{"$schema": "https://c3voc.de/schedule/schema.json", "generator": {"name": "pretalx", "version": "2024.3.1"}, "schedule": {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/schedule/", "version": "0.5", "base_url": "https://cfp.cloud-native.rejekts.io", "conference": {"acronym": "cloud-native-rejekts-na-chicago-2023", "title": "Cloud Native Rejekts NA (Chicago) 2023", "start": "2023-11-04", "end": "2023-11-05", "daysCount": 2, "timeslot_duration": "00:05", "time_zone_name": "US/Central", "colors": {"primary": "#FF0000"}, "rooms": [{"name": "ROOM 1", "guid": "9c7f29f1-c95e-5791-8c18-94448261c981", "description": null, "capacity": null}, {"name": "ROOM 2", "guid": "7655cc23-185d-516a-a6c9-f4356f2ab1c7", "description": null, "capacity": null}], "tracks": [], "days": [{"index": 1, "date": "2023-11-04", "day_start": "2023-11-04T04:00:00-05:00", "day_end": "2023-11-05T03:59:00-06:00", "rooms": {"ROOM 1": [{"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/HDEWFE/", "id": 794, "guid": "55725755-ff2e-55d0-b450-1bcf222db0fd", "date": "2023-11-04T09:30:00-05:00", "start": "09:30", "logo": null, "duration": "00:10", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-794-welcome-to-cloud-native-rejekts-na-2023-", "title": "Welcome to Cloud Native Rejekts NA 2023!", "subtitle": "", "track": null, "type": "Opening / Welcome", "language": "en", "abstract": "Quick welcome to welcome attendees and share logistics.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "ee40ea3b-a19c-5fff-9f40-19bf0d34d412", "id": 472, "code": "VZLMWU", "public_name": "Benazir Khan", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/profile_linkedin_4rRIYVw.jpeg", "biography": "Benazir is a Community Program Manager at Microsoft.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/RK8H87/", "id": 753, "guid": "c1e6b8ed-bdf2-5e0d-8b75-136f4b3b212f", "date": "2023-11-04T09:40:00-05:00", "start": "09:40", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-753-attestations-the-atoms-of-the-supply-chain", "title": "Attestations: the atoms of the supply chain", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "What are supply chain attestations and why are you hearing more about them? Attestations are the underlying metadata building blocks from which we can build up supply chain security, in a flexible way, building up more detailed layers of security over time. They can be used as components of an SBOM, to show evidence of how something was built as in TestifySec's Witness project, or that expected processes were followed. They can also be used to support different kinds of policy, especially zero trust. This talk will cover an introduction to attestations, explain their use cases and importance, how they relate to and enhance signatures and JWTs, how to verify and validate them, and about in-toto layouts and policies. It will talk about the addition of in-toto attestations to the Buildkit open source project that powers Docker build, and what this enables you to do, and attestations in Docker Official Images. We will also cover current and future work we are doing on attestations, verification and zero trust.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "cbe67c5b-e32b-5e48-b9e9-9a9dcc3050b9", "id": 757, "code": "GPQPDU", "public_name": "Justin Cormack", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/me_cropped_PiKuXBL.png", "biography": "Justin is the CTO of Docker and a member of the Technical Oversight Committee of the CNCF. He has been working on cloud native and especially cloud native security for some time now.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/PBKVJH/", "id": 739, "guid": "6d9dcd66-7fb1-5efb-9bcb-f905fdc0162d", "date": "2023-11-04T10:15:00-05:00", "start": "10:15", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-739-build-your-own-apm-instead-of-buying-one-", "title": "Build your own APM instead of buying one!", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Exhausted by APM inefficiencies? Harness open-source tools like Grafana, PromQL, OpenMetrics, Jaeger for optimal data handling. Achieve superior monitoring at a lower cost, cutting through data clutter, and rise above the 'Shannon Limit'.", "description": "Off the shelf Application Performance Monitoring (APM) tools often come with inherent drawbacks, such as steep costs, excessive data that exceeds human processing capacity, and incompatibility with open-source standards. While ingestion methodologies may adhere to open standards, data transmission, alerting mechanisms, and visualization features typically rely on proprietary systems. These issues, compounded by the 'Shannon Limit' of human cognition, result in an information overload from APM data, impeding effective decision-making.\r\n\r\nOpenAPM counters these challenges with an innovative approach, offering a similar experience to standard APMs but leveraging open-source tools. Utilizing resources like OpenMetrics, PromQL, and Prometheus, all of which operate on open standards, OpenAPM facilitates greater control and flexibility over monitoring practices while maintaining vendor neutrality.\r\n\r\nDeep-dive into the pillars of observability - Metrics, Events, Logs, and Traces (MELT) - coupled with an in-depth understanding of metric types, including Counters, Histograms, and Gauges, empowering developers to extract valuable system insights. Furthermore, developers can leverage the prom client libraries and packages to instrument their applications, enhancing their control over metrics monitoring.\r\n\r\nCustom dashboarding using Grafana and PromQL paves the way for Minimum Viable Monitoring, focusing on critical metrics. Amid this technical context, observability evolves from being just a task to an iterative practice, crucial for managing system entropy. It encourages embracing the 'unknown unknowns' and navigating the inherent uncertainty in complex systems.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "fe3fbf29-13cc-54d7-8294-335275fe51cb", "id": 809, "code": "EYJPMA", "public_name": "Nishant Modak", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Nishant_Modak_kUGKnCG.jpeg", "biography": "Founder, CEO of Last9 Inc", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/NFYPDU/", "id": 708, "guid": "0f8fffd4-1176-57c0-ae46-e644ffcad7f4", "date": "2023-11-04T10:50:00-05:00", "start": "10:50", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-708-know-your-ingredients-security-starts-with-the-source", "title": "Know Your Ingredients: Security Starts With the Source", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "One of the most neglected parts of application security is the ingredients that go into developing software. Over 80 percent of code used in enterprise applications comes from open source dependencies, but how much attention goes towards the provenance and security of those packages. And in the pursuit of accelerated software development, developers are leveraging more and more libraries and also code \u201ccreated\u201d by generative AI algorithms, so how do you prevent defects or malicious payloads from compromising your security?\r\n\r\nThis is analogous to a restaurant where you invest in modern decor, professional chefs, and world class service. But if you don\u2019t get fresh, quality ingredients delivered daily, the taste and hygiene of the food will suffer. Securing the software supply chain is a huge undertaking for the entire tech industry, and we will talk about some of the ongoing efforts by open source projects, foundations, and corporations to help us all know our ingredients.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "e565e48a-9eb6-523d-8237-599cfdbc5769", "id": 726, "code": "HJDVWX", "public_name": "Stephen Chin", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/steve-2019_zoomed_bVPzmUR.jpg", "biography": "Stephen Chin is VP of Developer Relations at JFrog, chair of the CDF governing board, member of the CNCF and OpenSSF governing boards, and author of The Definitive Guide to Modern Client Development, Raspberry Pi with Java, Pro JavaFX Platform, and the DevOps Tools for Java Developers title from O'Reilly. He has keynoted numerous conferences around the world including swampUP, Devoxx, JNation, JavaOne, Joker, and Open Source India. Stephen is an avid motorcyclist who has done evangelism tours in Europe, Japan, and Brazil, interviewing hackers in their natural habitat. When he is not traveling, he enjoys teaching kids how to do embedded and robot programming together with his daughters.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/KNU8SK/", "id": 747, "guid": "2a70b2db-6f80-5250-af95-30cf6e84a55c", "date": "2023-11-04T11:25:00-05:00", "start": "11:25", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-747-a-re-introduction-of-inspektor-gadget-a-containerized-framework-for-ebpf-systems-inspection", "title": "A (re)introduction of Inspektor Gadget: A Containerized Framework for eBPF Systems Inspection", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Inspektor Gadget is a newly accepted CNCF Sandbox project that has evolved from being a tool for gathering system data using eBPF programs into a containerized framework for building custom eBPF system inspection pipelines.\r\n\r\nThis talk will guide attendees through the process of creating, packaging and distributing 'Gadgets' (eBPF programs/scripts + metadata in OCI images), using existing Gadgets and leveraging Inspektor Gadget's framework to collect, enrich (map Linux to Kubernetes resources), and export data via Prometheus or expose it via an API, and visualizing data; all based on a simple config file.\r\n\r\nThe transition of Inspektor Gadget from being a tool to a framework opens a multitude of opportunities. It paves the way for many existing and future projects that follow the pattern of gathering and exporting eBPF data to be implemented via a simple configuration file. This talk provides attendees with the knowledge to fully exploit Inspektor Gadget for these purposes.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "4967f7d9-f800-5a78-a9e8-d2f363599a20", "id": 2, "code": "FBJ7DG", "public_name": "Chris Kuehl", "avatar": null, "biography": "Chris works at Microsoft Azure where he works on open source, cloud native Linux projects. He joined Microsoft via the acquisition of Kinvolk where he was founder and CEO. Similar to his focus at Microsoft, Kinvolk specialized in building open source, cloud native Linux projects and products.", "answers": []}, {"guid": "fd2c0742-3164-59a0-bda0-e61c1adc6f2a", "id": 528, "code": "J9N9UZ", "public_name": "Mauricio Vasquez Bernal", "avatar": "https://cfp.cloud-native.rejekts.io/media/profile_crop.png", "biography": "Mauricio works as a software engineer at Microsoft. He is interested in eBPF, Kubernetes, networking and low level programming. Mauricio has used eBPF in different scopes like implementing network virtual functions (polycube project), tracing solutions (Inspektor Gadget) and recently implemented a new BPF-based feature in systemd.