홏홝홚홧홚 홞홨 홣홤 홨홪환홝 황홝홞홣활 홖홨 홑홖홣홞홡홡홖 홆홪홗홚홧홣홚황홚홨. Do you want to start your Digital Transformation, but struggling to find your way in OpenShift or Kubernetes? Together with Red Hat where we'll compare Vanilla Kubernetes with OpenShift. #DigitalTransformation #DevOps #RedHat #Kubernetes #OpenShift #VanillaKubernetes #automation #containers #orchestration
OpenShift 4, the smarter Kubernetes platformKangaroot
OpenShift 4 introduces automated installation, patching, and upgrades for every layer of the container stack from the operating system through application services.
Kangaroot open shift best practices - straight from the battlefieldKangaroot
Running & managing an OpenShift environment in a better way starts before even building your first test cluster and doesn’t stop when the design is up and running. Kangaroot has been running & maintaining OpenShift/Kubernetes clusters in production for several of our customers and this session brings you an overview of best practices, extra tools and methodologies to make your life easier.
OpenShift 4, the smarter Kubernetes platformKangaroot
OpenShift 4 introduces automated installation, patching, and upgrades for every layer of the container stack from the operating system through application services.
Kangaroot open shift best practices - straight from the battlefieldKangaroot
Running & managing an OpenShift environment in a better way starts before even building your first test cluster and doesn’t stop when the design is up and running. Kangaroot has been running & maintaining OpenShift/Kubernetes clusters in production for several of our customers and this session brings you an overview of best practices, extra tools and methodologies to make your life easier.
8 - OpenShift - A look at a container platform: what's in the boxKangaroot
Many already have some familiarity with containers, and maybe even with Kubernetes. But what's the difference between those and a container platform? In this session the goal is to look at OpenShift, Red Hat's container platform based on Kubernetes. We see what it's made out of, what makes it tick, and what the future of OpenShift & Kubernetes holds.
Kubernetes or OpenShift - choosing your container platform for Dev and OpsTomasz Cholewa
Kubernetes has become the most popular choice among container orchestrators with strong community and growing numbers of production deployments. There is no shortage of various K8s distros, at the moment 20+ and counting. There are many distributions available that just simply add toolsets and products that embed it and adds more features. In this presentation, you'll learn about OpenShift and how it compares to vanilla Kubernetes - their major differences, best features and how they can help to build a consistent platform for Dev and Ops cooperation.
An introduction to the open source project that empowers modern workflows to build, deploy and manage the lifecycle of containers. You will learn what OpenShift is, what are its use cases, and more about all the fuss around Cloud computing, microservices, DevOps and whatnot.
OpenShift pour le developpement cloud native - 20171214Laurent Broudoux
Talk donné au Cloud Workshop Azure - Red Hat & Microsoft, le 14/12/2017. Découvrez comment la plateforme OpenShift de Red Hat permet de faciliter le développement, le déploiement et le monitoring d'applications Cloud Native !
Learn how you'll be able to quickly develop, host, and scale applications within the AWS cloud with Red Hat's OpenShift. During this session, we walk you thru the straightforward method of deploying and managing your own Linux based application within the AWS cloud and will additionally discuss key use-cases and advantages to container platform configuration, deployment, and administration.
In this session, Diógenes gives an introduction of the basic concepts that make OpenShift, giving special attention to its relationship with Linux containers and Kubernetes.
PaaS Lessons: Cisco IT Deploys OpenShift to Meet Developer DemandCisco IT
Cisco IT added OpenShift by Red Hat to its technology mix to rapidly expose development staff to a rich set of web-scale application frameworks and runtimes. Deploying Platform-as-a-Service (PaaS) architectures, like OpenShift, bring with it:
- A Focus on the Developer Experience
- Container Technology
- Network Security and User Isolation
- Acceleration of DevOps Models without Negatively Impacting Business
In this session, Cisco and Red Hat will take you through:
- The problems Cisco set out to solve with PaaS. - How OpenShift aligned with their needs.
- Key lessons learned during the process.
