Guest lecture on Cloud-Native Applications and Kubernetes, in the Advanced Cloud Computing course (15-719) at the Carnegie Mellon University, February 2019.
Effective Building your Platform with Kubernetes == Keep it Simple Wojciech Barczyński
Effective Kubernetes is a continuous deployment process that the team understands. Keep it Simple. Think twice before going for more complex solutions.
Source: https://github.com/wojciech12/talk_effective_kubernetes
Presented at Cloud Native Talks #2 (Online Meetup) - https://www.meetup.com/Cloud-Native-Kubernetes-Warsaw/events/257125529/
Architecture of Cisco Container Platform: A new Enterprise Multi-Cloud Kubern...Sanjeev Rampal
Introduction to the architecture of Cisco Container Platform. This is a new offering from Cisco and is an enterprise grade Multi-Cloud Kubernetes based Container platform.. The presentation covers overall architecture, internal details on networking storage, operations and automation as well as multi-cloud features including the use of this platform alongwith hosted Kubernetes offerings from AWS (EKS) and Google (GKE)
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...SlideTeam
Introducing An Architectural Deep Dive With Kubernetes And Containers PowerPoint Presentation Slides. Present the need for the containers in an organization with the help of a readily available PPT slideshow. Discuss container architecture, use cases details to make your presentation elaborative. Showcase the features, architecture, installation roadmap, and the 30-60-90 day plan in Kubernetes with the help of modern-designed PPT infographics. Familiarize your viewers with the various components of Kubernetes with the help of content-ready Kubernetes Docker PPT visuals. Make full use of high-quality icons to make your presentation attention-grabbing and meaningful. Compare and contrast Kubernetes with docker swarm based on various parameters with the help of this attention-grabbing PPT slideshow. Elaborate on Kubelet, Kubectl, and Kubeadm with the help of labeled diagrams. Showcase the networking model of Kubernetes, security measures, and the development process with this easy-to-use docker Architecture PowerPoint template. Therefore, hit the download button now to grab this amazing presentation. https://bit.ly/3vtLeFb
Using kubernetes to lose your fear of using containersjosfuecas
I gave a session (https://www.meetup.com/Kubernetes-Sevilla/events/234750939/) with a little intro to kubernetes and also some useful tips to learn how to prepare applications to work well in this kind of platforms.
Cloud Foundry Summit 2015: Managing Multiple Cloud with a Single BOSH Deploym...VMware Tanzu
Speakers: Alexander Lomov and Alan Moran, Altoros
To learn more about Pivotal Cloud Foundry, visit http://www.pivotal.io/platform-as-a-service/pivotal-cloud-foundry.
Ever wondered how the K8s scheduler works, and how can you “help” it make the right decision for your application? In this session, we'll cover several different scheduling use-cases in K8s, what scheduling techniques are required in each and when to use them.
Effective Building your Platform with Kubernetes == Keep it Simple Wojciech Barczyński
Effective Kubernetes is a continuous deployment process that the team understands. Keep it Simple. Think twice before going for more complex solutions.
Source: https://github.com/wojciech12/talk_effective_kubernetes
Presented at Cloud Native Talks #2 (Online Meetup) - https://www.meetup.com/Cloud-Native-Kubernetes-Warsaw/events/257125529/
Architecture of Cisco Container Platform: A new Enterprise Multi-Cloud Kubern...Sanjeev Rampal
Introduction to the architecture of Cisco Container Platform. This is a new offering from Cisco and is an enterprise grade Multi-Cloud Kubernetes based Container platform.. The presentation covers overall architecture, internal details on networking storage, operations and automation as well as multi-cloud features including the use of this platform alongwith hosted Kubernetes offerings from AWS (EKS) and Google (GKE)
An Architectural Deep Dive With Kubernetes And Containers Powerpoint Presenta...SlideTeam
Introducing An Architectural Deep Dive With Kubernetes And Containers PowerPoint Presentation Slides. Present the need for the containers in an organization with the help of a readily available PPT slideshow. Discuss container architecture, use cases details to make your presentation elaborative. Showcase the features, architecture, installation roadmap, and the 30-60-90 day plan in Kubernetes with the help of modern-designed PPT infographics. Familiarize your viewers with the various components of Kubernetes with the help of content-ready Kubernetes Docker PPT visuals. Make full use of high-quality icons to make your presentation attention-grabbing and meaningful. Compare and contrast Kubernetes with docker swarm based on various parameters with the help of this attention-grabbing PPT slideshow. Elaborate on Kubelet, Kubectl, and Kubeadm with the help of labeled diagrams. Showcase the networking model of Kubernetes, security measures, and the development process with this easy-to-use docker Architecture PowerPoint template. Therefore, hit the download button now to grab this amazing presentation. https://bit.ly/3vtLeFb
Using kubernetes to lose your fear of using containersjosfuecas
I gave a session (https://www.meetup.com/Kubernetes-Sevilla/events/234750939/) with a little intro to kubernetes and also some useful tips to learn how to prepare applications to work well in this kind of platforms.
