Loading…
In-person
18 April 2023
Learn More

The Sched app allows you to build your schedule, but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2023, and have an All-Access pass in order to participate in the sessions.

The KubeCon + CloudNativeCon Only virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home!  *Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.

Thank you to our CiliumCon livestream sponsor, Isovalent and our Observability Day livestream sponsor, Lightstep! Join the conversation on Cilium Slack.

Please note: This schedule is automatically displayed in Central European Summer Time (UTC +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

To view the full event schedule for a specific CNCF-hosted Co-located event, you can use the right-hand navigation bar to sort and filter.

The schedule is subject to change.
Simple
Expanded
Grid
By Venue
Tuesday, April 18
 

07:30 CEST

Badge Pick-Up
Tuesday April 18, 2023 07:30 - 18:30 CEST
Entrance C
  Badge Pick-up

07:30 CEST

Badge Pick-Up
Tuesday April 18, 2023 07:30 - 18:30 CEST
Entrance K
  Badge Pick-up

08:59 CEST

CiliumCon Hosted by CNCF - Half Day Event | SOLD OUT
CiliumCon is a half-day co-located event for Cilium users, contributors, and new community members. You’ll hear from end users who will share their experiences, and from contributors who will teach you about Cilium’s technology, and its use of eBPF to provide high-performance networking, observability, and security features. In addition, following the success of the Cilium Project Meeting held at Detroit, we will set aside time and space for a meet-the-maintainers session where attendees can discuss proposals, PRs, and issues. This includes support for new contributors who need help. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.

KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 

If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.

The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.

The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home!
*Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.

Thank you to our CiliumCon livestream sponsor, Isovalent! Join the conversation on Cilium Slack.

Questions about registration? Visit our FAQ page.

Join the conversation on Slack.


Tuesday April 18, 2023 08:59 - 12:30 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon

08:59 CEST

Cloud Native Telco Day Hosted by CNCF - Half Day Event | SOLD OUT
Adopting cloud native best practices and principles are critical to the success and growth of Service Providers as they scale to meet new demands for 5G and beyond. Cloud Native Telco Day brings together Service Providers and Vendors across the Telco ecosystem to collaborate with the cloud native community to share lessons learned in their cloud native journey.Anyone involved with the digital transformation of Telco applications and/or infrastructures should join our third Cloud Native Telco Day. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 
If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.
The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.

The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home!
*Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.


Questions about registration? Visit our FAQ page.

Tuesday April 18, 2023 08:59 - 12:30 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day

08:59 CEST

Linkerd Day Hosted by CNCF - Half Day Event | SOLD OUT
The Linkerd maintainers are thrilled to announce the first ever Linkerd Day, a practitioner-driven community conference that emphasizes end-user case studies as well as deep technical talks. Come join us for an exciting day of technical content, networking, and learning.
Linkerd was the first service mesh, the only service mesh to achieve graduation, and the project to coin the term “service mesh.” Today, Linkerd powers the production infrastructure of organizations around the world. Linkerd’s focus on simplicity and performance makes it unique int the service mesh space, and its community of enthusiastic adopters and contributors continue taking the project to new heights. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 
If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.
The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.
The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home!
*Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.


Questions about registration? Visit our FAQ page.

Tuesday April 18, 2023 08:59 - 12:30 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day

08:59 CEST

ArgoCon Hosted by CNCF - Full Day Event | SOLD OUT

Celebrate Argo’s recent CNCF graduation by joining us for ArgoCon in Amsterdam. This is our first ArgoCon in Europe after very high demand from Argo users!
ArgoCon (#ArgoCon) is designed to foster collaboration, discussion, and knowledge sharing on the Argo Project, which consists of four projects: Argo CD, Argo Workflows, Argo Rollouts and Argo Events.
The Argo Project is a suite of open source tools for deploying and running applications and workloads on Kubernetes. It extends the Kubernetes APIs and unlocks new and powerful capabilities in application deployment, container orchestration, event automation, progressive delivery, and more.
Connect with others that are passionate about Argo and interact with project maintainers. Learn from practitioners about pitfalls to avoid and best practices on how to adopt Argo in your cloud-native environment. Get inspired by and provide input to Argo leads on project roadmaps.
The event is vendor-neutral and is being organized by the CNCF Argo Community. Topics in the past have included getting started with Argo, scaling and managing Argo, lessons learned from production deployments, technical sessions, and thought leadership.Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 

If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.

The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.

The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home!
*Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.


Questions about registration? Visit our FAQ page.

Tuesday April 18, 2023 08:59 - 17:00 CEST
Elicium Building | Elicium Ballroom 1 + 2
  ArgoCon

08:59 CEST

Cloud Native Wasm Day Hosted by CNCF - Full Day Event | SOLD OUT
Cloud Native Wasm Day highlights the growing importance and ubiquity of WebAssembly throughout the cloud-native ecosystem. As an application host, an application plugin, or an application platform, WebAssembly is a technology that is compatible with containers and Kubernetes but not dependent upon them. Along with devices, virtual machines, containers, and kubernetes, WebAssembly is an additional deployment method for workloads everywhere. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 
If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.
The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.
The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home! *Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.


Questions about registration? Visit our FAQ page.

Tuesday April 18, 2023 08:59 - 17:00 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day

08:59 CEST

Observability Day Hosted by CNCF - Full Day Event | SOLD OUT
Observability Day fosters collaboration, discussion, and knowledge sharing of cloud-native observability projects (including but not necessarily limited to Prometheus, Fluentd, Fluent Bit, OpenTelemetry, and OpenMetrics), as well as vendor-neutral best practices for addressing observability challenges. Sessions include a keynote, panel discussions, workshops, lightning talks, and individual presentations. This event is intended both for audiences that are new to observability as well as for seasoned practitioners. Observability Day will enable you to spend a day peeking under the hood of major Cloud Native Computing Foundation observability-related projects and broadening your knowledge of observability. The event is vendor-neutral and organized by members of the community. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 

If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.

The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.

The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home!
*Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.

Thank you to our Observability Day livestream sponsor, Lightstep!

Questions about registration? Visit our FAQ page.

Tuesday April 18, 2023 08:59 - 17:00 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day

09:00 CEST

Welcome + Opening Remarks, Program Committee Members - Liz Rice, Isovalent & Laurent Bernaille, Datadog
Join the conversation on Slack
Speakers
avatar for Liz Rice

Liz Rice

Chief Open Source Officer, Isovalent
Liz Rice is Chief Open Source Officer with eBPF specialists Isovalent, creators of the Cilium project. She was chair of the CNCF's Technical Oversight Committee 2019-2022, and Co-Chair of KubeCon + CloudNativeCon in 2018. She is also the author of O'Reilly books "Learning eBPF" and... Read More →
LB

Laurent Bernaille

Staff Engineer, Datadog
Laurent Bernaille worked several years as a consultant specializing in cloud, containers, and automation and helped organizations migrate to the public cloud and adopt containers. He is now Principal Engineer at Datadog and works closely with infrastructure teams, which are responsible... Read More →

Tuesday April 18, 2023 09:00 - 09:10 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon

09:00 CEST

Welcome + Opening Remarks, Program Committee Member - Vuk Gojnic, Deutsche Telekom Technik
Speakers
avatar for Vuk Gojnic

Vuk Gojnic

Squad Lead, Platform, Deutsche Telekom Technik
Vuk Gojnic is a squad leader for the Kubernetes Engine at Deutsche Telekom. Originally a developer, Vuk discovered open source and has been a convert ever since. At Deutsche Telekom, he’s responsible for T-CaaS / Das Schiff their Infrastructure as a Service platform built on Kubernetes... Read More →

CN Telco Day EU 2023 Opening Vuk Gojnic pptx
CN Telco Day EU 2023 Opening Vuk Gojnic pdf
Tuesday April 18, 2023 09:00 - 09:10 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day

09:00 CEST

Welcome + Opening Remarks, Program Commitee Member - William Morgan, Buoyant
Speakers
avatar for William Morgan

William Morgan

CEO, Buoyant
William Morgan is the CEO of Buoyant. Prior to founding Buoyant, he was an infrastructure engineer at Twitter, where he ran several teams building on product-facing backend infrastructure. He has worked at Powerset, Microsoft, adap.tv, and MITRE Corp, and has been contributing to... Read More →

Tuesday April 18, 2023 09:00 - 09:10 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day

09:00 CEST

Welcome + Opening Remarks - Program Committee Member - Bartlomiej Plotka, Google
Speakers
avatar for Bartłomiej Płotka

Bartłomiej Płotka

Senior Software Engineer, Google
Bartek Płotka is a Senior Software Engineer at Google. SWE by heart, with an SRE background, currently working on Cloud Observability. Previously Principal Software Engineer at Red Hat. Author of "Efficient Go" book with O'Reilly. As the co-founder of the CNCF Thanos project and... Read More →

Public Observability Day Opening Amsterdam 2023 pdf
Tuesday April 18, 2023 09:00 - 09:10 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day

09:00 CEST

Welcome + Opening Remarks, Program Committee Member - Hong Wang, Akuity
Speakers
avatar for Hong Wang

Hong Wang

CEO, Akuity
A founding member of Argo Project. Prior to founding Akuity, Hong was the Argo team manager at Intuit and built the control-plane used to manage hundreds of Kubernetes clusters and thousands of namespaces. Hong has extensive experience in distributed system projects ranging from storage... Read More →

Tuesday April 18, 2023 09:00 - 09:15 CEST
Elicium Building | Elicium Ballroom 1
  ArgoCon

09:00 CEST

Welcome + Opening Remarks - Kelsey Hightower, Google
Speakers
avatar for Kelsey Hightower

Kelsey Hightower

Distinguished Software Engineer
Kelsey Hightower has worn every hat possible throughout his career in tech, and enjoys leadership roles focused on making things happen and shipping software. Kelsey is a strong open source advocate focused on building simple tools that make people smile. When he is not slinging Go... Read More →

Tuesday April 18, 2023 09:00 - 09:15 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day

09:10 CEST

Prometheus Project Updates - Richard Hartmann, Grafana Labs
What's new and next in the Prometheus project? In this session, Richard will talk through recent releases and the roadmap for the project.



Speakers
avatar for Richard Hartmann

Richard Hartmann

Director of Community, Grafana Labs
Richard "RichiH" Hartmann is the Director of Community at Grafana Labs, a member of the Office of the CTO of Grafana Labs, Prometheus team member, OpenMetrics founder, OpenTelemetry member, CNCF Technical Oversight Committee member, CNCF Governing Board member, and more. He also leads... Read More →

Tuesday April 18, 2023 09:10 - 09:15 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day

09:15 CEST

Sponsored Keynote: Cilium on Azure: Most Scalable and Performant Implementation in the Cloud - Deepak Bansal, Microsoft
Microsoft is thrilled to announce investments we are making to fuse power of Azure Virtual Network stack with Cilium’s eBPF capabilities in close partnership with Isovalent. Cilium in Azure will provide highly efficient load-balancing, extensive network security features, and rich observability integrated well along with robust and scalable Azure CNI IP management and native Azure networking routing, to give the most performant and best-in-class container networking platform available in cloud.

Join the conversation on Slack.
Speakers
avatar for Deepak Bansal

Deepak Bansal

Corporate Vice President and Technical Fellow, Microsoft
Deepak is the Corporate Vice President in Azure core engineering organization responsible for building planet scale services that power the Azure platform. His areas of responsibility include Azure Virtual Networks, Azure Load Balancing service, Azure Container Networking, Azure PrivateLink... Read More →

Cilium on Azure KubeconEU 2023 pdf
Tuesday April 18, 2023 09:15 - 09:20 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon

09:15 CEST

⚡ Lightning Talk: How Can We Renovate Legacy Telecom Infrastructure for Cloud-Native? - Hiromu Asahina & Yasfumi Ogawa, NTT
As a telcom operator, NTT is finally getting serious about K8s. We intend to use G-VNFM (Generic Virtualised Network Function Manager) to migrate from VM (Virtual Machine)-based network functions called VNFs (Virtualised Network Functions), such as routers and firewalls, to CNFs (Cloud-native Network Functions) running on K8s, with no interruption of service. However, huge gaps remain between the legacy telecom infrastructure and cloud-native architecture, and only parts of the infrastructure can be renewed at a slow pace. This brings up some questions. How do we shift VMs that just contain legacy appliances to containers? How do we introduce a well-abstracted management plane for both VNFs and CNFs? Moreover, how do we manage K8s clusters in terms of NFV (Network Functions Virtualisation)? The talk will describe how to close such gaps using G-VNFM, which provides integrated control of K8s and legacy telecom infrastructure. We will run G-VNFM Tacker and look at provisioning for K8s cluster with Cluster API, VNF, and CNF.
Speakers
avatar for Hiromu Asahina

Hiromu Asahina

Software Engineer, NTT
Software Engineer, NTT Network Innovation Center. He is an active contributor of OpenStack Tacker/Keystone from Xena/Yoga cycle, a core reviewer of OpenStack heat-translator from Zed cycle, and is currently working on Cluster API and its providers.
avatar for Yasufumi Ogawa

Yasufumi Ogawa

Distinguished Researcher, NTT
Distinguished Researcher, NTT Network innovation Center. He is a PTL (Project Team Lead) of OpenStack Tacker from Victoria cycle, and a maintainer of SPP (Soft Patch Panel) hosted project in DPDK from 2017. He joined NTT in 2003. His research interests include distributed systems... Read More →

How Can We Renovate Legacy Telecom Infrastructure For Cloud Native pdf
Tuesday April 18, 2023 09:15 - 09:20 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Networking and Kubernetes

09:15 CEST

Open Telemetry Project Updates - Austin Parker, Lightstep
What's new and next in the Open Telemetry project? In this session, Austin will talk through recent releases and the roadmap for the project.



Speakers
avatar for Austin Parker

Austin Parker

Principal Developer Advocate, Lightstep
Austin Parker has been solving - and creating - problems with computers and technology for most of his life. He is the Principal Developer Advocate at LightStep and maintainer on the OpenTracing and OpenTelemetry projects. His professional dream is to  build a world where we're able... Read More →

Tuesday April 18, 2023 09:15 - 09:20 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day

09:15 CEST

Zero-Cost Linkerd at Adidas: Impossible Is Nothing - Daniel Baeyens & Miguel Allende, Adidas AG
Adopting any open-source project comes with a cost – but that doesn’t mean that a vendor offering is the best way to reduce that cost! It’s definitely possible to run pure open-source projects while keeping a small operational footprint, even when you also contribute upstream to help the community. In this talk, Adidas engineers Daniel Baeyens and Miguel Allende will share how their team of just five people integrated Linkerd into their stack within timeframe. They made it keeping costs down while simultaneously meeting corporate needs and integrating their existing tools from VictoriaMetrics, Grafana, and Venafi around observability, reliability, and security. You’ll learn what went well, what challenges they faced, and why maintaining a healthy relationship with the community and the project maintainers has been a key to success when bringing Linkerd to one of the world’s leading sports brands.
Speakers
avatar for Miguel Allende

Miguel Allende

Site Reliability Engineer, Adidas
Miguel is an SRE at adidas responsible for ensuring that the next generation of eCommerce services are reliable, scalable, and performant. He works closely with developers and platform teams to design, implement, and maintain solutions that meets business requirements. With a strong... Read More →
avatar for Daniel Baeyens

Daniel Baeyens

Senior Platform Engineer, adidas AG
Daniel is Senior Platform Engineer at adidas, working on the Container Orchestration team. This team run and automate operations for all adidas Kubernetes clusters globally and work along with more than 70 teams and 800 engineers to successfully migrate their applications to the platform... Read More →

Zero Cost Linkerd at adidas pdf
Tuesday April 18, 2023 09:15 - 09:40 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, Linkerd in Practice / End User Stories

09:20 CEST

Sponsored Keynote: Argo and GitOps in a Managed Services World - Harriet Lawrence, Red Hat
How do we make sure our automation tooling and practices follow the same trajectory as platform engineering? Let’s figure it out together.
There have always been folks on teams who would run internal services, and now that often invisible work is finally getting brought to the fore with the popularity of platform engineering and internal developer platforms. CI/CD and GitOps practices are the glue that brings automation and predictability to these managed services, and we can make sure they’re valued just as highly.
Speakers
avatar for Harriet Lawrence

Harriet Lawrence

Product Manager, Red Hat
Harriet is a PM at Red Hat working with the OpenShift GitOps team and Argo CD community. Previously a developer and a technical writer, they have been working on making CI/CD products easier to use since 2016.

ArgoCon '23 Sponsor Keynote pdf
Tuesday April 18, 2023 09:20 - 09:25 CEST
Elicium Building | Elicium Ballroom 1
  ArgoCon

09:20 CEST

Sponsored Keynote: Building New Software Foundations With the WebAssembly Component Model - Till Schneidereit, Fermyon
The context in which software is being developed is changing dramatically, with new challenges arising and new opportunities opening up. We need answers to these challenges and shouldn't let those opportunities go by untapped. No single solution will achieve all that, but in this keynote I will show that the Component Model is a great answer to some of the most important problems, and opens up exciting new opportunities to improve software, and software development.
Speakers
avatar for Till Schneidereit

Till Schneidereit

Principal Engineer, Fermyon
A failed philosophy major and recovered Flash developer, Till joined Mozilla's SpiderMonkey JS engine team ten years ago. He then became a tech lead and manager in Mozilla Research, eventually leading the combined Rust and WebAssembly team. He oversaw much of the development of the... Read More →

Tuesday April 18, 2023 09:20 - 09:25 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day

09:20 CEST

Fluentd and Fluent Bit Project Updates - Eduardo Silva- Calyptia
What's new and next in the Fluentd and Fluent Bit project? In this session, Eduardo will talk through recent releases and the roadmap for the project.



Speakers
avatar for Eduardo Silva

Eduardo Silva

Engineering Manager, Chronosphere
Eduardo is an entrepreneur and Software Engineer. He is one of Fluentd project maintainers and creator of Fluent Bit, a lightweight Logs, Metrics, and Traces processor. Prev: founder at Calyptia, now at Chronosphere.

Tuesday April 18, 2023 09:20 - 09:25 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day

09:25 CEST

⚡ Lightning Talk: Hacking Kubernetes Networking to Create Telco Solutions - Daniel Finneran, Isovalent
Kubernetes is a highly flexible platform for deploying applications, and as we're seeing more and more diverse applications being migrated we're starting to hit the limits of the intended architecture/behaviour. It is none other than the telco space where these limits are being tested the most. This talk largely sums up the experiences that I've had (as the maintainer of the networking sandbox project kube-vip) and the stream of unique requests that have come from various Telco providers. We will walk through some of these technical requests, the reasoning for them and where the gaps in a traditional Kubernetes clusters exists. Then we'll delve into some of the solutions that have been developed to help solve these truly unique telco/networking problems. Finally we'll explore some of the new technologies on the horizon that (such as eBPF) that may provide the solutions required for the cloud native telco solution of tomorrow.
Speakers
avatar for Daniel Finneran

Daniel Finneran

Principal Community Advocate, Isovalent
Dan Finneran is a Principle Community Advocate at Isovalent. His journey to today has included bare-metal, jails, zones, vms and containers where he is currently enjoying the fast paced ride in the cloud native space. He also created & maintains a popular Open-Source load-balancer... Read More →

Tuesday April 18, 2023 09:25 - 09:30 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Networking and Kubernetes

09:25 CEST

The Cilium Story - Why We Created Cilium - Thomas Graf, Isovalent
Cilium is well known today but why did we create it? This talk takes us back to the origins of Cilium. Together, we explore the adventure that led to the creation of the first few lines of Cilium source code. What was the vision? How close was it to what Cilium has become today? As we make our way exploring the many Cilium milestones, we look back to Cilium's roots in Switzerland, the many surprises on the way, and the major milestones that put Cilium on the trajectory it is today.

Join the conversation on Slack.
Speakers
avatar for Thomas Graf

Thomas Graf

CTO & Co-Founder, Isovalent
Thomas is the Co-Founder and CTO of Isovalent, long-time kernel and eBPF developer, and one of the creators of the Cilium project. Before working on Cilium, Thomas was a Linux kernel developer for 15+ years focusing on networking, security, and eBPF. When not working on open source... Read More →

Tuesday April 18, 2023 09:25 - 09:45 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon, Use Cases

09:30 CEST

Sponsored Keynote: Argo Project: The Cloud Native Key Ingredient - Alexander Matyushentsev, Akuity
With the rapid adoption of cloud computing and containerization technologies, the Argo Project has emerged as a key ingredient in enabling organizations to achieve greater scalability, reliability, and agility in their application development and delivery. In this talk, we will focus on how we get involved with the community and our effort to increase Argo’s adoption. We’ll also take a sneak peek into our new open-source solutions.
Speakers
avatar for Alexander Matyushentsev

Alexander Matyushentsev

Co-founder and Chief Architect, Akuity
Argo Co-Creator, Argo CD Lead, and maintainer. Energetic and passionate software engineer with over a decade of software development experience. I'm an enthusiast of continuous integration, agile environments, and a huge open-source believer. Core contributor and maintainer of http://argoproj.io... Read More →

Tuesday April 18, 2023 09:30 - 09:35 CEST
Elicium Building | Elicium Ballroom 1
  ArgoCon

09:30 CEST

Sponsored Keynote: Beyond The Browser: Wasm in Your Cloud Development Workflow - Jake Levirne, Docker
Wasm has had quite an impact in the browser world, but if you’re here you've probably also seen the 2019 Solomon Hykes tweet: "If WASM+WASI existed in 2008, we wouldn't have needed to create Docker. That's how important it is. Webassembly on the server is the future of computing." Today we know that Wasm modules have a place in every cloud development workflow, running seamlessly in the mix of distributed workloads.
Speakers
avatar for Jake Levirne

Jake Levirne

Head of Product,, Docker
Jake is the Head of Product at Docker and is passionate about helping dev teams build, ship, and collaborate on software.

Levirne 2023 04 18 Beyond The Browser Wasm in Your Cloud Development Workflow pdf
Tuesday April 18, 2023 09:30 - 09:35 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day

09:30 CEST

Sponsored Keynote: Telemetry Pipelines: Your Recipe for Success Calyptia - Anurag Gupta, Calyptia
Telemetry pipelines are crucial for organizations to effectively collect, process, and analyze large amounts of data. However, as data volumes continue to grow, organizations face significant challenges in scaling their implementations and managing the associated costs. This keynote will explore these challenges and discuss best practices for achieving data scalability and cost reduction.