Business & IT Strategy Alignment: This track targets the juncture of business and IT considerations necessary to create competitive advantage. Example topics include: new architecture deployments, competitive differentiators, long-term and hidden costs, and security.
Attendees will learn how to align architecture and technology decisions with their specific business needs and how and when IT departments can provide competitive advantage.
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShiftDevOps.com
Administrators and developers are increasingly seeking ways to improve application time to market and improve maintainability. Containers and Red Hat® OpenShift® have quickly become the de facto solution for agile development and application deployment.
Red Hat Training has developed a course that provides the gateway to container adoption by understanding the potential of DevOps using a container-based architecture. Orchestrating a container-based architecture with Kubernetes and Red Hat® OpenShift® improves application reliability and scalability, decreases developer overhead, and facilitates continuous integration and continuous deployment.
In this webinar, our expert will cover:
An overview of container and OpenShift architecture.
How to manage containers and container images.
Deploying containerized applications with Red Hat OpenShift.
An outline of Red Hat OpenShift training offerings.
[DevDay 2017] OpenShift Enterprise - Speaker: Linh Do - DevOps Engineer at Ax...DevDay.org
This session discusses OpenShift Enterprise (or OpenShift Container Platform). OpenShift Container Platform is Red Hat's on-premise private platform as a service product, built around a core of application containers powered by Docker, with orchestration and management provided by Kubernetes, on a foundation of Red Hat Enterprise Linux.
Persistent Storage for stateful applications on Kubernetes made easy with Ope...MayaData Inc
In this webinar, Director of Community of Rancher Labs Jason van Brackel joins forces with Sr. Developer Advocate Patrick Hoolboom from MayaData to talk about benefits of OpenEBS and Rancher as a combined solution.
Rancher's multi-cluster Kubernetes management solution allows development teams to iterate fast, deploy efficiently and operate at scale. Kubernetes allows you to orchestrate containers that are highly available. However, in the case of container reschedule, Kubernetes does not provide a great set of primitives to manage your persistent data along with your application containers. In this webinar, we will present some of the challenges associated with managing persistent data in Kubernetes and how we can make day 2 operations easier to manage. We will briefly introduce the combined offering and talk about a couple of approaches to solving data persistence problems in multi-cloud environments with Rancher and OpenEBS. During the demos, we will showcase how we address data availability with OpenEBS.
We will also talk about project updates in the latest releases and preview of upcoming Kubecon announcements.
8 - OpenShift - A look at a container platform: what's in the boxKangaroot
Many already have some familiarity with containers, and maybe even with Kubernetes. But what's the difference between those and a container platform? In this session the goal is to look at OpenShift, Red Hat's container platform based on Kubernetes. We see what it's made out of, what makes it tick, and what the future of OpenShift & Kubernetes holds.
Kubernetes or OpenShift - choosing your container platform for Dev and OpsTomasz Cholewa
Kubernetes has become the most popular choice among container orchestrators with strong community and growing numbers of production deployments. There is no shortage of various K8s distros, at the moment 20+ and counting. There are many distributions available that just simply add toolsets and products that embed it and adds more features. In this presentation, you'll learn about OpenShift and how it compares to vanilla Kubernetes - their major differences, best features and how they can help to build a consistent platform for Dev and Ops cooperation.
An introduction to the open source project that empowers modern workflows to build, deploy and manage the lifecycle of containers. You will learn what OpenShift is, what are its use cases, and more about all the fuss around Cloud computing, microservices, DevOps and whatnot.
OpenShift pour le developpement cloud native - 20171214Laurent Broudoux
Talk donné au Cloud Workshop Azure - Red Hat & Microsoft, le 14/12/2017. Découvrez comment la plateforme OpenShift de Red Hat permet de faciliter le développement, le déploiement et le monitoring d'applications Cloud Native !
Learn how you'll be able to quickly develop, host, and scale applications within the AWS cloud with Red Hat's OpenShift. During this session, we walk you thru the straightforward method of deploying and managing your own Linux based application within the AWS cloud and will additionally discuss key use-cases and advantages to container platform configuration, deployment, and administration.
