Loading…

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Tuesday, May 1
 

08:00 BST

Registration
Tuesday May 1, 2018 08:00 - 09:00 BST
B3-M6+8

09:00 BST

Welcome & Introduction
Tuesday May 1, 2018 09:00 - 09:15 BST
B3-M6+8

09:15 BST

What's so hard about vulnerability scanning? - Liz Rice, Aqua Security
A dive into what's easy - and what's not so easy - about finding and patching security vulnerabilities in droplets and containers

When a vulnerability, like the recent Meltdown, gets disclosed, the race is on to patch your code - and in a containerized deployment like PCF or PKS, you may have many thousands of instances that need updating. Typically, organizations use an image scanner to identify affected droplets or containers.

At first glance vulnerability scanning seems as though it should be a simple matter of cross-referencing a list of software packages with a list of known vulnerabilities, such as the National Vulnerability Database. This talk dives into why identifying vulnerabilities is a harder problem than you might at first imagine. We'll cover questions such as:

 * How does droplet scanning work?

 * Why does your Linux distribution(s) matter for vulnerability detection?

 * What's the difference between detecting vulnerabilities and malware?

There will be examples of false positives, how they get generated and what you can do about them.

If you have ever wondered how image scanners work, or if you're concerned about keeping your droplets and containers up-to-date with the latest patches, this talk is for you. 

Speakers
avatar for Liz Rice

Liz Rice

VP Open Source Engineering, Aqua Security
Liz Rice is VP Open Source Engineering with cloud native security specialists Aqua Security. She is chair of the CNCF's Technical Oversight Committee, and was Co-Chair of KubeCon + CloudNativeCon in 2018. She is also the author of Container Security, published by O'Reilly. She has... Read More →


Tuesday May 1, 2018 09:15 - 09:45 BST
B3-M6+8

09:45 BST

CF Application Run Time vs. Kubernetes - How to deploy and run Microservices in the Cloud fast and reliable - Matthias Haeussler, NovaTec Consulting GmbH
Platform and Container as a Service layers (PaaS/CaaS) enable developers to deliver the functionality of their code to end users in a fast way.

One decision the developer has to make here is which abstraction layer to use for deployment - container or application.

Kubernetes and Cloud Foundry are very popular options to deploy and run Spring Boot Microservices successfully by providing the 2 approaches. But what does it really take to get your application and required backend services up and running successfully on either platform? How many configuration steps are in fact required and where are the hidden pitfalls? How easy do you scale, recover from failure or update the application without downtime? What kind of a difference does the level of abstraction "Bring your own code vs. Bring your own container" mean in the end?

In my role as Cloud consultant and university lecturer for distributed systems I come across these topics a lot and want to share my experience with this talk. I will analyse the differences between the two platforms as seen from a developer's perspective from getting started to running successfully. The comparison is based on a Spring Boot sample app. The talk includes a live demo of those steps.

Speakers
avatar for Matthias Haeussler

Matthias Haeussler

Chief Technologist, Novatec Consulting GmbH
Matthias Haeussler is Chief Technologist at NovaTec Consulting and the organizer of the Stuttgart Cloud Foundry Meetup. He advises clients on Cloud strategies and supports implementations and migrations. Besides that he teaches Cloud Native Development at universities. Prior to that... Read More →



Tuesday May 1, 2018 09:45 - 10:15 BST
B3-M6+8

10:15 BST

AM Break
Tuesday May 1, 2018 10:15 - 10:45 BST
B3-M6+8

10:45 BST

Will It Blend: Cloud Foundry and Kubernetes Panel Discussion - Julian Friedman, IBM, Abby Kearns, Cloud Foundry, Gabe Monroy, Microsoft, & Sanjay Patil, SAP
Speakers
JF

Julian Friedman

IBM
Julian Friedman (julz) is an IBMer and the project lead for Cloud Foundy's low-level container engine ("Garden") and the Application Autoscaler component. Over a long career he has worked on early cloud environments, Map/Reduce, performance optimisation for AI systems and, of course... Read More →
avatar for Abby Kearns

Abby Kearns

Executive Director, Cloud Foundry Foundation
avatar for Gabe Monroy

Gabe Monroy

Partner Program Manager, Microsoft
avatar for Sanjay Patil

Sanjay Patil

Product Manager, SAP Cloud Platform
Sanjay Patil is a Product Manager of SAP Cloud Platform, a certified Cloud Foundry PaaS solution. He is passionate about open technologies such as Cloud Foundry and Kubernetes, that help businesses innovate faster at a global scale. He has delivered talks and conducted hands-on sessions... Read More →


Tuesday May 1, 2018 10:45 - 11:15 BST
B3-M6+8

11:15 BST

A Single Tool for Hybrid Environments: Using Logsearch with Cloud Foundry and Kubernetes - Andrei Krasnitski & Viktoryia Kotava, Altoros
There is no need to expain the importance and value of log aggregation machanisms designed for provisioning complex and large-scale environments. Many companies with enterprise-ready implementations of Cloud Foundry have sussessful experience with the ELK stack as an application and platform log management stack. In the meantime, same companies are looking into or already using Kubernetes as an additional option for application runtime alongside with CF. This trend heavily requires services to support different types of envronments and architectures. During this talk, we will tell how to benefit from using Logsearch for Cloud Foundry as a single and secure instrument for logging hybrid environments. 