Speakers
avatar for Anurag Gupta

Anurag Gupta

Cofounder, Calyptia
Anurag is a maintainer of the Fluentd and Fluent Bit project as well as a co-founder of Calyptia. Previously he has worked at Elastic, driving cloud product and creating the Elastic Operator product. He has also worked at Treasure Data heading enterprise open source with Fluentd... Read More →

Tuesday April 18, 2023 09:30 - 09:35 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day

09:35 CEST

⚡ Lightning Talk: Keeping the Promise of Telco-Grade Resilience for CNFs - Uma Makkara, Harness
A common, figurative measure for very-high software resilience is to say it is "telco-grade". Today, infrastructure powering the Telco world is steadily moving onto Kubernetes, with many critical network functions being containerized (CNFs). The microservices based architecture carries some inherent resilience challenges due to increased dependencies, separate lifecycle management of these dependencies (they typically have their own deploy cycles which are often quite rapid), increased surface-area for failures and, above all, a dense orchestration layer that hosts them. These circumstances call for "effective" and "continuous" failure testing, across the various phases of the delivery lifecycle - within pipelines, in staging environments and upon maturity, in production, to ensure that the telco-grade resilience promise is kept. In this session, Uma will explain how you can enforce the "chaos-first" principle to maintain resilience of your CNF infra, by using the same Kubernetes constructs and principles being used to manage the microservices themselves. He will touch upon how the CNCF CNF-TestSuite leverages the LitmusChaos experiments to certify resilience in a vendor-neutral testbed, while also sharing chaos usecases from Orange, a popular player in the telco space.
Speakers
avatar for Uma Makkara

Uma Makkara

Head of Chaos Engineering, Harness Inc
Uma Mukkara is the head of Chaos Engineering at Harness. Previously, Uma was a co-founder of ChaosNative and MayaData, both of which he helped lead to successful acquisitions. He also co- created the popular CNCF open source projects OpenEBS and LitmusChaos, which he continues to... Read More →

Tuesday April 18, 2023 09:35 - 09:40 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Implementing Telco Grade Observability + Resiliency and Service Availability in Dynamic Cloud Native Environments

09:35 CEST

Coffee Break ☕ + Networking
Head over to Hall 2 to connect with attendees from ArgoCon, Cloud Native Wasm Day, and Observability Day.

Visit Hall 3 to meet with attendees CilliumCon, Cloud Native Telco Day, Istio Day, Kubernetes Batch + HPC Day, Kubernetes on Edge Day, and Linkerd Day.

Tuesday April 18, 2023 09:35 - 09:50 CEST
Halls 2 + 3 + 6 + 7
  Breaks

09:50 CEST

Argo Workflows in Action: Rabobank's Journey to Cloud Native Banking - Sudesh Jethoe, FikaWorks & Karly Huijbrechts, Rabobank
Rabobank is the second largest bank of the Netherlands and the largest provider of mortgages in the country. The department of Special Asset Management is responsible for helping clients facing financial difficulties. At Rabobank account and mortgage statuses are updated every night through a combination of scheduled and event driven jobs with complex interdependencies. When Rabobank moved to public cloud, these jobs were moved from Chronos on Mesos to Argo Workflows on Azure Kubernetes. As this was mainly a “lift and shift” action, Initially there were many issues with stability and scheduling. Sometimes jobs would be triggered too early, other times too late or not at all. In this talk we will explain our use case for Argo, issues we had and how we have improved our setup while running Argo Workflows and Argo Events in production for the last 2 years. We will discuss features we utilize such as workflow templates and composition, eventsources, how we manage Argo resources with Kustomize and how we monitor our jobs using exit handlers. We hope that our talk gives some insight into how open source is used in the financial sector. Also we believe that sharing our practices and experiences can help other organizations in their journey into cloud native.
Speakers
avatar for Sudesh Jethoe

Sudesh Jethoe

Cloud Native Architect, FikaWorks
Sudesh is a hands-on Cloud Native Architect who designs and integrates Cloud Native technologies within large corporations.He developed a.o.:A secure container platform based on Kubernetes and Istio.A monitoring platform based on Prometheus and Grafana currently being used by over... Read More →
avatar for Karly Huijbrechts

Karly Huijbrechts

Productmanager, Rabobank
Karly is a financial advisor and product manager with more than a decade of working experience in the financial services industry. She is currently responsible for the portfolio’s platform and support services within the mortgages domain at Rabobank. Besides her passion for helping... Read More →

ArgoCon KubeCon 18 april 23 pdf
Tuesday April 18, 2023 09:50 - 10:15 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- End User Stories / Case Studies

09:50 CEST

Sailing Across the Ocean of Argo Ecosystem Like a Pro - Khushboo Mittal & Kush Trivedi, DevRev
DevRev, the world’s first DevCRM, saw a 15X increase in the number of microservice after the general availability of the product. With this, the cost for our enterprise CD tool skyrocketed, and among several other incompatibilities, the rising cost for the tool made us get to Argo Ecosystem. As of present, DevRev is efficiently using ArgoCD, Argo Workflows & Argo Rollouts to manage the complete CI/CD process end-to-end with Argo Ecosystem. We made several design decisions around adapting & hooking up all Argo components together with enough observability around the system for our application developers. With talk, we want to take the audience on the journey of our migration to the Argo Ecosystem, the multiple deployment architectures we considered with ArgoCD & how we hooked up all Argo components to design an End-to-End GitOps CI/CD pipeline.
Speakers
avatar for Kush Trivedi

Kush Trivedi

Platform Engineer, DevRev
I am working with DevRev where I leading the service-mesh & observability paradigm as well as cloud-native adaption effort for the Kubernetes use-case and product revenue fit, as well as working on the platform infrastructure to provide one-touch onboarding of the applications on... Read More →
avatar for Khushboo Mittal

Khushboo Mittal

Senior Infrastructure & Security Engineer, DevRev
Khushboo is a platform engineer working at DevRev with prolonged experience in architecting, deploying and managing cloud-native applications. Khushboo’s primary focus for the past few years has been building platforms to cater to the organization’s security needs in an automated... Read More →

ArgoCon (1) pdf
Tuesday April 18, 2023 09:50 - 10:15 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- End User Stories / Case Studies

09:50 CEST

Some Assembly Required: IKEA Private Cloud, Cloud Native Networking - Karsten Nielsen, IKEA Retail (Ingka Group)
Like any piece of IKEA furniture, cloud-native platforms require some assembly.

Anyone who has built either knows that the most challenging part is connecting all the pieces together correctly. Cilium has become a key piece connecting the vast cloud native estate of IKEA Retail (Ingka Group) encompassing both public and private cloud Kubernetes clusters.

The top three cloud-native networking challenges for IKEA Retail (Ingka Group) were to reduce operational and hardware costs by moving Load Balancing capabilities from dedicated hardware into Kubernetes, scaling and managing clusters to deal with IPv4 exhaustion. Having a predictable IP addresses for outbound traffic.

This session walks through how IKEA Retail (Ingka Group) solved each of these challenges in production with Cilium. Ingress from Cilium Service Mesh and the ability to setup Load Balancers to eliminated the need for expensive hardware load balancers. LB IPAM with BGP provided flexibility in allocating and advertising Service IP's to the physical network. Finally, Egress Gateway predictable connectivity to legacy workloads.

We will examine the IKEA Retail (Ingka Group) business and technical requirements for delivering reliable and scalable applications and how Cilium supported IKEA Retail (Ingka Group) to meet their critical goals, with only some assembly required.

Join the conversation on Slack.
Speakers
avatar for Karsten Nielsen

Karsten Nielsen

Senior Systems Engineer, IKEA Retail (Ingka Group)
I work as a senior systems engineer at IKEA Retail (Ingka Group) in the hybrid-/private cloud team focusing on topics around compute, network, service mesh, multi cloud, etc. Open Source and cloud native advocate and enthusiast by heart, using Linux and other open source tools to... Read More →

CiliumCon 2023 pdf
Tuesday April 18, 2023 09:50 - 10:15 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon, Use Cases

09:50 CEST

From Spreadsheets to "Everything as Code" - Joshua Hiller & Alessio Diamanti, Swisscom
At Swisscom, we are engaged in an ambitious technology and cultural transformation towards cloud-native readiness. The advent of new technologies and open source tools has provided us with the opportunity to rethink how we build and operate our 5G Core. By leveraging these technologies, we have taken the chance to ban the widely adopted use of spreadsheets and files "stored anywhere" and adopt a GitOps approach. This has enabled us to introduce DevOps best practices for application development, such as version control and CI/CD/CT for both infrastructure and applications. Our strategy of utilizing state-of-the-art tooling and a new willingness to embrace a "try fast and fail fast" mentality was crucial in finding the optimal solution to address various challenges. Early experience and lessons learned have guided us towards advanced templating practices, which go beyond simply copying and pasting environments. Low-level design as code and repository/branching strategies were instrumental in enabling us to automate at scale and streamline the instantiation, configuration, testing, and lifecycle management of 5G core services. In this presentation, we will showcase the deployment, configuration, and testing of 5G network functions on Kubernetes using Flux, Ansible, and templating.
Speakers
avatar for Josua Hiller

Josua Hiller

Product Owner 5G Core Subscriber Management, Swisscom
Josua is a product owner for 5G core at Swisscom, and a tech lead for automation. Previously working for Telstra, spearheading as tech lead the design and development of building a greenfield 5G-4G converged core using Cloud-Native technologies. He has been working in tech for almost... Read More →
avatar for Alessio Diamanti

Alessio Diamanti

DevOps Engineer, Swisscom
Alessio Diamanti is a DevOps engineer at Swisscom since February 2022, working on automation and optimization for cloud native 5G core network functions. He graduated in computer engineering from University of Bologna, Italy, in 2017 and the Ph.D Degree in computer engineering from... Read More →

From Spreadsheet to Everthing as code pdf
Tuesday April 18, 2023 09:50 - 10:15 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Cloud Native Network Functions (CNFs)

09:50 CEST

Evolution of Wasm: Past, Present, Future - Bailey Hayes, Cosmonic
Wasm has evolved greatly as a standard and technology from the early design days in 2015. Some standards take a long time, while others can be quick evolutionary events. But sometimes, it is hard to know all of the history and work that has gone into bringing Wasm to the point it is at today. This talk will focus on bringing to light all of the work that has been done and what is being worked on by the ever-growing Wasm community. To start, we will delve into the history and evolution of Wasm, explore its current capabilities and use cases, and discuss the future of Wasm. With that knowledge, we will review the component model and its potential impact to how we write applications today. By the end of this talk, attendees will have a better understanding of what Wasm is and why it matters, as well as a glimpse into its potential as a game-changer for the software industry.
Speakers
avatar for Bailey Hayes

Bailey Hayes

CTO, Cosmonic
Bailey Hayes is the CTO at Cosmonic. She believes the future is in distributed systems and WebAssembly (Wasm). Her daily activities include wrangling distributed apps, finding new tools for better devx, and discovering the best food for any given location. She is a lifetime NC native... Read More →

WasmDay EU 2023 pdf
Tuesday April 18, 2023 09:50 - 10:15 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Introduction to Wasm

09:50 CEST

Cost-Efficient Multi-Cluster Monitoring with Prometheus, Grafana & Linkerd - Carolin Dohmen, BWI
Finding the right observability solution can be tough, especially in the context of diverse multi-cluster or even multi-cloud ecosystems. Cloud native monitoring tools like Prometheus provide a good foundation for a unified observability stack across clusters. But how do you stay on top of cluster and application metrics from a variety of source clusters? And what about secure data transfer, high egress costs, and expensive data redundancy? During this session, Carolin Dohmen will discuss how she and her former team at finleap connect, a German fintech company, built a decentralized monitoring solution based on Prometheus, Grafana, and Linkerd's multi-cluster service mirroring capability.
Speakers
avatar for Carolin Dohmen

Carolin Dohmen

Senior DevOps Engineer, BWI GmbH
Carolin is a Senior DevOps Engineer at BWI, the IT services provider for the German Federal Ministry of Defense. As a former Cloud Engineer at finleap connect, a German FinTech company, she helped build a diverse multi-cluster ecosystem to host financial applications on multiple cloud... Read More →

MulticlusterMonitoringLinkerd pdf
Tuesday April 18, 2023 09:50 - 10:15 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, Linkerd in Practice / End User Stories

09:50 CEST

Prometheus Native Histograms in Production - Björn Rabenstein, Grafana Labs
The new Prometheus native histograms are still marked as an experimental feature. That doesn't keep some of us from trying them out in production. Beorn will present first results from native histogram usage “in the wild”. Are they living up to the high expectations? What works well? And what needs more work? Most importantly, the talk will cover performance characteristics when turning up the resolution or when generously partitioning a histogram along multiple dimensions. Another theme is the data collection side, including topics like native histogram adoption in instrumentation libraries and OpenTelemetry interoperability.
Speakers
avatar for Björn Rabenstein

Björn Rabenstein

Engineer, Grafana Labs
Björn “Beorn” Rabenstein is an engineer at Grafana Labs and a Prometheus developer. Previously, he was a Production Engineer at SoundCloud, a Site Reliability Engineer at Google, and a number cruncher for science.

2023 04 18 O11y Day Amsterdam pdf
Tuesday April 18, 2023 09:50 - 10:15 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Project-specific: Observability + Prometheus + OpenMetrics + OpenTelemetry + Jaeger + Thanos +Fluentd + Cortex

10:20 CEST

Scaling GitOps Using ArgoCD Application-Sets: Lesson Learnt - Amit Dsouza, Odyssey Cloud
ArgoCD has gained a lot of traction over the last couple of years, however most companies are still using Applications or App of Apps pattern in ArgoCD. ApplicationSet changed the game! It introduced generators where you could have one Appset to either deploy multiple repositories or single mono repositories. It gave a simplified path to bootstrap clusters using a mono-repository and deployed a product with microservices in multiple repositories. This was GitOps at scale and it was simple. Amit implemented ArgoCD for a large Australian media company to automate application deployments in Kubernetes, however, the journey was not without its hiccups. In this talk Amit introduces people to ArgoCD ApplicationSets & the Generators used, and how it saves time and reduces complexity by avoiding the need to write new deployment pipelines. It lowers the maintenance overhead and coupled with Argo rollouts, you have deployment strategies down pat. Amit walks you through his journey from Application to ApplicationsSets, discussing the mistakes made and lessons learnt, to help you fast track and simplify your ArgoCD adoption.
Speakers
avatar for Amit DSouza

Amit DSouza

Odyssey Cloud
Amit Dsouza is an IT professional with over 12 years of experience in the industry. He is a co-founder of Odyssey Cloud, Australia. With experience in Fortune 500 companies & startups, he has worked in various locations including Australia, Singapore, & India. Amit specializes in... Read More →

ArgoCon 2023 Amit Dsouza presentation pdf
Tuesday April 18, 2023 10:20 - 10:45 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track -Advanced Deployment Patterns

10:20 CEST

Training and Ensuring Reliability of ML Models at Wolt: The Power of ArgoCD, Flyte, and Argo Workflows - Stephen Batifol, Wolt
In recent years, Machine Learning models have become ubiquitous in many industries. However, ensuring the reliability and robustness of these models can be a challenge. Significant demand for compute resources and difficulties to ensure consistency during training and deployment phases, make it harder to achieve the goal of more scalable and reliable models. In this talk, we will delve into the practices that Wolt, a technology company known for its local commerce platform, has implemented to train and maintain their ML models. We will cover the use of ArgoCD, Flyte, and Argo Workflows to provide a streamlined and automated process for training, testing, and deployment while ensuring the reliability of ML models. Additionally, we will discuss how these tools provide a unified platform for collaboration between Data Scientists and ML teams. By the end of this talk, attendees will have a better understanding of the importance of ensuring reliability of ML models and the various tools that can be used to achieve this goal
Speakers
avatar for Stephen Batifol

Stephen Batifol

Machine Learning Engineer, Wolt
From Android developer to Data Scientist to Machine Learning Engineer, Stephen has a wealth of software engineering experience at Wolt. He believes that machine learning has lots to learn from software engineering best practices and spends his time making ML deployments simple for... Read More →

ArgoCon Stephen Batifol (1) pdf
Tuesday April 18, 2023 10:20 - 10:45 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- GitOps and MLOps Deployment Best Practices

10:20 CEST

Designing and Securing a Multi-Tenant Runtime Environment at the New York Times - Ahmed Bebars, The New York Times
Networking choice matters, especially when building multi-tenant Kubernetes clusters to host thousands of containers. In this session, Ahmed will walk you through the New York Times’s networking Journey from initial drawing to Day 2 and beyond operations., The New York Times team was building multi-tenant Kubernetes clusters to complement the Internal Developer platform and needed networking that could securely scale up to 100+ Nodes. Cilium was a critical choice to increase networking performance while providing identity and application-aware security and visibility for cloud native workloads running on EKS. It was an exciting journey but, of course, not an incident-free one. We faced issues that led us to dive into the Cilium codebase to understand and debug critical production issues, with the fix eventually being contributed to Cilium upstream. The audience will learn what requirements led us to choose Cilium, the design tradeoffs and security choices we need to make, and the obstacles we faced before and beyond production, and will walk away with a good understanding of how to save time on their own Cilium Journey.

Join the conversation on Slack.
Speakers
avatar for Ahmed Bebars

Ahmed Bebars

Staff Software Engineer, The New York Times
Ahmed Bebars is a staff software engineer on the Delivery Engineering Cloud Runtime team at The New York Times. He focuses on building a secure, scalable, and extensible Kubernetes runtime. The platform enables service teams to build and deploy their applications rapidly while his... Read More →

CiliumCon EU 2023 Designing and Securing a Multi Tenant Runtime Environment pdf
Tuesday April 18, 2023 10:20 - 10:45 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon, Use Cases

10:20 CEST

Lessons We Learned from Deploying Cloud-Native Telco Cloud for 5G - Riccardo Gasparetto Stori & Tom Kivlin, Vodafone
Vodafone is aggressively deploying Kubernetes-based telco cloud across its markets to support 5G Core and other containerised network functions, and recently went live with 5G SA Core CNFs in the UK, with other markets following. In this presentation we cover our experience so far, what we learned, what we got wrong, what problems we faced, how we solved some of them, and what we need going forwards from our colleagues, partners and vendors to create a truly cloud-native 5G core Telco Cloud. We will be sharing these experiences both from the point of view of the Kubernetes-based telco cloud builders' perspective and the CNF operator's perspective - what are the main gotchas when building carrier-grade telco cloud, such as using Multus and Whereabouts for providing multi-homed networking, and what are our expectations as a Network Operator that needs to provide Telco Services to its customers using cloud-native technologies, for example the journey to Cloud Native EMS (Element Management Systems).
Speakers
avatar for Tom Kivlin

Tom Kivlin

Principal Cloud Architect, Vodafone
Tom, with nearly 20 years of experience in building and operating infrastructure and software within the Telco industry, is passionate about using modern technology and operating practices to deliver real business value. Currently, at Vodafone, he is responsible for defining, communicating... Read More →
avatar for Riccardo Gasparetto Stori

Riccardo Gasparetto Stori

Principal Cloud Architect, Vodafone
As Principal Cloud Architect for Vodafone Group, Riccardo Gasparetto Stori is driving the adoption of Cloud Platforms throughout the Telco industry. Working for Vodafone Group Networks Architecture, he defines and leads the strategy and architecture for Vodafone's Network Cloud in... Read More →

Lessons We Learned From Deploying Cloud Native Telco Cloud for 5G v1.1 pdf
Tuesday April 18, 2023 10:20 - 10:45 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Telecom Operator Expectations and Vision of Cloud Native

10:20 CEST

The Road to Winch - Saúl Cabrera, Shopify
In this talk Saúl presents his work on Winch, a new baseline compiler in Wasmtime. Ahead-of-time compilation of WebAssembly to machine code is a common optimization technique used in server-side environments to improve the startup of WebAssembly applications. This talk explores — through the lens of Shopify's usage of WebAssembly — why this optimization is not entirely suitable for certain applications and how baseline compilation, a technique initially implemented by browsers, can be leveraged as a complementary technique to improve startup performance in server-side WebAssembly applications. This talk presents a deep-dive into the anatomy of Winch: WebAssembly Intentionally-Non Optimizing Compiler and Host, making an emphasis on which characteristics of its anatomy make this compiler suitable for fast startup.
Speakers
avatar for Saúl Cabrera

Saúl Cabrera

Staff Engineer, Shopify
Saúl Cabrera is a software engineer currently working on WebAssembly (Wasm) related tools.

Tuesday April 18, 2023 10:20 - 10:45 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm Runtimes

10:20 CEST

Securing 1/3 of Norway's Annual State Budget - Hans Kristian Flaatten, Norwegian Labor and Welfare Administration (NAV)
The Norwegian Labor and Welfare Administration (NAV) manages one third of Norway's annual state budget through it's various welfare schemes. When NAV moved out of their on-premises datacenters and onto public cloud in 2020 it was clear that we needed a new approach to security - an approach where we did not assume trust just because you had network access. This was not an easy task. Today NAV has 150 cross-functional product teams over 1600 individual application running in production on our Kubernetes. Balancing developers convenience, reliability and security is our main challenge building a platform of this scale and fit for government applications. One of the key pillars for our security approach for this transformation was transparent end-to-end encryption in the network layer for all of our applications running in the cloud. We started out with one service mesh, but after a year of struggles we switched it out for a more light weight alternative with hardly any downtime. Since then our new platform has delighted our developers and citizens and even stood the test of a few recent attacks. This is our story on how we secure Norway's welfare system.
Speakers
avatar for Hans Kristian Flaatten

Hans Kristian Flaatten

Platform Engineer, Norwegian Labour and Welfare Administration (NAV)
Platform Engineering at the Norwegian Labour and Welfare Administration (NAV) responsible for the NAIS platform. NAIS is an application platform built to increase development speed by providing our developers at NAV with the best possible tools to develop and run their applications... Read More →

Securing NAV Linkerd Day 2023 pdf
Tuesday April 18, 2023 10:20 - 10:45 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, End User Stories

10:20 CEST

Does It Add Up? Exploring the Delta Temporality in OpenTelemetry and Beyond - Matej Gera & Oded David, Coralogix
The OpenTelemetry specification for metrics data model recognizes two distinct types of temporality, coming from two different monitoring traditions - cumulative and delta. Despite this, the metrics SDK specification currently opts for using the cumulative temporality as the default, leaving the decision to switch to delta temporality to users. This leaves OpenTelemetry users with an open question - what are the use cases of delta temporality in OpenTelemetry? What are the pros and cons of using one type of temporality over another? And what are the pitfalls?   This talk will take a look at the delta temporality in detail. Matej and Oded will first look at definition of temporalities in the specification and their respective historical backgrounds. Subsequently, the talk will focus on comparing the temporalities, showing when employing delta temporality can be advantageous and what pitfalls users need to heed when working with delta temporality. The talk will also consider the temporality outside of the SDK and will analyze how the OpenTelemetry Collector leverages delta temporality in a number of components.
Speakers
OD

Oded David

Head of Platform, Coralogix
Oded has over 10 years of experience in DevOps and team leadership. He specializes in big data and distributed systems.
avatar for Matej Gera

Matej Gera

Software Engineer, Coralogix
Matej is a Software Engineer at Coralogix. He is interested mainly in the topics of observability and cloud engineering. He has been a long-time open source and free software fan, since the time he interned for the Free Software Foundation Europe in 2014. Nowadays, he's a member and... Read More →

KubeCon 2023 pdf
Tuesday April 18, 2023 10:20 - 10:45 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Project-specific: Observability + Prometheus + OpenMetrics + OpenTelemetry + Jaeger + Thanos +Fluentd + Cortex

10:50 CEST

From Legacy to GitOps - Gonzalo Izquierdo, Hiberus Tecnologia & Manuel Hernandez, Sysdig
Rolling updates, Canary, Blue-Green with customizations, IaC? You've probably heard of GitOps, an operating model for Kubernetes and other cloud-native technologies that combines Git deployment, management, and monitoring for containerized clusters and applications. This is a success story about the transition from the traditional sys-ops way of working, which relied on manual tasks and “interface-like” actions with old school consoles, to an environment based on Kubernetes with Argo CD to bootstrap all the new services, along the main core of databases, monitoring, cluster management and all the different implementations for deployments and support to dev and ops teams. In this talk, Gonzalo and Manuel will speak about the transformation from a “legacy” ecosystem to a GitOps model in some of the Ministries of Spain.
Speakers
avatar for Gonzalo Izquierdo

Gonzalo Izquierdo

Software Engineer, Hiberus Tecnologia
Gonzalo Izquierdo works as a Software/DevOps Engineer at Hiberus. He has five years of experience as a Python Developer and DevOps. He loves road traveling, discovering new places and always trying to learn new things in the IT field.
avatar for Manuel Hernandez

Manuel Hernandez

Integrations Engineer, Sysdig
Manuel Hernández works as an Integrations Engineer at Sysdig. He has more than ten years of experience as a SysAdmin and DevOps. He adores traveling to the Pyrenees and spending time with his loved ones.

