Conf42 Cloud Native 2021

🔴 Conf42 Cloud Native 2021 is here! 🐳 Watch the content without limits: https://www.conf42.com/cloud2021 Meet speakers on Discord 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ 45+ talks available to watch on demand! Pick some hints from experienced Cloud-Trotters before taking off yourself! 🚀☁️ — 00:00 Sponsored Segment 11:06 Preamble ✨ Featured talks 11:43 Or Elimelech & Eldad Rudich 12:14 Michael Sickles 12:46 Josh Stella 13:19 Uma Mukkara 🤿 Deep Dive Track 13:35 Natalie Pistunovich 14:00 Adam Gordon Bell 14:31 M4dz 14:56 Mary Grygleski 15:23 Ismael Hommani & Joachim Rousseau 15:52 Phil Wilkins 16:14 Akanksha Sheoran 16:36 Rafal Leszko 17:00 Ricardo Miranda 17:33 Adrienne Tacke 17:55 Leonardo Murillo 18:22 Larry Finn 18:49 Pawel Skrzypek & Alicja Reniewicz 🔒 Security Track 19:17 Ara Pulido 19:53 Mofizur Rahman 20:11 Brian Vermeer 20:36 Vandana Verma 21:01 Stuart Green 21:40 Ashish Rajan 💪 Reliability Track 22:12 Andrew Robinson 22:43 Eduardo Janicas 23:02 Jorge Fonseca 🔬 Observability 23:30 Dotan Horovits 23:52 Aviad Mor 24:12 Michael Haberman 24:42 Erez Berkner ♾️ CI/CD Track 25:08 Matt Jarvis 25:41 Efi Merdler-Kravitz 26:04 Zan Markan 📝 Lessons Learned Track 26:28 Lian Li 27:02 Daniel Bass 27:31 Dhiraj Hegde 28:03 Shelby Spees 28:35 Stephane Jourdan 29:07 Elder Moraes 29:32 Marco Coulter 30:21 Nicolas Frankel 31:01 Rob Zuber 31:24 Fabricio Buzeto 32:06 Joe Karlsson 32:45 Tom Granot - revisited 33:23 Thank you! Come have a chat on discord! — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Or Elimelech SRE Lead & Eldad Rudich Director of Engineering @ StackPulse At StackPulse we use a full CI/CD pipeline with FluxCD + Flagger, in order to support our CD culture needs. We also developed Puerta — a homegrown gating service that implements the Flagger webhook phases to support time-based approvals, triggering E2E jobs (CircleCI etc.), load-testing and auto release to production once canary passes on staging. In this session, we’ll discuss why and how we built Puerta and dig into three key areas: - How to customize your CD workflow to fit your needs and culture - How to empower developers so they can quickly deploy their code securely - How we dedicated time and resources to developing this internal CD service — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Michael Sickles Solution Architect @ Honeycomb.io Michael Sickles will walk through instrumenting the Google Microservices demo app in OpenTelemetry. This demo app uses Go, Java, NodeJS, .Net, and Python all communicating in a distributed microservice architecture. Michael will talk about the challenges he faced to get everything to connect and show up in a single OpenTelemetry Trace. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Josh Stella CEO & CTO @ Fugue (and Sherlock 🐶) If you use Amazon Web Services (AWS), you’re probably making extensive use of AWS Identity and Access Management (IAM). It’s a powerful service for managing access to your AWS services and resources that is almost like a new kind of network in the cloud. But for enterprise cloud environments, AWS IAM security can become quite complex. Recent high-profile cloud-based data breaches have involved AWS IAM but cannot be chalked up to simple customer mistakes. Rather, advanced cloud misconfiguration attacks exploit IAM misconfigurations that compliance controls and security professionals often miss. In this session, Josh will walk through some of these IAM misconfigurations, using the AWS console to demonstrate to participants how to avoid becoming a victim of cloud exploits through IAM. Josh will dig into AWS IAM and take us on a deep dive into the layers of AWS IAM and how malicious actors can exploit common misconfigurations to gain access to—and extract—data without detection. You’ll understand how to identify AWS IAM misconfiguration vulnerabilities you’ve missed before—and how malicious actors exploit them. In this talk, Fugue co-founder and CEO, Josh Stella digs into how AWS IAM works to help you think more critically about the security for your AWS use cases. You’ll understand how to identify AWS IAM misconfiguration vulnerabilities you may have missed before—and how malicious actors exploit them. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Uma Mukkara CEO @ ChaosNative Reliability is key to adoption and scale of cloud native systems. Chaos Engineering is a way of measuring how reliable the services are. There are a host of ways to use Chaos Engineering in DevOps. This session describes the importance of Chaos Engineering and best practices around them specifically to Cloud Native environments. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Natalie Pistunovich Lead Developer Advocate @ Aerospike How did we build a k8s operator that allows 100% up time for a high availability high workload database? Operating a distributed high load, high throughput database in the cloud comes with several interesting challenges. In order to manage real-time serving of mission critical workloads at 100% availability we developed a Kubernetes operator that handles the operational complexities. We needed to handle the following requirements: - Apply live patches - Replace live cluster with tens of nodes - Handle degraded/crashed nodes Under these conditions: - High Availability - remain 100% online with no down time - Operate under very high workloads and traffic - Manage replicated records across different hardware failure groups (rack awareness) Due to its stateful nature and the type of workloads that are usually handled, cluster management and recovery are non-trivial. We are using the Operators API to handle that complexity and control the clusters from within Kubernetes. In this talk we’ll cover the steps we took to plan and execute and the challenges we faced and share the best practices. