| 4:30 AM | Opening KCD event | Introduction to Kubernetes Community Days, CNCF, Open Source and Cloud Native Landscape. |
| 4:50 AM | Keynote talk - Haseeb Budhani | Introduction to Kubernetes Platform |
| 5:15 AM | Operating High Traffic Websites on Kubernetes - Soulman Iqbal | Kubernetes promises to run containerised workloads efficiently and at scale. It also provides auto-scaling features where the workloads can scale to meet the demands of the traffic. None of this is available by default and work needs to be done to reach the Kubernetes promised land. This talk will focus on how to architect Kubernetes clusters for high traffic websites or workloads.
Attendees will learn how to configure ingress controller to securely expose workloads to external traffic. A demo will be presented which will show how Prometheus can be used to collect metrics from workloads. These metrics will then be fed to Kubernetes Pod Autoscaler using KEDA (Kubernetes Event-driven Autoscaling) to automatically scale the pods to meet the demand. |
| 5:30 AM | Introduction to Backstage - Brad McCoy and Courtney Nickerson | Backstage is one of the hottest open-source tools within the CNCF at the moment, it is an open platform for building developer portals. Powered by a centralized software catalog, Backstage restores order to your microservices and infrastructure and enables your product teams to ship high-quality code quickly without compromising autonomy. Join Courtney and Brad as they take you through an introduction of Backstage and give a demo and show you how you can get started. |
| 5:50 AM | How to tackle CKA exam - Ayesha Siddiqa | This talk is open to everyone, especially women to provide motivation about Kubernetes Learning and the certifications provided by CNCF. By engaging the audience Ayesha will also answer queries regarding exam preparations, tips to ace the exam, challenges faced by women in IT/cloud, and how the certification will help them in their careers. |
| 6:00 AM | Platform Automation with Kyverno - Chip Zoller | Kyverno has largely become the defacto standard for applying policy and governance in Kubernetes environments, yet policy is still thought of as single dimensional--a tool for validation. In practice, because Kyverno has so many abilities that extend far outside of simple validation it makes it a tool for automation which platform teams commonly use to handle tedious and day-to-day tasks often replacing custom or one-off controllers for certain tasks.
In this talk, Chip will share several real-world use cases in how platform teams can leverage Kyverno for more than validation to get real work done, defined as code, and without having to write a programming language. |
| 6:20 AM | Serverless computing using Knative Open Source - Santosh Kumar | In this talk, Santosh will go over how to implement serverless computing using Knative Open-source framework and how cloud vendors use this to implement vendor specific serverless computing products.
|
| 6:40 AM | Orchestrating and Observing GitOps Deployments with Keptn - Andreas Grabner | GitOps has become the default way to manage configuration in cloud native environments with tools like Argo or Flux keeping Git and K8s in sync.
But GitOps lacks end 2 end traceability when GitOps operators make changes on the target environments. And as Kubernetes lacks application awareness it's hard to enforce pre and post-deployment orchestration tasks such as sending notifications upon successful app delivery or validating all SLOs are healthy for a new version.
The CNCF project Keptn is addressing those challenges by automatically providing End 2 End Observability through OpenTelemetry as well as introducing an application deployment lifecycle events enabling pre- and post-deployment checks natively on Kubernetes. Keptn therefore extends your GitOps approach with the missing observability and orchestration needed for successful cloud native development. |
| 7:00 AM | CI/CD Best Practices to Deliver Software Faster, Safer, and Efficiently - Revana Siddesh Bathi | In today's fast-paced software development world, delivering quality software quickly and efficiently is crucial. This talk will cover the best practices for Continuous Integration and Continuous Delivery that will help your team achieve faster, safer, and more efficient software delivery. |
| 7:20 AM | Deployments vs StatefulSets vs Daemonsets - Ali Kahoot | Kubernetes provides different resources for deploying applications, we will be looking at them and the differences between them and how can we persist data using each of them. Kubernetes provides different resources for deploying applications, we will be looking at them and the differences between them and how can we persist data using each of them.
