SlideShare a Scribd company logo

Nagivating the interface between open and closed source software

Download as PPTX, PDF
Craig Peters
Craig Peters

Lachie Evenson and Craig Peters talk about two open-source case studies and a framework for making decisions about open-sourcing projects at the Open Source Summit August 21, 2019, in San Diego California

Technology
1 of 19
Navigating the Interface between Open and Closed source software
Lachlan Evenson @LachlanEvenson • Program Manager in Azure Container Compute • Our team is responsible for building and supporting upstream open source projects • Active in the Kubernetes community • Kubernetes 1.16 release lead • CNCF Ambassador • Prior to Microsoft - worked at Deis where he assisted in workload migration to Kubernetes • Using and contributing to open source software for 8 years
Craig Peters @peterscraig • Program Manager in Azure Container Compute • Responsible for open source container dependencies like Kubernetes • Geologist by training, developer by practice • Systems integrator and sales engineer • Product manager 15+ years • Bicyclist, hiker, beer lover
? Open Closed
When considering open source… Who are you in this context? What are you trying to accomplish? Is it a core asset or differentiator?
What does it mean to be open? Closed Open to view and file issues Merge 3rd party commits Foundation
What does open mean in composed systems? Closed Open
Windows and Kubernetes Mixed OS Kubernetes Cluster Kubernetes APIs Linux control plane Linux node Windows node Windows Host OS Docker runtime kublet & kubeproxy Closed Open
Dimensions to consider • Speed • New capabilities • React to issues, vulnerabilities • Cost • Initial development • Maintenance • Support • Risk • Organizational/cultural • Contractual • Operational
Strategic options, at each level Speed, cost, risk Closed Open source Open to commits Open foundation Build • Fast • Expensive • Long term engineering & support • Moderate • Expensive • Long term engineering & support • Fast • Moderate • Organizational & cultural challenges • Fast • Moderate to inexpensive • Organizational & cultural challenges Adopt/Partner • Slow • Moderate • Complex relationship • Moderate • Moderate • Organizational challenge • Fast • Inexpensive • Legal, business, and cultural challenges • Fast • Moderate to inexpensive • Legal & cultural challenges Buy • Quick, then slow • Expensive • Commercial dependency • Fast • Moderate • Support dependency • Fast • Moderate • Support dependency • Fast • Moderate to inexpensive • Support dependency Windows Kubelet & kubeproxy
Case Study: Kubernetes Policy
Case Study: Kubernetes Policy • Open sourced an Azure specific policy controller for Kubernetes • Utilized Open Policy Agent (OPA) • But why is this policy controller Azure specific? • Community had similar interests Open to view and file issues
Case Study: Kubernetes Policy • Open sourced an Azure specific policy controller for Kubernetes • Utilized Open Policy Agent (OPA) • But why is this policy controller Azure specific? • Community had similar interests Open to view and file issues • Renamed to Kubernetes Policy Controller • Updated docs to be more generic • Project governance and onboarded contributors Merge 3rd party commits
Case Study: Kubernetes Policy • Open sourced an Azure specific policy controller for Kubernetes • Utilized Open Policy Agent (OPA) • But why is this policy controller Azure specific? • Community had similar interests Open to view and file issues • Renamed to Kubernetes Policy Controller • Updated docs to be more generic • Project governance and onboarded contributors Merge 3rd party commits • Community asking for a neutral home • Moved to Open Policy Agent org under CNCF • Renamed to Gatekeeper • Gatekeeper is a community-driven approach to policy on any Kubernetes cluster Foundation
Case Study: Kubernetes Policy Customers wanted a supported solution Azure policy for AKS Uses Gatekeeper project under the hood Continued upstream and downstream Product contains open and closed source components
Gatekeeper Speed, cost, risk Closed Open source Open to commits Open foundation Build • Fast • Expensive • Long term engineering & support • Moderate • Expensive • Long term engineering & support • Fast • Moderate • Organizational & cultural challenges • Fast • Moderate to inexpensive • Organizational & cultural challenges Adopt/Partner • Slow • Moderate • Complex relationship • Moderate • Moderate • Organizational challenge • Fast • Inexpensive • Legal, business, and cultural challenges • Fast • Moderate to inexpensive • Legal & cultural challenges Buy • Quick, then slow • Expensive • Commercial dependency • Fast • Moderate • Support dependency • Fast • Moderate • Support dependency • Fast • Moderate to inexpensive • Support dependency
Hopefully we’ve helped you think about… • What are your goals? • What kind of open do you want? • How do you make decisions? Are you interested in collaborating on the framework?
Q&A • Feedback • Links

Recommended

Getting started with Meteor for Android - Almog Koren, GoPlatfarm
Getting started with Meteor for Android - Almog Koren, GoPlatfarmGetting started with Meteor for Android - Almog Koren, GoPlatfarm
Getting started with Meteor for Android - Almog Koren, GoPlatfarm
DroidConTLV
 
