its data model and capabilities at every past KubeCon around the globe. This talk will be different. As the cloud-native ecosystem evolves and more organizations adopt cloud-native approaches, all projects are innovating and seeking improvements. We mean things like Kubernetes clusters “as cattle”, multi-cluster applications, eBPF, edge services and more. To keep up with demands for different deployments and architectures, Prometheus evolves too. In this talk, you will learn how you can use and extend Prometheus for those different use cases. In addition, we will highlight advanced, experimental, or upcoming functionality to help with your use cases.

Speakers
avatar for Chris Marchbanks

Chris Marchbanks

Senior Software Engineer, Grafana Labs
Software Engineer at Grafana Labs working on Prometheus and machine learning. Outside of work I am an avid backcountry skier, who gets by with hiking and climbing during the summer.


Friday October 15, 2021 11:55am - 12:30pm PDT
Concourse Hall 150 ABC + Online

11:55am PDT

Intro to KubeEdge: Kubernetes Native Edge Computing Framework - Kevin Wang (Zefeng), Huawei & Yin Ding, Pure Storage
KubeEdge is an open source edge computing framework that extends the power of kubernetes from central cloud to edge. Since moved to incubation level, KubeEdge made big progress on user adoption, community development, cross-community collaborations. In this talk, Kevin and Yin will review KubeEdge motivation, architecture; then go through latest updates on new features, user adoptions, SIG updates and new subprojects. After that Kevin and Yin will introduce where the project is heading to, updated project roadmap and how new contributors to get involved. There will be an open Q&A for attendees to ask questions.

Speakers
avatar for Kevin Wang

Kevin Wang

Lead of Cloud Native Open Source Team, Huawei
Kevin Wang is a contributor in the CNCF community since its beginning, leader of the cloud native open source team at Huawei, and co-founder of the CNCF KubeEdge, Volcano and Karmada projects.Kevin has contributed to Kubenretes upstream for years and now spends 100% of his work and... Read More →
YD

Yin Ding

Senior Architect, Pure Storage
Yin Ding is Senior Architect of PureStorage. He has more than 15 years of experiences in the large scale and distributed computing area. He has led numerous cloud native efforts and projects in house, and also been an active member of open source communities for many years. He is... Read More →



Friday October 15, 2021 11:55am - 12:30pm PDT
Concourse Hall 153 ABC + Online

11:55am PDT

Kubernetes Cloud Provider IBM project Overview and Deep Dive - Sahdev Zala & Richard Theis & Guang Ya Liu & Brad Topol, IBM
The Kubernetes IBM Cloud Provider is a subproject of Cloud Provider SIG. Lots of exciting work is going in the project such as a new repository for IBM Cloud Provider code, and kubernetes-sigs/cluster-api-provider-ibmcloud work on IBM VPC Gen 2. In this session, the project leads will provide an overview of the project and details of the ongoing work and future roadmap. This session will be of value to a broad audience including active contributors, new contributors, and anyone with an interest in the Kubernetes IBM Cloud Provider and kubernetes-sigs/cluster-api-provider-ibmcloud.

Speakers
avatar for Guangya Liu

Guangya Liu

Senior Technical Staff Member, IBM
Guang Ya Liu is a Senior Software Architect in IBM CDL and now focusing on cloud computing, data center operating system and container technology, he is also a Member of IBM Academy of Technology. Starting from 2013, Guang Ya act as an OpenStack Active Contributor and contribute to... Read More →
avatar for Brad Topol

Brad Topol

Distinguished Engineer, IBM
Dr. Brad Topol is an IBM Distinguished Engineer leading efforts focused on Open Technologies and Developer Advocacy. In his current role, Brad leads a development team focused on contributing to and improving Kubernetes and several other cloud native open source projects. Brad is... Read More →
avatar for Richard Theis

Richard Theis

Senior Software Engineer, IBM
Richard Theis is a Senior Software Engineer in the IBM Cloud division. In his current role, Richard leads Kubernetes and OpenShift update development and support for IBM Cloud Kubernetes Service and Red Hat OpenShift on IBM Cloud. He is a co-chair of the Kubernetes provider IBM Cloud... Read More →
avatar for Sahdev P. Zala

Sahdev P. Zala

Senior Software Engineer, IBM
Sahdev P. Zala is a senior software engineer and open source developer at IBM. He is a CNCF etcd project maintainer, Kubernetes contributor and co-lead of Kubernetes Provider IBM Cloud. Previously, Sahdev was a core contributor in OpenStack and a Technical Committee member of OASIS... Read More →