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Adam Gordon Bell Developer Advocate @ Earthly What happens when you take a Dockerfile and build it? How is the series of commands executed and turned into a docker image and then a container? The answer is BuildKit. BuildKit is an OCI image builder and it is behind every docker build and the secret sauce in several other projects. In this talk, I will explain how BuildKit works. We will learn it is a compiler and like many compilers, it has a frontend, a backend, and an internal representation (IR). As we will learn about this hidden gem we will also learn a little bit about compilers and containerization. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

M4dz Tech Evangelist - Developer Advocate @ AlwaysData Kubernetes, Docker, LXC, Virtual Machines, Micro-services… And what if all the trendy tail of containers isn't just f** up? Let's see how we run isolation and containers in our PaaS using POSIX and Linux native features: Cgroups! We power a PaaS platform, but we don't choose to rely on fancy containers technologies to run isolation. Instead, we intensively rely on permissions and cgroups. Here's an explanation of our architecture, how we use it in production, and why we made those choices that we support for a while now. A proper introduction to isolation in production, for a lightweight environment, far away from Docker, Kubernetes, and others trendy stuff. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Mary Grugleski Developer Advocate @ IBM How does one choose to architect a system that has a Microservice / REST API endpoints? There are many solutions out there. Some are better than others. Should state be held in a server side component? Generally we are told this is a bad practice, but is it? It’s unclear and this confusion may lead to poor technology stack choices that are impossible or extremely hard to change later on as your system evolves in terms of demand and performance. We learn from the experience of others. Choosing who to follow is hard and this topic will help you the developer or technical decision maker to meet your company’s I.T. demands in the modern world. We will explore into a tried and true, enterprise-grade, Java Open Source stack - Open Liberty in Kubernetes - which exercises and promises to fulfill the expectations of a modern server solution that epitomizes all the elements needed to build, run and deploy an efficient production system today. We will examine and demonstrate the fundamentals of such a system that’s built with Open Liberty in Kubernetes: * Microservices/REST API – Options to use when running your apps in the JVM * Concurrency – how to take advantage of multi-core CPUs and clustered distributed systems * Stateful vs Stateless - while stateless apps are easier to implement, the bulk of the apps in production are stateful which involve a higher level of complexity and risk, especially when data would need to travel across multiple machine and network boundaries * Deployment – how about containerization and orchestration using Kubernetes? — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Ismael Hommani - Cloud Native Developer & Joachim Rousseau - Coding Architect @ WeScale Cloud is now well accepted in development practices. Projects with no cloud element are more the exception than the rule. However, this new paradigm requires adjustment for your workloads. It is not just about containerization, micro-service approach or managed services usage. Code organisation must also reflect the adoption of this new paradigm. Configuration is part of it. Traditionally thought as an operational element, it becomes more and more prevalent in an environment where high-scalability, distribution but also failures are the watchwords. How to guarantee the consistency of our configuration amongst the thousands of instances that represents our applications ? How to automate the entire configuration lifecycle ? Should we even think about live configuration update? Questions that predate the cloud era but that have been exacerbated by the cloud arrival. In this session we would like to introduce you with a Cloud-Native pattern called “Configuration layer”. Through theory and practice, we would like to demonstrate the elegance of the approach in a Cloud-Native environment to industrialize your configuration management. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Phil Wilkins Senior Consultant & Tech Evangelist @ Capgemini Author: https://www.manning.com/books/logging-in-action Understanding what is happening with a distributed solution can be challenging. Whilst the solution space for monitoring and application log management is mature, there is a tendency for organizations to end up with multiple tools which overlap in this space to meet different team needs – result multiple agents/probes on every server. Many of these tools work by bulk central analysis rather than enabling events of interest to be spotted as they’re logged. Fluentd presents us with a means to simplify the monitoring landscape, address challenges of hyper-distribution occurring with microservice solutions, allowing different tools needing log data to help in their different way. Without imposing a specific analysis tool on relevant teams. In this session, we’ll explore the challenges of modern log management. We’ll look at how Fluentd works and what it can bring to making both development and ops activities easier. To do this we’ll explore and demos some examples of Fluentd and how it makes life easier & more efficient. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Akanksha Sheoran EMEA Business Development Manager @ AWS In this session, you will learn how AWS databases help you save cost, increase agility and innovate faster. We will also look into our NO-SQL database portfolio and Managed open source DB's — 00:00 Intro 00:45 Rapid expansion of data requirements 02:34 Self-managed databases 04:03 Fully-managed services on AWS 06:16 Move to fully-managed databases 07:07 Move to managed relational databases 08:41 Move to managed non-relational databases 09:34 Old-guard database providers 10:12 Amazon Aurora 11:46 App architectures & patterns 13:00 Modern application requirements 13:50 Building modern apps with purpose-built databases 15:31 Amazon DynamoDB 17:03 Amazon DocumentDB 18:18 Database Freedom: Break free from legacy databases 18:50 Legacy databases to AWS migration playbooks 20:15 Why involve a partner? 20:40 AWS migration partners 20:57 Learn databases with AWS Training and Certification 21:15 Get started — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Rafal Leszko Cloud Native Team Lead @ Hazelcast Kubernetes brings new ideas of how to organize the caching layer for your applications. You can still use the old-but-good client-server topology, but now there is much more than that. This session will start with the known distributed caching topologies: embedded, client-server, and cloud. Then, I'll present Kubernetes-only caching strategies, including: - Sidecar Caching - Reverse Proxy Caching with Nginx - Reverse Proxy Sidecar Caching with Hazelcast - Envoy-level caching with Service Mesh In this session you'll see: - A walk-through of all caching topologies you can use in Kubernetes - Pros and Cons of each solution - The future of caching in container-based environments — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Ricardo Miranda Big Data Consultant @ Closer Consulting Cloud native is all about speed, time from merging a PR to have this feature in production is priceless. The unique successful path is starting automation development immediately. This strategy as the side effect of incrementally hardening the automation layer, testing in prod the automation layer. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Adrienne Tacke Senior Developer Advocate @ MongoDB Public, Private, Hybrid...Multi-Cloud? As the cloud development options and architectures continue to evolve, we've finally found ourselves at the next new thing: Multi-Cloud. What is it? Do we really need it? How would you take advantage of a multi-cloud solution? In this talk, I'd like to describe a few real-world use cases where a multi-cloud solution is currently in production, specifically when it comes to data. Specifically, we'll see how multi-cloud helps: - Data Sovereignty scenarios - Fulfill varied client cloud requirements - Developers have more freedom in choosing services - Achieve greater availability A demo on how to setup a multi-cloud cluster will also be shown. The audience will leave with a more confident understanding of real-world, multi-cloud use cases and see how to create their own! — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Leonardo Murillo CTO @ Qwinix How would you like for resources to be automatically created across any clouds of your choosing by simply pushing a manifest to a repository? In this talk we'll see hands on how to do multi cloud management following the GitOps operating model by leveraging Flux2 and Crossplane! A continuous delivery world without pipelines, with automatic reconciliation of resources eliminating all drift in configuration, everything versioned and everything declarative! That is what GitOps is all about. What if only you could follow this same operating model for all your cloud resources, across any public cloud? In this talk you'll learn how to do precisely that! We will be using Flux2 and Crossplane, and you will see hands on how, using these two CNCF projects, you can manage your entire multicloud architecture using Kubernetes as your control plane while following the GitOps principles. You will learn to: - Install Flux2 - Using Flux2, install Crossplane in your cluster - Configure AWS and GCP providers for Crossplane - Deploy resources across both clouds with nothing but a push to the repo This talk is all about code! A couple of slides in the deck to give a brief intro of GitOps and the two projects we'll be using, and