Container Stack Mini-Conference - August 3, 2017 - Oregon Convention Center, Portland - Part of DevOpsDaysPDX - Affiliated with DynamicInfraDays

ContainerDayPDX Schedule

July 10, 2017 in #schedule #talks

image of container shipping schedule

The ContainerDayPDX schedule for August 3rd follows. This schedule syncs with the schedule for CfgMgmtCamp, so you may attend talks at both events. The Keynote and Ignite Talks are shared between the two events.

All talks are in Concourse B Meeting Rooms. CfgMgmtCamp and general sessions are in B113-B115, and ContainerDay sessions are in B118-B120.

The schedule for all three days may be found on the DevOpsDays site.

Scroll down for the talk descriptions.



ContainerDay Track

CfgMgmtCamp Track

08:00 AM

09:00 AM

Registration, Coffee

09:00 AM

09:15 AM


09:15 AM

09:50 AM

Morning Keynote:
Real Time Config: Enforcing Policies with Kubernetes Initializers
Kelsey Hightower

09:55 AM

10:30 AM

Things to Know About the Istio Project
Christopher Aedo
I got a lot of problems with infrastructure-as-code and now you're gonna hear about it
Max Timchenko

10:30 AM

10:45 AM


10:45 AM

11:20 AM

Deploying Kubernetes Clusters with the Ciao Project
Kristen Accardi
Event Driven Infrastructure
Mike Place

11:25 AM

12:00 Nn

Bare Metal Kubernetes: More Containers, Less Overhead
Dustin Kirkland
Building security into your workflow with InSpec
Eric Maxwell

12:00 Nn

01:00 PM


01:00 PM

02:00 PM

Ignite Talks

02:05 PM

02:40 PM

DevSecOps the Open Source Way

William Henry

Windows Configuration Management with Puppet
Gene Liverman

02:45 PM

03:20 PM

Enforcing Bespoke Policies in a Cloud Native System
Torin Sandall
Next Generation Config Mgmt: The Language
James Shubin

03:20 PM

03:35 PM


03:35 PM

04:10 PM

From Test to Prod With Containers
Dennis Kliban
Configuration Management -> Container Scheduling
Dan Bode

04:15 PM

04:50 PM

Fission: Serverless Functions for Kubernetes
Soam Vasani
Taming Terraform Workflow
Anubhav Mishra

04:55 PM

05:30 PM

Afternoon Keynote
20 Years of Configuration Management
Eric Sorenson

Talk Descriptions

Real Time Config: Enforcing Policies with Kubernetes Initializers

Kelsey brings together configuration management and container orchestration with this demo. Also voice control!

Things to Know about the Istio Project

Istio is a new open platform providing managed traffic flows between containers with fine grained control, policy support, service-to-service authentication, integrated metrics, load balancing and more. In this talk Christopher Aedo will cover where this project came from, what you can do with it now, and where it's headed in the future. A live demo will be included to demonstrate the concepts covered.

Developing Kubernetes Clusters with the Ciao Project

Ciao (Cloud Integrated Advanced Orchestrator) is lightweight, an easy to deploy, secure, scalable cloud orchestration system which handles virtual machines, containers, and bare metal apps agnostically as generic workloads. ciao is written in go and optimized for private cloud deployment. ciao has recently added kubernetes support for users who wish to deploy kubernetes clusters either inside a private cloud, or within a single virtual machine for development. This talk will give a brief overview of the ciao architecture, and then cover the implementation details of the kubernetes cluster creation support. We will end with a demonstration on how to create a kubernetes cluster within a single vm with ciao.

Bare Metal Kubernetes: More Containers, Less Overhead

Kubernetes is the software development paradigm shift of our decade. Conceptually, it will become as important as Windows was in the 1980s, Java in the 1990s, and Linux in the 2000s. Now, Kubernetes is transforming how we deliver scale out, cloud native workloads, with an acute emphasis on portability across public clouds and private infrastructure. Kubernetes in the public cloud – Google, Microsoft, Amazon, and others – is well understood by most cloud native developers. But to complete the circuit, Kubernetes on premises, behind the firewall, and directly on corporate owned hardware, must be a tractable solution. In this session, Dustin Kirkland, Canonical’s head of product management, will lead an interactive demo, deploying the latest upstream release of Kubernetes onto a portable Orange Box cluster of 11 physical machines on stage, using 100% free and open source software.

