Room 15AB - San Diego Convention Center [clear filter]
Monday, November 18

9:00am PST

CalicoCon: Hands-On Workshops to Network, Secure, and Operationalize Your Cluster hosted by Tigera (Additional Registration + Fee Required)
After attending CalicoCon, you will understand the basic and advanced networking for Kubernetes, including how to architect a SaaS or CaaS platform for security and scale. You will have hands-on experience securing your cluster from both basic and advanced threats, experience operationalizing through CI/CD automation, and how to integrate with your Security Operations Center. Visit the CalicoCon website to learn more.

A lab environment will be provided for every attendee. Your laptop will be required to access your lab.

How to Register: Pre-registration is required. To register for CalicoCon, add it on during your KubeCon + CloudNativeCon registration.

For questions regarding this event, please reach out to carson@tigera.io.

Monday November 18, 2019 9:00am - 5:00pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
Tuesday, November 19

10:55am PST

Beyond Storage Management - Andrew Large & Yinan Li, Google
Kubernetes added alpha support for persistent volume snapshotting in 1.12 through the Container Storage Interface (CSI). While having some limitations, this feature is critical to stateful workloads and serves as one of the building blocks for developing advanced, enterprise-grade capabilities around data protection.
This talk provides an overview of standard enterprise data protection policies and practices and discusses how those might map into Kubernetes. We’ll discuss the full scope of what data protection might look like in Kubernetes and considerations that go into building an enterprise-grade data protection solution, placing the volume snapshot work in a larger context, and propose some explicit potential future standards activities.


Yinan Li

Software Engineer, Google
Yinan Li is currently a Software Engineer at Google. He focuses on work that enriches Kubernetes with enterprise-grade data management capabilities and work that enables large-scale data processing on Kubernetes, including the Kubernetes scheduler backend for Apache Spark. Yinan is... Read More →

Andrew Large

Software Engineer, Google
Andrew Large is currently a software engineer at Google. He focuses on work that enriches Kubernetes with enterprise-grade data management capabilities in hybrid and multi-cloud environments. Prior to Google, Andrew led the cloud analytics teaocsm at Tintri - an enterprise storage... Read More →

Tuesday November 19, 2019 10:55am - 11:30am PST
Room 15AB - San Diego Convention Center Mezzanine Level

11:50am PST

Cortex 101: Horizontally Scalable Long Term Storage for Prometheus - Chris Marchbanks, Splunk
Cortex provides horizontally scalable, highly available, multi-tenant, long term storage for Prometheus metrics, and a horizontally scalable, Prometheus-compatible query API. Cortex allows users to deploy a centralised, globally aggregated view of all their Prometheus instances, storing data indefinitely. In this talk we will discuss Cortex's history, Cortex's architecture, and how to get started with Cortex. Cortex is a CNCF sandbox project.

avatar for Chris Marchbanks

Chris Marchbanks

Senior Software Engineer, Splunk
Chris is a Software Engineer at Splunk where he delivers observability for teams working on multiple internal Kubernetes clusters. He is a team member for two CNCF projects, Prometheus and Cortex. Outside of work, Chris enjoys skiing uphill in the mountains of Colorado.

Tuesday November 19, 2019 11:50am - 12:25pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
  Maintainer Track Sessions
  • Experience Level Any
  • Session Slides Included Yes

2:25pm PST

Introducing KFServing: Serverless Model Serving on Kubernetes - Ellis Bigelow, Google & Dan Sun, Bloomberg
Production-grade serving of ML models is a challenging task for data scientists. In this talk, we'll discuss how KFServing powers some real-world examples of inference in production at Bloomberg, which supports the business domains of NLP, computer vision, and time-series analysis. KFServing (https://github.com/kubeflow/kfserving) provides a Kubernetes CRD for serving ML models on arbitrary frameworks. It aims to solve 80% of model serving use cases by providing performant, high abstraction interfaces for common ML frameworks. It provides a consistent and richly featured abstraction that supports bleeding-edge serving features like CPU/GPU auto-scaling, scale to and from 0, and canary rollouts. KFServing's charter includes a rich roadmap to fulfill a complete story for mission critical ML, including inference graphs, model explainability, outlier detection, and payload logging.

