Loading…
In-person + Virtual
16 -20 May
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2022 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Central European Summer Time (UTC +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Simple
Expanded
Grid
By Venue
In-Person [clear filter]
Tuesday, May 17
 

17:30 CEST

Lightning Talk: Whyhappn Instead of Whodunnit: Avoiding the Term “Human Error” - Silvia Pina, Independent
One of the keys to achieving reliable and secure systems is psychological safety, and this comes from having a truly blameless culture. In the past, I have encountered the term "human error" as the outcome of a "root cause analysis" process, and advocated within the company I was working for against its usage. This is the main motivator for proposing this talk. I would like also to gather some insights, from a systems thinking and organisational psychology standpoint, on how highly resilient organisations in different domains handle the human component of failures, as I think it is useful to have this perspective.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Silvia Pina

Silvia Pina

Senior Software Engineer, Independent
Silvia Pina is a Berlin-based software engineer with an academic background in both psychology and computer engineering.

Tuesday May 17, 2022 17:30 - 17:35 CEST
Auditorium 1A | Event Center Feria Valencia
  Operations, Lightning Talk ⚡

17:36 CEST

Lightning Talk: Thank you Keptn Obvious! Making SLOs observable with Prometheus and Keptn - Andreas Grabner, Dynatrace
This talk shows how to not only collect metrics and provide application monitoring using Prometheus, but to also make them visible as SLOs and then act on them in a fully automated and cloud native way.

Click here to view captioning/translation in the MeetingPlay platform!



Speakers
avatar for Andi Grabner

Andi Grabner

CNCF Ambassador & DevRel, Dynatrace
Andreas Grabner (@grabnerandi) has 20+ years of experience as a software developer, tester and architect and is an advocate for high-performing cloud scale applications. He is a CNCF ambassador, contributor to the CNCF project keptn and a DevRel for Dynatrace. Andreas is also a regular... Read More →

KubeCon2022 LT4 GRABNER Thank you Keptn Obvious pptx
Tuesday May 17, 2022 17:36 - 17:41 CEST
Auditorium 1A | Event Center Feria Valencia
  Observability, Lightning Talk ⚡

17:42 CEST

Lightning Talk: Introducing O-Cloud, or How 5G Leverages Kubernetes - Nikolay Nikolaev, Juniper Networks
Raise the awareness of the applications of the Cloud Native technologies in the modern generations of the Radio Access Network. Share the approach that the O-RAN Alliance is taking to solve the high demands towards the platform that handles the critical workloads with significant impact to their business and our daily live.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Nikolay Nikolaev

Nikolay Nikolaev

Engineering Manager, Isovalent
Nikolay Nikolaev is an Engineering Manager at Isovalent's Datapath team. For more than 20 years, he has been implementing networking software ranging from hardware boxes to powerful server applications and virtualized data planes. He spent some time in the virtualization world using... Read More →

Introducing O Cloud How 5G Leverages Kubernetes Nikolay Nikolaev pdf
Tuesday May 17, 2022 17:42 - 17:47 CEST
Auditorium 1A | Event Center Feria Valencia
  Networking, Lightning Talk ⚡

17:48 CEST

Lightning Talk: What I’ve Learned by Running Local CNCF Chapter Cloud-native Islamabad - Saim Safdar, Neomeric Digitals
I struggled a lot when I started learning about cloud-native technologies because not many people around me were also talking about k8s or other cloud-native things. I always felt shy asking people for help when I got stuck with cloud-native tooling. However, I’ve found that many people are experiencing the same even though opensource is all about engaging with others, helping others and collaborative knowledge, and collaborative power of mind and energy. I want to share how I overcome this challenge of talking about cloud-native language in public while building out my local community. Attendees will walk away from this talk having learned the easy way of learning Kubernetes, how to build out local their own CNCF chapters, how this will help overcome the shyness of asking people for help in public, how to create empathy within the community, how to talk about open-source publicly, and how to start contributing to a worldwide community.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Saim Safdar

Saim Safdar

Developer Relations Manager, Rafay Systems
As a DevOps engineer, Saim Safdar has had a lot of practical experience with cloud-native technologies. Throughout his career, he has supported SaaS web solutions based on Windows, UNIX, and Linux platforms in Azure, AWS, and on-premise. He's helped organizations with infrastructure... Read More →

Tuesday May 17, 2022 17:48 - 17:53 CEST
Auditorium 1A | Event Center Feria Valencia
  Community, Lightning Talk ⚡

17:54 CEST

Lightning Talk: What Made Your Container Fat? Visualizing the Size of Container Layers - Dan Čermák, SUSE
The analysis of container images is becoming increasingly important to deliver a high quality product. We have found it rather challenging to continously monitor the size of our container images that we were producing and existing tools were not focused on data visualization, which we wanted initially. The presented tool was born out of this necessity: it has a very simple user interface, requires no installation (it can be hosted on a server somewhere else) and features sunburst graphs showing the file system usage. This allows everyone to easily check which layer is where responsible for the overall image's size.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dan Čermák

Dan Čermák

Software Engineer Development Tools, SUSE
Dan is creating developer tools, builds container images and works on QA at SUSE, which he joined after working as an embedded firmware developer. Originally he started out as a theoretical astrophysicist, but after becoming a contributor to various Open Source projects, he finally... Read More →

lightning talk what made your container fat pdf
Tuesday May 17, 2022 17:54 - 17:59 CEST
Auditorium 1A | Event Center Feria Valencia
  CI/CD, Lightning Talk ⚡

18:04 CEST

Lightning Talk: Scaling Container Builds with Software Supply Chains - Duane DeCapite, VMware
This lightning talk will summarize how the open source Buildpacks, flux and Cartographer projects can automate the software supply chain and help to address container builds at scale while minimizing the burden on developers.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Duane DeCapite

Duane DeCapite

Director, Product, VMware
Duane is Director, Product at VMware. Prior to VMware Duane has been active in open source and software engineering in roles at NetFoundry, Cumulus Networks, IBM and Cisco. Duane authored Self-Defending Networks: The Next Generation of Network Security with Cisco Press and represented... Read More →

Tuesday May 17, 2022 18:04 - 18:09 CEST
Auditorium 1A | Event Center Feria Valencia
  Application + Development, Lightning Talk ⚡

18:10 CEST

Lightning Talk: Tell Your SD-WAN About Your Service Mesh External Services! - Alberto Rodriguez, Cisco
This talk shows how with the right configuration and some open source, a Software-Defined Wide Area Network (SD-WAN) can automagically optimize the Egress traffic of a Service Mesh. Using the 'Cloud Native SD-WAN' open-source project, Egress configuration from Service Meshes can now be used to program SD-WAN optimizations towards remote external services.

This leverages the 'SaaS optimization' feature offered by several SD-WAN solutions. SaaS optimization enhances connectivity towards SaaS applications (either public SaaS or user-defined remote applications) by constantly probing the remote application from different points of the SD-WAN network to continually compute the best path to reach it.

On the Service Mesh side, Egress configurations are used to learn which external services should be probed (and how) to get their traffic optimized. What is typically used to enforce security policies (e.g. allow/deny) can be transposed into traffic engineering optimizations on the SD-WAN.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Alberto Rodriguez-Natal

Alberto Rodriguez-Natal

Tech Lead, Cisco
Alberto is a Sr. Tech Lead in the Enterprise Networking CTO team at Cisco, working on network virtualization, systems architecture, and protocol design. Before joining Cisco, he earned a PhD in Software-Defined Networking at BarcelonaTech.

SDWAN ServiceMesh pdf
Tuesday May 17, 2022 18:10 - 18:15 CEST
Auditorium 1A | Event Center Feria Valencia
  Service Mesh, Lightning Talk ⚡

18:16 CEST

Lightning Talk: Locating and Debugging Failures with Linkerd and Telepresence - Alejandro Pedraza, Buoyant & Edidiong Asikpo, Ambassador Labs
Cloud native applications that consist of many services running in K8s clusters can become hard to maintain and evolve. From our experience and what we see in the Kubernetes community Slack channels, when developers hit the tipping point of not being able to run all their services locally, they run into trouble. At this time, they suddenly realize they need new tooling and approaches for observing and debugging applications that will spread across their local dev machines and remote clusters. This presentation will show operators and developers how Linkerd and Telepresence offer a simple way to better observe and debug applications running in their clusters. Easy to follow and replicate (with sample code made available), users will be able to get results quickly, without disrupting their existing services architecture.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Alejandro Pedraza

Alejandro Pedraza

Software Engineer, Buoyant
Alejandro Pedraza has more than 15 years of experience building backend enterprise and consumer-oriented systems at scale. He’s been involved in various industries such as BPM, social networks, web hosting, media streaming, gaming and finance. He is a software engineer at Buoyant... Read More →
avatar for Edidiong Asikpo

Edidiong Asikpo

Developer Advocate, Zuplo
Edidiong Asikpo is a Senior Developer Advocate based in Lagos, Nigeria. She is passionate about sharing her knowledge of DevOps through technical articles, videos, and social media. Edidiong has given over 100+ talks at tech events worldwide and continues to play a significant role... Read More →

Tuesday May 17, 2022 18:16 - 18:21 CEST
Auditorium 1A | Event Center Feria Valencia
  101 Track, Lightning Talk ⚡

18:22 CEST

Lightning Talk: Beginner to Maintainer Journey of a Student - Debabrata Panigrahi, National Institute of Technology Rourkela
The session will highlight my learning as a student during the journey as a new contributor starting to contribute after attending a New Contributor Workshop during KCD Bengaluru to becoming an approver recently. I will share the nuances of working together in the community and will focus on areas that need a lot of contributors now especially with the "chop wood and carry water" kind of work that could be easily done by students. I will further focus on how various sigs runs mentoring cohort for contributors to grow up the contributing ladder and learn stuff necessary for taking leadership or helping the leadership, I have been part of such mentoring cohort under sig-contribex and now I'm a moderator of the k-dev mailing list. Also, I will try to focus on how new contributors loose interest while looking for good-first-issues, and I will try to emphasize the importance of regular sig meetings and discussions and help they have helped me to come up with solutions to help the project.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Debabrata Panigrahi

Debabrata Panigrahi

DevRel Engineer, Harness
I'm a DevRel Engineer at Harness's IDP team. I have been contributing to open source for the last four years, previously part of the Kubernetes Release team, and contributed to sig-contribex.

Beginner to Maintainer Journey of a student pptx
Tuesday May 17, 2022 18:22 - 18:27 CEST
Auditorium 1A | Event Center Feria Valencia
  Student, Lightning Talk ⚡

18:28 CEST

Lightning Talk: Secure Multi User HPC Jobs in Kubernetes with Kyverno - Trey Dockendorf, Ohio Supercomputer Center
Sites running traditional High Performance Computing workloads are more frequently also deploying Kubernetes for infrastructure. By leveraging the Kubernetes infrastructure, HPC centers can supplement their HPC batch environment with Kubernetes for some very specific use cases, such as interactive HPC jobs. This approach to securely using Kubernetes to support many user’s interactive workloads has been presented and well received at HPC conferences such as Supercomputing 2021. The Ohio Supercomputer Center is currently using Open OnDemand and Kubernetes to securely support virtual classrooms that require running RStudio Server and Jupyter. The benefits of multi-user Kubernetes workloads can also benefit sites who are not traditional HPC but maybe wanting to allow staff a secure place to run containers themselves without necessarily involving the team who maintains Kubernetes.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Trey Dockendorf

Trey Dockendorf

HPC Systems Senior Engineer, Ohio Supercomputer Center
Trey Dockendorf is a senior systems engineer at the Ohio Supercomputer Center. He currently manages that center's infrastructure and HPC systems, including their Kubernetes deployment. Trey has worked to integrate the Open OnDemand project to support Kubernetes as a platform to run... Read More →

kubecon eu 2022 lightning pptx
Tuesday May 17, 2022 18:28 - 18:33 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy, Lightning Talk ⚡
 
Wednesday, May 18
 

09:00 CEST

Keynote: Welcome + Opening Remarks - Priyanka Sharma, Executive Director, Cloud Native Computing Foundation
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Priyanka Sharma

Priyanka Sharma

Executive Director, Cloud Native Computing Foundation
Priyanka is the Executive Director of the Cloud Native Computing Foundation (CNCF) which serves as the vendor-neutral home for 100+ of the fastest-growing open source projects, including Kubernetes, Prometheus, and Envoy. She is also a co-creator of the Inclusive Naming Initiative... Read More →

Wednesday May 18, 2022 09:00 - 09:40 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:40 CEST

Keynote: 7 Years of Running Kubernetes for Mercedes-Benz - Jens Erat, DevOps Engineer; Peter Mueller, Lead Expert; Sabine Wolz, Product Owner, Mercedes-Benz Tech Innovation
Years ago, software engineers faced hard times at Mercedes-Benz: spreadsheet operations, manual processes, grown infrastructure and strict governance. A grassroots initiative of engineers accepted the challenge to change the game – and their silver bullet was Kubernetes. Join us on our journey from introducing Kubernetes 0.9 on managed servers to an on-premises self-service cloud platform with close to 1000 clusters on Cluster API. You will learn about our stake transforming a data center with a young team that mostly did not know enterprise processes before. We describe how mixing naive visions and a strong believe in open source with lots of resilience made the project a success.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Peter Mueller

Peter Mueller

Lead Expert, Mercedes-Benz Tech Innovation
Peter has been working at Mercedes-Benz Tech Innovation (formerly Daimler TSS) for more than 10 years. His actual role is product owner for the internal container as a service platform. Having grown up in the classic IT world he now advocates for agility, cloud native and DevOps... Read More →
avatar for Jens Erat

Jens Erat

DevOps Engineer, Mercedes-Benz Tech Innovation
Jens is DevOps engineer and expert for advanced cloud wizardry. He has a strong passion for not only getting, but also keeping IT projects running. Having joined Mercedes-Benz efforts in building a cloud native platform in 2017, he experienced and formed the transition from enterprise... Read More →
avatar for Sabine Wolz

Sabine Wolz

Senior Product Manager, Mercedes-Benz Tech Innovation
Sabine has been working for Mercedes-Benz Tech Innovation for over 6 years. As a senior Product Manager of a service providing cloud native ready-to-use toolboxes running on Kubernetes, she is a real enthusiast of the CNCF world. Her works plays an important role in shaping the digital... Read More →

2022 05 18 Keynote Mercedes Benz Tech Innovation pdf
Wednesday May 18, 2022 09:40 - 09:55 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:55 CEST

Keynote: Finding Your Power to Accelerate to a Sustainable Future - Kate Mulhall, Senior Cloud Software Engineering Manager & Emma Collins, Product Manager for Observability and Power Management, Intel
Accelerated digital transformation and increasing data volumes reinforce the need for data center energy efficiency. From power-aware hardware, better workload design, and smart orchestration, we can reduce energy consumption and lower our carbon footprint. There is a need to accommodate a variety of workloads across domains such as finance, health care, telecommunications, and scientific computing, where connectivity, data gathering, machine learning, and data analytics play a significant role. Optimizations can be made across compute, networking, and storage. Intel, along with the cloud native community, has been working on aligning platforms and technologies to achieve better resource utilization through innovations and tooling for observability, orchestration, and management. Come learn more about these energy sustainability efforts, where to find us in the community, and how to engage to achieve a greener future.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Kate Mulhall

Kate Mulhall

Senior Cloud Software Engineering Manager, Intel
Kate is a Senior Cloud Software Engineering Manager responsible for the Intel Cloud Native Orchestration engineering team in Ireland. She has 20+ years' experience building and managing software development teams across multiple international tech companies. She holds a BEng in Engineering... Read More →
avatar for Emma Collins

Emma Collins

Product Manager for Observability and Power Management, Intel
EmmaCollins is a Product Manager for Observability and Power Management in the Network Platforms Group at Intel. Emma's role is to drive the adoption of Intel Platform Telemetry and CPU Power Technologies within NFV and Cloud Native environments. Working with a wide range of ecosystem... Read More →

Wednesday May 18, 2022 09:55 - 10:00 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:00 CEST

Keynote: Incremental Deep Learning For Satellite with KubeEdge and MindSpore - Xiaoman Hu, Community Operation Director; Zhipeng Huang, Director of AI Open Source; Yue Bao, Software Engineer, Huawei
Low Earth Orbit (LEO) has become a hot topic in recent years and KubeEdge has managed to bring the cloud native to the space. With several small research satellite equipped with KubeEdge, edge computing with AI was experimented at the furthest frontier. In this talk we will present how we combine KubeEdge Sedna, the cloud native edge machine learning suite, with TinyMS which is a high level API toolkit for MindSpore deep learning framework, to enable incremental learning at the satellite to accomplish tasks like remote sensing and earth observing. We will also discuss how utilize TinyMS that KubeEdge Sedna's semantics could be integrated as an integral part of AI framework.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Zhipeng Huang

Zhipeng Huang

Director of Open Source, Huawei
Zhipeng Huang currently serve as Director of Open Source for Huawei Compute Product line, in charge of openEuler, MindSpore and openGauss community operation. Zhipeng is now the TAC member of LFAI, TAC and Outreach member of the Confidential Computing Consortium, co-lead of the Kubernetes... Read More →
avatar for Xiaoman Hu

Xiaoman Hu

Community Operation Director, Huawei
Operation director of MindSpore in Huawei. Member of the Chinese Institute of Electronics experts, member of the Outreach Committee of the LF&AI Foundation, leader of the TinyMS open source project. Founder of MSG•Women in Tech. Served as a senior algorithm engineer of Autohome... Read More →
avatar for Yue Bao

Yue Bao

Software engineer, Huawei
Yue Bao serves as a software engineer of Huawei Cloud. She is now working 100% on open source, focusing on lightweight edge and edge api-server for KubeEdge. Before that, Yue worked on Huawei Cloud Intelligent EdgeFabric Service and participated in multiple edge engineering projects... Read More →

KubeCon EU 2022 Presentation pdf
Wednesday May 18, 2022 10:00 - 10:15 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:15 CEST

Keynote: Supporting the Community – So Open Source Projects Can Grow and Thrive - Le Tran, Member of Technical Staff, Kasten by Veeam
Modern software is built on open source projects, and in turn, the success of any open source project hinges on its community members and their contributions. So how do we create communities with active contributors and ensure our open source projects benefit from their innovative ideas? At Kasten by Veeam, we are working to build an open source community whose members contribute often, and in meaningful ways to our open source cloud native projects. During this session, a member of the technical staff from Kasten, Le Tran will share some insights on our journey to build an open source community, including the benefits and challenges that come with creating a contributing culture in an organization.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Le Tran

Le Tran

Member of Technical Staff, Kasten by Veeam
Le Tran has been a member of the technical staff at Kasten by Veeam since October 2021 and is new to cloud native development. Prior to joining Kasten, she worked in the automotive embedded systems industry as a software engineer. She led a team that launched new surround view camera... Read More →

Wednesday May 18, 2022 10:15 - 10:20 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:20 CEST

Keynote: Closing Remarks - Jasmine James, Senior Engineering Manager-Developer Experience; Ricardo Rocha, Computing Engineer, CERN; Emily Fox, Security Engineer, Apple
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →
avatar for Emily Fox

Emily Fox

Security Lead - Emerging Technologies, Security Community Architect - OSPO, Red Hat
Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and accessible to everyone. Serving as chair on the Cloud Native Computing Foundation’s... Read More →
avatar for Jasmine James

Jasmine James

Senior Engineering Manager-Developer Experience
Jasmine is an engineering manager leading the developer experience pillar in the engineering effectiveness organization. She has previously worked at Delta Air Lines enabling cloud native application development by providing modern tooling and capabilities utilizing various CNCF projects... Read More →

Wednesday May 18, 2022 10:20 - 10:25 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

11:00 CEST

The Power of Cloud Native in Financial Institutions - Mateusz Pruchniak, mBank SA
Cloud Native architecture and public clouds have become the standard solution for modern IT for fast innovation, delivering more value to their customers, with dramatically less effort. This is a big challenge, especially for regulated financial sectors such as banking due to the complexity of their legacy systems, and compliance challenges including concerns raised by European regulators. For authorities (EBA, EIOPA, ESMA) having a flexible multicloud strategy and solid foundations for portability and interoperability has never been more relevant. In this session, Mateusz will present a good practice guide offering practical tips and tricks for designing and deploying Cloud Native business-critical systems in Financial Institutions fulfilling the assumption of having an easily portable architecture, with an easily tested Exit Plan and finally minimizing cloud concentration risk. Presented practical ideas can be used for designing from scratch and during migration to Cloud Native.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Mateusz Pruchniak

Mateusz Pruchniak

Cloud Architect
Mateusz Pruchniak is a Cloud Architect in Cloud Center of Excellence in one of the biggest banks in Poland (mBank SA) where he focuses on utilization of public cloud and implementation of the multi-cloud strategy. He has thirteen years of experience working in the IT industry especially... Read More →

KubeCon EU 2022 MPruchniak pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

11:00 CEST

West Side CD: The Deployment Ballet Goes On - Benoit Moussaud, VMware Tanzu
The way to bring a new version into production has changed a lot in recent years. From a slow, manual, and uncontrolled processor it has become over time fast, automated, and versioned. The tools have evolved, changed, been modernized, or even containerized, but they have remained centralized. The new generation of solutions intends to reverse this point of view by relying no longer on orchestration but on choreography between the different stakeholders. This session shows the difference between these two concepts and how it applies to the CI/CD domain that has remained ultimately very centralized and old-school then describes an innovative solution, (cartographer.sh) based on the concept of supply chains.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Benoit Moussaud

Benoit Moussaud

Senior Solution Engineer, VMware Tanzu
With more than 20 years of Enterprise IT experience, from the development to the global architecture of complex enterprise applications, Benoit Moussaud's focus is always about the automation, first on the Dev side by being involved in the Ant open source project, the continuous integration... Read More →

West Side CD Benoit Moussaud VMWare Tanzu pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  CI/CD

11:00 CEST

Kubernetes is Your Platform: Design Patterns For Extensible Controllers - Rafael Fernández López, SUSE & Fabrizio Pandini, VMware
Developing Controllers -- as well as other Kubernetes native extensions like admission webhooks -- is quickly becoming a mainstream practice to solve problems in a Kubernetes native way; but while developing a simple controller is pretty straightforward, things become complex as soon as you have behavioral dependencies with other components. But don't worry, this talk will provide you with reusable design patterns derived from the concrete experience and the hard lessons learned by the maintainers of Cluster API and Kubewarden, two projects built around the idea of extensible controllers. How to develop a plug-in system for your controller/admission webhook? How to add to your controller the capability to do RPC calls to pluggable external components? How to orchestrate many controllers co-operating in solving complex tasks? Come to this talk, we got you covered!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Fabrizio Pandini

Fabrizio Pandini

Staff Engineer, VMware
A Kubernetes contributor obsessed with making Kubernetes lifecycle simple and consistent across all types of infrastructures, so everyone can build amazing applications on top of it. When I’m not busy as a SIG Cluster Lifecycle tech lead or as a project maintainer in Cluster API... Read More →
avatar for Rafael Fernández López

Rafael Fernández López

Senior Software Engineer, SUSE
Rafa is a Senior Software Engineer at SUSE that loves to learn and experiment. He has special interest in the intersection between programming languages, distributed systems and infrastructure. When not in front of a computer he enjoys time with family, friends, city walks and ph... Read More →

Developing Extensible Controllers pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

11:00 CEST

Scaling Open Source ML: How Wolt Uses K8s To Deliver Great Food to Millions - Stephen Batifol, Wolt & Ed Shee, Seldon
Forecasting supply and demand, serving restaurant recommendations and predicting delivery times. These are just a few examples of how Machine Learning is being applied at Wolt. Now with over 12 million users, scaling the ML infrastructure has been a significant challenge. This talk will highlight those challenges and how they were addressed by building an end to end MLOps platform on Kubernetes. You'll learn about the open source frameworks that Wolt integrated, specifically Flyte, MLFlow and Seldon Core.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Stephen Batifol

Stephen Batifol

Machine Learning Engineer, Wolt
From Android developer to Data Scientist to Machine Learning Engineer, Stephen has a wealth of software engineering experience at Wolt. He believes that machine learning has lots to learn from software engineering best practices and spends his time making ML deployments simple for... Read More →
avatar for Ed Shee

Ed Shee

Head of Developer Relations at Seldon, Seldon
Having previously led a tech team at IBM and now Head of Developer Relations at Seldon, Ed comes from a cloud computing background and is a strong believer in making deployments as easy as possible for developers. With an education in computational modeling and an enthusiasm for machine... Read More →

Kubecon EU 2022 pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Machine Learning + Data

11:00 CEST

containerd: Project Update and Deep Dive - Derek McGowan, Apple
Join containerd maintainers for an introduction and deep dive into the latest updates on containerd. With many exciting features currently in development, the upcoming release of container promises to deliver many new capabilities while retaining the stability containerd is known for amongst users. The deprecation of dockershim in Kubernetes has brought many new users to containerd along with greater need for documentation and tooling. We will cover how to get started and configure containerd for Kubernetes users. Additionally, nerdctl has filled a crucial usability gap for operators and developers coming to containerd. We will discuss how to make use of this important new containerd sub-project.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Phil Estes

Phil Estes

Principal Engineer, AWS
Phil is a Principal Engineer for Amazon Web Services (AWS), focused on core container technologies that power AWS container offerings like Fargate, EKS, and ECS.Phil is currently an active contributor and maintainer for the CNCF containerd runtime project, and participates in the... Read More →
avatar for Derek McGowan

Derek McGowan

Software Engineer, Docker
Open source maintainer working on container technology for the last 9 years.

2022 Kubecon EU containerd pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, containerd

11:00 CEST

Emissary-ingress: Intro and Deep Dive - Flynn, Luke Shumaker & Alice Wasko, Ambassador Labs
Emissary-ingress, a CNCF Incubating project, is a self-service Kubernetes-native open-source API gateway and ingress controller built on the Envoy proxy -- but really, what does that mean? In this session, we'll give attendees an overview of why ingress controllers are necessary, how self-service developer workflows work for developers and for operations, and how Emissary-ingress can make all of this easier. We'll also look at current best practices around designing, managing, and evolving self-service APIs. We'll continue with a deeper dive into Emissary-ingress' evolution and future, notably including a discussion around plans for the upcoming getambassador.io/v3 API version, and - perhaps most importantly - how to get involved as a contributor or as a user who wants to offer feedback. This is a great opportunity to interact directly with the Emissary-ingress maintainers and make sure your voice is heard -- we're looking forward to your help as Emissary-ingress continues to grow and evolve!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Flynn

Flynn

Technical Evangelist, Buoyant
Flynn is a technology evangelist at Buoyant, spreading the good word and educating developers about the Linkerd service mesh, Kubernetes, and cloud-native development in general. He has spent four decades in software engineering from the kernel up through distributed applications... Read More →
LS

Luke Shumaker

Principal Engineer, Ambassador Labs
Luke Shumaker is a principal engineer at Ambassador Labs, where he has worked on Emissary-ingress and Telepresence (both CNCF projects).
avatar for Alice Wasko

Alice Wasko

Software Engineer, Ambassador Labs
Alice Wasko is a maintainer of the Emissary-ingress incubating CNCF project and Envoy Gateway. Her technical expertise focuses on API Gateway development, Kubernetes networking, and developer/operator experience. Alice is a Go enthusiast and is currently working as a software engineer... Read More →

Wednesday May 18, 2022 11:00 - 11:35 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, Emissary-ingress

11:00 CEST

Fluent Bit: Logs, OpenMetrics, and OpenTelemetry all-in-one - Eduardo Silva & Anurag Gupta, Calyptia
Observability continues to be an interesting challenge, data collection for logs, metrics, and traces is an expensive operation and different approaches exist. Fluentd and Fluent Bit have been the long-term defacto standard for logging, but recently the projects expanded their scope to support and assist with Metrics and Traces. Fluent Bit now supports data collection, aggregation, and delivery for the world of OpenMetrics (Prometheus) and OpenTelemetry. In this presentation, you will learn how to collect and aggregate Logs, Metrics, and Traces all together without losing control of your data by connecting different protocols at scale. Fluentd and Fluent Bit embraces OpenMetrics and OpenTelemetry vision, come to learn how to optimize your observability pipelines, and implement the best practices for your production environments.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Anurag Gupta

Anurag Gupta

Cofounder, Calyptia
Anurag is a maintainer of the Fluentd and Fluent Bit project as well as a co-founder of Calyptia. Previously he has worked at Elastic, driving cloud product and creating the Elastic Operator product. He has also worked at Treasure Data heading enterprise open source with Fluentd... Read More →
avatar for Eduardo Silva

Eduardo Silva

Engineering Manager, Chronosphere
Eduardo is an entrepreneur and Software Engineer. He is one of Fluentd project maintainers and creator of Fluent Bit, a lightweight Logs, Metrics, and Traces processor. Prev: founder at Calyptia, now at Chronosphere.

Wednesday May 18, 2022 11:00 - 11:35 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Fluent Bit

11:00 CEST

Longhorn: Intro, Deep Dive and Q&A - Sheng Yang, Joshua Moody, SUSE
Longhorn is a cloud-native distributed block storage solution for Kubernetes, providing an opinionated solution to cover different storage topology, data protection, and data services like snapshots, replication, encryption, backup restore, disaster recovery, etc. In this talk, there will be several parts to have an introduction of Longhorn and have deep-dive discussions to talk about the technical details, the recent release, and future plans. Longhorn was accepted as an incubating project by the Cloud Native Computing Foundation in November 2021.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Sheng Yang

Sheng Yang

Engineering Director, SUSE
Sheng Yang is an Engineering Director at SUSE. He is currently responsible for Harvester and Longhorn in the company. He joined SUSE through the Rancher Labs acquisition, where he worked on Longhorn, Harvester, local path provisioner, and other projects. Before Rancher Labs, he joined... Read More →
avatar for Joshua Moody

Joshua Moody

Staff Software Engineer, SUSE
Joshua Moody, a staff software engineer at SUSUE, is primarily working on the Longhorn development (CNCF incubating), and is one of Longhorn maintainers.

Introduction to Longhorn pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, Longhorn

11:00 CEST

How Lombard Odier Deployed VPA to Increase Resource Usage Efficiency - Vincent Sevel, Lombard Odier SA
Container orchestrators have become the de-facto standard to deploy a wide variety of workloads. As the number of deployments increases, so is the pressure on resource usage, and hardware costs. Container runtimes and Kubernetes come with a set of tools that help make the most out of your infrastructure such as cgroups with resource usage limitation and prioritization, requests and limits on cpu and memory, quality of services. Even with those tools, it can be challenging to understand how they work, and how to use them. In this talk, the speaker will offer a review of the available mechanisms, how they map at the orchestrator and runtime levels, and introduce the Vertical Pod Autoscaler as a mean to optimize resource tuning at scale. He will share some of the lessons the company learned since starting this effort. And finally he will describe where they are in the deployment phase, and give some perspective on the direction where they are headed.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Vincent Sevel

Vincent Sevel

Technical Architect, Lombard Odier SA
Vincent has 20+ years of experience in the IT sector, with predominant skills on development, technical architecture, strategy and integration. In the last 15 years, Vincent has worked as a technical architect for Geneva based private bank Lombard Odier. Starting in 2018, Vincent... Read More →

kubecon 2022 vpa sevel pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Performance

11:00 CEST

Create Your First CNCF Serverless Workflow Project with Kogito and Knative - Ricardo Zanini Fernandes, Red Hat
Serverless Workflow is a declarative workflow specification at CNCF for describing service orchestrations. Kogito is an open-source project by Red Hat and implements the Serverless Workflow Specification. In this session, you will learn in a live demo how to create your first CNFC Serverless Workflow project from the ground up with Kogito and how to deploy it on the Knative platform. Kogito is a developer-centric platform that can execute, test, and deploy workflows on Knative environments. The outcome is a REST microservice that can orchestrate other services and events. It is a perfect fit for an Event-Driven architecture and can integrate with Knative Eventing resources to solve complex business use cases. Kogito handles all the heavy lifting when deploying on Kubernetes by generating the resources necessary to deploy on Knative. After this session, you will be able to create a CNCF Serverless Workflow project, test it, and deploy it on Knative to be part of your architecture.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Zanini Fernandes

Ricardo Zanini Fernandes

Principal Software Engineer, Red Hat
Ricardo Zanini Fernandes is a Principal Software Engineer currently working on Red Hat’s Kogito Community project. He's been working in the field of software engineering since 2000 as a developer, system architect, support specialist, and team lead. He is a community contributor... Read More →

[Zanini] KubeCon EU 2022 Kogito Serverless Workflow pdf
Wednesday May 18, 2022 11:00 - 11:35 CEST
Auditorium 1A | Event Center Feria Valencia
  Serverless

11:00 CEST

Intro to Kubernetes, GitOps, and Observability Hands-On Tutorial - Joaquin Rodriguez, Microsoft & Tiffany Wang, Weaveworks
This tutorial offers newcomers a quick way to experience Kubernetes and its natural evolutionary developments: GitOps and Observability. Attendees will be able to use and experience the benefits of Kubernetes that impact reliability, velocity, security, and more. The session will cover key concepts and practices, as well as offer attendees a way to experience the commands in real-time. The tutorial covers: - kubectl - K9s - Metrics (Prometheus) - Dashboards (Grafana) - Logging (Fluent Bit) - GitOps (FluxCD) Attendees will be able to walk through the steps via a browser-based platform. Instructors will lead the topics and help to troubleshoot. Prerequisites: A computer with a modern browser (Edge, Chrome, Safari, Firefox) GitHub ID with 2FA enabled.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Tiffany Wang

Tiffany Wang

Solutions Architect, Weaveworks
Tiffany Wang is a Solutions Architect at Weaveworks, working with highly regulated, enterprise customers to deliver GitOps Workflows for multicloud Kubernetes environments. She has many years of experience as an engineer in the healthcare, automotive, and cloud native industries... Read More →
avatar for Joaquin Rodriguez

Joaquin Rodriguez

Senior Software Engineer, Microsoft
Joaquin Rodriguez, a Senior Software Engineer in the Commercial Software Engineering organization at Microsoft, helps customers tackle their toughest technical problems, on the cloud and at the edge. With over ten years of experience, Joaquin is passionate about open-source technologies... Read More →

Intro to Kubernetes GitOps Observability KubeCon EU 2022 pdf
Wednesday May 18, 2022 11:00 - 12:30 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  101 Track, Tutorial

11:00 CEST

Multi-cluster Failover Using Linkerd - Charles Pretzer, Buoyant, Inc.
Failover across clusters is a great way to improve the overall uptime and reliability of Kubernetes applications. While whole-cluster failover can be accomplished at the global ingress layer, failing over individual services is a little more difficult. During this hands-on tutorial, Charles Pretzer, Linkerd team member, will walk attendees through how to use Linkerd, the CNCF graduated service mesh, to enable traffic failover for individual services across clusters. Attendees will learn how to combine service mesh metrics, traffic shifting, and cross-cluster communication in a cohesive and automated way using pure open source, while preserving fundamental security guarantees such as mutual TLS.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Charles Pretzer

Charles Pretzer

Field Engineer, Buoyant, Inc.
Charles Pretzer is a field engineer at Buoyant, where he spends his time collaborating and engaging with the open source community of the CNCF service mesh, Linkerd. He also enables production level adoption by helping companies integrate Linkerd into their Kubernetes based applications... Read More →

Wednesday May 18, 2022 11:00 - 12:30 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Service Mesh, Tutorial

11:55 CEST

Seeing is Believing: Debugging with Ephemeral Containers - Aaron Alpar, Kasten
Most Kuberrnetes developers are familiar with the painful process of debugging a pod within a cluster. Fortunately, a new, cutting-edge approach — ephemeral containers — simplifies debugging running pods and more! With ephemeral containers, you can dynamically deploy a container that shares pod resources. These containers use Linux namespaces to share network and process resources so debugging can occur using a container image of your choosing. During this talk, Aaron will cover the what, why and how of ephemeral containers, and the underlying mechanics that make ephemeral containers useful for debugging and testing.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Aaron Alpar

Aaron Alpar

Member Technical Staff, Kasten
Aaron Alpar is a Member of Technical Staff at Kasten by Veeam. He has extensive background in reliable production systems. He has been working with Kubernetes since 2017, has been a presenter at Kubecon, and is an active contributor on Github. Talks: Presentation: KubeCon North America... Read More →

Ephemeral Containers pdf
Wednesday May 18, 2022 11:55 - 12:30 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

11:55 CEST

Effective Disaster Recovery: The Day We Deleted Production - Rick Spencer & Wojciech Kocjan, InfluxData
Imagine waking up to an sms, "we lost a cluster." On that day, with a one-line configuration change, we accidentally removed all of the compute from one of our busiest production clusters, causing a multi-hour outage. This presentation will cover the incident from the days leading up to it, to our full recovery, our customers' response to it, and how we implemented changes based on our learnings. It will go into detail about the configuration of our CI/CD pipeline, details about the specific change that caused the outage. Thankfully, we had a disaster recovery plan in place. We will discuss which parts of our disaster recovery plan worked, and critically, the few parts that didn't work. The session will cover a combination of technical and management content.

