- Planning, planning and planning
- 80% of the work is here
- Getting ready to upgrade using automation and thinking 100% uptime in every corner.
- It's time: The upgrade itself
McAfee provides database security software. To support open source databases like MySQL and PostgreSQL, McAfee developed plugins that hook into the database internals. The MySQL plugin has been available since 2011 and the PostgreSQL plugin since 2016. Both are open source under GPL licenses. The plugins allow McAfee to collect detailed information from the databases to monitor for threats. Developing plugins requires less effort than traditional methods and leverages the open source code. The plugins have been well received by customers and have helped McAfee gain new business while maintaining support for existing customers using open source databases.
This document discusses NetApp's integration with OpenStack. It begins with an introduction to NetApp, describing it as a global Fortune 500 company and leader in data management solutions. It then covers basic OpenStack and NetApp terminology. The remainder summarizes NetApp's storage portfolio for OpenStack and how its different solutions provide capabilities like snapshots, cloning, and quality of service controls when used with OpenStack interfaces like Cinder and Manila. It concludes with a demonstration of provisioning OpenStack volumes using NetApp storage.
Network administration overhead is currently one of the major obstacles preventing customers from moving OpenStack into production for wider adoption and efficient utilization by applications. Cloud facilities might experience lack of visibility to common operations of underlying workers and coherent representation of physical and virtual network elements and their interconnections. They might find it hard to estimate impact of micro failures in their infrastructure and react fast to failures. Some might overcome complexity in operations, discovery and monitoring of their cloud by manual processes and/or complex batch operations. I'm offering a journey of troubleshooting and discovery cycles in a typical Cloud that we run today, suggest elegant ways to overcome overheads. Substantially simplifying networking operations, troubleshooting and monitoring might happen through unified Operations API and operations agent, those concepts will be presented, accompanied with practical demos.
Scaling OpenStack Networking Beyond 4000 Nodes with Dragonflow - Eshed Gal-Or...Cloud Native Day Tel Aviv
As OpenStack matures, more users move from “dipping a toe” to deploying at large scale, with 1000's of nodes.
OpenStack networking has long been a limiting factor in scaling beyond a few hundreds of nodes, forcing users to turn to cell splitting, or to complete offloading of the networking to the underlay systems and forfeit the overlay network altogether.
Dragonflow is a fully distributed, open source, SDN implementation of Neutron, that handles large scale deployments without splitting to cells.
In testing we've conducted, we were able to scale to 4000+ controllers (each controller is typically deployed on a compute node), while maintaining the same performance we had on a small 30 node environment.
An approach for migrating enterprise apps into open stackArthur Berezin
This document discusses approaches for migrating enterprise applications into OpenStack. It describes the orchestration approach using TOSCA (Topology and Orchestration Specification for Cloud Applications) to define application blueprints. These blueprints describe application topology, workflows, and policies. The blueprint is used by orchestration plugins to provision, configure, monitor and manage the application across various infrastructure like IaaS, containers, and configuration management tools. Real life use cases from major enterprises are also discussed. The document announces the upcoming availability of a Cloudify Composer tool for creating application blueprints with a simple web UI.
It’s no news that containers represent a portable unit of deployment, and OpenStack has proven an ideal environment for running container workloads. However, where it usually becomes more complex is that many times an application is often built out of multiple containers, as well as hybrid environments - diverse clouds, bare metal and even non-virtualized infrastructure. What’s more, setting up a cluster of container images can be fairly cumbersome because you need to make one container aware of another and expose intimate details that are required for them to communicate which is not trivial especially if they’re not on the same host.
These scenarios have instigated the demand for some kind of orchestrator. The list of container orchestrators is growing fairly fast. This session will compare the different orchestration projects out there - from Heat to Kubernetes to Mesos & Cloudify - and help you choose the right tool for the job.
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a MonthNicolas Brousse
TubeMogul grew from few servers to over two thousands servers and handling over one trillion http requests a month, processed in less than 50ms each. To keep up with the fast growth, the SRE team had to implement an efficient Continuous Delivery infrastructure that allowed to do over 10,000 puppet deployment and 8,500 application deployment in 2014. In this presentation, we will cover the nuts and bolts of the TubeMogul operations engineering team and how they overcome challenges.
How Cloud Native VNFs Deployed on OpenStack Will Change the Telecom Industry ...Cloud Native Day Tel Aviv
Many of the existing network functions, such as routers, firewalls, load balancers and such, have undergone the initial transition from a physical appliance to a virtual appliance. That transition required mostly performance optimization to accommodate the additional I/O overhead of the hypervisor and some configuration changes to accommodate the fact that a VM can be more dynamic in nature.
This shift to NFV, which is basically a cloud-based data center, has revolutionized the way network functions can be delivered. The transition to a cloud native world is considered far more disruptive as it touches changes in both the architecture, to accommodate hyper-scale and multi-tenancy, as well as the business model, which needs to be more consumption based, rather than fixed.
This talk will dive into the main requirements that differentiate a cloud native network function from the traditional network function, and, after making the leap from non-virtualized to virtualized network functions, what is then required to achieve cloud native capabilities, along with the challenges and benefits of this transition.
McAfee provides database security software. To support open source databases like MySQL and PostgreSQL, McAfee developed plugins that hook into the database internals. The MySQL plugin has been available since 2011 and the PostgreSQL plugin since 2016. Both are open source under GPL licenses. The plugins allow McAfee to collect detailed information from the databases to monitor for threats. Developing plugins requires less effort than traditional methods and leverages the open source code. The plugins have been well received by customers and have helped McAfee gain new business while maintaining support for existing customers using open source databases.
This document discusses NetApp's integration with OpenStack. It begins with an introduction to NetApp, describing it as a global Fortune 500 company and leader in data management solutions. It then covers basic OpenStack and NetApp terminology. The remainder summarizes NetApp's storage portfolio for OpenStack and how its different solutions provide capabilities like snapshots, cloning, and quality of service controls when used with OpenStack interfaces like Cinder and Manila. It concludes with a demonstration of provisioning OpenStack volumes using NetApp storage.
Network administration overhead is currently one of the major obstacles preventing customers from moving OpenStack into production for wider adoption and efficient utilization by applications. Cloud facilities might experience lack of visibility to common operations of underlying workers and coherent representation of physical and virtual network elements and their interconnections. They might find it hard to estimate impact of micro failures in their infrastructure and react fast to failures. Some might overcome complexity in operations, discovery and monitoring of their cloud by manual processes and/or complex batch operations. I'm offering a journey of troubleshooting and discovery cycles in a typical Cloud that we run today, suggest elegant ways to overcome overheads. Substantially simplifying networking operations, troubleshooting and monitoring might happen through unified Operations API and operations agent, those concepts will be presented, accompanied with practical demos.
Scaling OpenStack Networking Beyond 4000 Nodes with Dragonflow - Eshed Gal-Or...Cloud Native Day Tel Aviv
As OpenStack matures, more users move from “dipping a toe” to deploying at large scale, with 1000's of nodes.
OpenStack networking has long been a limiting factor in scaling beyond a few hundreds of nodes, forcing users to turn to cell splitting, or to complete offloading of the networking to the underlay systems and forfeit the overlay network altogether.
Dragonflow is a fully distributed, open source, SDN implementation of Neutron, that handles large scale deployments without splitting to cells.
