List of videos
Doing GitOps for multi-cloud using Crossplane & Flux2 | Leonardo Murillo | Conf42 Cloud Native 2021
Leonardo Murillo CTO @ Qwinix How would you like for resources to be automatically created across any clouds of your choosing by simply pushing a manifest to a repository? In this talk we'll see hands on how to do multi cloud management following the GitOps operating model by leveraging Flux2 and Crossplane! A continuous delivery world without pipelines, with automatic reconciliation of resources eliminating all drift in configuration, everything versioned and everything declarative! That is what GitOps is all about. What if only you could follow this same operating model for all your cloud resources, across any public cloud? In this talk you'll learn how to do precisely that! We will be using Flux2 and Crossplane, and you will see hands on how, using these two CNCF projects, you can manage your entire multicloud architecture using Kubernetes as your control plane while following the GitOps principles. You will learn to: - Install Flux2 - Using Flux2, install Crossplane in your cluster - Configure AWS and GCP providers for Crossplane - Deploy resources across both clouds with nothing but a push to the repo This talk is all about code! A couple of slides in the deck to give a brief intro of GitOps and the two projects we'll be using, and then it's all live code! β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Breaking vendor lock-in with Cloud Sidecar | Larry Finn | Conf42 Cloud Native 2021
Lawrence Finn Author of Cloud Sidecar Many companies want to become multi-cloud or have the ability to switch clouds. However, cloud providers try hard to lock in customers with proprietary services like storage. Cloud Sidecar provides a simple way to take existing software and deploy it to different clouds without complex rewrites. Cloud providers offer numerous services that abstract away common problems from software developers. No longer do companies need to manage their own file storage solutions, message queues, key-value stores, etc... The problem is, once you start building software on top of these services you get locked into that specific cloud provider. This is better known as vendor lock-in. Of course, the more services you use the harder it is to go multi-cloud or switch clouds. Cloud Sidecar solves the problem of vendor lock-in by converting requests from one cloud's API to another cloud's API. So if your applications use Amazon Web Services' S3 and SQS, you can easily deploy Cloud Sidecar next to your application and now it automatically uses Google Cloud's GCS and Pubsub. Learn about Cloud Sidecar, how it works, how easy it is to modify your software to use it, and how you can deploy it. β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Multi-Cloud serverless deployment | Pawel Skrzypek & Alicja Reniewicz | Conf42 Cloud Native 2021
PaweΕ Skrzypek - CTO & Alicja Reniewicz - Full Stack Engineer @ 7bulls.com The dynamic development of Cloud Computing with the introduction of novel Cloud computing models like serverless creates new challenges for Cloud deployment. This presentation describes how to implement Multi-Cloud native strategies using advanced an open source framework that allows for Cloud-agnostic Multi-Cloud deployment and optimized management of the serverless applications based on flexible monitoring, context aware maximization of the application ownerβs utility of the deployed serverless components, and autonomic reconfiguration based on the applicationβs current execution context. All stages of the cloud deployment planning and designing process will be shown. Also, the key execution steps will be provided. β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Embracing change: Policy-as-code with OPA and Gatekeeper | Ara Pulido | Conf42 Cloud Native 2021
Ara Pulido Developer Relations @ Datadog Sometimes, RBAC is not enough: we need ways to define and enforce fine-grained policies for our clusters. Gatekeeper and OPA make it easy to adopt policy-as-code practices in Kubernetes. Youβll learn how to adopt these techniques and how to integrate Gatekeeper with your existing tools. Kubernetes provides a native Role based access control (RBAC) authorization scheme, allowing cluster operators to define rules to define which operations users or services can do against a particular Kubernetes object. As more enterprises migrate to cloud native environments like Kubernetes, RBAC alone presents limitations. The need for more scalable ways to define and enforce fine-grained policies increases: how can I limit the number of replicas of a pod for certain users? how can I ensure that all images come from trusted registries? In this talk we will demo Gatekeeper for Kubernetes environments. Youβll learn how to adopt policy-as-code techniques and how you can integrate Gatekeeper with your existing tools. β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Kubernetes Security Jumpstart | Mofi Rachman | Conf42 Cloud Native 2021