Click here to view captioning/translation in the MeetingPlay platform!

Speakers
avatar for Rick Spencer

Rick Spencer

VPE, Platform, InfluxData
As InfluxData’s Vice President of Platform, Rick Spencer is responsible for the core storage engine, compute, developer tooling, CI/CD and running InfluxDB Cloud 2.0 on Kubernetes in multiple clouds and regions. Rick’s background includes pioneering work on Developer Usability... Read More →
avatar for Wojciech Kocjan

Wojciech Kocjan

Senior Platform Engineer, InfluxData
Wojciech is an Engineer on the Deployments Team at InfluxData, focusing on automation of InfluxDB Cloud deployments across multiple public clouds and regions. He has a decade of experience working with multiple public clouds, and before that, worked in open source as a developer... Read More →

Effective Disaster Recovery The Day We Deleted Production pdf
Wednesday May 18, 2022 11:55 - 12:30 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  CI/CD

11:55 CEST

Network-aware Scheduling in Kubernetes - José Santos, Ghent University
Recent applications are latency-sensitive, demanding low latency between microservices in the application. Current scheduling algorithms in Kubernetes aim to reduce costs and increase resource efficiency, which is not enough for applications where end-to-end latency becomes a primary objective. Applications such as databases and multi-tier web services would benefit the most from network-aware scheduling policies that consider latency and bandwidth in addition to default resources (CPU and memory). We introduce a network-aware scheduling framework to tackle this challenge, including two controllers (AppGroup and NetworkTopology) and three scheduling plugins (TopologicalSort, NodeNetworkCostFit, and NetworkMinCost). The framework ensures bandwidth reservations and optimizes the end-to-end application latency since it schedules pods in an application with chained dependencies close to each other. We will show a demo highlighting the benefits of our framework.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for José Santos

José Santos

Ph.D. Candidate, Ghent University
José Santos is currently a Ph.D. Student of Computer Science in the IDLab Research Group at Ghent University - imec, Belgium. He obtained his M.Sc. degree in Electrical and Computers Engineering in July 2015 from the University of Porto, Portugal. Before joining IDLab, he was a Research... Read More →

KubeCon EU 2022 JoseSantos ChenWang final pdf
Wednesday May 18, 2022 11:55 - 12:30 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

11:55 CEST

Unlimited Data Science Libraries, One Container Image, No Installation! - Marcel Hild, Red Hat & Kenneth Hoste, Ghent University
Kubernetes' agility, versatility, and resource scaling make it a platform of choice for data science, especially for shared environments. However, data scientists often need to work with lots of different libraries, languages, and applications, often with multiple versions. Conventional approaches, with a legion of tailored images or a huge 20GB golden image, do not match the reality of production. In this session, we will demonstrate how you can leverage the concept of environment modules inside Kubernetes to solve the challenges of synchronously managing multiple containers of different types, making thousands of scientific libraries, languages and packages dynamically available in a simple way. Inspired by work done and heavily used in the High Performance Computing (HPC) community, we will share a specific implementation that brings this production-proven architecture to Kubernetes and talk about how you can implement it in your own environment.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Marcel Hild

Marcel Hild

Manager, Red Hat
Marcel Hild has 25+ years of experience in open source business and development. He co-founded a Linux consulting company, worked as a freelance developer, a Solution Architect for Red Hat, and core Developer for Cloudforms, a Hybrid Cloud Management tool. Now he researches the topic... Read More →
avatar for Kenneth Hoste

Kenneth Hoste

HPC System Administrator, Ghent University
Kenneth Hoste, a.k.a. 'boegel', is a computer scientist and FOSS enthusiast from Belgium. He holds a Masters (2005) and PhD (2010) in Computer Science from Ghent University. Since October 2010, he is a member of the HPC team at Ghent University (Belgium) where he is mainly responsible... Read More →

Unlimited Data Science Libraries, One Container Image, No Installation! pdf
Wednesday May 18, 2022 11:55 - 12:30 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Machine Learning + Data

11:55 CEST

Deep Dive into Minikube - Medya Ghazizadeh & Sharif Elgamal, Google
A deep dive into minikube's architecture and sharing top 20 useful tips on using minikube and sharing lessons from 5 years of maintaining minikube.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Medya Ghazizadeh

Medya Ghazizadeh

Technical Lead Manager, Google
Master of computer science from DePaul University in Chicago, minikube maintainer since 2019 and author of multiple open source projects !
avatar for Sharif Elgamal

Sharif Elgamal

Software Engineer, Google
:)

Minikube Talk KubeCon 2022 Spain pdf
Wednesday May 18, 2022 11:55 - 12:30 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, minikube

11:55 CEST

Flux Security Deep Dive - Stefan Prodan, Weaveworks
In this session Stefan will go deep into the security aspects of Flux v2. We'll start by explaining the Flux authorization model and how it relates to Kubernetes RBAC and account impersonation. Then we'll compare the soft and hard multitenancy models from a GitOps perspective. We'll explore the configuration options on how platform admins can lockdown Flux on multitenant environments and how they can onboard tenants onto clusters using the Flux CLI and Git. Finally we'll talk about the Flux roadmap for 2022.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Stefan Prodan

Stefan Prodan

Principal Engineer, Weaveworks
Stefan is a Principal Engineer at Weaveworks and an open source contributor to cloud-native projects. He is the creator of Flagger the progressive delivery operator for Kubernetes, and a core maintainer of the CNCF's Flux project. Stefan has over 15 years of experience with software... Read More →

flux security deep dive pdf
Wednesday May 18, 2022 11:55 - 12:30 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Flux

11:55 CEST

Overview and State of Knative - Mauricio Salatino, VMware & Carlos Santana, IBM
 As the most widely-adopted serverless platform on Kubernetes, Knative offers a simplified developer experience deploying and managing stateless and event-driven applications. In this session, we'll give attendees an overview of the Knative philosophy of being Kubernetes-native and working well with existing Kubernetes tools. Then we'll provide a demo of FaaS using Knative and conclude with a roadmap for what's next. Most importantly, we'll provide information on how you can get involved either as a contributor or end-user who wants to give feedback on its future direction. With its recent donation to the CNCF at the incubating level, there's never been a better time to get started with Knative.

Click here to view captioning/translation in the MeetingPlay platform!

Speakers
avatar for Carlos Santana

Carlos Santana

Principal Engineer, IBM
Carlos Santana is a Senior Principal Software Engineer at IBM. As an Architect for the IBM Cloud GTM (GoToMarket), he leads the architecture, integration, and development of Cloud Native Solutions that focus on Automation and CICD for IBM Software on Red Hat OpenShift. Carlos has... Read More →
avatar for Mauricio Salatino

Mauricio Salatino

Software Engineer, Diagrid
Mauricio works as an Open Source Software Engineer at @Diagrid, contributing to and driving initiatives for the Dapr OSS project. Mauricio also serves as a Steering Committee member for the Knative Project and Co-Leading the Knative Functions initiative. He published a book titled... Read More →

Wednesday May 18, 2022 11:55 - 12:30 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, Knative

11:55 CEST

Releasing Kubernetes Less Often and More Secure – The SIG Release Update - Adolfo García Veytia & Carlos Panato, Chainguard; Sascha Grunert, Red Hat; Stephen Augustus, Cisco
The Kubernetes Special Interest Group (SIG) Release is inviting you to join their project update at KubeCon! Adolfo, Carlos, Sascha and Stephen will speak about the latest changes to the SIG as well as its influence on the overall Kubernetes project. The session will cover how the SIG Release roadmap and vision maps to recent project development efforts, which enhancements to the general release process they’re currently working on, as well as the lessons learned from past release cycles. As part of that update, the Release Engineering subproject of SIG Release will speak about how the community hardens their software supply chain by driving towards full SLSA (Supply-chain Levels for Software Artifacts) compliance, including SBOM generation and container image signing. Do you wanna be part one of the largest Kubernetes SIGs? Then join this session to learn more about our latest efforts and how to contribute to them! Maintainers of other projects under the Kubernetes organization are strongly encouraged to attend this session to learn more about extending the SIG Release tools to their own releases.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Carlos Panato

Carlos Panato

Staff Engineer, Chainguard
Carlos Panato (@cpanato) is a Staff Software Engineer at Chainguard, Inc., who’s working on development and infrastructure using Kubernetes and containers. Previously, he’s worked on development, testing, processes, and management. He contributes to several CNCF/LF projects and... Read More →
avatar for Adolfo García Veytia

Adolfo García Veytia

Staff Software Engineer, Stacklok
Adolfo García Veytia (@puerco) is a staff software engineer with Stacklok. He is one of the Kubernetes SIG Release Technical Leads. He specializes in improvements to the software that drives the automation behind the Kubernetes release process. He is also the creator of the OpenVEX... Read More →
avatar for Stephen Augustus

Stephen Augustus

Head of Open Source, Cisco
Stephen is the Head of Open Source at Cisco. Across the open source ecosystem, Stephen holds a number of governance roles, including membership on the OpenSSF Governing Board, the OpenAPI Initiative Business Governing Board, the Kubernetes Steering Committee, and the TODO Group Steering... Read More →

Releasing Kubernetes Less Often and More Secure SIG Release Update pdf
Wednesday May 18, 2022 11:55 - 12:30 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, SIG Release

14:30 CEST

No Docker, No YAML and a Polyglot Developer Experience on Top of Kubernetes - Thomas Vitale, Systematic & Mauricio Salatino, VMware
Let's build a CaaS (Containers-as-a-Service) platform that delivers a similar experience to well-loved solutions like Google Cloud Run and Azure Container Apps. Those platforms allow you to run your applications without the need to know about containers or Kubernetes. They take your source code and remotely build and deploy your software while hiding away the complexity of Docker and Kubernetes. This presentation gives practical advice on how to build such a platform in a cloud provider-agnostic way on top of Kubernetes using only open-source projects.

Thomas and Mauricio will show how the platform can scale and provide developers with a polyglot environment to code, build and deploy their event-driven applications. The presentation will cover how tools like Knative, CloudEvents, Buildpacks, func CLI, and popular languages like Java, Go, and Python can be glued together to provide an optimized polyglot developer experience that can be tested and demoed in front of a live audience.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Mauricio Salatino

Mauricio Salatino

Software Engineer, Diagrid
Mauricio works as an Open Source Software Engineer at @Diagrid, contributing to and driving initiatives for the Dapr OSS project. Mauricio also serves as a Steering Committee member for the Knative Project and Co-Leading the Knative Functions initiative. He published a book titled... Read More →
avatar for Thomas Vitale

Thomas Vitale

Software Architect, Systematic
Thomas Vitale is a software engineer and architect focused on building cloud native, resilient, and secure applications and platforms. He works at Systematic (Denmark) and is the author of “Cloud Native Spring in Action” (Manning). Thomas likes contributing to open source projects... Read More →

Polyglot Developer experience on Kubernetes (KubeCon) pdf
Wednesday May 18, 2022 14:30 - 15:05 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

14:30 CEST

Kubernetes for Mac: How to Consume Shiny AWS Mac Shapes for iOS Builds - Madhuri Yechuri, Elotl & Zach Gray, Flare.build
iOS builds have traditionally run on manually managed Mac servers sitting in brick and mortar data centers. Availability of Mac compute shapes on AWS presents a unique opportunity to move these builds into the cloud along with the ease of managing them via Kubernetes, thereby simplifying Operations. This talk describes Flare.build’s journey of evaluating manually-managed vs Kubernetes-managed Mac compute shapes on AWS, lessons learnt, and suggested best practices.

Click here to view captioning/translation in the MeetingPlay platform!x
Speakers
avatar for Madhuri Yechuri

Madhuri Yechuri

Founder and CEO, Elotl Inc.
Madhuri is a systems engineer with 20+ years experience in database server technologies (Oracle), virtualization (VMware), and container technologies (ClusterHQ) before founding Elotl. Madhuri received her Masters in Computer Science from Indiana University Bloomington, and Bachelors... Read More →
avatar for Zach Gray

Zach Gray

CEO, Flare.build
As CTO at Scalio, Zach led product development and engineering for cutting-edge projects in the VR/AR, AI, big data and mobile spaces for industry leading companies before founding flare.build where he's developing next-gen build & test tooling for enterprise & hyperscale compani... Read More →

Wednesday May 18, 2022 14:30 - 15:05 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  CI/CD

14:30 CEST

The Risks of Single Maintainer Dependencies - John McBride, VMware
John McBride is a single maintainer for Cobra; a Go command line bootstrapping library and core dependency for many CNCF projects, including Kubernetes, Helm, Etcd, Istio, Linkerd, and many more. John will discuss the challenges of being a single maintainer on such an important project, the lottery factor, the need for contributor community, and the secure software supply chain implications this has for the entire CNCF ecosystem.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for John McBride

John McBride

Senior Member of Technical Staff, VMware
John McBride is a software engineer, open source enthusiast, and curious technologist working on cloud native platforms at VMware. Previously at Pivotal, John led teams delivering observability solutions to kubernetes and cloud foundry platforms. Currently, John is on the core engineering... Read More →

Risks of single maintainers Kubecon EU 22 jmcbride pdf
Wednesday May 18, 2022 14:30 - 15:05 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Community

14:30 CEST

Building Digital Twins for DFDS With Crossplane and Kubernetes - Tobias Andersen, DFDS & Matthias Luebken, Upbound
Constant movement and adaptation to change is the story of DFDS, a logistics company from Denmark. Every ship, truck, or warehouse needs to be fully connected and be able to drive autonomous and smart decisions. At the same time, customer and business demands change constantly, and software development teams need to build and update solutions at an ever-increasing rate. In this talk, Tobias and Matthias like to introduce DFDS’s decentralized and distributed problem space and how they have mastered this challenge by introducing Kubernetes based Digital Twins. They will talk about how to align software teams from all over the organization, and how a platform build on top of Crossplane and Backstage can guide and accelerate teams.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
TA

Tobias Andersen

Cloud Developer, DFDS
Tobias Andersen is a seasoned IT professional with 20+ years of experience in the field of distributed software development, an eager adopter of new technologies like containers, IoT, blockchain, and an active practitioner of Weng Chun. Recently, he has been focusing his energy on... Read More →
avatar for Matthias Luebken

Matthias Luebken

PM, Upbound
Matthias Lübken is a Product Manager at Upbound. He has experience with different aspects of software development and operations and is currently focussing on helping teams build their own dedicated Cloud platform. He enjoys the in-person exchange and has been a speaker at multiple... Read More →

Digital Twins at DFDS with Crossplane KubeCon EU 2022.pptx pdf
Wednesday May 18, 2022 14:30 - 15:05 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

14:30 CEST

Improving GPU Utilization using Kubernetes - Maulin Patel & Pradeep Venkatachalam, Google
Kubernetes supports efficient utilization of resources by enabling applications to request the precise amounts of resources it needs. Unlike fractional requests for CPUs, fractional requests for GPUs are not allowed in Kubernetes. GPU resources requested in the pod manifest must be an integer number. This means one GPU is fully allocated to one container even if the container only needs a fraction of GPU for its workload. Without the support for fractional GPUs, GPU resources are invariably over provisioned leading to a wastage. This is especially true for inference workloads that process a handful of data samples in real-time. To address this limitation, we have developed user-friendly solutions that allow a single GPU to be shared by multiple containers thereby improving utilization of GPUs and saving cost. In this talk, we will show the demos of our solutions and share performance results.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Maulin Patel

Maulin Patel

Group Product Manager, Google
Maulin Patel is a Group Product Manager at Google. Prior to his current role, he was a GM at GE and a Director at Philips Research. Maulin has a proven track record of innovations in IoT, AI/ML, cloud and smart buildings. He has experience in executing DoD, DoE, NSF and privately... Read More →
PV

Pradeep Venkatachalam

Software Engineer, Google
Pradeep Venkatachalam is a Senior Software Engineer on the GKE (Google Kubernetes Engine) team at Google Cloud. One of Pradeep’s key focus has been to improve the accelerators ecosystem built on GKE. Pradeep has been involved in a number of reliability initiatives as well as bringing... Read More →

Wednesday May 18, 2022 14:30 - 15:05 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Machine Learning + Data

14:30 CEST

Falco to Pluginfinity and Beyond - Leonardo Grasso & Jason Dellaluce, Sysdig
This track will walk you through the astonishing things happening in Falco: a cloud-native runtime security project, the de facto Kubernetes threat detection engine. Two core maintainers, Jason and Leonardo, will give you a practical overview of Falco and its history but also updates on recently introduced features and the evolution of its ecosystem. This talk will deep dive into a new and very amazing feature introduced in Falco: the plugin system! Plugins are a game-changer, making Falco evolve to the next level: the all-in-one tool for cloud security and this maintainer track will show you how!

Click here to view captioning/translation in the MeetingPlay platform!

Speakers
avatar for Leonardo Grasso

Leonardo Grasso

Falco Core Maintainer, Sysdig
Leonardo Grasso is an Open Source Software Engineer at Sysdig, based in Italy. He has a strong passion for software design and has long professional experience in the R&D field. Leonardo loves Linux, Kubernetes, Containers, Security, and building tools other engineers would like to... Read More →
avatar for Jason Dellaluce

Jason Dellaluce

Senior Open Source Engineer, Sysdig
Jason Dellaluce is an Open Source Engineer at Sysdig and a core maintainer of Falco, the CNCF tool for Cloud Native Runtime Security. On a daily basis, he contributes to the Falco Community and is exposed to Linux, Kubernetes, Containers, Security, eBPF, and the Open Source world... Read More →

KubeCon EU2022 Falco Maintainer Track Falco to Pluginfinity and Beyond Jason Dellaluce & Leonardo Grasso pdf
Wednesday May 18, 2022 14:30 - 15:05 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, Falco

14:30 CEST

Helm Project 2022: How You Can Benefit, How You Can Help - Scott Rigby, Weaveworks; Matt Butcher, Fermyon; Martin Hickey, IBM; Andrew Block, Red Hat
Helm is a widely used and stable CNCF project that manages packages for Kubernetes, and will continue to dependably deliver what users have grown to love. So, which direction will Helm go in 2022 and beyond? In this session, Helm maintainers will show you why you should continue to be excited about Helm, and what lies ahead. We’ll highlight key features that you can take advantage of – both tried and true features users have grown to love, as well as newly matured features from over the past year. For the dynamic future of Helm, we’ll cover how interested users like you can keep the momentum going by participating and even contributing to the project. We’ll preview what this looks like, from simple tasks that most users can get started with, to helping shape the vision of Helm 4.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Martin Hickey

Martin Hickey

Senior Technical Staff Member, Open Technologies, IBM
Martin Hickey is a Senior Technical Staff Member and an Open Source strategic leader at IBM. He has been contributing to various Open Source projects, most notably, Kubernetes, Helm, OpenTelemetry, OpenStack, and the Elastic community. Martin is a core maintainer of the Helm project... Read More →
avatar for Andrew Block

Andrew Block

Distinguished Architect, Red Hat
Andrew Block is a Distinguished Architect at Red Hat that works with organizations to design and implement solutions leveraging cloud native technologies. He specializes in Continuous Integration and Continuous Delivery methodologies with a focus on security to reducing the overall... Read More →
avatar for Scott Rigby

Scott Rigby

Developer Experience Engineer, Weaveworks
avatar for Matt Butcher

Matt Butcher

CEO, Fermyon
Matt Butcher (CEO) is a founder of Fermyon. He is one of the original creators of Helm, Brigade, CNAB, OAM, Glide, and Krustlet. He has written or co-written many books, including "Learning Helm" and "Go in Practice." He is a co-creator of the "Illustrated Children’s Guide to Kubernetes... Read More →

Wednesday May 18, 2022 14:30 - 15:05 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Helm

14:30 CEST

It’s All for the Users. More Durable, Secure, and Pluggable. KubeVirt v0.53 - Alice Frosi, Red Hat
If you liked KubeVirt before, you'll like it even better now, and if you ignored it before, it's time you tried it out. In the last year, KubeVirt has added numerous features, improving scalability, security, storage, network options, and usage for specialized hardware and edge applications. Join the KubeVirt contributors for a brief tour of what's new, including: - Additional traditional storage features for hotplug and snapshots - More mature high performance computing with SRIOV and vNUMA availability - Improved security with unprivileged VMs - Foundation for technical workstations using vGPU slicing - Don’t fear updates with mature Live Migrations - Improved automation with new like Argo CD and Tekton integrations - Rapid Kubernetes tenant cluster using ClusterAPI - On the verge to CNCF Incubator? We'll explain and even demo some of the new features. KubeVirt is going places, join our session to find out how it can help you go places too.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Alice Frosi

Alice Frosi

Principal Engineer, Red Hat
Alice is a Principal Software Engineer working on KubeVirt, virtualization, and containers. She focuses mostly on storage topics but she has fun exploring all possible combinations of containers and VMs.

KubeCon EU 2022 KubeVirt Maintainer Track pdf
kubecon demo video webm
Wednesday May 18, 2022 14:30 - 15:05 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, KubeVirt

14:30 CEST

State of NATS: Core, Persistence, & Materialized Views - Tomasz Pietrek, Synadia Communications
NATS is a high performance cloud native distributed communications utility that allows you to build globally available and secure applications based on streams and services that are both fast and simple to operate. In this talk you will learn about the advanced features of NATS JetStream persistence implementation that includes both Key-Value & Object Store use-cases. You will also see a demo showcasing the flexibility of the NATS newly added Materialized Views capabilities. We will also discuss how it integrates with other CNCF projects, and simplifies your distributed application code base with functions like: watches, history, & sealed streams that are seamlessly integrated via the NATS CLI & API.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Tomasz Pietrek

Tomasz Pietrek

Software Engineer, Synadia
Tomasz is a Software Engineer at Synadia, working on wide variety of topics related to NATS, including Kubernetes, Nats server, Rust Client and JetStream API. Before focusing on NATS, he held Principal Architect, Tech Lead and Solution Architect roles in companies spanning Fintech... Read More →

Wednesday May 18, 2022 14:30 - 15:05 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, NATS

14:30 CEST

Working your Cluster: Smarter Scheduling Decisions for Your Workloads - Madalina Lazar & Denisio Togashi, Intel
When deciding where to schedule your workloads, you have to consider more than just CPU and memory. Whether you are in 5G, AI/ML, HPC, or NFV, you have many more considerations to optimize your workloads. You may care about how busy the node is, how many GPU cards are attached, whether a minimal throughput is available, or whether the node is cooler than the temperature required for basic cooking. Fortunately, Kubernetes allows for extensions to its scheduling paradigm, which allows for new creative solutions going forward. Using these capabilities, we have created a way to use knowledge of your resources to impact your scheduling decisions. Telemetry Aware Scheduling and GPU Aware Scheduling, both open-source projects, enable you to use a variety of metrics in intelligent scheduling. In this talk, we will explain how to deploy and configure your system to handle your varied use cases.

Click here to view captioning/translation in the MeetingPlay platform!

Speakers
avatar for Madalina Lazar

Madalina Lazar

Software Engineer, Intel
Madalina Lazar is a Software Engineer and she is a member of the Cloud Native Orchestration team at Intel. She works on Telemetry Aware Scheduling within the Platform Aware Scheduling project and she enjoys leveraging data to solve real-life problems.
avatar for Denisio Togashi

Denisio Togashi

Software Engineer, Intel
Denisio Togashi is a Software Engineer in the Cloud Native Orchestration team at Intel. He works on Telemetry Aware Scheduling within the Platform Aware Scheduling project to help improve and tweak best performance.

working your cluster smarter scheduling decisions for your workloads pdf
Wednesday May 18, 2022 14:30 - 15:05 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Performance

14:30 CEST

Trampoline Pods: Node to Admin PrivEsc Built Into Popular K8s Platforms - Yuval Avrahami & Shaul Ben Hai, Palo Alto Networks
Security teams work to prevent the next container escape while attackers do the opposite. Inevitably, we sometimes lose this battle, but we can still win the fight! It's all about *containing* the next container escape - making sure a rogue node cannot take over the entire cluster. K8s has done a great job at de-privileging the node agent, the Kubelet, but nodes also host other credentials - their pods' service account tokens. Following an escape, the attacker can easily harvest and abuse tokens of neighboring pods.

In this talk, Yuval and Shaul will introduce the concept of Trampoline Pods - pods so powerful that if their node goes rogue, it could launch devastating attacks against the cluster and in some cases completely take over it. Covering managed K8s services and common cluster add-ons, they'll reveal the trampoline pods installed by popular K8s platforms. They'll also demo exploits, discuss mitigations, and release rbac-police: a tool that detects trampoline pods and K8s privEscs.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Yuval Avrahami

Yuval Avrahami

Principal Security Researcher, Palo Alto Networks
Yuval Avrahami is a principal security researcher at Palo Alto Networks, dealing with hacking and securing anything related to containers and cloud. Yuval found and disclosed numerous vulnerabliites across the cloud-native landscape, including container breakouts, Kubernetes CVEs... Read More →
avatar for Shaul Ben Hai

Shaul Ben Hai

Security Researcher, Palo Alto Networks
Shaul Ben Hai is a senior security researcher at Palo Alto Networks, focusing on Cloud open-source vulnerabilities in the context of container security. Shaul spent the last year researching vulnerabilities in k8s and open-source frameworks and building innovative solutions that improve... Read More →

Trampoline Pods Node to Admin PrivEsc Built Into Popular K8s Platforms.pptx pdf
Wednesday May 18, 2022 14:30 - 15:05 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

14:30 CEST

K8s and Active Directory Can Be Friends! How to Use Dex to Bridge the Gap - Onkar Bhat, Kasten by Veeam
So, you’ve decided to migrate your applications to Kubernetes, but you still want to leverage your legacy Active Directory services to authenticate access to those applications. With Dex, this isn’t just possible, it’s easy! Dex is an identity service that uses OpenID connect to authenticate apps by configuring connectors to defer authentication to an external entity, such as an AD server using the LDAP protocol. Onkar has worked with multiple organizations to help them deploy Dex and configure the LDAP connector to meet such authentication requirements. During this hands-on tutorial, attendees will set up an open source AD server and add users and groups, then configure the Dex LDAP connector. Onkar will guide them through the process step-by-step, then wrap up with a demonstration of how to use Dex to authenticate access to a sample application. You’ll leave with practical experience and confidence to deploy the same configuration in a production environment.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Onkar Bhat

Onkar Bhat

Engineering Manager, Kasten by Veeam
Onkar Bhat is an Engineering Manager at Kasten by Veeam. His focus has been in the areas of Authentication, Role-based Access Control (RBAC), APIs, Monitoring and Multi-cluster management for the purpose of cloud native data protection. He has previously worked in the areas of data... Read More →

Kubecon EU 2022 Tutorial Onkar Bhat final pdf
Wednesday May 18, 2022 14:30 - 16:00 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Security + Identity + Policy, Tutorial

15:25 CEST

Disrupting the Downtime Continuum - Taylor Thomas & Brooks Townsend, Cosmonic
At this point in Cloud Native development, many people run headlong into the “day 2” operational headaches that come with running containers at scale. One of the most frustrating is handling dependency patching and version migration. We’ve all been there. A vulnerability is released and thus begins a frantic scramble to patch hundreds of container images and release them everywhere. WebAssembly and wasmCloud offer a better way! This demo-heavy talk will start with a brief introduction to WebAssembly and what it can enable. Then we will discuss how wasmCloud leverages WebAssembly to make creating and running an application at scale a breeze. We’ll then demonstrate downtime-free migration, patching, and failover between clouds live on stage with no changes to configuration or code.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Taylor Thomas

Taylor Thomas

Director of Engineering, Cosmonic
Taylor Thomas is an Engineering Director working on WebAssembly platforms at Cosmonic. He actively participates in the open source community and is one of the creators of Krustlet and Bindle. He is currently core maintainer of wasmCloud, Bindle, and Krustlet. He is a regular speaker... Read More →
avatar for Brooks Townsend

Brooks Townsend

Lead Software Engineer, Cosmonic
Brooks is a Lead Software Engineer at Cosmonic, focusing on harnessing WebAssembly to alleviate the pains of modern software development. Brooks started his software development career with Critical Stack, a Kubernetes container orchestration platform that is now open source. He joined... Read More →

Disrupting the Downtime Continuum pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

15:25 CEST

Been There, Done That: Tales of Burnout from the Open Source World - Savitha Raghunathan, RedHat & Divya Mohan, SUSE
Staying home has erased the line between work and life for many folks in the tech industry and around the world. Initially the extra commute time was utilized by many, including the speakers, for learning new tools, skills, and technologies. This boon eventually turned out to be a double-edged sword with overcommitting at or/and outside work leading to an overall feeling of overwhelming stress. In this talk, Divya & Savitha will share their own experience with overcommitting over the course of the pandemic and reflect on how they could have handled it better. At the end of the session, attendees will walk away knowing when to stop saying yes and how to draw their own boundaries thereby reclaiming their work-life balance.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Savitha Raghunathan

Savitha Raghunathan

Senior Software Engineer, Red Hat
Savitha Raghunathan is a Senior Software Engineer at Red Hat, working on Container Migration and Application Modernization technologies. She leads K8s sig-security-documentation sub-project aiming to create security awareness through docs. As a maintainer of the Konveyor project... Read More →
avatar for Divya Mohan

Divya Mohan

Principal Technology Advocate, SUSE
Divya is a Senior Technical Evangelist at SUSE, where she contributes to Rancher’s cloud native open source projects. She co-chairs the documentation for the Kubernetes & LitmusChaos projects & has previously worked extensively in the systems engineering space during her tenure... Read More →

Been there, done that pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Community

15:25 CEST

Public Technical Oversight Committee (TOC) Meeting - Moderated by Chris Aniszczyk, CTO, The Linux Foundation
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Chris Anisczcyk

Chris Anisczcyk

CTO, Linux Foundation (CNCF)
Chris Aniszczyk is an open source executive and engineer with a passion for building a better world through open collaboration. He's currently a CTO at the Linux Foundation focused on developer relations and running the Open Container Initiative (OCI) / Cloud Native Computing Foundation... Read More →

Wednesday May 18, 2022 15:25 - 16:00 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  Community

15:25 CEST

Confidential Containers Explained - James Magowan, IBM & Samuel Ortiz, Apple
Confidential Containers (https://github.com/confidential-containers) enable cloud native confidential computing (https://confidentialcomputing.io/faq/) leveraging a variety of hardware platforms and technologies, standardising the confidential computing at the container level, helping users to deploy confidential workloads using already familiar workflows and tools; and in this Panel we're bringing together contributors from different hardware vendors, different projects (in different layers of the stack), and different companies to discuss and answer questions about this new complex technology. Topics for discussion will include: * How do we realise the benefits of cloud native confidential computing? * What impact is there to the Cloud Native User Experience? * What new considerations/concepts does confidential containers introduce? Note that this panel is a follow-up on what has been developed since https://www.youtube.com/watch?v=zTn9Xt1k1OA was presented.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for James Magowan

James Magowan

IBM Hyper Protect Kubernetes Architect, IBM
James works within the IBM Hyper Protect family of offerings which deliver Confidential Computing to the Cloud using IBM LinuxONE and IBM Z Systems technology. He has responsibility for the technical architecture to leverage IBM Secure Execution for Linux capability (Trusted Execution... Read More →
SO

Samuel Ortiz

Software Engineer, Apple

Confidential Containers Explained pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

15:25 CEST

How Cookpad Leverages Triton Inference Server To Boost Their Model Serving - Jose Navarro & Prayana Galih, Cookpad
The adoption of MLOps practices and tooling by organizations has considerably reduced the pain points to productionise Machine Learning models. However, with the increase of the number of models available by a company to deploy, the diversity of frameworks used to train those models and the different infrastructure required to run each model, new challenges arise for Machine Learning Platform teams e.g: How can we deploy new models from the same or different frameworks concurrently? How can we improve throughput and optimize resource utilization in our serving infrastructure, especially GPUs? Cookpad ML Platform Engineers will talk in this session how Triton Inference Server, an open-source model serving tool from Nvidia, can simplify the process of model deployment and optimise the resource utilisation by efficiently supporting concurrent models on single GPU or CPU, and multi-GPU servers.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
JN

Jose Navarro

ML Platform Lead Engineer, Cookpad
Jose Navarro is Machine Learning Platform Lead Engineer making everyday cooking fun at Cookpad. He is passionate about empowering Machine Learning teams with tools and practices that allow them to own their systems end to end. Jose has talked in MLOps conferences before about the... Read More →
PG

Prayana Galih

Machine Learning Infrastructure Engineer, Cookpad
Pray is interested in general software engineering and architecture, with a current focus in machine learning tools and infrastructure. Outside of working hours he enjoys spending time with his family, a lot of coffee, and video games.

Cookpad slides pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Machine Learning + Data

15:25 CEST

Jaeger: Present and Future - Pavol Loffay, Red Hat & Jonah Kowall, Logz.io
In this session, we will start with an introduction to the Jaeger distributed tracing project and the basics of distributed tracing. For the deeper dive, we will discuss the future of Jaeger and its relation to OpenTelemetry. We will cover how OpenTelemetry and Jaeger work together to unlock new use cases for operational monitoring using the new monitoring tab, which adds metrics capabilities to Jaeger UI. We will also take a closer look at the Jaeger Kubernetes operator and discuss deployment strategies. Jaeger is the most popular open-source distributed tracing backend. We are always seeking new collaborators, contributors, and users. We need your help! Whether your goal is to get acquainted with Jaeger and distributed tracing or to keep abreast with the latest and greatest, please join us!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Pavol Loffay

Pavol Loffay

Principal Software Engineer, Red Hat
Pavol Loffay is a principal software engineer at Red Hat working on open-source observability technology for modern cloud-native applications. Pavol contributes and maintains Cloud Native Computing Foundation (CNCF) projects OpenTelemetry and Jaeger. In his free time, Pavol likes... Read More →
avatar for Jonah Kowall

Jonah Kowall

VP Product Management, Aiven
Jonah Kowall, computer scientist and open-source contributor to Jaeger (Maintainer),  OpenSearch (Leadership Committee Member), OpenTelemetry. A technical leader across startups to large enterprises specialized in operations, security, and performance. Led Gartner research on monitoring... Read More →

Jaeger Kubecon EU 2022 Upload pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Jaeger

15:25 CEST

Kubernetes Event-driven Autoscaling with KEDA - Zbynek Roubalik, Red Hat & Jorge Turrado, Docplanner Tech
Nowadays, the popularity of event-driven applications is rising, they enable us to design and develop scalable, distributed, and flexible systems. Kubernetes platform brings the distributed and flexible aspect, though it doesn't provide any built-in way to deal with event-driven scaling properly. Scaling based on CPU and/or memory usage doesn’t fit well with event-driven processes. The majority of autoscaling solutions are usually complex, and their scopes are too attached to a specific provider. KEDA came to solve these problems, providing a simple way to gather the metrics from external sources and translate them into Kubernetes metrics to drive the event-driven autoscaling. During this session, we will introduce KEDA: what it is, how it works, show it in action, and discuss future development.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Zbynek Roubalik

Zbynek Roubalik

CTO, Kedify
Zbynek is a founder and CTO of Kedify, a company specializing in enterprise-grade autoscaling of Kubernetes applications. He is also the maintainer of KEDA, a CNCF project focused on enabling autoscaling for event-driven applications on Kubernetes. Zbynek has previously served as... Read More →
avatar for Jorge Turrado

Jorge Turrado

Principal SRE, SCRM Lidl International Hub
I have over 8 years of experience working in software development, including development, infrastructure architecture, and monitoring. Currently, I am an SRE at SCRM Lidl International Hub, as well as a Microsoft MVP award recipient for 4 years in a row and a CNCF Ambassador. I spend... Read More →

KubeCon EU 2022 KEDA talk pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, KEDA

15:25 CEST

Notary v2: Deep Dive and Open Issues - Justin Cormack, Docker & Steve Lasker, Microsoft
Notary v2 is a community project to solve the issues that the existing Notary project has that have hindered widespread adoption. The project is a community initiative with the main registry operators, including Docker, Microsoft and Amazon, as well as a broad community of other interested parties and end users. This talk will cover an overview of the project status and cover the open issues and current working areas for the project, around formats and standardisation, open security issues and future work.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Steve Lasker

Steve Lasker

Principal PM Architect, Microsoft
Steve is a PM Architect for Registries at Microsoft, and an OCI & ORAS Artifacts maintainer. He's working on Notary v2 and Microsofts secure supply chain offerings. Prior to joining Microsoft, Steve worked in software consulting and broadcast engineering, where he learned the balance... Read More →
avatar for Justin Cormack

Justin Cormack

Chief Technology Officer, Docker, Inc
Justin is the CTO at Docker, and a member of the CNCF TOC. He has spent a lot of time working on security in the container ecosystem. He is a maintainer on the Notary project for container security.