In testing we've conducted, we were able to scale to 4000+ controllers (each controller is typically deployed on a compute node), while maintaining the same performance we had on a small 30 node environment.
An approach for migrating enterprise apps into open stackArthur Berezin
This document discusses approaches for migrating enterprise applications into OpenStack. It describes the orchestration approach using TOSCA (Topology and Orchestration Specification for Cloud Applications) to define application blueprints. These blueprints describe application topology, workflows, and policies. The blueprint is used by orchestration plugins to provision, configure, monitor and manage the application across various infrastructure like IaaS, containers, and configuration management tools. Real life use cases from major enterprises are also discussed. The document announces the upcoming availability of a Cloudify Composer tool for creating application blueprints with a simple web UI.
It’s no news that containers represent a portable unit of deployment, and OpenStack has proven an ideal environment for running container workloads. However, where it usually becomes more complex is that many times an application is often built out of multiple containers, as well as hybrid environments - diverse clouds, bare metal and even non-virtualized infrastructure. What’s more, setting up a cluster of container images can be fairly cumbersome because you need to make one container aware of another and expose intimate details that are required for them to communicate which is not trivial especially if they’re not on the same host.
These scenarios have instigated the demand for some kind of orchestrator. The list of container orchestrators is growing fairly fast. This session will compare the different orchestration projects out there - from Heat to Kubernetes to Mesos & Cloudify - and help you choose the right tool for the job.
USENIX LISA15: How TubeMogul Handles over One Trillion HTTP Requests a MonthNicolas Brousse
TubeMogul grew from few servers to over two thousands servers and handling over one trillion http requests a month, processed in less than 50ms each. To keep up with the fast growth, the SRE team had to implement an efficient Continuous Delivery infrastructure that allowed to do over 10,000 puppet deployment and 8,500 application deployment in 2014. In this presentation, we will cover the nuts and bolts of the TubeMogul operations engineering team and how they overcome challenges.
How Cloud Native VNFs Deployed on OpenStack Will Change the Telecom Industry ...Cloud Native Day Tel Aviv
Many of the existing network functions, such as routers, firewalls, load balancers and such, have undergone the initial transition from a physical appliance to a virtual appliance. That transition required mostly performance optimization to accommodate the additional I/O overhead of the hypervisor and some configuration changes to accommodate the fact that a VM can be more dynamic in nature.
This shift to NFV, which is basically a cloud-based data center, has revolutionized the way network functions can be delivered. The transition to a cloud native world is considered far more disruptive as it touches changes in both the architecture, to accommodate hyper-scale and multi-tenancy, as well as the business model, which needs to be more consumption based, rather than fixed.
This talk will dive into the main requirements that differentiate a cloud native network function from the traditional network function, and, after making the leap from non-virtualized to virtualized network functions, what is then required to achieve cloud native capabilities, along with the challenges and benefits of this transition.
OpenStack is a free and open-source software platform for cloud computing, mostly deployed as an infrastructure-as-a-service (IaaS). OpenDaylight is an open source project under the Linux Foundation with the goal of furthering the adoption and innovation of SDN through the creation of a common industry supported platform.
In this session, I will talk about how OpenStack and OpenDaylight can be combined together to solve real world business cases and networking needs. We will cover:
- What is OpenDaylight
- Use cases for OpenDaylight with OpenStack
- The OpenDaylight NetVirt project
- How OpenDaylight interacts with OpenStack
- The future of OpenDaylight, and how we see it help solving challenges in the networking industry such as NFV, container networking and physical network fabric management -- the open source way.
The primary requirements for OpenStack based clouds (public, private or hybrid) is that they must be massively scalable and highly available. There are a number of interrelated concepts which make the understanding and implementation of HA complex. The potential for not implementing HA correctly would be disastrous.
This session was presented at the OpenStack Meetup in Boston Feb 2014. We discussed interrelated concepts as a basis for implementing HA and examples of HA for MySQL, Rabbit MQ and the OpenStack APIs primarily using Keepalived, VRRP and HAProxy which will reinforce the concepts and show how to connect the dots.
What's Next in OpenStack? A Glimpse At The RoadmapShamailXD
YouTube Recording: https://www.youtube.com/watch?v=cCdqOxD5G0M
Whether you are a newbie to OpenStack looking at building your first cloud or an experienced operator with years of OpenStack success behind you, you've probably spent some time wondering what to expect from the OpenStack project over the next several releases. Will it finally support that new capability you've been waiting for? Should you plan for an upgrade in the next 6 months? While the development community is always working and planning new features, its takes a lot of time on IRC to get a complete view across the different projects. The OpenStack Product WG spent time this cycle working with the project teams and PTLs to understand their priorities for the next several OpenStack releases. Where we have always had an understanding of what's to come in the next release, we're hoping to present a long-term view of the future landscape of OpenStack. In this session, we'll present our findings across the different projects in an effort to give users a glimpse into the OpenStack roadmap
OpenDaylight Netvirt and Neutron - Mike Kolesnik, Josh Hershberg - OpenStack ...Cloud Native Day Tel Aviv
The document provides an overview and architecture of OpenDaylight Netvirt and its integration with Neutron. It discusses the Neutron/OpenDaylight architectural overview, the new networking_odl v2 architecture and features, and does a deep dive into the OpenDaylight Netvirt networking components and pipeline. It covers topics like external network configuration, the port creation sequence, DHCP ping response, and the OpenDaylight Netvirt service pipeline.
[OpenStack Day in Korea 2015] Keynote 2 - Leveraging OpenStack to Realize the...OpenStack Korea Community
OpenStack Day in Korea 2015 - Keynote 2
Leveraging OpenStack to Realize the SKT Software-Defined Data Center
Jinsung Choi, Ph.D - CTO, Corporate R&D Center, SK Telecom
[OpenStack Days Korea 2016] Track1 - Red Hat enterprise Linux OpenStack PlatformOpenStack Korea Community
This document discusses Red Hat's OpenStack platform. It provides an overview of OpenStack and what it is used for. It then discusses why Red Hat is well suited to provide an OpenStack platform, including that it is optimized to run on Red Hat Enterprise Linux and benefits from Red Hat's engineering resources and long term support. Key features of Red Hat's OpenStack platform are also summarized, such as performance, availability, security and manageability.
Things You MUST Know Before Deploying OpenStack: Bruno Lago, Catalyst ITOpenStack
Audience: Advanced
About: Real world lessons and war stories about Catalyst IT’s experience in rolling out an OpenStack based public cloud in New Zealand.
This presentation will provide tips and advice that may save you a lot of time, money and nights of sleep if you are planning to run OpenStack in the future. It may also bring some insights to people that are already running OpenStack in production.
Topics covered will include: selection of hardware for optimal costs, techniques that drive quality and service levels up, common deployment mistakes, in place upgrades, how to identify the maturity level of each project and decide what is ready for production, and much more!
Speaker Bio: Bruno Lago – Entrepreneur, Catalyst IT Limited
Bruno Lago is a solutions architect that has been involved with the Catalyst Cloud (New Zealand’s first public cloud based on OpenStack) from its inception. He is passionate about open source software, cloud computing and disruptive technologies.