Building Cloud Native Applications Using Azure Kubernetes Service
Building Cloud Native Applications Using Azure Kubernetes ServiceBuilding Cloud Native Applications Using Azure Kubernetes Service
Building Cloud Native Applications Using Azure Kubernetes Service
Dennis Moon
 
Gerrit + Jenkins = Continuous Delivery For Big Data
Gerrit + Jenkins = Continuous Delivery For Big DataGerrit + Jenkins = Continuous Delivery For Big Data
Gerrit + Jenkins = Continuous Delivery For Big Data
Stefano Galarraga
 
Mesos meetup @ shutterstock
Mesos meetup @ shutterstockMesos meetup @ shutterstock
Mesos meetup @ shutterstock
Brenden Matthews
 
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale
 
Berlin Apache Flink Meetup May 2015, Community Update
Berlin Apache Flink Meetup May 2015, Community UpdateBerlin Apache Flink Meetup May 2015, Community Update
Berlin Apache Flink Meetup May 2015, Community Update
Robert Metzger
 
An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...
An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...
An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...
VMware Tanzu
 
Sogeti Guru Night 2015: Changes in-software-development
Sogeti Guru Night 2015: Changes in-software-developmentSogeti Guru Night 2015: Changes in-software-development
Sogeti Guru Night 2015: Changes in-software-development
erwindeg
 

Recommended

Getting started with Meteor for Android - Almog Koren, GoPlatfarm
Getting started with Meteor for Android - Almog Koren, GoPlatfarmGetting started with Meteor for Android - Almog Koren, GoPlatfarm
Getting started with Meteor for Android - Almog Koren, GoPlatfarm
DroidConTLV
 
Building Cloud Native Applications Using Azure Kubernetes Service
Building Cloud Native Applications Using Azure Kubernetes ServiceBuilding Cloud Native Applications Using Azure Kubernetes Service
Building Cloud Native Applications Using Azure Kubernetes Service
Dennis Moon
 
Gerrit + Jenkins = Continuous Delivery For Big Data
Gerrit + Jenkins = Continuous Delivery For Big DataGerrit + Jenkins = Continuous Delivery For Big Data
Gerrit + Jenkins = Continuous Delivery For Big Data
Stefano Galarraga
 
Mesos meetup @ shutterstock
Mesos meetup @ shutterstockMesos meetup @ shutterstock
Mesos meetup @ shutterstock
Brenden Matthews
 
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale Webinar: Provide a Self-Service Portal for vSphere, AWS and Other ...
RightScale
 
Berlin Apache Flink Meetup May 2015, Community Update
Berlin Apache Flink Meetup May 2015, Community UpdateBerlin Apache Flink Meetup May 2015, Community Update
Berlin Apache Flink Meetup May 2015, Community Update
Robert Metzger
 
An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...
An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...
An Integrated Pipeline for Private and Public Clouds with Jenkins, Artifactor...
VMware Tanzu
 
Sogeti Guru Night 2015: Changes in-software-development
Sogeti Guru Night 2015: Changes in-software-developmentSogeti Guru Night 2015: Changes in-software-development
Sogeti Guru Night 2015: Changes in-software-development
erwindeg
 
How to share a Kubernetes cluster securely through Lens spaces
How to share a Kubernetes cluster securely through Lens spacesHow to share a Kubernetes cluster securely through Lens spaces
How to share a Kubernetes cluster securely through Lens spaces
LibbySchulze
 
Cloud OS accelerates product development
Cloud OS accelerates product developmentCloud OS accelerates product development
Cloud OS accelerates product development
Tom Van Gramberen
 
GitHub for partners
GitHub for partnersGitHub for partners
GitHub for partners
Lorenzo Barbieri
 
CloudFest 2018 Hackathon Project Results Presentation - CFHack18
CloudFest 2018 Hackathon Project Results Presentation - CFHack18CloudFest 2018 Hackathon Project Results Presentation - CFHack18
CloudFest 2018 Hackathon Project Results Presentation - CFHack18
Jeffrey J. Hardy
 
August Flink Community Update
August Flink Community UpdateAugust Flink Community Update
August Flink Community Update
Robert Metzger
 
Integrating Git, Gerrit and Jenkins/Hudson with Mylyn
Integrating Git, Gerrit and Jenkins/Hudson with MylynIntegrating Git, Gerrit and Jenkins/Hudson with Mylyn
Integrating Git, Gerrit and Jenkins/Hudson with Mylyn
Sascha Scholz
 
2013 Collaboration Tour - Keynote
2013 Collaboration Tour - Keynote2013 Collaboration Tour - Keynote
2013 Collaboration Tour - Keynote
Perforce
 