then it's all live code! — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Lawrence Finn Author of Cloud Sidecar Many companies want to become multi-cloud or have the ability to switch clouds. However, cloud providers try hard to lock in customers with proprietary services like storage. Cloud Sidecar provides a simple way to take existing software and deploy it to different clouds without complex rewrites. Cloud providers offer numerous services that abstract away common problems from software developers. No longer do companies need to manage their own file storage solutions, message queues, key-value stores, etc... The problem is, once you start building software on top of these services you get locked into that specific cloud provider. This is better known as vendor lock-in. Of course, the more services you use the harder it is to go multi-cloud or switch clouds. Cloud Sidecar solves the problem of vendor lock-in by converting requests from one cloud's API to another cloud's API. So if your applications use Amazon Web Services' S3 and SQS, you can easily deploy Cloud Sidecar next to your application and now it automatically uses Google Cloud's GCS and Pubsub. Learn about Cloud Sidecar, how it works, how easy it is to modify your software to use it, and how you can deploy it. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Paweł Skrzypek - CTO & Alicja Reniewicz - Full Stack Engineer @ 7bulls.com The dynamic development of Cloud Computing with the introduction of novel Cloud computing models like serverless creates new challenges for Cloud deployment. This presentation describes how to implement Multi-Cloud native strategies using advanced an open source framework that allows for Cloud-agnostic Multi-Cloud deployment and optimized management of the serverless applications based on flexible monitoring, context aware maximization of the application owner’s utility of the deployed serverless components, and autonomic reconfiguration based on the application’s current execution context. All stages of the cloud deployment planning and designing process will be shown. Also, the key execution steps will be provided. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Ara Pulido Developer Relations @ Datadog Sometimes, RBAC is not enough: we need ways to define and enforce fine-grained policies for our clusters. Gatekeeper and OPA make it easy to adopt policy-as-code practices in Kubernetes. You’ll learn how to adopt these techniques and how to integrate Gatekeeper with your existing tools. Kubernetes provides a native Role based access control (RBAC) authorization scheme, allowing cluster operators to define rules to define which operations users or services can do against a particular Kubernetes object. As more enterprises migrate to cloud native environments like Kubernetes, RBAC alone presents limitations. The need for more scalable ways to define and enforce fine-grained policies increases: how can I limit the number of replicas of a pod for certain users? how can I ensure that all images come from trusted registries? In this talk we will demo Gatekeeper for Kubernetes environments. You’ll learn how to adopt policy-as-code techniques and how you can integrate Gatekeeper with your existing tools. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Mofizur Rachman Developer Advocate @ IBM Kubernetes makes it possible to run containerized application at scale. It solves many problems of microservice architecture by abstracting away things like container deployment, container-to-container communication, load balancing. While Kubernetes is great at it many things, it seems to be lacking in terms of security. It has some security features but in most respect it is not production grade security, at least not by default. If you are thinking about or already started with Kubernetes for your production workload, there are some steps you could follow to make sure your environments sand applications is secure. In this talk we will discuss some best practices for Kubernetes security. From container image to secret management, we will try to cover it all. And after this talk hopefully we will all be in a better position to harden and secure our Kubernetes cluster. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Brian Vermeer Developer Advocate @ Snyk There’s no better way to understand container security than seeing some live hacking! This session introduces the state of docker security by reviewing vulnerabilities in Docker images and their impact on applications and demonstrates via hands-on live hacking. This session further provides the audience with security best practices when building docker container images, and each successful hack will help you better understand the mistakes you can make, their implications, and how you can avoid them. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Vandana Verma Security Architect @ IBM Organisations are moving to cloud due to easy of use, scalability, computing services and many more things that cloud has to offer. Tough times have changed the paradigm to a new level where organisations which were only in the planning stage are now on the cloud. However, when cloud offers the benefits, there are certain Risks that also come with it. The stepping stone while taking the step forward towards cloud is Architecture Review or Secure Architecture Review. We will be touching up various clouds. This talk will cover the following aspects around Cloud Services. 