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/RFUGTM/", "id": 678, "guid": "db8fea0e-a2a8-5a12-a6f6-674475861932", "date": "2023-11-04T12:00:00-05:00", "start": "12:00", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-678-choose-your-own-adventure-the-perilous-passage-to-production", "title": "Choose Your Own Adventure: The Perilous Passage to Production", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Our hero, a running application in a Kubernetes development environment, knows that they are destined for greater things! They long to be living in production, serving end users! However, the journey from dev to prod is hard, filled with system design choices concerning cluster provisioning, GitOps, traffic routing, app config, and production-grade backing services. And who knows what unseen forces lurk in the shadows! One wrong step could be catastrophic.\r\n\r\nIt is up to you, the audience, to guide our hero and help them grow from an app in development to their final form\u23afan app running in production. In their second KubeCon \u2018Choose Your Own Adventure\u2019-style talk, Whitney and Viktor will present choices that an anthropomorphized app must make as they try to find their way to production. Throughout the presentation, the audience (YOU!) will vote to decide our hero app's path! Can we navigate CNCF projects and avoid dead-ends to get our app to production before the session time elapses?", "description": "When working with cloud native technologies, it is easy to get deep into one part of the system and lose sight of the bigger picture. On the other hand, the big picture can be difficult to make out because there are such a huge number of considerations, use cases, and CNCF projects.\r\n\r\nThis talk will discuss one opinionated path to production (chosen by the audience!) while playfully acknowledging that this particular route is one of an infinite number of possible paths. It will give the audience a broader sense of what types of technologies are out there, and what factors to consider when making system design choices.\r\n\r\nWe plan on touching on many projects in the CNCF landscape, including (but not limited to): Cluster API, Crossplane, Carvel kapp-controller, Argo CD, Flux, Contour, ingress-nginx, Emissary Ingress, Helm, cdk8s, Carvel ytt, and Kustomize.\r\n\r\nThe session will be engaging, relatable, and accessible to beginners because it will give human emotion to our application who is traversing the path to production. It will also be interactive and evoke the nostalgia that many folks feel from reading \u2018Choose Your Own Adventure\u2019 books as a kid.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "1bb87adb-6002-5084-a43a-bb20ab19a7c8", "id": 677, "code": "WUQK7E", "public_name": "Whitney Lee", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Whitney_Square_P5w25Cd.jpg", "biography": "Whitney is a lovable goofball who enjoys understanding and using tools in the cloud native landscape. Creative and driven, Whitney recently pivoted from an art-related career to one in tech. This past fall, Whitney co-presented a silly yet informative keynote about platform building at Kubecon NA 2022 (https://youtu.be/eJG7uIU9NpM). You can catch her lightboard streaming show \u26a1\ufe0f Enlightning on Tanzu.TV (https://via.vmw.com/Enlightning), and she also co-hosts the streaming show You Choose! - a 'Choose-Your-Own-Adventure'-style journey through the CNCF landscape (https://www.youtube.com/playlist?list=PLyicRj904Z9-FzCPvGpVHgRQVYJpVmx3Z). And not only does Whitney rock at tech - she literally has toured playing in the band Mutual Benefit on keyboards and vocals.", "answers": []}, {"guid": "53f4a962-f752-55a7-9f72-25b2add97ef2", "id": 531, "code": "XXSQET", "public_name": "Viktor Farcic", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/screenshot-04_JxPNv9S.jpg", "biography": "Viktor Farcic is lead rapscallion at Upbound, a member of the Google Developer Experts, CDF Ambassadors, and GitHub Stars groups, and a published author.\r\n\r\nHe is a host of the YouTube channel DevOps Toolkit and a co-host of DevOps Paradox.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/XX3HWC/", "id": 672, "guid": "8982780c-e631-56ed-8d47-6cd80c51d6a2", "date": "2023-11-04T14:00:00-05:00", "start": "14:00", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-672-webhooks-what-s-the-worst-that-could-happen-", "title": "Webhooks - what's the worst that could happen?", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Webhooks in Kubernetes play an essential role in extending the functionality of the cluster and go a long way towards the power Kubernetes offers. However, as with any technology, they also come with their set of risks and even potential disaster.\r\n\r\nIn this talk we\u2019ll go through scenarios that could possibly impact an otherwise healthy Kubernetes cluster by making use of a misconfigured or malicious webhook. Can we take down the whole cluster? Can we block access to others?\r\n\r\nFor each risk we\u2019ll take a look at the ways we can try to avoid them or mitigate their impact, if at all possible.\r\n\r\nBy attending this talk, attendees will gain a better understanding of the potential risks associated with webhooks and the measures they can take to ensure a more secure and stable Kubernetes cluster.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "906dc8d6-5c0d-5bb0-a0b5-8e3e41c8c378", "id": 700, "code": "PR7HQL", "public_name": "Marcus Noble", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/headshot-compressed_deOUg9b.jpg", "biography": "Marcus is a platform engineer at Giant Swarm, a company dedicated to offering managed Kubernetes solutions. His main area of focus in recent years has been around Go, Kubernetes, containers and DevOps but originally started out as a web developer and JavaScript enthusiast. A self-described \u201ctinkerer\u201d, when not building Kubernetes solutions, Marcus likes to dabble with 3D printing and experimenting with smart home tech.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/ABNWHR/", "id": 670, "guid": "9f53e890-e0ff-5bef-9716-2533d827734b", "date": "2023-11-04T14:35:00-05:00", "start": "14:35", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-670-future-proofing-cloud-native-multi-arch-images-secure-co-signing-policy-management", "title": "Future-Proofing Cloud-Native: Multi-Arch Images, Secure Co-Signing & Policy Management", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Want to provide multi-arch container images but stuck with a legacy CI/CD pipeline? Do you want to secure the images but do not know how to incorporate it in your existing CI/CD setup? \r\n\r\nJoin us to know how Cloudera incorporates these practices into our existing CI/CD setup to ship thousands of container images every year and also how you could also do it for your project or company. We will take into consideration different CI/CD setups that companies have (ranging from monolith, to on-prem microservices and cloud-native environments)", "description": "Discover the power of multi-arch containerization, secure image co-signing, and advanced policy management for cloud-native practices. Acquire actionable strategies to architect the future of cloud-native practices and seamlessly integrate cutting-edge open source tools into your organization's existing setup.\r\n\r\nDive into real-world insights from Cloudera's journey, covering strategy, implementation, and lessons learned. Address security considerations and implement secure image co-signing for enhanced container integrity.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "7ac009b9-354f-52b4-bc32-05e9f74ec5f9", "id": 698, "code": "ECCGVF", "public_name": "Philemon Johnson", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/DSC_1071_copy_92JS0kl.JPG", "biography": "Software engineer with over 5 years of experience in release engineering and DevOps. Led the multi-arch containerization effort for Cloudera's release engineering team. Skilled in CI/CD tools,(including Jenkins, Docker, Kubernetes, and buildx), Cloud Services, cloud cost optimization, and cloud native. Passionate about sharing knowledge and presenting about cutting edge tech implementation at several conferences and meetups\r\n\r\nLoves indulging in badmintion, karting, and reading crime fiction books.", "answers": []}, {"guid": "45ded615-006d-5896-9ee7-a5d3720a1c18", "id": 762, "code": "CYTBHK", "public_name": "Shreelola Hegde", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/DSC01966_Original_NwghZpU.jpg", "biography": "Shreelola Hegde is a Senior Staff Engineer specializing in Developer Productivity and Infrastructure Improvement at Cloudera. With over ten years of experience in the software industry, Shreelola has played a pivotal role in leading and contributing to various projects to enhance developer productivity, optimize tooling, and advance release engineering and infrastructure projects. As a Cloud Native projects enthusiast, Shreelola is committed to leveraging cutting-edge technologies to build scalable and resilient systems.", "answers": []}, {"guid": "037b837f-9f5d-59a6-a5cf-1a1e5c09d03a", "id": 799, "code": "BVVA9C", "public_name": "sriharsha devineni", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/E055G0KR4FP-UF5MYEXNW-5e8a07eb5567-512_gkqVQIG.jpeg", "biography": "Devops engineer at cloudera", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/DW7KXM/", "id": 666, "guid": "1a552380-0b83-5562-ada7-391c73c48fec", "date": "2023-11-04T15:10:00-05:00", "start": "15:10", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-666-get-a-round-trip-ticket-from-the-kubernetes-workload-to-the-public-cloud-and-back", "title": "Get a round trip ticket; from the Kubernetes workload to the public cloud and back", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "This talk will cover identities between a kubernetes cluster and a cloud service provider (focusing on AWS). We will dive into every step of the authorization flow from a workload to a cloud service for how those decisions are made and ways they can be abused. This includes Kubernetes RBAC, Kubelet authorization, AWS IAM roles, S3 bucket policies and more. The talk will discuss various options of identity provider integrations such as SAML and OIDC and how they each have unique attack vectors in the auth workflow. To conclude, we\u2019ll summarize attack techniques that would best leverage misconfigurations of this complicated flow.", "description": "Add.'l info: We\u2019ll be talking about how permissions are granted and leveraged by entities across different planes of a containerized application hosted in a cloud service provider. It\u2019s interesting to break down the differences of implicit and explicit permissions as they relate to different components along the trail when you look at it from an attackers point of view.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "7b89eb7b-e108-5bec-91ba-633edba3d32f", "id": 801, "code": "TRY7EC", "public_name": "Jeff Friedman", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Jeff_Friedman_ovw1let.png", "biography": "Jeff Friedman is a staff software engineer at KSOC.  