Event sourcing your React-Redux applications
Event sourcing your React-Redux applicationsEvent sourcing your React-Redux applications
Event sourcing your React-Redux applications
Maurice De Beijer [MVP]
 
Docker Serverless
Docker ServerlessDocker Serverless
Docker Serverless
Brian Christner
 
2013 Perforce Collaboration Tour - Git Fusion
2013 Perforce Collaboration Tour - Git Fusion2013 Perforce Collaboration Tour - Git Fusion
2013 Perforce Collaboration Tour - Git Fusion
Perforce
 
Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service
RightScale
 
Flink Community Update February 2015
Flink Community Update February 2015Flink Community Update February 2015
Flink Community Update February 2015
Robert Metzger
 
Kubernetes Code Components
Kubernetes Code ComponentsKubernetes Code Components
Kubernetes Code Components
Idan Shahar
 
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
Tiffany Jachja
 
The busy developer guide to Docker
The busy developer guide to DockerThe busy developer guide to Docker
The busy developer guide to Docker
Maurice De Beijer [MVP]
 
An Architecture for Autonomy
An Architecture for AutonomyAn Architecture for Autonomy
An Architecture for Autonomy
David Adsit
 
Cloud Native & Docker
Cloud Native & DockerCloud Native & Docker
Cloud Native & Docker
Brian Christner
 
Accelerating development velocity of production ml systems with docker
Accelerating development velocity of production ml systems with dockerAccelerating development velocity of production ml systems with docker
Accelerating development velocity of production ml systems with docker
Docker, Inc.
 
Cloud native policy enforcement with Open Policy Agent
Cloud native policy enforcement with Open Policy AgentCloud native policy enforcement with Open Policy Agent
Cloud native policy enforcement with Open Policy Agent
LibbySchulze
 
CouchbasetoHadoop_Matt_Michael_Justin v4
CouchbasetoHadoop_Matt_Michael_Justin v4CouchbasetoHadoop_Matt_Michael_Justin v4
CouchbasetoHadoop_Matt_Michael_Justin v4
Michael Kehoe
 
OpenStack Marketing Meeting - Icehouse Release
OpenStack Marketing Meeting - Icehouse ReleaseOpenStack Marketing Meeting - Icehouse Release
OpenStack Marketing Meeting - Icehouse Release
OpenStack Foundation
 
USTGlobal madrid devops
USTGlobal madrid devopsUSTGlobal madrid devops
USTGlobal madrid devops
Juan Carlos García Peláez
 

More Related Content

What's hot

How to share a Kubernetes cluster securely through Lens spaces
How to share a Kubernetes cluster securely through Lens spacesHow to share a Kubernetes cluster securely through Lens spaces
How to share a Kubernetes cluster securely through Lens spaces
LibbySchulze
 
Cloud OS accelerates product development
Cloud OS accelerates product developmentCloud OS accelerates product development
Cloud OS accelerates product development
Tom Van Gramberen
 
GitHub for partners
GitHub for partnersGitHub for partners
GitHub for partners
Lorenzo Barbieri
 
CloudFest 2018 Hackathon Project Results Presentation - CFHack18
CloudFest 2018 Hackathon Project Results Presentation - CFHack18CloudFest 2018 Hackathon Project Results Presentation - CFHack18
CloudFest 2018 Hackathon Project Results Presentation - CFHack18
Jeffrey J. Hardy
 
August Flink Community Update
August Flink Community UpdateAugust Flink Community Update
August Flink Community Update
Robert Metzger
 
Integrating Git, Gerrit and Jenkins/Hudson with Mylyn
Integrating Git, Gerrit and Jenkins/Hudson with MylynIntegrating Git, Gerrit and Jenkins/Hudson with Mylyn
Integrating Git, Gerrit and Jenkins/Hudson with Mylyn
Sascha Scholz
 
2013 Collaboration Tour - Keynote
2013 Collaboration Tour - Keynote2013 Collaboration Tour - Keynote
2013 Collaboration Tour - Keynote
Perforce
 
Event sourcing your React-Redux applications
Event sourcing your React-Redux applicationsEvent sourcing your React-Redux applications
Event sourcing your React-Redux applications
Maurice De Beijer [MVP]
 
Docker Serverless
Docker ServerlessDocker Serverless
Docker Serverless
Brian Christner
 
2013 Perforce Collaboration Tour - Git Fusion
2013 Perforce Collaboration Tour - Git Fusion2013 Perforce Collaboration Tour - Git Fusion
2013 Perforce Collaboration Tour - Git Fusion
Perforce
 
Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service
RightScale
 
Flink Community Update February 2015
Flink Community Update February 2015Flink Community Update February 2015
Flink Community Update February 2015
Robert Metzger
 