Friday October 15, 2021 11:55am - 12:30pm PDT
Room 501 ABC + Online

2:30pm PDT

Contour, a High Performance Multitenant Ingress Controller for Kubernetes - Steve Sloka & Alex Xu, VMware
Contour, a CNCF incubating project, is a high performance ingress and load balancer solution for Kubernetes. Contour offers a richer feature set than some common alternatives while maintaining a lightweight profile. At its core, Contour is providing a control plane for the Envoy edge and service proxy. This session will show you how to leverage Contour and Envoy for Kubernetes workloads in a multi-tenant environment as well as include a demo of recent Contour features. We will also focus on the project roadmap including enhanced support for Gateway API, the Contour Operator for enhanced lifecycle management, additonal configuration knobs for Envoy, feature enhancements such as ALS logging and distributed tracing support, and much more.

Speakers
AX

Alex Xu

Product Manager, VMware
avatar for Steve Sloka

Steve Sloka

Sr. Member of Technical Staff, VMware
Steve Sloka is a Sr. Member of Technical Staff at VMware based in Pittsburgh, PA dealing with all things Cloud, Containers, and Kubernetes. Steve is a maintainer of Contour & Gimbal and is a contributor to many other open source projects. Steve is also a Kubernetes contributor and... Read More →


Friday October 15, 2021 2:30pm - 3:05pm PDT
Concourse Hall 153 ABC + Online

2:30pm PDT

PodSecurityPolicy Replacement: Past, Present, and Future - Tabitha Sable, Datadog & Tim Allclair, Apple
Join two of the maintainers leading the PSP replacement effort for a welcoming, accessible discussion of PodSecurityPolicy and its built-in replacement, Pod Security Admission Control. They’ll cover how to tell whether PSP deprecation affects you, the meaning of deprecation in Kubernetes, and steps you can take today to ease your eventual transition off of PSP. You’ll hear guidelines for considering the new Pod Security Admission Control, learn how to try it out yourself, and even enjoy a little bit of Kubernetes storytelling.

Speakers
avatar for Tim Allclair

Tim Allclair

Software Engineer, Apple
Tim Allclair joined the Kubernetes project just after the 1.0 launch in 2015, and now leads a Kubernetes security engineering team at Apple. He is a member of the Kubernetes Security Response Committee, and a SIG Auth maintainer (previous co-chair). He has led development of several... Read More →
avatar for Tabitha Sable

Tabitha Sable

Systems Security Engineer, Datadog
Tabitha Sable never met a system she didn't want to take apart. She serves the Kubernetes community as co-chair of SIG Security and a member of the Product Security Committee. At work, Tabitha is Systems Security Engineer at Datadog. She writes exploits, hardens infrastructure, and... Read More →



Friday October 15, 2021 2:30pm - 3:05pm PDT
Concourse Hall 150 ABC + Online

2:30pm PDT

SIG Contributor Experience Deep Dive - Alison Dowdney, Weaveworks; Bob Killen, Google; Christoph Blecker, Red Hat
The Kubernetes Contributor Experience Special Interest Group (SIG) is tasked with developing and sustaining a healthy contributor community. Things like feature velocity, community scaling, mentoring, pull request latency, and more all fall within scope of the SIG In this talk, we will provide an introduction to SIG Contributor Experience, its role within the project, and dive into the various subprojects that support its mission. Additionally, we will provide a general community update and go over how you can get involved.

Speakers
avatar for Bob Killen

Bob Killen

Program Manager, Google
Bob is a Program Manager at the Google Open Source Programs Office with a focus on Cloud Native computing. He serves the Kubernetes project as a member of the Kubernetes Steering Committee, a chair of the Contributor Experience Special Interest Group and has been involved in many... Read More →
avatar for Christoph Blecker

Christoph Blecker

Principal Site Reliability Engineer, Red Hat
Christoph is an SRE on Red Hat's OpenShift team and a contributor to the Kubernetes project. He's a Technical Lead for SIG Contributor Experience, a member of the Kubernetes Steering Committee, and a regular contributor to SIG Architecture, SIG Testing, SIG Release, and the Kubernetes... Read More →
avatar for Alison Dowdney