In this session, Diógenes gives an introduction of the basic concepts that make OpenShift, giving special attention to its relationship with Linux containers and Kubernetes.
PaaS Lessons: Cisco IT Deploys OpenShift to Meet Developer DemandCisco IT
Cisco IT added OpenShift by Red Hat to its technology mix to rapidly expose development staff to a rich set of web-scale application frameworks and runtimes. Deploying Platform-as-a-Service (PaaS) architectures, like OpenShift, bring with it:
- A Focus on the Developer Experience
- Container Technology
- Network Security and User Isolation
- Acceleration of DevOps Models without Negatively Impacting Business
In this session, Cisco and Red Hat will take you through:
- The problems Cisco set out to solve with PaaS. - How OpenShift aligned with their needs.
- Key lessons learned during the process.
Business & IT Strategy Alignment: This track targets the juncture of business and IT considerations necessary to create competitive advantage. Example topics include: new architecture deployments, competitive differentiators, long-term and hidden costs, and security.
Attendees will learn how to align architecture and technology decisions with their specific business needs and how and when IT departments can provide competitive advantage.
Kubernetes 101 - an Introduction to Containers, Kubernetes, and OpenShiftDevOps.com
Administrators and developers are increasingly seeking ways to improve application time to market and improve maintainability. Containers and Red Hat® OpenShift® have quickly become the de facto solution for agile development and application deployment.
Red Hat Training has developed a course that provides the gateway to container adoption by understanding the potential of DevOps using a container-based architecture. Orchestrating a container-based architecture with Kubernetes and Red Hat® OpenShift® improves application reliability and scalability, decreases developer overhead, and facilitates continuous integration and continuous deployment.
In this webinar, our expert will cover:
An overview of container and OpenShift architecture.
How to manage containers and container images.
Deploying containerized applications with Red Hat OpenShift.
An outline of Red Hat OpenShift training offerings.
[DevDay 2017] OpenShift Enterprise - Speaker: Linh Do - DevOps Engineer at Ax...DevDay.org
This session discusses OpenShift Enterprise (or OpenShift Container Platform). OpenShift Container Platform is Red Hat's on-premise private platform as a service product, built around a core of application containers powered by Docker, with orchestration and management provided by Kubernetes, on a foundation of Red Hat Enterprise Linux.
Persistent Storage for stateful applications on Kubernetes made easy with Ope...MayaData Inc
In this webinar, Director of Community of Rancher Labs Jason van Brackel joins forces with Sr. Developer Advocate Patrick Hoolboom from MayaData to talk about benefits of OpenEBS and Rancher as a combined solution.
Rancher's multi-cluster Kubernetes management solution allows development teams to iterate fast, deploy efficiently and operate at scale. Kubernetes allows you to orchestrate containers that are highly available. However, in the case of container reschedule, Kubernetes does not provide a great set of primitives to manage your persistent data along with your application containers. In this webinar, we will present some of the challenges associated with managing persistent data in Kubernetes and how we can make day 2 operations easier to manage. We will briefly introduce the combined offering and talk about a couple of approaches to solving data persistence problems in multi-cloud environments with Rancher and OpenEBS. During the demos, we will showcase how we address data availability with OpenEBS.
We will also talk about project updates in the latest releases and preview of upcoming Kubecon announcements.
PHPIDOL#80: Kubernetes 101 for PHP Developer. Yusuf Hadiwinata - VP Operation...Yusuf Hadiwinata Sutandar
Sesi Terakhir sebelum libur PHPID-OL memasuki Bulan Puasa Ramadhan. Kita akan ketemu lagi 19 April 2021.
Topik penutup yang akan diisi oleh Om Yusuf Hadiwinata, Praktisi Teknologi terkemuka dan ternama di lingkungan Industri IT Indonesia...
Ciyaooo.... Maju Terus PHP Indonesia
Link Video: https://fb.me/e/hzWbd0FeW
Deploying your first application with KubernetesOVHcloud
Find out how to deploy your first application with Kubernetes on the OVH cloud, and direct questions to the team responsible for our upcoming Kubernetes as-a-Service solution.