Cloud Foundry Summit 2015: Managing Multiple Cloud with a Single BOSH Deploym...VMware Tanzu
Speakers: Alexander Lomov and Alan Moran, Altoros
To learn more about Pivotal Cloud Foundry, visit http://www.pivotal.io/platform-as-a-service/pivotal-cloud-foundry.
Ever wondered how the K8s scheduler works, and how can you “help” it make the right decision for your application? In this session, we'll cover several different scheduling use-cases in K8s, what scheduling techniques are required in each and when to use them.
Deploying to Day N Operations of Kubernetes and Containerized AppsNebulaworks
If you're interested in using Kubernetes in the Cloud, then this talk is for you. Learn the deployment and management techniques that will help you manage Kubernetes clusters that you are supporting in the cloud. Apply concepts of
CI / CD1/CD2 to your development of container based applications.
Key Takeaways
* Learn how to deploy Kubernetes with IaC
* Learn common methods in developing IaC with a team
* Understand patterns in building and testing containers
* Standards on branching, project management and release engineering
Effective Kubernetes - Is Kubernetes the new Linux? Is the new Application Se...Wojciech Barczyński
I will tell you two stories about two different implementations of Kubernetes. One from Fashion mobile ecomerce. One from a Fintech. Kubernetes is not a silver bullet. But damn close ;).
Docker Meetup Tokyo #23 - Zenko Open Source Multi-Cloud Data Controller - Lau...Laure Vergeron
In a brisk presentation, we introduce Zenko, the multi-cloud data controller. Zenko is a stack of microservices (Docker containers) deployed via either Kubernetes or Docker Swarm.
The presentation comprised a demo deployment, so make sure to check out the video.
There is a lot of extra material at the end of the presentation going more in depth in topics that were only touched on briefly during the presentation.
PuppetConf 2017 | Adobe Advertising Cloud: A Lean Puppet Workflow to Support ...Nicolas Brousse
Building and scaling a multi-cloud solution that's enabled for cloud bursting is not a trivial task, and requires a lot of automation. While experiencing hyper-growth on the Adobe Advertising Cloud, our operations engineering team had to frequently update and improve its workflow in order to stay nimble and allow fast delivery of new infrastructure. At TubeMogul/Adobe Advertising Cloud, we implemented a lean Puppet workflow that enables the operations engineering team to deploy and support a broad range of services in a complex environment that supports hundreds of billions of requests a day. With over 150 changes released per day on its production infrastructure, the team had to adjust and tune its processes to enforce quality, standards, to review, and to prevent systems from breaking. In this talk, you will learn how we implemented our infrastructure as code by leveraging tools like Puppet, Gerrit, Terraform, and Jenkins, which together enable our private and public cloud infrastructures across 12 locations and four continents.
Helm is a package manager for Kubernetes. It helps streamline installing and managing applications. This session covers prerequisites for Helm, which include a basic understanding of containers and Kubernetes along with its architecture. It also covers the limitations that come with running deployments using the kubectl binary, Helm's architecture, templating with it and finally ends on a note highlighting the difference between versions 2 and 3.
Wouldn't it be great for a new developer on your team to have their dev environment totally set up on their first day? What about having your CI tests running in the background while you work on new features? What about having the confidence that your dev environment mirrors testing and prod? Containers enable this to become reality, along with other great benefits like keeping dependencies nice and tidy and making packaged code easier to share. Come learn about the ways containers can help you build and ship software easily.
Kubernetes has been a key component for many companies to reduce technical debt in infrastructure by:
• Fostering the Adoption of Docker
• Simplifying Container Management
• Onboarding Developers On Infrastructure
• Unlocking Continuous Integration and Delivery
During this meetup we are going to discuss the following topics and share some best practices
• What's new with Kubernetes 1.3
• Generate Cluster Configuration using CloudFormation
• Deploy Kubernetes Clusters on AWS
• Scaling the Cluster
• Integrating Ingress with Elastic Load Balancer
• Using Internal ELB's as Kubernetes' Service
• Using EBS for persistent volumes
• Integrating Route53
Portable CI/CD Environment as Code with Kubernetes, Kublr and JenkinsKublr
How to establish Kubernetes as your infrastructure for a truly cloud native environment for optimal productivity and cost.