KubeCon EU 2022 Notary v2 pdf
KubeCon EU 2022 Notary v2 pptx
Wednesday May 18, 2022 15:25 - 16:00 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, Notary

15:25 CEST

Autoscaling Kubernetes Deployments: A (Mostly) Practical Guide - Natalie Serrino, New Relic (Pixie team)
Sizing a Kubernetes deployment can be tricky. How many pods should it have? How much CPU/memory is needed per pod? Is it better to use a small number of large pods or a large number of small pods? What’s the best way to ensure stable performance when the load on the application changes over time? Luckily for anyone asking these questions, Kubernetes provides rich, flexible options for autoscaling deployments. This session cover the following topics: - Factors to consider when sizing your Kubernetes application - Horizontal vs Vertical autoscaling - How, when, and why to use the Kubernetes custom metrics API - Practical demo: Autoscaling with application metrics from Prometheus, Linkerd, Pixie (request throughput/latency, number of shoes purchased in my web store) - Impractical demo: A Turing-complete autoscaler!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Natalie Serrino

Natalie Serrino

Principal Engineer, New Relic
Natalie Serrino is a Principal Engineer at New Relic working on the Pixie open source project. She focuses on Pixie’s data layer, more specifically, the PxL language, the PxL compiler, and Pixie’s edge query engine for analytics.

Autoscaling Kubernetes Deployments a (Mostly) Practical Guide pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Performance

15:25 CEST

How Attackers Use Exposed Prometheus Server to Exploit Kubernetes Clusters - David de Torres Huerta & Miguel Hernández, Sysdig
Prometheus has become the standard for monitoring Kubernetes services. It comes with a set of helpful exporters, and Kubernetes offers several metrics endpoints directly through the API. These features enable monitoring and troubleshooting of most situations that SREs face on a daily basis. But, what if an attacker accesses your Prometheus server? How much information can they get for fingerprinting the cluster? Kernel versions, IP addresses, instance types, library versions…the list goes on and on. In this session, you will learn how attackers use this information in the first part of reconnaissance, to see if you are vulnerable. The speakers will share - What secrets they collect to fingerprint your Kubernetes cluster (hint: they're not after your timeseries) - How to leverage this information internally to secure your cluster - How to prevent the exposition of sensitive information No matter how many safety best practices you apply, you must be aware of every link of the chain.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for David de Torres Huerta

David de Torres Huerta

Engineer Manager, Sysdig
David is Manager of Engineering at Sysdig and has studies on Computer Science and Cultural and Social Anthropology. Previously he worked as CTO in a company specialized in IoT for energy metering and Industry 4.0. He is a computer engineer and collaborates with open source projects... Read More →
avatar for Miguel Hernández

Miguel Hernández

Security content engineer, Sysdig
Miguel is a student for life with a passion for innovation. He has spoken at several cyber-security conferences, including HITB, RootedCon, TheStandoff, and Codemotion. Miguel spent the last six years working in security research at big tech companies. In addition to contributing... Read More →

KubeCon EU 2022 Kubernetes fingerprinting with Prometheus pdf
Wednesday May 18, 2022 15:25 - 16:00 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

16:30 CEST

From Kubernetes to PaaS to … Err, What’s Next? - Daniel Bryant, Ambassador Labs
Developers building applications on Kubernetes today are being asked to not just code applications -- they are also responsible for shipping and running their applications, too. We often talk about needing a Kubernetes platform, but are we really looking for a PaaS? Or instead, are we looking for some kind of developer control plane with a Goldilock-sized collection of tools that provides just the right amount of platform? This talk will look back on my experience of building platforms, both as an end-user and now as part of an organization helping our customers do the same. The key takeaways are: - Treat platform as a product - Realize that you can’t have good developer experience (DevEx) without good UX - Focus on workflows and tooling interoperability We’ll wrap this talk with a walk-through of the CNCF ecosystem through the developer control plane lens, and look at what’s next in the future of this important emerging category.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Daniel Bryant

Daniel Bryant

Independent Tech Consultant, Big Picture Tech
Daniel Bryant currently works as an independent technical consultant. His expertise focuses on ‘DevOps’ tooling, cloud/container platforms, and microservice implementations. Daniel is a Java Champion who contributes to several open source projects. He also writes for InfoQ, O’Reilly... Read More →

KubeCon EU 2022 Slides Final From Kubernetes to PaaS to Err Whats Next pdf
Wednesday May 18, 2022 16:30 - 17:05 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

16:30 CEST

Prow! Leveraging Developer-Centric CI for Your OSS Project! - Nabarun Pal, VMware & Arsh Sharma, Okteto
Prow is a CI system maintained by Kubernetes SIG Testing to test Kubernetes on Kubernetes. Prow is designed as a pluggable system of components and it can be used as a generic CI system. The robust architecture of Prow can lead to challenges in deploying it. In the talk, we will navigate the challenges faced when deploying and using Prow, including setting up the Prow control plane components, configuring access for GitHub repos, and enabling Prow plugins. Prow is used by large projects in the CNCF landscape like Kubernetes, Knative, cert-manager, Falco, to name a few. Even though a lot of these projects have deployed Prow successfully, it is a challenge to set up Prow. The talk will highlight the common pitfalls and gotchas that one will run into when deploying Prow. The talk would cover * A roundup of Prow Architecture * Cloud resources required for Prow and setting them up * Capabilities of Prow like running tests, using GitHub comments for interaction, auto merging pull requests.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Nabarun Pal

Nabarun Pal

Staff Engineer at VMware, Kubernetes Steering Committee and Maintainer, Broadcom
Nabarun is a Staff Software Engineer at VMware, a maintainer of the Kubernetes project, an elected Kubernetes Steering Committee member and a chair of Kubernetes SIG Contributor Experience. He is a Release Manager for Kubernetes and has been the Kubernetes 1.21 Release Team Lead... Read More →
avatar for Arsh Sharma

Arsh Sharma

Developer Experience Engineer, Okteto
Arsh is a Developer Experience Engineer at Okteto. He is a CNCF Ambassador and was awarded the Kubernetes Contributor Award for his contributions in 2021. He has also led the CI Signal Team in the 1.25 Kubernetes Release. Previously, he worked at VMware and was also a contributor... Read More →

Wednesday May 18, 2022 16:30 - 17:05 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  CI/CD

16:30 CEST

Good Governance Practices for CNCF Projects - Dawn Foster, VMware
Too many maintainers think they don’t need governance ... until something goes wrong. Undefined or inadequate governance results in a lack of transparency that causes confusion over how decisions are made, unrealistic expectations, and unresolved disagreements. The CNCF helps projects adopt good governance practices with a focus on fair and transparent governance from sandbox to incubating to graduated. This talk will cover * Why governance is important * Selecting an appropriate governance model * Templates with patterns that work well to bootstrap CNCF projects * The role of mission, values, and scope in setting expectations * Defining roles, responsibilities, processes, and procedures within your governance model * Contributor ladders to help people move into leadership positions * The governance pros and cons of contributing a project to the CNCF The audience will get practical advice about creating fair and neutral governance structures and processes for open source projects.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dawn Foster

Dawn Foster

Director of Data Science, CHAOSS
Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Good Governance CNCF Projects pdf
Wednesday May 18, 2022 16:30 - 17:05 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Community

16:30 CEST

Supporting Long-Lived Pods Using a Simple Kubernetes Webhook - Clément Labbe, Slack
Today's applications strive to boot fast, be stateless, and handle unexpected terminations gracefully. However, some applications like distributed caches can take a while to warm up to a running state, while batch workers would rather avoid being terminated before they're done. At Slack, such applications found their home in Kubernetes thanks to a two-sided system: one one hand an admission webhook injects tolerations in pods to inform their requirement to be long-lived, and on the other hand a custom service taints nodes with their uptime. This results in pods desiring a long life to be scheduled on young nodes less likely to be terminated early. This talk will first describe how to write a simple Kubernetes admission webhook (https://github.com/slackhq/simple-kubernetes-webhook) to inject tolerations in pods, then move onto the symbiotic node tainting system, and end with gotchas and some metrics on how this long-lived pod support is used at Slack.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Clément Labbe

Clément Labbe

Senior Software Engineer, Cloud, Slack
Clem is a cloud engineer approaching a decade of passionately working with distributed systems and web technologies. He loves solving application delivery in DevOps environments by developing tools in Go, and building resilient infrastructure using Kubernetes on AWS or GCP. 18 months... Read More →

min pod lifespan v3 pdf
Wednesday May 18, 2022 16:30 - 17:05 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

16:30 CEST

Accelerating High-Performance Machine Learning at Scale in Kubernetes - Alejandro Saucedo, The Institute for Ethical AI & Machine Learning & Elena Neroslavskaya, Microsoft
Identifying the right tools for high-performance production machine learning may be overwhelming as the ecosystem continues to grow at break-neck speed. In this industry collaboration we aim to provide a hands-on guide on how practitioners can productionize optimized machine learning models in cloud native ecosystems using production-ready open source frameworks. We will dive into a practical use-case, deploying the renowned GPT-2 NLP machine learning model in Kubernetes leveraging the ONNX Runtime from the Seldon Core Triton server, which will provide us with a scalable production NLP microservice serving the ML model that can power intelligent text generation applications. We will present some of the key challenges currently being faced in the MLOps space, as well as how each of the tools in the stack interoperate throughout the production machine learning lifecycle.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Alejandro Saucedo

Alejandro Saucedo

Engineering Director, Seldon Technologies
Alejandro Saucedo is the Director of Machine Learning Engineering at Seldon Technologies, where he leads teams of machine learning engineers focused on the scalability and extensibility of machine learning deployment and monitoring products with over 5 million installations. Alejandro... Read More →
avatar for Elena Neroslavskaya

Elena Neroslavskaya

Cloud Solution Architect, Microsoft
Cloud Solution Architect and Technology Enthusiast at Microsoft. Love everything Cloud Native and ML. Working with many client on serving their ML models and optimizing the processes.

Wednesday May 18, 2022 16:30 - 17:05 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Machine Learning + Data

16:30 CEST

KubeEdge: From Fixed Location to Movable Edge, Latest Updates and Future - Kevin Wang (Zefeng), Huawei & Yin Ding, Google
KubeEdge is an open source edge computing framework that extends the power of kubernetes from central cloud to edge. Since last met, KubeEdge has made big progress on user adoption, community development, cross-community collaborations. In this talk, Kevin and Yin will cover: 1. latest user adoptions in several new industries, including: cloud native satellite, smart vehicles, offshore oil fields, etc; 2. development updates, including: significant scalability improvement, brand new device mapping interface, 3. Project roadmap, SIG and subproject updates. 4. Useful informations on how new contributors to get involved. There will be an open Q&A for attendees to ask questions.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Kevin Wang

Kevin Wang

CNCF TOC member, Ambassador, Kubernetes emeritus Maintainer, Founder and Maintainer of multiple CNCF projects, Huawei
Kevin Wang has been an outstanding contributor in the CNCF community since its beginning and is the leader of the cloud native open source team at Huawei. Kevin has contributed critical enhancements to Kubernetes, led the incubation of the KubeEdge, Volcano, Karmada projects in CNCF... Read More →
avatar for Yin Ding

Yin Ding

Engineering Manager, Google
Yin Ding, an Engineering Manager at Google, lead the Kubernetes Hardening team and brings over 15 years of expertise in large-scale and distributed computing. As a co-founder of the CNCF KubeEdge open-source project and the TSC Chair of LF Edge Akraino, Yin Ding has made significant... Read More →

KubeCon EU 2022 KubeEdge pdf
Wednesday May 18, 2022 16:30 - 17:05 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, KubeEdge

16:30 CEST

Maintainers, Project Services and CNCF - Amye Scarvada Perrin & Jeffrey Sica, Cloud Native Computing Foundation
Curious about the support that CNCF provides for projects?

Come join a conversation with Amye Scavarda Perrin, Director of Developer Programs, and Jeffrey Sica, Principal Developer Experience Engineer as they discuss options for projects, maintainers, and help answer questions from project maintainers about where to go for more resources.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Amye Scavarda Perrin

Amye Scavarda Perrin

Director of Developer Programs, Cloud Native Computing Foundation
Amye is the Director of Developer Programs at the Cloud Native Computing Foundation. 
avatar for Jeffrey Sica

Jeffrey Sica

Head of Projects, CNCF
Jeffrey (@jeefy) is Head of Projects at the CNCF, with a focus on improving community and project automation. Before that, he worked at Red Hat and the University of Michigan focusing on Cloud Native technologies and CICD patterns. Jeffrey has been a contributor to upstream Kubernetes... Read More →

Wednesday May 18, 2022 16:30 - 17:05 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track

16:30 CEST

Open Policy Agent (OPA) Intro & Deep Dive - Anders Eknert, Styra & Will Beason, Google
Come to this session to learn about the Open Policy Agent (OPA) project. OPA is a general-purpose policy engine that solves a number of policy-related use cases for Kubernetes, microservices, CI/CD, cloud, and more. During this session the OPA maintainers will introduce the project for newcomers and then provide updates on the latest and greatest features landing in OPA and OPA Gatekeeper. If you are interested in policy and security as it relates to cloud native technology, this session is for you.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Anders Eknert

Anders Eknert

Developer Advocate, Styra
Developer advocate at Styra. Interested in all things around identity and access control. Maintainer of two kids.
avatar for Will Beason

Will Beason

Senior Software Engineer, Google
I'm a maintainer for Gatekeeper and OPA Frameworks. I was recently awarded a Harrington Fellowship at the University of Texas at Austin, so I'll be pursuing a PhD studying the development of sustainable, ethical AI starting this fall.

OPA KubeConEU pdf
Wednesday May 18, 2022 16:30 - 17:05 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, Open Policy Agent

16:30 CEST

Getting the Optimal Service Efficiency That Autoscalers Won’t Give You - Mauro Pessina, Moviri
A challenge when tuning a Kubernetes microservices application is identifying the container size (CPU and Memory), due to frequent application changes and varying traffic patterns. Kubernetes autoscalers are the standard solution to automatically adjust Kubernetes container resources for service efficiency. We present the results of an extensive tuning activity we successfully conducted on a Kubernetes application delivering business-critical financial services to SMB customers. Our goal was to minimize cloud cost without compromising on performance of this application. The unexpected result was that configurations minimizing the service cost were not recommended by the autoscaler. Indeed, autoscalers work by adjusting resource sizing wrt the historical usage, without being aware of the actual cost of cloud resources and of the impact on application performance. In our session, we illustrate how you can use our exploratory testing approach we leveraged to get these results.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Mauro Pessina

Mauro Pessina

Performance Engineer, Moviri
Mauro Pessina has more than 10 years of experience as a Performance Engineer working with best-in-class performance testing and observability platforms. Today, Mauro leads the Performance Engineering team at Moviri with a special focus on continuous performance optimization of modern... Read More →

Moviri Getting the optimal service efficiency that autoscalers won’t give you pdf
Wednesday May 18, 2022 16:30 - 17:05 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Performance

17:25 CEST

Automated Progressive Delivery Using GitOps and Service Mesh - Yasen Simeonov & Henrik Blixt, Intuit
Intuit is rolling out progressive delivery together with service mesh, using metrics from the mesh to automate analysis on the health of a new release. This is our next step towards more sophisticated techniques like AI/ML-driven analysis. As a FinTech Technology company with tens of millions of users and thousands of services, with many being very seasonal, we were facing a wide variety of service performance and traffic patterns that made patterning analysis templates challenging. This session discusses and demos how Intuit leverages Argo Rollouts in combination with Envoy and Service Mesh to provide automatic and declarative progressive delivery. Attendees will learn about the challenges we faced, our learnings and work we had to overcome those challenges Intuit has been heavily involved in building tools for progressive analysis with Argo Rollouts and we are now rolling this out at large scale together with service mesh. This is the story on how and what worked in production.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Henrik Blixt

Henrik Blixt

Group Product Manager - Platform and Open Source, Intuit
Henrik is a Group Product Manager at Intuit, leading a team that's responsible for the core backend platform, open source and developer experience in the Developer Experience organization, providing developers with tools and delightful experiences across networking, cloud and serverless... Read More →
avatar for Yasen Simeonov

Yasen Simeonov

Senior Product Manager, Intuit
Yasen is a Senior Product Manager leading developer experience initiatives at Intuit for Service Mesh and API Gateway. His experience is mainly in the area of networking, network security & service connectivity. Prior to Intuit Yasen was working for VMware leading their Kubernetes... Read More →

Wednesday May 18, 2022 17:25 - 18:00 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  CI/CD

17:25 CEST

OSS Docs and How to Scale Them: Common Themes From the CNCF Ecosystem - Celeste Horgan, CNCF
The first interaction new users have with an open source project is documentation. Documentation is a key adoption driver for open source projects, and the professionalism, completeness, and presentation of your documentation has a dramatic impact on how your project is perceived by potential users. How do you get your project’s docs to shine? How do you set your tooling up to support you as you grow? What metrics can we use to evaluate the quality of a project’s documentation? In this talk we use data from the CNCF’s documentation assessment service to give an overview of common issues we see with open source project’s documentation and how to resolve them. She breaks out these issues by project maturity and community size, and discusses how a given project’s documentation needs change as it grows. Finally, we discuss how projects can best get documentation done as they grow, based on what we’ve seen work in various CNCF project communities.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
CH

Celeste Horgan

Staff Technical Writer, Stripe
Celeste Horgan has been a staff technical writer at the Cloud Native Computing Foundation (CNCF) since 2019. Celeste manages the CNCF’s techdocs team and advises projects on best practices for documentation, in addition to helping teams solve project-specific docs challenges. Celeste... Read More →

Wednesday May 18, 2022 17:25 - 18:00 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Community

17:25 CEST

Tower of Babel: Making Apache Spark, Kubeflow, and Kubernetes Play Nice - Holden Karau, Netflix
Working with big data matrices is challenging, Kubernetes allows users to elastically scale, but can only have a pod as large as a node, which may not be large enough to fit the matrix in memory. While Kubernetes allows for other paradigms on top of it which allows pods to coordinate on individual jobs, setting them up and making them play nice with ML platforms is not straightforward. Using Apache Spark and Apache Mahout we can work with matrices of any dimension and distribute them across an unbounded number of pods/nodes, and we can use Kubeflow to make our work quickly and easily reproducible. In this talk, we’ll discuss how we used Apache Spark and Mahout to denoise DICOM images of lungs of COVID patients and published our Pipeline with Kubeflow to make the process easily repeatable which could help doctors in more resource limited hospitals, as well as other researchers seeking to automate the detection of COVID.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Holden Karau

Holden Karau

Open Source Engineer, Netflix
Holden Karau is a queer transgender Canadian, Apache Spark committer, Apache Software Foundation member, and an active open source contributor. She also extends her passion for building community with industry projects including Scaling for Python for ML and teaching distributed computing... Read More →

Kubeflow for COVID (3) pdf
Wednesday May 18, 2022 17:25 - 18:00 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Machine Learning + Data

17:25 CEST

Kubernetes Steering Committee AMA - Christoph Blecker, Red Hat; Bob Killen, Google; Tim Pepper & Davanum Srinivas, VMware; Paris Pittman, Apple; Stephen Augustus, Cisco
The steering committee is tasked with decision-making and oversight with all things related to Kubernetes. This panel discussion is a chance for some navel gazing on where we are today, what got us here and where we are headed to next. This will also be a chance for the steering committee to meet face to face with their constituents in the community and wider ecosystem. https://github.com/kubernetes/steering

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Bob Killen

Bob Killen

OSS Program Manager, Google
Bob is a Program Manager at the Google Open Source Programs Office with a focus on Cloud Native computing. He serves the Kubernetes project as a Steering Committee member and is recently stepped down as chair of the Contributor Experience SIG. Bob comes from an academic background... Read More →
avatar for Tim Pepper

Tim Pepper

Principal Engineer, VMware
Tim Pepper is a Principal Engineer in VMware's Open Source Technology Center with over 25 years in open source, working as an open source developer advocate and contributor to Kubernetes (emeritus Steering Committee elected member, emeritus Code of Conduct Committee elected member... Read More →
avatar for Paris Pittman

Paris Pittman

various project roles, independent
Paris Pittman has spent the last 20 years helping communities grow and flourish — from building hometown Baltimore tech communities to driving belonging and sustainability in massive open source ecosystems like Kubernetes. Paris has contributed to Kubernetes for 6 years and serves... Read More →
avatar for Christoph Blecker

Christoph Blecker

Senior Principal Site Reliability Engineer, Red Hat
Christoph is an Architect and Senior Principal SRE at Red Hat. He's a long time maintainer of the Kubernetes project, an emeritus member of the Kubernetes Steering Committee, and sits on the CNCF Governing Board.
avatar for Dims

Dims

Principal Engineer, AWS
Davanum Srinivas (a.k.a Dims) is a Principal Engineer with AWS working full time on Kubernetes and related projects at CNCF. At CNCF, Dims has served as a member of the Technical Oversight Committee and as the chair and represented the TOC on the CNCF Governing Board. In Kubernetes... Read More →
avatar for Stephen Augustus

Stephen Augustus

Head of Open Source, Cisco
Stephen is the Head of Open Source at Cisco. Across the open source ecosystem, Stephen holds a number of governance roles, including membership on the OpenSSF Governing Board, the OpenAPI Initiative Business Governing Board, the Kubernetes Steering Committee, and the TODO Group Steering... Read More →

Wednesday May 18, 2022 17:25 - 18:00 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes

17:25 CEST

OpenTelemetry: The Road Ahead + Meet the Community - Morgan McLean, Splunk; Alolita Sharma, Amazon; Ted Young, Lightstep; Daniel Dyla, Dynatrace
This session is for anyone interested in observability or OpenTelemetry to learn more about the project, and to meet and discuss our status and roadmap with maintainers! We will begin with a brief presentation of our recent releases and roadmap for the next year, followed by a panel discussion hosted by governance committee members, technical committee members, and maintainers.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ted Young

Ted Young

Director of Developer Education, Lightstep
Ted Young is the Director of Open Source Development at Lightstep, and one of the core maintainers of the OpenTracing project. Ted has spent the last 15 years building distributed systems in a variety of environments: computer animation, national elections, and elastic compute pl... Read More →
avatar for Alolita Sharma

Alolita Sharma

Apple AIML Observability Engineering, Apple
Alolita Sharma is an OpenTelemetry Governance Committee member, CNCF Observability TAG co-chair and CNCF Governing Board member from Apple. She leads Apple’s AIML observability teams. She contributes to open source and open standards at OpenTelemetry, Unicode and W3C. She has served... Read More →
avatar for Morgan McLean

Morgan McLean

Director of Product Management, Splunk
Morgan is one of the co-founders of OpenTelemetry, and he sits on the project's governance committee and runs multiple initiatives within the project. He is a Director of Product Management at Splunk, where he is responsible for the core platform behind Splunk Observability Cloud... Read More →
DD

Daniel Dyla

Senior Open Source Architect, Dynatrace
Daniel joined Dynatrace in 2015 working on the Davis Assistant natural language interface to the Dynatrace AI. Daniel is now an Open Source Architect, member of the W3C Distributed Tracing Working Group where he contributes to the Trace Context and Baggage specifications, OpenTelemetry... Read More →

Wednesday May 18, 2022 17:25 - 18:00 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, OpenTelemetry

17:25 CEST

Real World SPIFFE Scenarios and Outcomes - Andres Vega & Frederick Kautz, SPIFFE Steering Committee
SPIFFE aims to strengthen the identification of software components in a common way that can be leveraged across distributed systems by anyone, anywhere. The ability to maintain software security by standardizing how systems define, attest, and maintain software identity, regardless of where systems are deployed or who deploys those systems, confers many benefits. The use of SPIFFE can significantly reduce costs associated with the overhead of managing and issuing cryptographic identity documents and accelerate development by removing the need for developers to understand the complexity involved to secure service-to-service communication, but that is not the only outcome. Production identity can have a positive impact on many areas such as interoperability, compliance, audibility, and more. This presentation demonstrates the real world scenarios and outcomes of deploying SPIFFE across your infrastructure and also using it to bridge and integrate the infrastructure of others.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Frederick Kautz

Frederick Kautz

Director of R&D, TestifySec
Frederick collaborates on security and networking. He is on the SPIFFE Steering Committee, focusing on providing Zero Trust Workload Identity to compute workloads and resources. Frederick co-authored Solving the Bottom Turtle. He is a co-founder of OmniBOR and maintains the reference... Read More →
avatar for Andres Vega

Andres Vega

Founder, M42

Wednesday May 18, 2022 17:25 - 18:00 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, SPIFFE

17:25 CEST

The CRDs that Broke the Camel's Back - Alper Rifat Ulucinar, Upbound
Custom resources are the preferred way to extend the K8s API server with a declarative API. They enable us to implement our very own control planes on top of K8s. K8s has performance guidelines and thoroughly investigated scalability thresholds but no guidelines for CRDs are available yet. Our initial attempts to install 1000s of CRDs revealed severe performance issues related to the API server, such as service disruptions and client-side throttling. And this further led to investigations to reveal the root causes of those issues. This talk aims to discuss how one can troubleshoot API server performance issues using profiling tools and to present some real world data that allowed us to pinpoint the root causes of the scaling issues that we initially hit. As the troubleshooting process is explained, the talk will also deliver some insights into the mechanics of CRDs. We would also like to share some tips in successfully getting changes into upstream and moving the ecosystem forward.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Alper Rifat Ulucinar

Alper Rifat Ulucinar

Staff Software Engineer, Upbound
Alper is currently working as a Staff Software Engineer at Upbound Inc and is a Crossplane contributor. Previously, he worked at SAP as a Development Architect, where he designed and implemented Cloud native applications. Prior to joining SAP, he was a visiting postdoctoral researcher... Read More →

Wednesday May 18, 2022 17:25 - 18:00 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Performance

17:25 CEST

The Hitchhiker's Guide to Pod Security - Lachlan Evenson, Microsoft
With the release of Kubernetes v1.23, Pod Security admission has now entered beta. Pod Security is a built-in admission controller that evaluates Pod specifications against a predefined set of Pod Security Standards and determines whether to admit or deny the pod from running. Pod Security is the successor to PodSecurityPolicy which was deprecated in the v1.21 release, and will be removed in Kubernetes v1.25. In this presentation I cover the key concepts of Pod Security along with how to use it walking through practical examples. Through education of this new security focused API I hope that cluster administrators and developers alike will use this new mechanism to enforce secure defaults for their workloads.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Lachie Evenson

Lachie Evenson

Principal Program Manager, Microsoft
Lachlan is a Principal Program Manager on the open source team at Azure. As a cloud native ambassador, emeritus Kubernetes steering committee member and release lead, Lachlan has deep operational knowledge of many Cloud Native projects. He spends his days building and contributing... Read More →

KubeCon EU 2022 The Hitchhiker's Guide to Pod Security pdf
Wednesday May 18, 2022 17:25 - 18:00 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

17:25 CEST

Building a Nodeless Kubernetes Platform - William Denniss, Google Cloud
Can Kubernetes be nodeless, and is nodeless Kubernetes still really Kubernetes? That is the question the Google Kubernetes Engine team asked themselves before embarking on a project to create a new operating mode for their 6-year-old Kubernetes platform, GKE. Go behind the scenes of the creation of GKE Autopilot, a fully managed "nodeless" Kubernetes platform, and hear from one of the creators how it was built, and why various decision decisions were made. Topics covered will include the trade off between operational support, security and Kubernetes compatibility, and why it actually makes sense for nodes to retain their semantic meaning on a nodeless Kubernetes platform. The community has seen several approaches for offering serverless/nodeless Kubernetes to operators, including with technology like Virtual Kubelet. This presentation will break new ground, providing an alternative path to achieving the goals of serverless Kubernetes without removing node-level APIs like affinity.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for William Denniss

William Denniss

Product Manager, Google Cloud
William is a Product Manager at Google Cloud working on Google Kubernetes Engine (GKE). On the GKE team, he pioneered Autopilot, a fully-managed Kubernetes platform that seeks to reduce developer toil while still supporting the full range of Kubernetes workload constructs. He is currently... Read More →

Wednesday May 18, 2022 17:25 - 18:00 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Serverless
 
Thursday, May 19
 

09:00 CEST

Keynote: Kubernetes Project Updates - Jasmine James, Senior Engineering Manager-Developer Experience; Ricardo Rocha, Computing Engineer, CERN; Emily Fox, Security Engineer, Apple
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →
avatar for Emily Fox

Emily Fox

Security Lead - Emerging Technologies, Security Community Architect - OSPO, Red Hat
Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and accessible to everyone. Serving as chair on the Cloud Native Computing Foundation’s... Read More →
avatar for Jasmine James

Jasmine James

Senior Engineering Manager-Developer Experience
Jasmine is an engineering manager leading the developer experience pillar in the engineering effectiveness organization. She has previously worked at Delta Air Lines enabling cloud native application development by providing modern tooling and capabilities utilizing various CNCF projects... Read More →

Thursday May 19, 2022 09:00 - 09:15 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:15 CEST

Keynote: Securing Shopify's Software Supply Chain - Shane Lawrence, Staff Infrastructure Security Engineer, Shopify
Recent compromises of Codecov and Solar Winds have put a spotlight on software supply chain attacks, but this focus has led to new innovations for solving an old problem. In this talk, we'll discuss lessons that Shopify has learned in protecting millions of businesses and demonstrate these techniques using open source software. We'll look at how traditional defensive techniques can be applied in the cloud, how voucher and grafeas implementations can give you control over the software that runs in your clusters, and how the SLSA framework can guide you toward establishing trust in your software. We'll also look at how Falco can be used to detect malicious behaviour or indicators that your supply chain has been compromised. Attendees can expect to learn how to apply specific techniques for mitigating supply chain attacks.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Shane Lawrence

Shane Lawrence

Senior Staff Security Engineer, Shopify
Shane is a Senior Staff Infrastructure Security Engineer at Shopify, where he's working on a multi-tenant platform that allows developers to securely build scalable apps and services for crafters, entrepreneurs, and businesses of all sizes.

Thursday May 19, 2022 09:15 - 09:30 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:30 CEST

Keynote: THE API IS PEOPLE! - Stephen Augustus, Head of Open Source, Cisco
We spend a lot of time talking about building systems and not nearly enough time talking about building the communities that support those systems.
Whether you're just getting started in the cloud native community or a long time member, there are countless opportunities to learn, contribute, and collaborate!

Join Stephen Augustus, Head of Open Source at Cisco on a journey to better understand the interconnectedness of various foundations within the Linux Foundation umbrella, critical efforts that need your valuable support, and some quick tips on efficiently solution-building across multiple communities.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Stephen Augustus

Stephen Augustus

Head of Open Source, Cisco
Stephen is the Head of Open Source at Cisco. Across the open source ecosystem, Stephen holds a number of governance roles, including membership on the OpenSSF Governing Board, the OpenAPI Initiative Business Governing Board, the Kubernetes Steering Committee, and the TODO Group Steering... Read More →

Thursday May 19, 2022 09:30 - 09:35 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:35 CEST

Keynote: Landscape Sustainability: The Pillars of Cloud Native Growth - Dave Zolotusky, Software Engineer, Spotify & Katie Gamanji, Senior Kubernetes Field Engineer, Apple
The CNCF ecosystem provides a vendor-neutral space for contributors and adopters to share their technical advancements, and cross-check innovation strategies while seeking guidance on emerging technologies. The TOC members steer the evolution of the CNCF landscape, prompting the growth of the adopter base and the number of use cases where cloud native technology can be applied. Organic adoption and development of new tools created the ecosystem and community as we know it today. However,  to continue our growth, we need to identify the sustainability pillars of our community.

This keynote will feature updates on TOC strategy and core pillars that define the future of the CNCF landscape in a scalable and sustainable manner. It will highlight the latest impactful projects and initiatives that drive the ubiquity of the cloud native.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dave Zolotusky

Dave Zolotusky

Principal Engineer, Spotify
Dave Zolotusky is a principal engineer on Spotify's Platform team, based in Boston. His focus has been core infrastructure, the data platform, and Spotify’s use of cloud services. A noted evangelist for cloud native and open source technologies, Dave spurred Spotify to join the... Read More →
avatar for Katie Gamanji

Katie Gamanji

Senior Field Engineer @ Apple, Apple
Katie is a cloud-native leader, practitioner, and contributor, currently in a Senior Field Engineer role at Apple and a TOC for CNCF. As a cloud platform engineer, Katie has contributed to the buildout of infrastructure at Conde Nast, and American Express, gravitating towards cloud-native... Read More →

Thursday May 19, 2022 09:35 - 09:50 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:50 CEST

Keynote: Building Bridges: Cloud Native and High Performance Computing - Ricardo Rocha, Computing Engineer, CERN
Kubernetes and Cloud Native have taken over the modern IT deployments, but challenges remain in areas where its impact can still be much larger. The world of High Performance Computing (HPC), often air-gapped, tightly secured and with strong requirements regarding resource sharing for compute intensive workloads has yet to see its needs fully accomplished. This session will cover recent work where the last bits of the bridge are being finished.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →

Thursday May 19, 2022 09:50 - 10:05 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:05 CEST

Keynote: PlatformOps: It’s all about Developer Experience - Ben Hale, Technical Lead, VMware Tanzu
Kubernetes has reached mainstream adoption, with 5.6 million developers using it worldwide. But, organizations are still challenged to make developers productive using Kubernetes. PlatformOps teams are now being asked to build, run, and manage platforms that lead with developer experience.

This requires embracing a PlatformOps philosophy that treats developers as customers while meeting their organization’s policies. VMware understands this transition building on 20 years of stewarding the most popular Java framework, Spring, which fundamentally changed the enterprise Java landscape on the back of a superior developer experience. That history allows us to identify patterns and attributes that we believe are critical to delivering a better cloud native developer experience on Kubernetes.

In this talk we’ll focus on three things PlatformOps teams should focus on:

  • Reducing complexity without sacrificing flexibility
  • Shifting outcomes left without shifting the burden left
  • Ensuring consistency and security without giving up agility

Join Ben Hale, VMware Senior Staff Engineer and Technical Lead for VMware Tanzu® developer experience, as he shares the core values of a great developer experience on Kubernetes based on his multi-decade career building application development tools and working with one of today’s most thriving open source developer communities, Spring.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ben Hale

Ben Hale

Technical Lead, VMware
Ben Hale is the Technical Lead for the VMware Tanzu® Application Platform™. Ben has long worked in open source communities including being a long-time member of the Spring team and founding the Cloud Native Computing Foundation Cloud Native Buildpacks, Service Binding for Kubernetes... Read More →

Thursday May 19, 2022 10:05 - 10:10 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:10 CEST

Keynote: The Cloud Native Chasm - Emily Fox, Security Engineer, Apple
They jumped, they leapt, they soared - and graduated. Cloud native projects each have their own path for crossing the chasm. Some projects front load - they spend a lot of time going over every detail, building governance and technical strategy while others run and jump, catching their breath on the other side to regain composure, build endurance, and continue moving forward. But for some projects, they’re still on the precipice, staring wistfully at the other edge, yearning to get there. There is no road to drive down, and no bridge to cross. In this talk, we’ll explore what it means to build that bridge, add side rails, and enable other projects continue improving that bridge, bringing everyone forward together.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Emily Fox

Emily Fox

Security Lead - Emerging Technologies, Security Community Architect - OSPO, Red Hat
Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and accessible to everyone. Serving as chair on the Cloud Native Computing Foundation’s... Read More →

Thursday May 19, 2022 10:10 - 10:25 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:25 CEST

Keynote: Closing Remarks - Jasmine James, Senior Engineering Manager-Developer Experience; Ricardo Rocha, Computing Engineer, CERN; Emily Fox, Security Engineer, Apple
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →
avatar for Emily Fox

Emily Fox

Security Lead - Emerging Technologies, Security Community Architect - OSPO, Red Hat
Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and accessible to everyone. Serving as chair on the Cloud Native Computing Foundation’s... Read More →
avatar for Jasmine James

Jasmine James

Senior Engineering Manager-Developer Experience
Jasmine is an engineering manager leading the developer experience pillar in the engineering effectiveness organization. She has previously worked at Delta Air Lines enabling cloud native application development by providing modern tooling and capabilities utilizing various CNCF projects... Read More →

Thursday May 19, 2022 10:25 - 10:30 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

11:00 CEST

Sharing Knowledge: Writing Good Docs for Quick Approval - Jared Bhatti, Waymo
The goal of this talk is to increase your ability to write good documentation that gets approved quickly. Good documentation has a profound impact on the visibility, quality, and inclusivity of open source projects. Documentation creates a shared understanding of work, helps onboard new developers, and improves the overall quality and reliability of the project.