Ignite Talks

Educate me, but make it quick! Join us for a series of Ignite talks on configuration management and containers. This will be held jointly with the folks at CfgMgmtCamp. The ordering below is not determinative.

  • Spencer Krum : Vox Pupuli
  • Bernd Erk : Monitoring as Code
  • Garrett Honeycutt : Layered Control Repos - Improving collaboration between teams
  • JJ Asghar : VMware ecosystem in 5 minutes
  • Josh Berkus : Our Immutable Future
  • Grace Chung : Enterprise Container Strategy: Start to finish in 15 minutes
  • Chakradhar Rao Jonagam : Zero To Hero in 10 Minutes
  • Ken Mugrage : It's not Continuous Delivery if you can't deploy right now
  • Ryan Whitehurst : Reproducible Infrastructure With Terraform and Puppet
  • Rich Burroughs : What Are You Running? PuppetDB Knows.

DevSecOps the Open Source Way

DevOps purists may chafe at the DevSecOps term given that security and other important practices are supposed to already be an integral part of routine DevOps workflows. But the reality is that security often gets more lip service than thoughtful and systematic integration. This despite a threat environment, distributed development teams, and rapid iterative releases requiring security approaches that are continuous, adaptive, and heavily automated. Red Hat’s expertise with open source software and practices offers direct lessons for DevSecOps. In this session, we’ll look at successful practices that distributed and diverse teams use to iterate rapidly. While still reacting quickly to threats and minimizing business risk. We’ll discuss how modern container platforms, like OpenShift, can serve as the foundation for DevSecOps in your organization. We’ll also consider the risk management associated with integrating components from a variety of sources--another consideration that open source has had since the beginning. Finally, we’ll show ways by which automation using tools and repeatable trusted delivery of code can be built directly into a DevOps pipeline.

Enforcing Bespoke Policies in Cloud Native Systems

The rise of DevOps and Cloud Native technology means that organizations increasingly rely on decentralized teams to manage deployments of complex distributed systems through fully-automated, self-service platforms like Kubernetes. At the same time, organizations still require tight control over their apps and infrastructure to satisfy important requirements around performance, cost, and security. As projects in the container and microservice spaces mature, extensibility has become a critical feature that platform engineers and administrators leverage to enforce their organization’s custom policies.

In this talk, Torin will show (with demos) how you can leverage Kubernetes third-party resources, webhooks, and operators to enforce custom policies over resources admitted into the cluster. The talk will also show how the same principles can be applied to enforce policies in other parts of the stack.

This talk is targeted at platform engineers and administrators that work with or build container orchestration solutions. Attendees can expect to walk away with an understanding of how to leverage extensibility in projects like Kubernetes to achieve greater control and flexibility over important workloads.

From Test to Prod With Containers

As a container is tested and promoted through lifecycle environments, it is likely rebuilt at each stage along the way. This talk highlights what can cause a container to mutate from one build to another and makes a strong argument for promoting binaries as you need to move code through all the lifecycle environments in your CI pipeline. Attendees will examine the difficulties of using a standalone Docker registry to promote builds from one environment to another and will then see a demo of how to use Pulp and Crane to enhance this experience. This talk would be appreciated by both developers maintaining CI pipelines as well as release engineers deploying applications to production.

Serverless Functions For Kubernetes

"Serverless" functions allow users to easily create services from source code without dealing with packaging, deployment, scaling, etc.

Fission is a serverless function/FaaS framework built on Kubernetes. Users write functions and map them to HTTP routes. They don't have to deal with container images, registries or even learn Kubernetes in much detail.

Functions can be associated with HTTP routes, events, or timers. Functions consume CPU and memory resources only when running; they are started on-demand and killed when idle. Fission makes on-demand function loading very fast, by keeping an idle pool of containers running, in effect creating a distributed "threadpool".

20 Years of Configuration Management

Our closing session will be shared with CfgMgmtCamp. This will be a retrospective on the last two decades of Ops through the lens of configuration management.

Share on Google+
No Newer Posts
No Older Posts