He has built cloud-native, high-performance distributed systems in product engineering teams at CircleCI and EverQuote, ranging from real time data analysis and data visualization applications to auction engines for insurance marketplaces.  Prior to software engineering, Jeff worked in investment banking and management consulting.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/GUQEXS/", "id": 720, "guid": "2003ff2b-d144-5ac1-a07d-afb7a0a86f7e", "date": "2023-11-04T15:45:00-05:00", "start": "15:45", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-720-confidential-containers-the-next-frontier-in-cloud-native-security", "title": "Confidential Containers: The Next Frontier in Cloud-Native Security", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Data encryption is not a solved problem today, at least not fully. Data is either stored, transmitted, or processed. We have solved data encryption for data at rest and data in transit. But the data is still decrypted and stored in plain text while it is being processed. Enter confidential computing technology, that stores data encrypted in memory. Confidential computing technology allows data to be encrypted in memory. This feature is enabled by the processor itself. \r\n\r\nKubernetes has become the de-facto platform for running cloud-native applications. This talk delves into the CNCF-sandbox project confidential containers and how it is bringing the confidential compute technology to the Kubernetes. The talk also goes on to showcase how cloud-native applications can add another layer of security using confidential compute. This technology can protect workloads against certain kinds of attack vectors pertaining to virtualization, hypervisors, host operating systems, etc. because all the underlying layers of the application stack are now out of trust boundary, now you only trust the processor without worrying about what happens to the intermediate layers. \r\n\r\nFurther the talk will discuss numerous ways to use confidential containers with Kubernetes and end with a demo that displays using confidential containers on Kubernetes deployed on a public cloud. The demo will showcase an artificial intelligence model deployed for image inferencing.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "b2db5979-36fe-521c-bdcc-ab59fec47510", "id": 31, "code": "8FGAEA", "public_name": "Suraj Deshmukh", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/5815795_TXtUwZ4.jpeg", "biography": "Suraj Deshmukh has been working with Kubernetes since the release of v1.3. Currently he works for Microsoft as a Senior Software Engineer in the Azure\u2019s AKS team with focus on the confidential compute specifically Confidential Containers upstream project. Suraj is an active member of the upstream confidential containers community and is also involved in the in-person community events in Seattle area.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/SKMUSG/", "id": 779, "guid": "22050790-049d-516e-9d7b-ae47bfb85134", "date": "2023-11-04T16:30:00-05:00", "start": "16:30", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-779-let-s-talk-community-how-to-grow-nurture-engage-measure", "title": "Let's Talk Community - How to Grow, Nurture, Engage, & Measure", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "\u201cCommunity\u201d is a broad term and many have opinions on how to set up, grow, engage, and measure your community activities. Through trial and error, I have a set of my go-tos when I\u2019m building a community that will focus on inclusivity, transparency, openness, collaboration, and participation.\r\n\r\nIn this talk, I\u2019ll cover a few of the top things to think about with your community efforts. I\u2019ll touch on open source communities and how project usage can feed the product-led growth model. I\u2019ll close with sharing some case studies from communities in different areas of their evolution.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "16414ca8-9a9c-5a56-b2de-49da0289af78", "id": 782, "code": "UCJLC9", "public_name": "Kim McMahon", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Kim_400x400_tPjDujh.png", "biography": "Kim McMahon is well-known in the cloud native ecosystem for leading the marketing and community activities at CNCF. She has moved to run community and open source marketing at Cisco where talking with developers is a key activity. Community building, breaking down barriers, and uniting are Kim\u2019s drivers.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/TPCLFH/", "id": 748, "guid": "813afb46-6f5c-550e-a12c-62ae277c499a", "date": "2023-11-04T17:05:00-05:00", "start": "17:05", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-748-wasm-optimized-linux-what-how-and-most-importantly-why-", "title": "Wasm-optimized Linux: what, how, and, most importantly, why?", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Web assembly, or Wasm, is shaping up to have a huge impact on the future of cloud computing. As Solomon Hykes, co-founder of Docker, said \"If WASM+WASI existed in 2008, we wouldn't have needed to create Docker. That's how important it is.\"\r\nIn this talk, we take a look at some of the parallels between the evolution of the container ecosystem and that of Wasm, focusing in particular on the foundational technology of the operating system. CoreOS established the concept of a container Linux - what is the equivalent for the Wasm world?", "description": "In more detail, this talk will cover: What is Wasm and why are people excited about it? What are some of the challenges with developing and deploying Wasm? We consider the evolution of the container ecosystem starting in 2013 with Docker and CoreOS, and compare with where Wasm is today. Then, focusing on the operating system itself, we show how the Flatcar project, leveraging the latest system extension capabilities of systemd, can be used as the basis of an immutable Wasm-optimized Linux, incorporating all the key Wasm runtime components for a simplified development and manageable deployment experience.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "83dc238d-63dc-5598-a7cf-12d0344c26f7", "id": 142, "code": "WLGPRY", "public_name": "Andrew Randall", "avatar": null, "biography": "Andy is passionate about technology and believes successful businesses deliver solutions and services that delight customers, the open source community and ecosystem partners.\r\nAndy joined the Azure team at Microsoft through the acquisition of Kinvolk, where he was chief commercial officer. Prior to joining Kinvolk, Andy co-founded Tigera and Calico, the foundational open source cloud native networking and network security project. Andy previously as successfully built and grown businesses in the areas of network protocols, voice over IP and web conferencing at Metaswitch. He holds a joint MBA from Berkeley-Haas and Columbia Business Schools. He also has masters degrees in software engineering, philosophy and mathematics from the Universities of Oxford and Stirling.", "answers": []}, {"guid": "550e950b-1c9b-51b5-80fb-9a6f2ca9178e", "id": 203, "code": "JJLYBY", "public_name": "Ralph Squillace", "avatar": "https://cfp.cloud-native.rejekts.io/media/IMG-20180127-WA0000.jpg", "biography": "Ralph Squillace is a Prinicipal Product Manager in the Azure Core Upstream group at Microsoft. He's old, having joined Microsoft in the OLE32 group -- before COM, just after Win16 graduated to Win32. Since then he's worked in component development in .NET, WCF (SOAP for professionals!), and several Azure Services. An early advocate for Linux at Microsoft, he spent the last twelve container years helping the Helm project, supporting https://porter.sh and https://cnab.io, and others. For the past two or more years he's led Microsoft open-source efforts in WebAssembly at the ByteCode Alliance Foundation, focusing on the Wasm System Interface, Wasm Components, and language integrations. @ralph_squillace.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/9UCQ3M/", "id": 782, "guid": "2c0ae678-119b-5808-b09c-6717237edfed", "date": "2023-11-04T17:40:00-05:00", "start": "17:40", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-782-kubewarden-simplifing-the-adoption-of-policy-as-code", "title": "Kubewarden - Simplifing the adoption of policy-as-code", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "\"In today's dynamic landscape of containerization, security within Kubernetes clusters is a critical priority. This session brings you an in-depth look at KubeWarden, an innovative project leveraging the flexibility and power of WebAssembly to implement and enforce policy-as-code. KubeWarden addresses key challenges in Kubernetes security, empowering you to write policies in any language that compiles to WebAssembly, enhancing the security posture of your cluster.\r\n\r\nJoin us as we delve into KubeWarden's capabilities, including establishing secure container bases, managing image authorizations, regulating container permissions, and controlling mount types. Moreover, we will explore KubeWarden's capacity for verifying image signatures, adding an extra layer of security to your container deployments. This session is designed to equip attendees with the necessary knowledge and strategies to enforce robust security and compliance in Kubernetes clusters.\"", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "1f82f80f-4e9d-5943-8919-a1dd97be6747", "id": 784, "code": "Y7AVE9", "public_name": "Erin Quill", "avatar": null, "biography": "Erin Quill is a skilled Technology Evangelist known for his talent in simplifying intricate technical concepts into relatable ideas. With a flair for creative content creation and a captivating speaking style, his engaging presentations, blending storytelling and technical expertise, leave a lasting impact and have garnered attention at conferences. With a background in showcasing key technologies and products, Erin's passion for clear communication and technology continues to shape and inspire audiences worldwide.", "answers": []}], "links": [], "attachments": [], "answers": []}], "ROOM 2": [{"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/EK83AX/", "id": 730, "guid": "1fd7275f-e266-511a-b602-6ad1ae960d9e", "date": "2023-11-04T10:50:00-05:00", "start": "10:50", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-730-understanding-exploitability-with-vex-epss-and-other-standard-frameworks", "title": "Understanding Exploitability with VEX, EPSS, and Other Standard Frameworks", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "As the complexity of software systems continues to grow, ensuring their security becomes paramount. This necessitates a comprehensive understanding of the reachability & exploitability of vulnerabilities within software applications.", "description": "This talk aims to provide a high-level overview of four essential concepts in the field of software security: Vulnerability Exposure Factor (VEX), Exploit Probability and Severity Score (EPSS), Common Vulnerability Scoring System (CVSS), and Software Bill of Materials (SBOMs).