OpenStack Australia Day - Sydney 2016
https://events.aptira.com/openstack-australia-day-sydney-2016/
The document discusses configuring Broadcom-based network switches using OpenNSL. It provides an overview of the Open Compute Project (OCP), Facebook's Wedge switch hardware, the Open Network Linux (ONL) operating system, and the Broadcom Trident2 chip. It then demonstrates how to perform basic L2 switching and L3 routing functions using the OpenNSL API, such as learning MAC addresses, forwarding traffic, creating IP interfaces, and adding routes. OpenNSL provides an open-source hardware abstraction layer for programming Broadcom switching ASICs.
Openstack Summit Tokyo 2015 - Building a private cloud to efficiently handle ...Pierre GRANDIN
What do you do when your usual setup or turnkey solution isn’t suited for your workload?
Most of the documentation and user feedback that you can find about OpenStack is written for the use-case of running a public facing cloud serving several external customers. When you want to host a single tenant with a single application the problem is completely different, you don't want publicly exposed APIs. You want to ensure optimal resource allocation to maximize your application performance. You want to leverage the fact that you own the infrastructure layer to optimize your instance placement strategy, and to get the best latency and to avoid creating SPOFs using affinity (or anti affinity rules).
This talk will focus on what we learned during a two years journey; from getting OpenStack up and running reliably, to investigating performance bottlenecks, to maximizing the performance of our private cloud.
Can the Open vSwitch (OVS) bottleneck be resolved? - Erez Cohen - OpenStack D...Cloud Native Day Tel Aviv
OpenStack practitioners who have deployed cloud at scale would frown when they hear the mention of Open Virtual Switch (OVS), which has been a bottleneck for cloud network performance and scalability. As emerging technologies such as NFV keep pushing for higher data forwarding performance across the network infrastructure, it becomes critical to improve OVS performance without compromising flexibility, network programmability, and cost.
We will present a novel way to offload the entire OVS dataplane onto the embedded switch (eSwitch) implemented in the server NIC. This approach maximizes the effective bandwidth that the applications can use to communicate with each other or fetch data from storage, and enhances the efficiency of the cloud. Accelerated Switching And Packet Processing (ASAP2) Direct works seamlessly within the framework of SDN, and allow controllers to configure and update flows onto OVS the same way as before so that network programmability remains intact.
Cloud Networking - Leaving the Physical Behind - Omer Anson - OpenStack Day I...Cloud Native Day Tel Aviv
Cloud networking still relies too much on physical network constructs like networks, routers, and ports instead of logical abstractions. Kubernetes uses virtual IPs and DNS names for services which is better, but lacks features of OpenStack networking. We should define communication groups that can intercommunicate, and have networking support firewalls, load balancing, and VPNs between groups. This logical approach leaves physical details behind, makes adding features easier, and would be well supported in Dragonflow.
The document discusses cloud native applications and microservices architecture. It provides examples of Netflix's migration to microservices in 2008 due to a major outage. It also discusses concepts like 12 factor apps and how Pivotal, Spring Cloud, and Cloud Foundry help develop and deploy cloud native applications and microservices.
Cloudify NFV Orchestrator for Optimal PerformanceArthur Berezin
This document discusses the need for environment-aware orchestration to optimize virtual network function (VNF) performance in NFV environments. It outlines the challenges of ensuring performance, scalability, and predictability for data-intensive VNFs across diverse infrastructure platforms. The document introduces Cloudify as an orchestrator that leverages topology, workflows, and policies from the TOSCA standard to provision, configure, monitor and manage VNF blueprints and service chains in an infrastructure-aware manner. It provides an example use case of deploying an OPNFV vIMS solution using Cloudify to optimize performance through capabilities like SR-IOV and DPDK.
This document provides an update on the OpenStack Cinder Liberty release. It outlines that 19 new volume drivers were added with CI testing, 29 blueprints and 134 bug fixes were completed. New features discussed include nested quotas to manage descendant project quotas, force detach to safely detach stuck volumes, a generic image cache to speed up volume creation from images, and improved migrations. It encourages reviewing the full specifications and provides contacts for more information.
This document discusses the role of SDN controllers in OpenStack. It provides background on SDN controllers and OpenStack. SDN controllers can be integrated with OpenStack via the Neutron module to manage network flows and enable programmability. Several SDN controllers that integrate with Neutron are discussed, including OpenDaylight, OpenContrail, and ONOS. The document outlines how these controllers plug into Neutron and their current status in OpenStack. It provides guidance on how new SDN controllers can join OpenStack.
The document discusses high availability (HA) techniques in OpenStack. It covers HA concepts for both stateless and stateful services. For compute HA, it discusses server evacuation and instance migration without and with shared storage. It then covers different HA options for OpenStack controllers, including Pacemaker/Corosync/DRBD for active-passive HA and Galera for active-active MySQL HA. It also discusses using Keepalived, HAProxy and VRRP for load balancing and failover of API services. Finally, it presents a sample highly available OpenStack architecture and lists additional resources.
Five years of operating a large scale globally replicated Pulsar installation...StreamNative
This document summarizes 5 years of operating a large-scale globally replicated Pulsar installation at Verizon Media. It discusses how the installation scaled up from 1 tenant and 2 data centers in 2015 to over 100 tenants and 6 data centers in 2020. It also covers the evolution of hardware used for brokers and bookkeepers, metrics and monitoring, deployment processes, broker isolation policies, storage utilization, and rack awareness in BookKeeper.
High availability and fault tolerance of openstackDeepak Mane
This document discusses building a fault tolerant and highly available architecture for OpenStack. It proposes:
1. A master-master cluster architecture for MySQL and session-level replication for RabbitMQ to provide high availability for the database and message broker components.
2. Disk-level replication using DBRD for Glance, Swift, and Cinder to provide redundancy at the storage level.
3. Ensuring high availability for networking and the Horizon dashboard.
4. Developing predictive and reactive models to detect failures in Nova, Swift, and compute instances and enable recovery of all components.
The document recommends using Pacemaker for cluster-level management and Corosync for reliable messaging between cluster nodes.
It's Time to Upgrade - OpenStack@LivepersonLiran Cohen
Openstack Upgrade at Liveperson
Liveperson operates a large Openstack cloud with over 70,000 virtual cores running across 1,000 physical servers in 7 data centers. They planned to upgrade their Openstack deployment from Ubuntu 14.04 to 16.04 (Mitaka release). Their upgrade plan was to use a side-by-side controller upgrade approach, where they would deploy new controllers running the target release, sync databases and images, and then upgrade the compute nodes in groups while testing after each step. The presentation covered Liveperson's business, their Openstack deployment, the planning and testing process for the upgrade, and their chosen upgrade approach.
It's time to upgrade your openstack cloudKoby Holzer
Liveperson have being using the openstack as it's main PaaS and IaaS infra for a long time. Upgrading is part of the deal. In this presentation we shared our experience with upgrading and what's important to pay attention to.
OpenStack is a free and open-source software platform for cloud computing, mostly deployed as an infrastructure-as-a-service (IaaS). OpenDaylight is an open source project under the Linux Foundation with the goal of furthering the adoption and innovation of SDN through the creation of a common industry supported platform.
