Loading…
This event has ended. Visit the official site or create your own event on Sched.

CoreOS Fest Berlin, the Open Source Distributed Systems Conference, brings together experts from all over the world to discuss container technologies, distributed systems and open source software to help take the industry to the next level in distributed computing.

The 2016 event will gather 500+ developers, devops professionals and sysadmins together to explore the next steps in making container technologies successful and secure.

Learn more at coreos.com/fest 

View analytic

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Monday, May 9
 

08:00

Breakfast and Registration
Monday May 9, 2016 08:00 - 09:00
bcc Alexanderstraße 11 10178 Berlin, Germany

09:00

Welcome: Brian "Redbeard" Harrington
Join Rebeard as he kicks off CoreOS Fest. 

Moderators
avatar for Brian Harrington, Redbeard

Brian Harrington, Redbeard

Principal Architect, CoreOS
Brian Harrington, also known as Redbeard, is the head of infrastructure at CoreOS. He is developer, hacker, and technical writer in the areas of open-source development and systems administration. His time spent in both defensive and offensive computing have combined with his readings of classical anarchism to present new ideas in organizational hierarchies for software development. He has been featured on Al Jazeera as an expert in the field of... Read More →

Monday May 9, 2016 09:00 - 09:45
C01

09:05

Keynote: Brandon Philips, CTO of CoreOS
Speakers

Monday May 9, 2016 09:05 - 09:40
C01

09:50

etcd over gossip: strongly-consistent semantics in a weakly-consistent world
etcd is a powerful and robust core component of modern infrastructures. Weave Mesh is the gossip protocol at the core of Weave Net, the battle-tested Docker SDN. This talk chronicles the implementation of etcd-on-Mesh, hosting the strongly-consistent etcd API on an eventually-consistent gossip protocol. The project enables developers to use etcd in a much wider variety of contexts than is currently assumed. For example, embedding an etcd cluster in their application and get an ephemeral lock store, or deploying a permanent etcd cluster in a heterogeneous, partially-connected network environment.

In this talk, I describe the core semantics of the Raft protocol, the requirements it has for peer-to-peer communication, and how it might be usable over a packet-oriented, rather than stream-oriented, transport. (Think: UDP rather than TCP.) Then, I describe the basics of gossip protocols, how they model state transfer, and Weave Mesh's particular approach. Finally, I describe how these two models of distribution can be married together, and how each one accommodates and compensates for deficiencies in the other.

Speakers
avatar for Peter Bourgon

Peter Bourgon

Typist, Weaveworks
Peter Bourgon is a distributed systems and infrastructure engineer who has seen things. He works at Weaveworks, contributing to the Weave Scope monitoring tool, and to Weave Mesh, a gossip layer for distributed applications. Peter is also the author of Go kit, a toolkit for microservices. Peter has no free time and therefore enjoys no leisure activities.


Monday May 9, 2016 09:50 - 10:30
B09

09:50

Introduction to etcd v3

etcd is an open source distributed consistent key-value store that was introduced by the team at CoreOS. Since its release two years ago it has become a mature cornerstone of a variety of systems in the container ecosystem for doing networking, service discovery, configuration management and load balancing. This talk will explore what etcd is, how it works, why it is used, and introduce etcd v3. Brandon will show how a cluster is maintained and some best practices. It will show off some example applications built on etcd such as locksmith, vulcand, Kubernetes, skydns and confd.



Speakers

Monday May 9, 2016 09:50 - 10:30
B08

09:50

Launching a complex application in a Kubernetes cloud
Together, Thomas Fricke, CTO of Endocode, and Jannis Rake-Revelant, Lead IT Operations, Infrastructure and Security, immmr GmbH, will show which steps need to be performed to convert a VM-based micro-service architecture to a container-based approach on the AWS cloud using CoreOS, Docker and Kubernetes.

Following an iterative proof-of-concept approach, separating persistent and stateless applications and run everything in small units orchestrated by Kubernetes we succeeded designing pods which can be rolled out easily. We could create descriptions of environments very rapidly, creating full complex systems with a single command. Examples of Java, Python and Ruby applications are shown.

The presentation will focus on: VM-based vs container-based micro services and their orchestration Preparing a customer facing service to run on Kubernetes on AWS Orchestration of a container cluster infrastructure Lessons learned An CLD (continuous live deployment) chain has been implemented to roll out new versions with minimal effort. Using the latest feature of systemd on Linux on CoreOS, we could move the configuration management into the kubernetes domain.

Speakers
avatar for Thomas Fricke

Thomas Fricke

CTO, Endocode AG
Thomas Fricke is the CTO of Endocode and a cloud architect. He likes to work with scaling applications, specially with distributed databases. He has worked as a development engineer, system, software and cloud architect for many years. Current topics are large scale system automation for cloud native applications.
avatar for Jannis Rake-Revelant

Jannis Rake-Revelant

Operations & Infrastructure Lead, immmr GmbH
Jannis Rake-Revelant is the lead for IT Operations, Infrastructure and Security at immmr GmbH.