Kubernetes Code Components
Kubernetes Code ComponentsKubernetes Code Components
Kubernetes Code Components
Idan Shahar
 
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
Tiffany Jachja
 
The busy developer guide to Docker
The busy developer guide to DockerThe busy developer guide to Docker
The busy developer guide to Docker
Maurice De Beijer [MVP]
 
An Architecture for Autonomy
An Architecture for AutonomyAn Architecture for Autonomy
An Architecture for Autonomy
David Adsit
 
Cloud Native & Docker
Cloud Native & DockerCloud Native & Docker
Cloud Native & Docker
Brian Christner
 
Accelerating development velocity of production ml systems with docker
Accelerating development velocity of production ml systems with dockerAccelerating development velocity of production ml systems with docker
Accelerating development velocity of production ml systems with docker
Docker, Inc.
 
Cloud native policy enforcement with Open Policy Agent
Cloud native policy enforcement with Open Policy AgentCloud native policy enforcement with Open Policy Agent
Cloud native policy enforcement with Open Policy Agent
LibbySchulze
 
CouchbasetoHadoop_Matt_Michael_Justin v4
CouchbasetoHadoop_Matt_Michael_Justin v4CouchbasetoHadoop_Matt_Michael_Justin v4
CouchbasetoHadoop_Matt_Michael_Justin v4
Michael Kehoe
 

What's hot (20)

How to share a Kubernetes cluster securely through Lens spaces
How to share a Kubernetes cluster securely through Lens spacesHow to share a Kubernetes cluster securely through Lens spaces
How to share a Kubernetes cluster securely through Lens spaces
 
Cloud OS accelerates product development
Cloud OS accelerates product developmentCloud OS accelerates product development
Cloud OS accelerates product development
 
GitHub for partners
GitHub for partnersGitHub for partners
GitHub for partners
 
CloudFest 2018 Hackathon Project Results Presentation - CFHack18
CloudFest 2018 Hackathon Project Results Presentation - CFHack18CloudFest 2018 Hackathon Project Results Presentation - CFHack18
CloudFest 2018 Hackathon Project Results Presentation - CFHack18
 
August Flink Community Update
August Flink Community UpdateAugust Flink Community Update
August Flink Community Update
 
Integrating Git, Gerrit and Jenkins/Hudson with Mylyn
Integrating Git, Gerrit and Jenkins/Hudson with MylynIntegrating Git, Gerrit and Jenkins/Hudson with Mylyn
Integrating Git, Gerrit and Jenkins/Hudson with Mylyn
 
2013 Collaboration Tour - Keynote
2013 Collaboration Tour - Keynote2013 Collaboration Tour - Keynote
2013 Collaboration Tour - Keynote
 
Event sourcing your React-Redux applications
Event sourcing your React-Redux applicationsEvent sourcing your React-Redux applications
Event sourcing your React-Redux applications
 
Docker Serverless
Docker ServerlessDocker Serverless
Docker Serverless
 
2013 Perforce Collaboration Tour - Git Fusion
2013 Perforce Collaboration Tour - Git Fusion2013 Perforce Collaboration Tour - Git Fusion
2013 Perforce Collaboration Tour - Git Fusion
 
Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service Orchestrating Cloud Workloads with RightScale Self-Service
Orchestrating Cloud Workloads with RightScale Self-Service
 
Flink Community Update February 2015
Flink Community Update February 2015Flink Community Update February 2015
Flink Community Update February 2015
 
Kubernetes Code Components
Kubernetes Code ComponentsKubernetes Code Components
Kubernetes Code Components
 
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
DevOps Institute SkilUp Day Enterprise Kubernetes - Navigating Your Kubernete...
 
The busy developer guide to Docker
The busy developer guide to DockerThe busy developer guide to Docker
The busy developer guide to Docker
 
An Architecture for Autonomy
An Architecture for AutonomyAn Architecture for Autonomy
An Architecture for Autonomy
 
Cloud Native & Docker
Cloud Native & DockerCloud Native & Docker
Cloud Native & Docker
 
Accelerating development velocity of production ml systems with docker
Accelerating development velocity of production ml systems with dockerAccelerating development velocity of production ml systems with docker
Accelerating development velocity of production ml systems with docker
 
Cloud native policy enforcement with Open Policy Agent
Cloud native policy enforcement with Open Policy AgentCloud native policy enforcement with Open Policy Agent
Cloud native policy enforcement with Open Policy Agent
 
CouchbasetoHadoop_Matt_Michael_Justin v4
CouchbasetoHadoop_Matt_Michael_Justin v4CouchbasetoHadoop_Matt_Michael_Justin v4
CouchbasetoHadoop_Matt_Michael_Justin v4
 