From Legacy to GitOps pptx
Tuesday April 18, 2023 10:50 - 11:15 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- End User Stories / Case Studies

10:50 CEST

Leveraging Argo WorkflowTemplates Within a Data Platform - J.P. Zivalich, Pipekit & Yao Lin, Bloomberg
WorkflowTemplates are a powerful feature of Argo Workflows because they allow users to encapsulate and reuse code. This provides a series of benefits for any team using Argo Workflows. First, it simplifies the maintenance of Argo Workflows YAML over time by de-duplicating the codebase and keeping workflow files shorter in length. Second, it diffuses more Argo knowledge throughout an organization by providing a centralized location for reusable workflow patterns. Because of these factors, maintaining a robust repository of WorkflowTemplates is a strategic asset for any team using Argo Workflows at scale. However, in order to reap these benefits, we see Argo users face common challenges: How should we make WorkflowTemplates accessible to our team? How do we manage changes and versioning? How do we decide on the canonical WorkflowTemplates for our users to use? In this talk, we will show the best practices to address these challenges that we’ve learned from using WorkflowTemplates to manage Argo Workflows at scale at Bloomberg and Pipekit. We hope that listeners of this talk will be intrigued by the benefits of using WorkflowTemplates within a data platform and leave with a clear path for how to implement enhanced features, like version control, for their WorkflowTemplates.
Speakers
avatar for Yao Lin

Yao Lin

Senior Software Engineer, Bloomberg
Yao Lin is a senior software engineer at Bloomberg, where she has worked for six years. She works as a platform engineer on the company's workflow orchestration platform, which is built on Kubernetes and hosts Argo Workflows as its orchestration back-end. This multi-tenant platform... Read More →
avatar for J.P. Zivalich

J.P. Zivalich

CTO, Pipekit.io
Founder & CTO of Pipekit.

Tuesday April 18, 2023 10:50 - 11:15 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- Platform Engineering

10:50 CEST

Cilium in Practice: Building Data Sandboxes at Bloomberg - Anne Zepecki & Sritej Attaluri, Bloomberg LP
Quant developers and data scientists utilize various data sources in their research workflows. Bloomberg’s quant analytics platform, BQuant Enterprise, is built with Kubernetes, integrates with major public clouds, and allows researchers to seamlessly mix Bloomberg’s comprehensive data sets alongside their own data as they test and deploy new investment strategies. Data vendors typically sell data at different prices tied to different usage terms and limitations. In providing experimentation environments where researchers can build data pipelines without full data license fees, Bloomberg leverages Cilium to construct data sandboxes that restrict users from distributing data outside the sandbox. In this talk, we’ll discuss how in-cluster L7 Cilium policies enable us to create isolated research environments. We hope you will walk away from this talk with an understanding of a unique application of Cilium for an enterprise product and how Cilium could be a valuable solution for you, too!

Join the conversation on Slack.
Speakers
avatar for Anne Zepecki

Anne Zepecki

Engineering Team Lead, Bloomberg LP
Anne Zepecki is an engineering team lead and senior software engineer at Bloomberg in San Francisco. She works on the BQuant Cloud Platform team building a cloud-based quant data science platform and works directly with cloud-native technologies, including Kubernetes, Helm, and other... Read More →
avatar for Sritej Attaluri

Sritej Attaluri

Software Engineer, Bloomberg LP
Sritej Attaluri is a software engineer in Bloomberg’s San Francisco office working on building a turnkey cloud-based platform on top of Jupyter for quantitative analysts and data scientists. They work closely with cloud-native technologies and are working to expand the usage of... Read More →

2023.04.18 Cilium in Practice Building Data Sandboxes at Bloomberg pdf
Tuesday April 18, 2023 10:50 - 11:15 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon, Use Cases

10:50 CEST

Observability & Monitoring in Cloud Native Telco World – Tying It Together - Dorian Lenzner & Roman Szczepanski, Deutsche Telekom Technik GmbH
As a telecommunications provider, stability and observability & monitoring as means to the end have always been an important topic. The entire service chain from RAN to Core and its neighboring systems have tools in place and are mature in their operations and processes. When attempting to integrate the Cloud-native 5G Core at Deutsche Telekom into this existing ecosystem a lot of challenges need to be tackled. Obviously, no core telco applications have been run on Kubernetes before in production. For the new Core, well known tools of the k8s ecosystem are being used for metrics, logging and alerts. Tools like log shipping agents have been evaluated, integrated and already been replaced again due to our learnings. NWDAF looms on the horizon to further push the observability topic. But how do small, incremental changes that are the usual in the cloud native world play together with existing systems that measure their uptime in months and stability in a lot of nines and have their monitoring fine tuned to react to the slightest of disturbances? The session will shine some light on the path towards full production launch we are currently heading down at Deutsche Telekom with a focus on monitoring and observability.
Speakers
avatar for Dorian Lenzner

Dorian Lenzner

DevOps Engineer, Deutsche Telekom Technik GmbH
2018 - June 2022: Building & Running a Monitoring + Observability as a Service platform inside DT Technik GmbHJuly 2022 - now: Work on DT 5G Core with heavy focus on monitoring & observability topicsPassionate about climbing
RS

Roman Szczepanski

DevOps Engineer, Deutsche Telekom Technik GmbH
2012 - 2017: Research Engineer at Telekom Innovation Laboratories 2018 - 2022: Software Developer at DT Technik GmbH Feb 2022 - now: Services and Platforms DevOps Engineer for 5G Standalone Core at DT Technik GmbH

CloudNativeTelcoDay Europe Observability Monitoring pdf
Tuesday April 18, 2023 10:50 - 11:15 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Implementing Telco Grade Observability + Resiliency and Service Availability in Dynamic Cloud Native Environments

10:50 CEST

WASI and the Cloud - Jiaxiao Zhou, Microsoft & Dan Gohman, Fastly
WASI Preview2 is the next major version of WASI, the WebAssembly System Interface. Dan will cover WASI's evolution from Preview1 to Preview2, coming features such as WASI sockets, with demos along the way illustrating how all of these technologies fit together. This talk then will explain why WASI is not merely POSIX APIs, which leads into a discussion of WASI-Cloud, a family of interface proposals for common applications APIs, such as key-value stores, pub/sub, and SQL databases. It intends to make cloud-native and serverless application development simpler and more portable. It will show off some demos of microservices capable of doing service invocations, event streaming and state managements. Finally, this talk will conclude with a glimpse into the future of WASI. Attendees will leave with a comprehensive understanding of WASI and its place in the distributed application landscape.
Speakers
avatar for Jiaxiao Zhou

Jiaxiao Zhou

Software Engineer, Microsoft
Jiaxiao (Joe) Zhou is a Software Engineer at Microsoft. He is on the Azure Container Upstream team and works on bringing WebAssembly to the cloud through projects like "runwasi", "SpiderLightning", and "containerd-wasm-shims". He is also a champion of several WASI proposals including... Read More →
DG

Dan Gohman

Engineer, Fastly
I’m a co-inventor of Wasm, co-author of the LLVM Wasm backend, and original developer of WASI and wasi-libc, champion of WASI filesystem and several other WASI proposals, and I’m involved in many other areas of the Wasm world. I’m excited about the Wasm Component Model, and... Read More →

WASI and the Cloud 2 pdf
WASI and the Cloud pdf
Tuesday April 18, 2023 10:50 - 11:15 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm in the Cloud

10:50 CEST

From Zero to Prod in 2 Months with a Team of One - María Teresa Rojas, Sticker Mule
In this talk, Maria Rojas, Site Reliability Engineer at Sticker Mule, will share why in her previous role at an automated payroll company they needed a service mesh that gets the job done without adding complexity (their small team just couldn't afford to throw a lot of resources at the problem). When the engineering team was tasked with breaking up a monolith, they got one specific request: provide platform-related features (e.g., security, observability, and reliability) at the infrastructure level and avoid implementation at the application layer. After some research, Maria's team decided to give Linkerd a try. It took them only two months to go from zero to production, with only Maria assigned to the task (with the support of her teammates, of course). In this session, Maria will share her challenges and the role that educational material played (the Service Mesh Academy, in particular — a true lifesaver)! She will also share how Pento is now leveraging authorization policies to control access to their newly created microservices. And while their journey started with Linkerd because they wanted to keep things simple, when the platform team suddenly became a team of one, that decision became even more relevant.
Speakers
avatar for María Teresa Rojas

María Teresa Rojas

Site Reliability Engineer, Sticker Mule
María is a Site Reliability Engineer making her way into becoming a Senior in her field. She has an eclectic background and a wealth of transferable skills in diverse fields, from sports nutrition to consultative sales. During the last four years, she has been specializing in all... Read More →

from zero to prod in 2 months pdf
Tuesday April 18, 2023 10:50 - 11:15 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, Linkerd in Practice / End User Stories

10:50 CEST

Using OpenTelemetry’s Exponential Histograms in Prometheus - Ruslan Kovalov & Ganesh Vernekar, Grafana Labs
OpenTelemetry is on a mission to standardize the instrumentation, collection, and export of telemetry data across the industry, and Prometheus is the leading open-source metrics monitoring solution. OpenTelemetry metrics are now GA and promise to be fully compatible with Prometheus. While both OpenTelemetry and Prometheus started work on high-resolution histograms independently of each other, they actively collaborated to keep both histograms compatible with each other. These new histograms bring a whole new set of capabilities over the conventional histogram present in Prometheus, including but not limited to, better storage efficiency, higher accuracy of quantile estimations, flexible histogram buckets, simple configuration, etc. Join OpenTelemetry maintainer Ruslan and Prometheus maintainer Ganesh to dive into the capabilities and design of these new high-resolution histograms and learn how to use OpenTelemetry’s high-resolution histograms in Prometheus with its native support for translation.
Speakers
avatar for Ganesh Vernekar

Ganesh Vernekar

Senior Software Engineer, Grafana Labs
Ganesh has been contributing to Prometheus for over 5 years and is a Prometheus team member and maintainer of its Time Series Database (TSDB). Most recently, he worked on the new native histograms in Prometheus. He has also contributed to Cortex, Grafana Mimir, and Grafana.
avatar for Ruslan Kovalov

Ruslan Kovalov

Senior Software Engineer, Grafana Labs
Ruslan is a software engineer at Grafana Labs and a contributor to OpenTelemetry projects. At Grafana Labs, he works on improving compatibility between OpenTelemetry and Prometheus, and OTLP data intake in Grafana Cloud.

Observability Day 2023 Using OpenTelemetry’s Exponential Histograms in Prometheus pdf
Tuesday April 18, 2023 10:50 - 11:15 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Project-specific: Observability + Prometheus + OpenMetrics + OpenTelemetry + Jaeger + Thanos +Fluentd + Cortex

11:10 CEST

Coffee Break ☕ + Networking

Head over to Hall 2 to connect with attendees from ArgoCon, Cloud Native Wasm Day, and Observability Day.

Visit Hall 3 to meet with attendees CilliumCon, Cloud Native Telco Day, Istio Day, Kubernetes Batch + HPC Day, Kubernetes on Edge Day, and Linkerd Day.
Tuesday April 18, 2023 11:10 - 11:25 CEST
Halls 2 + 3 + 6 + 7
  Breaks

11:25 CEST

GitOps - The Magic Key to Cloud Native Security - Anais Urlichs, Aqua Security
GitOps — defining all of our resources in Git — has gained major popularity over the past year. Following GitOps best principles gives us better insights into our services and deployments. However, one aspect, which has not been discussed to the same extent, is the value that GitOps brings to cloud native security for non-security professionals. In this talk, Anais will showcase how implementing GitOps across your development lifecycle can drastically increase the scan coverage of our resources. We will use ArgoCD for GitOps and Trivy for security scanning. Based on the setup, we will discuss different aspects of our GitOps-based workflow and the benefits it brings to our security scans with little effort.
Speakers
avatar for Anais Urlichs

Anais Urlichs

Developer Advocate, Aqua Security
Anaïs is a Developer Advocate at Aqua Security, where she contributes to Aqua’s cloud native open source projects. When she is not advocating DevOps best practices, she runs her own YouTube Channel centered around cloud native technologies. Before joining Aqua, Anais worked as... Read More →

Anais Urlichs GitOps — the magic key to cloud native security pptx
Tuesday April 18, 2023 11:25 - 11:50 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- Security Practice and Enforcement

11:25 CEST

Managing Artifacts at Scale for CI and Data Processing - Caelan Urquhart, Pipekit & Julie Vogelman, Intuit
Almost all workflows require passing data along a string of steps in the workflow, using the output of one step as the input to a subsequent step. Managing these data artifacts along the workflow lifecycle gets increasingly cumbersome as workflows grow in size and complexity, and as the number of workflows and users accumulate on a given cluster. Because of these factors, maintaining a robust artifact management strategy is critical for scaling up any Argo Workflows instance. In this talk, we will show the best practices we’ve learned from using Argo Workflows at Intuit and Pipekit that address these challenges. We will detail how to configure artifact repos with Key-only Artifacts to simplify workflow management, and how to use Artifact Garbage Collection (GC) strategies to automate artifact cleanup after a successful run, plus explain the benefits of adopting each of these features. We'll then demonstrate how to implement these features in a couple example workflows, covering both data and CI use cases. We hope that listeners of this talk will learn how to level up their artifact management Argo Workflows, whether they are CI or data users, plus feel confident trying out more complicated artifact management approaches for their own workflows.
Speakers
avatar for Julie Vogelman

Julie Vogelman

Argo Workflows Maintainer, Intuit
Julie is a Staff Software Engineer at Intuit and a maintainer of the Argo Workflows project.
avatar for Caelan Urquhart

Caelan Urquhart

Co-founder, CEO, Pipekit
Caelan is the Co-founder and CEO of Pipekit, a control plane for Argo Workflows. Platform teams use Pipekit to manage data & CI pipelines at scale, while giving developers self-serve access to Argo. Some of the largest self-hosted Argo users also rely on Pipekit for Enterprise Support... Read More →

Tuesday April 18, 2023 11:25 - 11:50 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- GitOps and MLOps Deployment Best Practices

11:25 CEST

Tales from an eBPF Program’s Murder Mystery - Hemanth Malla & Guillaume Fournier, Datadog
On a beautiful fall evening, when Cilium was busy processing packets, some of its eBPF programs were murdered, leading to connectivity issues across the cluster. Join detectives Hemanth & Guillaume as they narrate tales from a multi-week investigation involving Cilium and eBPF. As eBPF continues to grow in popularity, this talk serves as a cautionary tale with pitfalls to avoid for developers who intend to build systems that need to co-exist with other eBPF-based components. This talk will include a quick overview of the Linux traffic control subsystem and how you can program it with eBPF. You’ll then get a walkthrough of how the speakers identified the root cause of the incident down to a race condition and the function guilty of the murder. You’ll learn to take advantage of bpftrace and its tools for your debugging needs. Lastly, the talk will conclude by discussing some of the ongoing work of eBPF program ownership, how it impacts security use cases and why solving for it is crucial.

Join the conversation on Slack.
Speakers
avatar for Hemanth Malla

Hemanth Malla

Senior Software Engineer, Datadog
Hemanth Malla is a Senior Software Engineer working on Kubernetes and container networking at Datadog. He is also a Cilium CNCF maintainer. Previously he worked on various distributed systems in industries like e-commerce, fintech and high frequency trading. Apart from computers... Read More →
avatar for Guillaume Fournier

Guillaume Fournier

Senior Security Engineer, Datadog
Guillaume Fournier is a Security Engineer at Datadog where he focuses on developing a new generation of runtime security tools powered by eBPF. In his free time, he likes to build defensive and offensive security tools such as a chrome-like sandbox for VLC on Linux, or various projects... Read More →

Tales from an eBPF program's murder mystery pdf
Tuesday April 18, 2023 11:25 - 11:50 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon, The Use of eBPF in Cilium

11:25 CEST

Corralling the CNFs - W. Watson, Vulk Cooperative & Mary Parsons, Dish Wireless
The integration of CNFs from multiple vendors by testing interoperability and reliability without slowing releases is hard work! How will you automate all the various projects? What tools will you use to test if those projects work? Whose tests will you use to get started? The DISH Wireless NetBloc team has been tackling all of these challenges and more. We used the CNF-testsuite and AWS Lambda functions to reduce toil and maximize reusability across all of our pipelines to great effect. Let us share our journey with you on how we created the blueprint for a vendor pipeline using projects like open5gs and UERANSIM.
Speakers
avatar for Mary Parsons

Mary Parsons

Developer Engagement Manager, DISH Wireless
Mary has over 15 years of experience working in science, data and technology. In her current role as Developer Engagement Manager for DISH Wireless, she partners with technical teams to create a cloud-native ecosystem designed for developers. She’s passionate about building and... Read More →
avatar for W. Watson

W. Watson

Principal, Vulk Cooperative
W. Watson has been professionally developing software for 30 years. He has spent numerous years studying game theory and other business expertise in pursuit of the perfect organizational structure for software co-operatives. He also founded the Austin Software Cooperatives meetup... Read More →

Corralling the CNFs (1) pptx
Tuesday April 18, 2023 11:25 - 11:50 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Cloud Native Network Functions (CNFs)

11:25 CEST

ZeroTrust Microservices with Wasm & WireGuard - Jordan Rash
Zero-trust architectures for cloud computing have become increasingly popular in recent years due to their ability to provide improved security for organizations based on the principle of assuming that all network traffic is untrusted until proven otherwise. This approach helps to prevent breaches by requiring authentication and authorization for all access attempts, regardless of whether they originate from inside or outside of the network. Zero trust architectures employ micro-segmentation to isolate and secure individual components of an application. Platforms like Tailscale utilize tools created with zero-trust in mind, such as WireGuard, to add layers of security to their customers' applications and minimize the attack surface. In this talk, we will combine zero trust architecture with WebAssembly to achieve a more proactive approach to security compared to traditional perimeter-based security models. From the user perspective to execution in a secure WebAssembly sandbox, we will walk through the security advantages that WebAssembly brings to the application architecture. We will leverage the open-source Tailscale tsnet Go module to seamlessly add end-to-end encryption and role-based access controls to a WebAssembly module with no code changes.
Speakers
avatar for Jordan Rash

Jordan Rash

Software Engineer
Jordan is a US Navy veteran and software developer that lives in Denver, CO. Jordan is passionate about open source software and cybersecurity.

Tuesday April 18, 2023 11:25 - 11:50 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Developing + Converting or Leveraging Wasm in Your Cloud Native Application

11:25 CEST

The Negatives to a Per-Host Service Mesh, the Sidecar Model Being a More Ideal Solution for Providing a More Robust Security Boundary - Chad Crowell, Raft
In our quest to improve the security of our service mesh, eBPF seems like a logical solution. In particular, a per-host proxy which would eliminate the need for a sidecar as a part of our service mesh implementation. But, there are security implications that we need to consider which would leave us more vulnerable if this decision was carelessly made. The sidecar proxy is actually an integral part of providing a reliable and scalable service, whilst providing necessary security constraints. Eliminating the sidecar proxy in favor of a per-host proxy is a bad idea and in this talk you'll discover why. In this talk, we'll discuss the footprint of a proxy at low traffic levels, the existing mechanisms that you can leverage already built-in to Kubernetes, the blast radius of a sidecar proxy, and most importantly, the controlled security boundary. The alternative per-host proxy introduces complexities and unpredictability into your cluster, as the blast radius is large and ever-changing. The security landscape is now more complex, and introduces an increased attack vector.
Speakers
avatar for Chad Crowell

Chad Crowell

Senior Platform Engineer, Civo
Chad Crowell is a CNCF Ambassador, and author of "Acing the Certified Kubernetes Administrator Exam" and enjoys helping people learn Kubernetes via KubeSkills community.

LinkerdDay 2023 Chad Crowell The Negatives to a Per host Service Mesh pdf
Tuesday April 18, 2023 11:25 - 11:50 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, Security Implications of a Sidecar-free Approach

11:25 CEST

AI and Observability Role in an E-Government Ecosystem - Zoltan Mathe, IdomSoft Ltd.
Digital transformation of the public administration has a significant impact on the IT services used by millions of citizens. Operating hundreds of IT systems in a heterogenous computing (on-premise, cloud) environment can be a big challenge. Observability plays an important role in IT operation, which can be significantly improved by using artificial intelligence (AI) for anomaly detection, pattern recognition, forecasting etc. along the other technologies. We present our solution, which is based on open source components such as Opentelemetry (Otel), Opensearch, etc. for collecting, storing, and analyzing huge amounts of telemetry data (logs, traces, and metrics) focusing the use of AI, especially Deep Learning (DL). The audience will get insight into the use cases of operating e-government services, particularly how data is analyzed at scale using DL and Opensearch as a big data platform.
Speakers
avatar for Zoltan Mathe

Zoltan Mathe

Monitoring and data analysis team leader, IdomSoft Ltd.
Zoltan is monitoring and data analysis team leader at IdomSoft LTD. holding PhD degree obtained in University College Dublin with collaboration of the LHCb experiment at CERN. He is working in the Central Technology division introducing new innovative open source AI and data related... Read More →

ObservabilityDay zmathe 2023 ppt v5 pdf
Tuesday April 18, 2023 11:25 - 11:50 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Uses of Open Source Tooling to Achieve Observability

11:55 CEST

⚡ Lightning Talk: How to Avoid a Kubernetes Doom Loop - David Collom, Jetstack
This lightning talk is a tale of what happens when automation becomes the problem. A single cluster running 16K Argo Workflows across more than 165 nodes, suddenly begins to melt down. One misconfigured pod starts to automate pod failures on a huge scale. Overloading a cluster is a costly recipe for failure. In this short talk, hear from bitter experience and find out why best practices provide the best basis for an easier life as a CRE.
Speakers
avatar for David Collom

David Collom

Staff Solutions Engineer, Venafi Jetstack Consult
David is a Staff Solutions Engineer with extensive experience in DevOps, Automation, and Kubernetes. Over the course of his career, he has honed his skills in creating high-performance and resilient platforms, catering to both operations teams and developer experience. David is well-versed... Read More →

How To Avoid a Kubernetes Doom Loop (1) pdf
Tuesday April 18, 2023 11:55 - 12:00 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- Infrastructure Automation

11:55 CEST

⚡ Lightning Talk: Telefonistka - Safe and Controlled GitOps Promotion Across Environments/Failure-Domains, as Code - Oded Ben-Ozer, Wayfair
GitOps is now a well established concept in the industry, there are multiple tools, articles and guides to help you implement it.
Most of the tools and articles don't cover the subject of promoting a change across multiple environments and failure domains. For example: from Dev to Staging and then Production; or from one cloud region to all the rest of your regions.
In this talk Oded will present a new OSS tool: Telefonistka Telefonistka automatically opens promotion pull requests based on in-repo configuration files, allowing the user to use the familiar GitHub PR gui/cli/api to easily control how and when his change is promoted across all the relevant environments.
Telefonistka helps to keep all environments in sync, while allowing explicitly defined differences between them. If a drifted state is detected between environments, Telefonistka informs the user via a Pull Request comment, allowing the user to make an informed decision before merging and changing state.
Because Telefonistka only interacts with files in git it is IaC/GitOps tool agnostic: it can work with ArgoCD/Flux/Terraform and while it requires modeling environments in distinct folders it is mostly unopinionated regarding the repo structure.