\r\nThis can be streamlined through a process of generating and managing Software Bill of Materials (SBOMs) for compliance purposes.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "9fe09a04-2d9d-5895-8b8d-e48e3cd0c742", "id": 803, "code": "JW98DG", "public_name": "Kyle Quest", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/kcq_conf_image_NAYvAFv.jpeg", "biography": "Kyle is the creator of DockerSlim/SlimToolkit, a popular open source tool to inspect, minify and debug containers. Kyle is also the CTO/founder of Slim.AI where he's building a supply chain security solution for the cloud native applications. Kyle has been building applications and platforms using many different cloud native technologies since the early days of cloud computing. He\u2019s been involved in security for more than two decades wearing many different hats as a builder, breaker and defender.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/QVAD37/", "id": 714, "guid": "96987ee4-410c-5780-82c3-ed1aae71497a", "date": "2023-11-04T11:25:00-05:00", "start": "11:25", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-714-the-basics-of-software-supply-chain-security-for-cloud-native-workflows", "title": "The Basics Of Software Supply Chain Security For Cloud Native Workflows", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "The Cloud Native community has made many strides in improving the security of containers and Kubernetes. The aim of this talk is to showcase these efforts such as signing Kubernetes artefacts with sigstore, SBOMs for Kubernetes (sigs/bom), etc.\r\nThe second part of this talk will focus on how to secure basic cloud native workflows. The will be a demo component that will educate attendees about signing images, generating SBOMs, consuming them, creating deployment policies, and other ways to secure images and other artefacts.", "description": "The talk is being prepared for attendees who are already invested with cloud native technologies, but are new to the notion of securing them.\r\nAttendees will be exposed to the basics of what secure software supply chains are how to start with their personal workflows.\r\nThey will also be expected to walk away with an idea about how to start conversations with their teams about securing their workflows better.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "875f068f-b0a7-57e8-9932-df27bc373e0e", "id": 733, "code": "FY8GWN", "public_name": "Ram Iyengar", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/FY8GWN_DrtSSno.jpg", "biography": "Ram Iyengar is an engineer by practice and an educator at heart. He was (cf) pushed into technology evangelism along his journey as a developer and hasn\u2019t looked back since! He enjoys helping engineering teams around the world discover new and creative ways to work. He is a proponent of product development and engineering teams that put the community first.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/WQZQVA/", "id": 758, "guid": "07d846de-6330-59d7-988b-2379b07737e6", "date": "2023-11-04T12:00:00-05:00", "start": "12:00", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-758-backstage-software-templates-scaffolding-for-cloud-native-development", "title": "Backstage Software Templates: Scaffolding for cloud-native development", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Every team and every project evolves a tailored development environment. This collection of tools, services, and configurations is usually maintained by convention and transmitted (you hope) by osmosis. It often sprawls across each programmer\u2019s laptop\u2014and when details don\u2019t match, problems happen.\r\n\r\nBackstage Software Templates provide a consistent way for teams to enable self-service delivery of cloud native software components. Templates ease onboarding and daily development work by establishing the tools, services, documentation, and best practices as \u201cgolden paths\u201d for users to navigate.\r\n\r\nAttendees will learn how to use CNCF products and technologies together to construct flexible foundations for cloud-native development using Templates, and will review common workflows for delivering and updating these offerings via the Backstage Software Catalog.\r\n\r\nEnable your team with the tools and components to get to work immediately with Software Templates for Backstage.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "f8804e1a-275f-55af-9a83-a0d4bbc2da75", "id": 764, "code": "MXCWYD", "public_name": "Ryan Jarvinen", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Ryan-Jarvinen-headshot-square-tiny_WSsZllV.jpg", "biography": "Ryan Jarvinen is a Developer Advocate at Red Hat who focuses on developer experience and usability in the Cloud Native ecosystem.  He is a frequent conference speaker and workshop leader who enjoys helping teams develop strategies for maximizing their collaboration potential.  He works remotely from Sacramento, California, but you can find him online as \"RyanJ\" via twitter or github.", "answers": []}, {"guid": "1d8390df-664f-5bb5-a3e4-aba058056002", "id": 773, "code": "YVKN3S", "public_name": "Joshua Wood", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/jw-kubeconeu2020_oItnaRb.jpeg", "biography": "Joshua Wood is a Principal Developer Advocate at Red Hat. Co-author of Kubernetes Operators (O\u2019Reilly, 2020) and OpenShift for Developers, 2nd Edition (O\u2019Reilly, 2021), he was formerly responsible for documentation at CoreOS. Wood has worked in roles from sysadmin to CTO to build utility computing with open source software. He likes fast cars, slow boats, and short autobiographies.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/RTP8MN/", "id": 788, "guid": "78922813-17d2-51ca-8090-71063b4a6146", "date": "2023-11-04T14:00:00-05:00", "start": "14:00", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-788-don-t-expect-developers-to-be-security-experts-", "title": "Don't Expect Developers to be Security Experts!", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Developers are not security experts! I\u2019ve heard this exclamation time and again and I wonder, why not? And should they be?\r\n\r\nThere is no denying that software teams must work to address a number of security concerns today. But we\u2019re still learning and actively developing best practices. We\u2019re still figuring out \u2014 sometimes through trial and error \u2014 the best way to tackle security issues that won\u2019t negatively interfere with delivering functional (and secure) software.\r\n\r\nWhen it comes to developers securing software, there is only a subset of prevention and mitigation strategies that make sense to put on a developer\u2019s plate. Even then, an expectation that all developers by default are equipped to handle this additional workload is unreasonable.\r\n\r\nMelissa will define common security related terms and lingo; share typical places to shore up applications when it comes to dependencies, packaging, and supply chain concerns; and discuss the plethora of scanning tools available today and how they actually work. Learn how to integrate a measure of security that makes sense in existing development processes and how to introduce a security culture to your team in a healthy way without exhausting your developers.\r\nMost importantly, don\u2019t lose heart! We\u2019re getting better and better at this and the future looks bright!", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "329e9b8b-cfd3-5257-982d-a53e8ec3b805", "id": 789, "code": "QR3RRD", "public_name": "Melissa McKay", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/MelissaMcKay_2_fGiT4xP.jpg", "biography": "Melissa is passionate about Java, DevOps and Continuous Delivery. She is currently a Developer Advocate for JFrog, serves on the Continuous Delivery Foundation TOC and is a Co-Chair of the Interoperability SIG. She loves sharing her knowledge with the community as a developer, speaker, and author. Melissa has been recognized as a Java Champion and Docker Captain, is an international speaker at numerous events including KubeCon and DockerCon, and is co-author of the O'Reilly title, DevOps Tools for Java Developers.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/XYRYVV/", "id": 718, "guid": "4f4d3b44-0426-53c6-bb88-6c40660273a0", "date": "2023-11-04T14:35:00-05:00", "start": "14:35", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-718-pushing-observability-uphill-the-single-pain-of-glass", "title": "Pushing Observability Uphill - The Single \u201cPain\u201d of Glass", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "For years tech companies have chased the fabled \u201csingle pane of glass\u201d , the one observability tool to understand your system from north to south and east to west. Leafing through promo materials promising instant insights and seamless turnkey integrations you\u2019d think increasing system observability is as easy as assembling a Lego set. \r\n\r\nIn my experience chasing the \u201csingle pane of glass\u201d translates to \u201cpain in the ass\u201d. Survey data supports this revealing the majority of engineers cite tool sprawl as a minor or non-existent problem despite relying on several tools. As alluring as the siren call of \u201csingle pane of glass\u201d is, let's be practical and examine how to best observe systems across a myriad of tooling. \r\n\r\nFrom the telemetry buffet of metrics, events, traces and logs learn when to reach for which type and ways to bridge the gaps with links and enhance with context to free yourself from the fool\u2019s errand of a \u201csingle pane of glass\u201d.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "543efb55-9f7d-5f08-9b2e-f21296ba3f65", "id": 737, "code": "GD8F8R", "public_name": "Paige Cruz", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/KCCNC_NA_headshot_231107_Paige_Cruz_4094_1_0OF0FCp.jpg", "biography": "Paige Cruz is a Senior Developer Advocate at Chronosphere passionate about cultivating sustainable on-call practices and bringing folks their aha moment with observability. She started as a software engineer at New Relic before switching to Site Reliability Engineering holding the pager for InVision, Lightstep, and Weedmaps. Off-the-clock you can find her spinning yarn, swooning over alpacas, and occasionally blogging at paigerduty.com.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/7GFCQ9/", "id": 773, "guid": "2c117948-5a83-51ff-82e5-141dc5ff4ac1", "date": "2023-11-04T15:10:00-05:00", "start": "15:10", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-773-what-actually-is-webassembly-taking-a-look-under-the-hood", "title": "What Actually Is WebAssembly: Taking a Look Under the Hood", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "This talk will cut through the hype of WebAssembly and teach you the fundamentals. You'll learn the basics of what a WebAssembly module is, how it is executed, and how they are created. This information will help you whether you're using WebAssembly in the browser, on the server-side, or in an embedded use case.", "description": "WebAssembly is garnering a lot of excitement because of it's unique combination of portability, security, and performance. We're seeing it used widely across browser, server-side, and IoT use cases. But what actually is WebAssembly? This talk will crack open the hood of WebAssembly and help demystify what is going on inside at a beginner friendly level.