avatar for Dan Sun

Dan Sun

Software Engineer Team Lead, Bloomberg
Dan Sun is a team lead of the Data Science Serverless Runtime team at Bloomberg. Focused on building mission-critical production ML inference managed solutions, he strives to understand and tackle data scientists' complex problems. He also has many years of experience at Bloomberg... Read More →

Ellis Bigelow

Software Engineer, Google
Ellis Bigelow is a software engineer at Google Cloud developing next generation systems for the AI Platform Prediction Service. In addition to his efforts on Google's managed product, he leads the open source project, Kubeflow/KFServing, a kubernetes-based serverless inferencing platform... Read More →

Tuesday November 19, 2019 2:25pm - 3:00pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
  Machine Learning + Data

3:20pm PST

Design Decisions for Communication Systems - Eric Anderson, Google
When hearing about a new programming language, one might learn it is imperative, strongly-typed, dynamically-type-checked, object-oriented, and garbage-collected. If they have used multiple languages in the past, they now have a pretty good view of the basic constraints of the language.

When it comes to communication systems, it's not as much common knowledge the design choices made and the impact they have. Come hear Eric Anderson discuss a variety of communication systems, from IPC to message queues to REST, modern and historical, and the various features they provide and some trade-offs involved. Learn where gRPC fits and how its design choices impact your service design.

avatar for Eric Anderson

Eric Anderson

Software Engineer, Google
Eric Anderson is the tech lead of gRPC Java as a software engineer at Google. He contributed to the gRPC wire protocol and is experienced with HTTP/2. Previously, he developed the Connectors 4 framework for the Google Search Appliance. Prior to Google, Eric maintained data-driven... Read More →

Tuesday November 19, 2019 3:20pm - 3:55pm PST
Room 15AB - San Diego Convention Center Mezzanine Level

4:25pm PST

Understanding and Troubleshooting the eBPF Datapath in Cilium - Nathan Sweet, DigitalOcean
The advent of eBPF (extended Berkeley Packet Filters) has contributed significantly to container networking progress. However, the tooling for diagnosing and troubleshooting eBPF issues is nascent, and most members of the K8s and Linux communities are unfamiliar with it.

This talk will help demystify eBPF and cover its history. We'll present the default network datapath of the Linux kernel and contrast it in depth with how various eBPF program types diverge from this datapath. In addition, we'll match up the ways in which cilium implements various CNI and K8s constructs/objects with their eBPF program type, so that you'll be able to identify the right troubleshooting methods easily. Finally, we'll match appropriate methods and tools to the various eBPF program types.

avatar for Nathan Sweet

Nathan Sweet

Senior Software Engineer, DigitalOcean
Nathan Sweet is a Senior Software Engineer at DigitalOcean that works on the managed Kubernetes team. He has been working on managed cloud products for the past 5 years, and managed Kubernetes products for the past 3 years. He focuses specifically on system and network performance... Read More →

Tuesday November 19, 2019 4:25pm - 5:00pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
Wednesday, November 20

10:55am PST

A Week in the Life of the Kubernetes Community - Dawn Foster, Pivotal & Jorge Castro, VMware
You’re new to Kubernetes and interested in contributing, but when you start poking through the community pages, you find a bunch of SIGs and so many meetings. What’s a SIG? Where should you start? Which meetings should you attend? How can you participate?