Using Kublr for infrastructure as code approach for fast, reliable and inexpensive production-ready DevOps environment setup bringing together a combination of technologies - Kubernetes; AWS Mixed Instance Policies, Spot Instances and availability zones; AWS EFS; Nexus and Jenkins.
Best practices based on open source tools such as Nexus and Jenkins.
How to tackle build process dilemmas and difficulties including managing dependencies, hermetic builds and build scripts.
Interested in learning how to set up a Kubernetes cluster and use automation to test and deploy an app?
During this presentation, Laura Frank will take a deep dive into CI/CD best practices with Kubernetes and Amazon EKS. You will be introduced to AmazonEKS, Amazon’s Kubernetes service and CloudBees CodeShip, a flexible continuous integration (CI)/continuous delivery(CD) tool that runs your builds in the cloud. Designed with developers in mind, both EKS and CodeShip when used together reduce the complexity of running an app with Kubernetes.
Attend this webinar to learn:
- An overview of Amazon EKS
- How to set up your own CI/CD pipeline
- How to leverage CI/CD best practices with Kubernetes
In this webinar, Alex Casalboni will overview the main FaaS concepts and best practices (Function as a Service), explore the open-source FaaS options and discuss pros and cons of deploying and managing your own serverless platform on Kubernetes.
Deploying to Day N Operations of Kubernetes and Containerized AppsNebulaworks
If you're interested in using Kubernetes in the Cloud, then this talk is for you. Learn the deployment and management techniques that will help you manage Kubernetes clusters that you are supporting in the cloud. Apply concepts of
CI / CD1/CD2 to your development of container based applications.
Key Takeaways
* Learn how to deploy Kubernetes with IaC
* Learn common methods in developing IaC with a team
* Understand patterns in building and testing containers
* Standards on branching, project management and release engineering
Effective Kubernetes - Is Kubernetes the new Linux? Is the new Application Se...Wojciech Barczyński
I will tell you two stories about two different implementations of Kubernetes. One from Fashion mobile ecomerce. One from a Fintech. Kubernetes is not a silver bullet. But damn close ;).
Docker Meetup Tokyo #23 - Zenko Open Source Multi-Cloud Data Controller - Lau...Laure Vergeron
In a brisk presentation, we introduce Zenko, the multi-cloud data controller. Zenko is a stack of microservices (Docker containers) deployed via either Kubernetes or Docker Swarm.
The presentation comprised a demo deployment, so make sure to check out the video.
There is a lot of extra material at the end of the presentation going more in depth in topics that were only touched on briefly during the presentation.
PuppetConf 2017 | Adobe Advertising Cloud: A Lean Puppet Workflow to Support ...Nicolas Brousse
Building and scaling a multi-cloud solution that's enabled for cloud bursting is not a trivial task, and requires a lot of automation. While experiencing hyper-growth on the Adobe Advertising Cloud, our operations engineering team had to frequently update and improve its workflow in order to stay nimble and allow fast delivery of new infrastructure. At TubeMogul/Adobe Advertising Cloud, we implemented a lean Puppet workflow that enables the operations engineering team to deploy and support a broad range of services in a complex environment that supports hundreds of billions of requests a day. With over 150 changes released per day on its production infrastructure, the team had to adjust and tune its processes to enforce quality, standards, to review, and to prevent systems from breaking. In this talk, you will learn how we implemented our infrastructure as code by leveraging tools like Puppet, Gerrit, Terraform, and Jenkins, which together enable our private and public cloud infrastructures across 12 locations and four continents.
Helm is a package manager for Kubernetes. It helps streamline installing and managing applications. This session covers prerequisites for Helm, which include a basic understanding of containers and Kubernetes along with its architecture. It also covers the limitations that come with running deployments using the kubectl binary, Helm's architecture, templating with it and finally ends on a note highlighting the difference between versions 2 and 3.
Wouldn't it be great for a new developer on your team to have their dev environment totally set up on their first day? What about having your CI tests running in the background while you work on new features? What about having the confidence that your dev environment mirrors testing and prod? Containers enable this to become reality, along with other great benefits like keeping dependencies nice and tidy and making packaged code easier to share. Come learn about the ways containers can help you build and ship software easily.
Kubernetes has been a key component for many companies to reduce technical debt in infrastructure by:
• Fostering the Adoption of Docker
• Simplifying Container Management
• Onboarding Developers On Infrastructure
• Unlocking Continuous Integration and Delivery
During this meetup we are going to discuss the following topics and share some best practices
• What's new with Kubernetes 1.3
• Generate Cluster Configuration using CloudFormation
• Deploy Kubernetes Clusters on AWS
• Scaling the Cluster
• Integrating Ingress with Elastic Load Balancer
• Using Internal ELB's as Kubernetes' Service
• Using EBS for persistent volumes
• Integrating Route53
Portable CI/CD Environment as Code with Kubernetes, Kublr and JenkinsKublr
How to establish Kubernetes as your infrastructure for a truly cloud native environment for optimal productivity and cost.