1. Basics of Cloud Security Architecture and why to need an Architecture Review 2. Architecture Review Methodology 3. How is it useful? 5. What the developers or admins have to keep in mind — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Stuart Green Cloud Security Architect @ Check Point Software Technologies This session reveals Check Point Research (CPR) latest Cloud related findings. From a fraudulent wire transfer initiated through an email compromised on a cloud app to a vulnerability within a public cloud infrastructure, CPR analyse the latest risks and threat landscape of public cloud. The session will also include global threat intelligence stats related to COVID-19 and public cloud. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Ashish Rajan Producer and Host @ Cloud Security Podcast This talk is a Practitioners story on what it is really like to run Cloud Security Assessment compared to what the blogs and Cloud Service Provider documentation will tell you. There are some hard truths here, some Cloud Security Assessors might not like me giving away the reality but it is better out than in. I share Real world Assessment stories and how it differs from documentation and some automation tools that I personally use for running automated security scans If you are a seasoned Cloud Security Assessment running person or If you are looking at starting to do Cloud Security Assessment in Cloud, you will get a glimpse of what that world really looks like. You might not like me if you are CSPM but the truth has to come out. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Andrew Robinson Principal Solutions Architect @ AWS We can improve the reliability of services by decoupling dependencies, using health checks, and understanding when to use fail-open and fail-closed behaviours. In this session we’ll talk about and demonstrate how to implement graceful degradation, monitor all the layers of your workload to help detect failures, route traffic only to healthy nodes, use fail-open and fail-closed as appropriate in response to faults, and reduce mean time to recovery. We’ll take some lessons learnt from the AWS Well-Architected framework and from the Amazon Builder’s Library, showing some of how Amazon builds and operates it’s software. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Eduardo Janicas Solutions Architect @ IBM In this session, we’ll define a pattern that we use called static stability to achieve extremely high HA targets. We’ll show you how we apply this concept to Availability Zones, a key infrastructure building block in AWS and therefore a bedrock dependency on which all of our services are built. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Jorge Fonseca Solutions Architect @ AWS — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Dotan Horovits Product Evangelist @ Logz.io Modern systems today are far more complex to monitor. Microservices combined with containerized deployment results in highly dynamic systems with many moving parts across multiple layers. These systems emit massive amounts of highly dimensional telemetry data from hardware and the operating system, through Docker and Kubernetes, all the way to application and its databases, web proxies and other frameworks. Many have come to realize that the commonly prescribed Graphite+StatsD monitoring stack is no longer sufficient to cover their backs. New requirements need to be considered when choosing a monitoring solution for the job, including scalability, query flexibility and metrics collection. In this talk Horovits will look at the characteristics of modern systems and what to look for in a good monitoring system. He will also discuss the common open source tools, from the days of Graphite and StatsD to the currently dominant Prometheus. This talk will put you on the right track for choosing the right monitoring solution for your needs. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Aviad Mor CTO @ Lumigo While applying distributed tracing on your own code is relatively simple, the real challenge is how to trace a full transaction across services. In this session, we'll understand the technical challenges gaining observability with managed services and see together how we can solve them. Serverless computing transactions are a combination of owned code (like AWS Lambda) and managed services (Like SNS, SQS, EventBridge, DynamoDB and more). Applying distributed tracing on your own code through instrumentation is relatively simple (though require a lot of work). The challenge lays with the managed service, how to trace a full transaction across services like queues, streams, and databases. In this session we will discuss: - The technical challenges gaining observability with managed services. - Methods to build the full trail of transactions across managed services. - Ideas on how to obtain observability in a highly async distributed world. - We’ll technically drill down to some managed services examples. Let’s have an async observability discussion, to be continued on Discord. — 00:00 Intro 00:40 Preamble 