Nebulaworks invited Bitnami's software engineer, Adnan Abdulhussein to present on, "The App Developer's Kubernetes Toolbox."
Details:
If you're developing applications on top of Kubernetes, you may be feeling overwhelmed with the vast number of development tools in the ecosystem at your disposal. Kubernetes is growing at a rapid pace, and it's becoming impossible to keep up with the latest and greatest development environments, debuggers, and build test and deployment tools.
Learn:
• The current state of development in Kubernetes
• Comparison of shared and local Kubernetes development environments
• Overview of different development tools in the ecosystem
• Which tools make sense in common scenarios
• How Bitnami uses Kubernetes as a development environment
The path to a serverless-native era with Kubernetessparkfabrik
In this talk we'll talk about how the Serverless paradigms are changing the way we develop applications and cloud infrastructure and how we can implement them in a
efficient and seamless way with Kubernetes.
We'll go through the latest Kubernetes Serverless technologies, talking about all the aspects
including pricing, scalability, observability and best practices.
Introduction to KubeSphere and its open source ecosystemKubeSphere
Video Record →: https://www.youtube.com/watch?v=TupN6ajF18A
Key takeaways in this slides:
* Pain points for enterprises adopting Kubernetes in production
* Introduction to KubeSphere and its open source ecosystem
* Your first journey to cloud native DevOps
* Demo: Create a CI/CD pipeline using KubeSphere DevOps
Effective Building your Platform with Kubernetes == Keep it Simple Wojciech Barczyński
Effective Kubernetes is a continuous deployment process that the team understands. Keep it Simple. Think twice before going for more complex solutions.
Source: https://github.com/wojciech12/talk_effective_kubernetes
Presented at Cloud Native Talks #2 (Online Meetup) - https://www.meetup.com/Cloud-Native-Kubernetes-Warsaw/events/257125529/
Kubernetes-Native DevOps: For Apache Kafka® with Confluentconfluent
Viktor Gamov, Confluent, Developer Advocate
Confluent Operator allows you to run Apache Kafka® on Kubernetes for simplified operations such as microservices communication, visibility and monitoring, upgrades, scaling, and cluster management built into the Kubernetes platform. Now, Confluent Operator is evolving into a Kubernetes-native, extensible approach to managing the complete cloud-native event streaming platform on Kubernetes. In this demo, Viktor Gamov (Developer Advocate, Confluent), highlights a typical Kafka on Kubernetes operations use case: fixing production issues with validation in a test environment. We'll demonstrate how the Confluent Operator's evolution empowers you to use a declarative spec to quickly deploy and manage your event streaming applications and the Confluent Platform.
Recording to be available cnfl.io/meetup-hub
https://www.meetup.com/Chennai-Kafka/events/276994551/
Salvatore Incandela, Fabio Marinelli - Using Spinnaker to Create a Developmen...Codemotion
Out of the box Kubernetes is an Operations platform which is great for flexibility but creates friction for deploying simple applications. Along comes Spinnaker which allows you to easily create custom workflows for testing, building, and deploying your application on Kubernetes. Salvatore Incandela and Fabio Marinelli will give an introduction to Containers and Kubernetes and the default development/deployment workflows that it enables. They will then show you how you can use Spinnaker to simplify and streamline your workflow and help provide a full #gitops style CI/CD.
Similar to There is no such thing as “Vanilla Kubernetes” (20)
We all love the chameleon, and SUSE is long known for its Linux OS - but there is so much more in the world of SUSE.
In this session Jurriën will dive into how SUSE is helping organizations accelerate their digital transformation through container management, hybrid cloud IT infrastructure, and IT operations at the Edge.
Because from core, to cloud, to Edge, SUSE is helping firms to innovate everywhere.
- General Demo
- SEP super flexible with respect to API's
- HANA backup (also on RHV)
- Ansible scripts provided on Github for automated SEP installation.