Using Kublr for infrastructure as code approach for fast, reliable and inexpensive production-ready DevOps environment setup bringing together a combination of technologies - Kubernetes; AWS Mixed Instance Policies, Spot Instances and availability zones; AWS EFS; Nexus and Jenkins.
Best practices based on open source tools such as Nexus and Jenkins.
How to tackle build process dilemmas and difficulties including managing dependencies, hermetic builds and build scripts.
Interested in learning how to set up a Kubernetes cluster and use automation to test and deploy an app?
During this presentation, Laura Frank will take a deep dive into CI/CD best practices with Kubernetes and Amazon EKS. You will be introduced to AmazonEKS, Amazon’s Kubernetes service and CloudBees CodeShip, a flexible continuous integration (CI)/continuous delivery(CD) tool that runs your builds in the cloud. Designed with developers in mind, both EKS and CodeShip when used together reduce the complexity of running an app with Kubernetes.
Attend this webinar to learn:
- An overview of Amazon EKS
- How to set up your own CI/CD pipeline
- How to leverage CI/CD best practices with Kubernetes
In this webinar, Alex Casalboni will overview the main FaaS concepts and best practices (Function as a Service), explore the open-source FaaS options and discuss pros and cons of deploying and managing your own serverless platform on Kubernetes.
An overview of the Kubernetes architectureIgor Sfiligoi
This talk provides a 101 introdution to Kubernetes from a user point of view.
Aimed at service providers, it was presented at the GPN Annual Meeting 2019. https://conferences.k-state.edu/gpn/
Watch this presentation and learn about Kubernetes Networking:
How to build applications without knowing subnets & IP addresses and build modern cloud-friendly applications in an agile fashion.
Cluster-as-code. The Many Ways towards KubernetesQAware GmbH
CloudLand, Juni/Juli 2022, Mario-Leander Reimer (@LeanderReimer, Principal Software Architect bei QAware).
== Dokument bitte herunterladen, falls unscharf! Please download slides if blurred! ==
Kubernetes is the de-facto standard when it comes to container orchestration. But why is there is no established, standard and uniform way to spin-up and manage a single or even a whole farm of Kubernetes clusters yet? Instead, a whole bunch of different and mostly incompatible ways towards Kubernetes exist today. Each with its own pros and cons in regards to ease of use, flexibility and many other requirements. In this session we will have a closer look at the different available options to create, manage and operate Kubernetes clusters at scale.
OSDC 2018 | Three years running containers with Kubernetes in Production by T...NETWAYS
The talk gives a state of the art update of experiences with deploying applications in Kubernetes on scale. If in clouds or on premises, Kubernetes took over the leading role as a container operating system. The central paradigm of stateless containers connected to storage and services is the core of Kubernetes. However, it can be extended to distributed databases, Machine Learning, Windows VMs in Kubernetes. All these applications have been considered as edge cases a few years ago, however, are going more and more mainstream today.
Exploring a simpler, more portable, less overhead solution to deploy Elastics...LetsConnect
After the last release of Component Pack for IBM Connections, some time has been spent reflecting and discussing the solution for supplying IBM Connections services to customers to enhance collaboration and boost productivity.
Come join us as one of our advisory engineers walks through a simpler, more cost effective, less overhead proof of concept solution to deploy Elasticsearch Pink Metrics and Customizer for IBM Connections – a totally flexible solution that can be deployed anywhere
OpenShift 4, the smarter Kubernetes platformKangaroot
OpenShift 4 introduces automated installation, patching, and upgrades for every layer of the container stack from the operating system through application services.
Kubernetes Forum Seoul 2019: Re-architecting Data Platform with KubernetesSeungYong Oh
Session Video: https://youtu.be/7MPH1mknIxE
In this talk, we share Devsisters' journey of migrating its internal data platform including Spark to Kubernetes, with its benefits and issues.
데브시스터즈에서 데이터플랫폼 컴포넌트를 쿠버네티스로 옮기면서 얻은 장점들과 이슈들에 대해 공유합니다.
Conference session page:
- English: https://sched.co/WIRK
- Korean: https://sched.co/WYRc
How to Scale With Helix Core and Microsoft Azure Perforce
Microsoft Azure helps teams increase their speed, gain flexibility, and save time. Using Helix Core with Azure you maximizes cloud benefits. You can scale to meet both current and future deployment demands. And this powerful combination helps secure your most valuable IP assets.