In this talk, Jorge and Dawn from SIG Contributor Experience will live out a week within the Kubernetes community by walking the audience through what happens in this busy community. As part of the day by day tour of the community, we will cover:
* Getting started and locating meeting calendars
* Finding and participating in SIGs
* Attending meetings and what to expect
* How to get involved
* Where to get help

New contributors, users interested in contributing, engineering managers whose teams are contributing, and anyone interested in learning about new ways to get involved in the Kubernetes community will benefit from attending.

avatar for Dawn Foster

Dawn Foster

Director of Open Source Community Strategy, VMware
Dawn is the Director of Open Source Community Strategy at VMware within the Open Source Program Office. She has 20+ years of experience at companies like Intel and Puppet with expertise in community building, strategy, open source software, metrics, and more. She is passionate about... Read More →
avatar for Jorge Castro

Jorge Castro

Community Manager, VMware
Jorge is a Community Manager at VMware where he helps to support and advance the open Kubernetes ecosystem. He works in SIG Contributor Experience on the Kubernetes Office Hours, running the YouTube channel, forums admin, and a bunch of miscellaneous programs. He resides in Ann Arbor... Read More →

Wednesday November 20, 2019 10:55am - 11:30am PST
Room 15AB - San Diego Convention Center Mezzanine Level

11:50am PST

Did Kubernetes Make My p95s Worse? - Jian Cheung & Stephen Chan, Airbnb
When Airbnb first evaluated Kubernetes, they explicitly tested for performance and saw no significant differences. Then in 2019, as Airbnb’s migration of services from EC2/Chef to Kubernetes went into full swing, performance problems started cropping up. Service owners noticed significant latency increases which threatened to halt the overall move to Kubernetes. This talk will share Airbnb’s journey on performance gains and losses in its mass migration to Kubernetes. It will dive into the investigations Airbnb has done, from hardware differences, to cluster settings, to container configurations, to service language problems, and more.


Stephen Chan

Software Engineer, Airbnb
Stephen has worked on Airbnb during much of its Kubernetes migration, from the first production service to hundreds of services running across many clusters and different environments. He previously spoke about a few custom controllers in use at Airbnb at Kubecon 2018.
avatar for Jian Cheung

Jian Cheung

Software Engineer, Airbnb
Jian Cheung is a software engineer on the Compute Infrastructure Team at Airbnb. He works on supporting application and infrastructure service abstractions running on Kubernetes. He has previously spoken about [performance gotchas on Kubernetes](https://kccncna19.sched.com/event/UaXm/did-kubernetes-make-my-p95s-worse-jian-cheung-stephen-chan-airbnb... Read More →

Wednesday November 20, 2019 11:50am - 12:25pm PST
Room 15AB - San Diego Convention Center Mezzanine Level

2:25pm PST

Deep Dive: CNI - Bryan Boreham, Weaveworks & Dan Williams, Red Hat
CNI, the Container Network Interface, is a small but critical piece of infrastructure linking runtimes such as Kubernetes and CloudFoundry to dozens of different container network implementations. This session is aimed at implementers of network plugins and runtimes using CNI, as well as anyone interested in contributing to the project or becoming a maintainer. We will recap recent changes, look at the roadmap ahead, and have plenty of time for discussion and Q&A.

avatar for Dan Williams

Dan Williams

Manager, RHEL Networking, Red Hat
Dan is leading the OVN team. He is one of the architects of the OCP networking. Previously he has worked on Network Manager and made it ubiquitous for all linux distros like RHEL, Fedora, Ubuntu, Suse, Centos. Dan also lead the development of Multus, the plugin layer for Kubes, and... Read More →
avatar for Bryan Boreham

Bryan Boreham

Distinguished Engineer, Grafana Labs
Bryan is a Distinguished Engineer at Grafana Labs, the observability company.After first getting into programming as a kid, creating a video game called "Splat", Bryan's career has ranged from charting pie sales at a bakery to real-time pricing of billion-dollar bond trades.At Grafana... Read More →

Wednesday November 20, 2019 2:25pm - 3:00pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
  Maintainer Track Sessions

3:20pm PST

Is There a Place for Performance Sensitive Workloads in Kubernetes? - Gergely Csatari & Levente Kale, Nokia
Kubernetes and its ecosystem is used to manage the workload of several big web facing services, serving billions of users every day. But, the same stack is not quite ready to serve the "other" industry delivering the packets to the web-scale users: telecommunication. Due to the nature of the TelCo industry these applications are highly reliable and they must handle realtime media for a high amount of subscribers. There are some areas in the current Kubernetes architecture which are not -yet- ready to fulfill these requirements. This presentation lists these shortcomings, and also proposes various already existing, or new open-source projects needed to build a production-grade, Kubernetes based infrastructure for the edge - like it was done with Akraino Radio Edge cloud.