Monday May 9, 2016 09:50 - 10:30
B06

10:30

Coffee Break
Monday May 9, 2016 10:30 - 11:00
bcc Alexanderstraße 11 10178 Berlin, Germany

11:00

Of flags, experiments, and the power of etcd
At Improbable we’re building a platform for the next generation of Simulation, called SpatialOS. We’re hosting large scale Deployments of user Simulations inside our Clusters. Due to the real-time nature of Simulations, we needed a mechanism that would allow dynamic reconfiguration of parameters across multiple nodes of a Deployment. We leveraged etcd consistency and watch API to build a mechanism that allows developers to easily define code variables (Java annotated fields or Go flags) that change in almost real-time across hundreds of machines. While the main driver behind this highly flexible approach was our unique Simulation Runtime, the same mechanism is now powering our Platform’s operational configuration: request routing, rate limiting and experimental A-B testing.

Speakers
avatar for Michal Witkowski

Michal Witkowski

Head of Infrastructure, Improbable
Michal is the Head of Infrastructure at Improbable. He and his team are building the platform of SpatialOS, a PaaS offering for strong simulation. The platform enables near real-time simulation of spatially distributed problems by facilitating cooperation of off-the-shelf workers: game engines, traffic simulators, or actor-based models. Previously he lead the Site Reliability Engineering teams for Google Compute Engine and Google Real Time... Read More →


Monday May 9, 2016 11:00 - 11:40
B09

11:00

Introduction to rkt for platform builders
Luke will give an introduction and overview of rkt, the container runtime from CoreOS that recently hit v1.0, with a focus on its suitability for building container-based platforms. The talk will cover how to build and run networked container pods with a focus on process management, systemd and composability with other tools.

Speakers
avatar for Luke Bond

Luke Bond

Developer, YLD.io
Luke is a server developer working at YLD.io, a London-based software engineering consultancy, working mostly with Node.js and Docker. Luke built an open-source container-based PaaS called Paz (http://paz.sh).


Monday May 9, 2016 11:00 - 11:40
B08

11:00

I have Kubernetes, now what?
Speakers
GM

Gabe Monroy

CTO, Deis
Gabriel Monroy is CTO of Engine Yard and the creator of Deis, the leading CoreOS-based PaaS. As an early contributor to Docker and CoreOS, Gabriel has deep experience putting containers into production and frequently advises organizations on PaaS, container automation and distributed systems.


Monday May 9, 2016 11:00 - 11:40
B06

11:30

etcd Office Hours
Come by the CoreOS Booth to get your etcd questions answered by CoreOS's CTO Brandon Philips 

Speakers

Monday May 9, 2016 11:30 - 12:30
CoreOS Booth

11:50

Elastic etcd – automatic add, replace and cluster growth
While etcd was born in the cloud era, it does not really play well in a dynamic environment where nodes come and go and where IP addresses are ephemeral. Moreover, etcd is meant – with its RAFT algorithm at the core – as a consistent key-value store. It rather refuses to form or join a cluster than putting consistency at risk. This talk will discuss how to make etcd more elastic in a sense that cluster join, member replacement and cluster growth is handled automatically when etcd starts up. The existing discovery service is used for this, but in contrast to the stock etcd not only during bootstrapping, but during the whole life-cycle of an etcd cluster. The ideas are implemented in the experimental elastic-etcd wrapper around etcd2. Its usage will be shown and how it behaves in certain cluster situations.

Speakers
SS

Stefan Schimanski

Mesosphere GmbH
Dr. Stefan Schimanski is a long-time open source contributor, now at Mesosphere as a Distributed Systems Engineer building Kubernetes on Mesos. Previously, while helping companies to build large-scale Mesos based backends, Stefan got into the internals of cluster managers by contributing a lot to Marathon getting it ready for production. Before that he was leading the Linux efforts at German Air Traffic Control.


Monday May 9, 2016 11:50 - 12:30
B09

11:50

More Containers, More Problems: Enter #GIFEE
In this talk, Ed Rooth, will go over how CoreOS defines #GIFEE (Google's Infrastructure for Everyone Else). He will provide an overview of Tectonic, the CoreOS + Kubernetes stack, and discuss how you too can achieve #GIFEE. 

Speakers
avatar for Ed Rooth

Ed Rooth

Head of Tectonic, CoreOS
Ed Rooth is the team lead for Tectonic, an enterprise-ready platform for running Linux containers in a distributed environment, at CoreOS. Outside of work, Ed is a Japanese speaking snowboarding enthusiast that enjoys keeping up with good films, great music and new technologies.


Monday May 9, 2016 11:50 - 12:30
B08

11:50

rktnetes: what's new with container runtimes and Kubernetes

rkt is a modern container runtime, built for security, efficiency, and composability. Kubernetes is a modern cluster orchestration system allowing users. Kubernetes doesn't directly execute application containers but instead delegate to a container runtime, which is integrated at the kubelet (node) level. When Kubernetes first launched, the only supported container runtime was Docker - but in recent months, we've been hard at work integrating rkt as an alternative container runtime, aka "rktnetes". The goal of "rktnetes" is to have first-class integration between rkt and the kubelet, and allow Kubernetes users to take advantage of some of rkt's unique features.