\r\n\r\nThe core of the talk will focus on understanding what a WebAssembly module is and how it is executed. We'll explore the text and binary representations of a module; the data layout within a module; and understand the basics of how its bytecode instructions operate a stack machine.\r\n\r\nThen with an understanding of what a WebAssembly module is we'll take a look at how languages are compiling into WebAssembly and the types of runtimes that are actually executing WebAssembly.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "36b2786c-84f7-5355-b5ce-e4d3868b8209", "id": 778, "code": "MZYEP7", "public_name": "Caleb Schoepp", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/MZYEP7_rFnqFpc.png", "biography": "Caleb Schoepp is a software engineer at Fermyon. Before working at Fermyon he interned at Microsoft three times on different teams and at the startups UnifyID and Resemble AI. Caleb has experience building on public clouds, mobile apps, full stack web applications, and machine learning integrations among other things. Outside of work he enjoys playing guitar, spending time with family, and learning to play hockey. Caleb holds a BSc in Computer Engineering from the University of Alberta. He lives in Edmonton, Alberta.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/YGB8RB/", "id": 769, "guid": "1b54886c-dc0d-51bf-a97e-3fa3bf9fe664", "date": "2023-11-04T15:45:00-05:00", "start": "15:45", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-769-debugging-the-developer-way", "title": "Debugging, the Developer Way", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "As developers, we have many skills we use and constantly improve when writing code. But when it comes to debugging, most of us go for a primarily research-based approach, asking ourselves questions like \u201chow did this bug happen?\u201d and \u201cwhat in the code is causing this behavior?\u201c.\r\nBy taking this approach and asking these questions, we\u2019re treating our codebase like it\u2019s a mystery and the bug like it\u2019s a malicious piece of code injected by some evil entity (when, let\u2019s admit, that\u2019s usually not the case). This means that we are leaving the skills we pride ourselves on having as developers - such as logical thinking, designing code and problem-solving - behind. This causes the debugging process to be that much harder and more time-consuming than it has to be.\r\nIn this talk, I will present a different approach to debugging, one that takes advantage of our programming abilities and utilizes them to find bugs faster all while improving our software development and design skills.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "7d27a3b0-a67e-5edb-85e9-2ed1a00f66f2", "id": 774, "code": "UJLBHA", "public_name": "Yarden Laifenfeld", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/computer_4rP1zOC.jpeg", "biography": "Yarden Laifenfeld is a software engineer and developer advocate at Dynatrace. With a deep background in C and embedded Linux environments, her current focus is coding in Go and diving deep into its internals. She is also on the organizing team of both GopherCon Israel and Women Who Go Israel. She loves to speak at conferences, and when she\u2019s not at her keyboard, you can usually find her next to her sewing machine.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/DLZ9GP/", "id": 697, "guid": "2a3193b0-6b6f-59b1-a230-322e45e0a2c7", "date": "2023-11-04T16:30:00-05:00", "start": "16:30", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-697-mesh-matters-harness-chaos-embrace-reliability", "title": "Mesh Matters: Harness Chaos, Embrace Reliability", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Are you tired of dealing with multiple microservices, a complex architecture, and recurring performance issues? The complexity of service meshes often results in a lack of visibility, making troubleshooting a daunting task along with prolonged downtown and frustrated customers.\r\n\r\nIn this talk, we'll shed some light on service mesh observability and reliability. From setting up a service mesh to configuring basic security measures, we'll employ advanced chaos engineering principles to make our service mesh more resilient. To showcase how this would work, we'll have a demo of using Litmus Chaos along with Istio to observe our service mesh and in turn, take preventive measures to make it more reliable.\r\n\r\nSo, don't let your service mesh be a mystery any longer - attend the talk and learn how to make it more observable and reliable than ever before!", "description": "The talk will benefit by providing insights into the common challenges faced by DevOps teams and developers when it comes to service mesh reliability and observability.\r\n\r\nIt will also showcase advanced techniques like Chaos Engineering that can be used to improve service mesh reliability.\r\n\r\nAttendees will gain a better understanding of how to leverage Litmus Chaos and Kiali to observe and improve the reliability of their service mesh.\r\n\r\nBy implementing these techniques, attendees will be able to reduce downtime, improve customer satisfaction, and ultimately enhance the overall performance of their service mesh.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "833d08fa-c6fc-5ad4-9187-554d42540613", "id": 715, "code": "EL8AES", "public_name": "Atulpriya Sharma", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/atul-headshot_T6bmYsr.jpeg", "biography": "Sr. Developer Advocate @ InfraCloud| CNCF Ambassador\r\n\r\nManual tester turned developer advocate. I talk about Cloud Native, Kubernetes & DevOps to help others adopt cloud native. I also create content \u2013 blog posts, webinars \u2013 & host Twitter spaces and strongly believe in collaborative learning and growth.\r\n\r\nIn addition, I'm also a CNCF Ambassador and the organizer of CNCF Hyderabad. When I am not working, I\u2019m a food & travel blogger & love exploring eateries & going on road trips. You can find me at @TheTechMaharaj on Twitter.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/WAH8DY/", "id": 693, "guid": "bb07cc50-11be-5b94-85da-87eeeaa8a0c3", "date": "2023-11-04T17:05:00-05:00", "start": "17:05", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-693-open-source-dev-containers-with-devpod", "title": "Open Source Dev Containers with DevPod", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Many developers are excited about dev containers, but until now, people needed to use a managed service like Codespaces or Gitpod to feel that dev container magic. DevPod is a new open source tool that allows users to launch dev containers with any infrastructure that they have available.\r\n\r\nDevPod uses a provider model like Terraform's, and there are currently providers for local Docker daemons, Kubernetes, AWS, GCP, Azure, and several other cloud providers. It's also possible to develop providers if you don't find one that fits your needs.\r\n\r\nWhile you can choose the infra you want to use with DevPod, you don't have to manage it. DevPod handles the lifecycle of the infrastructure it runs on, and it can even suspend cloud resources automatically to save on costs. DevPod uses the open devcontainer.json standard, so it's compatible with VS Code and many other IDEs, as well as tools like Codespaces.\r\n\r\nWe'll look at how DevPod works and get into a quick demo that showcases how it can help developers and teams standardize their dev environments.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "6eaa36ca-3acb-5c95-8367-8e3840e6816d", "id": 492, "code": "LFAPTU", "public_name": "Rich Burroughs", "avatar": null, "biography": "Rich Burroughs is a Staff Developer Advocate at Loft Labs where he's focused on improving the happiness of teams using Kubernetes. He's the creator and host of the Kube Cuddle podcast, where he interviews members of the Kubernetes community. Rich was one of the founding organizers of DevOpsDays Portland, and he's helped organize other community events. Rich also has a strong interest in how working in tech impacts mental health. He has ADHD and has documented his journey publicly since being diagnosed, and he moderated a panel on ADHD at KubeCon Detroit.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/HWBHVF/", "id": 752, "guid": "944039f2-75c8-5543-8dc0-33604fbb3180", "date": "2023-11-04T17:40:00-05:00", "start": "17:40", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-752-a-reproducible-cloud-native-5g-ran", "title": "A Reproducible Cloud Native 5G RAN", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Join us as we demonstrate deploying a completely open source, reproducible, cloud native, 5G RAN in order to facilitate a phone call on stage using Kubernetes. We will be using a faraday cage, a universal radio, SRSRan, and Open5gs as the 5G core. When we are done you will have the steps, code, and the list of equipment needed to build, test, and debug a 5G network.", "description": "Up until now, the development of 5G technologies for the edge has been cost prohibitive, requiring the use of proprietary hardware and software. With the advent of ORAN and open source 5G cores, these barriers are being removed. Reproducible examples of open cloud native 5G components are needed for the move to 5G and private 5G. It has been very difficult to compile all of the moving pieces needed to safely work on 5G technology for the average open source developer. As the community embraces the edge, developers will benefit from using examples such as the reproducible cloud native 5G RAN to build and test edge networks safely and inexpensively.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "56dddf74-6f9a-58dc-bcb2-2c376256bb84", "id": 756, "code": "RWTDQL", "public_name": "W. Watson", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Headonly_iujBX2u.png", "biography": "W. Watson has been professionally developing software for 30 years. He has spent numerous years studying game theory and other business expertise in pursuit of the perfect organizational structure for software co-operatives. He also founded the Austin Software Cooperatives meetup group and Vulk Coop as an alternative way to work on software as a group. He currently works on the Cloud Native Network Function (CNF) Certification and the Cloud Native Network Function (CNF) Test Suite.", "answers": []}], "links": [], "attachments": [], "answers": []}]}}, {"index": 2, "date": "2023-11-05", "day_start": "2023-11-05T04:00:00-06:00", "day_end": "2023-11-06T03:59:00-06:00", "rooms": {"ROOM 1": [{"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/JVPXE3/", "id": 744, "guid": "30760866-f5a4-5fb4-9291-c6bd9c8056b7", "date": "2023-11-05T09:30:00-06:00", "start": "09:30", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-744-beyond-rbac-implementing-relation-based-access-control-for-kubernetes-with-openfga", "title": "Beyond RBAC: Implementing Relation-based Access Control for Kubernetes with OpenFGA", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "The Kubernetes API server is a declarative, uniform and extensible REST API server capable of storing a diverse set of APIs for infrastructure control. API objects tend to contain parent-child and sibling relations such as \u201cReplicaSet owns Pod refers to Node\u201d. However, with this graph-based structure, access control and multi-tenancy become a real challenge. The default RBAC authorizer is best for resource-scoped authorization (\u201callow listing all Pods\u201d), not fine-grained authorization (\u201callow listing Pods of these Deployments\u201d).