In this session, I will talk about how OpenStack and OpenDaylight can be combined together to solve real world business cases and networking needs. We will cover:
- What is OpenDaylight
- Use cases for OpenDaylight with OpenStack
- The OpenDaylight NetVirt project
- How OpenDaylight interacts with OpenStack
- The future of OpenDaylight, and how we see it help solving challenges in the networking industry such as NFV, container networking and physical network fabric management -- the open source way.
The primary requirements for OpenStack based clouds (public, private or hybrid) is that they must be massively scalable and highly available. There are a number of interrelated concepts which make the understanding and implementation of HA complex. The potential for not implementing HA correctly would be disastrous.
This session was presented at the OpenStack Meetup in Boston Feb 2014. We discussed interrelated concepts as a basis for implementing HA and examples of HA for MySQL, Rabbit MQ and the OpenStack APIs primarily using Keepalived, VRRP and HAProxy which will reinforce the concepts and show how to connect the dots.
What's Next in OpenStack? A Glimpse At The RoadmapShamailXD
YouTube Recording: https://www.youtube.com/watch?v=cCdqOxD5G0M
Whether you are a newbie to OpenStack looking at building your first cloud or an experienced operator with years of OpenStack success behind you, you've probably spent some time wondering what to expect from the OpenStack project over the next several releases. Will it finally support that new capability you've been waiting for? Should you plan for an upgrade in the next 6 months? While the development community is always working and planning new features, its takes a lot of time on IRC to get a complete view across the different projects. The OpenStack Product WG spent time this cycle working with the project teams and PTLs to understand their priorities for the next several OpenStack releases. Where we have always had an understanding of what's to come in the next release, we're hoping to present a long-term view of the future landscape of OpenStack. In this session, we'll present our findings across the different projects in an effort to give users a glimpse into the OpenStack roadmap
OpenDaylight Netvirt and Neutron - Mike Kolesnik, Josh Hershberg - OpenStack ...Cloud Native Day Tel Aviv
The document provides an overview and architecture of OpenDaylight Netvirt and its integration with Neutron. It discusses the Neutron/OpenDaylight architectural overview, the new networking_odl v2 architecture and features, and does a deep dive into the OpenDaylight Netvirt networking components and pipeline. It covers topics like external network configuration, the port creation sequence, DHCP ping response, and the OpenDaylight Netvirt service pipeline.
[OpenStack Day in Korea 2015] Keynote 2 - Leveraging OpenStack to Realize the...OpenStack Korea Community
OpenStack Day in Korea 2015 - Keynote 2
Leveraging OpenStack to Realize the SKT Software-Defined Data Center
Jinsung Choi, Ph.D - CTO, Corporate R&D Center, SK Telecom
[OpenStack Days Korea 2016] Track1 - Red Hat enterprise Linux OpenStack PlatformOpenStack Korea Community
This document discusses Red Hat's OpenStack platform. It provides an overview of OpenStack and what it is used for. It then discusses why Red Hat is well suited to provide an OpenStack platform, including that it is optimized to run on Red Hat Enterprise Linux and benefits from Red Hat's engineering resources and long term support. Key features of Red Hat's OpenStack platform are also summarized, such as performance, availability, security and manageability.
Things You MUST Know Before Deploying OpenStack: Bruno Lago, Catalyst ITOpenStack
Audience: Advanced
About: Real world lessons and war stories about Catalyst IT’s experience in rolling out an OpenStack based public cloud in New Zealand.
This presentation will provide tips and advice that may save you a lot of time, money and nights of sleep if you are planning to run OpenStack in the future. It may also bring some insights to people that are already running OpenStack in production.
Topics covered will include: selection of hardware for optimal costs, techniques that drive quality and service levels up, common deployment mistakes, in place upgrades, how to identify the maturity level of each project and decide what is ready for production, and much more!
Speaker Bio: Bruno Lago – Entrepreneur, Catalyst IT Limited
Bruno Lago is a solutions architect that has been involved with the Catalyst Cloud (New Zealand’s first public cloud based on OpenStack) from its inception. He is passionate about open source software, cloud computing and disruptive technologies.
OpenStack Australia Day - Sydney 2016
https://events.aptira.com/openstack-australia-day-sydney-2016/
The document discusses configuring Broadcom-based network switches using OpenNSL. It provides an overview of the Open Compute Project (OCP), Facebook's Wedge switch hardware, the Open Network Linux (ONL) operating system, and the Broadcom Trident2 chip. It then demonstrates how to perform basic L2 switching and L3 routing functions using the OpenNSL API, such as learning MAC addresses, forwarding traffic, creating IP interfaces, and adding routes. OpenNSL provides an open-source hardware abstraction layer for programming Broadcom switching ASICs.
Openstack Summit Tokyo 2015 - Building a private cloud to efficiently handle ...Pierre GRANDIN
What do you do when your usual setup or turnkey solution isn’t suited for your workload?
Most of the documentation and user feedback that you can find about OpenStack is written for the use-case of running a public facing cloud serving several external customers. When you want to host a single tenant with a single application the problem is completely different, you don't want publicly exposed APIs. You want to ensure optimal resource allocation to maximize your application performance. You want to leverage the fact that you own the infrastructure layer to optimize your instance placement strategy, and to get the best latency and to avoid creating SPOFs using affinity (or anti affinity rules).
This talk will focus on what we learned during a two years journey; from getting OpenStack up and running reliably, to investigating performance bottlenecks, to maximizing the performance of our private cloud.
Can the Open vSwitch (OVS) bottleneck be resolved? - Erez Cohen - OpenStack D...Cloud Native Day Tel Aviv
OpenStack practitioners who have deployed cloud at scale would frown when they hear the mention of Open Virtual Switch (OVS), which has been a bottleneck for cloud network performance and scalability. As emerging technologies such as NFV keep pushing for higher data forwarding performance across the network infrastructure, it becomes critical to improve OVS performance without compromising flexibility, network programmability, and cost.
We will present a novel way to offload the entire OVS dataplane onto the embedded switch (eSwitch) implemented in the server NIC. This approach maximizes the effective bandwidth that the applications can use to communicate with each other or fetch data from storage, and enhances the efficiency of the cloud. Accelerated Switching And Packet Processing (ASAP2) Direct works seamlessly within the framework of SDN, and allow controllers to configure and update flows onto OVS the same way as before so that network programmability remains intact.
Cloud Networking - Leaving the Physical Behind - Omer Anson - OpenStack Day I...Cloud Native Day Tel Aviv
Cloud networking still relies too much on physical network constructs like networks, routers, and ports instead of logical abstractions. Kubernetes uses virtual IPs and DNS names for services which is better, but lacks features of OpenStack networking. We should define communication groups that can intercommunicate, and have networking support firewalls, load balancing, and VPNs between groups. This logical approach leaves physical details behind, makes adding features easier, and would be well supported in Dragonflow.
The document discusses cloud native applications and microservices architecture. It provides examples of Netflix's migration to microservices in 2008 due to a major outage. It also discusses concepts like 12 factor apps and how Pivotal, Spring Cloud, and Cloud Foundry help develop and deploy cloud native applications and microservices.