This talk will describe how rkt works, some of the features that make it unique as a container runtime, and some of the process of integrating an alternative container runtime with Kubernetes, as well as the latest state of "rktnetes."



Speakers
avatar for Jonathan Boulle

Jonathan Boulle

Developer / Team Lead, CoreOS
Jonathan Boulle works at CoreOS on all things distributed and all things contained. He's contributed heavily to etcd and fleet and lead the development of the App Container (appc) specification and rkt, the first appc runtime. He is actively involved in the upstream Kubernetes project. Prior to CoreOS, he worked at Twitter on their cluster management platform based on Mesos and Aurora. He's passionate about Linux, F/OSS, the Oxford comma, and... Read More →


Monday May 9, 2016 11:50 - 12:30
B06

12:30

Lunch
Monday May 9, 2016 12:30 - 13:30
bcc Alexanderstraße 11 10178 Berlin, Germany

12:30

Clair Office Hours
Come by the CoreOS booth and get your Clair questions answered by one of our experts. 

Speakers
avatar for Jake Moshenko

Jake Moshenko

Product Manager, Quay, CoreOS
Jake Moshenko is the product manager for the Quay container registry at CoreOS, a Linux distribution with containers as a first-class citizen and software distribution channel. Formerly of Google, Amazon, and Boeing, he has been building robust distributed systems for over 10 years.


Monday May 9, 2016 12:30 - 13:30
CoreOS Booth

13:30

dgr : a tool to build and run rkt container at scale
At BlaBlaCar we successfully run all our services with CoreOS and rkt. To achieve this, we had find a way to build efficiently our containers. Before that we had all our infrastructure managed by Chef and we didn't want to loose the power of config management along the way. This talk will be about the path we've taken, the mistakes we've made and why we ended up coding our own building tool : dgr.

Speakers
avatar for Simon Lallemand

Simon Lallemand

Architect, Bl
Simon is a systems engineer at BlaBlaCar on the team in charge of the containers infrastructure. Simon is passionate about revolutionizing the way systems are managed to always go faster, be more reliable and scale.


Monday May 9, 2016 13:30 - 14:10
B09

13:30

Common Container Standards - Past, Present and Future
Culmination of hype, adoption and formal containers standards, is a lot to wade through.
Hear about how standards have arrived, where they are, what the important next steps will be and how this affects you.

Speakers
avatar for Vincent Batts

Vincent Batts

Engineer, Red Hat
A mindful polyglot, Vincent Batts has spent the last 15 years | participating in the Linux and open source community. Presently | involved on the Open Containers Initiative as a maintainer and on the | technical board. Still a current member of Slackware Core Team and has | been a maintainer on the Docker project as well as the Go programming | language for Fedora and Red Hat. He is currently working on all things | container... Read More →


Monday May 9, 2016 13:30 - 14:10
B08

13:30

When rkt meets Kubernetes: a troubleshooting tale

What are your containers doing? It’s one thing to know which containers are coming and going; it’s an entirely different thing to understand how your applications, microservices, are behaving in this brave new containerized world.

In this demo-driven presentation, Luca Marturana will cover the current state of the art of container and microservice monitoring, including the pros and cons of some popular approaches. Using real tools running in live environments, he will demonstrate how to effectively monitor, explore and troubleshoot production rkt deployments.

The presentation will feature live interaction with container environments and live demos of all tools and techniques discussed. Special emphasis will be put on Kubernetes, the open source orchestration tool,  as well as sysdig, an open source container and system troubleshooting tool developed by the presenter.

GitHub link: https://github.com/draios/sysdig

Specific topics will include:
* visualizing the physical vs logical architecture of rkt deployments
* understanding performance at the holistic microservice/application level for orchestrated systems
* Leveraging Kubernetes metadata such as pods and replication controllers for more intelligent troubleshooting
* identifying and surfacing system activity of individual rkt containers
* extracting process and application-level performance metrics from inside containers using non-intrusive methods
* troubleshooting detailed network activity among distributed containers


Speakers
avatar for Luca Marturana

Luca Marturana

Software Engineer, Sysdig
Luca Marturana is a developer at Sysdig where he wears many hats. He is a core developer of sysdig, an open source troubleshooting tool for Linux and containers, and he spends his days dealing with agent development, performance analysis and cloud infrastructure management.He is also the author of redis3m, a C++ client for Redis.He holds a MS in Computer Engineering from University of Catania, Italy.


Monday May 9, 2016 13:30 - 14:10
B06

13:30

Openness in Open Source
Join Marta Paciorkowska, DevOps at Acrolinx, Matthew Garrett, Principal Security Engineer at CoreOS, and Meghan Schofield, Product Designer at CoreOS for an interactive conversation about how to provide more openness and inclusiveness in open source. Marta, Matthew and Meghan will share the necessity of this conversation and will help brainstorm a measurable plan to help increase diversity in open source.