So, where do you start? What do you need to set up your teams for success? How can you expedite your pipelines to deliver ahead of your competitors?
Join Chuck Gehman from Perforce to learn more about:
-Compute, storage, and security options from Azure.
-Strategies that boost your cloud investment.
-Tips to secure your data.
-Best practices for global deployments.
Solving enterprise challenges through scale out storage & big compute finalAvere Systems
Google Cloud Platform, Avere Systems, and Cycle Computing experts will share best practices for advancing solutions to big challenges faced by enterprises with growing compute and storage needs. In this “best practices” webinar, you’ll hear how these companies are working to improve results that drive businesses forward through scalability, performance, and ease of management.
The slides were from a webinar presented January 24, 2017. The audience learned:
- How enterprises are using Google Cloud Platform to gain compute and storage capacity on-demand
- Best practices for efficient use of cloud compute and storage resources
- Overcoming the need for file systems within a hybrid cloud environment
- Understand how to eliminate latency between cloud and data center architectures
- Learn how to best manage simulation, analytics, and big data workloads in dynamic environments
- Look at market dynamics drawing companies to new storage models over the next several years
Presenters communicated a foundation to build infrastructure to support ongoing demand growth.
A perspective on AWS roadmap and selected recent announcements (primarily based on impressions from Re:Invent 2018, slightly updated in December 2019).
The Serverless Paradigm, OpenWhisk and FIWAREAlex Glikson
Outline:
1. Overview of Serverless
2. OpenWhisk – open source ‘Serverless’ platform
3. Challenges of Serverless
4. Serverless and FIWARE
Alex Glikson
Cloud Platforms, IBM Research
Architect, FIWARE Cloud Hosting
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...UiPathCommunity
💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™:
See how to accelerate model training and optimize model performance with active learning
Learn about the latest enhancements to out-of-the-box document processing – with little to no training required
Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages
This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath.
Speakers:
👨🏫 Andras Palfi, Senior Product Manager, UiPath
👩🏫 Lenka Dulovicova, Product Program Manager, UiPath
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Jeffrey Haguewood
Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows.
We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases.
This video focuses on the notifications, alerts, and approval requests using Slack for Bonterra Impact Management. The solutions covered in this webinar can also be deployed for Microsoft Teams.
Interested in deploying notification automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Connector Corner: Automate dynamic content and events by pushing a button
Cloud-Native Application and Kubernetes
1. Cloud-Native Applications
and Kubernetes* (k8s)
Alex Glikson
15-719, S19
February 25th, 2019
CMU CS 15719 Advanced Cloud Computing S19 1
*Trivia: Κυβερνήτης – steersman, a person who steers a ship
https://en.wiktionary.org/wiki/%CE%BA%CF%85%CE%B2%CE%B5%CF%81%CE%BD%CE%AE%CF%84%CE%B7%CF%82
Icons made by Freepik
from www.flaticon.com
February 25, 2019
2. Outline
February 25, 2019 2
Background • Cloud-Native Applications
K8s Overview • K8s In a Nutshell
• Architecture
Applications • Unit of Deployment: Pod
• Composite Applications
Control Plane • Scheduler
• Custom Resources and Controllers
Summary • Related Projects
• Main Takeaways
CMU CS 15719 Advanced Cloud Computing S19
3. Cloud-Native Applications: Motivation
• Elasticity and ubiquity of cloud infrastructure enabled new
generation of applications, with a potential to disrupt their
markets, or to create new markets, e.g.:
o Netflix
o Airbnb
o Spotify
o Pinterest
o Snapchat
o Whatsapp
3CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
4. Cloud-Native Applications: Example, Requirements
• Example: Netflix
o Value proposition (competitive advantage):
• Low cost video streaming with superb user experience, at scale
o Application properties and unique requirements:
• >100 millions of users in 190 countries (most of them in the US)
– Vast variance in load, within minutes (evenings, campaigns, etc)
• 10s of thousands of servers
– At least one server will fail every day