Based on Jared's experience leading Kubernetes SIG Docs from 2016 to 2020, this presentation walks developers through best practices for creating inclusive, accessible, high quality documentation in pull requests designed for quick approval. This demonstration includes how to structure documentation using content templates, write with clarity and technical accuracy, and avoid common pitfalls that trap PRs in prolonged reviews.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jared Bhatti

Jared Bhatti

Staff Technical Writer, Waymo
Jared Bhatti is the author of Docs for Developers: An Engineer's Field Guide to Technical Writing. He is a Kubernetes SIG-Docs Chair Emeritus, having served as a Kubernetes SIG-Docs Chair from 2016-2020. He currently leads the documentation team at Waymo. He loves talking about how... Read More →

Thursday May 19, 2022 11:00 - 11:35 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

11:00 CEST

Case Study: Bringing Chaos Engineering to the Cloud Native Developers - Uma Mukkara, ChaosNative & Ramiro Berrelleza, Okteto
Though Chaos Engineering started as a solution for fixing unknown problems at scale, it has evolved in recent years into a totally different practice area. It is now beginning to play a major role in CI/CD apart from Ops and figures as an aid that improves developer experience. Chaos frameworks are beginning to feature in the list of must-have dev tools. In this session, we discuss the role of Chaos Engineering in stepping up the cloud native dev experience and how developers can use cloud native chaos tests to verify the resilience of their application even before the code is merged. Okteto is an open source tool that enables developers to deploy development environments directly in Kubernetes. The community behind Okteto has succeeded with the idea of providing cloud native chaos tests to the developers in their toolset. In this session we take examples of Litmus chaos tests on Okteto and show how developers can run them as part of the development process, rather than just on CI.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ramiro Berrelleza

Ramiro Berrelleza

CEO, Okteto
Ramiro Berrelleza is one of the founders of Okteto. He has spent most of his career (and his free time) building cloud services and developer tools. Before starting Okteto, Ramiro was an Architect at Atlassian and a Software Engineer at Microsoft Azure. Originally from Mexico, he... Read More →
avatar for Uma Mukkara

Uma Mukkara

CEO, ChaosNative
Uma Mukkara is a maintainer of CNCF chaos engineering project LitmusChaos. He also is the CEO of ChaosNative and is a regular speaker on the subject of Chaos Engineering and cloud native DevOps at various conferences in the recent past. He is passionate about building solutions around... Read More →

KubeConEU 2022 UmaMukkara Ramiro pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

11:00 CEST

Learnings From Providing A Platform API With Kubernetes And Crossplane - Hannes Blut & Jan Willies, Accenture
Kubernetes' extensible API has turned it into a de-facto abstraction layer not just for building, deploying and operating cloud-native apps, but also as the control plane for the entire enterprise, to provision and manage cloud resources and complex platform components. This session will be about the journey of Kubernetes and Crossplane at Deutsche Bahn, to provide platform consumers with access to a unified API for deployments, infrastructure provisioning and applications in a manner that is independent from the cloud, addressing compliance and cross-cutting concerns while providing a Kubernetes “native” experience. The journey has not been without challenges, where the platform team has managed technical and functional requirements including an access model in an enterprise environment, user expectations of cloud native infrastructure usage, and issues with excessive API load, shared resources, as well as controllers written by the team and open sourced along the way.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jan Willies

Jan Willies

Platform Architect, Accenture
Jan Willies is a Platform Architect at Accenture and contributor to the crossplane project. He is participating in open source communities, founded the Berlin CI/CD Meetup and organizes the CI/CD DevRoom at FOSDEM. He is a maintainer of provider-gitlab and provider-argocd and speaks... Read More →
avatar for Hannes Blut

Hannes Blut

Cloud Architect, Accenture
Hannes Blut is a Cloud Architect at Accenture with focus on design and implementation of unique client solutions, including cloud and high-performance computing systems. He is well versed in advanced automation and managing operative reliability.

2022 05 KubeCon EU 2022 CNP pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

11:00 CEST

Kubernetes IoT Edge Working Group: Edge Device Onboarding and Management - Steven Wong, VMware; Kate Goldenring, Microsoft; Kilton Hopkins, Edgeworx
Integrating I/O and compute devices at edge locations requires automated processes to work at large scale. This session will cover open source tools that support device lifecycles, from secure onboarding and discovery, through monitoring, maintenance, and use in production. We'll survey CNCF, LF Edge, and Eclipse projects designed to extend the cloud to inter-operate with edge devices and I/O; for example, one CNCF project, Akri, discovers edge devices and exposes them as Kubernetes resources. The K8s IoT Edge working group focuses on using Kubernetes as a tool to support applications running on, communicating with, or using information gathered from edge devices. There are opportunities to contribute to the evolution of Kubernetes to better serve edge use cases. We will close with details on how you can get involved with the community effort to help this happen.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Steven Wong

Steven Wong

Staff Engineer, VMware
Steve Wong has been active in the Kubernetes community since 2015. He is a co chair of the CNCF Working Group. Steve is co-chair of the VMware User Group on the Kubernetes project. He has implemented industrial control systems for many factories, pipelines, and process control systems... Read More →
avatar for Kilton Hopkins

Kilton Hopkins

CTO, Edgeworx
Kilton started programming computers when he was 8 years old. He started a software company a few years later. The world is very different than it was back then, but Kilton is still bringing new technologies to life.Kilton is the co-founder and CEO of Edgeworx, a startup that provides... Read More →

IOT KubeCon EU 2022 Kubernetes IoT Edge Working Group Edge Device Onboarding and Management pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes IoT Edge Working Group

11:00 CEST

SIG Autoscaling Updates and Feature Highlights - Michael McCune, Red Hat; Joachim Bartosik, Google; Guy Templeton, Skyscanner; David Morrison, Airbnb
Come hear about the latest updates and features from the Kubernetes Autoscaling community. In this talk, we will cover the current status and future plans for the SIG owned projects (Cluster Autoscaler, Horizontal Pod Autoscaler, Vertical Pod Autoscaler), the timeline for deprecating the autoscaling v2beta2 API, improvements to the Vertical Pod Autoscaler API, and a highlight of gRPC extensions to the Cluster Autoscaler. If you are curious about autoscaling in Kubernetes or would like to learn more about how to get involved with this community, come join us!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Michael McCune

Michael McCune

Michael McCune, Red Hat
Michael McCune is a software developer creating open source infrastructure and applications for cloud platforms. He has a passion for problem solving and team building, and a lifelong love of music, food, and culture.
avatar for Guy Templeton

Guy Templeton

Principal Software Engineer, Skyscanner
Guy is a principal software engineer at Skyscanner, working in the production platform tribe where he’s focused on providing the best possible platform for Skyscanner’s travellers and engineers. Within Skyscanner he’s the SME on scaling Kubernetes and containerised workloads... Read More →
DM

David Morrison

Staff Software Engineer, Airbnb
avatar for Joachim Bartosik

Joachim Bartosik

Software Engineer, Google

KubeCon EU 2022 SIG Autoscaling (2) pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, Kubernetes SIG Autoscaling

11:00 CEST

What's New in Operator Framework? - Jonathan Berkhahn, IBM; Varsha Prasad, Jesus Rodriguez & Austin Macdonald, Red Hat
This session covers recently added features in Operator Framework, particularly the Operator SDK CLI. We'll walk through scaffolding a Java operator using the newly-added Quarkus plugin, discuss how to add custom login to a Helm operator with the Hybrid-Helm feature, or how to best test your operator.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
JB

Jonathan Berkhahn

Senior Software ENgineer, IBM
Jonathan is a member of the steering committee of Operator Framework, and a maintainer of Operator SDK. He's worked in the past on various open technologies in the cloud platform space, including Kubernetes and Cloud Foundry. His passions in open source include behavior driven development... Read More →
avatar for Varsha Narsing

Varsha Narsing

Senior Software Engineer, Red Hat
Varsha is a software engineer at Red Hat. She is passionate about solving problems by developing and leveraging various software technologies. She currently works with the Portfolio Enablement team (Operator Framework) and is an active contributor to Kubernetes SIGs projects like... Read More →
avatar for Jesus Rodriguez

Jesus Rodriguez

Principal Software Engineer, Red Hat
Jesus is a contributor to various OSS projects, currently working on the Operator Framework project. Jesus is the team lead for Operator SDK team. His passions include learning new technologies and looking for pro tips on vim + tmux setups. He also loves working on cars, watching... Read More →
AM

Austin Macdonald

Software Engineer, Red Hat

Kubecon EU 2022 Operator Framework pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, Operator Framework

11:00 CEST

Operating Prometheus in a Serverless World - Colin Douch, Cloudflare
The traditional Prometheus configuration makes several assumptions about the architecture of the systems that it is monitoring that fail to be met in the world of Serverless Architectures. With the increasing adoption of Serverless computing in Distributed Systems architectures, the question then arises of how to achieve the same insight into them that we can achieve with more traditional architectures. In particular, with Timeseries Metrics, the choice is often to choose between substandard upstream offerings (such as the Prometheus Pushgateway), or capitulate to vendor lock-in and utilise a platform provided by your Cloud provider. So if we want to continue to use our existing Prometheus systems, then what choices do we have? This talk will cover the issues around existing solutions, Colin's solution to these issues that is currently in production at Cloudflare, and where we can go in upstream to make the experience better going forward.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Colin Douch

Colin Douch

Systems Reliability Engineer, Cloudflare
Colin currently Tech Leads the Observability Platform Team at Cloudflare, orchestrating and inventing solutions to better serve Cloudflare's increasingly large global footprint of services around the world. Starting in Mining, he has been working, advising, and researching in the... Read More →

Operating Prometheus in a Serverless World pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

11:00 CEST

Fun with Continuous Compliance - Ann Wallace, Shopify & Zeal Somani, Google
Is it possible to make compliance fun and less stressful? The old way of doing things is to manually gather evidence once or twice a year and hope nothing bad is found during your audit. This is not fun. In this talk, we’ll go over the concepts of continuous compliance and how to apply this to your current DevSecOps program. Zeal will talk about how the Open Security Controls Assessment Language (OSCAL) can be used to create automated control based assessments. Lastly, Ann will walk through how Shopify uses OSS like Falco and Voucher to achieve continuous compliance at scale. You will walk away from this session with information on how you can make compliance fun or at least less painful.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ann Wallace

Ann Wallace

Senior Security Engineering Manager, Shopify
Ann Wallace (she/her) leads compliance & risk teams at Shopify. Prior to Shopify, she worked at Google leading the go to market efforts for Security Solutions. She also set and ran the Global Security Practice that created Google Cloud's first set of professional services offerings... Read More →
avatar for Zeal Somani

Zeal Somani

Security Solutions Manager, Google
Zeal has a diverse experience around security, compliance and payments. Most recently at Google Cloud, she is responsible for a portfolio of solutions in the Governance, Risk and Compliance space such as Risk and Compliance as Code, Sovereignty. She lead the strategy and execution... Read More →

KubeCon EU 2022 Fun With Continuous Compliance pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

11:00 CEST

Autoscaling Elasticsearch for Logs on Kubernetes - Radu Gheorghe, Sematext Group & Ciprian Hacman, polypoly
Elasticsearch (and its fork, OpenSearch) is the go-to storage for logs. As with any storage, the cluster likely needs to scale to keep up with the change of load. But autoscaling Elasticsearch isn't trivial: indices and shards need to be well sized and well balanced across nodes. Otherwise the cluster will have hotspots and scaling it further will be less and less efficient. This talk focuses on two aspects: - best practices around scaling Elasticsearch for logs and other time-series data - how to apply them when deploying Elasticsearch on Kubernetes. In the process, a new (open-source) operator will be introduced (yes, there will be a demo!). This operator will autoscale Elasticsearch while keeping a good balance of load. It does so by changing the number of shards in the index template and rotating indices when the number of nodes changes.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ciprian Hacman

Ciprian Hacman

Software Engineer, Microsoft
Ciprian Hacman is a Software Engineer, working with cloud-native technologies. He is also an open source project maintainer for kOps (Kubernetes Operations), etcd-manager, cloud-provider-aws and frequent contributor to other projects in the Kubernetes ecosystem.
avatar for Radu Gheorghe

Radu Gheorghe

Search Consultant, Sematext Group
Radu Gheorghe works mainly as a search consultant at Sematext, working with clients of all sizes on their Elasticsearch and Solr projects. He is also a trainer and does production support for both these search engines. Sometimes he helps out with the development of Sematext Cloud... Read More →

Autoscaling Elasticsearch for Logs on Kubernetes 2 pdf
Thursday May 19, 2022 11:00 - 11:35 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Storage

11:00 CEST

Cloud-Native Building Blocks: An Interactive Envoy Proxy Workshop - Adam Sayah & Jim Barton, Solo.io
Envoy Proxy is a foundational layer for many of the innovations propelling the Kubernetes community, including service meshes and cloud-native API gateways. But many engineers understand it only as a black-box, hidden by simplifying levels of abstraction. The purpose of this workshop is to provide a hands-on workshop that will bridge those gaps in Envoy understanding. Participants will explore first principles regarding Envoy architecture, filter chains, and a day-in-the-life of a request. Users will then put those principles to work interactively. Every participant will have access to a computing environment via their web browsers to a Kubernetes K3s platform provisioned with Envoy and supporting tools. From there, users will explore the life of a request through a maze of transforms, custom processing with WebAssembly, and request routing. They will further learn to employ standard Envoy tools like metrics, access logging, and the Tap filter to solve real-world problems.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jim Barton

Jim Barton

Field Engineer, Solo.io
Jim Barton is a Field Engineer at Solo.io, a Cambridge-based company specializing in service mesh and Kubernetes-native API gateway technology. Jim’s career in enterprise software spans 30 years. He has enjoyed roles as a project engineer, sales and consulting engineer, product... Read More →
avatar for Adam Sayah

Adam Sayah

Field Engineer, Solo.io
Adam Sayah is Field Engineer at Solo.io, a company specializing in open source and enterprise software for application networking from the edge to service mesh. At Solo.io, Adam helps organizations build and operate robust cloud-native architecture. Prior to Solo.io, Adam held software... Read More →

KubeCon EU 2022 Envoy Workshop pdf
Thursday May 19, 2022 11:00 - 12:30 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  101 Track, Tutorial

11:00 CEST

GitOps to Automate the Setup, Management and Extension a K8s Cluster - Kim Schlesinger, DigitalOcean
In this workshop, you will experience the power of Infrastructure as Code and GitOps to automate the provisioning, modification, and extension of a Kubernetes cluster. Join me to learn how to use Terraform to spin up a Kubernetes cluster and install FluxCD, which will watch a GitHub repo and automatically apply any changes made via git commit. In order to keep all of your credentials like secrets, passwords, and tokens in your GitHub repo, we will show you how to use the sealed-secrets project to enable one-way encrypted secrets that can only be decoded inside the cluster. Finally, you will install and use Crossplane to provision digital infrastructure from inside your Kubernetes cluster, including resources from different cloud providers, giving you a chance to experiment with multi-cloud infrastructure.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Kim Schlesinger

Kim Schlesinger

Developer Advocate, DigitalOcean
Kim Schlesinger is a teacher and technologist. She is currently a Developer Advocate at DigitalOcean, and before that she was an SRE at Fairwinds. Kim has given talks at KubeCon + CloudNativeCon North America, SRECon, LISA, DevOps Days Rockies and Develop Denver.

Thursday May 19, 2022 11:00 - 12:30 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes, Tutorial

11:55 CEST

Implementing Cert-manager in K8s - Jose Manuel Ortega, Freelance
One of the best practices from a security point of view is to introduce the management of the certificates that we are going to use to support protocols such as SSL / TLS. In this talk we will explain cert-manager and his implementation in K8s as a native Kubernetes certificate management controller that allows us to manage connection certificates and secure communications through SSL/TLS protocols. Later I will explain the main functionalities and advantages that cert-manager provides, for example it allows us to validate that the certificates we are using in different environments are correct. Finally, some use cases are studied in which to use cert-manager and the integration with other services such as Let's Encrypt or HashiCorp Vault.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jose Manuel Ortega

Jose Manuel Ortega

Software engineer, Freelance
José Manuel Ortega is a Software Engineer and he focuses on new technologies, open source, security and testing. His career target from the beginning has been to specialize in Devops and security testing projects. Currently he is working as a security tester engineer and his functions... Read More →

KubeCon EU 2022 Presentation Template pdf
Thursday May 19, 2022 11:55 - 12:30 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

11:55 CEST

The Soul of a New Command: Adding ‘Events’ to kubectl - Bryan Boreham, Grafana Labs
Introduced as an alpha feature in the Kubernetes 1.23 release, the ‘kubectl alpha events’ command resolves some issues that could not be fixed within the generic ‘kubectl get’ command. Join us to re-live and explore: * How the need for ‘kubectl events’ came about. * How Bryan got involved and how you can, too. * The lifecycle of a Kubernetes enhancement.. * How a kubectl command is structured. * Helper libraries to fetch and print Kubernetes objects, and how you can use them in your own code. * Possible future directions for `kubectl [alpha] events`.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Bryan Boreham

Bryan Boreham

Distinguished Engineer, Grafana Labs
Bryan Boreham started working with Kubernetes around six years ago, was a maintainer on the CNI project for five years and is now a maintainer on the CNCF Cortex project. Over a 40-year career in software development Bryan has worked on spreadsheets, trading systems and massively... Read More →

kubectl events pdf
Thursday May 19, 2022 11:55 - 12:30 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

11:55 CEST

Argo’s Vibrant Ecosystem and Community - Alex Collins, Intuit; Alexander Matyushentsev, Akuity; Dan Garfield, Codefresh
Argo CD is the most popular Kubernetes GitOps application delivery tool. Argo Workflows is the most popular Kubernetes workflow execution platform. I bet you know about the core Argo projects, but what about the massive rapidly growing ecosystem of projects around them? Have you heard of Argo Events, Argo Rollouts, ApplicationSet, Argo CD Image Updater, Argo CD Vault Plugin, Argo CD Autopilot, Hera Workflows? What about tools such as Kubeflow Pipelines, Katib, SQL Flow, Couler, and Ploomber?. In this session, you’ll learn not just about the core Argo projects, but also get the highlights from several ecosystem projects with demos and best practices. You can address many more use cases by teaming them up with each other.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dan Garfield

Dan Garfield

Chief Open Source Officer and Co-Founder, Codefresh
Dan Garfield is the Co-founder and Chief Open Source Officer of Codefresh, a CI/CD platform powered by GitOps and Argo. He helped launch the GitOps Working Group and helped lead the creation of the Open GitOps principles. As an Argo Maintainer, Kubernaut, Google Developer Expert... Read More →
avatar for Alex Collins

Alex Collins

Principle Software Engineer, Intuit
Alex Collins is a Principal Engineer working on Intuit’s Kubernetes platform. He’s the lead engineer for Argo Workflows and Events, and one of the core contributors to Argo CD. He’s a dedicated Open Source advocate. Previously he was the EMEA Software Architect on QuickBooks... Read More →
avatar for Alexander Matyushentsev

Alexander Matyushentsev

Co-founder and Chief Architect, Akuity
Argo Co-Creator, Argo CD Lead, and maintainer. Energetic and passionate software engineer with over a decade of software development experience. I'm an enthusiast of continuous integration, agile environments, and a huge open-source believer. Core contributor and maintainer of http://argoproj.io... Read More →

Thursday May 19, 2022 11:55 - 12:30 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, Argo

11:55 CEST

Kubernetes SIG CLI: Intro and Updates - Eddie Zaneski, Chainguard; Katrina Verey, Shopify; Maciej Szulik, Red Hat
SIG CLI is the special interest group for the command line tooling of the Kubernetes project. The SIG maintains kubectl, kustomize, and related libraries. In this session the SIG CLI leads will provide an introduction to the SIG and an overview of how to contribute. They will share the work that's been done the past year, an introduction to the KRM Functions subproject, and thoughts on declarative vs. imperative workflows. The session will conclude with open discussion and Q&A.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Maciej Szulik

Maciej Szulik

Senior Principal Software Engineer, Red Hat
Maciej is a passionate developer with almost 2 decades of experience in many languages. Currently he's working on OpenShift and Kubernetes for Red Hat. Whereas at night he is hacking on side projects with python. In his spare time he enjoys reading a good book or taking photos.
avatar for Katrina Verey

Katrina Verey

Senior Staff Software Developer, Production Engineering, Shopify
Katrina is a senior staff software developer working in Production Engineering at Shopify. She is passionate about upstream participation, and is delighted to be serving the Kubernetes community by co-leading SIG-CLI and its Kustomize and KRM Functions subprojects. She has been working... Read More →
avatar for Eddie Zaneski

Eddie Zaneski

Head of Open Source, Defense Unicorns
Eddie lives in Denver, CO with his wife and dog. He loves open source and works on the Kubernetes project. When not hacking on random things you'll most likely find him climbing rocks somewhere.

KubeCon EU 2022 SIG CLI.pptx pdf
Thursday May 19, 2022 11:55 - 12:30 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes SIG CLI

11:55 CEST

SIG Cloud Provider: Portable K8s Across all Clouds, Roadmap and Updates - Nick Turner, Amazon & Steve Wong, VMware
Cloud Provider code allows Kubernetes to run on top of different platforms, with an implementation for each. The agenda will include: An overall status report on removing the cloud provider code from the main Kubernetes repository to “out of tree repositories; “Lightning talks” for individual cloud providers, reporting efforts, accomplishments, and roadmap for features and getting "out-of-tree". We’ll also discuss the plans to handle cloud provider migration - including interesting topics like building and migrating to cloud controller managers, and kubelet image credential providers. The goal of SIG Cloud Provider is to promote a vendor-neutral ecosystem for our community. We will close with details on how you can get involved with the SIG as either a cloud infrastructure supporter, a K8s distribution author, or a K8s user.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Steven Wong

Steven Wong

Staff Engineer, VMware
Steve Wong has been active in the Kubernetes community since 2015. He is a co chair of the CNCF Working Group. Steve is co-chair of the VMware User Group on the Kubernetes project. He has implemented industrial control systems for many factories, pipelines, and process control systems... Read More →
avatar for Nicholas Turner

Nicholas Turner

Senior Software Development Engineer, Amazon
Nick works at Amazon Web Services as a software development engineer for EKS where he works on building and operating a Kubernetes platform for customers who run their infrastructure on AWS. In the community, he is active in sig-cloud-provider and the provider-aws subproject, and... Read More →

KubeCon EU 2022 Cloud Provider SIG rev1.pptx pdf
Thursday May 19, 2022 11:55 - 12:30 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, SIG Cloud Provider

11:55 CEST

SIG Instrumentation Introduction and Deep Dive - Damien Grisonnet, Red Hat & Patrick Ohly, Intel
Kubernetes SIG Instrumentation is responsible for ensuring high quality and consistent instrumentation across the Kubernetes project. We will begin with an introductory overview of the efforts the SIG Instrumentation has worked on in the past and is currently working on. This deep dive session will go into detail about currently ongoing efforts happening within SIG Instrumentation to share with the audience concrete pieces of work to encourage future collaboration. Software engineering and operations are both disciplines practiced in SIG Instrumentation, and any experience will help the special interest group's mission. Join this session to learn how to get involved in SIG Instrumentation to make instrumentation even better!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Patrick Ohly

Patrick Ohly

Cloud Software Architect, Intel GmbH
Patrick Ohly is a software engineer at Intel GmbH, Germany. In the past he has worked on performance analysis software for HPC clusters ("Intel Trace Analyzer and Collector") and cluster technology in general (PTP and hardware time stamping). Since January 2009 he has worked for Intel... Read More →
avatar for Damien Grisonnet

Damien Grisonnet

Senior Software Engineer, Red Hat
Damien Grisonnet is a Software Engineer at Red Hat, he is very active in the monitoring ecosystem of Kubernetes for which he serves as a technical lead for Kubernetes SIG Instrumentation as well as a maintainer for projects such as kube-state-metrics, metrics-server, and prometheus-adapter... Read More →

KubeCon EU 2022 SIG Instrumentation pdf
Thursday May 19, 2022 11:55 - 12:30 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, Kubernetes SIG Instrumentation

11:55 CEST

OpenTelemetry: The Vision, Reality, and How to Get Started - Dotan Horovits, Logz.io
Everyone wants observability into their system, but find themselves with too many vendors and tools, each with its own API, SDK, agents and collectors. In this talk Horovits will present OpenTelemetry, an ambitious open source project with the promise of a unified framework for collecting observability data. With OpenTelemetry you could instrument your application in a vendor-agnostic way, and then analyze the telemetry data in your backend tool of choice, whether Prometheus, Jaeger, Zipkin, or others. Horovits will cover the current state of the various projects comprising OpenTelemetry (across programming languages, exporters, receivers, protocols and more), some of which are not even GA yet, and provide practical guidance on how to get started with OpenTelemetry in your own system.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dotan Horovits

Dotan Horovits

Principal Developer Advocate, CNCF Ambassador, Logz.io
Horovits is an international speaker and thought leader, as well as a CNCF Ambassador. He brings a wealth of knowledge in cloud-native solutions, DevOps practices and more. Horovits runs the successful OpenObservability Talks podcast, and has served as an organizer of KCD, DevOpsDays... Read More →

Horovits OpenTelemetry KubeCon EU 2022 copy pdf
Thursday May 19, 2022 11:55 - 12:30 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

11:55 CEST

Your Manila CephFS Share Backups Belong to S3 - Robert Vasek, CERN
Backups. Boring and mundane, until you lose your application data and need it back. Our Kubernetes users at CERN make extensive use of CephFS-backed storage managed by the OpenStack Manila service. Streamlining and automating the process of backups gives them a chance to prepare so that–should a disaster strike–they can recover. In this talk we will delve into the work we have done to make Velero, CephFS, Manila and an S3 store cooperate together, and bring an application back into life. Expect code snippets and demos. By the end of this session, you should have a clear overview of how each component contributes to our current backup and restore workflow in Kubernetes, and how you can integrate this setup into your clusters too.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
RV

Robert Vasek

Software engineer junior fellow, CERN
Robert is a Software Engineer junior fellow at CERN, working in the Cloud team. His main focus is storage in container environments and contributions to the ecosystem around CSI as well as its cloud deployments here at CERN. He is also involved in openstack-manila-csi and ceph-csi-cephfs... Read More →

CERN manila cephfs backups pdf
Thursday May 19, 2022 11:55 - 12:30 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Storage

14:30 CEST

Digging Into Your App's Container Image Layers for Sneaky Vulnerabilities - Pablo Galego, VMware
Mitigating vulnerabilities in container images is, most of the time, a straight-forward task: update the base image, use a newer version of Node or Java, bump the patch version of a project dependency, etc. However, all useful pieces of software are complex and vulnerability scanning tools fall short on explaining why they are flagging some edge-cases. This session walks you through mitigating critical vulnerabilities in popular container images like Java-based ones, from the obvious to the sneaky ones, and how to leverage layer explorer tools to narrow the search field for the latter. It is meant to be a hands-on session, first we will use Aqua’s Trivy scanner to analyze an image generated for a Spring Boot app and then wagoodman's dive to explore in which layer we are introducing a version of a library with critical vulnerabilities, while Maven seems to tell us otherwise.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Pablo Galego

Pablo Galego

Software Engineer, VMware
Pablo Galego works as software engineer in VMware. His short career to containers and security is, like many others, a bit unorthodox. First graduating in Law, decided to make a career switch to Computer Engineering and four years later started at Inditex's Engineering Productivity... Read More →

KubeCon EU 2022 Pablo Galego pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

14:30 CEST

Reproducing Production Issues in your CI Pipeline Using eBPF - Matthew LeRay, Speedscale & Omid Azizi, New Relic
Observing production workloads with enough detail to find real problems is difficult, but it's getting easier with the community adoption of eBPF. As the technology becomes better understood, tools like Falco, Cilium and Pixie are increasingly appearing in production clusters. But have you ever considered using eBPF data to help with unit tests, Continuous Integration and load testing? This talk will explain the basic technology behind eBPF while presenting some examples of how to use data collected via eBPF for a variety of software quality use cases. We'll use the Pixie CNCF sandbox project to pull data and replicate production issues on the developer desktop for debugging. You'll also get some ideas on using those calls in your Continuous Integration pipeline to sanity check builds before they are deployed. Included in that discussion will be handling some common issues like timestamp skew and authentication. All examples are open source and available after the talk.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Omid Azizi

Omid Azizi

Principal Software Engineer, New Relic (Pixie)
Omid is a Principal Software Engineer at New Relic and Founding Engineer at Pixie Labs. He leads the development of Pixie's eBPF-based data collector. Prior to working on Pixie, Omid worked as a hardware architect, developing novel memory systems at Hicamp Systems as well as AI chips... Read More →
avatar for Matthew LeRay

Matthew LeRay

Founder, CTO, Speedscale
Matthew LeRay has invested the past 20 years improving the performance of applications across multiple generations of technology. He is currently Co-founder and CTO of Speedscale. Previously, he was head of product at Observe, SVP at CA Technologies (acquired by Broadcom) and engineering... Read More →

KubeCon EU 2022 Azizi LeRay v5 pptx
Thursday May 19, 2022 14:30 - 15:05 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

14:30 CEST

You're a Community Manager? But What Do You REALLY Do?! - Nanci Lancaster, VMware & Karen Chu, Microsoft
When it comes to open source software, having a strong, active community that feels supported is imperative to success. Oftentimes, maintainers are tasked with an abundance of responsibilities but are also expected to set aside time to inform and engage with community members such as users, contributors, and others who are interested in the project. This is where community managers can step in to alleviate the burden and provide support.

For those who are trying to understand what this hard-to-define role is, the responsibilities involved, and the value of having a community manager dedicated to your project, join Nanci (community manager for Carvel and Tanzu Community Edition(TCE) Open Source Software projects) and Karen (community manager for Helm and other CNCF projects) for a breakdown of what a community manager role can look like and the value of the role as they cover topics including:
  • Maintainer and Contributor experience
  • Events
  • Social media/communications
  • GitHub Repo Health
  • Community Meetings
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Karen Chu

Karen Chu

Head of Community, Fermyon
Karen Chu is the Head of Community at Fermyon Technologies. Having participated in the cloud native community since 2015, she is a CNCF Ambassador, Helm community manager/maintainer, emeritus Kubernetes Code of Conduct Committee member, meet-up organizer, and conference organizer... Read More →
avatar for Nanci Lancaster

Nanci Lancaster

Senior Open Source Community Manager, VMware
Nanci Lancaster works at VMware as the Community Manager for the Carvel (ytt, kbld, imgpkg, kapp, kapp-controller, vendir, and secretgen-controller) and Tanzu Community Edition Open Source Projects, a role she only recently attained in January 2021. Before taking on the role of Community... Read More →

KubeCon+ CloudNativeCon EU 22 You're a Community Manager But What Do You REALLY Do !.pptx pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Community

14:30 CEST

Build Your Own Cluster API Provider the Easy Way - Anusha Hegde, VMware & Richard Case, Weaveworks
Over the past year, the adoption of Cluster API (CAPI) has been growing with more end-users using it to provision their clusters. And increasingly it’s being adopted inside commercial products and other OSS projects (e.g. EKS-Anywhere). With this growth comes an increase in the variety of the Cluster API Providers you can choose from. What if none of the existing providers suit your use case? Perhaps you want to bring your own hosts or integrate with a custom infrastructure provisioning mechanism. If that's the case, this talk is for you. Come learn from the maintainers of existing CAPI providers on how to get started creating your own provider. It’s hard but at the same time easier than it sounds. Although every provider has unique considerations in its offering, there is a lot of commonality when it comes to writing a provider. This talk will highlight the common patterns, develop and debug workflows, and common pitfalls / gotchas to take into account when writing your own provider.

Click here to view captioning/translation in the MeetingPlay platform!

Speakers
avatar for Richard Case

Richard Case

Principal Engineer, SUSE
Richard Case is a Principal Engineer @SUSE where he works on building Kubernetes products and open source. He's currently one of the maintainers of the AWS, GCP, Microvm & RKE2 Cluster API providers.
avatar for Anusha Hegde

Anusha Hegde

Technical Product Manager, Nirmata
Anusha Hegde is a Technical Product Manager @Nirmata working on Kubernetes Policy Management. Prior to this, she was a Senior Software Engineer @VMware working on Cluster API and its providers. Over the past year, her work has been around writing a new provider from scratch - Cluster... Read More →

Build your own Cluster API Provider pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

14:30 CEST

Intro to the Cloud Native Maturity Model - Danielle Cook, Fairwinds; Simon Forster, Stakegy; Robbie Glenn & John Forman, Accenture
Since 2021, the Cartografos Working Group has produced the Cloud Native Maturity Model. In this session, the chairs will review the Cloud Native Maturity, discuss the latest updates and inclusions and solicit participation in the group.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for John Forman

John Forman

Director; Master Technology Architect, Accenture
John T. Forman is a Director; Master Technology Architect and serves as the global Anthos/Kubernetes lead for Accenture Cloud First. Along with being a hands-on practitioner, he is a regular speaker at KubeCon and serves as a SME for Open Source, DevSecOps, Edge and Container/Kubernetes... Read More →
avatar for Danielle Cook

Danielle Cook

VP, Fairwinds
Danielle Cook is a VP at Fairwinds, a provider of software for platform teams running Kubernetes to standardize and enable development best practices. Danielle has worked in the cloud native industry since 2016 helping organizations adopt cloud native technology. She co-authored and... Read More →
avatar for Robert Glenn

Robert Glenn

Delivery Manager, Accenture
Robert is a cloud technology architect with experience leveraging automated infrastructure as code to deliver GCP foundations and configuring Kubernetes clusters of various flavors for a diverse portfolio of clients. His experience in designing cloud native tooling roadmaps of varied... Read More →
avatar for Simon Forster

Simon Forster

Technical Architect and CNCF Ambassador, Stackegy
Simon Forster is a CNCF Ambassador and cloud native technology architect and engineer based in London. Simon has extensive experience working in heavily regulated financial institutions on the design, delivery and security of critical cloud native applications. He has a specific focus... Read More →

Cartografos Working Group Intro to Maturity Model pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, Cartografos Working Group

14:30 CEST

Kubernetes SIG Storage Deep Dive - Xing Yang, VMware & Jan Šafránek, Red Hat
Kubernetes SIG Storage is responsible for ensuring that different types of file and block storage are available wherever a container is scheduled, storage capacity management (container ephemeral storage usage, volume resizing, etc.), influencing scheduling of containers based on storage (data gravity, availability, etc.), and generic operations on storage (snapshotting, etc.). In this session, we will deep dive into some projects that SIG Storage is currently working on, provide an update on the current status, and discuss what might be coming in the future.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jan Šafránek

Jan Šafránek

Software Engineer, Red Hat
Jan is a Senior Principal Software Engineer at Red Hat working on storage aspects of Kubernetes. He started developing Kubernetes more than 8 years ago, and is one of the founding members of SIG-Storage. He’s the author of PersistentVolume controller, dynamic provisioning and StorageClass... Read More →
avatar for Xing Yang

Xing Yang

Tech Lead, VMware by Broadcom
Xing Yang is a Tech Lead in the Cloud Native Storage team at VMware by Broadcom. She is a co-chair of CNCF Storage TAG, a co-chair of the Kubernetes Storage SIG, a co-chair of the Data Protection WG, and a maintainer in Kubernetes CSI. Before joining VMware, Xing was the Lead Architect... Read More →

KubeCon EU 2022 K8s SIG Storage DeepDive.pptx pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, Kubernetes SIG Storage

14:30 CEST

Prometheus Intro and Deep Dive - Julius Volz, PromLabs; Björn Rabenstein, Grafana Labs; Matthias Rampke, SoundCloud
As the 2nd oldest project in the CNCF, you have probably heard about Prometheus before. Nevertheless, the project maintainers will give you an introduction from the very beginning, followed by a deep dive into the exciting new features that have been released recently or are in the pipeline. You will learn about many opportunities to use Prometheus, and maybe we can even tempt you to contribute to the project yourself.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Julius Volz

Julius Volz

Founder, PromLabs
Julius co-founded the Prometheus monitoring system and originally led the project to success at SoundCloud and beyond. He now focuses on growing the Prometheus community, started PromCon, the first conference around Prometheus, and helps companies use and adapt Prometheus through... Read More →
avatar for Björn Rabenstein

Björn Rabenstein

Engineer, Grafana Labs
Björn “Beorn” Rabenstein is an engineer at Grafana Labs and a Prometheus developer. Previously, he was a Production Engineer at SoundCloud, a Site Reliability Engineer at Google, and a number cruncher for science.
avatar for Matthias Rampke

Matthias Rampke

Engineer, SoundCloud
Matthias Rampke joined SoundCloud in 2011 to help with internal IT. As part of the Systems and Production Engineering teams, he has been operating, troubleshooting, and frequently restarting the glue that holds SoundCloud together since 2013.