01:00 Agenda 01:35 Who am I? 02:19 Serverless Changes Everything 02:32 Serverless Components 03:46 Serverless Impact 05:28 Serverless Challenges 06:22 Async Patterns 07:21 Troubleshooting Serverless 07:47 Severity 11:04 Debug 12:52 Solutions 13:02 Option 1 Cloudwatch & Friends 14:12 Option 2 Homebrewed Solutions 18:10 Option 3 Serverless Monitoring Solutions 19:37 Medtronic & Lumigo - Backtrace chain of async events 21:40 Pinpoint 1 invocation out of 1B 22:06 Optimize 22:33 Track deploy effects 23:11 Takeaways 24:00 Thank you! — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Michael Haberman CTO @ Aspecto — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Erez Berkner CEO @ Lumigo Monitoring Kubernetes-based application is a common practice nowadays. What is changed when moving to Serverless? Comparing an established practice to a new practice can assist developers to build the right journey to the serverless world. The software we write does not always work as smoothly as we would like. In order to know if something went wrong, understand the root cause and fix the problem, we need to monitor our system and get alerts whenever issues pop up. There are many useful tools and practices for Kubernetes based applications. As we adopt serverless architecture can we continue to use the same practice? Unfortunately the answer is "no". In this session we will discuss: The differences between monitoring Kubernetes and serverless based applications Best practices for serverless monitoring Methods to efficiently troubleshoot serverless based applications Join the session and start enjoying the great benefits of serverless computing. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Matt Jarvis Senior Developer Advocate @ Snyk In the world of continuous delivery and cloud native, the boundaries between what is our application and what constitutes infrastructure is becoming increasing blurred. Our workloads, the containers they ship in, and our platform configuration is now often developed and deployed by the same teams, and development velocity is the key metric to success. This presents us with a challenge which the previous models of security as a final external gatekeeper step cannot keep up with. To ensure our apps and platforms are secure, we need to integrate security at all stages of our pipelines and ensure that our developers and engineering teams have tools and data with enable them to make decisions about security on an ongoing basis. In this session I will talk through the problem space, look at the kinds of security issues we need to consider, and look at where the integration points are to build in security as part of our CI/CD process. — 00:00 Intro 00:40 $whoami 00:50 What is an application? 01:38 Shifting security 03:50 New vulnerabilities each year by ecosystem 04:20 The direct and indirect dependency split across ecosystems 05:32 Developers own the security of container images 06:02 Number of OS vulnerabilities by docker image 06:44 Linux OS vulnerabilities steadily increasing 08:02 Configuration is increasing in code 08:20 Configuration is everywhere 09:01 Configuration is a security risk 09:45 Insecure by default 11:15 Container Security Spectrum 11:44 Developer First... 12:11 Remediation guidance to minimize exposure and reduce time-to-fix 12:54 Make sure our repos are secure! 14:20 Pull request scanning and repository monitoring 15:04 Scan images in registries ... 15:34 CI Pipelines 15:57 Protect your application 17:00 It is critical for developers to secure containers from the start 17:37 Detect vulnerabilities 17:51 Thank you! — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Efi Merdler-Kravitz VP R&D @ Lumigo Serverless development introduces a new methodology of how to build real “Cloud Native” applications or workloads. It is impossible to duplicate an exact serverless environment to be run locally, and this is influencing the tools we use and the way we need to manage our CI/CD pipelines. The main goal of Serverless is to release software faster. So, practicing CI/CD is the logical thing, but there are some adaptations that need to be taken. In this session, we will share how we are doing CI/CD on a pure serverless platform we are developing. We will discuss: - Dev Environment - Testing Methodology - Deployment Pipeline, combining Bash, AWS CLI, and Serverless Framework to create a seamless CI/CD pipeline - Monitoring Let's discuss good serverless practices. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Zan Markan Developer Advocate @ CircleCi What's the longest CI/CD build you worked with? Mine once took whole day. This is a tale of creating and taming that monster build. When developing software and maintaining CI/CD and testing pipelines we are often compelled to increase our test coverage by adding more tests, and therefore improve our apps’ quality. After all, more automation equals better software, right? There’s a flipside to this equation however, and a point at which we start seeing diminishing returns from each test we add. Taken to extreme, these diminishing returns begin to actively harm our ability to deliver working software. In this talk we will look at a tale of creating and taming a monster of an all day build (one that really happened to me once), and cover tips, tricks, and tools to help you avoid that scenario in the future - from obvious suggestions such a s adding resources to your build machines, to less obvious ones like removing tests altogether. This talk will cover tips, tricks, and tools that help you speed up builds - from adding resources to test splitting to bringing a hatchet to your test suite. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Lian Li Engineering Manager @ Container Solutions Kubernetes has become the new darling of the infrastructure world. Not only is it a great piece of technology for managing your containers, but in conjunction with the possibility to rent managed clusters from any of the big Cloud providers, Kubernetes offers organisations the possibility to get rid of the shackles of hosting and/or managing one’s infrastructure. But that does not mean that Kubernetes is a one-size-fits-all solution. Especially in big corporations, bigger, systemic and/or more pressing problems could be revealed while implementing a big shift like moving to the cloud. As consultants, we can often observe the chaos and frustration that breaks out, when the vision of management does not align with the reality of what the teams are able to deliver. More often than not, it’s not a technological problem, but a cultural one. When is an organisation ripe for cloud transformation? How can we make sure we are addressing the problems at their root? Kubernetes alone won’t save you, but with the right mindset, it might be just what you needed to save yourself. — 00:00 Intro 00:40 Lian Li 01:33 Kubernetes won't save you 02:14 The state of Kubernetes 04:42 You're holding it wrong 05:03 What is Cloud Native? 11:49 Form follows function 13:02 The Golden Circle 15:45 Continuous Learning 17:33 Psychological safety 20:58 Collaboration 21:25 3 core interaction modes 24:56 Cloud Native Transformation Kit 26:03 Thank you! — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Daniel Bass CTO @ Zeti Hear from the CTO of Zeti about how he is building an entire FinTech startup completely on Serverless technology. Learn about the challenges we've faced, and the unique power of the Cloud Native Serverless technology we are using to solve them. Zeti is a pay-per-mile green vehicle financing platform, accelerating the move to zero emission transport. We have a network of Internet of Things devices in vehicles tracking their usage. We monitor and retrieve the data from these devices using a serverless system built on Azure. You'll hear about how we designed and built that system, and the key challenges it solves - particularly those brought about by rolling lockdowns. You'll also hear about how Serverless benefits the environment compared to other techniques, and how it's excellent security profile makes it a good fit for Financial organizations. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Dhiraj Hegde Architect @ Salesforce Operating a distributed system like HBase/Hadoop FS at peta byte scale took years to master in our private data centers. This talk describes our dramatic shift towards running a mission critical stateful application on Kubernetes in Public Cloud, why we did it and the challenges we had to overcome. Salesforce runs a very large footprint of HBase and HDFS clusters in our data centers with multiple petabytes of data, billions of queries per day over thousands of machines. After more than a decade of running our own data centers, we pivoted towards public cloud for its scalability and availability. As part of this foray, we made a bold decision to move our HBase clusters from staid bare metal hosts to the dynamic and immutable world of containers and Kubernetes. This move brought with it a number of challenges which are likely to find echoes in other such mature stateful applications adapting to public cloud and Kubernetes. The challenges include 1. Limitations in Kubernetes while deploying large scale stateful applications 2. Failures in HBase/HDFS as the DNS records keep changing in Kubernetes 3. Resilience of HBase/HDFS even when a whole availability zone fails in Public Cloud 4. Introducing encryption in communication over untrusted public cloud networks without application being aware This talk will go over how we overcame these challenges and the benefits we are beginning to see from these efforts. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Shelby Spees Developer Advocate @ Honeycomb.io How did Honeycomb have the confidence to migrate to a more efficient processor architecture, resulting in a 40% reduction in AWS spend on their backend ingest service? In this talk, Shelby Spees explores how Honeycomb’s platform engineering measured the risk and ROI of moving their high-traffic ingest workloads to the new ARM-based Graviton2 processor architecture. Learn how high-cardinality observability data supported performing side-by-side comparisons of the same workloads on different processor architectures, and how to gain similar insights into your own infrastructure. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Stephane Jourdan CTO @ CloudSkiff As infrastructure as code (IaC) becomes widely adopted by users with heterogenous skillsets, and as IaC codebases become larger and larger, it becomes harder to track drift. Drift is a deviation between the actual infrastructure state and the IaC codebase. It causes issues for security posture management, collaborative work, and maintenance. It’s hard to improve what you can’t measure! Can we define good metrics for drift? Developers track unit tests coverage to track how well unit tests match application code over time. Can we use an analogy and define infrastructure code coverage to track how well IaC matches the actual infrastructure state? In this talk, we will show how minor infrastructure drift can cause issues. We will then introduce various ways to track IaC coverage, and how we can use them to bring visibility into the state of infrastructure and anticipate common drift issues. We will also show how measuring IaC codebase also benefits IaC adoption. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Elder Moraes Developer Advocate @ Red Hat Is your Java code ready for the cloud-native age? There are a lot of buzzwords around cloud-native. But the modern applications have indeed complex demands like automatic scalability, containers lifecycle, service mesh, observability, and more. How can your code be ready? Can the Java ecosystem help you? You bet! With the new Java release train, the latest MicroProfile updates, the orchestration of Kubernetes, and the modernity of Quarkus, you can turn your code cloud-native right now. This is the best time ever for cloud-native with Java! And this 100% practical session will help you to get ready to apply all those technologies to your code today. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Marco Coulter Technical Evangelist @ Tech-Whisperer.com Cloud Native will reduce your cost, right? Sorry, Jevon says you are likely to end up spending more, and that you will probably be glad you did! Expect surprise Cloud Native microservices appearing in your cloud invoices. Learn what to prepare for and which will not work in the microservice ecology. It seems common sense. Today, you pay for a server with a full stack. Tomorrow, you run just a microservice without that overhead. You will reduce your cost, right? Sorry, Jevon says you are likely to end up spending more, and that you will probably be glad you did! By stepping through IT's history of sprawl and consolidation cycles and weaving 'Jevon's Paradox' into the lessons learnt, this session prepares you for the surprise Cloud Native microservices appearing in your cloud invoices. Learn what to prepare for and which will not work in the microservice ecology. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Nicolas Frankel Developer Advocate @ Hazelcast With the Cloud becoming ubiquitous, it's time to assert whether our traditional application stack is up to it. Quarkus, Kotlin, Hazelcast and GraalVM in action. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Rob Zuber CTO @ CircleCi At the core of most software incidents is a misalignment of data and algorithms, coupled with a pattern of human factors that take place in production. At CircleCI we see a lot of incidents and solve them not only for our own team but for thousands of engineering teams all over the world. Join CircleCI’s CTO, Rob Zuber as he uncovers a few instances when CS fundamentals didn’t pan out as they do in textbooks, and how to avoid them. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Fabricio Buzeto CTO @ bxblue Gall’s Law states that all complex systems that work, evolved from simpler systems that also worked. Let me show you two examples of how to start small and simple and grow in complexity whilst improving your software application. Based on the background of two different companies, two different stacks and team formation. Sharing how we identified the hints for improvement, the techniques to support it, and the tools that aided through this path. Both cases going from tiny experiments to millions of transactions processed per hour. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: Manning AWS Inside Dev — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast

Joe Karlsson Software Engineer @ MongoDB Data centers are expensive, and also not very good for the environment. By 2040, storing digital data is set to create 14% of the world’s green house emissions. As a developer you probably work with a lot of data. Your clusters balloon and become more expensive every day. Now is the time to be a hero, save the world and your wallet. In this live coding session, I will show you how to archive your cold MongoDB data automatically to an AWS S3 bucket using Serverless Triggers. I will also demonstrate how to keep querying this archived data using MongoDB Atlas Data Lake with zero downtime. You walk away from this session with a clear understanding of data lakes, their features and capabilities. Join this session and be equipped to save the world. — 00:00 Intro 00:40 Talk — 🥇 Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport 🥈 Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti 🤝 Media Partners: AWS Inside Dev Manning — Website 🚀🪐 https://www.conf42.com​ Reach Out 📧📭 mark@conf42.com Discord Server 🧑‍🤝‍🧑💬 https://discord.com/invite/dT6ZsFJ5ZM​ LinkedIn 👨‍💼💼 https://www.linkedin.com/company/4911...​ Twitter 🎵🐦https://twitter.com/conf42com​ Conf42Cast 🎧 http://www.conf42.com/podcast