Similar to Nagivating the interface between open and closed source software

OpenStack Marketing Meeting - Icehouse Release
OpenStack Marketing Meeting - Icehouse ReleaseOpenStack Marketing Meeting - Icehouse Release
OpenStack Marketing Meeting - Icehouse Release
OpenStack Foundation
 
USTGlobal madrid devops
USTGlobal madrid devopsUSTGlobal madrid devops
USTGlobal madrid devops
Juan Carlos García Peláez
 
Why to Cloud Native
Why to Cloud NativeWhy to Cloud Native
Why to Cloud Native
Karthik Gaekwad
 
How kubernetes works community, velocity, and contribution - osls 2017 (1)
How kubernetes works community, velocity, and contribution - osls 2017 (1)How kubernetes works community, velocity, and contribution - osls 2017 (1)
How kubernetes works community, velocity, and contribution - osls 2017 (1)
Brian Grant
 
10 tips for Cloud Native Security
10 tips for Cloud Native Security10 tips for Cloud Native Security
10 tips for Cloud Native Security
Karthik Gaekwad
 
OpenChain at EOLE 2017
OpenChain at EOLE 2017OpenChain at EOLE 2017
OpenChain at EOLE 2017
Shane Coughlan
 
Guide to open source
Guide to open source Guide to open source
Guide to open source
Javier Perez
 
OpenStack Icehouse Overview
OpenStack Icehouse OverviewOpenStack Icehouse Overview
OpenStack Icehouse Overview
OpenStack Foundation
 
DevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CD
DevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CDDevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CD
DevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CD
DevOps_Fest
 
Containers, microservices and serverless for realists
Containers, microservices and serverless for realistsContainers, microservices and serverless for realists
Containers, microservices and serverless for realists
Karthik Gaekwad
 
Why kubernetes matters
Why kubernetes mattersWhy kubernetes matters
Why kubernetes matters
Platform9
 
Agile Secure Cloud Application Development Management
Agile Secure Cloud Application Development ManagementAgile Secure Cloud Application Development Management
Agile Secure Cloud Application Development Management
Adam Getchell
 
stackconf 2021 | Prometheus in 2021 and beyond
stackconf 2021 | Prometheus in 2021 and beyondstackconf 2021 | Prometheus in 2021 and beyond
stackconf 2021 | Prometheus in 2021 and beyond
NETWAYS
 
Data Agility for Devops - OSI 2018
Data Agility for Devops - OSI 2018Data Agility for Devops - OSI 2018
Data Agility for Devops - OSI 2018
OpenEBS
 
AzureContainerAppswithDotNet_Pune_2022.pptx
AzureContainerAppswithDotNet_Pune_2022.pptxAzureContainerAppswithDotNet_Pune_2022.pptx
AzureContainerAppswithDotNet_Pune_2022.pptx
Swaminathan Vetri
 
The Power of Azure DevOps
The Power of Azure DevOpsThe Power of Azure DevOps
The Power of Azure DevOps
Jeff Bramwell
 
The Power of Azure DevOps
The Power of Azure DevOpsThe Power of Azure DevOps
The Power of Azure DevOps
Jeff Bramwell
 
The Power of Azure DevOps
The Power of Azure DevOpsThe Power of Azure DevOps
The Power of Azure DevOps
Jeff Bramwell
 
Why is Kubernetes considered the next generation application platform
Why is Kubernetes considered the next generation application platformWhy is Kubernetes considered the next generation application platform
Why is Kubernetes considered the next generation application platform
Calidad Infotech
 
DevSecOps in a cloudnative world
DevSecOps in a cloudnative worldDevSecOps in a cloudnative world
DevSecOps in a cloudnative world
Karthik Gaekwad
 

Similar to Nagivating the interface between open and closed source software (20)

OpenStack Marketing Meeting - Icehouse Release
OpenStack Marketing Meeting - Icehouse ReleaseOpenStack Marketing Meeting - Icehouse Release
OpenStack Marketing Meeting - Icehouse Release
 
USTGlobal madrid devops
USTGlobal madrid devopsUSTGlobal madrid devops
USTGlobal madrid devops
 
Why to Cloud Native
Why to Cloud NativeWhy to Cloud Native
Why to Cloud Native
 
How kubernetes works community, velocity, and contribution - osls 2017 (1)
How kubernetes works community, velocity, and contribution - osls 2017 (1)How kubernetes works community, velocity, and contribution - osls 2017 (1)
How kubernetes works community, velocity, and contribution - osls 2017 (1)
 
10 tips for Cloud Native Security
10 tips for Cloud Native Security10 tips for Cloud Native Security
10 tips for Cloud Native Security
 
OpenChain at EOLE 2017
OpenChain at EOLE 2017OpenChain at EOLE 2017
OpenChain at EOLE 2017
 
Guide to open source
Guide to open source Guide to open source
Guide to open source
 