Monitoring, the Prometheus Way KubeCon Valencia, May 2022 (1) pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, Prometheus

14:30 CEST

SIG Auth Deep Dive - Margo Crawford, VMware & Mike Danese, Google
After a quick intro, this presentation will touch upon the current items the SIG is working on. These include the ongoing Pod Security effort, KMS encryption at rest observability and performance enhancements, structured configuration for authentication and authorization, reduction of legacy service account token attack surface area, certificate signing request duration control, etc. We will also discuss how to get involved with the SIG: https://docs.google.com/document/d/1sY8fRyRtk4eG9R439z5ao5i9bFuuxilS03XaNlqoni0

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Mike Danese

Mike Danese

Software Engineer, Google
Mike is a software engineer at Google. He has worked on Kubernetes and GKE for over 7 years and is currently the lead of the GKE Identity, Policy Enforcement, and Regulated and Compliance teams. He is a chair and TL of the Kubernetes Auth Special Interest Group. He develops and maintains... Read More →
avatar for Margo Crawford

Margo Crawford

MTS Software Engineer, VMware
Margo Crawford is a software engineer for VMware Tanzu on Project Pinniped. She lives in San Francisco. When she's not thinking about Kubernetes authentication, she likes roller skating, baking, and playing board games.

SIG Auth Deep Dive Kubecon EU 2022 pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes SIG Auth

14:30 CEST

Better Reliability Through Observability and Experimentation - Julie Gunderson, Gremlin & Kerim Satirli, HashiCorp
Site Reliability Engineering (SRE) treats reliability as a software problem, but it really is an organizational problem that requires a different mindset. When the reliability of our service drops, so does our ability to create value for the organization we represent. In this talk, Julie and Kerim will take the audience on a guided journey, starting with how to determine if and how workloads are misbehaving and ending with practical approaches to improve reliability. Through simulated outages (of all types!), observability, and analysis, Julie and Kerim will show attendees how to catch and prepare for service disruptions. Going beyond deployments, attendees will also learn how to combine OpenTelemetry and OpenTracing to instill reliability into their systems.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Kerim Satirli

Kerim Satirli

Sr. Developer Advocate, HashiCorp
Kerim is a senior developer advocate at HashiCorp, where he focuses on coaching operators and developers on sustainable practices around infrastructure and orchestration workflows. He enjoys the challenge of codifying the fragile bits of complex systems but is also excited to no longer... Read More →
avatar for Julie Gunderson

Julie Gunderson

Sr. Reliability Advocate, Gremlin
Julie Gunderson is a Sr. Reliability Advocate at Gremlin, where she works to further the adoption of Chaos Engineering principles and methodologies. Over the last seven years, Julie has been actively involved in the DevOps space and is passionate about helping individuals, teams... Read More →

Better Reliability Through Observability and Experimentation Notice pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

14:30 CEST

How to Migrate 700 Kubernetes Clusters to Cluster API with Zero Downtime - Tobias Giese & Sean Schneeweiss, Mercedes-Benz Tech Innovation
Cluster API promises "to simplify provisioning, upgrading, and operating multiple Kubernetes clusters." Do you find it challenging to migrate your existing Kubernetes cluster provisioning to Cluster API? Would you like to benefit from all the features that Cluster API offers and manage your infrastructure the Kubernetes style? At Mercedes-Benz, we run and operate more than 700 Kubernetes clusters and 3,500 machines all over the world in on-premises OpenStack data centers. By migrating to Cluster API, we replaced our legacy provisioning, consisting of Terraform, custom self-written tools and Kubernetes operators. Expect valuable insights on what it takes to transfer production systems into the control of Cluster API with zero downtime and zero customer impact. Get to know the technical challenges of migrating, how they can be solved and how to extend Cluster API functionality to fit your needs.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Tobias Giese

Tobias Giese

Software Engineer, Mercedes-Benz Tech Innovation
Tobias has been a computer nerd since he was a young teenager. Besides late-night programming sessions and Linux tinkering, he found his passion in being an IT specialist. After working in various fields like data centers and network security, he came to the cloud native world where... Read More →
avatar for Sean Schneeweiss

Sean Schneeweiss

Software Engineer, Mercedes-Benz Tech Innovation
Sean is a Software Engineer at Mercedes-Benz Tech Innovation, focused on Kubernetes clusters management system and Cluster API integration. He is a maintainer of the Kubernetes SIG Cluster API Provider OpenStack (CAPO). With a MSc in Computational Science and Engineering, he graduated... Read More →

KubeConEU22 MBTI ClusterAPI Migrate 700 Clusters pdf
Thursday May 19, 2022 14:30 - 15:05 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Operations

14:30 CEST

Make the Secure Kubernetes Supply Chain Work for You - Adolfo García Veytia, Chainguard
Starting in Kubernetes 1.22, SIG Release started building new security features into Kubernetes releases to make the project a better citizen in the software supply chain. The push to secure the release process has produced tools and processes that have improved the way other projects in the ecosystem are released. At the same time, we have made sure that Kubernetes plays well in the wider chain: verifying what we get from upstream and making sure consumers of our artifacts can trust what they get from us. This talk will give an overview of lessons learned and tools we have created that you can reuse in your own projects to secure your releases. It will center around three key moments and technologies: The initial effort involved producing SBOMs to describe sources and artifacts along with their dependencies. Then, we'll understand the provenance attestations that make the release process SLSA compliant. Finally, we'll see how digital signatures are implemented in the project.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Adolfo García Veytia

Adolfo García Veytia

Staff Software Engineer, Stacklok
Adolfo García Veytia (@puerco) is a staff software engineer with Stacklok. He is one of the Kubernetes SIG Release Technical Leads. He specializes in improvements to the software that drives the automation behind the Kubernetes release process. He is also the creator of the OpenVEX... Read More →

Thursday May 19, 2022 14:30 - 15:05 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

15:25 CEST

Choosing Cloud Native Technologies for the Journey to Multi-cloud - Adelina Simion, Form3
Building, deploying and maintaining systems has become increasingly more complicated in recent years. Now, as engineers look toward migrating to multi-cloud architectures, systems and processes may need to be migrated to new technologies. But what choices are available, how do they fit together and how can the CNCF landscape help? This talk discusses the cloud native technologies that can be used to convert to a multi-cloud architecture and highlights some of the lessons learned from taking this journey on at Form3. The audience will learn: - How to decide if multi-cloud is essential for them - The fundamentals of deploying services across multiple clouds with Kubernetes - How to leverage Cilium to mesh together multiple clusters - The basics of event sourcing using NATS in the multi-cloud world - Resilient and performant data storage using CockroachDB This talk is useful for any new comers to the cloud native landscape, as well as those curious about going multi-cloud!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Adelina Simion

Adelina Simion

Technology Evangelist, Form3
Adelina is a Technology Evangelist at Form3 in London, UK. She started her career as a Java engineer, then converted to Go in 2018. She is currently in charge of telling Form3's great tech stories, drawing from her own technical experience. Adelina is passionate about sharing good... Read More →

ChoosingCloudNativeTechnologiesForMultiCloud pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

15:25 CEST

Transparent Live Migration of Services Between Kubernetes Cluster - Adam Janikowski & Jörg Schad, ArangoDB
Operating a distributed database on a single Kubernetes cluster is interesting, but how about transparently migrating it from one cluster to another–potentially between different cloud providers– without impacting user workloads? Kubernetes has become the de facto default deployment for ArangoDB, a distributed Graph database. Consider for example ArangoDB Oasis, a managed Cloud Database service with over 200 deployments (aka highly available database clusters) across three major cloud providers and many regions. But outages, (Kubernetes) upgrades, resource considerations, and cost optimizations require the underlying infrastructure to be very dynamic including migration between Kubernetes cluster, datacenter, or even cloud providers. This talk provides insights into how Kube-Arango, the OSS operator for ArangoDB, supports live migration of distributed stateful applications without impact on users. Challenges in such migration include for example networking, DNS, and persistent data.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jörg Schad

Jörg Schad

CTO, ArangoDB
Jörg Schad is the CTO at ArangoDB. In a previous life, he has worked on or built machine learning pipelines in healthcare, distributed systems, including early Kubernetes code at Mesosphere, and in-memory databases. He received his Ph.D. for research about distributed databases and... Read More →
avatar for Adam Janikowski

Adam Janikowski

Technical Lead Cloud Orchestration, ArangoDB
Adam is the technical lead for cloud orchestration at ArangoDB, responsible–amongst many other things–for the Database Kubernetes Operator. His responsibility is to integrate full lifecycle operations into the Kubernetes world for multiple cloud providers. This includes basic... Read More →

TransparentMigration pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Application + Development

15:25 CEST

Cloud Native Mentorship: Tips for Being a Great Mentor to CNCF Students - Lucas Servén Marín, Private
The CNCF and broader Linux Foundation offer generous mentorship programs that connect students around the world with open source projects. The whole open source community can benefit from and grow thanks to these opportunities, however, many technically talented maintainers are not trained as teachers or equipped with the tools to lead student projects. So what can open source maintainers do to help ensure mentees are successful in their cloud native journeys? And more broadly, how can maintainers use these opportunities to build a long lasting and inclusive community? In this talk, Lucas discusses challenges, successes, and lucky breaks he experienced through two years of non-stop mentorship as a maintainer of Thanos. Based on these lessons, he provides concrete strategies and tips that Thanos mentors and mentees have leveraged to communicate effectively and empathically and to meet the community's goals, whatever they may be.

Click here to view captioning/translation in the MeetingPlay platform!
Thursday May 19, 2022 15:25 - 16:00 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Community

15:25 CEST

Backstage: Restoring Order To Your Chaos - Dave Zolotusky, Spotify
The CNCF Landscape is a complex ecosystem of frameworks, technologies, and platforms. Your teams have their own implementations of these technologies. Onboarding new developers is super confusing, and docs are scattered around the place. In short: chaos. The solution to this might be… another portal? Backstage (https://backstage.io), a platform you can use to build your own developer portal. It is highly customisable and adopted by companies like Expedia, Netflix, American Airlines, and Epic Games. Dave will share why Backstage was developed at Spotify, how it became the core of their developer experience, and a CNCF project. You’ll get a quick tour of Backstage, the plugin ecosystem, and some of the key use cases for Backstage. Then he will dig into the Software Templates feature. How templates can help developers quickly get started with new code repositories. He will also cover how you can create custom templates to have your organizations best practices built-in, right from the start!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dave Zolotusky

Dave Zolotusky

Principal Engineer, Spotify
Dave Zolotusky is a principal engineer on Spotify's Platform team, based in Boston. His focus has been core infrastructure, the data platform, and Spotify’s use of cloud services. A noted evangelist for cloud native and open source technologies, Dave spurred Spotify to join the... Read More →

Backstage Restoring Order To Your Chaos KubeCon EU 2022 pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track

15:25 CEST

Cilium: Welcome, Vision and Updates - Thomas Graf & Liz Rice, Isovalent; Laurent Bernaille, Datadog
If you’re interested in using Cilium, or contributing to the project, this session is for you. Our agenda for this session: 1. Introduction to Cilium A brief overview of the origin and vision for Cilium. 2. Working with Cilium An end user's perspective of using Cilium. 3. Cilium Service Mesh Cilium can be used as a highly efficient service mesh data plane. Let’s discuss the learnings from our beta, and the upcoming roadmap. We will leave time for Q&A, and an opportunity to meet Cilium maintainers and contributors.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Liz Rice

Liz Rice

Chief Open Source Officer, Isovalent
Liz Rice is Chief Open Source Officer with eBPF specialists Isovalent, creators of the Cilium project. She was chair of the CNCF's Technical Oversight Committee 2019-2022, and Co-Chair of KubeCon + CloudNativeCon in 2018. She is also the author of O'Reilly books "Learning eBPF" and... Read More →
avatar for Laurent Bernaille

Laurent Bernaille

Principal Engineer, Datadog
Laurent Bernaille worked several years as a consultant specializing in cloud, containers, and automation and helped organizations migrate to the public cloud and adopt containers. He is now Principal Engineer at Datadog and works closely with infrastructure teams, which are responsible... Read More →
avatar for Thomas Graf

Thomas Graf

CTO & Co-Founder, Isovalent
Thomas is the Co-Founder and CTO of Isovalent, long-time kernel and eBPF developer, and one of the creators of the Cilium project. Before working on Cilium, Thomas was a Linux kernel developer for 15+ years focusing on networking, security, and eBPF. When not working on open source... Read More →

Cilium Welcome KubeCon Valencia (1) pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, Cilium

15:25 CEST

Cluster API Intro and Deep Dive - Yuvaraj Balaji Rao Kakaraparthi & Vince Prignano, VMware
The Cluster Lifecycle SIG is the Special Interest Group that is responsible for building the user experience for deploying and upgrading Kubernetes clusters. Our mission is examining how we should change Kubernetes to make it easier to operate. In this deep dive, we will examine how Cluster API simplifies the cluster management experience for cluster operators by enabling consistent machine management across environments and quick stamping of Clusters using some new exciting features like ClusterClass.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Vince Prignano

Vince Prignano

Staff Engineer 2, VMware
Vince is a co-Chair for SIG Cluster Lifecycle, has been with the Cluster API project for 5 years. As a Staff Engineer and Tech Lead for the cluster lifecycle group at VMware, Vince has been exposed to all sorts of requirements on where and how to run Kubernetes.
avatar for Yuvaraj Balaji Rao Kakaraparthi

Yuvaraj Balaji Rao Kakaraparthi

Senior Member of Technical Staff, VMware
Yuvaraj is a Member of Technical Staff at VMware. He was introduced to the world of Kubernetes around two years ago and has been working on the Cluster API project. Over the past few months he has been working on some new and exciting features in Cluster API namely ClusterClass and... Read More →

KubeConEU22 template vmw pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Maintainer Track, Kubernetes SIG Cluster Lifecycle

15:25 CEST

Kubernetes SIG UI Introduction and Updates - Sebastian Florek & Marcin Maciaszczyk, Kubermatic; Shu Muto, NEC
SIG UI is the special interest group developing Kubernetes Dashboard. In this session the SIG UI leads will provide an overview of what was accomplished over the past year, including new views, functions, internationalizations, leadership changes etc. They will also share plans for the upcoming releases. The session will conclude with an open discussion and Q&A.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Shu Muto

Shu Muto

Principal Software Engineer, NEC
Shu is one of maintainer for Kubernetes Dashboard since Autumn 2019 and one of chair for SIG UI. Before that, Shu has contributed to OpenStack Dashboard and its several plugins as core developer since 2015. Besides them, developping WebRTC application.
avatar for Sebastian Florek

Sebastian Florek

Senior Fullstack Engineer, Kubermatic
Sebastian is a Senior Fullstack Engineer at Kubermatic. He is working on the Kubernetes Dashboard project since the beginning where he became one of the key contributors and a SIG-UI co-leader.

KubeCon EU 2022 SIG UI Introduction and Updates pptx
KubeCon EU 2022 SIG UI Introduction and Updates pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, Kubernetes SIG UI

15:25 CEST

Alerting in the Prometheus Ecosystem: The Past, Present and Future - Josue (Josh) Abreu, Grafana Labs
One of the most important functionalities of Prometheus is being able to alert based on your metrics. The Prometheus Alertmanager is a critical piece of cloud native observability, and in this talk, Josue wants to share a bit more of its past, present and future. About a year ago, he set out on a path to improve scaling in the Cortex Alertmanager component, then he decided to include the Alertmanager within Grafana to continue fostering open source collaboration. For the future, his plan is to take all the good parts of what he learned on this journey back to the Prometheus Alertmanager thus going full cycle. He’ll cover: The Prometheus Alertmanager and the benefits of its modular architecture (past) The benefits of the new architecture of the Cortex Alertmanager: Like Cortex but for Alerts (past) Inclusion of the Prometheus Alertmanager within Grafana (present) The future of the Prometheus Alertmanager (future).

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Josue Abreu

Josue Abreu

Principal Software Engineer, Grafana Labs
Josue (Josh) Abreu has been involved in observability for the past 4 years. As a relative newcomer to this world, he was often puzzled at how alerting would function on a small and big scale. Josue works as the Alerting Lead at Grafana Labs and is a Prometheus Maintainer. Over a 10-year... Read More →

Alerting in the Prometheus ecosystem A story of the past, present and future (2) pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

15:25 CEST

Tweezering Kubernetes Resources: Operating on Operators - Kevin Ward, ControlPlane
Operators have become prevalent for the automation of repeatable cluster operations, replacing engineers in the Kubernetes configuration process. Although removing human error from the equation solves repeatability issues, Operators are often highly privileged with namespace or cluster-wide access to change resources. A compromised operator allows an attacker to deploy custom workloads very discreetly, and a rogue resource could go completely undetected. This talk asks and shows “what’s the worst that could happen?” to Operators by: - showing you how to threat model core Operator functionality - demonstrating how an Operator-based attacker can modify resources and gain persistence - how to securely appraise and test third-party Operators before trusting them - what to look out for during a code review or security related events.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Kevin Ward

Kevin Ward

Principal Consultant, ControlPlane
Kevin is an Principal Consultant with over 10 years of experience designing, building and testing secure solutions for Government, Defense and Finance sectors. He enjoys hacking and hardening systems to discover the balance between security and usability. He co-authored the GKE CIS... Read More →

KubeCon EU 2022 Tweezering Kubernetes Resources Operating on Operators.pptx pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Operations

15:25 CEST

Scaling and Orchestrating “Good Bot” With Kubernetes - Aris Cahyadi Risdianto, National University of Singapore (NUS)
During testing in the testbed, we need to emulate the production environment where there is plenty of normal traffic from the real users. High-quality normal traffic generated by the ‘human’ operator, has a significant impact on the testing results. Since the scale of testing is growing, increasing the number of operators is not practical and not cost-effective, so automating the generation of realistic normal traffic is becoming necessary. A BotNet can launch large-scale DDoS by orchestrating thousands of "infected" clients or “bad bots”. Similarly, if we can deploy thousands of human activity agents or “good bots” and orchestrate them together, we can generate a large number of emulated normal traffic from users. This talk will show how to utilize Kubernetes to orchestrate a large number of containerized bots to execute human activities in the testbed. Each bot is customized with special logic of activity workflows and it can be scaled and controlled by the orchestrator in real-time.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Aris Cahyadi Risdianto

Aris Cahyadi Risdianto

Research Fellow, National University of Singapore (NUS)
Former system and network professionals in IT infrastructure who have been involved in designing, implementing, migrating, and maintaining IP-based networks for companies and service providers. Interested in Future Internet Architecture and Open Source Networking (including SDN, NFV... Read More →

Aris Orchestrating GoodBot KubeConEU2022.v2 pdf
Thursday May 19, 2022 15:25 - 16:00 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Research + Academia

15:25 CEST

Distributing Supply Chain Artifacts with OCI & ORAS Artifacts - Steve Lasker, Microsoft
In a world of continuous supply chain attacks, secure distribution matters more than ever. Your images are now signed, with systems bill of materials (SBOM) and frequent scan results. How will you consume them from public endpoints, promoting them across environments into private network environments where there's no external access? ORAS Artifacts lifts OCI Artifacts to the next level by enabling graphs of artifact relationships to be established. When you archive or delete any given container image, the related artifacts are archived or deleted as well, providing predictable lifecycle management. ORAS Artifacts enable you to build upon the hardened, performant, securely distributed registries you're already using. Come see how registries are evolving, enabling all your cloud-native artifacts to be distributed from the public registries to your private environments, wherever they may be.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Steve Lasker

Steve Lasker

Principal PM Architect, Microsoft
Steve is a PM Architect for Registries at Microsoft, and an OCI & ORAS Artifacts maintainer. He's working on Notary v2 and Microsofts secure supply chain offerings. Prior to joining Microsoft, Steve worked in software consulting and broadcast engineering, where he learned the balance... Read More →

KubeCon EU 2022 OrasArtifacts pdf
KubeCon EU 2022 OrasArtifacts pptx
Thursday May 19, 2022 15:25 - 16:00 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

16:30 CEST

From `docker push` to Bytes on Disk: Inside Distribution - Wayne Warren & Adam Wolfe Gordon, DigitalOcean
If you use containers, at some point you've probably done a `docker pull` or a `docker push`. But, have you ever thought about how those operations work? How does a container image travel to persistent storage in the cloud? What does it look like when it gets there? We hadn't thought much about these questions until we started building DigitalOcean Container Registry (DOCR) on top of the CNCF Distribution codebase in 2019. Working on DOCR required us to learn a lot of the answers and we're excited to share them. In this talk we'll pull back the curtain on how Distribution works. From your registry client, to the OCI Distribution API, to the CNCF Distribution codebase, to bytes on disk, we'll explain exactly how a container image makes it from your computer to the cloud, what it looks like when it gets there, and what happens when you ask for it back. We'll also touch on less-standardized topics such as authentication and the evolving garbage collection implementation in Distribution.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Adam Wolfe Gordon

Adam Wolfe Gordon

Senior Engineer II, DigitalOcean
Adam Wolfe Gordon is a senior engineer focused on product strategy at DigitalOcean. Among other things, he previously worked as the tech lead for DigitalOcean's Kubernetes and container registry products. Adam is interested in infrastructure products, and likes to spend as much time... Read More →
WW

Wayne Warren

Software Engineer, DigitalOcean
Wayne Warren is a software engineer working on the DigitalOcean Kubernetes and Container Registry products. He's built kernels and filesystems for embedded systems, operated infrastructure and developed tooling for multi-team CI/CD systems, and now spends his days up to his ears in... Read More →

KubeCon EU Inside Disribution FINAL pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

16:30 CEST

Why Kubernetes Can't Get Around FinOps – Cost Management Best Practice - Vanessa Kantner & Manuela Latz, Liquid Reply
Anyone with the right permissions on a cloud provider can acquire resources or spin up Kubernetes Clusters. While developers can joyfully make cloud spending explode, traditional finance and procurement departments look around in wonder. The FinOps approach and the Foundation, which coined the word, dedicate itself to continuously enhancing best practices around cloud financial management. Managing Kubernetes resources is the masterclass of it. Having cost transparency and control over many dynamically scaling containers across many server instances can be difficult. Vanessa and Manuela share the experience in monitoring Kubernetes costs and planning budgets accordingly. This session covers how engineers – responsible for incurring costs – can support cloud cost management to prevent overspending and how this approach enables and empowers colleagues from finance, procurement and business in their daily doing. This, in turn, gives the engineer more freedom to explore new solutions.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Vanessa Kantner

Vanessa Kantner

Manager FinOps, Liquid Reply
Vanessa is a Manager leading the FinOps topic within Liquid Reply. She works with many different clients, from SMEs to large corporations in the insurance and automotive industry, developing and implementing the FinOps strategy using AWS, Azure, GCP or a multi-cloud mixture of those... Read More →
avatar for Manuela Latz

Manuela Latz

FinOps Consultant, Liquid Reply
Manuela is a FinOps Consultant for Liquid Reply focusing on Cloud Cost Management in crawl stage. She is recently developing a tagging strategy, implementing report and recommendation lifecycles for cloud resource rightsizing and running account and project based resource efficiency... Read More →

Slides Why K8s cannot get around FinOps pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Business Value

16:30 CEST

Implementing Anti-patterns: Kubernetes Cross-namespace Resource Ownership - Tom Coufal, Red Hat
Kubernetes is a very open system allowing developers a great extent of freedom. However it still follows rules, design principles and sets well-described boundaries. It constrains developers to well understood cans and cants. Prohibiting cross-namespace ownership of resources is one of such rules. A namespace scoped resource can't be an owner to a resource in a different namespace. Yet, there always is that one use case that we can't solve in any other way than by smashing through those walls of rules. We will explore why such a use case makes sense. And what challenges rigid namespace isolation brings to integration between Kubernetes native services. We will discover how one can construct a solution to this problem. Without re-implementing or replacing default core services - like the native garbage collection mechanisms.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Tom Coufal

Tom Coufal

Principal Software Engineer, Red Hat
Tom is a principal software engineer at Red Hat, working in open source for all his career. He joined Red Hat 8 years ago as an intern after freshman year of university. He has masters degree in Bioinformatics and Biocomputing.During his time at Red Hat he had the opportunity to experience... Read More →

Kubecon 2022 Implementing Anti patterns pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Customizing + Extending Kubernetes

16:30 CEST

Introduction to the Kubernetes WG Batch - Aldo Culquicondor & Abdullah Gharaibeh, Google; Alex Wang, Alibaba
The Kubernetes Working Group Batch was newly formed in the beginning of 2022. The Working Group aims to be a forum to discuss and propose enhancements to support for Batch (eg. HPC, AI/ML, data analytics, CI) workloads in core Kubernetes. We want to unify the way users deploy batch workloads to improve portability and to simplify supportability for Kubernetes providers. In this session, you will learn about the WG goals and roadmap , as well as the early efforts performed by our contributors.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Abdullah Gharaibeh

Abdullah Gharaibeh

Staff Software Engineer, Google
Abdullah is a staff software engineer at Google and sig-scheduling and working group batch co-chair. He works on Kubernetes and Google Kubernetes Engine, focusing on scheduling and batch workloads.
avatar for Aldo Culquicondor

Aldo Culquicondor

Sr. Software Engineer, Google
Aldo is a Senior Software Engineer at Google. He works on Kubernetes and Google Kubernetes Engine, where he contributes to kube-scheduler, the Job API and other features to support batch, AI/ML and HPC workloads. He is currently a TL at SIG Scheduling and an Organizer of the WG Batch... Read More →
avatar for Alex Wang

Alex Wang

senior expert engineer, Shopee
Qingcan Wang is a senior expert engineer at Shopee. As the leader of the Shopee AI platform, he focuses on using cloud-native technology to build a unified AI infrastructure and an elastic machine-learning platform for the company. As a member of the Kubernetes community, he has made... Read More →

KubeCon EU 2022 WG Batch pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, Kubernetes WG Batch

16:30 CEST

SIG Contributor Experience Deep Dive - Alison Dowdney, Kasten By Veeam; Christoph Blecker, Red Hat; Bob Killen, Google
The Kubernetes Contributor Experience Special Interest Group (SIG) is tasked with developing and sustaining a healthy contributor community. Things like feature velocity, community scaling, mentoring, pull request latency, and more all fall within scope of the SIG. In this talk, we will provide an introduction to SIG Contributor Experience, its role within the project, and dive into the various subprojects that support its mission. Additionally, we will provide a general community update and go over how you can get involved.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Bob Killen

Bob Killen

OSS Program Manager, Google
Bob is a Program Manager at the Google Open Source Programs Office with a focus on Cloud Native computing. He serves the Kubernetes project as a Steering Committee member and is recently stepped down as chair of the Contributor Experience SIG. Bob comes from an academic background... Read More →
avatar for Christoph Blecker

Christoph Blecker

Senior Principal Site Reliability Engineer, Red Hat
Christoph is an Architect and Senior Principal SRE at Red Hat. He's a long time maintainer of the Kubernetes project, an emeritus member of the Kubernetes Steering Committee, and sits on the CNCF Governing Board.
avatar for Alison Dowdney

Alison Dowdney

Global Senior Developer Relations, Kasten By Veeam

SIG Contributor Experience KubeConEU 2022 pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes SIG Contributor Experience

16:30 CEST

The Maintainer's Toolkit: Must-know CNCF Resources for Project Owners - Catherine Paganini, Bouyant & Dawn Foster, VMware
Whether you are trying to build an active, welcoming community, manage contributors' expectations, or motivate members to take on more responsibility, managing an open source project can feel overwhelming. During this talk, TAG Contributor Strategy leads will discuss CNCF resources available to project owners to help achieve exactly that. You'll learn what resources are available, where to find them, and how to get involved to develop new resources for your project and others. Developed for maintainers by maintainers, these resources help projects implement battle-tested best practices from fellow project owners. They include templates for a contributing guide, contributor ladder, governance frameworks, security disclosures, and more. Plus general guidance to grow your contributor base. There is no need to reinvent the wheel. Whatever challenge you are facing today, someone surely solved it before. Join this community to exchange ideas, learn from one another, and build a thriving ecosystem of successful open source projects.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dawn Foster

Dawn Foster

Director of Data Science, CHAOSS
Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →
avatar for Catherine Paganini

Catherine Paganini

Head of Marketing, Buoyant
Catherine Paganini is TAG Contributor Strategy Co-chair, CNCF Deaf & Hard of Hearing WG facilitator, CNCF Cloud Native Glossary founder, and Head of Marketing at Buoyant, the creator of Linkerd. A marketing leader passionate about open source, Catherine started her contributor journey... Read More →

TAG Contrib Strat Maintainer Track 2022 EU pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, TAG Contributor Strategy

16:30 CEST

Thinking Cloud Native, CloudEvents Future - Scott Nichols, Chainguard
Being a part of the CNCF brings huge opportunities for us as a community to define and embrace common ways of communicating between the projects with the ultimate goal of integrators selecting and connecting projects and products. We will pitch what this world looks like and how it will turn our collection of projects into an ecosystem of solutions. We then will provide a status of the CloudEvents project with the focus on where we are headed in the working group, including specifications helping with the interoperable discovery of event sinks and sources and the metadata description of events and their contents. We will also touch on the integration of CloudEvents with Open Telemetry.

Click here to view captioning/translation in the MeetingPlay platform!

Speakers
avatar for Scott Nichols

Scott Nichols

Engineer, Stealth
Scott Nichols is a focused on making it easy to create and understand portable event driven serverless workloads. This work is done through Kubernetes, Knative and CloudEvents.

Kubecon EU 2022 Thinking Cloud Native pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, CloudEvents

16:30 CEST

Emissary + Linkerd: A Guide to End-to-end Encryption for your Cluster - Flynn, Ambassador Labs & Jason Morgan, Buoyant
In this workshop, members of the Emissary-Ingress and Linkerd teams show the painless way to get four CNCF projects (Emissary, Linkerd, Kubernetes, and Envoy) running smoothly together to provide end-to-end encryption for application calls. They'll guide you through the best practices for using Linkerd and Emissary to give you capabilities like advanced L7 routing, in-cluster mTLS, embedded authentication, rate limiting, and much more. They’ll take you on a tour of each project and show you how they complement each other and make a great addition to your Kubernetes stack. Finally, they'll introduce a reference architecture for running Linkerd and Emissary together and walk you through how to implement it in practice.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Flynn

Flynn

Technical Evangelist, Buoyant
Flynn is a technology evangelist at Buoyant, spreading the good word and educating developers about the Linkerd service mesh, Kubernetes, and cloud-native development in general. He has spent four decades in software engineering from the kernel up through distributed applications... Read More →
avatar for Jason Morgan

Jason Morgan

Technical Evangelist, Buoyant
Jason Morgan is Technical Evangelist for Linkerd at Buoyant, maintainer of the CNCF Cloud Native Glossary, and co-author of the CNCF Landscape guide. Passionate about helping others on their cloud native journey, Jason educates engineers on Linkerd, the original service mesh. You... Read More →

Thursday May 19, 2022 16:30 - 17:05 CEST
Auditorium 1A | Event Center Feria Valencia
  Networking

16:30 CEST

Prometheus Sparse High-Resolution Histograms in Action - Ganesh Vernekar, Grafana Labs
Sparse high-resolution histograms are going to totally revamp how Prometheus works with histograms. Maybe you have heard about the ongoing development efforts in previous talks. Now, for the first time, you will witness a complete working setup, from instrumentation over ingestion, storage, and querying all the way to graphical representation. Ganesh will demonstrate the breathtaking possibilities of these histograms, which include precise quantile estimations and high-resolution heatmaps, both aggregated and partitioned at will, even if, over time or between different targets, histograms of different resolutions are involved. Accompanied by benchmark results from real world load.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ganesh Vernekar

Ganesh Vernekar

Senior Software Engineer, Grafana Labs
Ganesh has been contributing to Prometheus for over 5 years and is a Prometheus team member and maintainer of its Time Series Database (TSDB). Most recently, he worked on the new native histograms in Prometheus. He has also contributed to Cortex, Grafana Mimir, and Grafana.

KubeCon EU 2022 Prometheus Sparse High Resolution Histograms in Action pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

16:30 CEST

Scaling K8s Nodes Without Breaking the Bank or Your Sanity - Brandon Wagner & Nick Tran, Amazon
Kubernetes (k8s) has enabled applications to be mostly agnostic to the underlying VM infrastructure it is running on. Many clusters can benefit from the cost savings of utilizing spare VM capacity offerings commonly called Spot. In this session, we will discuss some of the best practices for utilizing spot capacity within a k8s cluster and some of the tools that will make your life easier managing the underlying VM infrastructure.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Brandon Wagner

Brandon Wagner

Sr. Software Engineer, Amazon
Brandon Wagner is a Software Engineer at AWS working on EC2 and OSS. For the past 2 years he has been focused on Kubernetes and is a core maintainer of the Karpenter project and the AWS Node Termination Handler. Before that, Brandon worked on DNS resolvers, cyber security, and fire... Read More →
avatar for Nick Tran

Nick Tran

Software Engineer, AWS
I work at AWS EKS on the Karpenter team, responsible for maintaining the AWS Karpenter Provider and core Karpenter library.

Scaling K8s Nodes Without Breaking the Bank or Your Sanity pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Operations

16:30 CEST

Kubernetes as a Substrate for ATLAS Compute - Fernando Barreiro Megino, University of Texas at Arlington & Lukas Heinrich, TU München
The ATLAS experiment at CERN is one of the largest scientific machines built to date and will have ever growing computing needs as it explores higher energy and luminosity proton collisions. Recent R&D on the integration of cloud infrastructures with ATLAS' Worldwide LHC Computing Grid resources identified Kubernetes as a commonly available, ideal substrate. While Kubernetes is widely known for its service management capabilities, it also offers powerful batch controllers for containerised workloads. We exploited these capabilities to build ephemeral batch clusters with over 100k vCPU to process tasks that require quick turnaround, make available GPU resources that are not widely available in our own infrastructure, or create interactive facilities, where users can easily spin up private clusters for their distributed analysis from a notebook.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Fernando Barreiro Megino

Fernando Barreiro Megino

Computing Engineer, University of Texas at Arlington
Fernando Barreiro works as a Computing Engineer at the ATLAS Experiment at CERN. He is part of ATLAS' core team for workload management across worldwide distributed computing resources. In recent years he has led the effort to integrate public and private cloud resources through native... Read More →
LH

Lukas Heinrich

Professor, TU München
Lukas Heinrich is a particle physicist working on the ATLAS Experiment at the Large Hadron Collider. He focuses on introducing modern cloud computing and data science tools to more systematically search for phenomena beyond the Standard Model of Particle Physics.