- Cloud 2 Cloud backup of your MS 365 / GSuite, Dynamics and Salesforce Cloud solution
Deploying NGINX in Cloud Native KubernetesKangaroot
Using cloud-native application services is easy, it “just works”. Many customers choose them without giving it a second thought. However, these app services vary from cloud to cloud, with differing levels of quality and numbers of features making visibility and control inconsistent across clouds.
And then there is cost…it’s hard to know what your deployment is going to cost until after it’s been built. Often the services must be compiled in a piecemeal fashion and many products carry bloated code that increases costs.
Finally, security is often an afterthought. Moreover, SecOps teams struggle to keep up with the breakneck app release cadence that has become typical. Often they are seen as DevOps viewing them as a major constraint on the ability to deliver software quickly.
In this workshop, we showcase the NGINX solutions for cloud native Kubernetes that will allow you to:
- Reduce tool sprawl and provide a standard set of services
- Control costs with lightweight and easy solutions
- Bring teams together with automation and self‑service capabilities
Cloud demystified, what remains after the fog has lifted. Kangaroot
o, you’ve been ordered to land the airplane in thick fog, zero visibility and you’re praying the ILS has got it right. That’s how most IT managers feel after their CIO/CEO told them to ‘put everything in the cloud, it’s cheaper’.
IaaS, DBaas, PaaS, SaaS, Literally everything as a service… But what is it, how does it compare to, say, Hosting, or to out-sourcing? Or does it actually compare at all, and is it really new?
There is also this thing with “Cloud-native”, what is that all about and how does this fit in a modern deployment architecture. Containers don’t really fly, right, what are they doing in the clouds then??
What are the things that do make a difference, what does it all look like after the fog has lifted?
Of course, the focal point in the presentation will be the relational database as it is and will remain the beating heart of the IT landscape. Join me in this investigation and see if we can actually land the plane and really get ahead using “The Cloud”.
From NetOps to DevOps, modern app teams need a self‑service, API‑driven platform that integrates easily into CI/CD workflows to accelerate app deployment and makes app lifecycle management easier – whether your app has a hybrid or microservices architecture.
Built to manage NGINX Plus instances, NGINX Controller is cloud‑native, secure, and high‑performance. During this webinar, we demonstrate how NGINX Controller can streamline the management of your NGINX Application Services.
Kangaroot EDB Webinar Best Practices in Security with PostgreSQLKangaroot
The webinar will review a multi-layered framework for PostgreSQL security, with a deeper focus on limiting access to the database and data, as well as securing the data.
Using the popular AAA (Authentication, Authorisation, Auditing) framework EnterpriseDB will cover:
- Best practices for authentication (trust, certificate, MD5, Scram, etc).
- Advanced approaches, such as password profiles.
- Deep dive of authorisation and data access control for roles, database objects (tables, etc), view usage, row-level security, and data redaction.
- Auditing, encryption, and SQL injection attack prevention
Do you want to start with OpenShift but don’t have the manpower, knowledge, e...Kangaroot
Do you want to start with containers or a Kubernetes platform? You don’t have the in-house knowledge, experience, manpower to setup OpenShift? Get OpenShift in a box, managed by Kangaroot.
Digital Transformation requires a change in culture ànd in tools. OpenShift-in-a-box contains a managed platform to give you the tools at a fixed monthly fee ànd workshops & services to help you drive your change in development culture.
Red Hat multi-cluster management & what's new in OpenShiftKangaroot
More and more organisations are not only using container platforms but starting to run multiple clusters of containers. And with that comes new headaches of maintaining, securing, and updating those multiple clusters. In this session we'll look into how Red Hat has solved multi-cluster management, covering cluster lifecycle, app lifecycle, and governance/risk/compliance.
9 - Making Sense of Containers in the Microsoft CloudKangaroot
Everyone is talking about Containers, but what is this really about what are the benefits of Containers for your customers? You probably think you know, but there is more! And did you know you can run and manage Containers in the Microsoft Cloud? This session will go in to the benefits of Containers for your customers and what Microsoft is offering to facilitate in all your needs. We will touch on technologies like Kubernetes, Docker and we will elaborate on the strong partnerships Microsoft has built with true Open Source companies like Red Hat.