Speakers
avatar for Matthew Garrett

Matthew Garrett

Principal Security Software Engineer, CoreOS
Matthew Garrett is a security developer at CoreOS, specialising in the areas where software starts knowing a little more about hardware than you'd like. He implemented much of Linux's support for UEFI Secure Boot, does things with TPMs and has found more bugs in system firmware than he's entirely comfortable with.


Monday May 9, 2016 13:30 - 14:10
Lunch Area bcc Berlin Congress Center GmbH Alexanderstr. 11 10178 Berlin (Germany)

13:30

Tectonic Office Hours
Come by the CoreOS booth and get your Tectonic questions answered by one of our experts.

Speakers
avatar for Ed Rooth

Ed Rooth

Head of Tectonic, CoreOS
Ed Rooth is the team lead for Tectonic, an enterprise-ready platform for running Linux containers in a distributed environment, at CoreOS. Outside of work, Ed is a Japanese speaking snowboarding enthusiast that enjoys keeping up with good films, great music and new technologies.


Monday May 9, 2016 13:30 - 14:30
CoreOS Booth

14:20

CoreOS and rkt app workflows with NodeJS
In this half hour, we'll explore the utility of manipulating and controlling images with NodeJS applications. Starting by deploying to a new Azure VM using a NodeJS built controller, we log in and study the rich development potential of NodeJS and NPM inside the new container. From there, we explore interfaces to rkt and finally consider backup and cluster scenarios built using NodeJS as well.

Speakers
avatar for Michael Schloh von Bennewitz

Michael Schloh von Bennewitz

Michael Schloh von Bennewitz is a computer scientist specializing in network engineering, mobile design, and telecom server development. Responsible for research, development, and maintenance of packages in several community software repositories, he actively contributes to the Opensource development community. | | Michael speaks four languages fluently and presents at technical events every year. He has presented for groups including Cable... Read More →


Monday May 9, 2016 14:20 - 15:00
B09

14:20

Better image distribution to worldwide clusters
Speakers
JS

Joseph Schorr

Joey is a lead software engineer on the Quay container registry team at CoreOS. | | Before being acquired by CoreOS in Summer of 2014, Joey was cofounder of DevTable, a company he started after leaving Google to focus on building a web-based IDE.


Monday May 9, 2016 14:20 - 15:00
B08

14:20

Use Kubernetes to deploy telecom applications
Can Kubernetes be used in a productive environment? Yes. Is Kubernetes sufficient to meet all the needs? No. This talk will introduce the problems I met when using Kubernetes to build a private platform to serve telecom applications. What if users want to have more control of how their applications are deployed? What we need to do to deploy traditional, stateful applications? Especially when some applications can’t be containerized? How to use existing modules to replace some functionalities of Kubernetes? And also, the talk will tell how these problems are solved.

Speakers
VH

Victor Hu

Huawei
Victor is a senior engineer of Huawei Technologies, focusing on building internal PaaS platform to serve telecom applications. With ten years working experience, he has previously worked on cloud standard of DMTF and OASIS. In recent years, he has been active in open source projects related to cloud computing, such as Openstack, OPNFV and Kubernetes.


Monday May 9, 2016 14:20 - 15:00
B06

14:30

rkt Office Hours
Come by the CoreOS booth and get your rkt (rocket) questions answered by one of our experts.


Monday May 9, 2016 14:30 - 15:30
CoreOS Booth

15:00

Coffee Break
Monday May 9, 2016 15:00 - 15:30
bcc Alexanderstraße 11 10178 Berlin, Germany

15:30

Keynote: Alex Polvi, CEO of CoreOS
Monday May 9, 2016 15:30 - 16:30
C01

15:45

Keynote: Das Kamhout, Senior Principal Engineer at Intel Corporation
Speakers
avatar for Das Kamhout

Das Kamhout

Principal Engineer in the Intel Cloud Platforms Group, Intel
Das Kamhout is a Principal Engineer in the Intel Cloud Platforms Group, he is one of the key leaders for the software defined infrastructure (SDI) engineering and industry efforts for Intel. He brings many years of experience as the engineering and architecture leader for the Intel IT Cloud efforts as well as extensive experience running the large scale Intel design grid. Known as a pragmatic disruptor, Das seeks to drive focused change in the... Read More →


Monday May 9, 2016 15:45 - 16:00
bcc Alexanderstraße 11 10178 Berlin, Germany

16:00

Keynote: Andrew Randall, ‎Evangelist at Project Calico;
Speakers
AR

Andy Randall

Andy Randall is the general manager of Metaswitch's Project Calico, an open source and pure Layer 3 approach to data center networking. | | Previously, Andy was senior vice president for corporate development, a role he continues to fulfill for the company. | | Earlier in his career with Metaswitch, Andy served as vice president of marketing and business development and held various positions in engineering and general management in the... Read More →


Monday May 9, 2016 16:00 - 16:15
C01

16:15

Keynote: Zachary Smith, CEO of Packet
Monday May 9, 2016 16:15 - 16:30
TBA

16:30

Keynote: State of the Linux Kernel, Greg Kroah-Hartman
Speakers
avatar for Greg Kroah-Hartman

Greg Kroah-Hartman

Fellow, Linux Foundation
Greg Kroah-Hartman is a Fellow at the Linux Foundation. He is | currently responsible for the stable Linux kernel releases, and | is a maintainer of the USB, TTY, and driver core subsystems in | the kernel as well as other portions of the codebase that he wishes he could forget about. He is the author of two books | about Linux kernel development, both free online, and has written many papers and articles about the Linux kernel.