Speakers
avatar for Viktoryia Kotava

Viktoryia Kotava

Product Manager, Altoros
Viktoryia Kotava is a Cloud Foundry product and project manager at Altoros responsible for Service Integration delivery for Cloud Foundry and Pivotal Cloud Foundry. Over 4 years with Altoros, Viktoryia has been overlooking delivery of commercial services, staying closely involved... Read More →
AK

Andrei Krasnitski

Software Engineer, Altoros
Andrei Krasnitski is Cloud Foundry Engineer at Altoros. Having 3+ years of experience in building CI/CD pipelines and automating clouds, Andrei has participated in building a private cloud for one of the largest US-based IT service providers. Today, he is building and supporting Cloud... Read More →


Tuesday May 1, 2018 11:15 - 11:45 BST
B3-M6+8

11:45 BST

Building Developer Pipelines with Kubernetes, Harbor, and Concourse - Thomas Kraus & Merlin Glynn, VMware
Today's developer needs to rapidly build and deploy code in a consistent, predictable, and declarative manner. This session will illustrate how companies can leverage Kubernetes, Harbor, Clair, and Concourse to achieve these goals. The session will provide a  solution for developing, building, and deploying applications using Kubernetes, Concourse, Harbor and Clair and Notary. A brief review of each of the technologies being discussed will be provided. The session will include a proposed end to end solution leveraging all of these technologies to provide a better development experience. A sample Go application will be used to illustrate an automated build process that will succeed or fail based on security scans of the underlying base Golang Docker image. The resulting Kubernetes application will only be run in the cluster if the CVE scans are under a configured threshold and the resulting Docker Image is signed by Harbor.  The session will conclude with a demonstration illustrating the unique capabilities of this type of workflow to initially build and then update an Application running on PKS and Kubernetes.

Speakers
TK

Thomas Kraus

VMware
Thomas is a Principal Technical Product Manager in VMwares Cloud Native Apps Business Unit where he works on modern application architectures and containers focusing on Kubernetes and Big Data. Thomas comes from Mesosphere where he was a Managing Principal Architect helping Enterprise... Read More →
avatar for Merlin Glynn

Merlin Glynn

Sr Technical Partner Manager,  VMware
Merlin Glynn is a Product Manager at VMware, where he builds products that help customers architect and deploy cloud-native applications. Merlin has been building complex environments as an architect for over 20 years, focusing on solutions for large enterprises and the academic and... Read More →


Tuesday May 1, 2018 11:45 - 12:15 BST
B3-M6+8

12:15 BST

Lunch
Tuesday May 1, 2018 12:15 - 13:40 BST
B3-M6+8

13:40 BST

Building a Services Marketplace on Kuberenetes - Alexey Zakharov, Altoros
Cloud Foundry provides heavy lifting of running stateless applications in the cloud. But what about data services? The default method is to create a BOSH release for every service. In this presentation, we will show you an alternative approach, when a data service with its service broker is deployed to Kubernetes. First, we will deploy a MariaDB instance using Helm on top of a Kubernetes cluster running on the Google Cloud Platform. Then, we will put the MariaDB service broker into a Docker container, deploy it to Kubernetes as a replicated pod, and expose to Cloud Foundry using the Service Load Balancer. Finally, we will register the service broker in the Cloud Foundry marketplace, provision a service instance, and connect our stateless application running on Cloud Foundry to this instance.

Speakers
avatar for Alexey Zakharov

Alexey Zakharov

Solutions Architect, Altoros
Alexey Zakharov is a Cloud Foundry/DevOps Engineer at Altoros. His main focus areas are cloud automation, virtualization, and training DevOps engineers in all things cloud. As part of the Cloud Foundry team at Altoros, Alexey has built multiple CF environments. He is also a contributor... Read More →



Tuesday May 1, 2018 13:40 - 14:10 BST
B3-M6+8

14:10 BST

A Beginner's Guide to Bosh - Ruben Koster, Stark & Wayne
Using Bosh to deploy Kubernetes is one of the best ways to get a production-ready cluster up and running. So, let's take a moment to explore this deployment option and to understand what Bosh is all about and how it differs from other configuration management tools.



Bosh is a powerful tool and goes beyond what most other configuration management tools offer. It will allow you to install and manage a Kubernetes cluster, but you can also use it to easily setup other systems, like a highly available MySQL cluster or a robust ELK system.



In this talk, we will provide you with a guide through the universe of Bosh's terminology and concepts. Afterwards, you will be able to get started with Bosh more easily and faster.



Adham and Johannes use Bosh on a daily basis at their job as Solutions Architects at Pivotal and can look back to four years of experience with Bosh.