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Ramesh Iyer
In today's fast-changing business world, Companies that adapt and embrace new ideas often need help to keep up with the competition. However, fostering a culture of innovation takes much work. It takes vision, leadership and willingness to take risks in the right proportion. Sachin Dev Duggal, co-founder of Builder.ai, has perfected the art of this balance, creating a company culture where creativity and growth are nurtured at each stage.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
State of ICS and IoT Cyber Threat Landscape Report 2024 previewPrayukth K V
The IoT and OT threat landscape report has been prepared by the Threat Research Team at Sectrio using data from Sectrio, cyber threat intelligence farming facilities spread across over 85 cities around the world. In addition, Sectrio also runs AI-based advanced threat and payload engagement facilities that serve as sinks to attract and engage sophisticated threat actors, and newer malware including new variants and latent threats that are at an earlier stage of development.
The latest edition of the OT/ICS and IoT security Threat Landscape Report 2024 also covers:
State of global ICS asset and network exposure
Sectoral targets and attacks as well as the cost of ransom
Global APT activity, AI usage, actor and tactic profiles, and implications
Rise in volumes of AI-powered cyberattacks
Major cyber events in 2024
Malware and malicious payload trends
Cyberattack types and targets
Vulnerability exploit attempts on CVEs
Attacks on counties – USA
Expansion of bot farms – how, where, and why
In-depth analysis of the cyber threat landscape across North America, South America, Europe, APAC, and the Middle East
Why are attacks on smart factories rising?
Cyber risk predictions
Axis of attacks – Europe
Systemic attacks in the Middle East
Download the full report from here:
https://sectrio.com/resources/ot-threat-landscape-reports/sectrio-releases-ot-ics-and-iot-security-threat-landscape-report-2024/
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
Accelerate your Kubernetes clusters with Varnish CachingThijs Feryn
A presentation about the usage and availability of Varnish on Kubernetes. This talk explores the capabilities of Varnish caching and shows how to use the Varnish Helm chart to deploy it to Kubernetes.
This presentation was delivered at K8SUG Singapore. See https://feryn.eu/presentations/accelerate-your-kubernetes-clusters-with-varnish-caching-k8sug-singapore-28-2024 for more details.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Generating a custom Ruby SDK for your web service or Rails API using Smithyg2nightmarescribd
Have you ever wanted a Ruby client API to communicate with your web service? Smithy is a protocol-agnostic language for defining services and SDKs. Smithy Ruby is an implementation of Smithy that generates a Ruby SDK using a Smithy model. In this talk, we will explore Smithy and Smithy Ruby to learn how to generate custom feature-rich SDKs that can communicate with any web service, such as a Rails JSON API.
Securing your Kubernetes cluster_ a step-by-step guide to success !KatiaHIMEUR1
Today, after several years of existence, an extremely active community and an ultra-dynamic ecosystem, Kubernetes has established itself as the de facto standard in container orchestration. Thanks to a wide range of managed services, it has never been so easy to set up a ready-to-use Kubernetes cluster.
However, this ease of use means that the subject of security in Kubernetes is often left for later, or even neglected. This exposes companies to significant risks.
In this talk, I'll show you step-by-step how to secure your Kubernetes cluster for greater peace of mind and reliability.
Securing your Kubernetes cluster_ a step-by-step guide to success !
There is no such thing as “Vanilla Kubernetes”
1. There is no such thing as
“Vanilla Kubernetes”
Bob Dubois
Cloud Specialist, Red Hat
2. 6 years @ Red Hat
Tech background in network security, storage and data management
Long-term OSS user
(RHEL 4 certified, and RHEL 7, and OpenStack, and OpenShift, and ...)
Spokesman & public speaker for Red Hat
/usr/bin/whoami
3. 6 years @ Red Hat
Tech background in network security, storage and data management
Long-term OSS user
(RHEL 4 certified, and RHEL 7, and OpenStack, and OpenShift, and ...)