OpenStack Icehouse Overview
OpenStack Icehouse OverviewOpenStack Icehouse Overview
OpenStack Icehouse Overview
 
DevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CD
DevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CDDevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CD
DevOps Fest 2020. Kohsuke Kawaguchi. GitOps, Jenkins X & the Future of CI/CD
 
Containers, microservices and serverless for realists
Containers, microservices and serverless for realistsContainers, microservices and serverless for realists
Containers, microservices and serverless for realists
 
Why kubernetes matters
Why kubernetes mattersWhy kubernetes matters
Why kubernetes matters
 
Agile Secure Cloud Application Development Management
Agile Secure Cloud Application Development ManagementAgile Secure Cloud Application Development Management
Agile Secure Cloud Application Development Management
 
stackconf 2021 | Prometheus in 2021 and beyond
stackconf 2021 | Prometheus in 2021 and beyondstackconf 2021 | Prometheus in 2021 and beyond
stackconf 2021 | Prometheus in 2021 and beyond
 
Data Agility for Devops - OSI 2018
Data Agility for Devops - OSI 2018Data Agility for Devops - OSI 2018
Data Agility for Devops - OSI 2018
 
AzureContainerAppswithDotNet_Pune_2022.pptx
AzureContainerAppswithDotNet_Pune_2022.pptxAzureContainerAppswithDotNet_Pune_2022.pptx
AzureContainerAppswithDotNet_Pune_2022.pptx
 
The Power of Azure DevOps
The Power of Azure DevOpsThe Power of Azure DevOps
The Power of Azure DevOps
 
The Power of Azure DevOps
The Power of Azure DevOpsThe Power of Azure DevOps
The Power of Azure DevOps
 
The Power of Azure DevOps
The Power of Azure DevOpsThe Power of Azure DevOps
The Power of Azure DevOps
 
Why is Kubernetes considered the next generation application platform
Why is Kubernetes considered the next generation application platformWhy is Kubernetes considered the next generation application platform
Why is Kubernetes considered the next generation application platform
 
DevSecOps in a cloudnative world
DevSecOps in a cloudnative worldDevSecOps in a cloudnative world
DevSecOps in a cloudnative world
 

Recently uploaded

Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
innovationoecd
 
Digital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Digital Banking in the Cloud: How Citizens Bank Unlocked Their MainframeDigital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Digital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Precisely
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
ssuserfac0301
 
June Patch Tuesday
June Patch TuesdayJune Patch Tuesday
June Patch Tuesday
Ivanti
 
Fueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte WebinarFueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte Webinar
Zilliz
 
AWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptxAWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptx
HarisZaheer8
 
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptxChoosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
Brandon Minnick, MBA
 
Serial Arm Control in Real Time Presentation
Serial Arm Control in Real Time PresentationSerial Arm Control in Real Time Presentation
Serial Arm Control in Real Time Presentation
tolgahangng
 
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and MilvusBuilding Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
Zilliz
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
shyamraj55
 
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
Data Hops
 
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Jeffrey Haguewood
 
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
alexjohnson7307
 
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAUHCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
panagenda
 
Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...
Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...
Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...
saastr
 
zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...
zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...
zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...
Alex Pruden
 
TrustArc Webinar - 2024 Global Privacy Survey
TrustArc Webinar - 2024 Global Privacy SurveyTrustArc Webinar - 2024 Global Privacy Survey
TrustArc Webinar - 2024 Global Privacy Survey
TrustArc
 
“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...
“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...
“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...
Edge AI and Vision Alliance
 
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
Hiroshi SHIBATA
 
Skybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoptionSkybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoption
Tatiana Kojar
 

Recently uploaded (20)

Presentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of GermanyPresentation of the OECD Artificial Intelligence Review of Germany
Presentation of the OECD Artificial Intelligence Review of Germany
 
Digital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Digital Banking in the Cloud: How Citizens Bank Unlocked Their MainframeDigital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
Digital Banking in the Cloud: How Citizens Bank Unlocked Their Mainframe
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
 
June Patch Tuesday
June Patch TuesdayJune Patch Tuesday
June Patch Tuesday
 
Fueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte WebinarFueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte Webinar
 
AWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptxAWS Cloud Cost Optimization Presentation.pptx
AWS Cloud Cost Optimization Presentation.pptx
 
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptxChoosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
 
Serial Arm Control in Real Time Presentation
Serial Arm Control in Real Time PresentationSerial Arm Control in Real Time Presentation
Serial Arm Control in Real Time Presentation
 
Building Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and MilvusBuilding Production Ready Search Pipelines with Spark and Milvus
Building Production Ready Search Pipelines with Spark and Milvus
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
 
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
FREE A4 Cyber Security Awareness Posters-Social Engineering part 3
 
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
Salesforce Integration for Bonterra Impact Management (fka Social Solutions A...
 
