This event has ended. Visit the official site or create your own event on Sched.
Customize your schedule by session topic and skill level:  Session Topic - Refer to the "Type" filter list to the right to find a session based on topic. Talk Difficulty - Sessions are categorized as [B]eginner, [I]ntermediate or [A]dvanced at the end of each talk title.

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

A 03 [clear filter]
Wednesday, March 29

11:15 CEST

Kubernetes Scheduling Features or How Can I Make the System Do What I Want? [I] - Marek Grabowski & Wojciech Tyczynski, Google
Each user has her own set of requirements and constraints on where their Pods should be placed in a cluster. Some want to increase utilization, thus they want to pack Pods as densely as possible. Other want to maximize reliability, so they spread the Pods as thinly as they can.

Another one may have Pods that interfere with each other, e.g. by writing a lot to a local disk and don't want to put those on a single Node.

During this talk I'll tell what features are present in the default Kubernetes scheduler that can help you to accomplish all those things and more.

avatar for Marek Grabowski

Marek Grabowski

Site Reliability Engineer, Google
Marek is a Software Engineer turned Site Reliability Engineer late 2017. Currently he focuses on reliability of Kubernetes clusters. Since 2013 he has been working on Google’s Technical Infrastructure, where early 2015 he joined Kubernetes engineering team. In Kubernetes his main... Read More →
avatar for Wojciech Tyczyński

Wojciech Tyczyński

Senior Staff Software Engineer, Google
Wojciech is working on Google Technical Infrastructure & Cloud since 2012. Since February 2015 he works on Kubernetes and Google Kubernetes Engine. With the main focus on scalability, performance and reliability, he gained experience and contributed to many Kubernetes features and... Read More →

Wednesday March 29, 2017 11:15 - 11:50 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

12:00 CEST

The Open Service Broker API and the Kubernetes Service Catalog [B] - Paul Morie, Red Hat & Chip Childers, Cloud Foundry Foundation
The next frontier for Kubernetes is allowing seamless integration with the vast array of service brokers available in the microservice-based software ecosystem via a service catalog. The Open Service Broker API is an industry standard that allows service operators to integrate with multiple platforms using a single API specification.

In this session, you’ll learn exactly what the Open Service Broker API specification is, its history, how the cross-ecosystem collaboration on the API specification is happening and especially how the Kubernetes ecosystem is building integrations with this specification via the service catalog project. We’ll briefly talk about how to get involved in the Kubernetes Special Interest Group (SIG), and if the audience behaves, we’ll even do a demo!

avatar for Chip Childers

Chip Childers

CTO, Cloud Foundry Foundation
A proven DevOps visionary and leader. Before coming to the Foundation, Chip was vice president of Product Strategy at CumuLogic. He spent more than 15 years in engineering leadership positions within the service provider industry including work with SunGard Availability Services and... Read More →
avatar for Paul Morie

Paul Morie

Sr. Principal Software Engineer, Red Hat
Paul is a Principal Engineer at Red Hat and a Kubernetes maintainer. He's been working on Kubernetes since 2014, concentrating at different points on application development primitives, service catalog, container security, and multicluster problems. Before Kubernetes, he worked on... Read More →

Wednesday March 29, 2017 12:00 - 12:35 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

13:55 CEST

Autoscaling in Kubernetes [I] - Marcin Wielgus, Google
One of the nicest features of Kubernetes is its ability to automatically adjust the cluster size and the number of pod replicas to the current traffic and load. During this talk I will explain what is the current state of pod and node autoscaling in Kubernetes, how it exactly works, what metrics can be used to drive autoscaling, and what are the best practices to apply it in production.

avatar for Marcin Wielgus

Marcin Wielgus

Staff Software Engineer, Google
Marcin Wielgus is a Staff Software Engineer at Google. Marcin joined the internet search giant in 2010 and since then he has been working on various projects, ranging from Android applications to recommendation engines. He started contributing to Kuberentes before the 1.0 release... Read More →

Wednesday March 29, 2017 13:55 - 14:30 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

14:40 CEST

Dance Madly on the Lip of a Volcano with Security Release Processes [I] - Jess Frazelle, Google & Brandon Philips, CoreOS
This talk will cover how we designed an awesome security release process for Kubernetes and all it’s sub-projects.

Open source projects strive to be transparent in everything they do, but when it comes to fixing security patches they need to find the right balance of “open” and “responsible.” This means vulnerabilities should be reported in a safe way as well as patches tested and reviewed with a limited audience. The companies that rely on Kubernetes should have time to patch their systems before a public announcement.

Various sets of infrastructure and collaboration are needed to make this a reality. The design we used could also be applied to other projects and even internally in your company.