Spokesman & public speaker for Red Hat
Actually a musicologist & musician...
/usr/bin/whoami
5. KUBERNETES IS NOT THE END GAME
5
It’s a building block to build app platforms
* https://twitter.com/kelseyhightower/status/935252923721793536
6. BUILDING AN APP PLATFORM IS EXPENSIVE
6
Are you a app platform vendor or do you want to focus on your mission?
* www.crunchbase.com
$33.5M $30M $257.3M$272.9M
It takes real money to build an app platform. Here’s what it took for these start-ups.
7. BUILDERS OF APP PLATFORMS ARE EXPENSIVE
7
The same goes for Kubernetes contributors
* https://neuvoo.com/salary/?job=Kubernetes+Docker+Engineer
https://neuvoo.com/salary/?job=software+developer
https://www.generalschedule.org/GS-15
The average salary for a standard software developer is $101,490.
A GS-15 is at $106,595!
8. KUBERNETES BUILDERS’ VALUE IS EVEN MORE
8
The market value of Kubernetes for resale talent is incredible
* Citation needed
We each paid plenty per engineer for a Kubernetes talent infusion.
$7M$1.9M
10. ORGANIZATIONS NEED LOTS OF HELP
10
Going beyond community support is critical
* https://insights.stackoverflow.com/trends?tags=kubernetes
One half of a percent of Stack Overflow questions are Kubernetes related.
Red Hat answers nearly 2,000 support tickets for Kubernetes a month!
11. You’re not in the business of
building app platforms.
12. A LOT OF THIS GOING AROUND
12
The late-entry Kubernetes vendors want you to believe in “Vanilla”
13. THE VANILLA KUBERNETES MYTHS
13
Why IT shops swoon over “Vanilla” Kubernetes and its perceived value
No “vendor lock-in”
Ultimate portability across Kubernetes Clusters
Always on latest version
14. THE VANILLA KUBERNETES REALITY
14
“Vanilla” Kubernetes is not really vanilla at all
Every vendor operates Kubernetes differently; this matters
Every vendor configures their Kubernetes distribution differently
No vendor is in lockstep with the latest upstream
* https://medium.com/@jzelinskie/youre-not-running-vanilla-kubernetes-2f2359666bf9
15. VANILLA KUBERNETES IS NOT A THING
15
In practice, no vendor distribution of Kubernetes is “Vanilla”
16. So what are late-entry
Kubernetes vendors talking
about?
18. KUBERNETES CONFORMANCE
18
Interoperability at the API
“The new Certified Kubernetes Conformance Program gives enterprise organizations the
confidence that workloads that run on any Certified Kubernetes Distribution or Platform
will work correctly on any other version,” said Dan Kohn, Executive Director, Cloud Native
Computing Foundation. “The interoperability that this program ensures is essential
to Kubernetes meeting its promise of offering a single open source software
project supported by many vendors that can deploy on any public, private or
hybrid cloud.”
One of the goals of the project has always been consistency and portability.
Kubernetes sits on top of the infrastructure and enables you to describe your workload
in a common format. Kubernetes makes it easy to move workloads from one place
to another, or combine disjointed environments with a shared control plane.
This program gives end users the confidence that when they use a Certified
Kubernetes product they can rely on a high level of common functionality. It gives
Independent Software Vendors (ISVs) confidence that if their customer is using a
Certified Kubernetes platform that their software will behave as expected.
* https://github.com/cncf/k8s-conformance
19. FOSS KUBERNETES
19
Upstream is closest to “Vanilla”
Kubernetes
Kube Native
App
Helmed
App
Kubernetes Ingress
Kubernetes CLI
Kubernetes API
* Not comprehensive. Not even close.
20. PKS
20
So BOSH is “Vanilla”?
Ubuntu
BOSH
NSX-T
Kubernetes
Kube Native
App
Helmed
App
Harbor
Ops Manager
Kubernetes Ingress
Kubernetes CLI
Kubernetes API
* Not comprehensive. Not even close. PKS/CF only APIs in bold.