avatar for Gergely Csatari

Gergely Csatari

Senior Open Source Specialist, Nokia
Working in the telecom industry in the last two decades it was possible for Gergely to see the evolution from vendor specific hardware to virtualisation and cloud and a to cloud native. Currently Gergely is part of the OSPO team of Nokia CTO which is reponsible for open source. In... Read More →
avatar for Levente Kálé

Levente Kálé

Product architect, Nokia
Passionate cloud architect tirelessly working on marrying 5G with open source, containerization, and cloud-native; both within Nokia and Akraino.Always up for a chat regarding networking and resource management in Kubernetes, or the many challenges of putting TelCo stuff on everyone's... Read More →

Wednesday November 20, 2019 3:20pm - 3:55pm PST
Room 15AB - San Diego Convention Center Mezzanine Level

4:25pm PST

A Toolkit for Simulating Kubernetes Scheduling at Scale - Yuan Chen, JD.com
As Kubernetes becomes the de facto standard for container orchestration, new scheduling algorithms and systems are made for different scenarios and workloads. Unfortunately, it is very time and cost consuming to evaluate new schedulers or features in real K8S clusters at scale. We present a simulation toolkit, which can simulate large-scale K8S clusters and scheduling using a single machine plus a small number of containers. The simulator runs a real K8S master and schedules pods according to event traces generated from real K8S clusters. It provides a complete set of metrics, including resource utilization, detailed scheduling trace and performance metrics, enabling developers to evaluate the scheduling behavior and performance with a reasonable amount of confidence. We have used the toolkit extensively to optimize the scheduler for large scale K8S clusters (~10K nodes) at JD.com.

avatar for Yuan Chen

Yuan Chen

Principal Software Engineer, NVIDIA
Yuan Chen is a Principal Software Engineer at Nvidia. Before joining Nvidia, Yuan served as a staff software engineer at Apple, where he contributed to the development of Apple's Kubernetes infrastructure beginning in 2019. Yuan has actively contributed to the Kubernetes projects... Read More →

Wednesday November 20, 2019 4:25pm - 5:00pm PST
Room 15AB - San Diego Convention Center Mezzanine Level

5:20pm PST

How Ancestry Got Kubernetes to Run 2x Better Per Dollar Using AI - Darek Gajewski, Ancestry
Darek Gajewski, Principal Infrastructure Analyst for Ancestry.com, relies on Kubernetes to quickly integrate and deploy applications across Ancestry’s website, which receives 50-million visitors a month, and generates more than a billion dollars in revenue.

To get optimum performance out of Ancestry’s cloud applications, Ancestry employed artificial intelligence for continuous optimization of the application runtime environment. AI brings continuous optimization (CO) to the CI/CD process. In a PoC, Ancestry used AI to cut the resources of one application by more than 50 percent, with zero drop in performance. In this instance, Ancestry has been able to get two times the performance out of Kubernetes for every dollar spent.

AI-powered CO delivers a well-optimized infrastructure personalized to the workload and delivers better reliability, at higher performance, for much lower costs.

avatar for Darek Gajewski

Darek Gajewski

Principal Infrastructure Analyst, Ancestry
Darek has spent 10 years in the role of capacity planning and management, cost governance, optimizing infrastructure at both BlackBerry and Ancestry operations. He has successfully saved millions in infrastructure spend at both Ancestry and BlackBerry. With a background in development... Read More →

Wednesday November 20, 2019 5:20pm - 5:55pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
Thursday, November 21