Alison Dowdney

-, -
Alison is a Customer Reliability Engineer at Weaveworks, a CNCF ambassador and an active member of SIG Contributor Experience for the Kubernetes project. She is passionate about helping others get more involved with the cloud native community. Coming from a startup background, she... Read More →


Friday October 15, 2021 2:30pm - 3:05pm PDT
Room 402 AB + Online

3:25pm PDT

Intro to Cloud Native Buildpacks - Javier Romero, VMware; Sambhav Kothari, Bloomberg
Cloud Native Buildpacks transform your application source code into images that can run on any cloud. In this session you'll learn the basics of using buildpacks, why they make a great choice over the alternatives, and what new features the project has to offer. Cloud Native Buildpacks embrace modern container standards, such as the OCI image format. They take advantage of the latest capabilities of these standards, such as cross-repository blob mounting and image layer "rebasing" on Docker API v2 registries.

Speakers
avatar for Sambhav Kothari

Sambhav Kothari

Software Engineer, Bloomberg
Sambhav Kothari is an ML Engineer in the Data Science Platform team at Bloomberg, focusing on building better container integrations for machine learning workflows. He is one of the maintainers for the Cloud Native Buildpacks project.
avatar for Javier Romero

Javier Romero

Software Engineer, VMware
Javier is a Senior Software Engineer at VMware, a maintainer of the Cloud Native Buildpacks project, and family man.Javier has worked in various industries applying his technical skills to provide new services and improve development workflows. He is an advocate for continuous delivery... Read More →



Friday October 15, 2021 3:25pm - 4:00pm PDT
Concourse Hall 153 ABC + Online

3:25pm PDT

Introduction to Open Policy Agent - Ash Narkar, Styra & Rita Zhang, Microsoft
Come to this session to learn about the Open Policy Agent (OPA) project. OPA is a general-purpose policy engine that solves a number of policy-related use cases for Kubernetes, microservices, CI/CD, cloud, and more. During this session the OPA maintainers will introduce the project for newcomers and then provide updates on the latest and greatest features landing in OPA and OPA Gatekeeper. If you are interested in policy and security as it relates to cloud native technology, this session is for you.

Speakers
avatar for Rita Zhang

Rita Zhang

Principal Software Engineer, Microsoft
Rita Zhang is a software engineer at Microsoft, based in San Francisco. She leads the Azure Container Upstream team building features for Kubernetes upstream and various CNCF projects. Rita is a Kubernetes SIG Auth co-chair, a maintainer of the Secrets Store CSI Driver project, and... Read More →
avatar for Ash Narkar

Ash Narkar

Software Engineer, Open Source, Styra
Ash Narkar is a maintainer of the Open Policy Agent project. Ash has over 5 years of experience working on large-scale distributed systems. Ash is a Senior Software Engineer at Styra, Inc. working on OPA development and integrations. Previously he was a Principal Engineer at Verizon... Read More →



Friday October 15, 2021 3:25pm - 4:00pm PDT
Concourse Hall 150 ABC + Online

3:25pm PDT

Kubenetes SIG Node Intro and Deep Dive - Elana Hashman & Derek Carr, Red Hat; Sergey Kanzhelev & Dawn Chen, Google
Kubernetes SIG Node owns components that control interactions between pods and host resources, including the Kubelet, Container Runtime Interface (CRI), and Node API. SIG Node is responsible for the Pod’s lifecycle from allocation to teardown, to liveness checks and shared resource management. We work with the various container runtimes, kernels, networking, storage, and more; anything a pod touches is SIG Node’s responsibility! In this session, we will begin with an introductory overview of the SIG and what it has worked on in the past. We will then deep dive into ongoing efforts of the SIG, including features targeted for the 1.22 and 1.23 releases and future roadmap. Join this session to learn more about our SIG, and how you might get involved to make Node even better!