Monday May 9, 2016 16:30 - 17:30
C01

17:30

Happy Hour, Brought to you by Intel and Google
Monday May 9, 2016 17:30 - 19:00
bcc Alexanderstraße 11 10178 Berlin, Germany
 
Tuesday, May 10
 

08:00

Breakfast and Registration
Tuesday May 10, 2016 08:00 - 09:00
bcc Alexanderstraße 11 10178 Berlin, Germany

09:00

Keynote: Runway: a new tool for distributed systems design, Diego Ongaro
Distributed systems are notoriously difficult to get right. We’re constantly improving the frameworks we use and the way we test production code, yet we rarely invest in tools for system design. The best design tools we have are still low-tech, like whiteboards and back-of-the-envelope calculations. Runway is a new tool to help design distributed and concurrent systems. It combines specification, simulation, visualization, and model checking into one tool, so you can write a single system model and do a bunch of useful things with it: the same model can help you evaluate a design’s correctness, availability, and performance while also helping others learn how the design works.

Speakers
avatar for Diego Ongaro

Diego Ongaro

Lead Software Engineer, Compute Infrastructure, Salesforce
Diego lives in San Francisco and works on the Compute System team at Salesforce. He's interested in distributed systems and formal methods, and is developing a new tool called Runway that combines visualization, simulation, and model checking. Diego received his PhD in 2014 from Stanford, where he was advised by Professor John Ousterhout. During his doctorate, he worked on RAMCloud (a 5-10 microsecond round-trip key-value store), the Raft... Read More →


Tuesday May 10, 2016 09:00 - 09:40
C01

09:00

Distributed Trusted Computing - Office Hours
Come by the CoreOS Booth and get all your Distributed Trusted Computing questions answered by one of our experts.

Speakers
avatar for Matthew Garrett

Matthew Garrett

Principal Security Software Engineer, CoreOS
Matthew Garrett is a security developer at CoreOS, specialising in the areas where software starts knowing a little more about hardware than you'd like. He implemented much of Linux's support for UEFI Secure Boot, does things with TPMs and has found more bugs in system firmware than he's entirely comfortable with.


Tuesday May 10, 2016 09:00 - 10:00
CoreOS Booth

09:50

The Container Ecosystem and CoreOS
Tuesday May 10, 2016 09:50 - 10:30
B09

09:50

Kubernetes Performance & Scalability Deep-Dive
Speakers
avatar for Filip Grzadkowski

Filip Grzadkowski

Google
Filip is a software engineer at Google and has worked in technical infrastructure for more than 5 years. His main area of expertise is cluster management - scheduling, optimizing utilization, high level architecture and systems for automatic resource management. Currently leads dev team in Warsaw, working on Kubernetes - open source cluster management stack branded by Google. Filip earned Master of Science degree in computer science from the... Read More →


Tuesday May 10, 2016 09:50 - 10:30
B06

09:50

Service to Service Auth in a Microservices World
Speakers
avatar for Jake Moshenko

Jake Moshenko

Product Manager, Quay, CoreOS
Jake Moshenko is the product manager for the Quay container registry at CoreOS, a Linux distribution with containers as a first-class citizen and software distribution channel. Formerly of Google, Amazon, and Boeing, he has been building robust distributed systems for over 10 years.


Tuesday May 10, 2016 09:50 - 10:30
B08

10:00

rkt Office Hours
Come by the CoreOS booth and get your rkt (rocket) questions answered by one of our experts.


Tuesday May 10, 2016 10:00 - 11:00
CoreOS Booth

10:30

Coffee Break
Tuesday May 10, 2016 10:30 - 11:00
bcc Alexanderstraße 11 10178 Berlin, Germany

11:00

Scaling fleet Clusters with gRPC
Fleet is a distributed init system that we use to schedule both infrastructure as well as user services on our clusters. Fleet is one of the main building blocks of our architecture that we use to schedule both infrastructure as well as user services on our microservices infrastructures. Fleet has seen production use for some time and is largely considered stable. The versatility and simplicity of fleet offers a distributed orchestration system, on which services in the form of systemd units (optionally running containers), can easily be deployed on the cluster. However, fleet can run into scalability issues that grow when using it in large-scale infrastructures. In particular, we realized of these scalability issues when fleet has to coordinate many nodes and/or thousands of deployed units in a cluster. Thus, we set out to improve the scalability of this distributed init system. Through the (optional) use of gRPC for communication between the fleet nodes as well as reducing etcd load through storing transient data in-memory, we could improve fleet performance and stability significantly. This talk goes into details of our design decisions and the implementation of the performance-improving changes, which we are currently working on merging upstream.