10:55am PST

Life Outside the Cluster: Adding Virtual Machines to an Envoy Service Mesh - Megan O'Keefe & Ameer Abbas, Google
Service mesh tools add lots of functionality for Kubernetes-based applications, including policy automation and telemetry. But what if you're halfway through a migration to Kubernetes, and you still have applications running in virtual machines? In this talk, Megan O'Keefe and Ameer Abbas will demonstrate how to use Istio, an Envoy-based service mesh, to connect Kubernetes services with applications running in VMs. Demos will include: encrypting gRPC traffic between Pods and VMs, using Prometheus to view application metrics across both environments, and load balancing traffic between Kubernetes and VM instances. You will leave this talk understanding exactly how to integrate virtual machines with an Envoy-based service mesh.

avatar for Megan O'Keefe

Megan O'Keefe

Developer Relations Engineer, Google Cloud
Megan O’Keefe is a Developer Relations Engineer at Google Cloud, where they help platform developers build on top of Kubernetes to accelerate app development and reduce toil. A graduate of Wellesley College, Megan began their career at Cisco, where they built edge computing platforms... Read More →
avatar for Ameer Abbas

Ameer Abbas

Product Manager, Google
Ameer Abbas is a Google product manager focused on application modernization and cloud native platforms. He is also part of the Istio steering committee.

Thursday November 21, 2019 10:55am - 11:30am PST
Room 15AB - San Diego Convention Center Mezzanine Level
  Service Mesh

11:50am PST

Kubernetizing Big Data and ML Workloads at Uber - Mayank Bansal & Min Cai, Uber
Uber relies on Big Data and ML to make business critical decisions such as pricing, trip ETA, etc. Today, those workloads such as Hive and Spark are running on YARN. To save millions of dollars by efficient use of cluster resources, Uber is planning to use Kubernetes to co-locate BigData/ML and micro-service workloads.

Kubernetes is the de-facto standard for running micro-services. However, in comparison to YARN, it still lacks many features like hierarchical resource pools, elastic resource sharing, gang scheduling etc. To bridge this gap, we have re-architected Peloton to be a set of Kubernetes scheduler and controller plugins so that we can provide feature parity with YARN.

This talk will cover:
- Learnings of running large-scale BigData/ML on Kubernetes with Peloton
- Colocation of mixed workloads
- Federation across zones
- Feature and API parity with YARN

avatar for Min Cai

Min Cai

Sr. Staff Engineer, Uber
Min Cai is a Sr. Staff Engineer in Compute Platform team at Uber working on all-active datacenters, cluster management and micro-service deployment systems. He received his Ph.D. degree in Computer Science from Univ. of Southern California. Before joining Uber, he was a Sr. Staff... Read More →
avatar for Mayank Bansal

Mayank Bansal

Staff Engineer, Uber
Mayank Bansal is currently working as a Staff engineer at Uber in data infrastructure team. He is co-author of Peloton. He is Apache Hadoop Committer and Oozie PMC and Committer. Previously he was working at ebay in hadoop platform team leading YARN and MapReduce effort. Prior to... Read More →

Thursday November 21, 2019 11:50am - 12:25pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
  Machine Learning + Data

2:25pm PST

Rook: Cloud-Native Storage Orchestration (Introduction and Deep Dive) - Jared Watts, Upbound; Bassam Tabbara, Upbound; Travis Nielsen, Red Hat; & Alexander Trost, Cloudical
Rook is an open source cloud-native storage orchestrator for Kubernetes, providing the platform, framework, and support for a diverse set of storage solutions to natively integrate with cloud-native environments. In this session, the maintainers of Rook will be presenting a variety of topics that are aimed at all attendees with differing levels of experience. We will begin with an introduction to the project that is suitable for newcomers to learn what problems Rook solves. Then we will be showcasing multiple demos of the various storage providers supported by Rook, providing attendees with a practical and diverse exposure of Rook in action. We will conclude with an exploration of the longer term goals and roadmap of the project, inviting participation and feedback from the community to help steer the project direction and continue solving real problems with storage in the Kubernetes ecosystem.

avatar for Bassam Tabbara

Bassam Tabbara

CEO and Founder, Upbound
Bassam Tabbara is the CEO and Founder of Upbound, the cloud control plane company, and the creator of the Crossplane CNCF projects. Prior to Upbound, he was the CTO of Quantum, and CTO and co-founder of Symform, a P2P storage startup acquired by Quantum. Earlier he was a Partner Software... Read More →
avatar for Jared Watts