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
leewayhertz.com-AI in predictive maintenance Use cases technologies benefits ...
 
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAUHCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
HCL Notes und Domino Lizenzkostenreduzierung in der Welt von DLAU
 
Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...
Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...
Overcoming the PLG Trap: Lessons from Canva's Head of Sales & Head of EMEA Da...
 
zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...
zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...
zkStudyClub - LatticeFold: A Lattice-based Folding Scheme and its Application...
 
TrustArc Webinar - 2024 Global Privacy Survey
TrustArc Webinar - 2024 Global Privacy SurveyTrustArc Webinar - 2024 Global Privacy Survey
TrustArc Webinar - 2024 Global Privacy Survey
 
“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...
“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...
“Temporal Event Neural Networks: A More Efficient Alternative to the Transfor...
 
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
 
Skybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoptionSkybuffer SAM4U tool for SAP license adoption
Skybuffer SAM4U tool for SAP license adoption
 

Nagivating the interface between open and closed source software

  • 1. Navigating the Interface between Open and Closed source software
  • 2. Lachlan Evenson @LachlanEvenson • Program Manager in Azure Container Compute • Our team is responsible for building and supporting upstream open source projects • Active in the Kubernetes community • Kubernetes 1.16 release lead • CNCF Ambassador • Prior to Microsoft - worked at Deis where he assisted in workload migration to Kubernetes • Using and contributing to open source software for 8 years
  • 3. Craig Peters @peterscraig • Program Manager in Azure Container Compute • Responsible for open source container dependencies like Kubernetes • Geologist by training, developer by practice • Systems integrator and sales engineer • Product manager 15+ years • Bicyclist, hiker, beer lover
  • 5.
  • 6. When considering open source… Who are you in this context? What are you trying to accomplish? Is it a core asset or differentiator?
  • 7. What does it mean to be open? Closed Open to view and file issues Merge 3rd party commits Foundation
  • 8. What does open mean in composed systems? Closed Open
  • 9. Windows and Kubernetes Mixed OS Kubernetes Cluster Kubernetes APIs Linux control plane Linux node Windows node Windows Host OS Docker runtime kublet & kubeproxy Closed Open
  • 10. Dimensions to consider • Speed • New capabilities • React to issues, vulnerabilities • Cost • Initial development • Maintenance • Support • Risk • Organizational/cultural • Contractual • Operational
  • 11. Strategic options, at each level Speed, cost, risk Closed Open source Open to commits Open foundation Build • Fast • Expensive • Long term engineering & support • Moderate • Expensive • Long term engineering & support • Fast • Moderate • Organizational & cultural challenges • Fast • Moderate to inexpensive • Organizational & cultural challenges Adopt/Partner • Slow • Moderate • Complex relationship • Moderate • Moderate • Organizational challenge • Fast • Inexpensive • Legal, business, and cultural challenges • Fast • Moderate to inexpensive • Legal & cultural challenges Buy • Quick, then slow • Expensive • Commercial dependency • Fast • Moderate • Support dependency • Fast • Moderate • Support dependency • Fast • Moderate to inexpensive • Support dependency Windows Kubelet & kubeproxy
  • 13. Case Study: Kubernetes Policy • Open sourced an Azure specific policy controller for Kubernetes • Utilized Open Policy Agent (OPA) • But why is this policy controller Azure specific? • Community had similar interests Open to view and file issues
  • 14. Case Study: Kubernetes Policy • Open sourced an Azure specific policy controller for Kubernetes • Utilized Open Policy Agent (OPA) • But why is this policy controller Azure specific? • Community had similar interests Open to view and file issues • Renamed to Kubernetes Policy Controller • Updated docs to be more generic • Project governance and onboarded contributors Merge 3rd party commits
  • 15. Case Study: Kubernetes Policy • Open sourced an Azure specific policy controller for Kubernetes • Utilized Open Policy Agent (OPA) • But why is this policy controller Azure specific? • Community had similar interests Open to view and file issues • Renamed to Kubernetes Policy Controller • Updated docs to be more generic • Project governance and onboarded contributors Merge 3rd party commits • Community asking for a neutral home • Moved to Open Policy Agent org under CNCF • Renamed to Gatekeeper • Gatekeeper is a community-driven approach to policy on any Kubernetes cluster Foundation
  • 16. Case Study: Kubernetes Policy Customers wanted a supported solution Azure policy for AKS Uses Gatekeeper project under the hood Continued upstream and downstream Product contains open and closed source components
  • 17. Gatekeeper Speed, cost, risk Closed Open source Open to commits Open foundation Build • Fast • Expensive • Long term engineering & support • Moderate • Expensive • Long term engineering & support • Fast • Moderate • Organizational & cultural challenges • Fast • Moderate to inexpensive • Organizational & cultural challenges Adopt/Partner • Slow • Moderate • Complex relationship • Moderate • Moderate • Organizational challenge • Fast • Inexpensive • Legal, business, and cultural challenges • Fast • Moderate to inexpensive • Legal & cultural challenges Buy • Quick, then slow • Expensive • Commercial dependency • Fast • Moderate • Support dependency • Fast • Moderate • Support dependency • Fast • Moderate to inexpensive • Support dependency
  • 18. Hopefully we’ve helped you think about… • What are your goals? • What kind of open do you want? • How do you make decisions? Are you interested in collaborating on the framework?