Speakers
avatar for Hector Fernandez

Hector Fernandez

Engineer, Giant Swarm GmbH
Héctor Fernández is a DevOps at Giant Swarm, a German startup that offers simple Microservices Infrastructures to host containerized microservices. At Giant Swarm, Héctor focuses on monitoring, performance, and improving Giant Swarm's infrastructure. Over the last years, he worked as a DevOps at ElasticBox Inc. and as a postdoctoral research scientist member of the Software and Services Research and High Performance Computing groups at VU... Read More →


Tuesday May 10, 2016 11:00 - 11:40
B09

11:00

Continuous Delivery, Kubernetes and You

As software becomes more and more complex, we, as software developers, have been splitting up our code into smaller and smaller components. This is also true for the environment in which we run our code: going from bare metal, to VMs to the modern-day Cloud Native world of containers, schedulers and microservices.

While we have figured out how to run containerized applications in the cloud using schedulers such as Kubernetes, we've yet to come up with a good solution to bridge the gap between getting your containers from your laptop to the cloud.

How do we build software for containers? How do we ship containers? How do we do all of it without shooting ourselves in the foot?

In this talk, we'll explore how current delivery systems are falling behind, and how we need to change the mental model, create new best-practices and treat containers as a first-class citizen. We'll be showcasing how we think about continuous delivery at Wercker in combination with Kubernetes, in this new Cloud Native paradigm.


Speakers
avatar for Micha Hernandez van Leuffen

Micha Hernandez van Leuffen

CEO, Wercker
Micha “mies” Hernandez van Leuffen is a hacker entrepreneur, and the founder and CEO of wercker, where he’s building the next generation of developer automation for the Modern Cloud.


Tuesday May 10, 2016 11:00 - 11:40
B06

11:00

Navigating Compliance in a CoreOS World

CoreOS is an excellent starting point for a secure environment, but there are many challenges to deploying and managing CoreOS under common compliance requirements. Compliance itself does not provide security, but it can present roadblocks to adopting revolutionarily awesome technology. A reduced attack surface, automatic updates, a slimmed down base OS, modern systemd and new automation tools should make a system more secure, but they also invalidate traditional approaches to compliance, and raise red flags for people unfamiliar with the technology.

This talks shares our experiences and explores solutions to deploy and manage CoreOS in light of common compliance themes. The presentation will also serve as a guide to those who are leading change in their organizations and are interested in showing how CoreOS can be adopted in the face of traditional ideas about compliance.


Speakers

Tuesday May 10, 2016 11:00 - 11:40
B08

11:00

Quay Office Hours
Come by the CoreOS booth and get your rkt Quay questions answered by one of our experts.

Speakers
JS

Joseph Schorr

Joey is a lead software engineer on the Quay container registry team at CoreOS. | | Before being acquired by CoreOS in Summer of 2014, Joey was cofounder of DevTable, a company he started after leaving Google to focus on building a web-based IDE.


Tuesday May 10, 2016 11:00 - 12:00
CoreOS Booth

11:50

Dockyard - Container Registry And Volume Management For rkt
Rkt is the fastest growing container engine followed the Appc spec and tight integration with Kubernetes, but it still need container registry and volume management for running. Dockyard is a registry engine supported rkt pull & push which comply app container image discovery of Appc spec and a volume management with distributed file system. Dockyard has supported Docker Registry V1 & V2 at the same time, and has converted Docker image to Appc ACI. It’s important key to reuse the ecosystem of Docker. It has vulnerability analysis used Clair and content analysis. It has multiple backend drivers support storage container images into cloud object storage like Google, Amazon and others service, and has own build-in simple object storage service with three replications written by Golang and embed C.

Speakers
avatar for Quanyi Ma

Quanyi Ma

Beijing Huawei Digital Technologies Co,. Ltd.
Quanyi Ma is open source expert in Huawei Corporation, senior architect and open source container & Golang evangelist. He interested in Container, DevOps, Golang and AngularJS. Ma also is a organizer and host of Docker meetup in many cities in China, member of some container conference expert committees, speaker in many architect and DevOps conferences. Ma propose the ContainerOps of new DevOps concept and application version control system... Read More →


Tuesday May 10, 2016 11:50 - 12:30
B09

11:50

Let’s talk cloud networking: Flannel, Calico and more
Speakers
avatar for Tom Denham

Tom Denham

Project Calico
Software engineer working on Project Calico.
AP

Alex Pollitt

Project Calico
Alex Pollitt is an Evangelist at Project Calico. He also heads up the Calico engineering team in our San Francisco office.


Tuesday May 10, 2016 11:50 - 12:30
B06

11:50

CoreOS and Distributed Trusted Computing
Join Matthew Garrett for the next step in distributed trusted computing. This presentation will describe how the techniques used to prove hardware trustworthiness can also be used to validate containers. Learn how to secure your container infrastructure on multiple levels and produce cryptographically verifiable audit trails. Come see how we use distributed trusted computing with CoreOS Linux and in Tectonic, our commercial GIFEE offering.