Get easier, safer, more predictable promotions, get Telefonistka.


Speakers
avatar for Oded Ben Ozer

Oded Ben Ozer

Platform Engineer, Wayfair
Oded is a Platform Engineer @ Wayfair's Kubernetes Team, currently based in Berlin.He has been working in the SRE/Devops/SystemAdmin space since 2005.In his spare time he tries to keep up with his 5yrs old twins, reducing harm to property, body, and mind.

Telefonistka ArgoCon EU 2023 pdf
Tuesday April 18, 2023 11:55 - 12:00 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- GitOps and MLOps Deployment Best Practices

11:55 CEST

⚡ Lightning Talk: Where the Server Goes, Nobody Knows! - Brooks Townsend, Cosmonic
On the edge, on the cloud, In a tab, all around! Have you heard? Gather round! In 2017, Wasm entered the scene, All the C in the sea was obscene! The browser needed native code, And Javascript didn't fit the tone. Safe, secure, small, portable, polyglot, Fits right into the server-side slot. Sounds super for server pains, hot! This could solve what other tech could not! Applications down from GBs to MBs! Microservices down from MBs to KBs! What will we do with all those bytes? No longer will tiny devices run with fright! Millions of Wasms all over the cloud, Millions of Wasms all over the edge, Wasms wherever a Wasm's allowed, Securely and soundly, that's what we allege. Wait, if a server is a server, And a Wasm glows anywhere it goes, Then maybe a server could go a little bit further, But where the server goes, nobody knows! Prepare yourself for a light-hearted introduction to WebAssembly in the style of Dr. Seuss.
Speakers
avatar for Brooks Townsend

Brooks Townsend

Lead Software Engineer, Cosmonic
Brooks is a Lead Software Engineer at Cosmonic, focusing on harnessing WebAssembly to alleviate the pains of modern software development. Brooks started his software development career with Critical Stack, a Kubernetes container orchestration platform that is now open source. He joined... Read More →

Tuesday April 18, 2023 11:55 - 12:00 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm in the Cloud

11:55 CEST

⚡ Lightning Talk: How a Global Logistics Company Migrated Clouds with Zero Downtime - Björn Wenzel, Schenker AG
During this session, Björn Wenzel, Head of DevOps Platform at a Germany-based global logistics company, will share how they migrated mutiple microservices from one cloud to another. Switching clouds never comes without challenges, especially considering their workloads communicate via synchronous and asynchronous HTTP(S) and Kafka requests across clusters and clouds. Björn will cover how the platform team implemented a migration factory for migrating workloads from one AWS Account and network to another AWS Account and network while ensuring there was no service disruption or compromised workloads. Linkerd played a critical role on the multi-cluster communication side. It was the first time Björn's team used a service mesh, and it allowed them to transparently migrate workload by workload to the new cloud. Since they had only exposed an mTLS encrypted tunnel across clusters, that setup solved a lot of security concerns, making the transition much smoother than expected. Join this session to learn more about Björn’s cloud-native journey with Linkerd, and the lessons he learned along the way.
Speakers
avatar for Björn Wenzel

Björn Wenzel

Head of DevOps Platform, Schenker AG
Björn Wenzel works at Schenker AG and is responsible for the development and operation of the Kubernetes-based cloud infrastructure. In his spare time he blogs about Kubernetes and the cloud and works on open source projects around Kubernetes.

kubecon bjoern wenzel pdf
Tuesday April 18, 2023 11:55 - 12:00 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, Linkerd in Practice / End User Stories

11:55 CEST

More Churn No Problem: Lessons Learned Running Cilium in Production - Lu Zhang & Madhu C.S., Robinhood Markets
In this talk, we’ll share Robinhood’s war stories from running Cilium in a high-churn near-production environment, how we have overcome challenges by better understanding and tuning Cilium, and why we now live happily-ever-after™. Robinhood has been running Cilium for over a year in the environment that hosts the company’s integration tests and personal development namespaces. The environment is treated with the same seriousness and response SLA as production because it’s critical to our entire company’s engineering and product development. Due to the nature of the workloads, it is a high churn environment and brings many interesting challenges. We moved from the traditional VPC-based CNI model to Cilium overlay networking to improve pod density, scalability and cost efficiency. While we were able to achieve a significantly higher pod density (~2x) and cost efficiency, this has come with its own set of challenges. We ran into Cilium rate limiting challenges, identity garbage collection bugs, loss of internet egress connectivity for pods, bottlenecks in our environment, and many others. The audience will walk away with an understanding of what it takes to run Cilium in production and some of the edge cases they may encounter.

Join the conversation on Slack.

Speakers
avatar for Lu Zhang

Lu Zhang

Senior Software Engineer, Robinhood Markets
Lu Zhang is currently a member of the Container Orchestration team at Robinhood. He is currently working on infrastructure to allow easy management of cloud resources via continuous delivery. Prior to Robinhood, Lu was a software engineer at LinkedIn, and prior to that, he was a CPU... Read More →
MC

Madhu C.S.

Staff Software Engineer, Robinhood Markets
Madhu is the Tech Lead for the Software Platform - Container Orchestration team at Robinhood that's responsible for developing and operating the Kubernetes-based compute infrastructure for all of Robinhood. Prior to Robinhood, Madhu worked at Google for 8 years where he developed... Read More →

Tuesday April 18, 2023 11:55 - 12:20 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon, Use Cases

11:55 CEST

Ingesting 6.5 Tb of Telemetry Data Daily Through Open Telemetry Protocol and Collectors - Gustavo Pantuza, VTEX
This presentation aims to share how VTEX observability team moved from a single vendor to a full Open Telemetry protocol solution that handles 6.5 terabytes of telemetry data per day (logs, system metrics, business metrics, traces and audit logs). Thinking on the CNCF community, this talk will show the entire architecture, the tradeoffs, how to instrument every application inside the company, how to manage OTEL Collectors at scale, how to centralize visualization, how to extend collectors code and how to guarantee resiliency. Open Telemetry allowed VTEX to completely modernize its Observability stack looking to a horizon of at least 5 years ahead without requiring any sort of migrations on the VTEX's applications. With the architecture this talk presents, VTEX can switch backend vendors without impacting instrumented code. Thus, allow engineering organization to move faster. Last but not least, this solution made VTEX reduce 40% of its Observability costs while enabling a modern, safer and efficient way to engineers to observe their applications at scale. If these topics are interesting to you, please come to this presentation. The idea is to give back to CNCF community what they gave to us: knowledge and cutting edge solutions.
Speakers
avatar for Gustavo Pantuza

Gustavo Pantuza

Staff Software Engineer, VTEX
Msc Computer Scientist with 16 years in software industry. Passionated about distributed systems, computer networks, algorithms and problem solving. At VTEX is a staff software engineer leading the Observability team that delivers telemetry services all over VTEX's software and infrastructure... Read More →

KubeCon23 O11y day gustavo pantuza pdf
Tuesday April 18, 2023 11:55 - 12:20 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Project-specific: Observability + Prometheus + OpenMetrics + OpenTelemetry + Jaeger + Thanos +Fluentd + Cortex

11:55 CEST

Panel: Looking Ahead to the Future with Project Sylva, Energy Efficiency & Telco Cloud Platforms - Niki Manoledaki, Weaveworks; Philippe Ensarguet, Orange Business Services; Jonne Soininen, Nokia; Tim Irnich, SUSE
In November 2022, Linux Foundation Europe announced Project Sylva. As implied by the etymology of the word - “the forest trees growing in a particular region” - the code name stands for the first initiative hosted by LF Europe to create a cloud-native, open-source, production-grade telco stack with leading European carriers and vendors. In keeping with the project’s sylvan roots, in Project Sylva, energy efficiency takes center stage alongside environmental sustainability. What regulatory challenges and opportunities present themselves there? Project Sylva aims to consolidate the operating model of the Telco Cloud model with cloud-native patterns. While operating models such as GitOps make waves in the cloud-native ecosystem, where does that leave telcos? In this panel discussion, leading technologists discuss innovations in the Telco Cloud ecosystem in Europe and beyond, where we are, and where to go from here.
Speakers
avatar for Jonne Soininen

Jonne Soininen

Head of Open Source Initiatives, Nokia
Jonne Soininen is  Head of Open Source Initiatives at Nokia based in Espoo, Finland. Prior to this position, he worked in different positions with Nokia, Nokia Siemens Networks, Renesas Mobile and Broadcom and has an extensive history in telecommunications and software engineering... Read More →
TI

Tim Irnich

Product Manager Telco Edge, SUSE
Tim is the product manager for SUSE’s Adaptive Telco Infrastructure Platform, shortly called ATIP and contributes to the LF Europe Sylva project. Before joining SUSE in 2018, Tim spent 11 years at Ericsson, where he started in Ericsson Research participating in 5G pre-standardization... Read More →
avatar for Philippe Ensarguet

Philippe Ensarguet

VP of Software Engineering, Orange
Philippe is a seasoned tech executive and 2021 Trailblazer award-winning CTO with over 25 years of experience in connecting technology to business, driving impactful change in both large enterprises and start-ups. Having served as CTO three times in 12 years, including for Orange... Read More →
avatar for Niki Manoledaki

Niki Manoledaki

Software Engineer, Weaveworks
Niki Manoledaki is a Software Engineer and advocate for cloud-native environmental sustainability, including carbon, energy, and cost optimisations. She builds open-source cloud-native tools at Weaveworks with a focus on GitOps. She is an active contributor to the CNCF Environmental... Read More →

Tuesday April 18, 2023 11:55 - 12:30 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day, Sustainability in Telco

12:00 CEST

Lunch 🍲 + Networking
Join us for a networking lunch with fellow attendees from the CNCF-hosted Co-Located Events. Please note that the lunch is exclusively available to attendees with an All-Access pass.

Head over to Hall 2 to connect with attendees from ArgoCon, Cloud Native Wasm Day, and Observability Day.

Visit Hall 3 to meet with attendees CilliumCon, Cloud Native Telco Day, Istio Day, Kubernetes Batch + HPC Day, Kubernetes on Edge Day, and Linkerd Day.

If you have pre-ordered a Kosher or Halal meal, please go to the special meals desk in Hall 2.
Both Halls 2 + 3 will have vegan and vegetarian options as well as gluten free meals.
Tuesday April 18, 2023 12:00 - 14:00 CEST
Halls 2 + 3
  Breaks

12:05 CEST

⚡ Lightning Talk: Configuring Volumes for Parallel Workflow Reads and Writes - Lukonde Mwila, Amazon Web Services & Tim Collins, Pipekit
Combining Argo Workflows and Kubernetes can be extremely powerful. When configured correctly, there is no limit to the parallelism that users can achieve when running workflows. However, one of the most common bottlenecks that people run into is that they can’t get the “ReadWriteMany” access mode to work properly when using volumes. This limits the parallelism for the workflow being run because only one pod will be able to access the volume at a time if “ReadWriteMany” is not used. Additionally, most cloud-managed Kubernetes clusters will need some additional configuration in addition to the default settings to get the storage required to play nicely with Persistent Volumes that you can spin up with Argo Workflows. In this talk, we encourage you to consider using a ReadWriteMany disk instead of defaulting to Argo Workflows artifacts. We go over how to set up a Kubernetes cluster with an NFS provisioner using Argo CD. We will then show how to make it play nicely with Argo Workflows, allowing users who submit workflows to dynamically provision volumes that can be accessed in parallel by any pods within a given workflow. Additionally, we will go over use cases in which users would benefit from this setup. Principally, we will discuss how to parallelize Docker builds in a monorepo context.
Speakers
avatar for Tim Collins

Tim Collins

Senior Infrastructure Engineer, Pipekit
Tim is a Senior Infrastructure Engineer at Pipekit, a control plane for Argo Workflows that enables massive data pipelines in minutes, saving engineering time and cloud spend. He has a keen interest in open source technologies and is an active member of the Argo community, often found... Read More →
avatar for Lukonde Mwila

Lukonde Mwila

Senior Developer Advocate, AWS
Lukonde is a Senior Developer Advocate at AWS and a CNCF Ambassador. He has years of experience in application development, solution architecture, cloud engineering, and DevOps workflows. He is a life-long learner and is passionate about sharing knowledge through various mediums... Read More →

conference slides pdf
Tuesday April 18, 2023 12:05 - 12:10 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- Platform Engineering

12:05 CEST

⚡ Lightning Talk: Using Kustomize KRM Functions to Enhance Argo CD Application Deployments - Jan Heylen, Nokia
Argo CD, out of the box supports several ways to define K8s manifests, Kustomize, Helm, plain manifests,... and custom tools. But how does that work 'custom tools'? What are the (small) pitfalls and experiences using Argo CD plugins? This end user story is about extending Argo CD with a plugin, a plugin that uses an alpha feature of Kustomize, called 'KRM functions', and its potential power. Kustomize KRM functions, or KRM functions on its own, exec or containers, could be the answer to the recurring problem of effective configuration management: embracing the inevitability of programmatic configuration that, given enough iterations, configuration data temps to evolve to 'Turing complete'. By embracing this, and so maintaining a clean separation between computation and data, representing the data as simple as possible (yaml/json), and doing the programmatic changes in a real programming language. The plugin presented takes one approach, but also teases the possible scenarios looking at the KRM function specification (e.g. direct KRM functions instead of Kustomize, KRM container functions chained via Argo Workflows, ... ).
Speakers
avatar for Jan Heylen

Jan Heylen

SW Design Engineer, Nokia
I've started my journey as a developer of low level embedded systems, moving up the stack to Linux embedded systems and shifted to scaling out CI/CD in an engineering productivity team, building pipelines and platforms using cloud computing and K8s. Pragmatically automating ourselves... Read More →

Argocon2023 KRM plugin pdf
Tuesday April 18, 2023 12:05 - 12:10 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- Extending Argo with Plugins and Extensions

12:05 CEST

⚡ Lightning Talk: WebAssembly and Syscalls: A Story in Tool-Building - Daniel E Phillips, Loophole Labs
Wasm is poised to fulfill the promise of true cross-platform deployments. One of the big problems that still exists, however, is that so much of the software built today relies on these underlying platforms. What if there was an easy way to know, in advance, which syscalls for a given platform were going to be called by an arbitrary Wasm module? This lightning talk will describe the utility of such a tool, and a brief overview of the process of building it. If I give you a Wasm binary, you may be able to know it’s valid WebAssembly, but can you easily know what type of syscalls it may try to execute for a given platform? I built a small tool that tells you this. I will describe how I built it, and what it can be used for.
Speakers
avatar for Dan Phillips

Dan Phillips

Senior Engineer / Wasm Lead, Loophole Labs
Daniel Phillips is a Senior Engineer at Loophole Labs, where one of his main areas of focus is server-side WebAssembly. He is also the founder and organizer of the WebAssembly Chicago group.

Daniel Phillips Wasm+Syscalls Wasm Day 2023 pdf
Tuesday April 18, 2023 12:05 - 12:10 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Debugging Wasm + Wasm Platforms + Wasm Security + Wasm Host Runtimes Optimized for Cloud Native Execution + Developing, Converting or Leveraging Wasm in Your Cloud Native Application

12:05 CEST

⚡ Lightning Talk: Increasing Platform Reliability and Performance in One Week with a Service Mesh - Eli Goldberg, Salt Security
Platform engineer Eli Goldberg will share how his team used Linkerd to load balance gRPC connections while realizing instant security, efficiency, and performance gains in just one week. When the company's customer base started to grow quickly, the platform needed to scale fast. That led to a few challenges, including backward compatibility issues. To address that, the team moved to gRPC, but load balancing of gRPC requests isn't supported by Kubernetes. After some research, they decided to adopt a service mesh and gave Linkerd a try. To their surprise, not only did it solve the load balancing issue, it also led to a host of other unexpected benefits. Eli will outline their journey, including lessons learned and the challenges ahead.
Speakers
avatar for Eli Goldberg

Eli Goldberg

Director of Platform Engineering, Salt Security
Goldberg, Platform Engineering Lead at Salt Security, is an avid NodeJS, Go, and Scala user. Passionate about systems at scale and keeping up to date with the newest tech, Eli helps ensure Salt's Kubernetes-based platform is scalable, secure, and reliable. He spends a lot of his time... Read More →

Tuesday April 18, 2023 12:05 - 12:10 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, Linkerd in Practice / End User Stories

12:15 CEST

⚡ Lightning Talk: Merging Best Practices with Reality: One Repository for Code and Helm - Omer Kahani, Snyk
The GitOps philosophy has placed Git repos at the center of the development experience. Together with “you build it you own it” practice the ownership and interaction of developers had expanded to the K8s config and Helm chart. However, the best practice of separating these two components introduces complexity. For example, adding an environment variable is a coordinating game across multiple pull requests in multiple repositories with multiple deployment pipelines. In this talk, we'll dive into the challenges of bringing all aspects of an application into a single Git repository. We'll showcase how Argo CD and the app-of-apps concept can be leveraged to carefully balancing and the realities of developer workload, with one repositories. Through a real-world production example attendees will gain insights that they can bring back to their organizations.
Speakers
avatar for Omer Kahani

Omer Kahani

Staff Software Engineer, Snyk
Omer Kahani has more than a decade of experience in full stack development. In the last 5 years Omer has been leading internal developer platform teams. In his current role as a staff software engineer in the Infra group at Snyk, he technical leads three teams along the engineering... Read More →

Helm & Code can live together pdf
Tuesday April 18, 2023 12:15 - 12:20 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- End User Stories / Case Studies

12:15 CEST

⚡ Lightning Talk: Why You Need a Universal Plug-In System - Benjamin Eckel, Dylibso
Plug-in systems have been around since the early days of computing. Universal plug-ins that you could share across applications were pretty common in the 90s during the desktop computing era. But with the proliferation of the web and sophisticated security vulnerabilities, the challenges in building and maintaining these systems have limited them to fewer domains and fewer programmers. WebAssembly provides an opportunity to bring back these kinds of systems and put them in the hands of more programmers and  application domains. In this lightning talk, Benjamin will explain these plug-in systems and the future Wasm will enable.
Speakers
avatar for Benjamin Eckel

Benjamin Eckel

Co-Founder, Dylibso
Benjamin has over a decade of experience as a software engineer and is a co-founder of Dylibso. He previously led DX at Recurly and worked on integrations and edge observability at Datadog.

plug in lightning key
Tuesday April 18, 2023 12:15 - 12:20 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Developing + Converting or Leveraging Wasm in Your Cloud Native Application

12:15 CEST

⚡ Lightning Talk: Lack of Features Is a Feature for This German Automaker - Dominik Táskai, LeanNet Ltd.
During his session, Dominik Táskai, Junior DevOps Engineer at LeanNet, will make a case for how sometimes a lack of features is itself a feature: a technology focused on doing just a few things really, really well can often help us reach our goals faster than something that tries to do too much. That's the lesson he took away from implementing Linkerd at a major German automaker within just five weeks. A journey from no mesh to trying and failing with more complex ones and then finally successfully installing Linkerd in production. Fun fact: he had no prior service mesh experience and only worked with Kubernetes for three months! Who said service meshes are only for advanced Kubernetes users? While engineers are always keen on trying out the best and newest technology, they often overlook operational complexity. In Dominik's experience, operational simplicity, like that provided by Linkerd, is key to achieving results in real-world production environments faster.
Speakers
avatar for Dominik Táskai

Dominik Táskai

Junior DevOps Engineer, LeanNet Ltd.
Domink Táskai is a Junior DevOps Engineer working at LeanNet, a member of the adesso Group. He is currently working on a project involving developing data pipelines and serverless data lakes in the cloud. In his free time he likes experiment with new technologies, especially with... Read More →

LinkerdDay 2023 DominikTaskai pdf
Tuesday April 18, 2023 12:15 - 12:20 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day, Linkerd in Practice / End User Stories

12:25 CEST

Closing Remarks, Program Committee Members - Liz Rice, Isovalent & Laurent Bernaille, Datadog
Join the conversation on Slack
Speakers
avatar for Liz Rice

Liz Rice

Chief Open Source Officer, Isovalent
Liz Rice is Chief Open Source Officer with eBPF specialists Isovalent, creators of the Cilium project. She was chair of the CNCF's Technical Oversight Committee 2019-2022, and Co-Chair of KubeCon + CloudNativeCon in 2018. She is also the author of O'Reilly books "Learning eBPF" and... Read More →
LB

Laurent Bernaille

Staff Engineer, Datadog
Laurent Bernaille worked several years as a consultant specializing in cloud, containers, and automation and helped organizations migrate to the public cloud and adopt containers. He is now Principal Engineer at Datadog and works closely with infrastructure teams, which are responsible... Read More →

Tuesday April 18, 2023 12:25 - 12:30 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  CiliumCon

12:25 CEST

Closing Remarks, Program Committee Member - Kasper Nissen, Lunar
Speakers
avatar for Kasper Nissen

Kasper Nissen

Lead Platform Architect, Lunar
Kasper is a Cloud Native Computing Foundation Ambassador, and co-founder of the Nordic meetup alliances, Cloud Native Nordics, where he also serves as Community Lead. He works as Lead Platform Architect at Lunar. Kasper wrote his master thesis, “KubeCloud - A Small Scale Cloud Computing... Read More →

Tuesday April 18, 2023 12:25 - 12:30 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Linkerd Day

12:30 CEST

Closing Remarks, Program Committee Member - Lucina Stricko, Vulk Coop
Speakers
avatar for Lucina Stricko

Lucina Stricko

Sr. Product Owner, Vulk Coop
Lucina Stricko is a co-owner at Vulk Co-operative (vulk.coop), maintainer of the Cloud Native Network Function (CNF) Certification Program (https://www.cncf.io/certification/cnf/) and the CNF Test Suite (https://github.com/cncf/cnf-testsuite), and contributor to the CNF Working Group. Lucina uses her Product Owner skills and empathy to combine features, priorities, and project plans to best serve the end user. When Lucina’s not creating GitHub issues, prioritizing backlogs or planning new features, she enjoys practicing... Read More →

[Shared] CNTelco Day EU 2023 Closing Remarks Lucina Stricko.pptx (1) pdf
Tuesday April 18, 2023 12:30 - 12:35 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Cloud Native Telco Day

13:29 CEST

Istio Day Hosted by CNCF - Half Day Event | SOLD OUT
Istio Day community event for the industry’s most popular service mesh, where you will find lessons learned from running Istio in production, hands-on experiences, and featuring maintainers from across the Istio ecosystem. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 

If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.