\r\n\r\nOpenFGA is a Relationship-Based Access Control (ReBAC) engine inspired by Google Zanzibar and a CNCF sandbox project. ReBAC is a superset of RBAC, and empowers administrators to configure authorization in an object-scoped manner with minimal configuration sprawl.\r\n \r\nA Kubernetes contributor and a OpenFGA maintainer will demo an open-source implementation of a Kubernetes authorizer and controller that configures and queries OpenFGA for authorization decisions.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "aa728a91-75ed-5847-90ef-b2ca993f9a27", "id": 753, "code": "XB7EUR", "public_name": "Lucas K\u00e4ldstr\u00f6m", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/luxas_QGrIoGE.png", "biography": "Lucas is a Kubernetes and cloud native expert who has been serving the CNCF community in lead positions for 6 years. He\u2019s awarded Top CNCF Ambassador 2017 with Sarah Novotny. Lucas was a co-lead for SIG Cluster Lifecycle, co-created kubeadm, Weave Ignite, and ported Kubernetes to ARM. Lucas runs 3 meetups in Finland, co-created Cloud Native Nordics and has spoken at 8 KubeCons, including delivering a keynote with Nikhita Raghunath. Recently, Lucas wrote his BSc thesis on cloud native principles.", "answers": []}, {"guid": "4b7ccae2-061b-5f9e-9c52-6f480561a4f6", "id": 758, "code": "Y3YJVT", "public_name": "Jonathan Whitaker", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/IMG-1336_yTfwOJj.jpg", "biography": "My name is Jonathan Whitaker. I\u2019ve spent the last 7+ years of my career in the authentication, authorization, and Identity and Access Management (IAM) domain. The emphasis of my work has been on building authorization integrations and frameworks for small, medium, and large application platforms. I have helped build IAM platforms for companies as big as Adobe and for small startups. Since I started working in this domain I have been fixated on trying to bring better solutions to developers for these common, yet challenging, problems. I am currently working on the OpenFGA and Auth0 FGA project at Okta/Auth0 to bring global scale, fine-grained authorization to a broader audience of developers. In my spare time I love to get outdoors and camp, hike, fly fish, and mountain bike.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/HGPYB3/", "id": 669, "guid": "0b2e56a5-8e0e-508d-8513-2c297ad5a96d", "date": "2023-11-05T10:05:00-06:00", "start": "10:05", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-669-revolutionizing-data-backup-in-kubernetes-unlocking-the-power-of-change-block-tracking-with-csi", "title": "Revolutionizing Data Backup in Kubernetes: Unlocking the Power of Change Block Tracking With CSI", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Do you deploy stateful applications with block volumes in Kubernetes? Do you have difficulty defining a backup strategy for these applications? Join Carl and Pavan as they unveil KEP-3314, a game-changing proposal to introduce Change Block Tracking (CBT) to the CSI specification in Kubernetes. Learn how CBT can enable efficient and reliable differential backups of CSI block volumes and how this can benefit your stateful applications. Discover the evolution of KEP-3314 and the collaborative efforts of the Data Protection Working Group. Get a sneak peek into its design for the alpha release with a live prototype demonstration. Don't miss this engaging session to revolutionize your backup strategies and unleash the true power of CBT in Kubernetes!", "description": "As the adoption of Kubernetes to run stateful workloads grows, so does the need for robust data protection solutions. The introduction of Volume Snapshots to CSI addressed some challenges, but data backup and disaster recovery operations remain complex, especially for specialized applications using block volumes. This results in inefficient and resource-consuming backup processes that often require backing up the entire volume, even if only a small portion has changed.\r\n\r\nKEP-3314 seeks to address this critical issue by introducing Change Block Tracking (CBT) as a standard API within CSI. With CBT, the identification and tracking of changes between snapshots become seamless, enabling efficient and reliable differential backups for data stored in CSI volumes.\r\n\r\nThe speakers will delve into the secure and idiomatic design of the CBT API, along with proposed changes to the CSI specification. They will share insights from their involvement with the Data Protection Working Group, the collaborative efforts to refine the design, and feedback gathered over the past year. The session will feature a live prototype implementation, showcasing the power and potential of the CBT API.\r\n\r\nAttendees will gain a deep understanding of the CBT approach, the challenges it addresses, and how the proposed KEP-3314 revolutionizes backup and disaster recovery in Kubernetes.\r\nKubernetes Administrators can optimize backup workflows, reducing backup time, storage costs, and network bandwidth consumption. Storage vendors can enhance their CSI drivers by leveraging the standardized CBT API, ensuring compatibility and extensibility. Backup providers gain a competitive edge with more efficient and reliable solutions, seamlessly integrated with Kubernetes.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "3f0b24a1-7583-5f07-924c-7be0dfde350c", "id": 697, "code": "WLRNHZ", "public_name": "Pavan Navarathna", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/KubeConNA_S1EtNnL.jpg", "biography": "Pavan joined Kasten by Veeam in March 2018, where he leads the open-source efforts and manages a team of cloud-native engineers developing creative solutions for data protection in Kubernetes. He has previously worked in data protection and networking at NetApp and Aryaka. Pavan is a maintainer of Kanister, an open-source framework for application-level data management on Kubernetes. He holds a Master's degree in Computer Science from the University of Florida.", "answers": []}, {"guid": "308973e0-cc2d-5c95-8e59-25b97f87269e", "id": 706, "code": "KPBVQV", "public_name": "Carl Braganza", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/carl-face-small-square_ALV3BhD.jpg", "biography": "Carl is a software architect and developer with extensive industry experience in the storage field, ranging from device drivers and kernel modules to distributed management subsystems and backup products.\r\n\r\nCarl currently works for Kasten by Veeam, the leading Kubernetes backup product, primarily with the management of block data in cloud storage. He is an active participant in the Kubernetes Data Protection Working Group, and a contributor to the Changed Block Tracking KEP design.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/LMPKZL/", "id": 712, "guid": "9a6d3495-a85d-5492-805a-c22adb900977", "date": "2023-11-05T10:40:00-06:00", "start": "10:40", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-712-how-thanos-almost-snapped-100-000-from-our-infra-budget", "title": "How Thanos Almost Snapped $100,000 from our Infra Budget", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "In a galaxy not so far away, where data is as vast as the cosmos, our team was troubled with observability data chaos.\r\nSeeking some clarity, we sought salvation with Thanos and Fluentbit \u2013 fabled titans against our metric storage and logging issues.\r\nThanos empowered us with a Prometheus setup with high availability and virtually infinite historical data storage. Prometheus ascended to new heights, flawlessly scaling horizontally while Thanos Compactor's downsampling abilities promised faster results for querying older data.\r\nFluentbit made collecting, filtering, and outputting logs across multiple sources and destinations effortless.\r\n\r\nBut, little did we know that even the most powerful tools, when not wielded correctly could be double-edged Infinity Stones.\r\n\r\nJoin us on a thrilling tale of blunders as we recount some missteps in configuring these tools, easily missed caveats in data downsampling and log storage, and how the pursuit of seamless data handling almost cost us over $100,000.", "description": "Thanos and Fluentbit are some of the most widely trusted, recommended and deployed projects in the Cloud Native space. These tools are robust 'batteries included' solutions, that have made monitoring, storing and handling logs and metrics much simpler for countless organisations. However, for teams new to observability and the cloud, some of the best practices and suggested configurations may not be easily evident and they'll have to burn their fingers with exponential cloud costs and lost data before these caveats become more apparent.\r\nWith this talk, we aim to glance over why Thanos and Fluentbit are the best solutions for modern metric and logging problems, and with our firsthand mistakes as an example, illustrate how some configuration and setup errors within these tools and improper systems to detect these errors can cause astronomically high costs.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "79918c1f-dee6-53a1-a20a-8e1f1ae00d07", "id": 731, "code": "V3XCCE", "public_name": "Ankur Rawal", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Ankur_hSl8wJ7.png", "biography": "CTO @ Zenduty, Reliability Advocate Everywhere Else.\r\n\r\nHelping fast moving orgs minimise business impacting downtime around the world.\r\nLove talking about observability and reliability at incremental scale and novel use cases for modern tech innovations.\r\nOutside of work, you can find me on road trips, discovering new cuisines and photographing wildlife.", "answers": []}, {"guid": "8d41c87f-33a4-5c6a-86c7-7f971484c184", "id": 797, "code": "F8PYP8", "public_name": "Vishwa Krishnakumar", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/vishwa_xzDfEIh.jpg", "biography": "Vishwa Krishnakumar is a co-founder of Zenduty, where he manages the engineering and product functions and helps customers implement scalable major incident response processes and site reliability engineering best practices. \r\n\r\nHe has over 14 years of experience in software engineering and architecture and follows the latest in APIs, networking, cloud architecture and site reliability.", "answers": []}, {"guid": "b8e80c78-ab34-5a6f-a8ae-d719ac50d4ca", "id": 805, "code": "GJVCYK", "public_name": "Shubham Srivastava", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/ShubhamPortrait_dHxHhQ7.jpeg", "biography": "Leading Developer Relations at Zenduty - an advanced incident management and response orchestration platform.