Cloudify NFV Orchestrator for Optimal PerformanceArthur Berezin
This document discusses the need for environment-aware orchestration to optimize virtual network function (VNF) performance in NFV environments. It outlines the challenges of ensuring performance, scalability, and predictability for data-intensive VNFs across diverse infrastructure platforms. The document introduces Cloudify as an orchestrator that leverages topology, workflows, and policies from the TOSCA standard to provision, configure, monitor and manage VNF blueprints and service chains in an infrastructure-aware manner. It provides an example use case of deploying an OPNFV vIMS solution using Cloudify to optimize performance through capabilities like SR-IOV and DPDK.
This document provides an update on the OpenStack Cinder Liberty release. It outlines that 19 new volume drivers were added with CI testing, 29 blueprints and 134 bug fixes were completed. New features discussed include nested quotas to manage descendant project quotas, force detach to safely detach stuck volumes, a generic image cache to speed up volume creation from images, and improved migrations. It encourages reviewing the full specifications and provides contacts for more information.
This document discusses the role of SDN controllers in OpenStack. It provides background on SDN controllers and OpenStack. SDN controllers can be integrated with OpenStack via the Neutron module to manage network flows and enable programmability. Several SDN controllers that integrate with Neutron are discussed, including OpenDaylight, OpenContrail, and ONOS. The document outlines how these controllers plug into Neutron and their current status in OpenStack. It provides guidance on how new SDN controllers can join OpenStack.
The document discusses high availability (HA) techniques in OpenStack. It covers HA concepts for both stateless and stateful services. For compute HA, it discusses server evacuation and instance migration without and with shared storage. It then covers different HA options for OpenStack controllers, including Pacemaker/Corosync/DRBD for active-passive HA and Galera for active-active MySQL HA. It also discusses using Keepalived, HAProxy and VRRP for load balancing and failover of API services. Finally, it presents a sample highly available OpenStack architecture and lists additional resources.
Five years of operating a large scale globally replicated Pulsar installation...StreamNative
This document summarizes 5 years of operating a large-scale globally replicated Pulsar installation at Verizon Media. It discusses how the installation scaled up from 1 tenant and 2 data centers in 2015 to over 100 tenants and 6 data centers in 2020. It also covers the evolution of hardware used for brokers and bookkeepers, metrics and monitoring, deployment processes, broker isolation policies, storage utilization, and rack awareness in BookKeeper.
High availability and fault tolerance of openstackDeepak Mane
This document discusses building a fault tolerant and highly available architecture for OpenStack. It proposes:
1. A master-master cluster architecture for MySQL and session-level replication for RabbitMQ to provide high availability for the database and message broker components.
2. Disk-level replication using DBRD for Glance, Swift, and Cinder to provide redundancy at the storage level.
3. Ensuring high availability for networking and the Horizon dashboard.
4. Developing predictive and reactive models to detect failures in Nova, Swift, and compute instances and enable recovery of all components.
The document recommends using Pacemaker for cluster-level management and Corosync for reliable messaging between cluster nodes.
It's Time to Upgrade - OpenStack@LivepersonLiran Cohen
Openstack Upgrade at Liveperson
Liveperson operates a large Openstack cloud with over 70,000 virtual cores running across 1,000 physical servers in 7 data centers. They planned to upgrade their Openstack deployment from Ubuntu 14.04 to 16.04 (Mitaka release). Their upgrade plan was to use a side-by-side controller upgrade approach, where they would deploy new controllers running the target release, sync databases and images, and then upgrade the compute nodes in groups while testing after each step. The presentation covered Liveperson's business, their Openstack deployment, the planning and testing process for the upgrade, and their chosen upgrade approach.
It's time to upgrade your openstack cloudKoby Holzer
Liveperson have being using the openstack as it's main PaaS and IaaS infra for a long time. Upgrading is part of the deal. In this presentation we shared our experience with upgrading and what's important to pay attention to.
OSDC 2018 | From Monolith to Microservices by Paul Puschmann_NETWAYS
Scaling up from two developer teams supporting a monolith to more than 20 developer teams powering a micro-service landscape is not only a matter of technical excellence but also the matter of culture and collaboration. This talk will show the positive aspects of our evolution as well as the things we learned to improve on.
[WSO2Con EU 2018] Implementing a Zero Downtime WSO2 API Manager with an API C...WSO2
Like many other companies like it, NN Group is undertaking a digital transformation. APIs are the key enabler of this digital transformation. In 2017 they commenced the implementation of the API management solution using WSO2 software. They have engineered the WSO2 components in such a way to create an API Management infrastructure that is fully automated, both in provisioning, and operational management. WSO2 is now being used for managing external APIs. NN Group is now expanding its use to internal API management. This presentation focuses on the way they have engineered their external API management solution on the AWS cloud, how they implemented several CI/CD patterns to achieve zero down-time, and how they set up their API community.
How Lean helped us put quality back at the heart of our Agile Process, by Ren...Institut Lean France
Learn how BISAM, the leading software editor into Performance, Attribution & Composites Analytics, decided to refocus on quality after more than 10 years of disciplined Agile practices.
A fascinating Lean IT story presented by Renaud Wilsiud, CTO of BISAM at the Lean IT Summit 2017.
Discover more Lean IT REX on www.lean-it-summit.com
Video and slides synchronized, mp3 and slide download available at URL http://bit.ly/2lGNybu.
Stefan Krawczyk discusses how his team at StitchFix use the cloud to enable over 80 data scientists to be productive. He also talks about prototyping ideas, algorithms and analyses, how they set up & keep schemas in sync between Hive, Presto, Redshift & Spark and make access easy for their data scientists, etc. Filmed at qconsf.com..
Stefan Krawczyk is Algo Dev Platform Lead at StitchFix, where he’s leading development of the algorithm development platform. He spent formative years at Stanford, LinkedIn, Nextdoor & Idibon, working on everything from growth engineering, product engineering, data engineering, to recommendation systems, NLP, data science and business intelligence.
Nona puntata del Mulesoft Meetup di Milano. Parliamo insieme a Paolo Petronzi di automazione e CI/CD e poi con Luca Bonaldo, il nostro Mulesoft Mentor in Italia, di best practices per batch processing.
Software Release Orchestration and the EnterpriseXebiaLabs
Or, How ING Streamlined and Increased Software Deployments to Twice a Day
Enterprises are realizing that doing DevOps right requires a streamlined Continuous Delivery pipeline that spans many groups beyond Dev and Ops. Finding a way to automate and control modern DevOps processes while maintaining visibility is a huge a challenge.
Hear from Andréas Prins, IT Manager at ING and Andrew Phillips, VP of DevOps Strategy at XebiaLabs, as they discuss the challenges enterprises are facing and offer actionable advice on how to:
More easily manage complex, distributed releases across technical and non-technical teams
Gain better control and oversight of your DevOps automation and overall software delivery process
Provide visibility into your Continuous Delivery process for everyone involved in your DevOps initiative
Release more quickly, identify bottlenecks, reduce errors and lower the risk of release failures
Moving to microservices – a technology and organisation transformational journeyBoyan Dimitrov
Moving to microservices was a transformational journey for the company as their system grew rapidly. They started with a monolithic architecture which became difficult to maintain and scale. This led them to redesign their system using microservices built with Go running on AWS (Amazon Web Services). They developed core platform capabilities to support automated provisioning, routing, discovery, monitoring and more. This allowed them to deploy new services rapidly and operate their distributed system more efficiently. The transition required changes to both their technology and organizational culture.