The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.

The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home! *Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.

Questions about registration? Visit our FAQ page.

Tuesday April 18, 2023 13:29 - 17:00 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day

13:29 CEST

Kubernetes Batch + HPC Day Hosted by CNCF - Half Day Event | SOLD OUT
An event for contributors and users working on making Kubernetes the best tool to build platforms for mathematical computations – advanced HPC, ML training, data and analytics. We will discuss the latest developments in core Kubernetes around these use cases and what’s happening in the ecosystem and where it should go. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 

If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.

The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6.

The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home!
*Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.


Questions about registration? Visit our FAQ page.


Tuesday April 18, 2023 13:29 - 17:00 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day

13:29 CEST

Kubernetes on Edge Day Hosted by CNCF - Half Day Event | SOLD OUT
Kubernetes on Edge Day brings together developers and adopters across the entire cloud native ecosystem to share their lessons learned in building, breaking, and bettering their edge infrastructure. Any developer interested in learning how to deploy Kubernetes and cloud native projects at the edge should attend.
Edge Computing will be 4x larger than cloud and will generate 75% of data worldwide by 2025. With hardware and software spread across hundreds or thousands of locations, the only feasible way to manage these distributed systems are the simple paradigms around observability, loosely coupled systems, declarative APIs, and robust automation, that have made cloud native technologies so successful in the cloud. Kubernetes is already becoming a key part of the edge ecosystem, driving integrations and operations. Join Kubernetes on the Edge Day at KubeCon + CloudNativeCon to get in on the ground floor and shape the future intersection of cloud native and edge computing. Please visit the event's webpage more details.

How to Register: This event is one of our KubeCon + CloudNativeCon Europe CNCF-hosted Co-located Events.
KubeCon + CloudNativeCon Europe 2023 has SOLD OUT for in-person tickets. We have enabled a waitlist for the KubeCon + CloudNativeCon ONLY pass type. Join the waitlist. 

If space opens, and you’re next on the list, you’ll receive an email and will have 72 hours to register. If you have not registered in that timeframe, we will provide your spot to the next person on the list. Everyone on the waitlist will receive notification regarding their status by Thursday, April 6.

The In-Person All-Access pass, which includes access to all CNCF-hosted co-located events, is no longer available and the waitlist has been closed for this pass type. If you're currently on the waitlist, you will receive an email notification regarding the status by Thursday, April 6..

The virtual pass is still available. With this pass you get all the fantastic content you’ve come to expect from KubeCon + CloudNativeCon but from the comfort of your own home! *Observability Day + CiliumCon will be available via livestream on the virtual platform, all other co-located events recordings will be available 24-72 hours post-event on the CNCF YouTube channel.

Questions about registration? Visit our FAQ page.

Tuesday April 18, 2023 13:29 - 17:00 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day

13:30 CEST

Welcome + Opening Remarks, Program Committee Members - Mitch Connors, Aviatrix & Faseela K, Ericsson Software Technolgoy
Speakers
avatar for Faseela K

Faseela K

Experienced Cloud-native Developer, Ericsson Software Technology
Faseela is a cloud-native developer at Ericsson Software Technology(EST) and is a steering committee member and maintainer at Istio. Prior to this, she has worked as a platform development engineer at Cisco and as a Tech Lead at Ericsson R&D, leading contributions to the OpenDaylight... Read More →
avatar for Mitch Connors

Mitch Connors

Sr Principal Software Engineer, Aviatrix
Mitch Connors is a Sr. Principal Software Engineer at Aviatrix, and serves on the Istio Technical Oversight Committee. Over the past 17 years, Mitch has worked at Google, F5 Networks, Amazon, an Industrial IoT startup, and State Farm Insurance, giving him a broad perspective on the... Read More →

IstioDay 2023 Opening Keynote pdf
Tuesday April 18, 2023 13:30 - 13:40 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day

13:30 CEST

Welcome + Opening Remarks, Program Committee Member - Ricardo Rocha, CERN
Speakers
avatar for Ricardo Rocha

Ricardo Rocha

Computing Engineer, CERN
Ricardo is a Computing Engineer at CERN IT focusing on containerized deployments, networking and more recently machine learning platforms. He has led for several years the internal effort to transition services and workloads to use cloud native technologies, as well as dissemination... Read More →

Tuesday April 18, 2023 13:30 - 13:40 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day

13:30 CEST

Welcome + Opening Remarks, Program Commitee Member - Steve Wong, VMware
Speakers
avatar for Steven Wong

Steven Wong

Staff Engineer, VMware
Steve Wong has been active in the Kubernetes community since 2015. He is a co chair of the CNCF Working Group. Steve is co-chair of the VMware User Group on the Kubernetes project. He has implemented industrial control systems for many factories, pipelines, and process control systems... Read More →

Kubernetes on Edge Day KubeCon EU 23 Opening Remarks PDF version pdf
Tuesday April 18, 2023 13:30 - 13:40 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day

13:35 CEST

Panel Discussion: The Present and Future of Open Source Observability - Alex Boten, Lightstep; Lili Cosic; Juraci Paixão Kröhling, Grafana Labs, Anthony Mirabella, AWS & Alolita Sharma, Intel
In this panel discussion, maintainers and end-users come together to discuss the recent advances in the open source observability ecosystem, and talk about the challenges and opportunities for the community in the future.


Speakers
avatar for Alolita Sharma

Alolita Sharma

Apple AIML Observability Engineering, Apple
Alolita Sharma is an OpenTelemetry Governance Committee member, CNCF Observability TAG co-chair and CNCF Governing Board member from Apple. She leads Apple’s AIML observability teams. She contributes to open source and open standards at OpenTelemetry, Unicode and W3C. She has served... Read More →
avatar for Lili Cosic

Lili Cosic

Lili is a software engineer but her main focus for the past 7 years has been infrastrucure engienering. Her monitoring focus started at Red Hat where she worked on the OpenShift monitoring team, where she worked on OpenShift monitoring product as well as mantained various open source... Read More →
avatar for Alex Boten

Alex Boten

Sr. Staff Software Engineer, ServiceNow Cloud Observability, formerly Lightstep
Alex Boten is a senior staff software engineer that has spent the last ten years helping organizations adapt to a cloud-native landscape by mashing keyboards. From building core network infrastructure to mobile client applications and everything in between, Alex has first-hand knowledge... Read More →
avatar for Anthony Mirabella

Anthony Mirabella

Senior SDE, AWS
Anthony is a Senior SDE at Amazon Web Services and leads the AWS Distribution for OpenTelemetry development team. He is a member of the OpenTelemetry Collector, Go client library, and Lambda layer teams and a contributor to many other elements of the OpenTelemetry project.
avatar for Juraci Paixao Kröhling

Juraci Paixao Kröhling

Principal Software Engineer, Grafana Labs
Juraci Paixão Kröhling is a software engineer at Grafana Labs, a maintainer of the OpenTelemetry project, a member of the project's governing board and CNCF Ambassador. He has presented about distributed tracing, OpenTelemetry, and other related topics at conferences like KubeCon... Read More →

Tuesday April 18, 2023 13:35 - 14:10 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day

13:45 CEST

ArgoCD as the Engine of a Brownfield Migration to Kubernetes - John Keates, Wehkamp
As a small team with a small budget you sometimes have to do big things with new technology you don't have much experience with and don't really know where to get started. In this case, it was a very small platform team with the task of getting everyone off of an old platform and on to Kubernetes while at the same time introducing Kubernetes itself, and CNCF products as a whole to developers within the company. While it can be very hard to find out where to get started if everything is new, deploying ArgoCD as a central point to combine existing and new knowledge was the key to a successful entry into a whole new ecosystem. In this presentation, John will take you on a journey involving the selection of a number of CNCF products alongside ArgoCD to get existing workflows and features from a legacy platform implemented using ArgoCD and other systems like Istio, Helm, KEDA and Prometheus. You will learn what a starting point to get deploying can look like, and how to find documentation, help and other resources to actually build a migration path to Kubernetes and ArgoCD. You'll get to know the mistakes that were made along the way (so you don't have to), and how even the smallest setup can enable developers that use your systems to self-serve deployments and inspect their services.
Speakers
avatar for John Keates

John Keates

Cloud Engineer, Wehkamp
John has experience thoughout the stack, from architecting cloud applications to helping business and technology teams communicate with eachother. He is passionate about open source and open communities where we can help and learn from eachother so our community and industry grows... Read More →

ArgoCD as the Engine of a Brownfield Migration to Kubernetes pdf
Tuesday April 18, 2023 13:45 - 14:10 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- End User Stories / Case Studies

13:45 CEST

Multi-Branch Pipeline with Argo Workflows and CI/CD Debugging. - Gosha Dozoretz, Rookout
Coming to the office has become deprecated, hasn’t it? A hallway conversion with developer colleagues about migration to kubernetes native CI/CD, led to a feature request they are already using - multi-branch pipeline. Argo Workflow does not support it natively. In this presentation, I’ll discuss my experience using Argo Workflows as CI/CD tool and my journey doing so. We will dive into a new approach of injecting non-frightening lean yaml configuration from a source repository to achieve a multi-branch pipeline using Argo Events and how it brings independence to the developers and helps them shift left. We also will dive into a modest open source contribution that made it possible as well as how I debugged Argo Events sensor live in kubernetes to find a bug.
Speakers
avatar for Gosha Dozoretz

Gosha Dozoretz

Rookout
Sr. DevOps engineer at Rookout.

ArgoCon 2023 3 pdf
Tuesday April 18, 2023 13:45 - 14:10 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- New and Innovative Uses of Argo

13:45 CEST

Scratching an Itch: Running Policy in Hard to Reach Places with WASM & OPA - Charlie, Styra
It’s 2023 and we’re at the point where we can run Wasm almost anywhere. Crucially, Wasm can be run in some places where others can’t follow. This makes Wasm an important tool if we want to standardize logic. We want to standardize the enforcement of business rules across the stack - from servers to smart phones. What if we could use the same language everywhere, new logic could be pushed out from a central location and we could deliver feedback to users immediately? We can achieve this using Wasm and Rego - the policy language of The Open Policy Agent project. Wasm is at home in many different environments, in this demo, we will show a proof of concept where we compile business rules in Rego into Wasm modules suitable for distribution to every policy decision point in our stack.
Speakers
avatar for Charlie Egan

Charlie Egan

Developer Advocate, Styra
Charlie has been working with in the Cloud Native space since 2018. He currently works as a Developer Advocate at Styra and on the OPA project. Charlie is interested in authentication and authorization across the stack. You can find him in the OPA Community Slack.

slides pdf
Tuesday April 18, 2023 13:45 - 14:10 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm Runtimes

13:45 CEST

Is Istio Ambient Mesh Secure? - Christian Posta, Solo.io & John Howard, Google
Service-to-service security is the number one reason why platform engineers leverage a service mesh. When we worked on the initial implementations of Istio Ambient Mesh, a sidecarless data plane for Istio, security was a very top concern: we could not regress or make the mesh less secure from what we already get with a sidecar architecture. When we introduced Istio Ambient mesh back in the fall of 2022, we believe we made the right architecture decisions to preserve the powerful zero-trust properties of an Istio service mesh. In this talk we dig into the security posture of Istio Ambient Mesh sidecarless data plane and understand how we do mTLS, workload identity, and establish good security boundaries between an infrastructure and application world.
Speakers
avatar for Christian Posta

Christian Posta

VP, Global Field CTO, Solo.io
Christian Posta (@christianposta) is VP, Global Field CTO at Solo.io. He is the author of Istio in Action as well as many other books on cloud-native architecture and is well known in the cloud-native community for being a speaker, blogger (https://blog.christianposta.com) and contributor... Read More →
avatar for John Howard

John Howard

Staff Software Engineer, Google
John is a Software Engineer at Google working on Istio, and member of the Istio TOC and Steering committee.

IstioDay 2023 Ambient Mesh Security.pptx pdf
Tuesday April 18, 2023 13:45 - 14:10 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, New Features

13:45 CEST

Sharing is Caring – Fractional GPU Allocations With MetaGPU Device Plugin - Dmitry Kartsev, cnvrg.io
We all know that once we have a GPU device in our Kubernetes cluster, we strive to utilize it as much as we can. However, K8s doesn't allow us to share a single GPU, which in many cases can lead to underutilized GPU and a waste of resources, which becomes crucial when talking about AI/ML workloads.  Some of the latest GPU generations provide a sort of sharing capabilities (for example Nvidia MiG), however the older generations do not have such an option. In addition, enabling and making re-sharing might become a less trivial task in production environments for MLOps/Data engineers.  To address the above problems, my team and I released an open source project which we call MetaGPU. The MetaGPU project includes Kubernetes device plugin, metrics exporter and CLI tools which together allow you to dynamically configure GPU sharing with zero downtime, as well as the ability to share a single GPU device to different amounts of shares, enforce GPU memory usage and more.  In this session I will share my experience, tips, challenges and lessons learned from developing and operating a production grade fractional GPU on Kubernetes cluster.
Speakers
avatar for Dmitry Kartsev

Dmitry Kartsev

Sr. Software Engineer, Cloud Native Tech Lead, cnvrg.io

kube co located event hpcday (1) pdf
Tuesday April 18, 2023 13:45 - 14:10 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Solutions and Tools Built to Manage and Efficiently Run Batch Workloads on Kubernetes

13:45 CEST

Lessons Learned from Building a Kubernetes Offering for Small Edge Devices - Daniel Fröhlich, Red Hat
There is a rising demand to use cloud technologies like container orchestration at the far edge. Far edge usually comes with tight resource constraints like very limited compute power (2 cores, 2GB RAM), limited energy (passive cooled on solar energy), only intermitted any slow network connectivity (e.g. mobile/sat networks). MicroShift.io is a Kubernetes distribution targeting these types of environments. In this talk, we share lessons learned on the challenges of designing MicroShift. Topics we will address: - Selecting CNI and CSI implementations - How to embed container images into the device to avoid pulling from remote - How to handle updates/rollback without bricking a device - Fine details on Conformance testing
Speakers
avatar for Daniel Fröhlich

Daniel Fröhlich

Principal Product Manager, Red Hat
Daniel works as a Principal Product Manager at Red Hat. He considers himself a catalyst to bring together the necessary resources (people, technology, methods) to make projects and products a success. Daniel has more than 25 years of experience in IT. In the past years, Daniel has... Read More →

202304 KubeCon Europe Edge Day Building a k8s offering for small edge devices dfroehli pdf
Tuesday April 18, 2023 13:45 - 14:10 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day, Kubernetes with Low Resource Hardware

14:15 CEST

Istio 2023 RoadMap Update - Lin Sun, Solo.io & Louis Ryan
A lot of exciting stuff is happening with Istio, from sailing to CNCF as an incubation project to launching Istio ambient mesh. Join us in this Istio roadmap update session to learn more about the future direction of Istio and how Istio plans to improve its usability, debuggability and scalabilities and help you to navigate from sidecar to sidecar-less to GAMMA, presented by Lin and Louis, who both are Istio Technical Oversight Committee members for the past 6+ years.
Speakers
avatar for Lin Sun

Lin Sun

Head of Open-Source, solo.io
Lin is the Head of Open Source at Solo.io, also serving as a CNCF TOC member and ambassador. She has been actively involved with the Istio service mesh since its inception in 2017, holding positions on both the Istio Steering Committee and Technical Oversight Committee. Prior to her... Read More →
avatar for Louis Ryan

Istio Roadmap Update pdf
Tuesday April 18, 2023 14:15 - 14:30 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, Project Update

14:15 CEST

How to Preview and Diff Your Argo CD Deployments - Kostis Kapelonis, Codefresh
Any major Git platform has built-in support for showing diffs between the proposed change and the current code when a Pull Request is created. In theory, the presented diff should be enough for a human to understand what the changes contain and how they will affect the target environment. In practice however several teams have adopted a templating tool (such as Kustomize or Helm) that is responsible for rendering the actual Kubernetes manifests for a target cluster. This means that when you need to review a Pull Request for Kubernetes manifests you don't have the full picture of what will be changed and how the pull request will affect Argo CD. In this talk we will see 4 additional ways of diffing Argo CD manifests and how you can improve the Pull Request process with extra context on what is being changed.
Speakers
avatar for Kostis Kapelonis

Kostis Kapelonis

Codefresh
Kostis is a software engineer/technical-writer dual class character. He lives and breathes automation, good testing practices and stress-free deployments.

preview argocd changes.pptx pdf
Tuesday April 18, 2023 14:15 - 14:40 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- GitOps and MLOps Deployment Best Practices

14:15 CEST

Scaling Gene Therapy Research with Argo Workflows and Hera - Flaviu Vadan, Dyno Therapeutics
The use of cloud native tools such as Kubernetes and Argo Workflows is becoming increasingly popular across various domains, including gene therapy. These tools enable efficient and scalable management of complex computing tasks, allowing researchers and engineers to focus on their core product rather than infrastructure management. This has led to improved productivity, increased innovation, and increased operational efficiency. At Dyno Therapeutics, we use our proprietary engine called Dynet to generate and consume massive amounts of data to design and test vectors used for the delivery of gene therapy. Dyno leverages Kubernetes, Argo Workflows, and Hera to define, orchestrate, and execute complex workflows used for vector design, biological data processing, and large scale data ingestion. This talk will showcase novel applications of Argo Workflows and Kubernetes from a field as novel as gene therapy, and illustrate how tech products, such as Hera, from the Cloud Native Computing Foundation ecosystem help scale gene therapy research and engineering efforts.
Speakers
avatar for Flaviu Vadan

Flaviu Vadan

Staff Engineer, Dyno Therapeutics
Flaviu is a Staff Software Engineer at Dyno Therapeutics. At Dyno, Flaviu focuses on data engineering, infrastructure, and scientific project management. Flaviu is also the creator and a maintainer of Hera, a Python SDK that makes interacting with Argo easy and accessible.

scaling gene therapy research with argo workflows and hera pdf
Tuesday April 18, 2023 14:15 - 14:40 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track

14:15 CEST

Future of Component Tooling - Peter Huene & Guy Bedford, Fastly
As the Component Model becomes more concrete and previews of Component-based WASI get closer, users will need the ability to create components from a variety of languages and compose them together. Guy Bedford and Peter Huene (cargo-component lead) will give a demo of component building, composition, and packaging in Rust and then talk about how the techniques and tools used can be applied to create mature component tooling for other languages.
Speakers
avatar for Guy Bedford

Guy Bedford

Principal Software Engineer, Web Assembly, Fastly
avatar for Peter Huene

Peter Huene

Staff Software Engineer, Fastly
Peter Huene is a Software Engineer at Fastly, where WebAssembly is used to run customer applications at the “Edge”. He is a Bytecode Alliance Recognized Contributor and is a maintainer of wasm-tools, Wasmtime, and cargo-component. Peter is also a member of the Bytecode Alliance... Read More →

Tuesday April 18, 2023 14:15 - 14:40 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Technologies to Support Wasm in Cloud Native

14:15 CEST

Building a Batch System for the Cloud with Kueue - Aldo Culquicondor, Google & Kante Yin, DaoCloud
Batch, HPC and AI/ML clusters that serve multiple teams and researchers generally face the challenge of resource constraints. Cluster administrators want to control usage and maximize the utilization of resources. Kueue is a could-native job scheduler that works in combination with the default Kubernetes scheduler, the job controller and the cluster-autoscaler to provide a full batch system. Kueue implements job queueing, deciding when jobs should wait and when they should start, based on quotas and a hierarchy for sharing resources fairly among teams. Kueue works well in the cloud, where resources are heterogeneous, fungible and can be scaled up and down to save cost. In this talk, you will learn the key concepts of Kueue and how you can model your teams and resources to make your Kubernetes cluster a batch system.
Speakers
avatar for Aldo Culquicondor

Aldo Culquicondor

Sr. Software Engineer, Google
Aldo is a Senior Software Engineer at Google. He works on Kubernetes and Google Kubernetes Engine, where he contributes to kube-scheduler, the Job API and other features to support batch, AI/ML and HPC workloads. He is currently a TL at SIG Scheduling and an Organizer of the WG Batch... Read More →
avatar for Kante Yin

Kante Yin

Senior Software Engineer, DaoCloud
Kante is a senior software engineer and an open source enthusiast. He's currently working at the Kubernetes AI platform team at DaoCloud, based in Shanghai. He also works on upstream Kubernetes as SIG-Scheduling Maintainer and several sub-projects maintainers.