Speakers
avatar for Matthew Garrett

Matthew Garrett

Principal Security Software Engineer, CoreOS
Matthew Garrett is a security developer at CoreOS, specialising in the areas where software starts knowing a little more about hardware than you'd like. He implemented much of Linux's support for UEFI Secure Boot, does things with TPMs and has found more bugs in system firmware than he's entirely comfortable with.


Tuesday May 10, 2016 11:50 - 12:30
B08

12:00

dex Office Hours
Come by the CoreOS booth and get your dex questions answered by one of our experts.

Speakers
EC

Eric Chiang

Software Engineer, CoreOS, Inc
Eric Chiang is an engineer at CoreOS, where he specializes on identity and access control for distributed systems. An active open source developer, he contributes to the Kubernetes auth subsystems and maintains several open source projects including the OpenID Connect server, dex, and pup, an HTML command line parser.


Tuesday May 10, 2016 12:00 - 13:00
CoreOS Booth

12:30

Lunch
Tuesday May 10, 2016 12:30 - 13:30
bcc Alexanderstraße 11 10178 Berlin, Germany

13:00

etcd Office Hours
Come by the CoreOS booth and get your etcd questions answers by our CTO, Brandon Philips.

Speakers

Tuesday May 10, 2016 13:00 - 14:00
CoreOS Booth

13:30

Next Generation Config Mgmt
A prototype for a next generation config management tool, and the specific problems this design solves. Three of the main design features of the tool include:

* Parallel execution
* Event driven mechanism
* Distributed architecture

This talk will demo a prototype I've built that implements these ideas. It is written in golang, and is completely free software. This talk will feature working code and a number of live demos! The tools makes heavy use of etcd, and the talk will focus on how we embed the project and the unique way in which we use it.

An introductory blog post on the subject is available. https://ttboj.wordpress.com/2016/01/18/next-generation-configuration-mgmt/ Attendees are encouraged to read it before the talk if they are interested!

Speakers
JS

James Shubin

James Shubin is best known for his work on Configuration Management, his Technical Blog, Oh-My-Vagrant, (a tool he started) and other related DevOps friendly projects. | Most of his writing happens on: The Technical Blog of James ( https://ttboj.wordpress.com/ ), but he sometimes says things as @purpleidea on Twitter, and he currently works for Red Hat doing research and prototyping within systems engineering. | He studied Physiology at... Read More →


Tuesday May 10, 2016 13:30 - 14:10
B09

13:30

Monitoring Kubernetes clusters with Prometheus
Fabian recently joined CoreOS from SoundCloud, where he found that
Prometheus and Kubernetes are a match made in open-source heaven.
Starting in 2012, SoundCloud invested heavily into the development of
the open-source monitoring system Prometheus, which was designed for
large-scale highly dynamic service-oriented architectures. Fabian and
his former team-mate Björn will tell you about SoundCloud's journey
from a Ruby-on-Rails monolith towards a microservice architecture, run
on Kubernetes and monitored with Prometheus.

Speakers
avatar for Björn Rabenstein

Björn Rabenstein

Production Engineer, SoundCloud
Björn is a production engineer at SoundCloud and one of the Prometheus core developers. Previously, he was a Site Reliability Engineer at Google and a number cruncher for science.
avatar for Fabian Reinartz

Fabian Reinartz

Fabian Reinartz is an engineer at CoreOS and one of the Prometheus core developers. Previously, he was a production engineer at SoundCloud.


Tuesday May 10, 2016 13:30 - 14:10
B06

13:30

CoreOS Clair integration made easy with HyperClair
It's easy to integrate tracking vulnerabilities of your containers with Clair. But what if you want to do it via your CI/CD pipelines? That's where Hyperclair comes in! Hyperclair is a lightweight REST API which acts as a bridge between Registries like Docker Hub, Docker Registry or Quay.io and CoreOS vulnerability tracker - Clair. Hyperclair could be easily integrated in your CI/CD pipeline, mapping Registry events to the REST API, which will become your authentification reverse proxy.

Speakers
avatar for Julien Garcia Gonzalez

Julien Garcia Gonzalez

Wemanity
Julien is a DevOps dreamer @ Wemanity. Having background as a Java developer and a lot of frustration acquired, he was able to find his way in DevOps culture, Docker and containerization stuff & OSS community. Recently, he felt in love with Go and tries to bring other people along. He likes to share his passion with Belgian Tech Communities.


Tuesday May 10, 2016 13:30 - 14:10
B08

14:20

Namazu: a debugger for distributed systems specific bugs
Developing and maintaining distributed systems is difficult. We believe that the difficulties comes from lacking of a good debugger for the systems. Unlike non-distributed systems, bugs in the distributed systems are not understood well. Therefore building good debuggers is still difficult. The presenter will introduce Namazu project, an OSS framework of distributed systems fuzzing tester. Namazu focuses on two points of the systems: 1. error handling of hardware fault, and 2. non determinism of events e.g. packet arrival. They are distributed systems specific points and not covered by existing debugging techniques. The presenter will share success stories of removing bugs of real systems including etcd, Zookeeper, and Apache Yarn with Namazu.