• 1000s of daily application changes, across 100s of functions
– Video streaming, catalog, recommendations, subscription, etc
– ~1 update every minute
4CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
5. Cloud-Native Applications: Requirements → Design Principles
• Low Cost + Variance in Load (+User Experience)
o Can’t afford over- or under-provisioning → Auto-Scaling
• Hardware Failures + High Scale (+User Experience)
o Accommodate HW failures without downtime → Design for Failure
• Frequent Application Updates + High Scale (+User Experience)
o Can’t afford redeploying everything every time → Modularity
o Can’t afford testing everything every time → Stable Internal APIs
• Frequent Application Updates + Low Cost (+User Experience)
o Can’t afford manual QA/admin effort for each update → Automation
5CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
6. Cloud–Native Applications: Design → Common Services
Design Principle Common Service
Auto-Scaling
Horizontal Auto-Scaling
Elastic Load Balancing
Design for Failure Replication
Health Monitoring
Modularity
Decoupling into homogenous (micro)services*
Unified packaging (across dev/test/prod) with Docker
API-driven composition
Discovery
Routing
Automation
Fully programmable life cycle of components*
Observability (monitoring, tracing, etc)
6CMU CS 15719 Advanced Cloud Computing S19February 25, 2019 * not a service
7. Cloud–Native Applications: Platforms
• New platforms emerged, offering common services (features)
that make it easier to develop cloud-native applications
o Auto-scaling, replication, load balancing, health monitoring,
service discovery, application-level routing, programmability
o Commonly referred as ‘Platform as a Service’ (PaaS)
7
Google App Engine
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
Kubernetes
8. Outline
February 25, 2019 8
Background ✓ Cloud-Native Applications
K8s Overview • K8s In a Nutshell
• Architecture
Applications • Unit of Deployment: Pod
• Composite Applications
Control Plane • Scheduler
• Custom Resources and Controllers
Summary • Related Projects
• Main Takeaways
CMU CS 15719 Advanced Cloud Computing S19
9. Kubernetes (k8s):
Open-Source, Cloud-Native & Container-Based Platform
Open source platform for
deployment and management of
arbitrary container-based, cloud-native
applications on clusters of servers
9
• Originally developed by Google,
based on Borg and Omega ideas
• Available to all on github.com
• As of 02’2019: ~2000 contributors
• Common Services
• Programmable
• Extensible
Physical or virtual, public or private
cloud (e.g., EC2,OpenStack)
• Specification
• Provisioning
• Monitoring
• Logging
• HA
• Scaling
• Updates
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
Packaging and runtime
isolation using Docker
• Auto-Scaling
• Design for Failure
• Modularity, APIs
• Automation
10. Kubernetes in a Nutshell
10
https://www.youtube.com/embed/4ht22ReBjno?start=0&end=220&autoplay=1
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
11. Kubernetes in a Nutshell
11CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
12. Kubernetes Architecture
12
Inspired by: https://x-team.com/blog/introduction-kubernetes-architecture/
Master Node
API Server
DB Proxy
ControllersControllersControllers
DB
(etcd)
Scheduler
Worker Node
Docker
…Pod Pod Pod
kubelet
Worker Node
Docker
…Pod Pod Pod
kubelet
kubectl, dashboard, SDKs
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
13. February 25, 2019
Pod: One or More Containers + Resources + Labels
Why Multi-Container Pods?
• Scaling/replication unit: runtime
components that must run together
• Sidecar pattern: “secondary” functions
deployed in separate containers
– e.g., web content synchronization
• Ambassador/Proxy pattern: simplify
access to an external system
– e.g., key-value store
• Adapter pattern: simplify access from
an external system
– e.g., monitoring
• Source: https://www.usenix.org/node/196347
13
Source: https://www.slideshare.net/ssuser6bb12d/kubernetes-
introduction-71846110
Containers in a Pod often share (some) namespaces
Labels
app: myApp
Horse +
saddle
CMU CS 15719 Advanced Cloud Computing S19
14. Event-Driven Architecture in k8s: Pod Creation
14
Source: https://blog.heptio.com/core-kubernetes-jazz-improv-over-orchestration-a7903ea92ca
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
15. Outline
February 25, 2019 15
Background ✓ Cloud-Native Applications
K8s Overview ✓ K8s in a Nutshell
✓ Architecture
Applications ✓ Unit of Deployment: Pod
• Composite Applications