Kueue HPC+Batch Day EU 2023 pdf
Tuesday April 18, 2023 14:15 - 14:40 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Solutions and Tools Built to Manage and Efficiently Run Batch Workloads on Kubernetes

14:15 CEST

Sharpen That Edge! How a Service Mesh Enhances EdgeComputeOps - Marino Wijay & Kevin Dorosh, Solo.io
Sometimes you go all in on the cloud; sometimes you need to sharpen that Edge a bit. When pursuing Edge Computing, the largest considerations for adoption are: - Ease of deployment - Zero-trust security posture - Resource allocation and consumption - Telemetry and Observability - Latency and application response times - Resilience and reliability Large enterprises in heavily regulated industries or the public sector must adopt practices like a zero-trust security posture both inside and at the edge of its application networks. They must simultaneously be able to determine application performance through telemetry, and mitigate issues. They need to ensure the resilience & reliability of the edge in the face of catastrophe, like a cluster or region failure. What's the right approach to meeting these conditions? Enter Ambient Mesh, the perfect vehicle for meeting these challenges! This talk dives into how Ambient Mesh offers a revolutionary data-plane architecture for Edge Computing. Ambient Mesh can configure both perimeter and internal proxies to deploy an enhanced security posture while slashing operational complexity and enabling incremental mesh adoption, all while reducing cost and computational overhead at the Edge.
Speakers
avatar for Kevin Dorosh

Kevin Dorosh

Tech Lead / Architect, Solo.io
Kevin is currently an architect at Solo.io. Formerly a big data infra admin at HubSpot, Kevin is passionate about the infrastructure space and giving to the community, with contributions to many open source projects such as Envoy, Istio, Flagger, and Gloo. Kevin enjoys working with... Read More →
avatar for Marino Wijay

Marino Wijay

Developer Advocate, Solo.io
Marino is a Developer & Platform Advocate at Solo.io, EddieHub Ambassador, and KubeHuddle Organizer. He is passionate about technology and modern distributed systems that involve heavy networking. He will always fall back to the patterns of Networking and the ways of the OSI. Community... Read More →

Edge Day @ CNCF 2023 EdgeComputeOps 2023 pdf
Tuesday April 18, 2023 14:15 - 14:40 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day, Kubernetes with Low Resource Hardware

14:15 CEST

Unified Observability at Scale: How We Accelerated Issue Resolution for Modern Fin-Techs - Ekansh Gupta, Zeta
Effective observability is a critical component for ensuring the performance and reliability of our systems as stakeholders. Prometheus, Grafana, Elastic Search, and Jaeger are some of the tools available to help improve observability. However, as the scale of applications and the number of teams grows, so does the complexity of organizational architecture. As a result, it becomes increasingly difficult to identify the source of problems quickly, determine who to contact, track endpoint changes, and access relevant dashboards and documentation. This results in a poor developer experience and a longer resolution time, which as a fin-tech enabler, we can not afford. We created a functional yet fully scalable unified observability platform to address this issue. With this approach, we can now resolve most issues within an average of 10-15 minutes, compared to the previous resolution time of 60-90 minutes. In this talk we are going to share our learnings while developing this same. The following topics will be covered: The need for a unified solution and when it is required A practical approach to designing a unified observability solution An overview of cloud-native tools that can be utilized to implement the design A demo of the solution in action A Q&A session.
Speakers
avatar for Ekansh Gupta

Ekansh Gupta

Software Engineer, Zeta
Ekansh is a Software Development Engineer with Zeta Suite, with active involvement in various open-source and cloud native communities for upwards two years now. He was previously an SDE Intern at SteamLabs. He is also a speaker for a couple of talks at PyCon, KubeCon and MozFests... Read More →

[WIP Draft 1.0]KubeConEU'23 Unified Observability At Scale pptx
Tuesday April 18, 2023 14:15 - 14:40 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Uses of Open Source Tooling to Achieve Observability

14:35 CEST

Running Istio in Production as a Small Team of Newbies - John Keates, Wehkamp
While we were planning to transplant services from Mesos and a homegrown traffic management setup over to Kubernetes, we found out we couldn't easily replicate the features we relied on in the old system without also getting an entire service mesh, proxy extension method and self-service traffic configuration method in place. A number of 'getting started' constructions rely on different things like the nginx ingress controller or a single type of traffic piping into a single application that happens to have a handful of services hosting a couple of paths. We embarked on a journey to get Istio working for us, making a bunch of mistakes and learning from them, to end up with a very performant and configurable system enabling a brownfield migration without having to rewrite over 300 microservices. In this presentation, John will take you along on this journey and go beyond the examples that would fit inside documentation and take into consideration the limits and requirements of older systems to make selection of traffic management methods a little easier. In an end-to-end showcase you will find out how even with very small teams and little knowledge you can leverage Istio to make your life, and the life of developers that rely on your platform easier.
Speakers
avatar for John Keates

John Keates

Cloud Engineer, Wehkamp
John has experience thoughout the stack, from architecting cloud applications to helping business and technology teams communicate with eachother. He is passionate about open source and open communities where we can help and learn from eachother so our community and industry grows... Read More →

Running Istio in Production as a Small Team of Newbies pdf
Tuesday April 18, 2023 14:35 - 15:00 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, Case Studies

14:45 CEST

Sponsored Keynote: Sharpen Your Edge Three Ways With Kubernetes - Marilyn Basanta, VMware
Your business wants to make the most of edge computing, and certainly Kubernetes is the right platform for modern edge native applications; that much is easy. But how to get from technology to edge success is less clear.  Join us as we review three key results that should guide your thinking and approach. We’ll break each of them down and uncover a pragmatic way to achieve your edge goals.
Speakers
avatar for Marilyn Basanta

Marilyn Basanta

Senior Director, Product Management, Edge Computing, VMware
Marilyn Basanta is the Senior Director of Product Management for VMware's Edge Compute product line. Formerly a software engineer for IBM, she came to VMware as a solutions architect and built out E2E vertical solutions. She moved into product management and launched VMware TestDrive... Read More →

Tuesday April 18, 2023 14:45 - 14:50 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day

14:45 CEST

Making the Most Out of Your Hardware Accelerators in a Kubernetes Cluster - Rishit Dagli, University of Toronto & Shivay Lamba
Working in the field of MLOps, making the most out of your hardware accelerators: GPUs, and TPUs, and optimizing their use is a very important aspect. Kubeflow, a popular open-source project makes working with MLOps easier but we have observed in our experiments that there are very few elements to handle using multiple GPUs and TPUs with Kubeflow. In this talk we share experiences and tips on how you can make use of the open-source projects TensorFlow and Kubernetes to accelerate your machine learning workloads. In this talk, we particularly show how each of the following components in using accelerators efficiently works in such a setting: managing computer instances differently than your hardware accelerators, understanding which Kubernetes Pods should be run on a GPU/ TPU and which ones on traditional compute, scaling, sharing hardware accelerators (time-sharing) and the link between a compute and hardware accelerator. We show the audience how they could optimize all these aspects and efficiently use hardware accelerators in their Kubernetes clusters.
Speakers
avatar for Shivay Lamba

Shivay Lamba

Developer Relations Engineer, WasmEdge Ambassador
Shivay Lamba is a software developer specializing in DevOps, Machine Learning and Full Stack Development. He is an Open Source Enthusiast and has been part of various programs like Google Code In and Google Summer of Code as a Mentor and is currently a MLH Fellow. He has also worked... Read More →
avatar for Rishit Dagli

Rishit Dagli

Student, Research Scientist, University of Toronto, Civo
I am a CS Freshman at University of Toronto. I love researching and working with Machine Learning, especially Computer Vision  I also maintain/contribute extensively to popular open-source projects like TensorFlow, PyTorch, Kubernetes, Kubeflow among others. I also love building... Read More →

Tuesday April 18, 2023 14:45 - 15:05 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Solutions and Tools Built to Manage and Efficiently Run Batch Workloads on Kubernetes

14:45 CEST

NextGen Argo: Elevating Continuous Delivery with Easy to Use Plugins - Michael Crenshaw & Sai Sindhu Chakradari, Intuit
Does Argo CD do 95% of what you need it to do, but you need help with the other 5%? Maybe you need to inject secrets in your manifests or do some post-processing. Or maybe you’re just not sure Argo CD can fit into your existing environment of custom tooling. Argo CD plugins are a great way to solve these edge cases, and they’re getting a huge improvement in 2.7! Come see how brand-new full UI support can give your Argo CD plugin users a first-class experience. If you use, contribute to, or maintain an Argo CD plugin, this session will show you what the future will look like for these tools. If you are considering using Argo CD plugins, you’ll learn how they are configured and the kind of problems they can solve.
Speakers
avatar for Michael Crenshaw

Michael Crenshaw

Intuit
Michael Crenshaw is a Staff Software Engineer on the Argo CD team at Intuit. He is the most active contributor to the Argo project, focusing on security and performance improvements in Argo CD. He helps maintain Intuit’s ~50 Argo CD instances and ~20k Argo CD applications.
SS

Sai Sindhu Chakradari

Software Engineer, Intuit
Sai Sindhu Chakradari has worked in technology for five years with roles ranging from telecomm to fintech. Her early work was in backend engineering, mostly with Java. More recently, she's taken on frontend work in React for Argo CD.

Tuesday April 18, 2023 14:45 - 15:10 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- Extending Argo with Plugins and Extensions

14:45 CEST

Shipping Argo Workflows in Packages - Junaid Rahim & Nitin Sutrave, Atlan
The team at Atlan is building a collaborative workspace for modern data teams that offers functionality like metadata cataloguing, governance and lineage amongst others. Ingesting metadata from various data sources using ETL pipelines is one of the core functionalities of Atlan's platform. Argo workflows is the leading open-source tool to run DAG-like workflows on k8s. Workloads in argo are declared as workflow templates, however, there is no tooling currently present in the ecosystem to use them as reusable modules. This is the problem that Atlan's engineers faced when building data pipelines on argo workflows. In this talk, Junaid and Nitin will dive deep into how they've used open-source tools from the JS ecosystem to build a package manager for argo workflows and its use cases in a production setup that runs ~2.5k workflows every week and processes ~32M metadata assets for hundreds of customers. You will learn how the team at Atlan built its marketplace of composable and reusable packages on top of argo workflows using Verdaccio, an open-source private NPM registry. You will learn about argopm, the package manager to manage workflow templates as JS packages which also supports adding configmaps, secrets and observability components like grafana dashboards into the package.
Speakers
avatar for Junaid Rahim

Junaid Rahim

Software Engineer, Atlan
Junaid Rahim is a Software Engineer at Atlan and is currently working on the Platform Orchestration team. He works on designing and building the platform components for BI integrations at Atlan. Junaid’s interests include Rust, Python, Argo Workflows, Kubernetes, Linux and open-source... Read More →
avatar for Nitin Sutrave

Nitin Sutrave

Platform Architect, Atlan
Nitin is a seasoned systems engineer who has worked in multiple startup ecosystems. He has a deep interest in working with distributed systems and has helped scale systems dealing with millions of users. In his words, he loves solving problems that don't let him sleep peacefully... Read More →


Shipping Argo Workflows in Packages pdf
Tuesday April 18, 2023 14:45 - 15:10 CEST
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
  ArgoCon, Workflows Track- Integrations with other Open-Source Projects

14:45 CEST

Wasm + Kubernetes: Beyond Containers - Sean Isom, Adobe & Colin Murphy, Adobe
WebAssembly represents the future of portable computing, providing an efficient and secure runtime for many languages. In the last year there has been an explosion of growth in Wasm on the backend, from managed platforms, tooling, and further standardization work around WASI. As we look to future cloud-native architectures, often the big questions is: "When is WebAssembly the right choice?" Particularly when looking at existing enterprise architectures and use-cases at organizations large investments in Kubernetes infrastructure, when does the large architectural jump make sense? Can we lessen the overhead by running Wasm workloads inside Kubernetes, allowing us to efficiently utilize existing cluster resources and operations? In this lightning talk, Sean will (briefly) describe some of the ways in which Adobe utilizes Wasm on the backend inside Kubernetes, and what we've found works well (and where the big gaps are). Additionally, learn a little about our architecture for running wasmCloud within our existing K8s clusters and the steps we are taking towards Wasm multi-tenancy.
Speakers
CM
avatar for Sean Isom

Sean Isom

Sr. Engineering Manager, Adobe
Sean is a Sr. Engineering Manager at Adobe working on optimization and efficiency for the Ethos project, Adobe's internal core container compute platform based on Kubernetes. He comes from a background in C++ and graphics and stumbled into cloud development from an experiment in using... Read More →

Tuesday April 18, 2023 14:45 - 15:10 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm and Kubernetes

14:45 CEST

Observability at Scale: How Open Systems Collects Telemetry from Over 10'000 Edge Devices Worldwide - Joel Verezhak, Open Systems AG
As a SASE provider, our mission is to manage network operations for our customers, providing 24/7 support and expert insight through the Mission Control portal. To achieve this, it is vital that we are able to observe our fleet of over 10'000 edge devices around the globe in real-time, and be alerted as soon as problems arise. This is a challenging prospect from the outset, without considering the additional hurdles presented by remote, unstable connections, and international compliance. In this talk, we will share how we started our Observability journey using Thanos and Loki to collect over 100 million metrics and 5 TiB of logs per day (and counting!) from around the world. We will highlight the unique challenges we faced and how we overcame them, as well as the benefits of using Thanos and Loki in this context. This presentation will be of interest to anyone looking to push the limits of cloud-native technologies, or who may be interested in exploring the potential of Thanos and Loki for monitoring large distributed systems. Attendees will come away with new insights into the deployment of these technologies. and the importance of Observability in achieving uninterrupted service for customers.
Speakers
avatar for Joel Verezhak

Joel Verezhak

Senior Systems Engineer, Open Systems AG
Joel Verezhak is a Systems Engineer in the Observability team at Open Systems, responsible for ensuring that telemetry data from over 10'000 edge devices across the globe continues to flow, and empowering teams to use that data effectively.

kubecon 2023 jve pdf pdf
Tuesday April 18, 2023 14:45 - 15:10 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, How to Implement Advanced Deployments

14:55 CEST

Sponsored Keynote: Redefining the Architecture for Edge-Native Apps - Saad Malik, Spectro Cloud & Arun Gupta, Intel
From AI-enabled medical software at hospitals, smart shopping and hospitality, to drones maintaining power grids or inspecting crops, a new generation of modern, data-hungry edge applications are now the norm.

But the edge does not work like the data center or the cloud, where conventional security and control capabilities across hardware and software solutions might be enough.

Today’s edge requires purpose-built solutions built on zero-trust principles, from the silicon to the app. In this keynote, we will be unveiling a new solution architecture for organizations to efficiently deploy, provision, secure and manage edge applications at scale.

Speakers
avatar for Arun Gupta

Arun Gupta

Vice President and General Manager for Open Ecosystem, Intel
Arun Gupta is vice president and general manager of Open Ecosystem Initiatives at Intel Corporation. He is an open source strategist, advocate, and practitioner for over two decades. He has taken companies such as Apple, Amazon, and Sun Microsystems through systemic changes to embrace... Read More →
avatar for Saad Malik

Saad Malik

CTO & Co-Founder, Spectro Cloud
Saad is passionate about building products in the areas of cloud, virtualization, containers, and distributed systems. In his fifteen years of experience, Saad has shipped multiple new products in enterprise, service provider, and consumer technologies. He is a hardcore Trekkie and... Read More →

Tuesday April 18, 2023 14:55 - 15:00 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day

15:00 CEST

Coffee Break ☕ + Networking

Head over to Hall 2 to connect with attendees from ArgoCon, Cloud Native Wasm Day, and Observability Day.

Visit Hall 3 to meet with attendees CilliumCon, Cloud Native Telco Day, Istio Day, Kubernetes Batch + HPC Day, Kubernetes on Edge Day, and Linkerd Day.
Tuesday April 18, 2023 15:00 - 15:20 CEST
Halls 2 + 3 + 6 + 7
  Breaks

15:20 CEST

Cloud Native Deployments in Air Gapped Environments - Thomas Fricke, Freelancer
Deploying applications in critical infrastructure is challenging. On the one hand the new generations of energy transmission grids, health care, ambulance, police, firefighter communication and other government services need the cloud native applications. On the other hand, for security and safety, the threat model including attacks by foreign governments forbids the use of public clouds and enforces deployments on isolated clusters. Every package in every image, every helm chart must be checked. With ArgoCD, Harbor, Trivy and a light weight Git solution based on Gitea the speaker has proposed a solution where Security Configuration Management (SCM) can be established within a few steps and security in depth can be enforced on third party suppliers. As all components can check signatures, supply chain security can be established from the package level to deployment. The solution is used in several clusters aiming for the highest level of security. The technical solution is easy, the talk also describes the processes implement monitoring and alerting if new CVE in existing applications occur, which must not be stopped. https://github.com/thomasfricke/notebooks-management-cluster
Speakers
avatar for Thomas Fricke

Thomas Fricke

Cloud Security Architect, Freelancer
Thomas Fricke has been working with containers and Kubernetes for 9 years, with Linux and networks for 30 and with computers for 40. His focus is on security in KRITIS environments (energy, health care) and the all the transformations that are necessary to turn these environments... Read More →

Cloud Native Deployments in Air Gapped Environments pdf
Tuesday April 18, 2023 15:20 - 15:45 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- Security Practice and Enforcement

15:20 CEST

Revolutionizing Continuous Deployment: How Databricks Integrates ArgoRollouts to Achieve Zero-Downtime Releases - Rohit Agrawal & Gavin Kliger, Databricks, Inc.
The Release Intelligence team at Databricks leverages ArgoRollouts as a core component in their continuous deployment process, integrating it with other popular open-source projects such as Jenkins, Spinnaker, and Prometheus. This integration allows us to deploy hundreds of services across different clouds and regions multiple times daily with ease and efficiency. ArgoRollouts seamlessly integrates with other open-source projects to provide great flexibility allowing our teams to leverage their existing knowledge and tools rather than requiring them to learn entirely new technology. This talk covers our journey and focuses on how we use some of the very advanced features of ArgoRollouts, such as canarying, dry-runs, and different release strategies tailored for use cases, to minimize the blast radius and ensure a safe, zero-downtime release. The approach we took with ArgoRollouts allowed our developers to focus on their core competencies and reduced the complexity of the release process. By hiding all the underlying complexity, the team can achieve a streamlined and automated deployment process that meets the demands of a fast-paced and ever-evolving industry.
Speakers
avatar for Rohit Agrawal

Rohit Agrawal

Staff Software Engineer, Databricks, Inc.
Rohit is a Software Developer at Databricks within the Traffic Platform Team, specializing in scaling ingress and egress networking while leading the development of the company's in-house service mesh. His ongoing projects involve optimizing Envoy as an edge proxy, and tailoring the... Read More →
avatar for Gavin Kliger

Gavin Kliger

Software Engineer, Databricks, Inc.
Gavin is a Software Developer at Databricks, currently working on Continuous Deployment with a focus on automating the health-mediated rollout and rollback of large scale, multi-cloud deployments. Gavin graduated from Berkeley EECS specializing in Software Engineer and is interested... Read More →

[Latest] Revolutionizing Continuous Deployment How Databricks Integrates ArgoRollouts To Achieve Zero Downtime Releases pptx
Tuesday April 18, 2023 15:20 - 15:45 CEST
Elicium Building | Elicium Ballroom 2 [Argo Rollouts]
  ArgoCon, Rollouts Track- Infrastructure Automation

15:20 CEST

Calling OPA from eBPF, Through WASM, in the Kernel? You've Gone Mad! - Nandor Kracser, Cisco
eBPF got a lot of attention in recent years, and cloud-native technologies have adopted it to their toolsets. But, there is another new kid on the block, WASM, which got out from the browser and is now spread into blockchains, the gaming industry, and also into cloud-native territories. eBPF runs in Linux kernel space, and there were already some experiments to run WASM there as well, but why not use both there to help each other? eBPF is a trusted and sandboxed environment, WASM promises the same (we will see!), what can go wrong? In this presentation, Nandor will show how they ported an existing WASM virtual machine into kernel space, found out they can run OPA inside it, then exposed the whole thing to call it from eBPF.
Speakers
avatar for Nandor Kracser

Nandor Kracser

Engineering Technical Lead, Cisco
Nandor is senior software engineer from Cisco, interested in OS kernels, VMs, networking software, and common infrastructure. Coming previously from Banzai Cloud, he had adopted and created a lot of cloud native tools and technology in the past, using Kubernetes from day 0.

WasmDay 2023 eBPF Wasm pdf
Tuesday April 18, 2023 15:20 - 15:45 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm Runtimes

15:20 CEST

Red Light, Green Light: Traffic Security in the Service Mesh with Istio - Alexa Nicole Griffith & Zhenni Fu, Bloomberg
At many companies, it is vital that the traffic flowing in and out of an application is handled securely at the edge of a service mesh. Istio’s ingress and egress gateways allow you to apply routing rules and authorization policies to access internal and external services in a controlled way. It is a common security requirement to only expose particular services or restrict services to a set of approved outbound hosts, requiring a strict Level 7 policy to lock down the traffic. Managing such a service mesh infrastructure is challenging and requires additional solutions to secure the network. In this talk, we will describe how Bloomberg, a financial information company with large amounts of highly-privileged data, uses Istio’s ingress and egress gateways – integrated with SPIFFE/SPIRE – to secure a wide range of services, from highly-critical applications to ML workloads like Jupyter notebooks and inference services in a heterogeneous environment. Fun drawings will be included.
Speakers
avatar for Alexa Nicole Griffith

Alexa Nicole Griffith

Senior Software Engineer, Bloomberg LP
Alexa Griffith is a Senior Software Engineer on Bloomberg’s Cloud Native Compute Services organization. She works on building an inference platform for ML workflows and the open source project KServe. She enjoys solving engineering challenges at scale and writing code in Go. She... Read More →
avatar for Zhenni Fu

Zhenni Fu

Senior Software Engineer, Bloomberg
Zhenni Fu is a Senior Software Engineer in Bloomberg's Cloud Native Compute Services organization. She has been with Bloomberg for four years, where she works on building an internal platform where Bloomberg engineers deploy their services and applications to cloud-native Kubernetes... Read More →

IstioDay Red Light Green Light Traffic Security Griffith Fu Tuesday pptx
Golden Rules of Resource Isolation In Istio ZhonghuXu pptx
Tuesday April 18, 2023 15:20 - 15:45 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, Case Studies

15:20 CEST

Kubernetes Batch Processing at Scale - A Scheduling Perspective - Lim Haw Jia & Fan Deliang, Bytedance
Batch processing on Kubernetes comes with many challenges - from flaky pod semantics to unique scheduling constraints to scalability concerns. Despite these challenges, hundreds of thousands of batch jobs are run on our Kuberenetes clusters daily in ByteDance. In this talk, we will dive into why we adopted Kubernetes for batch processing, its benefits, and how we were able to do so on a large scale. In particular, we will be sharing the experience of writing our own custom Kubernetes scheduler with up to 20000 nodes percluster - one designed specifically to support the large number of batch processing workloads that we have. This scheduler has since become an integral part of our Kubernetes batch processing system. We will explore interesting concepts such as Gang Scheduling and DRF, how they relate to batch processing, and how they can be achieved in Kubernetes. We will also show how parallelizing computationally intensive parts of the scheduling framework helped us to achieve better scalability. Lastly, we will also demonstrate how we managed to colocate both our batch processing workloads and microservices, achieving better resource utilization and cost savings.
Speakers
avatar for Lim Haw Jia

Lim Haw Jia

Software Engineer, Bytedance
Haw Jia works in the orchestration and scheduling team at Bytedance, where he is responsible for adopting and developing various cloud-native technologies. He started his cloud-native journey back in his college internship with an e-commerce startup and has not looked back since... Read More →
FD

Fan Deliang

Software Engineer, Bytedance
Deliang is a software engineer with nearly a decade of experience in infrastructure engineering. He has deep knowledge and practical experience with cloud-native technologies such as Kubernetes and OpenStack. He has built public and private cloud infrastructure for his organizations... Read More →

Kubernetes batch scheduling at scale pdf
Tuesday April 18, 2023 15:20 - 15:45 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Best Practices and Challenges Running Batch Workloads on Kubernetes

15:20 CEST

Can You Keep a Secret? Securely Interacting with Edge Devices in Kubernetes - Adithya Jayachandran & Yu Jin Kim, Microsoft
Kubernetes on the edge is becoming increasingly popular for orchestrating workloads closer to where the data is located. However, the edge usually consists of leaf devices that are too small, too old, or too locked down to run Kubernetes on their own (i.e. IP cameras, thermometers, humidity sensors), and they may operate with intermittent availabilities and downtime. On top of that, security becomes a major challenge at the edge. Each of these sensors can have different authentication mechanisms and have unique requirements for handling credentials. So how can these leaf devices be dynamically bridged to a cluster? And most importantly, how does one determine whether newly discovered devices are real or malicious, especially at scale? In this talk, Adithya and Yu Jin will go over how they enhanced Akri (a CNCF sandbox project for exposing leaf devices as resources in a cluster) to integrate with Kubernetes secrets and secrets stores allowing devices to uniquely identify themselves in a Kubernetes cluster. They will show how even newcomers to Kubernetes can quickly connect their edge devices in a secure manner and restrict access on resources based on a customizable criteria.
Speakers
AJ

Adithya Jayachandran

Software Engineer, Microsoft
Adithya is a Software Engineer at Microsoft working on running containers at the edge. He is an active maintainer for Akri, a CNCF sandbox project to connect edge devices to clusters and is a contributor to the open-source projects like Mariner. In his spare time he bikes, plays volleyball... Read More →
avatar for Yu Jin Kim

Yu Jin Kim

Product Manager, Microsoft
Yu Jin is a product manager at Microsoft working on IoT and Kubernetes at the edge. She is currently a maintainer of the CNCF Sandbox project Akri.

