Let's Mesh & Container Runtime Security

SpotHero - 125 South Clark Street Chicago - View Map Chicago Kubernetes
Wed, Mar 27, 2019, 6:00 PM (CDT)

About this event

Hello Chicago Kubernauts!

We look forward to seeing you at the end of March. First Jesse from Oracle will talk about the service mesh.

The service mesh is the part of the stack where services are exposed and work with (and sometimes against) each other. Without any changes to service or application code, solutions like Istio and Linkerd provide features to manage container deployments at scale. Jesse will discuss these solutions and some of their features. Demos will be rolled in, so there's a chance of comedic value as a bonus.

Second on the program is Michael from SysDig.

Host intrusion detection (HID) has been around for some time. What if we rethought the problems HID solves in the context of Cloud Native platforms? What if we can detect abnormal behavior in the application, container runtime, & cluster environment as well? In this talk, Michael will present Falco, a CNCF Sandbox project for runtime security. He will show how Falco taps Linux system calls & the Kubernetes API to provide low level insight into application behavior and how to write Falco rules to detect abnormal behavior. He will also show how to collect and aggregate alerts using an EFK stack (Elasticsearch, Fluentd, Kibana). Finally he will show how Falco can trigger functions to stop abnormal behavior or isolate the compromised Pod or Node for forensics. Attendees will leave with a better understanding of what problems runtime security solves and how Falco can provide runtime security and facilitate incident response.

SPONSORED: Big thanks to NetApp and NetApp for their support.

Are you a local group member interested in presenting to the group? If so, please submit your talk at: https://goo.gl/forms/FplDVgfflWFkRu9b2


6:00 - 6:30 - Social and Food
6:30 - 6:40 - Community Announcements
6:40 - 7:10 - Jesse Butler, Oracle
7:15 - 7:45 - Michael Ducy, Sysdig
7:45 - 8:15 - Social / Wrap-up


Jesse is a developer advocate with Oracle Cloud Native Labs. He started his career in software engineering 20 years ago, working his way up the stack from driver development into userspace and container development. He's been working with containers for several years, first in Solaris and later in Linux. Most recently, he's taken a role with the Oracle Cloud organization as a Cloud Native Advocate focused on the CNCF ecosystem, Serverless and other Cloud Native technologies.

Twitter: @jlb13
Github: jlbutler

Michael Ducy currently works as Director of Community & Evangelism for Sysdig where he is responsible for growing adoption of Sysdig's open source solutions. Previously, Michael worked at Chef where we held a variety of roles helping customers and community members leverage Chef's open source and paid solutions, as well as implement the ideas and practices of DevOps. Michael has also worked in a variety of roles in his career including Cloud Architecture, Systems Engineering, and Performance Engineering.

Twitter: @mfdii (https://twitter.com/mfdii)


Wednesday, Mar 27
6:00 PM - 9:00 PM (CDT)


125 South Clark Street Chicago


  • Mostafa Radwan

    Mostafa Radwan


    Principal at CloudRoads

    View Profile