\r\nTake pride in making mistakes, learning from them and advocating for best practices for orgs setting up their DevOps, SRE and Production Engineering teams.\r\n\r\nA zealous and eternally curious professional, fascinated by stories from DevOps, Incident Management and Product Design. An orator, gamer, writer, and hopeful comedian trying his very best to do something worth remembering everyday.", "answers": []}, {"guid": "319e7d18-cff3-5c66-9d49-1875a3c3ef9a", "id": 807, "code": "DVMKQT", "public_name": "Deepak Kumar", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Deepak_Kumar_JHGuK6S.jpeg", "biography": "Senior Cloud Infrastructure and DevOps Engineer at Zenduty", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/GCR9YZ/", "id": 772, "guid": "600371da-7c67-591a-bb38-34eee91ab278", "date": "2023-11-05T11:25:00-06:00", "start": "11:25", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-772-multidimension-pod-autoscale-with-confidence", "title": "Multidimension pod Autoscale with Confidence", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Application Pod Autoscaling is a very challenging problem and the solutions available currently works well individually but not as a whole and may not solve all usecases (ex: peak hour traffic, weekday/weekend, month end, year end etc.). The current solutions helps with realtime scaling based on short term analysis but not based on both short and long term analysis.\r\n\r\nWe created a thorough solution (a.k.a. Global Updater) considering most of the usecases with multiple components which will address the realtime + longterm vertical sizing(pod size) and Horizontal sizing(num of pods).\r\n\r\nGlobal updater analyzes vertical size recommendations from VPA(opensource), pod-size recommender(internal), horizontal recommendations from HPA(opensource), replica-recommender(internal) and generate a recommendation finetune file that contain both vertical and horizontal size after multiple checks and safeguards ensuring the reliability of the service is not impacted. \r\n\r\nGlobal Updater product runs remotely and is designed to work for multiple services across clusters and different environments per service and generate recommendations for a service considering metrics from multiple environments (pre-prod and prod).\r\n\r\nThis solution helped scaling both vertical and horizontal without human intervention thereby saving time and cost and also reliability of the application.\r\n\r\nBenefits to the ecosystem:\r\nWe are planning to open source the solutions we built as this will not just benefit us but also the community/companies with similar problems. We will keep enhancing the product and rollout the changes. This talk will help the audience in understanding the innovative approaches we have taken to solve this complex problem.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "56625d8f-d7cf-5a0f-b4af-b9a5b64d5661", "id": 777, "code": "ZP3CA3", "public_name": "Navin Jammula", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/IMG_2885_Z5vA7pq.jpeg", "biography": "I am Navin Jammula working as Staff SWE at Intuit for 15 years and have overall 20 years of experience in Software industry.", "answers": []}, {"guid": "7ee35065-88a2-582b-b13c-48e1381782e9", "id": 772, "code": "8CV9PW", "public_name": "Zihan Jiang", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/DSC_9171_mr1670262046181_1_TmtxX5r.jpg", "biography": "Zihan Jiang is a Senior Software Engineer on the Intuit Kubernetes Service (IKS) team at Intuit. He specializes in developing robust, modern SaaS platforms utilizing a variety of cloud-native projects. Before joining Intuit, he worked at VMware, where he concentrated on constructing enterprise-ready Kubernetes runtime solutions. Zihan earned his Master's degree from Carnegie Mellon University. As an experienced hiker, he has explored over 40 national parks across the United States.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/TJGGSJ/", "id": 780, "guid": "b1bf6787-ba11-5042-b0e7-26986a2122d9", "date": "2023-11-05T12:00:00-06:00", "start": "12:00", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-780-debugging-llms-in-prod-with-opentelemetry", "title": "Debugging LLMs in prod with OpenTelemetry", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Large Language Models (LLMs), the underlying technology powering AI applications, are black boxes without predictable outputs. A change of a single word can return a completely different answer. Engineers with LLMs in production have to be prepared for the unpredictable \u2013 users will submit prompts that break the system, a simple PR to fix one issue will lead to four unforeseen issues, and latency can get quickly out of hand. However, abnormal behavior in production isn\u2019t specific to running LLMs \u2013 it\u2019s a reality for most modern software. Observability allows engineers to analyze the inputs and outputs of complex software, even black boxes like LLMs, providing multiple signals needed to troubleshoot in production.  \r\n\r\nIn this talk, learn how you can leverage OpenTelemetry\u2019s Python instrumentation to easily monitor traces, metrics, and logs from your AI applications, whether you are using a framework like Langchain or a foundation model API, like AWS Bedrock. Then, we will walk through how we can use this data to better debug and improve performance and cost efficiency of your AI stack!", "description": "This talk will walk through\r\n1. what is OpenTelemetry\r\n2. the challenges of building with LLMs + AI Ecosystem\r\n3.  3 scenarios where observability into LLM performance can help triage/troubleshoot issues faster\r\n4. Instrumenting an existing Python AI application with OpenTelemetry to get traces, metrics, and logs.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "4cc1c877-3aec-59a2-83f5-2b38050a65e9", "id": 783, "code": "FAVR7D", "public_name": "Daniel Kim", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/image_3_MNZIC4s.png", "biography": "Daniel Kim is a Senior Engineering Manager for New Relic's Developer Relations team, where he helps developers get better visibility into their cloud-native Kubernetes environments using OpenTelemetry, Prometheus, and other open source technologies. A resident of San Francisco, he enjoys long walks with his dog Gizmo and a fancy latte in hand.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/VVRNWR/", "id": 659, "guid": "10866f4f-3726-5951-8bf6-f3e0655be451", "date": "2023-11-05T14:00:00-06:00", "start": "14:00", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-659-future-proof-your-platform-s-ci-cd-without-developers-noticing-a-thing-except-unicorns-and-rainbows-", "title": "Future-Proof Your Platform\u2019s CI/CD Without Developers Noticing a Thing (Except Unicorns and Rainbows)", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "You've just perfected CI and/or CD for your organization, again. It was a huge, frustrating effort, and learning another proprietary DSL or YAML didn't deliver the promised tenfold increase in release frequency. It wasn't the first re-platform and it won\u2019t be the last. Now that things have calmed down, there must be a way to prepare, to future-proof your CI/CD and protect developers, the business, and your sanity. In this talk we\u2019ll demonstrate how to use abstraction, containerization, DAGs, and general-purpose programming languages that your team already knows to create portable CI/CD workflows that can run anywhere without rewriting everything. We\u2019ll also highlight how this approach has additional benefits like composability, reuse, testing of CI/CD code itself, and fast feedback loops for developers (since you can run these pipelines locally). This talk is aimed at anyone who is expecting to have to re-platform CI/CD again in the future (that\u2019s you) and just wants the pain to stop.", "description": "It is a huge burden on DevOps, SRE, Platform Engineering teams to have to absorb the complexity of multiple CI/CD platforms during a replatform and often on a daily basis in multi-platform companies. They want to shield developers from cognitive overload and breaking changes with zero downtime for the business. A daunting task. While a lot of effort has been directed at making developers\u2019 lives better, platform teams need more resources on how their own load can be reduced. The approaches we will outline make use of open source tools that are available to anyone and leverage the rich ecosystems around Kubernetes/containers and programming languages like Golang, the Node.js family, Rust, Python, and others.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "5b7b528b-97d6-57c7-aaed-a7d921742ad0", "id": 694, "code": "WHTDVT", "public_name": "Jeremy Adams", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/WHTDVT_1U4WOYi.jpg", "biography": "Jeremy has both a technical and a strategic streak, and is also a bit of a goof. A fan of people and entrepreneurship as well as integration and automation. Through various technical/business roles at Dagger, GitHub, Twistlock, and Puppet, Jeremy has both zoomed in and zoomed out a lot, acquiring an appreciation for the details and the big picture.", "answers": []}, {"guid": "696a06ea-4ef4-5dd7-9502-9d7b69d8ad99", "id": 702, "code": "ZVQSVJ", "public_name": "M\u00e1rk S\u00e1gi-Kaz\u00e1r", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/5c2d0d0b4cd3457db67aefcf03fd0d01_dag4jKd.jpg", "biography": "Mark is a dedicated technical leader and software engineer who specializes in building Cloud Native and Open Source software.\r\n\r\nHis passion for Open Source has led him to make substantial contributions to a various projects. A key focus for Mark is to streamline the contribution process for contributors in Open Source Software and ensure the delivery of secure software, recognizing the vital role it plays in the global software supply chain.\r\n\r\nIn addition, he is committed to enhancing Developer Experience (DX) by empowering engineers to concentrate on their work without being hindered by inefficient tools or processes.\r\n\r\nHis expertise extends to building platforms for deploying Cloud Native applications in the cloud and on Kubernetes, seamlessly integrating components from the Cloud Native landscape.\r\n\r\nAs an active community member, Mark organizes various meetups, including Go Budapest, Kubernetes and Cloud Native Budapest, and Microservices Budapest. He is also a regular speaker at podcasts, meetups and conferences. In 2023, Mark was honored with the title of CNCF Ambassador in recognition of his unwavering commitment to the Cloud Native community.