Akri Secrets Management KubeOnEdgeDayEU2023 pdf
Tuesday April 18, 2023 15:20 - 15:45 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day, Kubernetes in Production on the Edge

15:20 CEST

Profiling Formats and Why You Should Care - Frederic Branczyk, Polar Signals
While profiling has been around ever since we started tinkering with computers, only recently has Observability emerged as an ecosystem of focus. With the rise of continuous profiling as a fourth Observability signal, the portability of sending out these signals becomes an imminent question. An ideal profile data protocol must be resource-aware, accessible, support multi-tenancy, having high adaptability by profilers across different software domains. Currently, profiling tools may output their profile data in proprietary or obscure open formats that do not lend very well to sharing profile information. Despite a sizable number of tools collecting metrics traces and logs, the lack of uniformity has made a lot of profilers inaccessible for integration in everyday workflows. In this talk, Sumera will touch upon the evolution of profiling formats and shed light on the bottlenecks in standardising profile data formats. She will elaborate on the needs of end-users in the open-source observability community with an emphasis on how the correct profile data formats complement developer productivity in observability workflows
Speakers
avatar for Frederic Branczyk

Frederic Branczyk

Founder, Polar Signals
Frederic is the founder of Polar Signals. Before founding Polar Signals he was a senior principal engineer and main architect for all things Observability at Red Hat, joining through the CoreOS acquisition. Frederic is a Prometheus & Thanos maintainer and tenured as a tech lead for... Read More →

Tuesday April 18, 2023 15:20 - 15:45 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Interesting Use Cases for Observability

15:50 CEST

Argo Rollouts from the Trenches – Next Level Progressive Delivery Best Practices - Kathleen Lamkin, Intuit & Harriet Lawrence, Red Hat
As the cloud native open source community gets more sophisticated with their continuous delivery strategies, best practices for progressive delivery methodologies become a prevalent discussion. Blue Green Deployments and Canary Deployments are the two main strategies implemented today, but how do you know which one is best for your use case? At Intuit and Red Hat, operational excellence is a top priority, and fine tuning our progressive delivery strategy is crucial for increasing confidence in our releases and reducing impact of change related incidents. Intuit’s TurboTax teams faced the predicament of remaining on a blue green deployment with the ability to run tests on production infrastructure before enabling live traffic increasing teams’ confidence in their releases OR migrating to canary deployment and reducing impact of change related incidents by deploying in stages to a percentage of live production traffic. In this talk, you will learn about how Intuit made the decision to migrate to Canary deployments on Argo Rollouts for thousands of services implementing an initial green step, how Red Hat is defining Argo Rollouts best practices with their customers, and what you can do today to overcome the challenge of understanding best practices in progressive delivery.
Speakers
avatar for Katie Lamkin

Katie Lamkin

Sr Product Manager of Platform and Open Source, Intuit
Katie Lamkin is a Sr Product Manager of Platform and Open Source at Intuit, who works with application development teams to achieve operational excellence through CICD platforms and progressive delivery strategies. Katie has been a Cloud Architect and held Engineering Management positions... Read More →
avatar for Harriet Lawrence

Harriet Lawrence

Product Manager, Red Hat
Harriet is a PM at Red Hat working with the OpenShift GitOps team and Argo CD community. Previously a developer and a technical writer, they have been working on making CI/CD products easier to use since 2016.

ArgoCon '23 Argo Rollouts From the Trenches pdf
Tuesday April 18, 2023 15:50 - 16:15 CEST
Elicium Building | Elicium Ballroom 2 [Argo Rollouts]
  ArgoCon, Rollouts Track- End User Stories / Case Studies

15:50 CEST

Scaling Argo Security and Multi-Tenancy in AWS EKS at the New York Times - David Grizzanti & Luke Philips, The New York Times
Argo is an established CNCF project that helps hundreds of engineers to use Kubernetes. There are many architectural patterns for managing Argo CD and integration with various other clusters can be done in several ways. At the New York Times, the non-negotiable requirements of security and multi-tenancy are necessary to run at scale across multiple teams. Kubernetes Service Accounts and Tokens were not enough. Utilizing AWS IAM and Argo CD, the NYT Delivery Engineering team designed an architecture to create a secure and multi-tenant end-to-end solution. This includes Argo CD respecting our tenancy rules in AWS and Kubernetes, plus Argo CD Applications and Projects. Further tuning of Argo CD was done by starting with the community Helm chart and adding a post-processing step to separate out RBAC controls from the rest of the Argo CD install. Scaling challenges were also overcome with the multi-tenancy multi-cluster combination, further tuning Argo CD. Interested? Join NYT engineers to hear their architecture, challenges, solutions, and lessons learned!
Speakers
avatar for David Grizzanti

David Grizzanti

Principal Engineer, The New York TImes
David Grizzanti is a Principal Engineer at The New York Times focused on improving developer productivity by enabling engineering teams to more effectively and efficiently build, test, integrate and deploy software. Previously he was a Distinguished Engineer at Comcast, where he oversaw... Read More →
avatar for Luke Philips

Luke Philips

Staff Software Engineer, The New York Times
Luke Philips is a Staff Engineer and Software A̶r̶c̶h̶i̶t̶e̶c̶t̶ Custodian with The New York Times Company. Trying to sweep together the best ideas from all sources. Previously a long career in Telecom, at Charter, CenturyLink, and Level 3 Communications. With a mixed focus... Read More →

ArgCon EU 2023 pdf
Tuesday April 18, 2023 15:50 - 16:15 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- Security Practice and Enforcement

15:50 CEST

Serverless WebAssemby: Roundtrip Scaling from 0 to 10k in 10 Seconds - Kate Goldenring & Joel Dice, Fermyon
Cloud is expensive. This is in part due to applications idly waiting for inbound requests. What if applications could “scale-to-zero”, with instances only running when needed? Today, serverless or FaaS application paradigms aim to scale-to-zero but are limited by the underlying unit of compute. While containers provide isolation for applications in a multi-tenant cloud, they take seconds to start. WebAssembly (Wasm) modules are just as secure as containers with default sandboxing, yet they start almost instantly (in microseconds). Using Wasmtime and Nomad, we built Fermyon Cloud, a hosted platform for running Wasm applications that can truly scale to zero. Before launching Fermyon Cloud, we had to determine how many applications each of our nodes could handle. We built a load tester. The results: when the unit of compute is Wasm, a node can host 1000s of applications. In this session, we will discuss why Wasm is ideal for serverless computing, best practices for load testing, and demo load tests on the Fermyon Cloud. At the end of the session, you will have the knowledge and links to start scaling Wasm in the Cloud, whether on the Fermyon Cloud or on your own infrastructure with the open source Fermyon Platform.
Speakers
avatar for Kate Goldenring

Kate Goldenring

Senior Software Engineer, Fermyon Technologies, Inc
Kate Goldenring is a senior software engineer at Fermyon and serves as co-chair of the Cloud Native Computing Foundation IoT Edge Working Group. She is an open-source developer who is drawn to building the best of what’s to come, maintaining projects focused on serverless WebAssembly... Read More →
avatar for Joel Dice

Joel Dice

Principal Software Engineer, Fermyon
Joel Dice is a software engineer at Fermyon, currently focused on Spin and the WebAssembly component model and language support. He has a background in distributed systems, compilers, language runtimes, and real-time communications. He's the primary developer of Avian, an embeddable... Read More →

Serverless Wasm Wasm Day 2023 pdf
Tuesday April 18, 2023 15:50 - 16:15 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm and Serverless

15:50 CEST

Istio for Controls Compliance - Zack Butcher, Tetrate
Istio's mTLS gets talked about a lot for security and compliance -- but it's only a tiny piece of the puzzle. In this talk, Zack Butcher -- a NIST co-author on microservice security standards and zero trust -- will break down how Istio can be used to satisfy controls for all kinds of regulatory regimes. We'll look at specific use cases of folks using Istio to help implement a variety of controls for PCI DSS, FedRAMP, and GDPR compliance in production. Finally, we'll take a forward look at an upcoming NIST Special Publication on Zero Trust (which Zack is co-authoring) and discuss how Istio can be used as a stepping stone from a traditional perimeter based security model to a modern identity based model. You'll leave this talk with a solid understanding of the types of controls Istio can be used to implement, how to actually implement a variety of them, and an understanding of how Istio can be used to iterate forward on your security posture.
Speakers
avatar for Zack Butcher

Zack Butcher

Founding Engineer, Tetrate, Tetrate
Zack helps large enterprises adopt Envoy and Istio. An early engineer building Istio at Google, he served on its Steering Committee and co-authored “Istio: Up and Running” (O'Reilly). He works with NIST and co-authored a series of Special Publications defining microservice security... Read More →

Tuesday April 18, 2023 15:50 - 16:15 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, Istio Recipes

15:50 CEST

SLA Aware Batch Scheduling in Apache YuniKorn with Multi-Tenant Preemption - Sunil Govindan & Craig Condit, Cloudera
Multi tenant batch processing is one of the difficult resource-intensive data engineering use cases in Kubernetes. Today, a simple rule that governs both scheduling order and the preemption behavior in the default scheduler is that a pod with a higher priority is more important than a pod with a lower priority, and this crosses namespaces. We need more. When looking at preemption from a batch workload, we need to take into account the possibility of an opt-out from preemption by considering the context of the type of workload, including user quotas, hierarchical queues, Spark driver pod, etc. How do we get that accuracy and flexibility? What are the “The Laws of Preemption” for batch processing? Most of the rules given around tasks and queues are there to prevent a preemption storm or loop. How to define guardrails around preempting a workload from one tenant and giving the resources to another? In a cluster that runs workloads for multiple tenants, preemption should be tenant aware. A tenant could map to a queue hierarchy, thus crossing tenant boundaries. Preemption for YuniKorn is based on the hierarchical queue model and guaranteed resources assigned to a queue. In this talk, we will dive deep into the batch preemption capability of YuniKorn as a K8s scheduler plugin.
Speakers
CC

Craig Condit

Senior Staff Engineer, Cloudera
Craig Condit is an open source, cloud native, and high performance computing enthusiast. He has been a software engineer for over 20 years, and has worked in Big Data for over a decade, with extensive experience in Apache Hadoop, YARN, and YuniKorn. He is an Apache YuniKorn committer... Read More →
avatar for Sunil Govindan

Sunil Govindan

Senior Engineer Manager, Cloudera
Sunil Govindan is Senior Engineering Manager@Cloudera. Sunil is primarily focussing on Resource Scheduling areas and contributing to Apache YuniKorn Scheduler for Kubernetes as a Committer and member of PMC from 2019 onwards. He has been an ASF Member since 2022 and has been contributing... Read More →

SLA Aware Batch Scheduling in Apache YuniKorn with Multi Tenant Preemption KubeCon HPC Day Amsterdam 2023 pdf
Tuesday April 18, 2023 15:50 - 16:15 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Solutions and Tools Built to Manage and Efficiently Run Batch Workloads on Kubernetes

15:50 CEST

Edge Relocation - Smart Workload Migration Across Multiple Clusters - Grzegorz Panek & Piotr Matysiak, Orange Polska
With the growing development of 5G and its new services, Edge computing is becoming the cornerstone of the ongoing network transformation making Edge application orchestration across multiple kubernetes clusters increasingly important. In this perspective, new operational challenges need to be addressed to deal with the stringent requirements of these applications and their users’ mobility. In this context, applications relocation between Edge clusters is key to maintain their QoS throughout their lifetime while achieving Edge infrastructure load-balancing. However, despite such an analysis, Edge relocation continues to be a gap in the industry. Hence, an open source cloud-native solution to resolve this problem has been implementated. A zero down-time Edge Relocation procedure offers the capability to transparently relocate an Edge application running on a source kubernetes cluster to a target kubernetes Cluster. This solution has enriched* Edge Multi Cluster Orchestrator (EMCO) from Linux Foundation. Additionally, we have implemented an extension mechanism to load-balance MEC clusters, by observing current resource utilization on each Edge Cluster, searching for least loaded Edge Clusters and to relocate Edge Apps respectively. * https://rb.gy/mmnqsb
Speakers
avatar for Piotr Matysiak

Piotr Matysiak

R&D Expert, Orange Polska
Piotr Matysiak is an R&D Expert at Orange Innovation Poland, specializing in 5G networks, network automation, CNF orchestration, and Kubernetes related technologies. He holds a degree in ICT and Cybersecurity from WUT and has contributed to the open-source community. Piotr has presented... Read More →
avatar for Grzegorz Panek

Grzegorz Panek

Expert R&D, Orange Polska
Grzegorz is an experienced R&D Expert at Orange Innovation Poland. His research interests focus on 5G/6G Networks, Network Function Virtualization, Network Automation, Cloud-Native Infrastructure and open-source initiatives.

KubernetesonEdgeDay 2023 GP PM pdf
Tuesday April 18, 2023 15:50 - 16:15 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day

15:50 CEST

Banking Observability at Scale - Arijan Luiken & Salvatore Vitale, ING
Join us on a journey as we share our experience in productizing open-source technologies into our banking-grade observability platform, the Monitoring Data Pipeline (MDPL). During this talk, we'll demonstrate the steps we took to meet the standards of usability, scalability, and security required by the ING organization. You'll see firsthand the reality of our solution through live demonstrations, rather than just slides. By the conclusion of this talk, you will gain a comprehensive understanding of our implementation of open-source technologies like Prometheus, Envoy, Mimir and Grafana in creating a secure, reliable, and scalable monitoring solution for the ING infrastructure and application workloads.
Speakers
AL

Arijan Luiken

Tech Lead, ING
With over two decades of experience in various industries, Arijan is now a lead engineer who works on the monitoring data pipeline within the ING. He is constantly seeking new ways to improve processes and systems, and his drive for innovation has led to several successful projects... Read More →
avatar for Salvatore Vitale

Salvatore Vitale

Dev Engineer, ING
With a passion for technology and over 10 years of experience in software development, Salvatore Vitale is a skilled professional who brings a wealth of expertise to the industry. Early in his career, he worked as a researcher at TU Delft, where he built computational models using... Read More →

Banking Observability at Scale v1.0 pdf
Tuesday April 18, 2023 15:50 - 16:15 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, End-user Talks about Observability Implementations

16:20 CEST

⚡ Lightning Talk: One Click Istio Development Environments - Mitch Connors, Aviatrix
With over 1,000 pull request authors in the last year, Istio is one of the largest communities in the CNCF. What could possibly make such a community even better? More contributors. With Github Codespaces and Dev Containers, contributing to Istio is easier than ever. This lightning talk will demonstrate how to submit a pull request and run pretests in 5 minutes or less, starting on a brand new workstation with no development environment or build tools. By the end of the talk, everyone in the room should have the tools they need to get started contributing to Istio, making our community even more robust.
Speakers
avatar for Mitch Connors

Mitch Connors

Sr Principal Software Engineer, Aviatrix
Mitch Connors is a Sr. Principal Software Engineer at Aviatrix, and serves on the Istio Technical Oversight Committee. Over the past 17 years, Mitch has worked at Google, F5 Networks, Amazon, an Industrial IoT startup, and State Farm Insurance, giving him a broad perspective on the... Read More →

Tuesday April 18, 2023 16:20 - 16:25 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, Project Update

16:20 CEST

⚡ Lightning Talk: How to Bring Data Locality to I/O-Intensive Workloads on Kubernetes - Shouwei Chen, Alluxio
 As the Kubernetes ecosystem matures, challenges remain when data-intensive applications access data from cloud-native data sources. Traditional approaches to optimizing I/O throughput often involve copying data, which is error-prone, slow, and resource-consuming. In this lightning talk, Shouwei will provide a brief overview of different approaches to emulate or introduce data locality in Kubernetes based on his experience working with open-source projects.
Speakers
avatar for Shouwei Chen

Shouwei Chen

Core Maintainer & Open source PM, Alluxio
Dr. Shouwei Chen is a core maintainer and product manager of open-source Alluxio. Before joining Alluxio, Shouwei received a Ph.D. degree from Rutgers University. Shouwei’s research focuses on the codesign of the memory-centric computing frameworks with in-memory distributed file... Read More →

Tuesday April 18, 2023 16:20 - 16:25 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Performance and Scalability

16:20 CEST

⚡ Lightning Talk: Kubernetes on Edge for People Who Don’t Do Kubernetes - Jay DesLauriers, University of Westminster
This short talk will give attendees a brief look at how Kubernetes and KubeEdge are being used to deploy digital twins in the EU Horizon 2020 DIGITbrain project. Digital twins in manufacturing are key to identifying early preventive maintenance and increasing overall efficiency of machinery and production lines on the factory floor. DIGITbrain aims to give manufacturers around Europe access to digital twins that can easily be deployed to cloud, but also to edges on the factory floor when such devices are available. While the words 'containerisation' and 'Docker' are quickly becoming common jargon in manufacturing R&D departments, 'cloud orchestration' and 'Kubernetes' have not quite caught on in the same way. The complex microservice architectures underpinning these digital twins and the cloud instances and edge devices they run on make an excellent case for clustering and scheduling with Kubernetes, but the costs to train and maintain are generally considered too high. Hear how DIGITbrain spins up just-in-time Kubernetes clusters, connecting edge devices on-the-fly with KubeEdge and Ansible, to support the scheduling of digital twin applications with all the benefits of Kubernetes and none of the complexity.
Speakers
avatar for Jay DesLauriers

Jay DesLauriers

Research Fellow, University of Westminster
I am a part-time Research Fellow with the Centre for Parallel Computing at the University of Westminster. Our research revolves around cloud orchestration and cloud security, and we build solutions to support and improve research in STEM and beyond. We maintain an open-source platform... Read More →

Kubernetes on Edge for people who don't do Kubernetes pdf
Tuesday April 18, 2023 16:20 - 16:25 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day, Project Highlights

16:20 CEST

Argo Rollouts Reinvented: Unleash the Power of Custom Plugins for Progressive Delivery - Zach Aller, Intuit
Have you wanted to use Argo Rollouts, but it does not provide support for your traffic router of choice or your own home grown metrics system for analysis? We have the feature for you: Argo Rollouts plugins! Argo Rollouts has a brand new plugin system for traffic routers, metric providers, and is exploring future opportunities like rollout steps. The new plugin system is important because it can improve the user experience for Argo Rollout users and contributors by extending functionality for specific use cases without the hassle. Learn to develop custom plugins using your existing tools and infrastructure to improve the overall scalability and functionality of the platform. By the end of this talk, attendees will have a solid understanding of custom plugins for Argo Rollouts, and will be well equipped with the knowledge and tools they need to extend the platform to meet their specific needs and requirements. Come learn about the new feature, and let’s build plugins together!
Speakers
avatar for Zach Aller

Zach Aller

Staff Software Engineer, Intuit
Zach Aller is a staff software engineer at Intuit and lead maintainer of Argo Rollouts. He has 15+ years of software development experience with a strong focus on SRE/Platform tooling. He has a strong background in Kubernetes and has managed many large scale Kubernetes clusters for... Read More →

Tuesday April 18, 2023 16:20 - 16:45 CEST
Elicium Building | Elicium Ballroom 2 [Argo Rollouts]
  ArgoCon, Rollouts Track- Extending Argo with Plugins and Extensions

16:20 CEST

GitOps Me Some of That! Managing Hundreds of Clusters with Argo CD - Mike Tougeron, Adobe, Inc.
As more teams move towards GitOps deployments for applications it's important for infrastructure teams to make that move as well. When building out Adobe’s infrastructure using Argo CD, one of the challenges has been modeling and deploying applications to a large number of clusters each with their own specific needs. Join us to learn how to we deploy hundreds of Kubernetes clusters in an automated and declarative fashion using the Argo ecosystem. See the code for Argo Events and Workflows that registers new clusters into Argo CD and deploys over 70 system-level applications using the new Progressive Syncs for ApplicationSets. We'll share what works, what doesn't, and tips for what you can do to help make it successful in your environment too.
Speakers
avatar for Mike Tougeron

Mike Tougeron

Lead Cloud Engineer, Adobe, Inc.
For several years Mike has been building Kubernetes platforms and deployments. With a passion for automation and developer engagement, Mike works towards continuously improving development pipelines to take the complication out of managing services on large-scale infrastructure backed... Read More →

GitOps Me Some of That! Managing Hundreds of Clusters with Argo CD pdf
Tuesday April 18, 2023 16:20 - 16:45 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- Integrating Multiple Argo Project Toolsets to Solve a Problem

16:20 CEST

How Small Can You Go? Customizing Interpreted Languages for Wasm Environments - Rafael Fernandez Lopez, VMware & Oscar Spencer, Suborbital
This talk will explore how to customize interpreters for popular language runtimes to target serverless, embedded and resource-constrained WebAssembly environments. WebAssembly and WASI bring many benefits to developers and operations teams. The former are able to reuse their code with no or minor adaptations, whereas the latter can deploy on safer environments, thanks to sandboxing features and a capabilities-oriented security posture. As WebAssembly becomes popular among traditional interpreted languages such as Python, Ruby and PHP there is a growing need to optimize their deployment. This involves both shrinking the size of the deployable modules, including the interpreter and supporting libraries, as well as building bridges to access platform-specific functionality that needs to be exposed to the developer, typically via host functions. This talk will provide an overview of current best practices and provide practical examples of running interpreted languages in popular serverless platforms.
Speakers
OS

Oscar Spencer

Director of Engineering, Suborbital
Oscar Spencer is the co-creator of Grain, an easy-to-use functional language for WebAssembly, and Director of Engineering at Suborbital, a company building products that leverage WebAssembly as a key technology.As a cocktail connoisseur, he’ll happily chat drinks with you. If you’re... Read More →
avatar for Rafael Fernández López

Rafael Fernández López

Staff Engineer, VMware
Rafa is a Staff Engineer at VMware that loves to learn and experiment. He has special interest in the intersection between programming languages, distributed systems and infrastructure. When not in front of a computer he enjoys time with family, friends, city walks and photograph... Read More →

How small can you go Wasm Day Europe 2023 pdf
Tuesday April 18, 2023 16:20 - 16:45 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm and Serverless

16:20 CEST

Scaling Observability Stack for AIOPS - Ravi Hari, Intuit
Prometheus is a defacto standard for monitoring in Kubernetes. Intuit runs ~2500 services on Kubernetes, and being one of the top SAAS companies, operational excellence is a top priority. While there are multiple pillars of observability when it comes to anomaly detection, predicting for auto scaling etc., metrics exposed via prometheus play a crucial role. In order for the quality of outcomes to be better we need to retain metrics data for at least a week and in some cases even more. This talk presents the challenges involved in scaling prometheus for retaining and data for a longer period. A demo of all the components involved such as: Prometheus, Thanos - query, store, query-frontend components are presented. Then this talk walks through how we solved the challenge. This talk also talks about the cost analysis for storing metrics data for a week and conclude with some best practices from our learnings.
Speakers
avatar for Ravi Hari

Ravi Hari

Principal Software Engineer, Intuit, Intuit
Ravi Hari is a Principal Software Engineer at Intuit. He works on Infrastructure and Observability for Kubernetes at Intuit. He is a maintainer of ArgoProj.