Docker New York City: From GitOps to a scalable CI/CD Pattern for KubernetesAndrew Phillips
Slides from the presentation "From GitOps to a scalable CI/CD Pattern for Kubernetes" at the Docker New York City meetup, by Andrew Phillips. See https://www.meetup.com/Docker-NewYorkCity/events/257539512/
Rational Team Concert is IBM's tool for team collaboration powered by the Jazz platform. The Jazz platform provides middleware services that allow tools to communicate by listening to and sending standardized events, reducing complexity compared to direct tool integration. The high-level Jazz architecture includes Rational Team Concert for source control, work items, and building; and a Jazz server with extensions that provides team services like presence and chat. Jazz aims to improve team productivity by providing awareness of teams, artifacts, responsibilities and processes to help avoid issues like broken builds.
OpenNebulaConf2019 - Welcome and Project Update - Ignacio M. Llorente, Rubén ...OpenNebula Project
We've made our way into the world of open cloud — where each organization can find the right cloud for its unique needs. A single cloud management platform cannot be all things to all people. There will be a cloud space with several offerings focused on different environments and/or industries. The OpenNebula commitment to the open cloud is at the very base of its mission — to become the simplest cloud enabling platform — and its purpose — to bring simplicity to the private and hybrid enterprise cloud. OpenNebula exists to help companies build simple, cost-effective, reliable, open enterprise clouds on existing IT infrastructure. The OpenNebula Conference will be a great opportunity to communicate and share our vision and commitment, to look back at how the project has grown in the last 9 years, and to shed some insight into what to expect from the project in the near future.
Upgrade or Rebuild: The World Steel Associations Upgrade to Magnolia 4.5Magnolia
Remmer Stipdonk and Edgar Vonk showcase the success story of Worldsteel's Magnolia Integration, as well as their complex migration from Magnolia 4.3 to 4.5.
The document discusses whether to upgrade or rebuild a company's Magnolia content management system (CMS). It notes that an upgrade may be challenging due to customizations, lack of documentation, and testing issues in previous migrations. It provides questions to consider regarding the current implementation and partner experience. It recommends rebuilding for implementations by inexperienced partners, serious AdminCentral customizations, or deviations from best practices. Upgrades require extensive testing and may be difficult, so using an experienced Magnolia partner is advised. Rebuilding allows for content migration, redesign, and future-proofing but requires more resources.
A deck from the first CDIsrael meetup, presenting our CD flow at Snyk, focusing on our testing framework. A day in a life of a developer - code, test, publish, deploy, monitor.
Splunk in Rakuten: Splunk as a Service for allTimur Bagirov
The document describes Rakuten's Splunk as a Service offering. It provides an overview of why Splunk was adopted by Rakuten, how the service works, and its benefits over managing Splunk individually in each department. The service allows many groups within Rakuten to use Splunk without having to manage licenses, infrastructure, or ongoing operations. It also ensures high availability and easy access for users.
The document discusses various deployment strategies for updating applications on Kubernetes including recreate, rolling update, blue/green, canary, and A/B testing deployments. For each strategy, it provides a brief overview of how the strategy works, examples of the Kubernetes configuration, advantages and disadvantages. It also includes hands-on sections and bonus questions to help understand how to implement each strategy in practice and when each one may be most appropriate.
InterConnect 2015 1930 - Top practices to ensure a successful IBM Business Pr...Brian Petrini
Proper planning and following some of the top practices are key to ensure a successful upgrade and migration of BPM system. In this session, we will talk about how to plan an easier and quicker migration, including a comprehensive consideration and plan based on your source environment, validations before migration, handle special requirements when move to a very different target environment, estimate your migration window and evaluate the business impact, plan your tests on regression and new features etc. Also we will introduce migration utility key improvements in BPM v8.5.x which can significantly reduce your migration failure, downtime and post-migration actions.
InterConnect 2015 1930 - Top practices to ensure a successful IBM Business Pr...Brian Petrini
Proper planning and following some of the top practices are key to ensure a successful upgrade and migration of BPM system. In this session, we will talk about how to plan an easier and quicker migration, including a comprehensive consideration and plan based on your source environment, validations before migration, handle special requirements when move to a very different target environment, estimate your migration window and evaluate the business impact, plan your tests on regression and new features etc. Also we will introduce migration utility key improvements in BPM v8.5.x which can significantly reduce your migration failure, downtime and post-migration actions.
Similar to OpenStack Upgrade - It can be done! Koby Holzer, Liran Cohen - OpenStack Day Israel 2017 (20)
This document discusses how adopting a cloud native approach is a cultural decision for companies. It emphasizes that engineering organizations have their own cultures defined by a small set of principles and questions. These include values like quality, rapid deployment, accountability, and stability. While there are no silver bullets, identifying core invariants and defining cultural values can help guide a company towards being customer-obsessed and proud of their work.
In any Cloud Native architecture there’s a seemingly endless stream of events that happen at each layer. These events can be used to detect abnormal activity and possible security incidents, as well as providing an audit trail of activity.
In this talk we’ll cover how we extended Falco to ingest events beyond just host system calls, such as Kubernetes audit events or even application level events. We will also show how to create Falco rules to detect behaviors in these new event streams. We show how we implemented Kubernetes audit events in Falco, and how to configure the event stream.
Kafka Mirror Tester: Go and Kubernetes Powered Test Suite for Kafka Replicati...Cloud Native Day Tel Aviv
Inspired by the Jepsen series of database test suites I created kafka-mirror-tester, a cross-Atlantic automated test suite for Kafka mirroring using Golang and Kubernetes. There, I said k8s, need I say more?
Join me to learn how k8s solves database automation tasks and Go drives those tests.
Kubernetes was originally targeted for running large scale web applications.
I/O intensive workload represents a class of high-end applications such as network services, trading applications, database services that require high-speed access to hardware resources and often users specific hardware or CPU features to maximize their performance.
Service meshes are all the buzz in cloud-native world.
How come only yesterday we didn't know such a thing existed and now everybody seems to want one?
If you're already running a microservice-based system or only starting out with one, you may be asking yourself : "Do I also need a mesh?"
In this session we'll try to answer what the mesh is good for, what problem it solves, what new questions it poses.
Devices on the edge are highly varied in hardware and capabilities, even within the same technology space. Knowing that, how do we design an efficient, scalable, and reliable solution for updating the software on these devices, all while minimizing downtime for the user?
Kubernetes, Knative, serverless, cloud databases, authentication APIs, SMS APIs, payment APIs. Building a SaaS product is exciting, and we have so many tools that help build a cloud-native application, but this also introduces so many design choices we should consider.
If you are interested in monitoring, and successfully set up a system (whether home-grown or custom-off-the-shelf) for your own use, there comes a moment when you go from monitoring only the systems you care about, to monitoring systems that other people care about. Monitoring for yourself is all about having the best data for the least effort. Monitoring for others? That's when your job becomes a game of "what just happened" whack-a-mole.
Ever wondered how the K8s scheduler works, and how can you “help” it make the right decision for your application? In this session, we'll cover several different scheduling use-cases in K8s, what scheduling techniques are required in each and when to use them.