Jared Watts

Founding Engineer, Upbound
Jared Watts is a Founding Engineer at Upbound, where he is working on advancing cloud-native computing by enabling anyone to build their own cloud platform. He is also a co-creator of the open source Crossplane (https://crossplane.io) and Rook (https://rook.io) projects. Prior to... Read More →
avatar for Alexander Trost

Alexander Trost

Founding Engineer, Koor Technologies, Inc
I'm Alexander Trost, Founding Engineer of Koor Technologies, Inc. and maintainer of the Rook project. I'm happy to talk about anything container, storage and container storage related.
avatar for Travis Nielsen

Travis Nielsen

Senior Technical Staff Member, IBM
Travis Nielsen is a Senior Technical Staff Member for IBM where he is a maintainer on Rook and member of the ODF and Ceph engineering team. Prior to IBM and Red Hat, Travis worked in storage at Quantum and Symform, a P2P storage startup, and was an engineering lead for the Windows... Read More →

Thursday November 21, 2019 2:25pm - 3:55pm PST
Room 15AB - San Diego Convention Center Mezzanine Level
  Maintainer Track Sessions
  • Experience Level Any
  • Session Slides Included Yes

4:25pm PST

WIGM and Why You Want an Operator - Carson Anderson, Weave
Operators are amazing! At least that is what what they say. But what is the actual value they provide? Are they really better than just managing things with yaml? Yes, this is yet another presentation about operators. But with a twist: this presentation takes a new service from yaml, to templates, to two different operators.

The presentation will introduce WIGM. A very simple piece of software deployed in Kubernetes that has one job: download and serve a single GIF. But even the simplest software comes with operational concerns: How to deploy many copies with different configurations? How to update them reliably? How to change configuration without breaking everything?

This is a different kind of operator talk: One that covers the why of operators instead of just the how.

avatar for Carson Anderson

Carson Anderson

DevX-O, Weave
Carson has a deep passion for CICD, Kubernetes, Docker, and Distributed systems. Not just for building and managing these systems, but for finding ways to make them accessible and useful. Carson loves being a cloud native and open source liaison to Weave and the hundreds of developers... Read More →

Thursday November 21, 2019 4:25pm - 5:00pm PST
Room 15AB - San Diego Convention Center Mezzanine Level

5:20pm PST

Solving Multi-Cluster Network Connectivity With Submariner - Chris Kim, Rancher Labs & Miguel Angel Ajo, Red Hat
Today companies face the need to spread workloads across several clusters, leverage the capabilities of specific clouds, create more resilient services, or comply with GDPR by locating and securing specific data on specific geographic locations, but while that is possible today still communication between clusters is not solved in a transparent and secure way.

Currently the pods and services in two different kubernetes clusters are isolated from each other, network plugins in kubernetes don't have a common for way creating such connectivity. To connect two services in separate clusters the administrator needs to make the application endpoints public, some network plugins provide partial solutions to this problem and service meshes like Istio solve this and more at the cost of some level complexity and overhead.

https://submariner.io solves this problem connecting clusters at IP level

avatar for Chris Kim

Chris Kim

Field Engineer, Rancher Labs
Chris Kim is currently a field engineer at Rancher Labs. Chris originally developed Submariner as an open source project in response to the need he saw for cross cluster network connectivity while helping customers architect Kubernetes based solutions. He is an active contributor... Read More →
avatar for Miguel Angel Ajo Pelayo

Miguel Angel Ajo Pelayo

Senior Principal Software Engineer, Red Hat
Miguel is currently working at the Red Hat CTO Office Emergent technologies / EDGE for the MicroShift project.  Previously he worked on the Submariner project in the area of multi-cluster communication and security. He started contributing to OpenStack 7 years ago on the Neutron... Read More →

Thursday November 21, 2019 5:20pm - 5:55pm PST
Room 15AB - San Diego Convention Center Mezzanine Level

Filter sessions
Apply filters to sessions.