Mofizur Rachman Developer Advocate @ IBM Kubernetes makes it possible to run containerized application at scale. It solves many problems of microservice architecture by abstracting away things like container deployment, container-to-container communication, load balancing. While Kubernetes is great at it many things, it seems to be lacking in terms of security. It has some security features but in most respect it is not production grade security, at least not by default. If you are thinking about or already started with Kubernetes for your production workload, there are some steps you could follow to make sure your environments sand applications is secure. In this talk we will discuss some best practices for Kubernetes security. From container image to secret management, we will try to cover it all. And after this talk hopefully we will all be in a better position to harden and secure our Kubernetes cluster. β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: AWS Inside Dev Manning β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Securing Containers by Breaking In | Brian Vermeer | Conf42 Cloud Native 2021
Brian Vermeer Developer Advocate @ Snyk Thereβs no better way to understand container security than seeing some live hacking! This session introduces the state of docker security by reviewing vulnerabilities in Docker images and their impact on applications and demonstrates via hands-on live hacking. This session further provides the audience with security best practices when building docker container images, and each successful hack will help you better understand the mistakes you can make, their implications, and how you can avoid them. β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Journey towards Secure Architecture in the Cloud | Vandana Verma | Conf42 Cloud Native 2021
Vandana Verma Security Architect @ IBM Organisations are moving to cloud due to easy of use, scalability, computing services and many more things that cloud has to offer. Tough times have changed the paradigm to a new level where organisations which were only in the planning stage are now on the cloud. However, when cloud offers the benefits, there are certain Risks that also come with it. The stepping stone while taking the step forward towards cloud is Architecture Review or Secure Architecture Review. We will be touching up various clouds. This talk will cover the following aspects around Cloud Services. 1. Basics of Cloud Security Architecture and why to need an Architecture Review 2. Architecture Review Methodology 3. How is it useful? 5. What the developers or admins have to keep in mind β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Cloud Threat Landscape - 2021 | Stuart Green | Conf42 Cloud Native 2021
Stuart Green Cloud Security Architect @ Check Point Software Technologies This session reveals Check Point Research (CPR) latest Cloud related findings. From a fraudulent wire transfer initiated through an email compromised on a cloud app to a vulnerability within a public cloud infrastructure, CPR analyse the latest risks and threat landscape of public cloud. The session will also include global threat intelligence stats related to COVID-19 and public cloud. β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch
Truth about running Cloud Security Assessments in 2021 | Ashish Rajan | Conf42 Cloud Native 2021
Ashish Rajan Producer and Host @ Cloud Security Podcast This talk is a Practitioners story on what it is really like to run Cloud Security Assessment compared to what the blogs and Cloud Service Provider documentation will tell you. There are some hard truths here, some Cloud Security Assessors might not like me giving away the reality but it is better out than in. I share Real world Assessment stories and how it differs from documentation and some automation tools that I personally use for running automated security scans If you are a seasoned Cloud Security Assessment running person or If you are looking at starting to do Cloud Security Assessment in Cloud, you will get a glimpse of what that world really looks like. You might not like me if you are CSPM but the truth has to come out. β 00:00 Intro 00:40 Talk β π₯ Gold Sponsors: Chaos Native Fugue Honeycomb.io StackPulse Teleport π₯ Silver Sponsors: 7bulls.com Aerospike Alwaysdata Aspecto bxblue Capgemini CircleCi Container Solutions CloudSkiff Earthly Hazelcast Imply Lightrun Logz.io Lumigo MongoDB Nuaware Qwinix Zeti π€ Media Partners: Manning AWS Inside Dev β Website ππͺ https://www.conf42.comβ Reach Out π§π mark@conf42.com Discord Server π§βπ€βπ§π¬ https://discord.com/invite/dT6ZsFJ5ZMβ LinkedIn π¨βπΌπΌ https://www.linkedin.com/company/4911...β Twitter π΅π¦https://twitter.com/conf42comβ Conf42Cast π§ http://www.conf42.com/podcast
Watch