Kubernetes as a Substrate for ATLAS Compute pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Research + Academia

16:30 CEST

Keep Calm and Containerd On! - Anusha Ragunathan, Intuit Inc
Letting go isn't easy! Especially when it comes to your Kubernetes cluster’s CRI implementation. Like most big Kubernetes deployments, Intuit’s 200+ clusters with 20000 nodes were running ‘dockerd’ as the CRI runtime, with dependencies on the docker API and CLI. We migrated our fleet of clusters to ‘containerd’. Whether you have a complicated Kubernetes installation with customized cluster addons or a simple set of clusters, you will be affected by the upcoming removal of dockerd from upstream Kubernetes. Come listen to us, learn from our journey and be prepared to make this migration smooth and seamless. We will share lessons learned migrating clusters to containerd. From issues faced with log management, SELinux and GPU support, to rewiring cluster addons related to CNI and runtime security, this talk is about Intuit’s journey moving to containerd. We will also talk about rollout of containerd to our production clusters and how we handled compatibility issues during cluster upgrades.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Anusha Ragunathan

Anusha Ragunathan

Principal Software Engineer, Intuit Inc
Anusha Ragunathan is a software engineer at Intuit, where she works on building and maintaining the company’s Kubernetes based Compute Infrastructure. Anusha is passionate about solving complex problems in systems and infrastructure engineering. Prior to Intuit, she worked on building... Read More →

Prettyv2 Containerd KubeCon EU 2022 pptx
Containerd KubeCon EU 2022 pdf
Thursday May 19, 2022 16:30 - 17:05 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Runtimes

16:30 CEST

Does Green Software need Open Hardware? - Hosted by Open Compute Project - Moderator Cliff Grossner, Ph.D.; Kate Mulhall, Senior Cloud Software Engineering Manager, Intel , VP Market Intelligence, Open Compute Project (OCP) Foundation; Dinesh Marjrekar, D
By 2040 the communications technology sector it is expected to account for 14% of the world’s
carbon footprint — up from about 1.5% in 2007, and in 2019, researchers at the University of
Cambridge estimated that the energy needed to maintain the Bitcoin network surpassed that of
the entire nation of Switzerland. Clearly this cannot continue and software needs to be
evaluated by judging its performance on its energy efficiency as much as on traditional
parameters. On top of the software itself, is the IT infrastructure and data center facilities that
can make a huge difference on the ecological impact of software workloads. This panel will look
at best practices and new technology directions that can change the current and dangerous
ecological impact curve implied by the digitization of society.
Moderators
P
CG

Speakers
avatar for Kate Mulhall

Kate Mulhall

Senior Cloud Software Engineering Manager, Intel
Kate is a Senior Cloud Software Engineering Manager responsible for the Intel Cloud Native Orchestration engineering team in Ireland. She has 20+ years' experience building and managing software development teams across multiple international tech companies. She holds a BEng in Engineering... Read More →
avatar for Marcel Fest

Marcel Fest

Devops Engineer, Deutsche Telekom
Marcel is a DevOps Engineer building Das SCHIFF at Deutsche Telekom. Main areas he is involved in are Network Design, Monitoring and Lifecycle Management of Platform Components. He joined DT in the beginning of 2020 and drives the Network Design of the platform since then. In his... Read More →
DM

Dinesh Majrekar

Director of Innovation, Civo Ltd
CG

Cliff Grossner, Ph.D.

VP Market Intelligence, Open Compute Project (OCP) Foundation
JC

Jaime Comella

Technical Consultant & Business Development Manager, Cloud & Heat

Thursday May 19, 2022 16:30 - 17:30 CEST
Room 4C | Event Center
  Experiences, BoF

17:25 CEST

Understanding Kubernetes Through Real-World Phenomena and Analogies - Lucas Käldström
How is the Kubernetes controller model similar to a taxi driver? Why is Kubernetes so differently designed compared to similar systems? How has the second law of thermodynamics and randomness theory shaped Kubernetes design? How the shift from traditionally managing servers to using Kubernetes operators similar to the Industrial Revolution? This talk offers the audience a unique perspective into why Kubernetes is designed the way it is. Kubernetes is often described as designed from “decades of experience”, but it is not as often mentioned what that means in practice. Quite conversely, many newcomers to Kubernetes find it “too complex”. Why is it, or why is that the impression? After this talk, the audience can make sense out of why Kubernetes does what it does. This by learning the fundamental design philosophies of Kubernetes and cloud native through well-known phenomena and real-world analogies. With the right mental model, hopefully it doesn’t seem overwhelmingly complex anymore.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Lucas Käldström

Lucas Käldström

Senior Software Engineer, Upbound
Lucas is a Kubernetes and cloud native expert who has been serving the CNCF community in lead positions for 6 years. He’s awarded Top CNCF Ambassador 2017 with Sarah Novotny. Lucas was a co-lead for SIG Cluster Lifecycle, co-created kubeadm, Weave Ignite, and ported Kubernetes to... Read More →

[KubeCon] Understanding Kubernetes Through Real World Phenomena and Analogies (4) pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

17:25 CEST

Building for the (Inevitable) Next Cloud Outage - Pavel Nikolov, Section
It seems that every few months we hear about the widespread impact of a major cloud outage. Cloud outages are unpredictable and inevitable; this is what keeps SRE teams up at night. Public cloud remains the most popular data center approach among the cloud native community, with multi-cloud growing in adoption. However, adopting a multi-cloud strategy isn’t as simple as hitting the go button. In this session, we will demonstrate how to deploy a Kubernetes application across clusters in multiple clouds and regions with built-in failover to automatically adapt to cloud outages. You will witness how BGP directs traffic across clusters in a healthy state. Then, we will take one of the clusters offline and show how workloads are automatically rescheduled and traffic is rerouted to healthy clusters in real-time. We will dive into the technologies and logic that are driving this engine and discuss how you can build this type of resilience into your own applications.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Pavel Nikolov

Pavel Nikolov

Software Developer, section.io
During the last 16 years I have been part of numerous projects of all kinds - backend, frontend, APIs, high-volume pipelines processing billions of events per hour and different types of distributed applications. I am passionate about high scalability, reliability, observability and... Read More →

KubeCon EU 2022 Presentation.pptx pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Business Value

17:25 CEST

Cloud Native Chaos Engineering with LitmusChaos - Karthik S, Umasankar Mukkara & Udit Gaurav, ChaosNative; Saiyam Pathak, Civo
The discipline of chaos engineering has evolved since it was introduced by Netflix a decade ago, mostly as a result of the cloud-native paradigm and the proliferation of Kubernetes as the universal control plane for today's distributed architecture. While the essence and basic principles of chaos remains the same, the way it is operationalized has undergone a paradigm shift, not limited to - the faults themselves, the environments where they are executed, the persona carrying out the experiments, as well as the methods to run them. LitmusChaos is a framework that has been designed to address these newer requirements and enable users to proactively identify weaknesses and improve resilience in their cloud-native setup. This session provides a deep-dive of the project, its goals and how it achieves them.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Saiyam Pathak

Saiyam Pathak

Field CTO, Civo
Saiyam is working as Field CTO at Civo with a focus on defining the Civo cloud platform for simplifying Kubernetes and making it accessible for developers. Previously at Walmart Labs, Oracle, and HP, Saiyam has worked on many facets of k8s including machine learning platform, scaling... Read More →
avatar for Uma Mukkara

Uma Mukkara

CEO, ChaosNative
Uma Mukkara is a maintainer of CNCF chaos engineering project LitmusChaos. He also is the CEO of ChaosNative and is a regular speaker on the subject of Chaos Engineering and cloud native DevOps at various conferences in the recent past. He is passionate about building solutions around... Read More →
UG

Udit Gaurav

Software Lead, ChaosNative

KubeCon pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, LitmusChaos

17:25 CEST

Gateway API: Beta to GA - Rob Scott, Google & Nick Young, VMware
In the past year, Gateway API has made some significant progress, becoming an official Kubernetes API and graduating to Beta. As part of that process, it gained some exciting new features, including custom policy attachment, advanced rewrite configuration, cross-namespace references, and a lot more. In this talk, we’ll provide an overview of all the new features in Gateway API, demonstrating many of them with different implementations of the API. We’ll then discuss our plans going forward, including new features we’re working on and our goals for a GA release. Most importantly, we’ll share how you can get involved with the project.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Nick Young

Nick Young

Senior Systems Engineer, Isovalent
Nick has been working to prevent the entropic downfall of systems for 20 years, across Windows and Linux, datacenters and clouds, networking, storage and compute. Currently he's a Senior Software Engineer at Isovalent, and a maintainer on the Kubernetes Gateway API project, where... Read More →
avatar for Rob Scott

Rob Scott

Software Engineer, Google
Rob is an open source enthusiast currently working on Kubernetes Networking at Google. He's been a maintainer of Gateway API since the very early days of the project and led the development of other Kubernetes networking APIs like EndpointSlices.

Thursday May 19, 2022 17:25 - 18:00 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes SIG Network: Gateway API

17:25 CEST

Unraveling the Magic Behind Buildpacks - Sambhav Kothari, Bloomberg & Natalie Arellano, VMware
Cloud Native Buildpacks makes building container images a breeze. It comes with out-of-the-box support for rebasing, reproducibility, multiple entrypoints and more! In this talk we’ll uncover the magic that the lifecycle - the binary at the heart of CNB - uses to convert source code into OCI images.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Natalie Arellano

Natalie Arellano

Software Engineer, Pivotal
Natalie is a software engineer at VMware and a maintainer on the Cloud Native Buildpacks project.
avatar for Sambhav Kothari

Sambhav Kothari

AI Team Lead, Bloomberg
Sambhav Kothari is an ML Platform Engineer in the Data Science Platform team at Bloomberg, focusing on building better container integrations for machine learning workflows. He is deeply interested in improving the Cloud Native Supply Chain landscape. He is a maintainer for Cloud... Read More →

Kubecon EU 2022 Buildpacks pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, Cloud Native Buildpacks

17:25 CEST

What Is the CNCF TAG Observability and How You Can Join Our Effort! - Bartłomiej Płotka, Red Hat; Alolita Sharma, Amazon; Richard Hartmann, Grafana Labs; Matthew Young, Everquote
The Technical Advisory Groups (TAGs, formerly SIGs) were created by the CNCF to help provide technical guidance and expertise across projects pertaining to a specific domain. One of the domains that are continuously demanded and show great innovation within the cloud-native ecosystem is Observability. In this talk, the TAG Observability co-chairs and team lead will introduce the activities we do with TAG members and the community. You will learn what has been done so far and how you can join us in our efforts to improve the observability ecosystem around us. We are looking for a diversity of skills and backgrounds, so we can give out more supporting materials and best practices for end-users and contributors around monitoring and observability. The audience will learn what TAG Observability is responsible for, how to contribute and where to find us. Hopefully, this talk will inspire your to join our Observability community!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Bartłomiej Płotka

Bartłomiej Płotka

Senior Software Engineer, Google
Bartek Płotka is a Senior Software Engineer at Google. SWE by heart, with an SRE background, currently working on Cloud Observability. Previously Principal Software Engineer at Red Hat. Author of "Efficient Go" book with O'Reilly. As the co-founder of the CNCF Thanos project and... Read More →
avatar for Richard Hartmann

Richard Hartmann

Director of Community, Grafana Labs
Richard "RichiH" Hartmann is the Director of Community at Grafana Labs, a member of the Office of the CTO of Grafana Labs, Prometheus team member, OpenMetrics founder, OpenTelemetry member, CNCF Technical Oversight Committee member, CNCF Governing Board member, and more. He also leads... Read More →
avatar for Alolita Sharma

Alolita Sharma

Apple AIML Observability Engineering, Apple
Alolita Sharma is an OpenTelemetry Governance Committee member, CNCF Observability TAG co-chair and CNCF Governing Board member from Apple. She leads Apple’s AIML observability teams. She contributes to open source and open standards at OpenTelemetry, Unicode and W3C. She has served... Read More →
MY

Matt Young

Principal Cloud Architect, Everquote
Matt is a Principal Cloud Architect @ EverQuote, delivering infrastructure, services, and developer-focused tooling for cloud-native applications. With 20+ years of industry experience he’s happily worn Dev, Test, Support and Research hats across the domains of embedded systems... Read More →

Thursday May 19, 2022 17:25 - 18:00 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, TAG Observability

17:25 CEST

Why, How to, and Issues: Tail-Based Sampling in the OpenTelemetry Collector - Reese Lee, New Relic
When you are running OpenTelemetry in production and your services are producing a firehouse of spans, the traditional and default head-based sampling approach won’t cut it. This is because traces are sampled at initiation, which can be useful for some environments, but for larger systems, it can mean you miss out on key trace data. This is where configuring the Collector to sample your traces after they have fully completed–tail-based sampling–becomes a great option. In this talk, you’ll learn about head- and tail-based sampling, and why the latter approach is useful for obtaining the highest level of granularity in troubleshooting. You’ll learn how to configure your OpenTelemetry Collector to do this, and see the implementation in a suite of microservices, with traces exported to Jaeger. You’ll also learn of the current issues with implementing tail-based sampling in the OpenTelemetry Collector in production so you can take the challenges into account for your own deployments.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Reese Lee

Reese Lee

Developer Relations Engineer, New Relic
Reese Lee joined the OpenTelemetry team at New Relic in 2021, bringing along her enthusiasm for providing quality technical support and enablement for observability end users. She primarily works in the OpenTelemetry End User Working Group to help increase awareness and adoption of... Read More →

Why, How to, and Issues Tail Based Sampling in the OpenTelemetry Collector.pptx (3) pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

17:25 CEST

How a Couple of Characters (and GitOps) Brought Down Our Site - Guy Templeton & Stuart Davidson, Skyscanner
Skyscanner have been enthusiastic adopters of Cloud-Native technologies and practices, adopting Kubernetes, Helm and ArgoCD as well as a wide range of other open-source technologies. However, adopting these technologies and practices in an existing environment doesn’t come without challenges. In this talk, Stuart and Guy will walk you through the longer-term cultural and technical challenges and benefits brought by adopting a GitOps model, as well as digging deeper into a global outage of Skyscanner’s website and mobile apps and how these approaches both exacerbated the problem but also sped up the time to resolution. They’ll then take the opportunity to explain some of the learnings from the incident with the hope that the insight they gained from this catastrophic situation will help you and your organisation not make the same mistakes.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Guy Templeton

Guy Templeton

Principal Software Engineer, Skyscanner
Guy is a principal software engineer at Skyscanner, working in the production platform tribe where he’s focused on providing the best possible platform for Skyscanner’s travellers and engineers. Within Skyscanner he’s the SME on scaling Kubernetes and containerised workloads... Read More →
avatar for Stuart Davidson

Stuart Davidson

Director of Engineering, Skyscanner
I'm the Tribe Lead of Production Platform within Skyscanner where we provide a modern and scalable platform for Skyscanner to run across the globe - kinda what it says on the tin actually. Plenty of exciting challenges at serious scale - how do you operate a site for 100m unique users... Read More →

Kubecon EU 2022 Skyscanner pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Operations

17:25 CEST

Jet Energy Corrections with GNN Regression using Kubeflow at CERN - Daniel Holmberg & Dejan Golubovic, CERN
The Large Hadron Collider is the world’s largest particle accelerator measuring 27 km in circumference. It accelerates beams of particles in opposite directions almost to the speed of light before making them collide. The particles emerging from the collisions are then measured in large detectors such as the Compact Muon Solenoid. An especially important object of study are so-called jets composed of multiple particles shooting out in the same direction from the collision point. Data-driven methods are used to correct the energy values for these jets, and what we’ll present here is the utilization of Kubeflow to enable state-of-the-art graph neural network based corrections. Kubeflow’s pipeline component allows us to define our machine learning workflow in a well-structured and reproducible manner, and its built-in training operators are used to scale up the training with ease. This work is expected to pave the way for future adoption of Kubeflow among the physics community at CERN.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Dejan Golubovic

Dejan Golubovic

Junior Fellow, CERN
Dejan Golubovic is a CERN software engineer with experience in machine learning. His interests are containerized applications, Python programming, and large-scale distributed systems. Dejan is currently working on machine learning infrastructure with Kubernetes and Kubeflow at CERN... Read More →
avatar for Daniel Holmberg

Daniel Holmberg

Technical Student, CERN
Daniel is a technical student at CERN investigating deep learning applications for the CMS experiment. A special focus of his work is on promoting the Kubeflow platform to the high energy physics community at CERN, and developing examples for running physics analyses on it. Daniel... Read More →

CERN KF Kubecon 2022 EU Jet Tagging pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Research + Academia

17:25 CEST

Registries After Dark, Part 2: Distributed Random Access Merkledags - Daniel Mangum, Upbound & Jason Hall, Chainguard
Our friend the registry is back and is getting into more mischief than ever. After stretching the OCI image and distribution specifications to implement a registry that acts as a chat server, Dan and Jon have continued to exploit the generality of the spec to support more use cases. In this session, they’ll move beyond what actually happens when you “push” and “pull” or use tags as identifiers. Taking a step back and looking at the landscape of hosted registries offers a unique view of the capabilities of this network of systems we all rely on - capabilities exhibited by other systems we are familiar with: computers. Attendees will join Dan and Jon on a crash course through the history of computer architecture, making stops along the way at Turing machines, load-store architectures, and compiler design, before finding themselves faced with a new definition of DRAM: Distributed Random Access Merkledag.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jason Hall

Jason Hall

Engineer, Chainguard
Jason contributes to various projects related to container image construction, security and performance.He has never heard a joke about his name and the JavaScript Object Notation that didn't elicit a polite chuckle. He lives in Brooklyn with his wife and kids, and enjoys naps and... Read More →
avatar for Daniel Mangum

Daniel Mangum

Cloud Lead, Golioth
Dan has worked in a variety of infrastructure automation and distributed systems roles, building software that powers internal cloud platforms at some of the largest companies in the world. He is a long-time open-source contributor, serving in leadership roles in the Kubernetes community... Read More →

Thursday May 19, 2022 17:25 - 18:00 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Runtimes

17:25 CEST

Threat Modelling Kubernetes: A Lightspeed Introduction - Lewis Denham-Parry, Control Plane
Cloud native container and Kubernetes systems bring new threats and risks to our precious workloads. As cloud technologies undergo rapid innovation and new tools and techniques emerge, security can get left behind. The answer to this conveyor-belt of potential insecurity? Threat modelling! Join us for a primer on threat modelling cloud native systems, understanding adversarial techniques and preventative measures, and helping security and engineering teams increase the security and velocity of system delivery.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Lewis Denham-Parry

Lewis Denham-Parry

Head of Training, Control Plane
Lewis works for Control Plane as Head of Training, helping others learn how to orchestrate the ocean of containers using Kubernetes and securing their infrastructure by teaching how to attack and defend Cloud Native infrastructure. He co-founded Cloud Native Wales, an initiative to... Read More →

Threat Modelling Kubernetes A Lightspeed Introduction pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

17:25 CEST

Service Mesh at Scale: How Xbox Cloud Gaming Secures 22k Pods with Linkerd - Christopher Voss, Microsoft
During this session, Chris Voss, Senior Software Engineer at Microsoft, will share how Microsoft deployed Linkerd to apply mutual TLS, observability, and reliability to 22,000 meshed pods across 26 clusters. Xbox Cloud Gaming is Microsoft's game streaming service. With over 300 games available in 26 countries. The app is massive: 26 clusters across 18 regions, each with 50+ microservices and 700 to 1,000 pods — all of which are meshed with Linkerd. Chris will cover Xbox Cloud Gaming's Kubernetes and Linkerd journey, including how they: * Applied mutual TLS to 22k pods with zero config * Reduced pod/container monitoring cost by thousands of dollars using Linkerd observability * Integrated Prometheus, Linkerd, Flagger and Azure ADO for progressive delivery.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Christopher Voss

Christopher Voss

Senior Software Engineer, Microsoft
I work on streaming video games from the cloud.  I have lots of experience with Kubernetes and Linkerd.  Happy to chat on any of it!

KubeCon EU 2022 Xcloud Linkerd pdf
Thursday May 19, 2022 17:25 - 18:00 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Service Mesh
 
Friday, May 20
 

09:00 CEST

Keynote: Opening Remarks - Jasmine James, Senior Engineering Manager-Developer Experience; Ricardo Rocha, Computing Engineer, CERN; Emily Fox, Security Engineer, Apple
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →
avatar for Emily Fox

Emily Fox

Security Lead - Emerging Technologies, Security Community Architect - OSPO, Red Hat
Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and accessible to everyone. Serving as chair on the Cloud Native Computing Foundation’s... Read More →
avatar for Jasmine James

Jasmine James

Senior Engineering Manager-Developer Experience
Jasmine is an engineering manager leading the developer experience pillar in the engineering effectiveness organization. She has previously worked at Delta Air Lines enabling cloud native application development by providing modern tooling and capabilities utilizing various CNCF projects... Read More →

Friday May 20, 2022 09:00 - 09:05 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:05 CEST

Keynote: Nurturing The Whole Project - Josh Berkus, Community Architect, Red Hat & Catherine Paganini, Head of Marketing & Community, Buoyant
Your code is reviewed, docs are being written, and the CNCF is hosting an event for you. What else does an open source project need?

As it turns out, a lot. You need to deliberately create a welcoming community, publicize your project, manage contributors' expectations, motivate them to take on more responsibility, develop project policies and processes, and more. With so many things to tackle, it can feel overwhelming. Fortunately, lots of people have done this before — and the CNCF and TAG Contributor Strategy are here to help.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Josh Berkus

Josh Berkus

Kubernetes Community Architect, Red Hat
Josh Berkus is the Kubernetes Community Manager for Red Hat. He contributes to Kubernetes, Etcd, Elekto, and a few other projects. Josh is a TAG Contributor Strategy co-chair, and recently retired from being a Kubernetes SIG lead. He also still dabbles in databases, despite being... Read More →
avatar for Catherine Paganini

Catherine Paganini

Head of Marketing, Buoyant
Catherine Paganini is TAG Contributor Strategy Co-chair, CNCF Deaf & Hard of Hearing WG facilitator, CNCF Cloud Native Glossary founder, and Head of Marketing at Buoyant, the creator of Linkerd. A marketing leader passionate about open source, Catherine started her contributor journey... Read More →

Friday May 20, 2022 09:05 - 09:20 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:20 CEST

Keynote: Supporting the Community – So Open Source Projects Can Grow and Thrive - Le Tran, Member of Technical Staff, Kasten by Veeam
Modern software is built on open source projects, and in turn, the success of any open source project hinges on its community members and their contributions. So how do we create communities with active contributors and ensure our open source projects benefit from their innovative ideas? At Kasten by Veeam, we are working to build an open source community whose members contribute often, and in meaningful ways to our open source cloud native projects. During this session, a member of the technical staff from Kasten, Le Tran will share some insights on our journey to build an open source community, including the benefits and challenges that come with creating a contributing culture in an organization.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Le Tran

Le Tran

Member of Technical Staff, Kasten by Veeam
Le Tran has been a member of the technical staff at Kasten by Veeam since October 2021 and is new to cloud native development. Prior to joining Kasten, she worked in the automotive embedded systems industry as a software engineer. She led a team that launched new surround view camera... Read More →

Friday May 20, 2022 09:20 - 09:25 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:25 CEST

Keynote: How Developers Help Scale Kubernetes Security - Connor Gorman, Senior Principal Software Engineer, Red Hat
Properly securing applications deployed onto Kubernetes is a shared responsibility. Security teams define organizational policies that improve security posture while developers implement those policies through good security practices, keeping  images up to date with the latest vulnerability fixes and configurations that follow the principle of least privilege. The declarative nature of Kubernetes allows security to be deeply integrated into development workflows. This integration empowers developers to be security stakeholders and scales the remediation of security issues. In this session, we’ll explore concrete ways and best practices for integrating security into both CI (Continuous Integration) and CD (Continuous Deployment).

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Connor Gorman

Connor Gorman

Senior Principal Software Engineer, Red Hat
Connor has been a technical lead on the Red Hat Advanced Cluster Security (ACS) team (formerly StackRox) for the past 4.5 years focusing on helping customers solve Kubernetes security challenges related to configuration management, vulnerability scanning, and incident response. He... Read More →

Friday May 20, 2022 09:25 - 09:30 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:30 CEST

Keynote: CNCF Project Updates - Jasmine James, Senior Engineering Manager-Developer Experience; Ricardo Rocha, Computing Engineer, CERN; Emily Fox, Security Engineer, Apple
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →
avatar for Emily Fox

Emily Fox

Security Lead - Emerging Technologies, Security Community Architect - OSPO, Red Hat
Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and accessible to everyone. Serving as chair on the Cloud Native Computing Foundation’s... Read More →
avatar for Jasmine James

Jasmine James

Senior Engineering Manager-Developer Experience
Jasmine is an engineering manager leading the developer experience pillar in the engineering effectiveness organization. She has previously worked at Delta Air Lines enabling cloud native application development by providing modern tooling and capabilities utilizing various CNCF projects... Read More →

Friday May 20, 2022 09:30 - 09:50 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

09:50 CEST

Keynote: Push It to the Limit: From Canary Deployments to Canary Clusters - Henrik Høegh, Platform Engineer, Lunar
At Lunar bank we had a good problem, our customers rely on us to move quickly and provide new features and to do so in a highly reliable manner. To meet their needs we set out on a journey to move from canary deployments, where we could test new features in a safe fashion, to canary clusters. We envisioned a world where our production clusters were truly disposable and after 3 years we finally achieved that goal. In this session we will share how we did it, and how you can too. Today any engineer at Lunar bank can fail over the entire platform in 40 minutes. By deeply integrating with our infrastructure provider, writing some new custom operators, and moving most state out of the cluster Lunar is in a position to make disaster recovery a day to day operation. Listen as Henrik shares the successes, key learnings, and challenges we faced along the way.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Henrik Høegh

Henrik Høegh

Platform engineer, Lunar
Henrik is a Cloud Native Co-organizer in Cloud Native Aarhus where he contributes to the community with event planning and talks. He works as Platform Engineer at Lunar maturing, developing the platform and giving support to its users. He is currently focused on maturing Lunars failover... Read More →

KubeCon 2022 Push it to the limit pdf
Friday May 20, 2022 09:50 - 10:05 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:05 CEST

Keynote: Exploring the Frontiers of Cloud Native - Bryan Che, Chief Strategy Officer, Huawei
Cloud native technologies and adoption have certainly come a long way since the early days of small-cluster Kubernetes and containers. But, there are still so many exciting frontiers for cloud native to explore. At Huawei, we have been working to push cloud native deployments into the depths of even outer space, to wider scales than ever before, and to higher-level workloads such as AI and machine learning. And, we have been working together with others to broaden the cloud native community.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Bryan Che

Bryan Che

Chief Strategy Officer, Huawei
Bryan Che is Chief Strategy Officer at Huawei. There, he leads Huawei’s vision and strategy across its overall businesses and portfolio, which spans mobile and consumer electronics, telecommunications, and cloud and AI.Bryan has tremendous experience building new enterprise businesses... Read More →

Friday May 20, 2022 10:05 - 10:10 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:10 CEST

End User Awards
Click here to view captioning/translation in the MeetingPlay platform!
Friday May 20, 2022 10:10 - 10:25 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

10:25 CEST

Keynote: Closing Remarks - Jasmine James, Senior Engineering Manager-Developer Experience; Ricardo Rocha, Computing Engineer, CERN; Emily Fox, Security Engineer, Apple
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →
avatar for Emily Fox

Emily Fox

Security Lead - Emerging Technologies, Security Community Architect - OSPO, Red Hat
Emily Fox is a DevOps enthusiast, security unicorn, and advocate for Women in Technology. She has worked in security for over 13 years to drive a cultural change where security is unobstructive, natural, and accessible to everyone. Serving as chair on the Cloud Native Computing Foundation’s... Read More →
avatar for Jasmine James

Jasmine James

Senior Engineering Manager-Developer Experience
Jasmine is an engineering manager leading the developer experience pillar in the engineering effectiveness organization. She has previously worked at Delta Air Lines enabling cloud native application development by providing modern tooling and capabilities utilizing various CNCF projects... Read More →

Friday May 20, 2022 10:25 - 10:30 CEST
Pavilion 1 | Level 3 | Central Forum
  Keynote Sessions

11:00 CEST

A Treasure Map of Hacking (and Defending) Kubernetes - Andrew Martin, ControlPlane
In this ultimate guide to threat-driven defence, we threat model Kubernetes and detail how to attack and defend your precious clusters from nefarious adversaries. This broad and detailed appraisal of end-to-end cluster security teaches you how to defend against a range of historical and current CVEs, misconfigurations, and advanced attacks: - See the historical relevance of CVEs and demonstrations of attacks against your containers, pods, supply chain, network, storage, policy, and wider organisation - Understand when to use next-generation runtimes like gVisor, firecracker, and Kata Containers - Delve into workload identity and advanced runtime hardening - Consider the trust boundaries in soft- and hard-multitenant systems to appraise and limit the effects of compromise - Learn to navigate the choppy waters of advanced Kubernetes security.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Andrew Martin

Andrew Martin

CEO, ControlPlane
Andrew has an incisive security engineering ethos gained building and destroying high-traffic web applications. Proficient in systems development, testing, and operations, he is at his happiest profiling and securing every tier of a cloud native system, and has battle-hardened experience... Read More →

Friday May 20, 2022 11:00 - 11:35 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

11:00 CEST

From Cloud Naive to Cloud Native – Avoiding Mistakes Everyone Does - Max Körbächer, Liquid Reply
“Cloud native” is nowadays a very brought word, used for everything from projects going to the cloud, open source solutions or in architecture terminology. This misleads initiatives and corporate decisions on cloud-first projects as well as their promised savings, improvements or speed gain. In this talk, we will have a look at common mistakes, how corporations place them elf into a twister and why you first need to really understand Netflix, Spotify and co, so that you can understand that you are very much different. Because migrating to the cloud, doesn’t make you native. Feel the passive-aggressive vibes? Good, now we can talk! Let us seriously discuss about architectural patterns, what really matters in your cloud provider, leading decision processes on a technical level and finally what are the steps to become cloud native and not cloud naive.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Max Körbächer

Max Körbächer

Co-Founder & Cloud Native Advisor, Liquid Reply
Max is Founder and Cloud Native Advocate at Liquid Reply. He is Co-Chair of the CNCF Environmental Sustainability Technical Advisory Group, CNCF Ambassador, Linux Foundation Europe Advisory Board inaugural member and served 3 years at the Kubernetes release team. In his work he supports... Read More →

KubeConEU Koerbaecher pdf
Friday May 20, 2022 11:00 - 11:35 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Business Value

11:00 CEST

Cloud Native Storage: The CNCF Storage TAG, Projects, Technology & Landscape - Alex Chircop, Ondat; Xing Yang, VMware; Raffaele Spazzoli, RedHat
This talk will introduce the CNCF Storage TAG and discuss how the TAG operates, how we work with CNCF Storage projects, and the work we have done to build guidance and write whitepapers for the ecosystem. During this session we will cover an overview of storage projects in the CNCF, including the broader ecosystem, as well as projects that are currently being reviewed. We will also share updates of our latest work including the CNCF Storage Whitepaper, Performance and Benchmarking whitepaper and the Cloud Native Disaster Recovery whitepaper. Join us to find out how to contribute and participate in the CNCF storage community and discover practical guidance on how to use cloud native storage in your environments.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Alex Chircop

Alex Chircop

Chief Product Architect, Akamai
Chief Product Architect at Akamai. Previously a founder and CTO of Ondat (formerly StoraeOS), building software defined solutions for cloud native environments. Alex is also a co-chair of the CNCF Storage TAG (previously SIG). Before embarking on the startup adventure he spent over... Read More →
avatar for Raffaele Spazzoli

Raffaele Spazzoli

Senior Principal Architect, Red Hat
Raffaele is a full-stack enterprise architect with 20+ years of experience. Raffaele started his career in Italy as a Java Architect then gradually moved to Integration Architect and then Enterprise Architect. Later he moved to the United States to eventually become an OpenShift Architect... Read More →
avatar for Xing Yang

Xing Yang

Tech Lead, VMware by Broadcom
Xing Yang is a Tech Lead in the Cloud Native Storage team at VMware by Broadcom. She is a co-chair of CNCF Storage TAG, a co-chair of the Kubernetes Storage SIG, a co-chair of the Data Protection WG, and a maintainer in Kubernetes CSI. Before joining VMware, Xing was the Lead Architect... Read More →

Friday May 20, 2022 11:00 - 11:35 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, CNCF Storage TAG

11:00 CEST

SIG Security Update: We Lift Together - Tabitha Sable, Datadog; Pushkar Joglekar, VMware; Rey Lejano, SUSE; Savitha Raghunathan, Red Hat
SIG Security takes a community-building approach to improving Kubernetes security, both for the project itself and our end users. Join organizers Pushkar, Rey, Savitha, and Tabitha for an overview of how we make space for security collaboration to thrive. We'll share timely updates from our tooling and third-party audit subgroups and information about guided security self-assessments for Kubernetes subprojects. In closing, a deep-dive into our efforts to improve security documentation through blogs, tutorials, whitepapers, and goose honking! You'll learn what's been going on, what’s next, and how you could join in, regardless of your experience from beginner to expert. We hope to see you there!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Savitha Raghunathan

Savitha Raghunathan

Senior Software Engineer, Red Hat
Savitha Raghunathan is a Senior Software Engineer at Red Hat, working on Container Migration and Application Modernization technologies. She leads K8s sig-security-documentation sub-project aiming to create security awareness through docs. As a maintainer of the Konveyor project... Read More →
avatar for Tabitha Sable

Tabitha Sable

Staff Engineer, Datadog
Tabitha Sable never met a system she didn't want to take apart. She serves the Kubernetes community as co-chair of SIG Security and a member of the Security Response Committee. At work, Tabitha leads Runtime Infrastructure Security at Datadog. She writes exploits, hardens infrastructure... Read More →
avatar for Rey Lejano

Rey Lejano

Cloud Native Solution Architect, SUSE
Rey Lejano is a Field Engineer at SUSE by way of Rancher Labs and is the co-chair of Kubernetes SIG Docs. Rey contributes to various Kubernetes Special Interest Groups such as Contributor Experience, Docs, Release, and Security. He is a member of seven Kubernetes Release Teams including... Read More →
avatar for Pushkar Joglekar

Pushkar Joglekar

Cloud Native Security Engineer, Independent
Pushkar Joglekar wears multiple hats in the community as: CNCF Security - TAG Co-Chair & Kubernetes SIG Security Tooling Sub-Project Lead to “Make Kubernetes Secure For All”. Since 2019, he feels incredibly fortunate to have written the security chapters in Nigel Poulton’s “The... Read More →

We Lift Together KubeCon EU 2022 pdf
Friday May 20, 2022 11:00 - 11:35 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes SIG Security

11:00 CEST

Staring Into the Abyss with the Security Technical Advisory Group - Andres Vega, VMware & Brandon Lum, Google
The CNCF Security Technical Advisory Group provides analysis and helps guide the community at large on the most appropriate security mechanisms, architectures, design patterns, and tooling. This presentation covers an introduction to the Security TAG, their charter and scope, and highlights on several efforts the TAG has undertaken (completed and in progress) with their community impact such as the Security Reviews, Supply Chain Security Paper, Security Pals, and so much more. This session is for anyone interested in cloud native security, and wishes to understand how to get involved.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Andres Vega

Andres Vega

Founder, M42

Friday May 20, 2022 11:00 - 11:35 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, TAG Security

11:00 CEST

Observing Fastly’s Network at Scale Thanks to K8s and the Strimzi Operator - Fernando Crespo & Daniel Caballero, Fastly
Fastly efficiently delivers many Tbps thanks to an Edge Network that expands across tens of PoP across the globe; operating such a network comes with many challenges, so Fastly keeps investing in tooling and automated systems to make that journey as pleasant as possible. One of these systems is Fastly’s Autopilot: an automated system that performs egress traffic optimizations. This talk will provide a system overview, focusing then on the associated telemetry pipeline and how it leverages from our internal k8s-based platform (elevation), some key operators, like the Strimzi Kafka one, opensource networking libraries, like GoBGP, and tooling like FluxCD. Finally, this talk will also share some challenges and findings associated with this very network-related use case.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Daniel Caballero Rodriguez

Daniel Caballero Rodriguez

Principal Engineer, Fastly
Principal Engineer at Fastly, previously part-time lecturer (La Salle University in Barcelona, KTH Royal Institute of Technology in Stockholm), and also working as Staff Devops at Schibsted, NTT, Oracle (and others!), where I have been trying to code, build and maintain backend services... Read More →
avatar for Fernando Crespo Gravalos

Fernando Crespo Gravalos

Staff Engineer, Fastly
Staff Engineer at Fastly, ex-Tuenti, Nagra and Bitnami SRE. Managing and scaling k8s production clusters since 2017, I like building systems and tools with code, being golang my preferred language. I was lucky enough to contribute with the kubernetes open source community with fixes/features... Read More →