Control Plane • Scheduler
• Custom Resources and Controllers
Summary • Related Projects
• Main Takeaways
CMU CS 15719 Advanced Cloud Computing S19
16. From Pods to Applications: Deployment, Replica Set
• Goal: Maintain a given number of replica’s of a given Pod
o HA, load balancing
• Example: NGiNX web server
16
Pod
template
Containers specification
Resource type
Desired # of replicas
Reference by labels
nginx.yml
Polo
team
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
Replica Set
properties
17. Composite Application Types in Kubernetes
• Deployment (Replica Set)
o Maintains a given number of replica’s of a given Pod
• High availability, load balancing
• Daemon Set
o Runs exactly one instance of a given Pod on every node
• Access to unique host resources, load balancing
• Stateful Set
o Maintains a scalable collection of Pods with unique roles
• Persistent resource and identities
• Job
o Enforces policies for execution and completion of groups of tasks (e.g., MPI)
• Controlled parallelism, work queues, schedule-based execution, etc
• Custom
• Your own
17
Polo
team
Life
guard
Goal
keeper
Relay team
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
18. Outline
February 25, 2019 18
Background ✓ Cloud-Native Applications
K8s Overview ✓ K8s in a Nutshell
✓ Architecture
Applications ✓ Unit of Deployment: Pod
✓ Composite Applications
Control Plane • Scheduler
• Custom Resources and Controllers
Summary • Related Projects
• Main Takeaways
CMU CS 15719 Advanced Cloud Computing S19
19. Kubernetes Default Scheduler
• Main goal: placement of Pods on Nodes
o Triggered primarily by watching for new Pods in ‘pending’ state
• FIFO scheduling
o Supports priority-based arbitration and eviction
• Emphasis on scale and speed
o No complex logic (e.g., superlinear in number of nodes)
19CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
20. Kubernetes Default Scheduler: Placement Policies
• Filter() + Prioritize()
• Filtering:
o Configurable set of node predicates
o A node must pass all predicates to qualify for prioritization
• Prioritization:
o Optimization goals expressed as utility functions
o Prefer nodes with maximal utility
• Can target multiple optimization goals with weights
20CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
21. Placement Policies: Built-In Predicates
• PodFitsResources
– CPU/memory allocation
• PodMatchNodeSelector
– Labels match - e.g., specific HW
capabilities (e.g., SSD storage)
• MatchInterPodAffinity
– Same/Different node as given
(running) Pod(s)
21CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
Node 1
8 CPUs
16 GB mem
Node 2
8 CPUs
32 GB mem
Node 3
8 CPUs
32 GB mem
disk=SSD
4 CPU
8GB mem
app=Web
3 CPU
8GB mem
app=DB
4 CPU
16GB mem
NodeSelector:
disk=SSD
?
4 CPU
16GB mem
Anti-Affinity:
app=DB
?
22. Placement Policies: Built-In Priority Functions
• InterPodAffinity
– Maximal affinity with given Pods
• LeastResourceAllocation
– Maximal spreading
• MostResourceAllocation
– Maximal packing
• BalancedResourceAllocation
– Minimal resource fragmentation
• ImageLocality
– Minimal startup time
22CMU CS 15719 Advanced Cloud Computing S19
Node 1
8 CPUs
16 GB mem
Node 2
8 CPUs
32 GB mem
Node 3
8 CPUs
32 GB mem
disk=SSD
4 CPU
8GB mem
app=Web
3 CPU
8GB mem
app=DB
1 CPU
8GB mem
PrefferedAffinity:
app=DB
?
23. Placement Policies: Built-In Predicates and Priorities
Predicates*
• PodFitsResources
– CPU/memory allocation
• PodMatchNodeSelector
– Labels match - e.g., specific HW
capabilities (e.g., SSD storage)
• MatchInterPodAffinity
– Same node as given (running)
Pod(s)
Priorities*
• InterPodAffinity
– Maximal affinity with given Pods
• LeastResourceAllocation
– Maximal spreading
• MostResourceAllocation
– Maximal packing
• BalancedResourceAllocation
– Minimal resource fragmentation
• ImageLocality
– Minimal startup time
23
(*) Partial List. Can also implement
custom predicates/prioritizers
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
24. Placement Policies: Affinity / Anti-Affinity Examples
• Affinity = same host/rack/zone/etc, Anti-affinity = different
• Example 1:
o If a host fails, at most one pod out of N is down (high availability)
• Replica Set with N replicas, host-level anti-affinity
• Example 2:
o Maintain one pod in each region, to reduce latency to clients
• Daemon Set with region-level anti-affinity
• Example 3:
o Keep all tasks of a job in the same rack, for better performance
• Job with rack-level affinity
24CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
26. Placement Policies – Example: Web Server + Redis
26
Bug!!