Speakers
avatar for Hitoshi Mitake

Hitoshi Mitake

NTT Labs
Hitoshi Mitake is a research engineer working for NTT Laboratories. He has been working on distributed storage systems and related technologies. These days, he is working on the etcd project actively. Current main topic is the design of authentication and access control of v3 API.


Tuesday May 10, 2016 14:20 - 15:00
B09

14:20

Kubernetes Access Control with dex
dex is CoreOS’s open source federated identity service. The Tectonic team continues to ensure dex remains a first class solution for Kubernetes Authentication and Authorization. In the near future, dex will provide not only authentication, but dynamic, fine-grained access management for multi-tenant clusters. This talk will provide an in-depth look at the work done to further dex integration with Kubernetes. Topics include upstream efforts to make Kubernetes authorization more pluggable, authorization with dex groups, and how to take advantage of both.

Speakers
EC

Eric Chiang

Software Engineer, CoreOS, Inc
Eric Chiang is an engineer at CoreOS, where he specializes on identity and access control for distributed systems. An active open source developer, he contributes to the Kubernetes auth subsystems and maintains several open source projects including the OpenID Connect server, dex, and pup, an HTML command line parser.


Tuesday May 10, 2016 14:20 - 15:00
B06

14:20

Secure Intercontainer overlay Networking using flannel and tincvpn
For now flannel supports no encryption on the wire. This may be suitable whre you have a trusted internal network or in a setup where you can care for the network encryption on the application level via tls. In this talk Cornelius will demonstrate how to use the CoreOS built in tools etcd and flannel to setuup a distributed VPN with tinc. Flannel will be used to savely allocate IP subnets but will not do the networking. Instead etcd and some scripting will be used to setup a distributed vpn via tinc. All this will be provisioned via the cloud config file and systemd units.

Speakers
avatar for Cornelius Keller

Cornelius Keller

DevOps Architect, Marketlogic Software AG
Cornelius started his career as a backend developer and systems architect and worked in Berlin IT companies & startups like Immobilienscout24 and bettermarks. In the last year he has focused on continuous delivery, zero downtime deployments, microservice architectures and distributed systems.Curerrntly Cornelius works at Marketlogic Software fostering a DevOps mindset, setting up infrastructure for microservices.


Tuesday May 10, 2016 14:20 - 15:00
B08

15:00

Coffee Break
Tuesday May 10, 2016 15:00 - 15:30
bcc Alexanderstraße 11 10178 Berlin, Germany

15:30

Keynote: Security Features in systemd, Lennart Poettering
Speakers
LP

Lennart Poettering

Sr. Software Engineer, Red Hat
Lennart Poettering works at Red Hat in the Server Experience Group. He's one of the creators of PulseAudio, Avahi and systemd.


Tuesday May 10, 2016 15:30 - 16:30
C01

16:15

Keynote: Fireside Chat with Sean Michael Kerner and Matthew Garrett
Join Sean Michael Kerner, senior editor at InternetNews and Matthew Garrett, Principal Security Software Engineer at CoreOS for a fireside chat about container security. Sean will bring the most asked questions regarding security and containers and dive into specifics. 

Speakers
avatar for Matthew Garrett

Matthew Garrett

Principal Security Software Engineer, CoreOS
Matthew Garrett is a security developer at CoreOS, specialising in the areas where software starts knowing a little more about hardware than you'd like. He implemented much of Linux's support for UEFI Secure Boot, does things with TPMs and has found more bugs in system firmware than he's entirely comfortable with.
avatar for Sean Michael Kerner

Sean Michael Kerner

Senior Editor, eWEEK/InternetNews
Sean Michael Kerner is a senior editor. Follow him on Twitter @TechJournalist


Tuesday May 10, 2016 16:15 - 16:30
C01

16:30

Keynote: Brian Harrington, Head of Infrastructure at CoreOS
Speakers
avatar for Brian Harrington, Redbeard

Brian Harrington, Redbeard

Principal Architect, CoreOS
Brian Harrington, also known as Redbeard, is the head of infrastructure at CoreOS. He is developer, hacker, and technical writer in the areas of open-source development and systems administration. His time spent in both defensive and offensive computing have combined with his readings of classical anarchism to present new ideas in organizational hierarchies for software development. He has been featured on Al Jazeera as an expert in the field of... Read More →


Tuesday May 10, 2016 16:30 - 17:30
C01

18:00

CoreOS Fest Closing Night Party, Brought to you by Packet and Wercker
Don't miss this closing night party brought to you by Packet and Wercker. Close out CoreOS Fest with drinks, bites and music.

Join us for the closing night party at House of Weekend,

house of weekend
http://www.houseofweekend.berlin
alexanderstr.7
10178 berlin 

Tuesday May 10, 2016 18:00 - 22:00
House of Weekend alexanderstr.7 10178 berlin