Speakers
DC

Dawn Chen

Senior Staff Software Engineer, Google
Dawn Chen (dchen1107@github) is a Senior Staff Software Engineer from Google Kubernetes Team. She has been one of tech leads in both Kubernetes and GKE, mostly focus on Node area. Prior Kubernetes, she was the one of the tech leads for Google internal container infrastructure for... Read More →
avatar for Derek Carr

Derek Carr

Distinguished Engineer, Red Hat
EH

Elana Hashman

Principal Software Engineer, Red Hat
Elana Hashman currently works for Red Hat as a Principal Software Engineer on the OpenShift Container Platform Node Team, working upstream in Kubernetes SIG Node. Previously, she served as an SRE and technical lead on Azure Red Hat OpenShift. She is a subproject lead for the SIG Node... Read More →
avatar for Sergey Kanzhelev

Sergey Kanzhelev

Staff Software Engineer, Google
I'm working in Microsoft in Azure Monitor team and was involved over years in all sorts of app monitoring initiatives and products like SCOP APM and Application Insights. Currently I'm working on making the world a better observable world by contributing to OpenTelemetry success... Read More →



Friday October 15, 2021 3:25pm - 4:00pm PDT
Room 501 ABC + Online

3:25pm PDT

Native Instrumentation for Open Source Software with OpenTelemetry - Ted Young, Lightstep & Ludmila Molkova, Microsoft
If you write OSS software, you may have noticed that it can be surprisingly difficult to provide logs and metrics to the users who run your libraries. OpenTelemetry is designed to solve this problem. OpenTelemetry allows OSS projects – web frameworks, databases, message queues – to move beyond testing and begin to participate in runtime observability, while still giving their end users control over where and how the data is processed. In this session, we will cover: The benefits of OpenTelemetry instrumentation. Guidelines for natively instrumenting your OSS library. Tricky parts, gotchas, and how to minimize them. We will also briefly cover the current state of OpenTelemetry project: Which APIs are currently stable, and what long term support means. Methods for combining tracing and metrics to simplify instrumentation. How to get involved with the native instrumentation effort in OpenTelemetry.

Speakers
avatar for Ted Young

Ted Young

Director of Developer Education, Lightstep
Ted Young is one of the founders of the OpenTelemetry project, and works as the Director of Developer Education at Lightstep. Ted has spent the last 15 years building distributed systems in a variety of environments: computer animation, national elections, and elastic compute platforms... Read More →
LM

Liudmila Molkova

Principal Software Engineer, Microsoft
Liudmila works on Azure SDKs at Microsoft and drives observability efforts across client SDKs. She's been working on observability since 2016, enabling distributed tracing in .NET Core ecosystem, instrumenting Azure client libraries, and Azure Functions, collecting telemetry with... Read More →



Friday October 15, 2021 3:25pm - 4:00pm PDT
Room 402 AB + Online

4:30pm PDT

A Deep Dive Into 5 years of Minikube - Medya Ghazizadeh, Google
A deep dive into minikube project on architecture, project maintenance and the future, 5 years of minikube, learn about the architecture, challenges and the future of the project. including topics on the future of the VM drivers vs Container drivers. future of different runtimes. and how minikube got improved the benchmarking metrics on minikube’s performance on starting a cluster, cpu usage and image build. also learn about the process of maintaining a project that has been around for more than 5 years. and then end share top tips and ticks on minkube that you might not know about.

Speakers
avatar for Medya Ghazizadeh

Medya Ghazizadeh

Technical Lead Manager, Google
Medya Ghazizadeh is a tech lead at Google's container tools team. holds masters degree from DePaul University. one of the minikube maintainers.loves open source, poetry and human languages.



Friday October 15, 2021 4:30pm - 5:05pm PDT
Room 402 AB + Online

4:30pm PDT

How We Reduced Write Latency in TiKV? - Liqi Geng, PingCAP
Serving write requests in stable and low average latency is what many distributed databases pursue. So does TiKV, a distributed transactional Key-Value database. After a detailed investigation, Liqi Geng and his team found that TiKV’s write performance might be restricted by many factors. Among all these factors, the raftstore module might be the one that causes delay the worst. In order to optimize write latency, TiKV team plans to lower tail latency, in addition to reducing the average write latency, to make sure the overall latency is consistent and low. In this talk, Liqi Geng will walk you through TiKV’s architecture and share the optimization measures he and his team have used in the raftstore module to reduce the average write latency and tail latency, such as Asynchronous IO and other optimizing trials.

Speakers
avatar for Liqi Geng

Liqi Geng

Infrastructure Engineer, PingCAP
Liqi Geng is an infrastructure engineer at PingCAP and a committer of raft-sig in TiKV community. He focuses on making TiKV more efficient, scalable, and reliable and he is passionate about distributed systems and storage systems.