PKS CLI
PKS API
21. Docker EE
21
UCP is definitely not “Vanilla”
Alpine
??
Calico
Kubernetes
Kube Native
App
Helmed
App
DTR
UCP
Kubernetes Ingress
Kubernetes CLI
Kubernetes API
* Not comprehensive. Not even close. DEE only APIs in bold.
22. GKE
22
Even one of the Kube founders is not “Vanilla”
Container-Optimized OS
GCloud
GCP VPC
Kubernetes
Kube Native
App
Helmed
App
Cloud Storage
Container
Registry
Stackdriver
GCloud
Console
Kubernetes Ingress
* Not comprehensive. Not even close. GCP only APIs in bold.
GCP Services and other
Googly Things
Productive
Abstractions
GCP Load Balancer
Cloud Build
Kubernetes CLI
Kubernetes API
GKE CLI
GKE API
23. GKE
23
And what is not “Vanilla” are the things making your job easier
Container-Optimized OS
GCloud
GCP VPC
Kubernetes
Kube Native
App
Helmed
App
Cloud Storage
Container
Registry
Stackdriver
GCloud
Console
Kubernetes Ingress
* Not comprehensive. Not even close. GCP only APIs in bold.
GCP Services and other
Googly Things
Productive
Abstractions
GCP Load Balancer
Cloud Build
Kubernetes CLI
Kubernetes API
GKE CLI
GKE API
24. OPENSHIFT
24
Certified “Pure” Kubernetes and productive abstractions
RHEL
Productive
Abstractions
Ansible/Terraform/Operators
OVN
Kubernetes
Kube Native
App
OpenShift
Red Hat MW
OpenShift Native
App
Operated/Helmed
App
RHT Storage
Quay
Telemetry
(EFK/Profana)
Admin
Console
Kubernetes Ingress OpenShift Routes
Kubernetes CLI OpenShift CLI
Kubernetes API OpenShift API
* Not comprehensive. Not even close. Red Hat or OpenShift only APIs in bold.
Che
Templates/S2I/BC
OpenShift Mesh/Istio
Knative
25. OPENSHIFT
25
We’ve been making Kubernetes productive for a while
1.0 1.1 1.2 1.3 1.4 1.5 1.6 1.7 1.8 1.9 …...
K8S 1.0
K8S 1.0
K8S 1.8
K8S 1.6
2015 2016 2017 2018
K8S 1.9
26. OPENSHIFT
26
We support you no matter what you choose
RHEL
Ansible/Terraform/Operators
OVN
Kubernetes
OpenShift
Portability
Speed to
Value
vs
Productive
Abstractions
28. dev$
dev$
odo create myapp
odo push
dev$
dev$
dev$
dev$
docker build myapp
docker push myapp
kubectl run myapp
kubectl expose myapp
OPENSHIFT
28
Simplified developer experience for quicker business results
RHEL
Ansible/Terraform/Operators
OVN
Kubernetes
OpenShift
* Not comprehensive. Not even close.
Productive
Abstractions
29. KUBERNETES CONFORMANCE
29
Interoperability at the API
“The new Certified Kubernetes Conformance Program gives enterprise organizations the
confidence that workloads that run on any Certified Kubernetes Distribution or Platform
will work correctly on any other version,” said Dan Kohn, Executive Director, Cloud Native
Computing Foundation. “The interoperability that this program ensures is essential
to Kubernetes meeting its promise of offering a single open source software
project supported by many vendors that can deploy on any public, private or
hybrid cloud.”
One of the goals of the project has always been consistency and portability.
Kubernetes sits on top of the infrastructure and enables you to describe your workload
in a common format. Kubernetes makes it easy to move workloads from one place
to another, or combine disjointed environments with a shared control plane.
This program gives end users the confidence that when they use a Certified
Kubernetes product they can rely on a high level of common functionality. It gives
Independent Software Vendors (ISVs) confidence that if their customer is using a
Certified Kubernetes platform that their software will behave as expected.
* https://github.com/cncf/k8s-conformance