Join us to learn about the Kubernetes Security Release process and how we went from no infrastructure in 2016 to great infrastructure backed by an awesome team in 2017.

avatar for Jessie Frazelle

Jessie Frazelle

Software Engineer, Mcrosoft
Jess Frazelle works at Microsoft on open source, containers, and Linux. She has been a maintainer of Docker, contributor to RunC, Kubernetes and Golang as well as other projects. She loves all things involving Linux namespaces and cgroups and is probably most well known for running... Read More →
avatar for Brandon Philips

Brandon Philips

CTO, CoreOS, Inc.
Brandon Philips is helping to build modern Linux server infrastructure at CoreOS as CTO. Prior to CoreOS, he worked at Rackspace hacking on cloud monitoring and was a Linux kernel developer at SUSE. As a graduate of Oregon State's Open Source Lab he is passionate about open source... Read More →

Wednesday March 29, 2017 14:40 - 15:15 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

15:35 CEST

Building a Storage Cluster with Kubernetes [I] - Bassam Tabbara, Quantum Corp.
Modern software storage systems are inherently complex. They are composed of numerous distributed components, require careful balancing of resources, and have stringent performance requirements. If you're running your applications in a public cloud you're typically shielded from this complexity and can utilize managed storage services like EBS, S3 and EFS. If you're running on-premise, however, your choices are quite limited and typically result in using traditional big-iron storage systems.

In this talk we'll walkthrough how we've built a production-ready storage cluster using Kubernetes. Storage nodes run as pods and enumerate the available storage devices within the cluster. We'll explore how to optimize the network through CNI plugins to separate client and storage cluster traffic. We'll show how some of the features of Kubernetes including controllers/operators, third-party resources, resource management, and rolling upgrades can lead to more powerful and resilient storage clusters. We'll also walk through use cases where the storage cluster is dedicated (hyperscaled) or shared with other applications (hyperconverged).

avatar for Bassam Tabbara

Bassam Tabbara

Chief Technical Officer, Quantum Corporation
Bassam Tabbara is the CTO of Quantum Corporation, a world-class leader in storage. He is spearheading several storage projects including Rook (http://rook.io). Prior to Quantum, Bassam was the CTO and co-founder of Symform, a P2P storage startup acquired by Quantum. Prior to that... Read More →

Wednesday March 29, 2017 15:35 - 16:10 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany

16:20 CEST

Audit in Kubernetes Now, and in the Future [B] - Maciej Szulik, Red Hat
Quoting Wikipedia “an audit is a systematic and independent examination of (...)
records”. Now think for a second, how much information is floating through your
Kubernetes cluster. Deployments, Jobs and many other controllers creating and
destroying Pods. Administrators creating Users, granting Roles. Users creating
and modifying ConfigMaps, Secrets and many, many others. You can limit actions
performed by a single User creating Roles, controllers can be assigned ServiceAccounts,
etc, of course. But even with all that in place, are you sure you can easily
trace when a change was introduced, and most importantly who performed it?
This is when auditing comes into play.

During this presentation, I will introduce what auditing is, and what you can
expect from one of the best hidden features of Kubernetes, and why should you
care. I don't like just talking about ideas, so we’ll also walk through a live
demo showcasing the audit feature.
With all the current state laid out, I will discuss the future evolution of this
feature. Most importantly, I will cover the scope of the information that should
be gathered during processing each request. What policies should be implemented
to provide reasonable balance between performance and accountability. Lastly,
I will cover the most sensitive topic, how to store all that information.

After this session you will understand how auditing in Kubernetes works, and how
to leverage it to stay informed about what goes on in your cluster. Furthermore,
I am hoping this presentation will foster a discussion about advanced audit feature
and its shape in Kubernetes.

avatar for Maciej Szulik

Maciej Szulik

Senior Principal Software Engineer, Red Hat
Maciej is a passionate developer with almost 2 decades of experience in many languages. Currently he's working on OpenShift and Kubernetes for Red Hat. Whereas at night he is hacking on side projects with python. In his spare time he enjoys reading a good book or taking photos.

Wednesday March 29, 2017 16:20 - 16:55 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
Thursday, March 30

11:30 CEST

BoF: Create Great CNCF User-Base From Lessons Learned From Other Open Source Communities [B] - Krishna Kumar, Huawei & Lee Calcote, SolarWinds
Success of any open source projects is its people around it. This session goes deep in to analyzing various open source communities and how they influence create great user groups to build and use better software. This session will look in to the communities of Openstack, Apache, Android, OpenDayLight, OpenNFV, Cloud Foundry, Mesos, etc. And take the best practices out of it to share to all the enthusiasts to build great CNCF communities. These communities are used various means like meetups, hackathons, roadshows, day events, mini projects, college drives, etc. to influence the audience. As CNCF starts adding more projects in to its fold, the user base also needs to get explode to have big impact projects. Getting more and more people in to CNCF is one of the primary goals of making the projects very successful. Primary audience of this session is all the CNCF users and also enthusiasts who would like to propagate the message of CNCF to the outer world.