Friday October 15, 2021 4:30pm - 5:05pm PDT
Concourse Hall 150 ABC + Online

4:30pm PDT

Production Workload Identity with SPIRE - Ryan Turner, Uber
Have you ever wondered how to effectively enable secure authentication between workloads and operationalize TLS within your production network at scale? SPIRE, a CNCF Incubating project, addresses these concerns by providing short-lived, automatically rotated identities to workloads based on the SPIFFE specification. This session will introduce the core design of SPIRE and how it can be leveraged in cloud-native architectures to provide defense-in-depth to production environments. To conclude, this session will take a look at some upcoming features that further extend the possibilities of SPIRE as a production identity platform.

Speakers
avatar for Ryan Turner

Ryan Turner

Senior Software Engineer, Uber
Software engineer on the Workload Identity team at Uber and a maintainer of the SPIRE project.



Friday October 15, 2021 4:30pm - 5:05pm PDT
Concourse Hall 153 ABC + Online

4:30pm PDT

PSP is Dead, Long Live PodSecurity - Monis Khan, VMware; Mike Danese, Google
After a quick intro, this presentation will touch upon two auth features that recently went GA: bound service account tokens [1] and kubectl credential plugins [2]. The bulk of the talk will focus on the replacement for pod security policy: pod security admission control [3]. We will cover the reasons behind the replacement of PSP along with the specific technical details of PSA. [1] https://kubernetes.io/docs/reference/access-authn-authz/service-accounts-admin/#bound-service-account-token-volume [2] https://kubernetes.io/docs/reference/access-authn-authz/authentication/#client-go-credential-plugins [3] https://github.com/kubernetes/enhancements/tree/master/keps/sig-auth/2579-psp-replacement

Speakers
avatar for Mike Danese

Mike Danese

Software Engineer, Google
Mike is a software engineer at Google. He has worked on Kubernetes and GKE for over four years and is currently the lead of the GKE Identity Team. He is a chair and TL of the Kubernetes Auth Special Interest Group. He develops and maintains authentication infrastructure in Kubernetes... Read More →
avatar for Mo Khan

Mo Khan

Software Engineer, VMware
Mo Khan currently serves as a chair for Kubernetes SIG Auth and has made contributions to SIG API Machinery.



Friday October 15, 2021 4:30pm - 5:05pm PDT
Room 501 ABC + Online

5:25pm PDT

Intro + DeepDive: SIG Scalability - Wojciech Tyczyński & Marcel Zięba, Google
This session will focus on the different efforts that SIG Scalability is involved in: defining what scalability means for Kubernetes, driving improvements, infrastructure for scalability testing, tests and guarding Kubernetes against performance regressions. Each of those areas will first be described at the high level, followed up with deeper insight into concrete aspects and summarized with most recent achievements and a roadmap for future work. Time for Q&A will be reserved at the end of the session to understand how the SIG can better engage with the community as well as to allow the audience to provide the input about the roadmap.

Speakers
avatar for Wojciech Tyczyński

Wojciech Tyczyński

Senior Staff Software Engineer, Google
Wojciech is working on Google Technical Infrastructure & Cloud since 2012. Since February 2015 he works on Kubernetes and Google Kubernetes Engine. With the main focus on scalability, performance and reliability, he gained experience and contributed to many Kubernetes features and... Read More →
avatar for Marcel Zięba

Marcel Zięba

Software Engineer, Google



Friday October 15, 2021 5:25pm - 6:00pm PDT
Room 402 AB + Online

5:25pm PDT

Intro and Deep Dive to the CNF Working Group - Ian Wells, Cisco; Jeffrey Saelens, Charter Communications; Taylor Carpenter, Vulk Coop
The Cloud Native Network Function (CNF) Working Group’s task is to recommend best practices for networking applications (aka CNFs) that run on Kubernetes. Our goal is to enable operators and creators of CNFs to take advantage of Kubernetes application development benefits. This session will cover an introduction to the working group, how we work, and what we produce. We will explore an example use case and a set of best practices for networking applications. Finally, we will provide an overview of some of the areas currently in discussion, and how you can participate, or even contribute.