10 years ago, we promoted the move from pet systems to faceless hordes of electronic cattle grazing on commodity infrastructure. But as the evolution of the cloud progresses we find that the cattle methodology is no longer sufficient and that cloud native systems resemble some other biological entity…
MySQL shell is the MySQL client of the future. It will help you in your daily operations, whatever they are. It doesn't matter if you are a developer or an administrator, if you want to work with relational or non relational data, if you want to setup or monitor your cluster, if you want to work with SQL language or javascript or python.
Discover how MySQL shell will help you, no matter what you want to do with MySQL!
Cloud Native is more than a tool set. It is a full architecture, a philosophical approach for building applications that take full advantage of cloud computing. Going Cloud Native requires an organization to shift not only its tech stack but also its culture and processes.
Cloud and Edge: price, performance and privacy considerations in IOT, by Tsvi...Cloud Native Day Tel Aviv
As the public, private and consumer sectors rush to the cloud, the main hurdles are not feasibility or sensor/network price.
They are -Complexity of deployment due to inadequate IOT standards, inability to guarantee performance, and a growing fear of the liabilities generated by holding and processing data with privacy aspects.
Two Years, Zero servers: Lessons learned from running a startup 100% on Serve...Cloud Native Day Tel Aviv
Running Highly Available Large Scale Systems is a lot of work. For the past 2.5 years, we've been running 100% serverless on a full production environment, serving customers worldwide. No VMs, no containers, no Kubernetes. Just code.
In this session I will present why we decided to go fully serverless at Torii, how it helped us move faster than our competitors, where did serverless computing worked best and where there's more work to be done.
12 Factor Serverless Applications - Mike Morain, AWS - Cloud Native Day Tel A...Cloud Native Day Tel Aviv
The “Twelve-Factor” application model has come to represent twelve best practices for building modern, cloud-native applications. With guidance on things like configuration, deployment, runtime, and multiple service communication, the Twelve-Factor model prescribes best practices that apply to everything from web applications to APIs to data processing applications. Although Serverless computing and AWS Lambda have changed how application development is done, the “Twelve-Factor” best practices remain relevant and applicable in a Serverless world. In this talk, we’ll apply the “Twelve-Factor” model to Serverless application development with AWS Lambda and Amazon API Gateway and show you how these services enable you to build scalable, low cost, and low administration applications.
Not my problem! Delegating responsibilities to the infrastructure - Yshay Yaa...Cloud Native Day Tel Aviv
When creating a new Microservice you typically need to add a lot of boilerplate to the code, such as logging, metrics, authentication, SSL, secrets/credentials, etc... All this ends up overshadowing the actual logic of the service itself and results in a lot of dependencies and code. Because of this, we at Soluto created a template for the boilerplate, which worked great...
Until we had to upgrade one of the dependencies which resulted in huge effort of code upgrades and deployment across each and every service that uses the template. And that’s besides the fact we needed to make a separate template for each language we used (and over the years, the number of programming languages we use at production increased dramatically).
We needed a way to simplify all this. We wanted to get rid of the boilerplate while maintaining the functions listed above. So we decided to delegate the entire responsibility to the Kubernetes infrastructure. In this lecture, I will do a live coding session and show you how to remove the boilerplate from your code and move it to the infrastructure, and discuss the benefits and limitations of this approach.
Brain in the Cloud: Machine Learning on OpenStack & Kubernetes Done Right - E...Cloud Native Day Tel Aviv
Machine Learning is no doubt the hottest trend in IT nowadays. Deep Neural Network (DNN), a subfield of Machine Learning with mode of operation loosely inspired by the brain, allows us to solve complex problems such as image recognition that has been very difficult to solve using standard programming paradigms. DNN concepts are not new. However, and until recently, applying them in practice could not be realized due to their high computational demands. With the recent development in parallel computing, especially around GPU acceleration and high speed and efficient networking, DNN has become a reality in modern data centers. In this talk we will describe the system requirements to effectively run a machine learning cluster with popular frameworks such as TensorFlow. We will discuss how such a system can be deployed in an OpenStack-based cloud without compromises, enjoying high-performance DNN programming paradigm as well as the benefits of cloud and software-defined data centers.
A stateful application walks into a Kubernetes bar - Arthur Berezin, JovianX ...Cloud Native Day Tel Aviv
Cloud native applications are commonly thought as stateless, horizontally scalable workloads that you can scale-up and down on-demand. Kubernetes, as the commodity cloud native orchestrator, was originally designed for such workloads. A lot has evolved since Kubernetes’ inception, and nowadays many of the stateful applications are migrating to Kubernetes. While not everything is perfect, more and more features are added to support complex stateful use-cases. In this session Arthur will cover the following topics:
- Breakdown of a stateful application
- Planning a stateful application on Kubernetes
- The state of Kubernetes StatefulSets, Persistent Volumes, DNS, Networking, operators and High Availability
- A practical use-case and DEMO of a stateful application with Kubernetes
The story of how KubeMQ was born - Oz Golan, KubeMQ - Cloud Native Day Tel Av...Cloud Native Day Tel Aviv
KubeMQ started as an internal project at a FinTech company to upgrade their infrastructure from monolithic to distributed services with zero downtime using containers. They developed KubeMQ as an open source message broker for containers since no existing MQ could meet their requirements. KubeMQ integrates with Kubernetes and other CNCF projects to provide a small footprint broker with high throughput, observability, security, and support for multiple languages and messaging patterns to make it easy to deploy and scale distributed services.
I want it all: go hybrid - Orit Yaron, Outbrain - Cloud Native Day Tel Aviv 2018Cloud Native Day Tel Aviv
All around you hear people taking a firm stand - whether it is pro-Cloud or against it. Almost like "would you prefer Chocolate or Vanilla ice cream?" Well, I like both! On this talk, I would like to suggest a more inclusive approach, sharing Outbrain journey in the attempt to enjoy both worlds.
Removing Uninteresting Bytes in Software FuzzingAftab Hussain
Imagine a world where software fuzzing, the process of mutating bytes in test seeds to uncover hidden and erroneous program behaviors, becomes faster and more effective. A lot depends on the initial seeds, which can significantly dictate the trajectory of a fuzzing campaign, particularly in terms of how long it takes to uncover interesting behaviour in your code. We introduce DIAR, a technique designed to speedup fuzzing campaigns by pinpointing and eliminating those uninteresting bytes in the seeds. Picture this: instead of wasting valuable resources on meaningless mutations in large, bloated seeds, DIAR removes the unnecessary bytes, streamlining the entire process.
In this work, we equipped AFL, a popular fuzzer, with DIAR and examined two critical Linux libraries -- Libxml's xmllint, a tool for parsing xml documents, and Binutil's readelf, an essential debugging and security analysis command-line tool used to display detailed information about ELF (Executable and Linkable Format). Our preliminary results show that AFL+DIAR does not only discover new paths more quickly but also achieves higher coverage overall. This work thus showcases how starting with lean and optimized seeds can lead to faster, more comprehensive fuzzing campaigns -- and DIAR helps you find such seeds.
- These are slides of the talk given at IEEE International Conference on Software Testing Verification and Validation Workshop, ICSTW 2022.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
DevOps and Testing slides at DASA ConnectKari Kakkonen
My and Rik Marselis slides at 30.5.2024 DASA Connect conference. We discuss about what is testing, then what is agile testing and finally what is Testing in DevOps. Finally we had lovely workshop with the participants trying to find out different ways to think about quality and testing in different parts of the DevOps infinity loop.