Key takeaways:
What are controllers in Kuberenetes
How Deployments, Statefulsets & Daemonsets work
What is the difference between them
How do they differ while persisting data
|
| 7:40 AM | From Perimeter to Zero Trust: Securing Kubernetes with Paralus - Atulpriya Sharma | From monoliths to microservices, VMs to containers, the way we run and deploy our applications today has evolved over the years. Hence the way we safeguard our applications should also evolve. In this talk, I'll talk about how securing infrastructure has evolved and moved away from traditional perimeter-based security to robust and agile zero trust. Will introduce Zero Trust and its principles and touch upon the differences between the various security options to secure your Kubernetes clusters. We will then look at how Paralus can help secure access to your Kubernetes clusters with a quick hands-on demo. |
| 8:00 AM | What's a Zero-Trust Tunnel? SimpleOps and SecOps with Ambient Mesh - Marino Wijay | A huge driver for service mesh adoption is security compliance. Large enterprises in heavily regulated industries or the public sector must adopt practices like zero-trust security for its application networks. A Service mesh platform such as CNCF's Istio project are growing in popularity as a vehicle for meeting these challenges. In 2022, Istio maintainers announced Istio Ambient Mesh to the community. Ambient offers a revolutionary data-plane architecture that allows service mesh users to ditch sidecars. A zero-trust posture is achieved, operational complexity is reduced, mesh adoption is incremental, all while reducing cost and computational overhead within a service mesh. This talk with demo, will illustrate and articulate Ambient Mesh and two new layers: a zero-trust tunnel (ztunnel) that secures Layer 4 connectivity and a waypoint proxy that delivers Layer 7 security policies. |
| 8:30 AM | Break | Networking, Food, Swags, |
| 9:00 AM | Skaffold: Local development with Kubernetes - Zubair Haque | Skaffold is a tool used for local development with a kubernetes cluster. I will go over examples of how to deploy: - a back-end application (python3 FastAPI project): where changes are automatically applied when you save your source code changes and re-deploy the container and updates API in real-time. - a front-end application (nodejs project): where changes are automatically applied & updates versions deployed on your minikube cluster. There also be an overview of how to install skaffold, generate service & deployment manifests from scratch, and troubleshoot local deployments. |
| 9:20 AM | Start Securing your Base Images by Making your Own Distroless - Batuhan Apaydın - Furkan Türkal | Recent famous research about container images has shown that popular base images are vulnerable and unreliable. They have 287 vulnerabilities on average, 30% of which belong to a high/critical category, up from 20% last year. Unfortunately, this was one of the issues that everyone in the container world was aware of but ignored, until today. Container images are typically built from a base image so it is extremely important to ensure that base images do not contain any vulnerabilities and are secure. In order to secure our cloud-native infrastructure base images are off high priority, but how we can create build information that contains some valuable information, including which base images were used while building container images, this is where CNCF Sandbox project ko and OCI image-spec and “Base Image” annotations concept comes in handy. In this talk, we'll learn how to build a secure base image, how to sign it, how to generate provenance data, and how to capture the base image information from an image, and validate that information during runtime. |
| 9:40 AM | Deploy With Confidence: Pre-Deployment Tasks and Manifests Management - Sergio Ocón Cardenas | Applications are more than code, they require you to properly define microservices, third-party dependencies, and configuration to safely run them in production. For many engineers, this goes beyond their knowledge of Kubernetes, and deployments become a succession of trials and errors. Increased complexity that impacts how efficient applications are and can cause increased costs when not managed correctly. In this talk, we'll explore the best alternatives to reduce the number of tries it takes you to deploy your application to K8s by addressing the steps that need to be taken pre-deployment to ensure that you're able to deploy with confidence. We‘ll talk about open-source tools that help you deploy faster, reduce errors, and validate your configuration pre-deployment, to reduce - the chance of security issues being deployed to production, while reducing failed deployment attempts. |
| 10:00 AM | From unemployed to Technology Evangelist in the Open Source world - Edith Puclla | Have you ever wondered how to get started in the tech industry and don't know where to start? In this presentation, I will talk about my journey through different open-source projects and how attending the KubeCon event opened many doors to opportunities in my professional life. I'll share what I did to get these opportunities and how you can make the most of them. I will trace my journey from the internship where I contributed to the Apache Airflow project, as part of the Outreachy program, to how I landed a job as a technology evangelist at Percona (a member of CNFC and a contributor to the open-source database ecosystem). This session will help you get started in the open-source world and dabble in technology.
The session will cover
- A way to start in Open Source
- Opportunities: CNCF Events, Scholarships, Outreach Program
- Community |
| 10:20 AM | Prometheus in 5 minutes - Pavan Gudiwada | When I got started with Prometheus, it took me days to figure out how to install Prometheus and understand the types of alerts. All I wanted was to send my alerts to slack. After all of that, I realized it wasn't hard, I just did not have a guide that explains me Prometheus in the simplest of terms. That is precisely what I want to make, a short and simple talk to explain everything a person needs to start using Prometheus.
|
| 10:40 AM | Closing Keynote - Saim | Code, Community, and Contribution, will continue in the future. |