Speakers
avatar for Ian Wells

Ian Wells

CNF WG Co-Chair, Cisco
An OpenStack developer and user since the Essex release, Ian works on the internals of Openstack, on applications to run on top of Openstack, and on making Openstack easy for people to use. His current focus is in NFV, the work to use Openstack to provide virtual network functions... Read More →
avatar for Jeffrey Saelens

Jeffrey Saelens

CNF WG Co-Chair, Charter Communications
Jeffrey Saelens is a Principal Cloud Architect in Charter Communications’ Advanced Engineering commercial business unit. Starting his career in the US Army, Jeffrey was a Green Beret focused on communications and systems engineering. After leaving the military, he dove into the... Read More →
avatar for Taylor Carpenter

Taylor Carpenter

CNF WG Co-Chair, Vulk Coop
Partner at Vulk Cooperative - http://vulk.coop | Lead on CNCF CNF Testbed, Telecom User Group and CNF Conformance initiatives. OpenSource advocate, using Linux since 1994 with the 1.0 release and gnu tools on other unix systems before that. OpsDev geek. Elixir and Ruby programmer... Read More →



Friday October 15, 2021 5:25pm - 6:00pm PDT
Room 501 ABC + Online

5:25pm PDT

kOps: Recent Advances and the Journey to an OSS Kubernetes Distribution - Peter Rifel, DataDog; Ciprian Hacman, eyeo; John Gardiner Myers, Proofpoint; Ole Markus With, Sportradar
kOps is a kubernetes subproject to manage and operate kubernetes clusters, delivering the full end-to-end user experience. We’ll give a quick introduction to kOps, and cover recent advances. Learn about better security, certificate rotation; support for containerd, arm64, azure; dedicated apiserver nodes; binding cloud roles to kubernetes service accounts; initial ipv6 support; much deeper testing and more! We’ll then deep-dive into how we are continuing to deliver the end-to-end experience, even as the core kubernetes repository extracts out networking, storage and cloud support … are we building a distro? What are the implications for how we can continue to develop and build kOps, and what can we learn from traditional Linux distros?

Speakers
avatar for Peter Rifel

Peter Rifel

Software Engineer, kOps Maintainer, DataDog
avatar for John Gardiner Myers

John Gardiner Myers

Principal Engineer, Proofpoint
CH

Ciprian Hacman

Senior DevOps Engineer, eyeo
Ciprian is a Senior DevOps engineer at eyeo and open source contributor to cloud-native projects like kOps, etcd-manager, containerd, Calico and others, so loves to talk about Kubernetes and DevOps, and how to find the best solutions for any needs with Kubernetes.
avatar for Ole Markus With

Ole Markus With

Head Architect, Sportradar
Ole Markus is a member of the Core Architecture team at Sportradar, a leading service provider to the sports industry. The past few years he has been a contributer to the kOps project.



Friday October 15, 2021 5:25pm - 6:00pm PDT
Concourse Hall 153 ABC + Online

5:25pm PDT

SIG-Scheduling Intro and Deep Dive - Wei Huang, IBM
SIG Scheduling is responsible for kube-scheduler and its related subprojects such as the scheduling-plugins and descheduler. These projects share the common goal of enabling users and developers to ensure that pods are assigned to the appropriate nodes based on various scheduling criteria. We also endeavor to ease customizing and extending scheduler for advanced usage. This talk will introduce attendees to SIG-Scheduling with an overview of the current goals and ongoing work within the SIG, as well as opportunities for new contributors to get involved.

Speakers
avatar for Wei Huang

Wei Huang

Software Engineer, IBM
Wei Huang is a senior software engineer from IBM. He has 10+ years of experiences around database, data warehouse tooling, cloud, container, monitoring and devops.His latest focus is on Kubernetes, including extending Kubernetes LoadBalancer using CRD, networking, scheduling and monitoring.Currently... Read More →



Friday October 15, 2021 5:25pm - 6:00pm PDT
Concourse Hall 150 ABC + Online
 
  • Timezone
  • Filter By Date KubeCon + CloudNative North America 2021 Oct 11 -15, 2021
  • Filter By Venue Los Angeles, CA, USA
  • Filter By Type
  • 101 Track
  • Application + Development
  • Breaks
  • Business Value
  • CI/CD
  • Co-Located Events
  • Community
  • Customizing + Extending Kubernetes
  • Diversity + Inclusion
  • Experiences
  • Graduated Lightning Talk
  • Interactive Sessions
  • Keynote Sessions
  • Machine Learning + Data
  • Maintainer Track Sessions
  • Networking
  • Observability
  • Operations
  • Performance
  • Project Office Hours
  • Registration + Badge Pick-up
  • Runtimes
  • Security + Identity + Policy
  • Serverless
  • Service Mesh
  • Solutions Showcase
  • Storage
  • Student Track
  • Content Experience Level
  • Talk Type
  • Presentation Slides Attached