Tuesday April 18, 2023 16:20 - 16:45 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Interesting Use Cases for Observability

16:30 CEST

⚡ Lightning Talk: Using Istio and SPIRE to Trust Cross-domain Traffic in Hybrid Cloud Scenarios - Matt Turner- Tetrate
Most large organisations today have their applications in data centers and in different clouds. Each of these are operated by different business units and often are owned and operated by 3P, partners, acquired companies, vendor operated etc and thus they operate with different levels of trust. How to ensure secure communications between all these applications with different level of trust boundaries and yet maintain agility in access and compliance in runtime is what this talk will cover. 
Speakers
avatar for Matt Turner

Matt Turner

Software Engineer, Tetrate
Matt is a software engineer at Tetrate, working on Istio-related products, and loves sharing the latest tech and trends with everyone. He's been doing Dev, sometimes with added Ops, for over a decade. His idea of "full-stack" is Linux, Kubernetes, and now Istio too. He's given many... Read More →

Tuesday April 18, 2023 16:30 - 16:35 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, Istio Recipes

16:30 CEST

⚡ Lightning Talk: Orchestrating Kubernetes Clusters on HPC Infrastructure - Elia Oggian, Swiss National Supercomputing Centre
Deploying and managing Kubernetes clusters on High Performance Computing (HPC) hardware and infrastructure can be a challenge, to which diskless nodes and proprietary networks highly contribute. The Swiss National Supercomputing Centre (CSCS) is in the process of implementing a Kubernetes Infrastructure, spawning from standard resources to HPC. The goal is to deploy and manage multiple clusters centrally, regardless of the nature of the resources at disposal. Rancher has been appointed as the facilitator for such task. The integration with Harvester, a Cloud-Native Hyperconverged Infrastructure, enables the creation in different VLANs of clusters on-demand having custom node and cluster configurations. A GitOps approach, leveraging ArgoCD app-of-apps pattern, largely eases the deployment of applications on these clusters, resulting in several crucial aspects, e.g. re-usage of deployment code, enforcement of the declared state and self-healing. Currently, Slurm scheduler is used to manage workloads on HPC. But CSCS is looking for Kubernetes oriented complementary or alternative solutions. Ceph storage is widely used by the clusters, in all its flavors: Rados Block Device (RBD) and CephFS for persistent volumes, and S3 as a backup solution.
Speakers
avatar for Elia Oggian

Elia Oggian

System Engineer, Swiss National Supercomputing Centre
Elia Oggian, currently System Engineer at the Swiss National Supercomputing Centre (CSCS) and previously working in the healthcare domain, is working daily with CNCF technologies in order to innovate and improve the HPC operations at the centre. He loves adopting new tools and methodologies... Read More →

180423 Orchestrating Kubernetes Clusters on HPC Infrastructure pdf
Tuesday April 18, 2023 16:30 - 16:35 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Challenges Deploying and Managing Kubernetes in Traditional HPC Centers

16:30 CEST

Fruit-Picking Robots Powered by K8s: From Sci-Fi to Reality! - Pedro Oliveira, Spectro Cloud & Itzik Ben Zaken, Tevel Aerobotics
Imagine: autonomous drones hover, zipping through a huge orchard, using AI and computer vision to pick fruit as deftly as any human. It sounds like science fiction, but it’s a reality thanks to Israeli startup Tevel Aerobotics. Its harvesting robots are solving the shortage of agricultural labor. And they’re powered by a lightweight Kubernetes stack running directly on the drone. In this talk, Pedro Oliveira and Itzik Ben Zaken dive into this fascinating use case, solving challenges that will be familiar to anyone working on edge deployments. They’ll tackle: The economics of managing devices at remote sites, at industrial scale, which multiplies the cost of on-site operational activity, from device registration to monthly patching. Security approaches for protecting data on unattended autonomous hardware that may be stolen — making persistent encryption essential. Ensuring highly available autonomous operations even when the edge devices have no connectivity: maintaining policy, security and self-healing, without phoning home. They’ll explore Tevel’s Kubernetes stack, from K3S, to flannel, Portworx, Flux and Traefik, and show how the entire operational stack of thousands of drones are remotely and centrally managed through Spectro Cloud Palette, based on Cluster API.
Speakers
avatar for Itzik Ben Zaken

Itzik Ben Zaken

DevOps Team Leader, Tevel Aerobotics
Itzik Ben Zaken is the head of DevOps at Tevel, an Israeli agtech startup filling the extreme shortage in agricultural labor using fruit-picking Flying Autonomous Robots™. In my role, manages every stage of Tevel’s application lifecycle, including the development and deployment... Read More →
avatar for Pedro Oliveira

Pedro Oliveira

Senior Solutions Architect, Spectro Cloud
Pedro is a Senior Solutions Architect at Spectro Cloud focusing on helping enterprises move into the next-gen Kubernetes world. In his 8 years of experience he has worked in several industries from F1 to fintech and has mainly dabbled with Infrastructure programmability, Blockchain... Read More →

SpectroCloud Tevel Fruit Picking Robots Powered by K8s pdf
Tuesday April 18, 2023 16:30 - 16:55 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day, Kubernetes in Production on the Edge

16:40 CEST

⚡ Lightning Talk: Golden Rules of Resource Isolation in Istio - Zhonghu Xu, Huawei
Istio is becoming the defacto of service mesh and users are making use of istio to manage more and more large-scale services across different clusters. As the scale grows, they would find that the resource cost occupied by sidecars becomes more and more nonnegligible. In this session, Zhonghu will take a guided tour of ways to help decrease resource costs in both controlplane and dataplane, especially on cpu, memory and bandwidth. Basically, it will cover the following aspects: - 1. how to reduce the number of services and configs that are visible to istiod - 2. how to reduce the visible services and configs that can affect on a service instance Hopefully, after this session, you could get a basic idea on istio performance tuning.
Speakers
avatar for Zhonghu Xu

Zhonghu Xu

Principal Software Engineer, Huawei
Zhonghu is an open-source enthusiast and has focused on oss since 2017. In 2023, Zhonghu was awarded `Google Open Source Peer Bonus`. He has worked on istio for more than 6 years and has been a core Istio maintainer and the TOP 3 contributors. He has been continuously serving as Istio... Read More →

Tuesday April 18, 2023 16:40 - 16:45 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day, Istio Recipes

16:40 CEST

⚡ Lightning Talk: Does Cloud Elasticity Pay off for HPC Workloads? - Joris Cramwinckel, Ortec Finance
The cloud is great for regular user applications, but what about High Performance Computing (HPC)? Ortec Finance is a leading global provider of solutions for risk and return management for financial institutions. From building web apps to AI/ML apps that serve 2M+ residents, Ortec is now building HPC apps to perform large scale financial simulations for better investment strategies. Most organizations with HPC workloads, such as research institutions, deploy them in private data centers that are resource and space-constrained. Running HPC workloads in the cloud meant that Ortec really started to put the cloud’s scalability and elasticity promise to the test. In the session, you will get a fresh perspective and learn why they made this decision, the challenges they faced, lessons learned and the benefits. They will talk about how deploying HPC workloads on a managed Kubernetes platform helped them build a service that allows their clients to use hundreds of CPUs in the cloud, with a hassle-free approach. You will learn how they leverage open source tools such as KEDA and KNative to build compute-intensive apps with minimal resource footprint. Ortec Finance will also provide a framework and a demo on how to assemble and configure open-source projects to build an HPC service.
Speakers
avatar for Joris Cramwinckel

Joris Cramwinckel

Technologist, Ortec Finance
Joris Cramwinckel is a Technologist for Ortec Finance. He leads Ortec Finance’s Cloud Native Transformation and works with his team on migrating number-crunching applications to the cloud. He loves to talk about how to make open-source technology work for enterprises.

LT slides kubernetes hpc ortec finance pdf
Tuesday April 18, 2023 16:40 - 16:45 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day, Case Studies Building Batch + HPC and Data Processing Clusters On-prem or Cloud Using Kubernetes

16:45 CEST

Closing Remarks, Program Committee Members - Mitch Connors, Aviatrix & Faseela K, Ericsson Software Technolgoy
Tuesday April 18, 2023 16:45 - 16:50 CEST
Hall 7, Room D | Ground Floor | Europe Complex
  Istio Day

16:45 CEST

Closing Remarks, Program Committee Member - Aldo Culquicondor, Google
Speakers
avatar for Aldo Culquicondor

Aldo Culquicondor

Sr. Software Engineer, Google
Aldo is a Senior Software Engineer at Google. He works on Kubernetes and Google Kubernetes Engine, where he contributes to kube-scheduler, the Job API and other features to support batch, AI/ML and HPC workloads. He is currently a TL at SIG Scheduling and an Organizer of the WG Batch... Read More →

Tuesday April 18, 2023 16:45 - 16:50 CEST
Hall 7, Room A | Ground Floor | Europe Complex
  Kubernetes Batch + HPC Day

16:50 CEST

⚡ Lightning Talk: Operate Sidecar and Sidecar-Less Applications with Istio and ArgoCD Rollouts - Lin Sun, Solo.io
Istio ambient mesh introduces a new sidecar-less data plane mode designed for simplified operations, broader application compatibility, and reduced infrastructure cost. Sidecars and sidecar-less can co-exist with Istio ambient mesh. Lin, who is a founding member of Istio, will present how to integrate Argo Rollouts with applications running either Istio sidecar or without sidecar for traffic shaping. She will demonstrate using ArgoCD and Istio’s networking resource(VirtualService) to gradually increment the weights to slowly send traffic to a new version of your application automatically. While incrementing, she will show ArgoCD can monitor the prometheus metrics provided by Istio to ensure that the new version is performing adequately. If the metrics do not match the defined success criteria, Argo Rollouts automatically rolls back the version. She will show the power of ArgoCD rollout with applications running sidecars and sidecar-less with live demo.
Speakers
avatar for Lin Sun

Lin Sun

Head of Open-Source, solo.io
Lin is the Head of Open Source at Solo.io, also serving as a CNCF TOC member and ambassador. She has been actively involved with the Istio service mesh since its inception in 2017, holding positions on both the Istio Steering Committee and Technical Oversight Committee. Prior to her... Read More →

Operate Sidecar and Sidecar Less Applications with Istio and Argo Rollouts pdf
Tuesday April 18, 2023 16:50 - 16:55 CEST
Elicium Building | Elicium Ballroom 2 [Argo Rollouts]
  ArgoCon, Rollouts Track- Integrations with other Open-Source Projects

16:50 CEST

⚡ Lightning Talk: Fun with SQLite and Wasi-Libc - Jesús González Martí, VMware
SQLite is one of the most widely used databases in the world. It plays a crucial role in powering a variety of devices and systems, including smartphones, web browsers, and automotive infotainment systems. Its significance is comparable to that of other ubiquitous libraries like zlib, libpng, or libjpeg. Hence, integrating SQLite into the WebAssembly ecosystem is essential. In this lightning talk, we will share the lessons learned from compiling SQLite for the backend using WASI_SDK and wasi-libc. We will also highlight common challenges and pitfalls to watch out for when using these tools.
Speakers
avatar for Jesús González

Jesús González

Staff 2 Engineer, VMware
Jesús González is a Staff 2 Engineer at VMware’s Office of the CTO where he works on developer-related WebAssembly projects such as Apache's mod_wasm and WebAssembly Language Runtimes. Jesús has over two decades of industry experience most of it around Artificial Intelligence... Read More →

Wasm Day EU 2023 SQLite wasi libc pdf
Tuesday April 18, 2023 16:50 - 16:55 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Developing + Converting or Leveraging Wasm in Your Cloud Native Application

16:50 CEST

GitOps and CI/CD: Maintaining Security in the Age of Automation - Christian Hernandez & Hilliary Lipsig, Red Hat
As organizations continue to adopt GitOps and CI/CD practices to streamline their software development and deployment processes, it is crucial to also consider the security implications of these changes. In this talk, we will discuss the various security risks that can arise when using GitOps and CI/CD, and explore best practices for mitigating these risks to ensure that your pipeline remains secure. In this talk we will cover: * Securing access to your Git repository and ensuring that only authorized users can make changes * Implementing secure communication between your pipeline and your infrastructure * Automating security testing and vulnerability scanning in your pipeline * Managing secrets and sensitive data in your pipeline * Monitoring and auditing your pipeline to detect and respond to security incidents The talk will include real-world examples taken from Red Hat's SRE successful implementation of secure GitOps and CI/CD pipelines, as well as practical tips and guidelines that attendees can take away and apply to their own pipelines. By the end of this talk, attendees will have a better understanding of the security risks associated with GitOps and CI/CD and will be equipped with the knowledge and tools needed to maintain a secure pipeline.
Speakers
avatar for Christian Hernandez

Christian Hernandez

Head of Community, Akuity
Christian is a well rounded technologist with experience in infrastructure engineering, systems administration, enterprise architecture, tech support, advocacy, and product management. Passionate about OpenSource and containerizing the world one application at a time. He is currently... Read More →
avatar for Hilliary Lipsig

Hilliary Lipsig

Principal Site Reliability Engineer, Red Hat
Hilliary is an autodidact and start-up veteran who has frequently learned and applied technologies to get a job done. She’s had her hand in every part of the application delivery process, honing in her skills originally as a QE engineer. Hilliary is an IT polyglot able to talk the... Read More →

christian+hilliary argoconeu2023 pdf
Tuesday April 18, 2023 16:50 - 17:15 CEST
Elicium Building | Elicium Ballroom 1 [Argo CD]
  ArgoCon, CD Track- Security Practice and Enforcement

16:50 CEST

eBPF for Observability: The Good, the Bad, and the Ugly - Anna Kapuscinska, Isovalent
eBPF’s promise of zero-instrumentation observability with low performance overhead sounds like a dream and is driving wide adoption in observability tooling. At the same time, as a relatively low-level technology it is often poorly understood or even feared. To bridge this gap, we will dive into how eBPF serves the observability field. Anna will start by introducing eBPF features that let us achieve observability with no code changes. Next, she will examine at a few distinct eBPF use cases in open source tools: * getting insights from granular system events (e.g. Tetragon) * continuous profiling (e.g. Pixie) * distributed tracing auto-instrumentation (OpenTelemetry) Peeking at both eBPF code and user interfaces will help us understand the potential of the technology. Finally, Anna will discuss the limits of using eBPF for observability and how it plays together with other frameworks. The audience will walk away understanding what works and what doesn’t when using eBPF for observability.
Speakers
avatar for Anna Kapuścińska

Anna Kapuścińska

Software Engineer, Isovalent
Anna is a Software Engineer at Isovalent, focusing on Kubernetes observability. Her previous roles span the industry: she wore both developer and SRE hats, and worked in AdTech, FinTech, public healthcare, end-user SaaS company and a hosting provider. On good weather nights you can... Read More →

eBPF observability pdf
Tuesday April 18, 2023 16:50 - 17:15 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day, Uses of Open Source Tooling to Achieve Observability

16:55 CEST

Closing Remarks, Program Committee Member - Tina Tsou, ARM
Speakers
avatar for Tina Tsou

Tina Tsou

Board Chair, LF Edge
Tina Tsou, Director of Infrastructure Ecosystem at Arm, is a recognized leader in open source software, cloud infrastructure, and edge computing. She chairs the Kubernetes Edge Day events under the Cloud Native Computing Foundation (CNCF) and serves as the Board Chair of LF Edge... Read More →

Tuesday April 18, 2023 16:55 - 17:00 CEST
Hall 7, Room B | Ground Floor | Europe Complex
  Kubernetes On Edge Day

17:00 CEST

⚡ Lightning Talk: Improving Release Reliability with Argo Rollouts Across 10k Customer Services - Carlos Sanchez, Adobe
At Adobe Experience Manager, a comprehensive content management solution, we are deploying over 10k non Adobe customer services to Kubernetes. New deployments can occur multiple times per day from internal changes or from customer code, which can be very different from one customer to another. A new feature or piece of code can work fine for 99% of customers but still affect the other 1%, and being able to detect this from just tests is a very costly process. To improve the reliability of the service and prevent both global and customer specific regressions, we have started to implement a Progressive Delivery pipeline with Argo Rollouts, which allows us to protect the service and automate roll backs to a previous version if needed for each customer independently. This allows us to move faster and with more confidence so regressions are less likely to affect a customer. We will address how are we moving all these services to Argo Rollouts, how we have improved the reliability of the service and how we have reduced the time to recover from a regression.
Speakers
avatar for Carlos Sanchez

Carlos Sanchez

Principal Scientist, Adobe
Carlos Sanchez is a Principal Scientist at Adobe Experience Manager, specializing in software automation, from build tools to Continuous Delivery and Progressive Delivery. Involved in Open Source for over 15 years, he is the author of the Jenkins Kubernetes plugin and a member of... Read More →

Improving Release Reliability with Argo Rollouts across 10k Customer Services pdf
Tuesday April 18, 2023 17:00 - 17:05 CEST
Elicium Building | Elicium Ballroom 2 [Argo Rollouts]
  ArgoCon, Rollouts Track- End User Stories / Case Studies

17:00 CEST

⚡ Lightning Talk: KWasm Operator - The Easy Way for Running WebAssembly on Kubernetes - Max Schmidt, Liquid Reply GmbH
Server-side WebAssembly is a hot topic these days but unfortunately most Kubernetes distributions are lacking support for Wasm containers. To make it as easy as possible to add Wasm support to existing Kubernetes distributions we created the KWasm operator. This lightning talk gives a brief overview on the features and limitations of the operator and demonstrates how easy it is to provision the managed Google Kubernetes Engine with Wasm capabilities by using the KWasm operator.
Speakers
avatar for Max Schmidt

Max Schmidt

Consultant, Liquid Reply GmbH
Max is a Consultant working at Liquid Reply with experiences in implementing, designing and maintaining multi-cloud and on-premises customer infrastructure. This includes container orchestration with Kubernetes and implementing different workflows utilizing CI/CD tools. As a side... Read More →

kwasm kubecon talk pdf
Tuesday April 18, 2023 17:00 - 17:05 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Wasm and Kubernetes

17:00 CEST

CNCF-Hosted Co-Located Events Reception
Join us onsite for drinks and appetizers with fellow co-located attendees from Tuesday's CNCF-hosted Co-located Events.

Head over to Hall 2 to connect with attendees from ArgoCon, Cloud Native Wasm Day, and Observability Day.

Visit Hall 3 to meet with attendees CilliumCon, Cloud Native Telco Day, Istio Day, Kubernetes Batch + HPC Day, Kubernetes on Edge Day, and Linkerd Day.



Tuesday April 18, 2023 17:00 - 18:30 CEST
Halls 2 + 3
  Breaks

17:10 CEST

⚡ Lightning Talk: Everything You Wanted to Know to Adopt WASM Now! - Ivan Pedrazas, Docker Inc
This short talk has only one objective: helping you get started in your WASM journey. We will show you how to use all your knowledge gained from building and running containerised applications to building your WASM modules. We will show you how easy it is to add WASM to your development lifecycle: which tools you need, how to build, run locally and deploy to Kubernetes WASM workloads. This is like the “Getting Started with …” that you are familiar with from all those tools and products you have been tinkering with, but in conference format: Less text, more memes. - Advantages of building WASM as an OCI image. - 3 ways of packaging a WASM module as an OCI image. - 3 ways of running a WASM application locally. - Signing and verifying your WASM modules with cosign. - Hot to deploy your application to Kubernetes.
Speakers
avatar for Ivan Pedrazas

Ivan Pedrazas

Principal Engineer, Docker Inc
Ivan Pedrazas has been designing and building distributed systems for 20 years. In the last few months, he’s been researching complexity theory and cognitive load in the production and management of software components. Ivan has built a few platforms on top of Kubernetes. Ivan is... Read More →

Tuesday April 18, 2023 17:10 - 17:15 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day, Developing + Converting or Leveraging Wasm in Your Cloud Native Application

17:15 CEST

Closing Remarks- Program Committee Members - Dan Garfield, Codefresh & Wojtek Cichoń, Akuity
Speakers
avatar for Wojtek Cichoń

Wojtek Cichoń

Founding Marketing Manager, Akuity
Connecting the dots between marketing and open source community at Akuity. He enjoys working closely with engineering, sales, product, and devrel folks. Open source enthusiast and occasional contributor. KCD Ukraine co-organizer.He does rap and spoken word when he's not hanging out... Read More →
avatar for Dan Garfield

Dan Garfield

Chief Open Source Officer, Codefresh
Dan Garfield is the Co-founder and Chief Open Source Officer of Codefresh, a CI/CD platform powered by GitOps and Argo. As an Argo Maintainer, he works parmiarily on Argo CD and Argo Rollouts. He helped create the GitOps Working Group and Open GitOps Principles. He helped create the... Read More →

Tuesday April 18, 2023 17:15 - 17:20 CEST
Elicium Building | Elicium Ballroom 1
  ArgoCon

17:15 CEST

Closing Remarks - Program Committee Member- Liam Randall, Cosmonic
Speakers
avatar for Liam Randall

Liam Randall

Founder, Cosmonic
Liam Randall - Entrepreneur. Investor. Advisor. Keynote Speaker. Open Source.With a high technology career spanning 25 years, Liam Randall has worked at every level of the information systems pipeline - from building and operating large networks, and developing and maintaining large... Read More →

Tuesday April 18, 2023 17:15 - 17:20 CEST
Hall 7, Room C | Ground Floor | Europe Complex
  Cloud Native Wasm Day

17:15 CEST

Closing Remarks - Program Committee Member- Bartlomiej Plotka, Google
Speakers
avatar for Bartłomiej Płotka

Bartłomiej Płotka

Senior Software Engineer, Google
Bartek Płotka is a Senior Software Engineer at Google. SWE by heart, with an SRE background, currently working on Cloud Observability. Previously Principal Software Engineer at Red Hat. Author of "Efficient Go" book with O'Reilly. As the co-founder of the CNCF Thanos project and... Read More →

Public Observability Day Closing Remarks Amsterdam 2023 pdf
Tuesday April 18, 2023 17:15 - 17:20 CEST
Hall 7, Room E | Ground Floor | Europe Complex
  Observability Day
 
Filter sessions
Apply filters to sessions.
Tuesday, April 18
Elicium Building | Elicium Ballroom 1
Elicium Building | Elicium Ballroom 1 + 2
Elicium Building | Elicium Ballroom 1 [Argo CD]
Elicium Building | Elicium Ballroom 2 [Argo Rollouts]
Elicium Building | Elicium Ballroom 2 [Argo Workflows]
Entrance C
Entrance K
Hall 7, Room A | Ground Floor | Europe Complex
Hall 7, Room B | Ground Floor | Europe Complex
Hall 7, Room C | Ground Floor | Europe Complex
Hall 7, Room D | Ground Floor | Europe Complex
Hall 7, Room E | Ground Floor | Europe Complex
Halls 2 + 3
Halls 2 + 3 + 6 + 7
  • ArgoCon
  • Badge Pick-up
  • Breaks
  • CiliumCon
  • Cloud Native Telco Day
  • Cloud Native Wasm Day
  • Istio Day
  • Kubernetes Batch + HPC Day
  • Kubernetes On Edge Day
  • Linkerd Day
  • Observability Day
  • TALK TYPE
  • Keynote Session
  • Lightning Talk
  • Opening and Closing Remarks
  • Panel Discussion
  • Session Presentation
  • CONTENT EXPERIENCE LEVEL
  • Advanced
  • Any: Anyone can attend
  • Beginner
  • Intermediate
  • TALK DELIVERY METHOD
  • In-Person
  • Pre-record