Observing Fastly’s network at scale thanks to K8s and the Strimzi operator pdf
Friday May 20, 2022 11:00 - 11:35 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Networking

11:00 CEST

Attacking & Defending Kubernetes TEE Enclaves in Critical Infrastructure - Robert Ficcaglia, SunStone Secure, LLC
Trusted Execution Environments (TEE)s are a feature of Intel, AMD, ARM and other chip platforms, widely available on public clouds for high security infrastructure. Kubernetes can be deployed with TEE enclaves to create a Trusted Computing Base (TCB) which can cryptographically protect the compute and memory environment for the Kubernetes control plane, data flows, and CI/CD pipelines on-chip. This greatly reduces the attack "surface area" and reduces 3rd party supply chain risks. The session will examine detailed Kubernetes threat models for critical infrastructure and demonstrate how to attack and defend Kubernetes workloads in the context of TEEs. Attendees will learn how to use enclaves to protect the integrity of container images used for workloads, deploy TEE-based Pods,.examine development and operational challenges with TEE usage, and explore compliance benefits including specific policy and control mappings for GDPR, CCPA, PCI, HIPAA and NIST 800-53.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
RF

Robert Ficcaglia

CTO, Self
Robert Ficcaglia is CTO of SunStone Secure, a virtual CISO and Compliance Advisory firm, and also serves as the Kubernetes Policy Workgroup Co-Chair, CNCF Security Technical Advisory Group (TAG) Lead Assessor, and member of the Kubernetes Security Special Interest Group (SIG-security... Read More →

KubeCon EU 2022 Attack and Defend TEE v2 pdf
Friday May 20, 2022 11:00 - 11:35 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

11:00 CEST

Kubernetes Networking 101 - Randy Abernethy, RX-M LLC
Kubernetes Networking 101 will introduce attendees to the world of network communications in a hands on Cloud Native setting. This talk delivers a high level but completely practical end to end look at service communications within and without a Kubernetes cluster. Attendees will see how the many facets of Kubernetes networking come together to enable powerful communications solutions first hand. The tutorial begins with the simplest types of service communications, using Kubernetes services, DNS (CoreDNS) and CNI plugins (Cilium) to facilitate interprocess communications and load balancing. The tutorial builds additional scenarios on this base, including ingress (Emissary/Envoy), NodePort / HostPort features, load balancing (Metal-lb) and finally a short look at service mesh functionality (Linkerd). Upon completion of this tutorial, attendees will have a clear understanding of the Kubernetes communications possibilities and pointers to next steps in the learning journey.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Randy Abernethy

Randy Abernethy

Managing Partner, RX-M LLC
Randy has been in tech for over 30 years and is currently a Managing Partner at RX-M LLC, a cloud native consulting and training firm. Randy is the author of several technology books, a serial KubeCon committee member and a frequent conference speaker. Randy has been on the teams... Read More →

rx m net 101 kubecon eu 2022 pdf
Friday May 20, 2022 11:00 - 12:30 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  101 Track, Tutorial

11:00 CEST

Writing Crossplane Providers with Code Generation - Muvaffak Onuş & Hasan Türken, Upbound
Crossplane providers are Kubernetes controllers that act as the bridges between your cluster and any external API. However, it’s always been a challenge to write them with CRDs that satisfy the Crossplane Resource Model and in turn Kubernetes Resource Model. In this talk, we will go over the steps of creating a provider with the latest Crossplane Runtime and code generation tooling and then we will see how we can wire that provider up to our application to provision external infrastructure.
Speakers
avatar for Hasan Türken

Hasan Türken

Principal Software Engineer, Upbound
Hasan Türken is a software engineer specialized in Kubernetes. As a certified Kubernetes administrator (CKA) and Security specialist (CKS), he actively participated in containerization and Kubernetes transformation of distributed enterprise applications, guided teams for cloud native... Read More →
avatar for Muvaffak Onuş

Muvaffak Onuş

Staff Software Engineer, Upbound
Muvaffak is a maintainer in Crossplane, an incubating CNCF project, where he led several big initiatives in the last couple of years to enable control plane architectures in cloud native ecosystem. Before Crossplane, he built the SaaS backend of SAP Data Intelligence platform using... Read More →

Friday May 20, 2022 11:00 - 12:30 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Application + Development, Tutorial

11:55 CEST

What Anime Taught Me About K8s Development & Tech Careers - Annie Talvasto, Camunda
From One piece and Naruto to Neon Genesis Evangelion and Dragon Ball, Japanese animation is a cultural phenomenon. This session will take you through both the landscape of anime and Kubernetes development, with helpful beginner tips to get you started on your cloud native journey. The session will also cover what the heroes of East blue and Planet 4032-877 can teach us about career development in the tech world. Importance of perseverance, inclusion & diversity as well as always having a snack at hand - come and learn how anime can boost your Kubernetes and tech career to the next level!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Annie Talvasto

Annie Talvasto

CNCF Ambassador & CMO, VSHN
Annie Talvasto is an award-winning international technology speaker and leader. She has been recognized with the CNCF Ambassador and Azure MVP awards. Annie has co-organized the Kubernetes & CNCF Finland meetup since 2017. She has spoken at technology conferences worldwide, including... Read More →

Friday May 20, 2022 11:55 - 12:30 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

11:55 CEST

CNCF TAG-Runtime: Cloud Native Open Source Core Components - Alex Scammon, G-Research; Zbynek Roubalik, Red Hat; Ricardo Aravena, Rakuten; Samuel Ortiz, Apple
Learn about the CNCF open source projects that allow users to run cloud native workloads! This session will cover: 1) Overview of the TAG-Runtime, how to join, and how to get involved. 2) Update of working groups (new, existing, and potential) within the scope of the TAG . 3) How the TAG provides advise to the CNCF TOC. 4) Future trends for cloud native runtime technologies in the TAG scope such as containers, Virtual Machines, Edge/MLOps and WebAssembly.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ricardo Aravena

Ricardo Aravena

Cloud Native Engineering Lead, Truera
Ricardo currently works at Truera as a Cloud Native Lead helping automate everything with cloud native technologies. He's an open source enthusiast and co-chair of the CNCF TAG-Runtime. He has been working in tech in software engineering roles for more than 20 years and comes from... Read More →
avatar for Alex Scammon

Alex Scammon

Head of Open Source Engineering, G-Research
Alex enjoys building motivated and effective engineering organizations. Whether at a large international company or a small local startup, he cares about how we create products just as much as what those products actually are.
avatar for Zbynek Roubalik

Zbynek Roubalik

CTO, Kedify
Zbynek is a founder and CTO of Kedify, a company specializing in enterprise-grade autoscaling of Kubernetes applications. He is also the maintainer of KEDA, a CNCF project focused on enabling autoscaling for event-driven applications on Kubernetes. Zbynek has previously served as... Read More →
SO

Samuel Ortiz

Software Engineer, Apple

CNCF TAG Runtime Cloud Native Open Source Core Components pdf
Friday May 20, 2022 11:55 - 12:30 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, CNCF TAG-Runtime

11:55 CEST

Intro + Deep Dive: SIG Scalability - Marcel Zięba & Wojciech Tyczyński, Google
This session will focus on the different efforts that SIG Scalability is involved in: defining what scalability means for Kubernetes, driving performance improvements, maintaining infrastructure for scalability testing, guarding Kubernetes against performance regressions. Time for Q&A will be reserved at the end of the session to understand how the SIG can better engage with the community as well as to allow the audience to provide the input about the roadmap.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Wojciech Tyczyński

Wojciech Tyczyński

Senior Staff Software Engineer, Google
Wojciech is working on Google Technical Infrastructure & Cloud since 2012. Since 2015 he works on Kubernetes and GKE. With the main focus on scalability, performance and reliability, he gained experience and contributed to many Kubernetes features and most of its components. Before... Read More →
avatar for Marcel Zięba

Marcel Zięba

Senior Software Engineer, Isovalent
Marcel Zięba is a Senior Software Engineer at Isovalent and is leading SIG Scalability in the Kubernetes open-source community. Previously, Marcel worked on Kubernetes and Google Kubernetes Engine since 2020 focusing mainly on performance and scalability. Now he is focusing on the... Read More →

Friday May 20, 2022 11:55 - 12:30 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, SIG Scalability

11:55 CEST

Kubernetes SIG Apps Updates - Maciej Szulik, Red Hat; Janet Kuo, Google; Kenneth Owens, Brex
SIG Apps is the special interest group covering deploying and operating applications in Kubernetes with a focus on the application developer and application operator experience. In this session the SIG Apps leads will provide an overview of what we’ve accomplished over the past year, including API promotions, controller improvements, leadership changes, subprojects status etc. They will also share the work that is being planned for the upcoming releases. The session will conclude with an open discussion and Q&A.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Janet Kuo

Janet Kuo

Staff Software Engineer, Google
Janet Kuo is a Staff Software Engineer at Google. She's joined the Kubernetes project since before the 1.0 launch in 2015. She is Kubernetes project maintainer, SIG Apps chair, and KubeCon co-chair emeritus. In her free time, she enjoys traveling and taking photos.
avatar for Maciej Szulik

Maciej Szulik

Senior Principal Software Engineer, Red Hat
Maciej is a passionate developer with almost 2 decades of experience in many languages. Currently he's working on OpenShift and Kubernetes for Red Hat. Whereas at night he is hacking on side projects with python. In his spare time he enjoys reading a good book or taking photos.

KubeCon EU 2022 SIG Apps pdf
Friday May 20, 2022 11:55 - 12:30 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes SIG-Apps

11:55 CEST

Story of Correlation: Integrating Thanos Metrics with Observability Signals - Bartłomiej Płotka, Red Hat & Kemal Akkoyun, Polar Signals
The CNCF Incubated Thanos project with the large open-source community continues to push boundaries regarding observability and monitoring using Prometheus-based metrics. Together with the Prometheus community, it improves the metric story for Kubernetes clusters and beyond. Things like improved performance, better scalability, debuggability, security, metrics backfilling and query QoS is only the tip of the iceberg. As we know, observability nowadays comes in many flavours. Bunching them together is not a trivial side, given many shapes and collection points. Aside from metrics, we have logs, traces or even continuous profiling. In this talk, Kemal and Bartek, Thanos maintainers, after a quick overview of Thanos, will explain how Thanos can be integrated with those non-metric observability signals. The audience will learn an example, end-to-end ways to correlate multiple observability backends with Thanos for enhanced observability and monitoring experience.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Bartłomiej Płotka

Bartłomiej Płotka

Senior Software Engineer, Google
Bartek Płotka is a Senior Software Engineer at Google. SWE by heart, with an SRE background, currently working on Cloud Observability. Previously Principal Software Engineer at Red Hat. Author of "Efficient Go" book with O'Reilly. As the co-founder of the CNCF Thanos project and... Read More →
avatar for Kemal Akkoyun

Kemal Akkoyun

Software Engineer, Polar Signals
Kemal Akkoyun is a Senior Software Engineer at Polar Signals. He is one of the maintainers of Thanos and Prometheus. He is heavily invested in observability, profiling, and performance engineering. Kemal is interested in tools like Go, eBPF, Kubernetes, Prometheus, and Rust. He likes... Read More →

Friday May 20, 2022 11:55 - 12:30 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, Thanos

11:55 CEST

Logs Told Us It Was DNS, It Felt Like DNS, It Had To Be DNS, It Wasn’t DNS - Laurent Bernaille & Elijah Andrews, Datadog
It all started with a team reaching out because they had DNS issues during rolling updates. Business as usual when you host hundreds of applications on dozens of Kubernetes clusters… Four weeks later: We are reading kernel code to understand the corner cases of dropping Martian packets. Could this be the connection between gRPC client reconnect algorithms and the overflowing conntrack table we can feel but not see? In time, we solved the issue. And for once… it wasn't DNS! In this talk, we will focus on one of the most complex incidents we have faced in our Kubernetes environment. We will go through the debugging steps in detail, dive deep into the mysterious behaviors we discovered and explain how we finally addressed the incident by simply removing three lines of code.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Laurent Bernaille

Laurent Bernaille

Principal Engineer, Datadog
Laurent Bernaille worked several years as a consultant specializing in cloud, containers, and automation and helped organizations migrate to the public cloud and adopt containers. He is now Principal Engineer at Datadog and works closely with infrastructure teams, which are responsible... Read More →
avatar for Elijah Andrews

Elijah Andrews

Senior Software Engineer, Datadog
I'm a software engineer at Datadog. I'm currently working on our networks, and previously worked on our data ingestion pipelines. Outside of work, I love playing guitar, going to concerts, and spending time with my cat Bao.

Logs told us it was DNS pdf
Friday May 20, 2022 11:55 - 12:30 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Networking

11:55 CEST

Show Me Your Labels and I’ll Tell You Who You Are - Sandor Guba, Cisco
One of the underestimated benefits of Kubernetes is the standardization of labels. Of course in every provision system, you have the ability to mark the assets with taints, tags, labels, or something. Prometheus raised the stakes and built a whole metric system on labels. The concept was so successful that more and more tooling tries to benefit from it. Modern logging, tracing, and metric systems have at least one common characteristic: they have labels. In this talk, Sandor will demonstrate how to fully exploit labels with tools that are available already at your hands. Correlate different inputs, transform logs to metrics, and more!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Sandor Guba

Sandor Guba

Engineering Technical Leader, Cisco
Sandor is a Senior Engineer and Architect whose main field is observability. He built and operated infrastructure at UStream and later at IBM. After that, He decided to concentrate on developing observability tools and co-founded Banzai Cloud where they built tooling around Kubernetes... Read More →

KubeCon EU 2022 ShowMeLabels pdf
Friday May 20, 2022 11:55 - 12:30 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

11:55 CEST

Full Mesh Encryption in Kubernetes with WireGuard and Calico - Peter Kelly, Tigera
Encrypting data-in-transit is an important feature for many Kubernetes users especially for compliance and a zero-trust model. There are several ways this can be achieved, including using WireGuard, an exciting new lightweight VPN in the Linux kernel. This talk explains why you would choose WireGuard for this task and how it can work in a dynamic platform such as Kubernetes using Project Calico to provide a full host-to-host encrypted mesh at a layer below your application workloads. WireGuard is popular for good reason; lightweight, fast, scalable and easy. We’ll show you how easy it is to make it work but also dig in to the implementation details for those who love to sweat the details.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Peter Kelly

Peter Kelly

Director of Engineering, Tigera
Peter is a Director of Engineering at Tigera and Site Leader for Tigera's EMEA office based in Cork, Ireland where he and his team work on encryption and application security. Peter has two decades of experience in software development, including recently building control plane technology... Read More →

KubeCon2022 PeterKelly.pptx pdf
Friday May 20, 2022 11:55 - 12:30 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

14:00 CEST

Kubernetes Everywhere: Lessons Learned From Going Multi-Cloud - Niko Smeds, Grafana Labs
Many companies are interested in deploying their products across multiple cloud providers, but few actually see it through. While benefits like avoiding provider lock-in and increased uptime during provider outages are attractive, several factors are important to consider. Grafana Labs successfully deployed across AWS, Azure, DigitalOcean, GCP, and Linode in more than 30 regions; that includes inter-cloud network connections. This talk will explore some of the large and subtle differences in networking and managed Kubernetes services between said providers. We’ll discuss the approaches we took while scaling our infrastructure across multiple environments, the challenges we faced, and what worked in the end.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Niko Smeds

Niko Smeds

Site Reliability Engineer, Grafana Labs
Niko is a site reliability engineer at Grafana Labs. As a member of the cloud platform team, his focus has been scaling the Kubernetes environments and monitoring systems. Previous experience includes deploying and managing both private and public cloud infrastructure, and working... Read More →

kubernetes everywhere slides pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Pavilion 3, Room D | Level 2 | Central Forum Feria Valencia
  101 Track

14:00 CEST

How Adobe is Optimizing Resource Usage in Kubernetes - Carlos Sanchez, Adobe
Moving to Kubernetes opens the door to a world of possibilities, the amount of workloads that can be run and the flexibility it provides. However this comes at a cost on managing the resources used by many applications and teams. At Adobe we make extensive use of standard Kubernetes capabilities to reduce resource usage and we have also built some solutions at several levels of the stack to improve it. From autoscaling to workload hibernation, from automated resource requests to Kubernetes Jobs, we have experimented with and implemented several features that decrease our resource usage and lower the cost of running many Kubernetes clusters at scale. Both at workload resource level and also at achieving higher density clusters that reduce the number of clusters we need and the operating costs.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Carlos Sanchez

Carlos Sanchez

Principal Scientist, Adobe
Carlos Sanchez is a Principal Scientist at Adobe Experience Manager, specializing in software automation, from build tools to Continuous Delivery and Progressive Delivery. Involved in Open Source for over 15 years, he is the author of the Jenkins Kubernetes plugin and a member of... Read More →

KubeCon EU 2022 How Adobe is Optimizing Resource Usage in Kubernetes pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Business Value

14:00 CEST

Removing Language Barriers for Spanish-speaking Professionals - Rael Garcia Arnés, Red Hat & Victor Morales, Samsung Electronics
In 2020 the Apache Software Foundation Community published a survey[1] which suggests that language can be one of the major barriers to contribute to any open source project. According to some estimates[2] in Latin America, open source technologies will grow five times in the coming years. Talented professionals, students and enthusiasts demand access to documentation written in their own language. That's why the Spanish documentation team has been participating in different initiatives to help others to contribute into the translation process. During this session, it's going to be shared what the Kubernetes Spanish documentation team has been accomplished and walkthrough the process to translate and contribute to the CNCF documentation. The prime audience for this sessions are spanish-speaking professionals and enthusiasts willing to participate in improving the CNCF documentation. They will understand the workflow to submit documentation changes and help to participate in the localization process. [1] https://cwiki.apache.org/confluence/download/attachments/158865837/The%202020%20ASF%20Community%20Survey%20-%20Readout%20%281%29.pdf?api=v2 [2] http://www.latinamerica.tech/2019/11/12/latins-contribute-little-to-open-source-software/

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Victor Morales

Victor Morales

Senior Staff Software Engineer, Samsung
Masters in Information Technology, Co-founder of the OpenStackGDL and Cloud-Native El Salvador communities and active contributor to CNCF, LFN and Open Infrastructure projects, Victor Morales is a passionate Sr. Staff Software Engineer with an interest in automated software development... Read More →
avatar for Rael Garcia Arnés

Rael Garcia Arnés

Senior Site Reliability Engineer, Red Hat
Rael is a Kubernetes contributor focused on documentation, usability, community and contributor experience. Founder in 2018 of the Cloud Native Barcelona community - cloudnative.barcelona - to encourage the adoption of cloud-native technologies and contribution to open-source projects... Read More →

KubeCon EU'22 SIG Docs pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, SIG-Docs (es)

14:00 CEST

SIG Architecture Intro and Update - Davanum Srinivas, VMware & John Belamaric, Google
SIG Architecture maintains and evolves the design principles of Kubernetes, and provides a consistent body of expertise necessary to ensure architectural consistency over time. The SIG takes care of evolution of conformance definitions, API definitions/conventions, deprecation policy, design principles, and other cross-cutting concerns. In this talk, we will provide an introduction to SIG architecture, including its role and the various subprojects that support its activities. Additionally, we will provide a community update on the status of those efforts.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for John Belamaric

John Belamaric

Senior Staff Software Engineer, Google
John Belamaric is a Senior Staff Software Engineer at Google with over 25 years of software design and development experience. As a co-chair of Kubernetes SIG Architecture, he provides leadership on production readiness, conformance, and overall software architecture for the Kubernetes... Read More →
avatar for Dims

Dims

Principal Engineer, AWS
Davanum Srinivas (a.k.a Dims) is a Principal Engineer with AWS working full time on Kubernetes and related projects at CNCF. At CNCF, Dims has served as a member of the Technical Oversight Committee and as the chair and represented the TOC on the CNCF Governing Board. In Kubernetes... Read More →

2022 KubeCon EU Kubernetes SIG Architecture Intro and Update pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes SIG-architecture

14:00 CEST

Updates from The Update Framework - Lukas Pühringer, NYU & Jussi Kukkonen, VMware
The Update Framework (TUF) is a framework for secure content delivery and updates. It protects against various types of supply chain attacks, and, in contrast to many other systems, provides resilience to compromise. In this talk Jussi and Lukas, both maintainers of the TUF reference implementation and core contributors to the TUF specification, will show why content delivery is such a crucial part of the supply chain, how TUF can be used to protect it, and where TUF is already used in practice. They will talk about how the TUF ecosystem is evolving: what is happening within the various sub projects and how some well-known adoptions and integration projects are proceeding. Finally, some interesting future developments are discussed.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Lukas Pühringer

Lukas Pühringer

Researcher / Engineer, NYU Tandon School of Engineering
Lukas Pühringer is a research scholar and software developer at the NYU Center for Cyber Security (CCS), where he leads the development of The Update Framework (TUF), and has been co-maintaining several of Prof. Justin Cappos’ software projects, most notably the supply chain security... Read More →
avatar for Jussi Kukkonen

Jussi Kukkonen

Open Source Software Engineer, Google
Jussi is an experienced developer with a long Open Source background and an interest on build automation and supply chain security. He currently works on various upstream projects related to software supply chain security and is a maintainer of Python-TUF, the reference implementation... Read More →

updates from tuf pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, TUF

14:00 CEST

Better Bandwidth Management with eBPF - Daniel Borkmann & Christopher M. Luciano, Isovalent
Kubernetes provides many knobs for managing common system resources such as vCPUs and memory limits per Pod, but often forgotten is the effect of unbounded network communication in a cluster. A large churn of packets from several services can starve bandwidth for other services. Also, out of the box TCP congestion management is not optimal for Internet-facing services. In this talk we will explore how eBPF can be leveraged to dynamically insert logic for flexible, efficient and scalable rate limiting and bandwidth management on a per-Pod basis. This talk details: - The scalability limits of token bucket filters by the bandwidth plugin, and why EDT (Earliest Departure Time) combined with eBPF is a major step forward. - How TCP congestion control with BBR can now be leveraged for Pods thanks to eBPF for significantly improving application latency and throughput. - The benefits of enforcing bandwidth limits at the egress point and considerations when to use ingress enforcement.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Daniel Borkmann

Daniel Borkmann

Isovalent
Daniel Borkmann is co-creator of both eBPF and Cilium, a founding engineer at Isovalent, and an active contributor for over a decade to the Linux kernel’s networking and eBPF subsystem. He also co-maintains eBPF in the Linux kernel.
CM

Christopher M. Luciano

Senior Solutions Architect, Isovalent
Christopher M Luciano is a Senior Solutions Architect at Isovalent. His experience as a container platform team lead enables him to help enterprises to reliably scale their Kubernetes clusters with Cilium. Christopher is a maintainer of Kubernetes networking components and assists... Read More →

KubeCon EU Better Bandwidth Management with eBPF pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Networking

14:00 CEST

Distributing PromQL for Fast and Efficient Kubernetes Fleet Monitoring - Moad Zardab, Red Hat & Filip Petkovski, Shopify
Both Thanos and Cortex have enabled the cloud native ecosystem to scale Prometheus storage with the use of blocks of data persisted across many clusters into single object storage. Whilst this unlocks cheap long term retention of metrics, it presents a significant challenge of being able to efficiently read and process large volumes of data. This talk outlines the Thanos community's efforts to improve read path performance through query pushdown and query sharding and how it compares with existing Cortex approaches. Thanos deployment's are composed of stores; components that expose a consistent Prometheus compliant read API for retrieving timeseries, and queriers; components that combine raw timeseries and evaluate PromQL expressions against them. Query pushdown gives the opportunity to pre-evaluate these expressions closer to the data, while query sharding breaks down a query into distinct, disassociated datesets that can be computed concurrently thanks to Kubernetes.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Filip Petkovski

Filip Petkovski

Staff Production Engineer, Shopify
Filip is a Staff Production Engineer at Shopify, currently working on the metrics team. He is a Thanos Metrics maintainer and an occasional Prometheus contributor.
MZ

Moad Zardab

Senior Software engineer, Red Hat
Moad Zardab is a Senior Software Engineer at Red Hat with a background in Video Game networking observability, currently working on Observability. Moad is a member of the Red Hat team that maintains Thanos, Prometheus and Observatorium, an opinionated SaaS implementation for all Observability... Read More →

Distributing PromQL for Fast and Efficient Kubernetes Fleet Monitoring pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

14:00 CEST

Komrade: an Open-Source Security Chaos Engineering (SCE) Tool for K8s - Aaron Rinehart, Verica.io & Matas Kulkovas, Cast.ai
Security Chaos Engineering (SCE) is an emerging discipline that serves as a foundation for proactively discovering system weaknesses before they become an opportunity for a malicious actor. The goal of SCE experiments is to move security toward continuous recalibration and increased confidence by deriving a more realistic understanding of how well security practices perform under expected conditions. This new technique of instrumentation proactively injects security turbulent conditions or faults into systems to determine the conditions by which our security will fail so that we can fix it before it causes customer pain. During this session, the speakers will dive into SCE as a discipline as well as showcase a demo of 'komrade', the 1st Open-Source Tool for running SCE experiments on Kubernetes.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Aaron Rinehart

Aaron Rinehart

CTO & Co-Founder, Verica.io
Aaron has been expanding the possibilities of chaos engineering in its application to other safety-critical portions of the IT domain notably cybersecurity. He began pioneering the application of security in chaos engineering during his tenure as the Chief Security Architect at the... Read More →
avatar for Matas Kulkovas

Matas Kulkovas

Software Engineer, CAST AI
Matas Kulkovas is a backend software engineer and security enthusiast currently employed as a Software Engineer for Cast AI. He joined the startup Cast AI after he completed his Masters at DTU Fotonik in Denmark in Computer Science. Matas’s Masters Thesis was focused on bringing... Read More →

KubeCon EU 2022 Presentation pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Operations

14:00 CEST

Too Much to Choose – Making Sense of a Smorgasbord of Security Standards - Anais Urlichs & Rory McCune, Aqua Security
As time goes by, there are an increasing number of security standards which Kubernetes cluster operators may be asked to comply with or get audited against. This talk will look at how Kubernetes security standards like the CIS benchmarks, DISA STIG, Pod Security Standards and the NSA hardening guide compare, where they compare and where they don’t. Additionally, we will also cover the recently released PCI guidance on container orchestration security. Once a standard has been chosen, the remaining pain lies in compliance. Luckily, the cloud native ecosystem provides several open-source tools to make it easier. We will look at using open source tooling to assess Kubernetes clusters against these standards. At the end of the presentation, the audience will gain a clear understanding of the benefits of each standard and the processes that can be adopted to comply with common requirements.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Anais Urlichs

Anais Urlichs

Developer Advocate, Aqua Security
Anaïs is a Developer Advocate at Aqua Security, where she contributes to Aqua’s cloud native open source projects. When she is not advocating DevOps best practices, she runs her own YouTube Channel centered around cloud native technologies. Before joining Aqua, Anais worked as... Read More →
avatar for Rory McCune

Rory McCune

Senior Security Advocate, Datadog
Rory is a senior advocate for Datadog who has extensive experience with Cyber security and Cloud native computing. In addition to his work as a security reviewer and architect on containerization technologies like Kubernetes and Docker he has presented at Kubecon EU and NA, as well... Read More →

Friday May 20, 2022 14:00 - 14:35 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

14:00 CEST

Linkerd End User Panel: Case Studies from Production - Catherine Paganini, Buoyant; Kasper Nissen, Lunar; Fredrik Klingenberg, Aurum AS; Eli Goldberg, Salt Security; Christian Hüning, Finleap Connect
In this panel, you'll hear from end users across a variety of industries on how they use the Linkerd service mesh in real-world production scenarios. Use cases range from applying mutual TLS to encrypt and secure all service-to-service communication, load balancing gRPC requests, and troubleshooting services before they're pushed to production. Panelists represent a variety of companies with very different environments, goals, and priorities, and discussion will be focused on real-world outcomes.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Fredrik Klingenberg

Fredrik Klingenberg

Developer, Aurum AS
Fredrik Klingenberg, Principal Software Engineer at Aurum AS, has helped many large Norwegian enterprises migrate their applications to Kubernetes. His clients include Nordic retail giant Elkjøp and most recently If Insurance. Over the past 10 years, Fredrik has developed enterprise... Read More →
avatar for Kasper Borg Nissen

Kasper Borg Nissen

Lead Platform Architect, Lunar
Kasper is a Cloud Native Computing Foundation Ambassador, and co-founder of the Nordic meetup alliance, Cloud Native Nordics, where he serves as Community Lead. He works as Lead Platform Architect at Lunar. He has worked at Lunar for 6 years, and is one of the architects behind the... Read More →
avatar for Christian Huening

Christian Huening

Lead Service Manager Cloud, BWI
Before joining BWI GmbH a Lead Service Manager Cloud in March 2023, Christian Hüning was a Technical Director at finleap connect, where he’s been responsible for the finleap cloud platform for financial services. He's passionate about cloud-native technologies and solving architectural... Read More →
avatar for Catherine Paganini

Catherine Paganini

Head of Marketing, Buoyant
Catherine Paganini is TAG Contributor Strategy Co-chair, CNCF Deaf & Hard of Hearing WG facilitator, CNCF Cloud Native Glossary founder, and Head of Marketing at Buoyant, the creator of Linkerd. A marketing leader passionate about open source, Catherine started her contributor journey... Read More →
avatar for Eli Goldberg

Eli Goldberg

Director of Platform Engineering, Salt Security
Goldberg, Platform Engineering Lead at Salt Security, is an avid NodeJS, Go, and Scala user. Passionate about systems at scale and keeping up to date with the newest tech, Eli helps ensure Salt's Kubernetes-based platform is scalable, secure, and reliable. He spends a lot of his time... Read More →

Friday May 20, 2022 14:00 - 14:35 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Service Mesh

14:00 CEST

Charting Your Own Course Through the Cloud Native Landscape - Matty Stratton, Pulumi & Whitney Lee, VMware
The cloud native landscape is notoriously vast, and there is no hope of one human ever understanding every piece of it. Perhaps you should just quit now! Or instead, join Matty and Whitney on a journey with three fictional learners who are all trying to level up their Kubernetes knowledge, but with different backgrounds, goals, and learning styles. They will share resources and learning strategies that are beneficial to each. Anecdotal stories about how some real-life, well-known Kubernetes community members got their start will be sprinkled in along the way! The goal is not to give a comprehensive view of the Kubernetes learning landscape but instead to leave you feeling empowered to define your own personal learning strategies and goals, and then to seek out the resources that will best help you!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Matty Stratton

Matty Stratton

Staff Developer Advocate, Pulumi
Matt Stratton is a Staff Developer Advocate at Pulumi, founder and co-host of the popular Arrested DevOps podcast, and the global chair of the DevOpsDays set of conferences. Matt has over 20 years of experience in IT operations and is a sought-after speaker internationally, presenting... Read More →
avatar for Whitney Lee

Whitney Lee

Staff Technical Advocate, VMware
Whitney is a Technical Advocate at VMware. She traveled the scenic route but is chuffed to have found her way to Kubernetes & cloud technologies. Whitney is a woman in her 40s who recently pivoted her career to tech, and she understands what it feels like to first navigate the cloud-native... Read More →

charting your course kubecon pdf pdf
Friday May 20, 2022 14:00 - 14:35 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Student

14:30 CEST

Code of Conduct Best Practices Birds of a Feather - Joanna Lee, Attorney & Advisor, GesmerUpdegrove LLP
Come gather with other community members who are interested in how to effectively use Codes of Conduct to help ensure that projects and communities are safe and respectful environments for all participants.  We'll share best practices and learn from each other during a group discussion facilitated by Joanna Lee.
Speakers
avatar for Joanna Lee

Joanna Lee

Attorney + Advisor, GesmerUpdegrove LLP

Friday May 20, 2022 14:30 - 15:30 CEST
Joaquin Rodrigo Room II | Mall Level | Central Forum
  Birds of a Feather

14:55 CEST

Composability is to Software as Compounding Interest is to Finance - Bill Mulligan, Isovalent
The cloud native ecosystem is built of composable projects that can be stacked, recombined, reused, and built upon. This composability allows cloud native developers to iterate and ship functionality fast and creates compounding value to businesses from telcos to machine learning to gaming. This talk will trace the history of composability within the cloud native landscape from making Kubernetes pluggable and extensible through the CNI and CRI to standardizing observability with Prometheus and OTel to eBPF making security and networking composable with Cilium. Along the way we will discover how each interface and extension built the value of the project and the ecosystem as a whole creating a learning and business value flywheel. The audience will learn how the composability of cloud native has helped grow the public cloud, generated many successful startups, given meaningful careers to a wide variety of people, and why buying into composable ecosystems compounds business value.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Bill Mulligan

Bill Mulligan

Community Pollinator, Isovalent
Bill Mulligan is a cloud native pollinator and community builder. He has given talk and written articles about building the business case for cloud native. While at CNCF he restarted the Kubernetes Community Day program and worked to grow the student community. He is currently at... Read More →

Composability is to Software as Compounding Interest is to Finance pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Business Value

14:55 CEST

Contour Ingress Intro and Deep Dive - Nick Young, Orlin Vasilev & Nigel Brown, VMware
Contour, a CNCF incubating project, is a high performance ingress and load balancer solution for Kubernetes. Contour offers a richer feature set than some common alternatives while maintaining a lightweight profile. At its core, Contour is providing a control plane for the Envoy edge and service proxy. This session will show you how to leverage Contour and Envoy for Kubernetes workloads in a multi-tenant environment as well as include a demo of recent Contour features. We will also focus on the project roadmap including enhanced support for Gateway API, the Contour Operator for enhanced lifecycle management, distributed tracing support, and much more.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Orlin Vasilev

Orlin Vasilev

Sr. Open Source DevRel/Community Manager, VMware
Orlin Vasilev aka Orlix is the the Sr. Community Manager(Harbor and Velero) as part of the Cloud Native team at VMware. CNCF Ambassador and driving the biggest Meetup Group(~1K members) in Bulgaria. KubeCon CfP review board member and co-chair for Track 101. Previously SysAdmin/Dev/SRE/System... Read More →
avatar for Nick Young

Nick Young

Senior Systems Engineer, Isovalent
Nick has been working to prevent the entropic downfall of systems for 20 years, across Windows and Linux, datacenters and clouds, networking, storage and compute. Currently he's a Senior Software Engineer at Isovalent, and a maintainer on the Kubernetes Gateway API project, where... Read More →
avatar for Nigel Brown

Nigel Brown

Senior Developer Advocate - Cloud Native, Open Source, Intuit
Nigel is a Senior Developer Advocate at Intuit based in Austin, Texas. They were drawn to the craft of software engineering because of the agency it provides people to create and interact with worlds of their own making. They focus on Cloud Native technologies and their passions in... Read More →

Contour Maintainers track KubeCon EU 22 pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, Contour

14:55 CEST

Optimize Kubernetes on vSphere with Event-Driven Automation - Steven Wong & Michael Gasch, VMware
Kubernetes abstracts out differences across hosting infrastructure, but there are cases when integrated monitoring across the layers of storage, compute, etc, are essential. When faults or reconfiguration happen, manual monitoring, diagnosis and remediation can be slow, costly, and error prone. The VMware Event Broker Appliance is an open-source project, usable with Cloud Events and Knative to optimize availability, auditing, compliance, etc. based on vSphere events. We'll cover popular use cases and how to get started. The K8s VMware User Group shares best practices for hosting K8s on VMware infrastructure, and we will close the session with details on how you can participate in the group.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Michael Gasch

Michael Gasch

Staff Engineer, Office of the CTO, VMware
Michael Gasch is a Staff Engineer in the Office of the CTO at VMware with a focus on event-driven systems, Knative and research in distributed systems. He is a co-creator of the VMware VEBA project and maintainer of the govmomi Go SDK for vSphere. You can find his blog, dedicated... Read More →
avatar for Steven Wong

Steven Wong

Staff Engineer, VMware
Steve Wong has been active in the Kubernetes community since 2015. He is a co chair of the CNCF Working Group. Steve is co-chair of the VMware User Group on the Kubernetes project. He has implemented industrial control systems for many factories, pipelines, and process control systems... Read More →

KubeConEU22 K8s VMware User Group Optimize Kubernetes on vSphere with Event Driven Automation pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Kubernetes VMware User Group

14:55 CEST

Scaling Databases with Vitess - Harshit Gangal & Manan Gupta, Planetscale
Vitess is a cloud-native storage solution that provides horizontal scaling of MySQL. In this session we will cover the high level architecture and the feature set offered including the ease of database management. We will showcase its compatibility with the popular web framework Rails and will demo how to bring up Vitess with Rails using the Kubernetes operator. Realizing the need to scale out already running applications, we will also demonstrate how to scale out an existing database running on AWS RDS/Aurora using Vitess.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Harshit Gangal

Harshit Gangal

Software Engineer, Planetscale
avatar for Manan Gupta

Manan Gupta

Software Engineer, PlanetScale
At PlanetScale I work on building scalable distributed database systems. Seeking faster, simpler solutions stimulates me. Working with a high energy team even remotely keeps me vibrant. Learning and executing codes in paired or independent format is a novel experience. I have recently... Read More →

Scaling Databases with Vitess pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Room 3FG | Event Center Feria Valencia
  Maintainer Track, Vitess

14:55 CEST

SPIRE: Intro & Deep Dive Into Windows Support - Agustín Martínez Fayó & Marcos Yacob, Hewlett Packard Enterprise
Join this session for an introduction of the SPIRE project and deep dive into the new Windows support. SPIRE (the SPIFFE Runtime Environment) implements the SPIFFE standards to securely identify software systems in dynamic and heterogeneous environments. This session provides a high level overview of the basic concepts behind SPIRE and why you should consider it if you find issuing workload identities at scale challenging for you. This talk will also give a deep dive into the Windows support that is being introduced in SPIRE, offering detailed information about the implementation details, what is the difference between running SPIRE on Windows and Linux platforms, and how will be the experience from both a user and developer perspective.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Agustín Martínez Fayó

Agustín Martínez Fayó

Principal Software Engineer, Hewlett Packard Enterprise
Agustín is a Principal Software Engineer at Hewlett Packard Enterprise (HPE) and Maintainer of the SPIRE project. Agustín has always been dedicated to building software that helps to improve the security of systems that operate at scale.
avatar for Marcos Yacob

Marcos Yacob

Software Engineer, Hewlett Packard Enterprise
Software Engineer at Hewlett Packard Enterprise (HPE) and contributor of the SPIRE project.