Editor's Notes

  1. PM working on open source container tech at Microsoft Trained as a scientist, working on tech my whole career First got involved in open source as a PM at EMC getting approval for my dev teams to even use open source components Then dove into multiple open source roles like Hadoop at Yahoo! Open Stack and Kubernetes at Mirantis Love being active and talking to people
  2. Lachie hired me to help manage our contributions to Kubernetes and related projects. You can imagine my reaction when the first thing I was asked to do was help land Windows containers in Kubernetes But why would you even want to do that? Windows shops have apps that could benefit from the resilience and operational model of Kubernetes. They’ve been demanding it How do we handle the situation that Kubernetes, and the Linux world on which it is built is open source, and Windows is not?
  3. The delivered solution looks like this – adding Windows nodes into a Kubernetes cluster enables Windows containers to be scheduled on Windows nodes through the Kubernetes API just like Linux containers But it isn’t quite that simple. For Windows nodes, you need to deliver the closed source Windows operating system together with open source Kubernetes components kubelet &kubeproxy together with the Docker runtime What does this mean from a service agreement or licensing standpoint? How does a closed source company deliver support for the services? Who is this hard for, and who is it easy for? How do you get all the pieces to line up from a strategic, cost, and operational standpoint? How do you handle the fact that the Kubernetes community is built from the Linux world view, with all the assumptions built in. You might even say it has a Linux foundation (badum-bum) In this talk we’ll present a working model we’re using to figure out how to navigate these questions. But first we need to agree about some nuances of open source. And Lachie will walk us through that. Why? Enterprises building Kubernetes apps want to consolidate operational models for legacy apps too Hard questions? Windows is not Linux Windows is closed source Windows APIs are different from Linux syscalls, security model is different Legacy apps are not 12-factor Microsoft customers expect full stack support Lessons learned Community Difficult to open both technical and operational thinking of cluster management beyond Linux principles New node type is a huge change, and community is optimized for incremental changes, so a bigger community investment is required up front than initially expected Microsoft culture Lack of understanding of community process (Incorrect) assumption that community won’t welcome Microsoft inputs Investment needed in support organizations for open source technologies
  4. It's important to ask when considering whether or not to open source software. * Consumer/Producer/Both What are your motivations - hiring, mind share, development velocity, exposure, adoption, in the case of a specification, industry adoption The core asset or differentiators are different depending on the business
  5. Not all open source is created equal. We use the decisions made on the last slide to influence how open we want to be. We think of open source as a spectrum So when we think about open sourcing or even using open source it's important to understand that being open is a spectrum
  6. Now that we’ve talked about your goals, and the types of open source, we consider that most significant systems are composed, and that there’s actual an open vs. closed question for each component that has its own trajectory
  7. For example let’s look at Windows and Kubernetes The Linux control plane and nodes are open source. However a Windows node is mixed. Is this an open or closed system? Can it innovate quickly? Is it supportable? Is it cost effective?
  8. Photo credit: Craig Peters To answer that question, let’s consider several important dimensions Speed: deliver to the market as well as react to internal and external events Cost: up front, and ongoing Risk: often overlooked organizational and cultural
  9. This chart summarizes the framework we’re developing for thinking about the choices we make at each level of our systems. The framework is emerging from our experiences on the many open source projects, and is a work in progress Let’s look at where Windows and Kubernetes sit Kubelet and kubeproxy are NOT differentiators, so open make sense. Open to commits or Open Foundation? Delivering as a supported service under AKS and enable customers to work with it through the open source
  10. Motivation – Provide an enterprise ready solution for Kubernetes policy based on customer feedback In mid 2018 we built and open sourced an Azure specific policy controller for Kubernetes Built on top of Open Policy Agent We started asking ourselves why is this policy controller Azure specific? Through open source we discovered that many other people were trying to solve the same problem
  11. This chart summarizes the framework we’re developing for thinking about the choices we make at each level of our systems. The framework is emerging from our experiences on the many open source projects, and is a work in progress Let’s look at where Windows and Kubernetes sit Kubelet and kubeproxy are NOT differentiators, so open make sense. Open to commits or Open Foundation? Delivering as a supported service under AKS and enable customers to work with it through the open source