avatar for Lee Calcote

Lee Calcote

Founder, Layer5
Lee Calcote is an innovative product and technology leader, passionate about developer platforms and management software for clouds, containers, functions and applications. Advanced and emerging technologies have been a consistent focus through Calcote’s tenure at SolarWinds, Seagate... Read More →
avatar for Krishna Kumar

Krishna Kumar

CNCF Ambassador & Architect Cloud, Huawei Technologies
Krishna Kumar is a CNCF Ambassador & Architect for Huawei Cloud. A Technology Leader in Cloud / Data Centers with 20 years experience @US, Asia-Pacific & India. He is leading a team developing cloud platforms and solutions specializing in IaaS, PaaS, OpenStack, Docker, Kubernetes... Read More →

Thursday March 30, 2017 11:30 - 12:05 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  BoF, Case Studies

12:15 CEST

BoF: Should Kubernetes Have a DSL for Configuration? [A] - Gareth Rushgrove, Puppet

Currently many, if not most, people in the Kubernetes community are writing YAML configuration files by hand, using the data format designed for the API. These files contain a great deal of repetition in any non-trivial environment and writing the data by hand is error prone without the ability to create higher-level abstractions. This Birds of a Feather session would look to discuss this problem, and what higher-level tools may help solve it in the future. In particular we would talk about:

* Why different types of users might prefer different interfaces
* The pros and cons of domain specific languages
* The advantages of abstractions
* The argument that you should just "use a proper programming language"


Gareth Rushgrove

Senior Software Engineer, Puppet
Gareth Rushgrove is a senior software engineer at Puppet. He works remotely from Cambridge, UK, building interesting tools for people to better manage infrastructure. Previously he worked for the UK Government Digital Service focused on infrastructure, operations and information security... Read More →

Thursday March 30, 2017 12:15 - 12:50 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  BoF, Wildcard

14:00 CEST

BoF: What Should be PID 1 in a Container? [I] - Ranjith Rajaram, Red Hat
When a container is started, the main application will have process ID as 1. In a traditional unix systems, PID 1 is usually the init/systemd process. So the question that arises is "Does it really matter which process becomes PID 1 inside a container?".

This talk "What should be PID 1 in a container?" will talk about the problem related to process reaping and what you should care about when deploying the containerized application. This session would be beneficial for developers who are planning to containerize the application. Process reaping will be explained with simple example.

avatar for Ranjith Rajaram

Ranjith Rajaram

Sr.Principal Technical Support Engineer, Red Hat
Ranjith Rajaram works for Red Hat as a Sr. Principal Tech. Support Engineer. He has 13 years of experience in implementing Linux servers for complex workloads. Active member of Fudcon and was involved in the planning of container track for Fudcon 2015. Has presented technical talks... Read More →

Thursday March 30, 2017 14:00 - 14:35 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  BoF, Developer

14:45 CEST

BoFs: Data-Aware Scheduling in Kubernetes [I] - Johannes M. Scheuermann, inovex & Felix Hupfeld, Quobyte
In order to provide prompt results and efficiently deal with data-intensive workloads, Big Data applications execute their jobs on compute slots across large clusters. Also, for optimal performance, these applications should be as close as possible to the data they use. Data-aware scheduling is the way to achieve that optimization and can conveniently be set up using Kubernetes. We’ll present two different use cases: First, we’ll make use of how Big Data applications like Hadoop and Spark can use their native HDFS protocol for data-aware scheduling. Second, we’ll demonstrate an efficient way to write a data-aware scheduler for Kubernetes that satisfies not just your application’s requirements, but also keeps your admins happy. As a bonus, it’ll also allows us to run data-aware scheduling on applications other than Big Data.


Felix Hupfeld

Founder, Quobyte
Felix manages Quobyte’s technology and pushes development forward. Before that, he worked as a tech lead and capacity planner in Google’s infrastructure team (2009–2013). He was the architect and project manager for XtreemFS (2006–2009). Felix’s PhD was on distributed s... Read More →
avatar for Johannes M. Scheuermann

Johannes M. Scheuermann

Cloud Platform Engineer, inovex
Johannes is an operations guy with a software development background. He's been working with Containers and Kubernetes for over years. He has a strong interest in modern infrastructures and building infrastructure software.

Thursday March 30, 2017 14:45 - 15:20 CEST
A 03 Berlin Congress Center, Alexanderstraße 11, 10178 Berlin, Germany
  BoF, Storage
Filter sessions
Apply filters to sessions.