SPIRE Intro & Deep Dive Into Windows Support pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, SPIRE

14:55 CEST

"My CNI Plugin Did… What?!": Debugging CNI with Style and Aplomb - Douglas Smith & Daniel Mellado Area, Red Hat
Just because CNI is simple – doesn't mean it's easy. We're going to hook you up with the tools of the trade to analyze what's up when your CNI plugin is feeling down. It sure is easy to speak STDIN and STDOUT and write CNI plugins, but debugging CNI plugins in production takes more than brute force and will power – it takes a toolbox. From cnitool, to dummy CNI plugins, to enhancing your logging, we'll show the tools we use every day to make zeroing in on CNI problems a cool breeze. Not only will we crash CNI plugins on-the-fly to show you how we inspect what's happening, we'll also show you how we handle logging so you can analyze reports from your users when you don't have direct access to systems. We'll talk about how we architect CNI plugins to make debugging easier, and talk about thin plugin vs. thick plugins programming patterns, and show you how it impacts debuggability. Not only does it make debugging easier, it'll make developing easier.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Daniel Mellado

Daniel Mellado

Principal Software Engineer, Red Hat
Daniel is a Principal Software Engineer at the Red Hat’s Office of the CTO. He’s been involved in several networking projects, such as Kuryr-Kubernetes (a CNI plugin which enables native Neutron-based networking in Kubernetes), MetalLB and recently he’s been tackling Edge and... Read More →
avatar for Doug Smith

Doug Smith

Principal Software Engineer, Red Hat, Inc
Doug Smith is a Principal Software Engineer for OpenShift Engineering at Red Hat. Focusing on Network Function Virtualization and container technologies, Doug integrates new networking technologies with container systems like Kubernetes and OpenShift. He is a member of the Network... Read More →

Kubecon EU 2022 My CNI plugin did what pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Networking

14:55 CEST

Throw Away Your Passwords: Trusting Workload Identity - Ric Featherstone, ControlPlane
Trust is required to secure our systems: we need it to bootstrap infrastructure, to run workloads, and to reassure our customers of their privacy. But how do we establish and secure this "trust" in a dynamic cloud native system?

Historically we relied upon identifiers such as IP addresses, passwords, and certificates, but can we do better than these antiquated authentication mechanisms? In this talk we:
  • Demystify machine identity and its relationship to secrets management and access control
  • Discuss the issues with historical approaches in a cloud native environment
  • Solve the "bottom turtle" trust bootstrap quandary
  • Appraise the open source implementations and technologies available to you
  • Demonstrate practical examples of how to acquire a workload identity or secret zero
  • Strive for a world in which passwords and static keys are replaced by dynamic credentials and hardware roots of trust
Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Ric Featherstone

Ric Featherstone

ControlPlane
From Engineer to Architect and back, Ric’s greying hair comes from his years of hard-won experience consulting in the Financial Services and Media sectors. He's been around for a while, seen shiny new tech come and go, old concepts get rebranded, and now cloud-washes himself as... Read More →

Throw Away Your Passwords pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

14:55 CEST

Simplifying Service Mesh Operations with Flux and Flagger - Mitch Connors, Google & Stefan Prodan, Weaveworks
Distributed Proxies have opened the floodgates for Service Meshes to provide substantial value at the Application Networking Layer, but early adopters of Service Meshes are often overwhelmed by operational complexities. How do you ensure that the proxy is distributed everywhere your software runs? How do you safely upgrade or roll back all those proxies? How can you ensure that your network config is correct - without pushing it to production and risking an outage? Following the GitOps Principles is key to simplifying Service Mesh Operations. Defining the entire service mesh declaratively - be it installation, proxy injection, or configuration - provides a mechanism to safely manage the complexities of a service mesh. Continuously reconciling declarative config with the latest service mesh release keeps you from being caught off-guard by CVEs. Progressive Delivery tools enable seamless movement from one version of a service mesh to another - and back - with minimal impact to traffic.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Stefan Prodan

Stefan Prodan

Principal Engineer, Weaveworks
Stefan is a Principal Engineer at Weaveworks and an open source contributor to cloud-native projects. He is the creator of Flagger the progressive delivery operator for Kubernetes, and a core maintainer of the CNCF's Flux project. Stefan has over 15 years of experience with software... Read More →
avatar for Mitch Connors

Mitch Connors

Sr Principal Software Engineer, Aviatrix
Mitch Connors is a Sr. Principal Software Engineer at Aviatrix, and serves on the Istio Technical Oversight Committee. Over the past 17 years, Mitch has worked at Google, F5 Networks, Amazon, an Industrial IoT startup, and State Farm Insurance, giving him a broad perspective on the... Read More →

KubeCon EU 2022 Gitops talk (1) pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Service Mesh

14:55 CEST

From Student to SRE That Loves CNCF in No Time - Jacob Valdemar Andreasen, Lunar
A year ago Jacob knew nothing about Kubernetes, Linkerd, or any other fancy CNCF projects. Jacob had been studying Software Technology for two years where he learned to write code and use software design patterns. In his fifth semester, Jacob decided to try something new and joined Lunar as a Site Reliability Engineer for a five-month full-time internship where he contributed to CNCF projects and learned to develop and maintain a GitOps based Kubernetes platform. By constantly questioning his knowledge and pushing his boundaries Jacob steadily learned how to navigate the CNCF environment. Now, 1 year and 6 months later, Jacob is a Certified Kubernetes Administrator and continues to work at Lunar where he plays with Kubernetes, Flux, Fluent Bit, Prometheus, Backstage, Linkerd, and many other exciting CNCF projects. By following Jacob’s journey we will explore the opportunities and obstacles you face as a student wanting to start their journey towards working as a platform engineer.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jacob Valdemar Andreasen

Jacob Valdemar Andreasen

Student & Site Reliability Engineer, Lunar
Jacob is pursuing a Master’s of Science in Computer Engineering while working part-time as Site Reliability Engineer at Lunar. At Lunar, Jacob is developing and maintaining the Lunar development platform which enables developers to deliver software at a fast pace, through a GitOps... Read More →

slides pdf
Friday May 20, 2022 14:55 - 15:30 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Student

16:00 CEST

Building an Agile Platform in a Highly Regulated Industry - Fredrik Klingenberg, Aurum AS & Jonas Samuelson, If Insurance
During this talk, Jonas Samuelson, Platform Engineer at If-Insurance, and Fredrik Klingenberg, Principal Software Engineer at Aurum AS, will share how If-Insurance — the leading property and casualty insurer in the Nordics — built an agile platform based on Kubernetes, Linkerd, and GitOps within the constraints of a highly regulated industry. How does a large enterprise like If-Insurance balance rapid innovation to compete with disruptive newcomers while adhering to strict security and regulatory requirements? Jonas and Fredrik will discuss If-Insurance's GitOps-based platform and application deployment engine and their tools and techniques to remake the way If-Insurance runs and manages software. This talk will cover how If's immutable platform allows them to train for disaster recovery constantly, how their entire platform was built using GitOps, and how they onboarded teams shifting from a deployment mindset to a GitOps one.

Click here to view captioning/translation in the MeetingPlay platform!

Speakers
avatar for Fredrik Klingenberg

Fredrik Klingenberg

Developer, Aurum AS
Fredrik Klingenberg, Principal Software Engineer at Aurum AS, has helped many large Norwegian enterprises migrate their applications to Kubernetes. His clients include Nordic retail giant Elkjøp and most recently If Insurance. Over the past 10 years, Fredrik has developed enterprise... Read More →
avatar for Jonas Samuelsson

Jonas Samuelsson

Lead Platform Engineer, If Insurance
Jonas Samuelsson is the Lead Platform Engineer at If-Insurance. He is driving the platform programs both on-prem and in the cloud, with migrations projects moving more to the cloud. He is advocating DevOps and helping If-Insurance adopt it in the broader sense.

KubeCon2022If Insurance pdf
Friday May 20, 2022 16:00 - 16:35 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Business Value

16:00 CEST

CoreDNS: Intro and Deep Dive - John Belamaric, Google & Yong Tang, Ivanti, Inc
Come to learn about CoreDNS and the latest updates to the project and roadmap. Stay to learn about how to write your own CoreDNS plugin!

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Yong Tang

Yong Tang

Senior Director of Engineering, Ivanti
Yong Tang is Senior Director of Engineering at Ivanti. He is a core maintainer of CoreDNS and contributes to many container, cloud-native, and machine learning projects for the open source community. In addition to CoreDNS, he is a maintainer of Docker/Moby. He is also a maintainer... Read More →
avatar for John Belamaric

John Belamaric

Senior Staff Software Engineer, Google
John Belamaric is a Senior Staff Software Engineer at Google with over 25 years of software design and development experience. As a co-chair of Kubernetes SIG Architecture, he provides leadership on production readiness, conformance, and overall software architecture for the Kubernetes... Read More →

2022 KubeCon EU CoreDNS Intro & Deep Dive pdf
Friday May 20, 2022 16:00 - 16:35 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, CoreDNS

16:00 CEST

To IPv6 - The Dual-stack Adoption Advisory Panel - Bridget Kromhout, Microsoft; Tim Hockin, Google; Dinesh Majrekar, Civo; Lachie Evenson, Microsoft; Rags Srinivas, InfoQ
We all know we’re running out of IPv4 addresses. Kubernetes introduced the current implementation of dual-stack networking (supporting both IPv4 and IPv6 at the same time) in v1.20, and the dual-stack feature graduated to stable in v1.23. While the world has been slow to adopt IPv6, it is happening. It’s time to learn about using dual-stack to start your own move away from IPv4, supported by changes in Kubernetes components such as pods and services. Join for the discussion as SIG Network members and Kubernetes contributors dive into the technical details underlying the move to dual-stack networking, and leave with recommendations to shape your IPv4/IPv6 rollout strategy.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Rags Srinivas

Rags Srinivas

Developer Advocate, Datastax
Raghavan "Rags" Srinivas (@ragss) works as a Developer Advocate/Architect at Datastax with a mission to help developers build highly scalable and available systems. His areas of focus are containers, microservices, Open Source and DevOps. With an extensive background in both app development... Read More →
avatar for Bridget Kromhout

Bridget Kromhout

Principal Product Manager, Microsoft
Technologist, podcaster, conference speaker, devopsdays organizer. Herds cats and wrangles docs; still team #opslife.
avatar for Lachie Evenson

Lachie Evenson

Principal Program Manager, Microsoft
Lachlan is a Principal Program Manager on the open source team at Azure. As a cloud native ambassador, emeritus Kubernetes steering committee member and release lead, Lachlan has deep operational knowledge of many Cloud Native projects. He spends his days building and contributing... Read More →
avatar for Tim Hockin

Tim Hockin

Distinguished Engineer, Google
Tim has spent most of his career at Google, where he works on Kubernetes and Google Kubernetes Engine (GKE). He is one of the technical leads of the Kubernetes project, and has been part of it since before it was publicly announced. He mostly pays attention to topics like APIs, networking... Read More →
DM

Dinesh Majrekar

Director of Innovation, Civo Ltd

ipv6panelists.pptx pdf
Friday May 20, 2022 16:00 - 16:35 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Networking

16:00 CEST

From Monitoring to Observability: Left Shift your SLOs with Chaos - Michael Friedrich, GitLab
Security has shifted left in CI/CD pipelines. Traditional service monitoring moved on with metrics, logs and traces and observability embraces the unknown unknowns. Developers and SREs are instrumenting applications with distributed tracing. How do service level objectives (SLOs) add to the bigger picture? This talk invites into a developer’s tale about ops deployment scalability, availability threshold definitions and measuring application performance. What are the benefits of app instrumentation, metrics and traces and where does the journey start? Dev becomes Ops: SLOs need to be well understood and simulated early in the development process. New building blocks come to play: Continuous Delivery, quality gates and chaos engineering - is it possible to left shift SLOs with Chaos in your CI/CD pipelines?

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Michael Friedrich

Michael Friedrich

Senior Developer Evangelist, GitLab
Michael Friedrich is a Senior Developer Evangelist at GitLab, focussing on Observability, DevSecOps, AI. He loves to educate everyone and regularly speaks at events and meetups. Michael created o11y.love as an Observability learning platform, and shares technology trends and in... Read More →

From Monitoring to Observability Left Shift your SLOs with Chaos pdf
Friday May 20, 2022 16:00 - 16:35 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

16:00 CEST

Multi-Cloud Workload Identity With SPIFFE - Jake Sanders & Charlie Egan, Jetstack
Within a single cloud provider, accessing secured APIs using your own workload identity is simple. Cloud SDKs used by application developers know how to retrieve identities and credentials from the cloud environment for each workload based on its context. A cloud administrator can then assign permissions to these identities which allow access to the required APIs. This is seamless for developers - simply calling an API in their code just works, while behind the scenes the network call is cryptographically authenticated / authorized. Unfortunately for the user, this identity is cloud-specific. With few alternatives, this often leads to long-lived credentials being mounted into workloads instead. This is less secure and harder to use. This presentation will show an alternative solution which combines features of open source CNCF projects Kubernetes, cert-manager, cert-manager-csi-driver-spiffe, cert-manager-trust and spiffe-connector to expand your SPIFFE trust domain to any cloud.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Charlie Egan

Charlie Egan

Senior Developer Advocate, Styra, Inc
Charlie has been working with in the Cloud Native space since 2018. He currently works as a Senior Developer Advocate at Styra and on the OPA project. Charlie is interested in authentication and authorization across the stack. You can also find him in the OPA Slack.
avatar for Jake Sanders

Jake Sanders

Senior Software Engineer, Jetstack
Jake has been working with Kubernetes since approximately version 0.8, and is now one of the maintainers of the cert-manager project. They are currently interested in all things identity, open source and X.509.

KubeCon EU 2022 Multi Cloud Workload Identity With SPIFFE.pptx pdf
Friday May 20, 2022 16:00 - 16:35 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

16:00 CEST

A Guided Tour of Cilium Service Mesh - Liz Rice, Isovalent
The Cilium project is adding Service Mesh features to its existing eBPF-enabled, identity-aware Kubernetes networking capabilities. This demo-driven talk explores how this works, and shows why it’s now possible to create a service mesh without sidecars. - Demonstrate why, before eBPF, the sidecar model was necessary for accessing an application pod’s network traffic - Explore how Cilium uses eBPF programs to connect Kubernetes endpoints - Show how this makes the sidecar model unnecessary for identity-aware connectivity - Demonstrate an example Cilium Service Mesh in use - Compare the resources used (in both userspace and the kernel) for both models Along the way, this talk will clarify some container and kernel concepts so that attendees can leave with a mental model of how eBPF-enabled service mesh really works.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Liz Rice

Liz Rice

Chief Open Source Officer, Isovalent
Liz Rice is Chief Open Source Officer with eBPF specialists Isovalent, creators of the Cilium project. She was chair of the CNCF's Technical Oversight Committee 2019-2022, and Co-Chair of KubeCon + CloudNativeCon in 2018. She is also the author of O'Reilly books "Learning eBPF" and... Read More →

Guided Tour of Cilium ServiceMesh pdf
Friday May 20, 2022 16:00 - 16:35 CEST
Pavilion 3, Room G | Level 2 | Central Forum Feria Valencia
  Service Mesh

16:00 CEST

Kubectl Said What? - Christopher Hanson, RX-M, LLC
Pods in a pending state? Containers in a Crashloop? DNS acting dastardly? (okay that last one was a stretch) You’ve definitely deployed your application but it isn’t available. Kubernetes is confirming the conundrum but what exactly is it trying to communicate? The goal of this session is to explore the causes of various phases, conditions, states, and events related to Kubernetes objects that are produced by kubectl so that you debug from an informed position. By understanding the possible causes of these conditions you will learn where to start, what to pay attention to, and what unrelated messages to ignore. Attendees should be interested in saving time, reducing effort, and minimizing frustration. We will interactively examine Kubernetes objects in various error states and the clues being presented by kubectl get, describe, events, and more.

Click here to view captioning/translation in the MeetingPlay platform!
kubectl said what pdf
Friday May 20, 2022 16:00 - 16:35 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Student

16:55 CEST

Running Kubernetes in a Manufacturing Line – What Could Possibly Go Wrong? - Mario Fahlandt & Tobias Schneck, Kubermatic GmbH
Imagine your manufacturing line is controlled by services running in your datacenters’ Kubernetes clusters. You have facilities in locations all over the world. You provide a managed service with uptime SLA. Now, there is an issue with the internet connection. Or security is shutting down all connections to defend against a cyberattack. And your production line must keep working because every downtime is money. This was the challenge to solve, and we did! Did you ever think about - How to run basic Infrastructure Services like DHCP and DNS in a cloud native way for manufacturing services? How to autoscale cluster on-prem? Follow us in the rabbit hole using all kinds of CNCF projects to build a setup that scales, is able to shift and redeploy workloads, and continues to function without relying on cloud vendors or external services. We will show you the obvious and non-obvious challenges of cloud native adopters in the industry 4.0 sector, including some true edge computing cases.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Mario Fahlandt

Mario Fahlandt

Customer Delivery Architect, Kubermatic GmbH
Mario is a Professional Service Engineer and a DevOps since the beginning of the merge of Dev and Ops, Mario started working on infrastructure as a developer, when bare metal was the normal case. Since the transition to docker and container based infrastructure, he shares his knowledge... Read More →
avatar for Tobias Schneck

Tobias Schneck

Principal Software Architect, Kubermatic GmbH
Tobias is Principal Software Architect at Kubermatic. Cloud native technologies are his passion over 7 years already. He follows the aim of making the scaling infrastructure setup simpler. His current passion is to increase the adoption of the Kubernetes ecosystem and cloud native... Read More →

KubeCon EU 2022 Running kubernetes in a manufacturing line what could possible go wrong Tobias Schneck Mario Fahlandt Kubermat pdf
Friday May 20, 2022 16:55 - 17:30 CEST
Pavilion 4, Room C | Level 2 | Central Forum Feria Valencia
  Business Value

16:55 CEST

Crossplane Intro & Deep Dive - Compose Your Custom Cloud Platform - Jared Watts, Steven Borreli & Yury Tsarev, Upbound; Christopher Haar, DKB AG
The maintainers of Crossplane, a CNCF Incubating project, will lead this session that will introduce the project to new attendees, as well as dive into the finer details of Crossplane’s functionality and roadmap. We will explain how Crossplane enables you to compose cloud infrastructure and services into your custom platform APIs, and how best to get started building a platform of your own. We will take a tour through the key features included in the latest releases, what problems and use cases they are solving, and how you can adopt them into your control planes. Finally, there will be an interactive opportunity to engage with the maintainers, ask questions, and influence the future of the project direction.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jared Watts

Jared Watts

Founding Engineer, Upbound
Jared Watts is a Founding Engineer at Upbound, where he is working on advancing cloud-native computing by enabling anyone to build their own cloud platform. He is also a co-creator of the open source Crossplane (https://crossplane.io) and Rook (https://rook.io) projects. Prior to... Read More →
avatar for Christopher Haar

Christopher Haar

upbound
Christopher is Solutions Architect for upbound on open source software. He is a regular contributor to open source and a maintainer for providers in crossplane eco-system. He has many years’ experience in the creation of enterprise infrastructure for different industries, from Telco&Railway... Read More →
SB

Steven Borrelli

Principal Solutions Architect, Upbound, Inc.
Steven Borrelli is a Principal Solutions Architect for Upbound. His focus is writing cloud infrastructure automation software. He is a contributor to the CNCF Crossplane project.
avatar for Yury Tsarev

Yury Tsarev

Principal Solutions Architect, Upbound
Yury is an experienced software engineer who strongly focuses on open-source, software quality and distributed systems. As the creator of k8gb (https://www.k8gb.io) and active contributor to the Crossplane ecosystem, he frequently speaks at conferences covering topics such as Control... Read More →

Kubecon EU 2022 Crossplane Intro & Deep Dive pdf
Friday May 20, 2022 16:55 - 17:30 CEST
Auditorium 3A | Event Center Feria Valencia
  Maintainer Track, Crossplane

16:55 CEST

Overview and State of Linkerd - Matei David, Buoyant, Inc.
In this talk, maintainers from the Linkerd project will present an overview of the project and an update on upcoming releases. They’ll cover what Linkerd is and how it compares to other service meshes; what the latest features and functionality are; what to expect in upcoming releases; and how you can get involved in one of the CNCF’s most talked-about projects. This talk will cover Linkerd’s recently-introduced policy, circuit breaking, and header-based routing features.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Matei David

Matei David

Software Engineer, Buoyant, Inc.
Matei David is a software engineer at Buoyant and one of the maintainers of the Linkerd project, the CNCF's graduated service mesh. Passionate about open source, Matei got involved in the cloud native space early on in his career. As a Community Bridge Mentee (a CNCF program for young... Read More →

KubeConEU22 Overview and state of Linkerd pptx
Friday May 20, 2022 16:55 - 17:30 CEST
Room 4F | Event Center Feria Valencia
  Maintainer Track, Linkerd

16:55 CEST

PolicyReport CRD: Manage Admission Control, Runtime, and Scan Reports! - Anushka Mittal & Mritunjay Sharma, Nirmata; Frank Jogeleit, Lovoo GmbH; Stephen Adeniyi
Policies help secure and automate Kubernetes. To standardize and simplify the management of policy reports across multiple tools, the Kubernetes Policy WG created a reusable PolicyReport Custom Resource Definition (CRD). In this session, Anushka, Mritunjay, and Stephen who are all LFX mentorship graduates will discuss the PolicyReport CRD and demonstrate adapters for policy and verification engines like Falco, kube-bench, KubeArmor, Kyverno, and Trivy to produce standardized policy reports. Frank will then present Policy Reporter, a Web UI with dashboards for policy reporting and integrations with Slack, Discord, Grafana, Teams, and Elasticsearch. You will learn how to easily manage policy results across admission controls, runtime, and vulnerability scanning leveraging the powerful CRD capabilities of Kubernetes.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Mritunjay Sharma

Mritunjay Sharma

Software Engineer, Chainguard
Mritunjay is a software engineer with Chainguard, with active involvement in various open-source communities for almost three years now. A speaker for multiple talks at KubeCons and Open Source Summits, Mritunjay has contributed as two-time Google Summer of Code scholar and as an... Read More →
avatar for Stephen Adeniyi

Stephen Adeniyi

Software Developer (Profesional Service), Kubermatic GmbH
Hello, My name is Stephen. I'm a Software Engineer intern at Kubermatic, working on the Professional Service team. Prior to that, I was a mentee last year summer 2021 in The Linux Foundation program for open source contribution and exposure to the CNCF ecosystem, where I worked no... Read More →
avatar for Anushka Mittal

Anushka Mittal

Software Developer, Nirmata
Anushka Mittal is a software developer with Nirmata. She was an LFX Summer Mentee for CNCF-Kubernetes. She worked in Intel in their Display team and with Nirmata as an intern. Previously, she has spoken at KubeCons and other conferences . She is passionate about the Kubernetes community... Read More →
avatar for Frank Jogeleit

Frank Jogeleit

Senior Software Engineer, LOVOO
Frank Jogeleit is a Senior Software Engineer at LOVOO. He is also the creator and maintainer of Policy Reporter an open-source solution for unified policy result observability and compliance, that uses the Policy WG Policy Report API specification. Frank is a Certified Kubernetes... Read More →

Friday May 20, 2022 16:55 - 17:30 CEST
Ausias March I I Mall Level | Central Forum Feria Valencia
  Maintainer Track, WG Policy

16:55 CEST

Making On-Prem Bare-Metal Kubernetes Network Stack Telco Ready - Christopher Dziomba & Marcel Fest, Deutsche Telekom
If your task is to do Kubernetes at scale and at speed (read: 100s & 1000s of clusters instantly provisioned on-demand), in a complex on-prem environment, on bare metal (yes, no overlay networks, raw power) you will quickly find that the legacy network and network legacy are some of your biggest enemies. No matter how much Kubernetes gets easy on its own, making it usable in such context will require a lot of plumbing, workflows, host tuning etc. If you are a telco, like Deutsche Telekom with historically grown multitude of heavily segmented networks with 100s of historically grown overlapping VRFs it is practically mission impossible. In this talk Deutsche Telekom will share how they tackled that challenge and how they reimagined and implemented network fabric for on-prem bare metal Kubernetes cloud which pretty cloud natively supports their internal Cluster-as-a-Service offering. This cloud is hosting clusters where some of their most demanding applications like 5G core are running.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Christopher Dziomba

Christopher Dziomba

DevOps Engineer, Deutsche Telekom
Chris is a DevOps Engineer building Das SCHIFF at Deutsche Telekom. His main focus is the machine side of the network fabric and how it integrates into Kubernetes. He joined DT in the middle of 2021 and quickly became the leader for Das SCHIFFs bare metal networking journey.
avatar for Marcel Fest

Marcel Fest

Devops Engineer, Deutsche Telekom
Marcel is a DevOps Engineer building Das SCHIFF at Deutsche Telekom. Main areas he is involved in are Network Design, Monitoring and Lifecycle Management of Platform Components. He joined DT in the beginning of 2020 and drives the Network Design of the platform since then. In his... Read More →

On Prem Bare Metal Kubernetes Network Stack Telco Ready pdf
Friday May 20, 2022 16:55 - 17:30 CEST
Pavilion 4, Room A | Level 2 | Central Forum Feria Valencia
  Networking

16:55 CEST

Metrics as a First-Class Citizen in the E2E Testing Landscape - Matej Gera & Jéssica Lins, Red Hat
Exposing metrics through the metrics HTTP endpoint is the de facto standard when it comes to exporting application metrics in the cloud native universe. But did you know this well-known pattern can be used for more than just collecting metrics? This talk will show how instrumenting applications can be leveraged to improve your experience with end-to-end (E2E) testing. If your application is already instrumented for collecting metrics, why not take it a step further and use the exposed data to bring your E2E testing to the next level? This has the enormous benefits of giving you detailed insight into the state of the tested application and allows for more complex testing scenarios, which are not possible without observing the behavior of an application from the inside. The talk will also describe how this framework has been employed in several open-source projects, including Thanos and Observatorium, and what benefits have been gained from the change.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Jéssica Lins

Jéssica Lins

Software Engineer, Red Hat
Born and raised in Brazil, Jéssica also studied Computer Science there. During her studies, she did some internships and also had the chance to take part in an exchange program in Italy. Today she is based in Berlin, Germany, and is a Software Engineer for the Openshift Monitoring... Read More →
avatar for Matej Gera

Matej Gera

Software Engineer, Coralogix
Matej is a Software Engineer for the Observability Ecosystem Team at Coralogix. He is interested mainly in the topics of observability and cloud engineering. He has been a long-time open source and free software fan, since the time he interned for the Free Software Foundation Europe... Read More →

metrics e2e final pdf
Friday May 20, 2022 16:55 - 17:30 CEST
Pavilion 3, Room F | Level 2 | Central Forum Feria Valencia
  Observability

16:55 CEST

Making Sense of Chaos: Implementing Chaos Engineering in a Fintech Company - Iqbal Farabi & Giovanni Sakti, GoTo Financial
Chaos engineering is defined as “the facilitation of experiments to uncover systemic weaknesses” by The Principles of Chaos Engineering. This is done by building a hypothesis around the behavior of a system and running experiments to vary real-world events. By doing these experiments, we can build confidence on the behavior of a complex system in the face of disruptions. In this talk, we will discuss our experience in implementing chaos engineering principles in GoTo Financial (GTF), one of Indonesia’s biggest fintech startups. As GTF is operating in a heavily regulated industry, we have the obligation to comply with financial regulations. One of those is adhering to certain service level objectives (SLO) for all cloud native infrastructures we maintain. Implementing chaos engineering in such a system should be handled with care. We will delve into both technical aspects of adopting chaos engineering practices and the approaches to roll out such initiatives to the wider organization.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Iqbal Farabi

Iqbal Farabi

Enginering Manager, GoTo Financial
Iqbal is a teacher, developer, software infrastructure engineer, and now an engineering manager at GoTo Financial. He works in the Cloud Automation stream in the Infrastructure Engineering team which focuses on developing automation around deployments and stateful components management... Read More →
avatar for Giovanni Sakti Nugraha

Giovanni Sakti Nugraha

Sr. Engineering Manager, GoToFinancial
Gio is engineer, tech mentor and a former startup founder. He is really passionate about tech education and communities. Gio currently works as Sr. Engineering Manager for the Infrastructure Engineering team, which is accountable for the entire infrastructure of GoToFinancial Consumer... Read More →

KubeCon EU 2022 Making Sense of Chaos Rev 20220520 pdf
Friday May 20, 2022 16:55 - 17:30 CEST
Pavilion 4, Room B | Level 2 | Central Forum
  Operations

16:55 CEST

Three Surprising K8s Networking “Features” and How to Defend Against Them - James Cleverley-Prance, ControlPlane
Kubernetes' networking model simplifies the user experience, but abstractions can introduce and hide complexity under the hood. This talk challenges perceived trust boundaries in Kubernetes networking and demonstrates some non-obvious and counter-intuitive behaviours. Left unchecked, these issues can mean Kubernetes clusters present a wider attack surface than may be immediately evident. The talk will cover: * The external attack surface of a Kubernetes node * Enumerating externally available cluster information * Exploiting Linux networking to access internal pods and services * Misusing CNI configurations to access internal pods and services You will gain an understanding of these attacks and how to use them, learn mitigation strategies and pragmatic defences, and be able to protect your clusters to avoid compromise.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for James Cleverley-Prance

James Cleverley-Prance

Security Engineer, Wiz

Three Surprising K8s Networking Features and How to Defend Against Them pdf
Friday May 20, 2022 16:55 - 17:30 CEST
Auditorium 1A | Event Center Feria Valencia
  Security + Identity + Policy

16:55 CEST

Navigating the CNCF Landscape, the Right Way - Divya Mohan, SUSE; Savitha Raghunathan, Red Hat; Kunal Kushwaha & Saiyam Pathak, Civo
CNCF is the vendor-neutral home for cloud native projects. Including the most famous open source project in recent times, Kubernetes, it currently houses ~1,019 cards with a total of 2,957,938 stars. With a growing ecosystem, at an initial glance, the landscape may seem intimidating to newcomers, especially students. Journeying through the entire development and operations lifecycle, this panel aims to take a guided approach to cover the various projects involved right from the creation of the application to the deployment & monitoring. With various pit stops & forks along the way, the speakers hope to leave the audience with a fair idea of how to navigate the landscape effectively and embark on their cloud native journey. Should they also wish to contribute to any of the projects, the session also covers various tips & tricks on how to take their very first steps in the ecosystem as well.

Click here to view captioning/translation in the MeetingPlay platform!
Speakers
avatar for Savitha Raghunathan

Savitha Raghunathan

Senior Software Engineer, Red Hat
Savitha Raghunathan is a Senior Software Engineer at Red Hat, working on Container Migration and Application Modernization technologies. She leads K8s sig-security-documentation sub-project aiming to create security awareness through docs. As a maintainer of the Konveyor project... Read More →
avatar for Kunal Kushwaha

Kunal Kushwaha

DevRel manager, Civo
Kunal is empowering communities via open-source and education. He finds passion in teaching and has taught thousands of folks online and in person. He is a developer relations manager at Civo, CNCF Ambassador, TEDx speaker and a GitHub Star. He is the founder of WeMakeDevs and also... Read More →
avatar for Saiyam Pathak

Saiyam Pathak

Field CTO, Civo
Saiyam is working as Field CTO at Civo with a focus on defining the Civo cloud platform for simplifying Kubernetes and making it accessible for developers. Previously at Walmart Labs, Oracle, and HP, Saiyam has worked on many facets of k8s including machine learning platform, scaling... Read More →
avatar for Divya Mohan

Divya Mohan

Principal Technology Advocate, SUSE
Divya is a Senior Technical Evangelist at SUSE, where she contributes to Rancher’s cloud native open source projects. She co-chairs the documentation for the Kubernetes & LitmusChaos projects & has previously worked extensively in the systems engineering space during her tenure... Read More →

Navigating the CNCF landscape, the right way pdf
Friday May 20, 2022 16:55 - 17:30 CEST
Pavilion 3, Room E | Level 2 | Central Forum Feria Valencia
  Student
 
Filter sessions
Apply filters to sessions.
Sunday, May 15
Monday, May 16
Tuesday, May 17
Wednesday, May 18
Thursday, May 19
Friday, May 20
Auditorium 1A | Event Center
Auditorium 3A | Event Center
Ausias March I I Mall Level | Central Forum
Central Forum
Joaquin Rodrigo Room I | Mall Level | Central Forum
Joaquin Rodrigo Room II | Mall Level | Central Forum
Marina Beach Club - La Marina De Valencia, 46001, Spain
Masía Aldamar
Pavilion 1 | Level 3 | Central Forum
Pavilion 3, Room D | Level 2 | Central Forum
Pavilion 3, Room E | Level 2 | Central Forum
Pavilion 3, Room F | Level 2 | Central Forum
Pavilion 3, Room G | Level 2 | Central Forum
Pavilion 4, Room A | Level 2 | Central Forum
Pavilion 4, Room B | Level 2 | Central Forum
Pavilion 4, Room C | Level 2 | Central Forum
Pavilions 1 + 2 | Level 2 | Central Forum
Project Office Hours
Room 1D | Event Center
Room 2E | Event Center
Room 2F | Event Center
Room 2G | Event Center
Room 2H | Event Center
Room 2I | Event Center
Room 3FG | Event Center
Room 4C | Event Center
Room 4D | Event Center
Room 4F | Event Center
Sercotel Sorolla Palace, Recatí B | 58 Avinguda de les Corts Valencianes, 46015,
Viewable In Platform
Virtual
Westin Valencia, Carrer d'Amadeu de Savoia, 16 - Sala La Exposición
  • 101 Track
  • Application + Development
  • Birds of a Feather
  • Breaks
  • Business Value
  • CI/CD
  • Co-Located Events
  • Community
  • Customizing + Extending Kubernetes
  • Diversity + Equity + Inclusion
  • Experiences
  • Keynote Sessions
  • Machine Learning + Data
  • Maintainer Track
  • Networking
  • Observability
  • Operations
  • Performance
  • Project Meeting
  • Project Office Hours
  • Registration
  • Research + Academia
  • Runtimes
  • Security + Identity + Policy
  • Serverless
  • Service Mesh
  • Solutions Showcase
  • Storage
  • Student
  • Wellness Activities
  • Content Experience Level
  • Advanced (Expert level experience)
  • Any (Anyone can attend - no experience required)
  • Beginner (Very basic information)
  • Intermediate (Mid-level experience)
  • Talk Type
  • In-Person
  • Virtual