In the rapidly evolving landscape of technologies, XML continues to play a vital role in structuring, storing, and transporting data across diverse systems. The recent advancements in artificial intelligence (AI) present new methodologies for enhancing XML development workflows, introducing efficiency, automation, and intelligent capabilities. This presentation will outline the scope and perspective of utilizing AI in XML development. The potential benefits and the possible pitfalls will be highlighted, providing a balanced view of the subject.
We will explore the capabilities of AI in understanding XML markup languages and autonomously creating structured XML content. Additionally, we will examine the capacity of AI to enrich plain text with appropriate XML markup. Practical examples and methodological guidelines will be provided to elucidate how AI can be effectively prompted to interpret and generate accurate XML markup.
Further emphasis will be placed on the role of AI in developing XSLT, or schemas such as XSD and Schematron. We will address the techniques and strategies adopted to create prompts for generating code, explaining code, or refactoring the code, and the results achieved.
The discussion will extend to how AI can be used to transform XML content. In particular, the focus will be on the use of AI XPath extension functions in XSLT, Schematron, Schematron Quick Fixes, or for XML content refactoring.
The presentation aims to deliver a comprehensive overview of AI usage in XML development, providing attendees with the necessary knowledge to make informed decisions. Whether you’re at the early stages of adopting AI or considering integrating it in advanced XML development, this presentation will cover all levels of expertise.
By highlighting the potential advantages and challenges of integrating AI with XML development tools and languages, the presentation seeks to inspire thoughtful conversation around the future of XML development. We’ll not only delve into the technical aspects of AI-powered XML development but also discuss practical implications and possible future directions.
Pushing the limits of ePRTC: 100ns holdover for 100 daysAdtran
At WSTS 2024, Alon Stern explored the topic of parametric holdover and explained how recent research findings can be implemented in real-world PNT networks to achieve 100 nanoseconds of accuracy for up to 100 days.
zkStudyClub - Reef: Fast Succinct Non-Interactive Zero-Knowledge Regex ProofsAlex Pruden
This paper presents Reef, a system for generating publicly verifiable succinct non-interactive zero-knowledge proofs that a committed document matches or does not match a regular expression. We describe applications such as proving the strength of passwords, the provenance of email despite redactions, the validity of oblivious DNS queries, and the existence of mutations in DNA. Reef supports the Perl Compatible Regular Expression syntax, including wildcards, alternation, ranges, capture groups, Kleene star, negations, and lookarounds. Reef introduces a new type of automata, Skipping Alternating Finite Automata (SAFA), that skips irrelevant parts of a document when producing proofs without undermining soundness, and instantiates SAFA with a lookup argument. Our experimental evaluation confirms that Reef can generate proofs for documents with 32M characters; the proofs are small and cheap to verify (under a second).
Paper: https://eprint.iacr.org/2023/1886
Encryption in Microsoft 365 - ExpertsLive Netherlands 2024Albert Hoitingh
In this session I delve into the encryption technology used in Microsoft 365 and Microsoft Purview. Including the concepts of Customer Key and Double Key Encryption.
GraphSummit Singapore | The Future of Agility: Supercharging Digital Transfor...Neo4j
Leonard Jayamohan, Partner & Generative AI Lead, Deloitte
This keynote will reveal how Deloitte leverages Neo4j’s graph power for groundbreaking digital twin solutions, achieving a staggering 100x performance boost. Discover the essential role knowledge graphs play in successful generative AI implementations. Plus, get an exclusive look at an innovative Neo4j + Generative AI solution Deloitte is developing in-house.
Alt. GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using ...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
Dr. Sean Tan, Head of Data Science, Changi Airport Group
Discover how Changi Airport Group (CAG) leverages graph technologies and generative AI to revolutionize their search capabilities. This session delves into the unique search needs of CAG’s diverse passengers and customers, showcasing how graph data structures enhance the accuracy and relevance of AI-generated search results, mitigating the risk of “hallucinations” and improving the overall customer journey.
Essentials of Automations: The Art of Triggers and Actions in FMESafe Software
In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation.
We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios.
Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!
Why You Should Replace Windows 11 with Nitrux Linux 3.5.0 for enhanced perfor...SOFTTECHHUB
The choice of an operating system plays a pivotal role in shaping our computing experience. For decades, Microsoft's Windows has dominated the market, offering a familiar and widely adopted platform for personal and professional use. However, as technological advancements continue to push the boundaries of innovation, alternative operating systems have emerged, challenging the status quo and offering users a fresh perspective on computing.
One such alternative that has garnered significant attention and acclaim is Nitrux Linux 3.5.0, a sleek, powerful, and user-friendly Linux distribution that promises to redefine the way we interact with our devices. With its focus on performance, security, and customization, Nitrux Linux presents a compelling case for those seeking to break free from the constraints of proprietary software and embrace the freedom and flexibility of open-source computing.
UiPath Test Automation using UiPath Test Suite series, part 6DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI.
UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities.
Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes.
What will you get from this session?
1. Insights into integrating generative AI.
2. Understanding how this integration enhances test automation within the UiPath platform
3. Practical demonstrations
4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath
Topics covered:
What is generative AI
Test Automation with generative AI and Open AI.
UiPath integration with generative AI
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Full-RAG: A modern architecture for hyper-personalizationZilliz
Mike Del Balso, CEO & Co-Founder at Tecton, presents "Full RAG," a novel approach to AI recommendation systems, aiming to push beyond the limitations of traditional models through a deep integration of contextual insights and real-time data, leveraging the Retrieval-Augmented Generation architecture. This talk will outline Full RAG's potential to significantly enhance personalization, address engineering challenges such as data management and model training, and introduce data enrichment with reranking as a key solution. Attendees will gain crucial insights into the importance of hyperpersonalization in AI, the capabilities of Full RAG for advanced personalization, and strategies for managing complex data integrations for deploying cutting-edge AI solutions.
5. Liveperson in one sentence:
We created a
Digital Contact Center
to allow
Transitioning from Voice to
Messaging
6. Creating Meaningful Connections
Between Brands and Customers
Founded in 1995,
public since 2000
(NASDAQ: LPSN)
More than 18,000
customers worldwide
More than 1000
employees
25B site visits and +300M live
engagements Yearly
7 DC’s around the globe Headquartered in NYC with
offices in Americas, EMEA
and APAC
7. 18,000 customers around the globe, including:
Customers
8 of the Top 10 Fortune
500 companies
10 of the Top 15
Commercial Banks
(Fortune 500)
Top 4 of Top 5 Telecommunication
Companies (Fortune 500)
3 of the Top 5 Internet
Service Companies (Fortune
500)
8. 2011 2012 2013 2014
● Started early 2012
● 100% of our services
Physical
Openstack
2015 2017
Openstack @ LivePerson
● 70K virtual cores.
● ~1K physical servers.
● 7 Data Centers.
● 7K instances.
80%
20. Choose your upgrade path
Possible ways to upgrade:
● Big Bang (in-place) Upgrades.
● Parallel Cloud - Side by Side clusters.
● Controller Side by Side.
● Rolling upgrade (Upgrade Levels).*
21. The upgrade plan...
● Create an upgrade procedure.
● Automate - As Much As Possible.
● Rollback is part of the plan.