Different hosts Same host
Reference
by labels
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
If respective Redis server is killed,
the web server is not re-deployed
27. Outline
February 25, 2019 27
Background ✓ Cloud-Native Applications
K8s Overview ✓ K8s in a Nutshell
✓ Architecture
Applications ✓ Unit of Deployment: Pod
✓ Composite Applications
Control Plane ✓ Scheduler
• Custom Resources and Controllers
Summary • Related Projects
• Main Takeaways
CMU CS 15719 Advanced Cloud Computing S19
28. Extending Kubernetes with Custom Resources
• Example: Nuclio serverless function as a custom resource type in k8s
• Under the covers, Nuclio Controller maintains K8s Pods for each function
February 25, 2019 28Source:
https://github.com/nuclio/nuclio
NuclioFunction
resource instance
CMU CS 15719 Advanced Cloud Computing S19
New resource
type definition:
NuclioFunction
29. Extending Kubernetes with Custom Resources
Example: Life Cycle of NuclioFunction Resources*
• Cluster initialization [Administrator]
o Register NuclioFunction CRD
o Deploy Nuclio Controller
o Subscribe Nuclio Controller to notifications for NuclioFunction (and related) events
• Function deployment [Application Owner]
o NuclioFunction resource is created
o Nuclio Controller is triggered by the API server
o Nuclio Controller creates necessary K8s resources (Pods, routes, etc)
• Function invocation [Application User]
o Trigger is invoked (e.g., http request)
o Scaling logic is invoked (if necessary)
o Payload is forwarded to the Pod selected to run the function invocation
29CMU CS 15719 Advanced Cloud Computing S19February 25, 2019 * Conceptual worfklow
30. Outline
February 25, 2019 30
Background ✓ Cloud-Native Applications
K8s Overview ✓ K8s in a Nutshell
✓ Architecture
Applications ✓ Unit of Deployment: Pod
✓ Composite Applications
Control Plane ✓ Scheduler
✓ Controllers
Summary • Related Projects
• Main Takeaways
CMU CS 15719 Advanced Cloud Computing S19
31. Related Project (Partial List)
• Virtual Kubelet
o Proxy to another container management platform
• kube-batch aka kube-arbitrator
o Gang scheduling (e.g., MPI), non-FIFO scheduling
• Knative
o Serverless web applications on Kubernetes
• De-scheduler
o Eviction of pods – e.g., to reduce resource fragmentation
• Rapidly growing ecosystem of projects governed by CNCF
o https://www.cncf.io/
31CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
32. February 25, 2019
Summary: Main Takeaways
1. Docker + Cloud-Native ➔ K8s
o Container-native platform targeting arbitrary applications
2. Pod = collection of containers
o Composable into Replica Sets, Daemon Sets, Jobs, Your Own Pattern
3. K8s API server provides CRUD and watchers (“events”)
o Triggering a set of controllers that orchestrate the life cycle of resources
4. K8s has a powerful, flexible and extensible Scheduler
5. K8s is fun!
32CMU CS 15719 Advanced Cloud Computing S19
34. Trends: Linux Containers
• Linux features providing isolation within a single OS:
o Hardware resources: cgroups
• CPU, RAM, I/O devices, etc
o OS resources: namespaces, e.g.:
• USER, PID, NET, MNT
• De-facto standard to efficiently run services/jobs at scale
o Enable workload consolidation, infrastructure elasticity
o Pioneered by Google (Linux features, massive internal use*)
• 2 billion containers per week! (>3000 per second on average)
34CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
35. Trends: Linux Containers – Implementations
• Example (open source) implementations:
o LXC, Cloud Foundry, Mesos, YARN, …
• Docker (Moby*)
o Targeting arbitrary applications, e.g. by offering:
• Flexible packaging
• Seamless inter-container network communication
• Configurable cluster-wide storage/network (SDN, NAS, etc)
o Developer-friendly
• Lightweight standalone engine
• Intuitive git-style image management
• Easy sharing and reuse of images - Docker Hub
35CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
36. Trends: Linux Containers – Popular Docker Images*
Programming LanguageData ProcessingWeb ServerOperating System
36CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
38. Surfacing Applications to Users: Service
• Goal: Maintain a given number of replica’s of a given Pod
o HA, load balancing
• Example: NGiNX web server
38
Pod
template
Resource type
Port mapping
Reference by labels
“Deployment”
resource
“Service”
resource
Polo
team
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
39. Another Example of Composite Application Type: Job
• Goal: enforce policies for execution and completion of groups
of tasks (batch jobs, scheduled jobs)
39
Relay
race
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
41. February 25, 2019
Controller Example - Replica Set for Deployment myD:
41
Event:
User changed
#replicas
Event:
Pod failed
Note:
not real code
CMU CS 15719 Advanced Cloud Computing S19
42. • One of the most vibrant projects on Github
o 48K stars, 16K forks, 44K PRs, 75K commits, 2000 contributors
https://github.com/kubernetes/kubernetes/pulse/monthly
Kubernetes: Open Source Project and Community
42
9 lines of code
per minute
CMU CS 15719 Advanced Cloud Computing S19February 25, 2019
43. Kubernetes: Commercial Ecosystem
• Governed by Cloud Native Computing Foundation (CNCF)
o Industry-wide consensus among leading (and competing) companies
• Multiple commercial Kubernetes products and hosted offerings
o Red Hat, IBM, CoreOS, etc; Google GKE, Amazon EKS, etc
43CMU CS 15719 Advanced Cloud Computing S19February 25, 2019