You didn't have the time to visit KCD Austria or handed in a Talk that didn't get accepted? Following the idea of the Cloud Native Rejekts at KubeCon (https://cloud-native.rejekts.io/), this Meetup gives you a second chance to see interesting talks and meet people.
Talk 1: Katharina Sick (Dynatrace) - Securing Kubernetes Clusters: The Principle of Least Privilege with ArgoCD and Crossplane
According to OWASP, insecure workload configuration is the top security problem in Kubernetes. As modern Kubernetes clusters evolve from mere container orchestrators to versatile control planes managing various types of resources, protecting these clusters becomes even more critical.
In this talk, you'll learn practical strategies to address security problems in your Kubernetes cluster by applying the Principle of Least Privilege (PoLP). Moreover, we'll extend this principle to ArgoCD and Crossplane, two powerful tools used in many Kubernetes clusters.
Join me to discover how the Principle of Least Privilege, applied to Kubernetes, ArgoCD, and Crossplane, empowers you to safeguard your Kubernetes ecosystem.
3:35 PM
Break
3:50 PM
Talk 2: Martin Nirtl (Mirantis) - SSO for Kubernetes: Let's get authenticated!
Out of the box, Kubernetes provides only bare-bones support for authentication. Fortunately, we have Dex! The CNCF project helps to implement authentication at scale, providing single sign-on (SSO) functionality and much more.
In this talk, we will cover fundamentals of Kubernetes authentication and explore Dex with a live demo. Join the talk to also learn about the pros and cons of available Kubernetes authentication mechanisms, how to use Dex to implement SSO for Kubernetes and look beyond authentication!
4:25 PM
Break
5:00 PM
Talk 3: Sohan Maheshwar (Fermyon) - The Future of Cloud is WebAssembly
Computing paradigms have come a long way from a solitary server down the hall to microservices with serverless functions. Now the time is right for a new wave of cloud compute. WebAssembly is the perfect technology to sit beside containers and virtual machiness, handling those kinds of tools that need to start instantly, execute quickly, and then exit.
This talk looks at some emerging trends in cloud computing where gaps are forming between what we want to do and the tools we have available. It covers the virtues of WebAssembly as a cloud-side compute runtime. How it works under the hood, how it has support for numerous languages, how it can run on many architectures and operating systems, and how it is lightweight and blazingly fast!
Is this the next wave of cloud computing?
5:35 PM
Break
5:50 PM
Talk 4: Zain Malik - Leveraging Cluster API Ecosystem for Effective Collaboration and Custom Extensions in CAPZ
Utilising OSS operators like Cluster API alongside CAPZ offers a rich array of features that significantly shorten the development cycle within any organisation. However, the dynamic nature of business requirements often demands a pace that challenges the ongoing collaboration for upstream feature incorporation. A fork with added features, while initially beneficial, might diverge extensively over time, posing challenges for maintainability.
In this session, we will focus on the tangible advantages of employing the Cluster API ecosystem, as opposed to merely discussing its potential future benefits. Through a showcase of several real-world examples, we will illustrate our custom extensions for CAPZ, delineating where we chose upstream collaboration over other alternatives. This discourse aims to provide insights into striking a balance between leveraging OSS operators for immediate needs while maintaining an active collaboration for upstream enhancements, ensuring a streamlined, feature-rich, and maintainable infrastructure.