Speakers
avatar for Ruben Koster

Ruben Koster

Staff Engineer - BOSH Core, VMware
Ruben Koster is a Cloud Foundry / BOSH veteran and has been active within the community for more than 5 years. As the first employee of Stark & Wayne, he has provided customer training and has spoken at the CF Summit Europe and Cloud Foundry Days Copenhagen.Some of his recent projects... Read More →



Tuesday May 1, 2018 14:10 - 14:40 BST
B3-M6+8

14:40 BST

CF & Kube the right way: Intro to the Cube project - Julian Friedman, IBM
Putting CF on Kubernetes is easy (just use a bosh CPI, or use fissile to convert bosh releases to containers and then deploy that). But that approach doesn't really give you any of the benefits of Kubernetes. You still have to manage two schedulers, you don't get to use any of the nice Kubernetes tools to interact with your app containers (because they're inside Diego, not Kubernetes) and your operators need to know how to debug and maintain two different systems, precariously balanced on top of each other.

Cube is a proof of concept for combining CF and Kubernetes the right way: by using Kubernetes as a (pluggable) scheduler for CF, alongside Diego. CF provides the developer abstraction, letting developers focus on stateless apps and rapid development. Under the covers Cube converts apps in to first-class Kubernetes Deployments and keeps them in sync: The best of both worlds.

Speakers
JF

Julian Friedman

IBM
Julian Friedman (julz) is an IBMer and the project lead for Cloud Foundy's low-level container engine ("Garden") and the Application Autoscaler component. Over a long career he has worked on early cloud environments, Map/Reduce, performance optimisation for AI systems and, of course... Read More →


Tuesday May 1, 2018 14:40 - 15:10 BST
B3-M6+8

15:10 BST

PM Break
Tuesday May 1, 2018 15:10 - 15:40 BST
B3-M6+8

15:40 BST

BOSH Kube CPI - Dr. Max, IBM & Dmitriy Kalinin, Pivotal
Creating a BOSH Cloud Provider Interface (CPI) for Kubernetes (Kube) presents a unique challenge since Kubernetes does not try to hide underlying node updates, unlike a typical IaaS like GCP where VMs are transparently migrated between hosts. While it’s relatively easy to map BOSH concepts to Kube and get a CPI that deploys BOSH releases, BOSH has to behave similarly to the Deployment controller and manage Pod Disruption Budgets (PDBs) in order to automatically maintain expected workload uptime.

In this CPI we have solved these issues by taking advantage of existing Kubernetes primitives and connecting them to existing BOSH workflows. Additionally, as we tested the CPI we have also identified places where we can improve aspects of BOSH – e.g., speed and parallelism of resurrection – which as a whole will improve the BOSH toolset on any platform.

In this talk we will present our working prototype and demo using it to deploy the latest CloudFoundry Application Runtime as well as other releases on Kube. We will also demo updating Kube itself (draining nodes) while keeping BOSH managed workloads running. Secondly, we will discuss preliminary results using the CPI on public Kube offerings such as IBM Cloud, GCP, Azure. Finally, we will briefly mention our upcoming development roadmap.

Speakers
avatar for Dmitriy Kalinin

Dmitriy Kalinin

Principal Software Engineer, Pivotal
Dmitriy Kalinin works at Pivotal on various projects, most recently contributing to Kubernetes and Knative. Recently he has been working on several open source tools that help manage applications on Kubernetes.
avatar for Michael Maximilien

Michael Maximilien

CTO, IBM Cloud
CTO for IBM driving platform-as-a-service and Serverless OSS projects across the company. Leader for all of IBM Serverless developers. Active member of the Knative community, one of four committers in Knative client project.


Tuesday May 1, 2018 15:40 - 16:10 BST
B3-M6+8

16:10 BST

An introduction to BUCC (BOSH, UAA, Credhub and Concourse) - Ruben Koster, Stark & Wayne
The benefits of using BUCC (BOSH, UAA, Credhub and Concourse) will be demonstrated, by creating a real world concourse pipeline to deploy a production Cloud Foundry, using the cf-deployment repository. Topics which will be discussed include: cloud-config, config-server, credhub, Concourse Credhub integration, variables in deployment manifests.



Speakers
avatar for Ruben Koster

Ruben Koster

Staff Engineer - BOSH Core, VMware
Ruben Koster is a Cloud Foundry / BOSH veteran and has been active within the community for more than 5 years. As the first employee of Stark & Wayne, he has provided customer training and has spoken at the CF Summit Europe and Cloud Foundry Days Copenhagen.Some of his recent projects... Read More →


Tuesday May 1, 2018 16:10 - 16:40 BST
B3-M6+8

16:40 BST

Closing Remarks - Swarna Podila, Cloud Foundry
Speakers
avatar for Swarna Podila

Swarna Podila

Sr. Director, Community, Cloud Foundry Foundation
Swarna leads community efforts at the Cloud Foundry Foundation, fostering collaboration and promoting kindness. Prioritizing people over technology, she focuses on finding and amplifying the untold stories and lesser-known innovations of the people who comprise the Cloud Foundry community... Read More →


Tuesday May 1, 2018 16:40 - 17:10 BST
B3-M6+8

17:10 BST

Reception
Tuesday May 1, 2018 17:10 - 18:25 BST
B3-M6+8