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/9DC8EY/", "id": 676, "guid": "5a174fd1-a398-5f02-8ab5-6603a8d9e8d8", "date": "2023-11-05T14:35:00-06:00", "start": "14:35", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-676-simplifying-cloud-native-application-delivery-with-open-application-model-oam-and-kubevela", "title": "Simplifying Cloud Native Application Delivery with Open Application Model (OAM) and KubeVela", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "The containerization of applications and the declarative nature of Kubernetes has greatly reduced difficulties in deploying, managing and scaling complex applications. However, when you deploy more workloads and related resources in a cluster, you spend more time managing infrastructure setups like ingress, DNS, etc., than building. \r\n\r\nTo solve this problem, the journey of defining \u201capplications\u201d rather than \u201ccontainers\u201d started \u2014 the birth of the Open Application Model (OAM) and its implementation KubeVela.\r\n\r\nDivine will start this talk by introducing OAM and how it makes abstractions to the architecture of applications with the concept of Component and Trait. After that, Divine will discuss KubeVela, and how it achieves application modelling in Kubernetes.\r\n\r\nTowards the end, Divine will share a list of organizations using KubeVela in production, testing, and its roadmap.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "51adca93-2084-53c3-a430-c3c739789077", "id": 704, "code": "AMZ7SC", "public_name": "Divine Odazie", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/53066680361_7abaf55f59_o_2_vd1z78X.jpg", "biography": "Consistency is key. That\u2019s what Divine believes in, and he says he benefits from that fact, so he tries to be consistent in whatever he does. Divine is a Developer Advocate and Technical Writer who spends his days building, writing and contributing to open source software. \r\n\r\nDivine is a Certified Kubernetes Developer holding the KCNA and CKAD certifications, and an AWS Solutions Architect. He is currently working towards the Kubernetes Application Administator (CKA) and AWS DevOps Engineer Certifications. \r\n\r\nAside from the world of software, he enjoys watching and playing football (soccer), listening to good music, traveling, and having fun in his own way.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/DJHRM3/", "id": 724, "guid": "3241f147-454f-57c3-89ec-b15e5e1dce6c", "date": "2023-11-05T15:10:00-06:00", "start": "15:10", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-724-tightening-your-k8s-dev-loop-with-mirrord", "title": "Tightening your k8s dev loop with mirrord", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "The cloud native dev cycle has become slow and cumbersome - you code locally, then go through CI, then deploy to staging, only to fail and start over again.\r\nWith mirrord, you can run a local process in the context of your k8s cluster, without changing the process\u2019 code, and without installing anything in the cluster. By running your code in cloud conditions while developing locally, you can spare yourself long CI iterations, and by doing so without actually deploying to the cluster you lower the risk of interrupting the other devs using it.\r\nIn this tutorial, we'll show how to get started with mirrord - all you need is a k8s cluster running an HTTP server, and that server's code on your local machine. We'll go through mirrord's full functionality, including mirroring incoming traffic, accessing remote databases and queues, running independent utilities in cloud context, and more.\r\nFinally, we'll show how mirrord works under the hood by hooking libc calls and proxying them to the cloud.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "c0364673-fce2-5db5-a63f-6a48fb8f9cc2", "id": 741, "code": "8WPKWQ", "public_name": "Eyal Bukchin", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/DSC08426_lowres_OcB0PpC.jpg", "biography": "Eyal Bukchin is an experienced engineering manager who has had the opportunity to build and shape development organizations at various startups, including Simplee and BioCatch. He has a deep understanding of the complexities and challenges associated with modern cloud development, and is passionate about finding solutions in this constantly evolving landscape.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/B9H98B/", "id": 750, "guid": "42db21fd-07b8-5bcc-b7f7-f1ea9ccd8f0c", "date": "2023-11-05T15:45:00-06:00", "start": "15:45", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-750-securely-extend-kubernetes-networking-to-include-virtual-machines", "title": "Securely Extend Kubernetes Networking to Include Virtual Machines", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Cloud native extends beyond just Kubernetes, it would be great if the Kubernetes networking did as well. The new node-to-node encryption capability introduced in the Cilium makes it possible to have workloads external to an Kubernetes cluster, such as virtual machines, participating as labeled entities in a transparently encrypted Cilium managed network alongside Kubernetes pods. Once configured as part of the secure clustermesh, not only do the external virtual machine get the benefits of transparent encryption, but also Cilium powered observability and access control via label based network policy!\r\n\r\nThis talk will review how to setup a transparently encrypted Cilium clustermesh with support for external virtual machines, how to observe these external workloads using Cilium Hubble, and provide examples of using Cilium network policy to secure access between these virtual machines and microservices running inside a Cilium managed Kubernetes clusters.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "1c3c4128-0cb7-53a9-a13c-e0df96ac4eb4", "id": 755, "code": "CFJWMZ", "public_name": "Jef Spaleta", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Headshot_Pink-Hex-Bg_0UROLUB.jpg", "biography": "Jef Spaleta has more than a decade of experience in the technology industry; as software engineer, open source contributor, IoT hardware developer, operations, and most recently as a community advocate at Isovalent.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/DTHM8B/", "id": 741, "guid": "b3245fe0-85b1-5ea9-9054-1278b10a0239", "date": "2023-11-05T16:30:00-06:00", "start": "16:30", "logo": null, "duration": "00:30", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-741-slos-with-prometheus-done-wrong-wrong-wrong-right", "title": "SLOs with Prometheus done wrong, wrong, wrong, right", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "This session is an example of a practical use of recording rules to deal with high volumes of data or abstracting complex queries. It illustrates the power of the feature and also shows some common pitfalls. It is a session focused on showing how to get the most value out of a Prometheus installation. I hope to give people confidence to try to do new things by being very honest about our failures.", "description": "First thing's first: Yes, it really did take us 4 tries to implement our SLOs with Prometheus. While that may seem embarrassing, we are very happy to be able to share our SLO journey so that we can hopefully help you avoid the same mistakes.\r\n\r\nSo why did it take us 4 tries? In a word: Scale. We needed to handle 28 days worth of data for over 400 microservices and still have responsive dashboards and alerts. Luckily, Prometheus provides us with some amazing features to deal with large or slow queries. Unfortunately many of our first attempts met with serious failures when we misunderstood and misused those features.\r\n\r\nThis session is here to walk you through all 4 phases our or SLO rollout. By the end you we hope to help you see the how to get the most value out of Prometheus while also illustrating some common pitfalls and how to avoid them.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "c3537592-08c7-5350-b8d6-049b33044f58", "id": 751, "code": "X3WEAE", "public_name": "Carson J Anderson", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/X3WEAE_26Nwrex.jpg", "biography": "DevX-O - Weave\r\n\r\nCarson is a co-organizer of the Utah Gophers meetup and a fixture at the Utah Kubernetes meetup. He may be best known for his \"Kubernetes Deconstructed\" presentation but he has been speaking at conferences constantly ever since. He currently works at Weave on the Developer Experience team as the DevX-O (a made up title). As part of this team, he works constantly to improve the quality of life for developers at Weave.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/YEC7MF/", "id": 725, "guid": "95c65e30-e0ef-5f98-a576-d75c74ed2920", "date": "2023-11-05T17:05:00-06:00", "start": "17:05", "logo": null, "duration": "00:05", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-725-start-your-contribution-journey-with-lfx-mentorship", "title": "Start your contribution journey with LFX mentorship", "subtitle": "", "track": null, "type": "Lightning Talk", "language": "en", "abstract": "Understanding and adapting to CNCF projects, such as Kubernetes, requires a lot of prior knowledge. This can sometimes discourage people from getting started with Cloud Native open source. In this session, I will share my journey from being a cloud-native novice to an active contributor to Litmus. I will also discuss my experience as a participant in the LFX Mentorship program, where I was provided guidance as a newcomer who wants to contribute to Cloud Native Open Source but is uncertain about how to do so. Finally, I will emphasize the importance of engaging with the cloud native community and the benefits of collaborating in open source projects.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "52e8158a-9e53-5b67-abb8-4d971894f17a", "id": 742, "code": "AYJU3P", "public_name": "Namkyu Park", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/a_yUiOXxM.png", "biography": "Namkyu Park is a software engineer working to help startups achieve their missions. He has completed an internship as a software engineer at Bucketplace and worked at several startups. He was a mentee in the Linux Foundation Mentorship Program (Litmus) and is currently a member of LitmusChaos. His areas of interest include GoLang, Kubernetes, cloud-native technologies, CNCF, testing, and performance optimization.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/VATZGP/", "id": 692, "guid": "c2f0da9d-a78a-5b1b-8771-4fd099f7a2c1", "date": "2023-11-05T17:10:00-06:00", "start": "17:10", "logo": null, "duration": "00:05", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-692-check-your-attention-", "title": "Check \u265b your attention \u265e", "subtitle": "", "track": null, "type": "Lightning Talk", "language": "en", "abstract": "Living with AD(H)D can present unique challenges in various aspects of life, including focus, decision-making, and impulse control. As a professional (and even a project maintainer \u263a), you have to keep tabs on many things. In this talk, we explore an unconventional yet effective approach to managing AD(H)D symptoms: playing chess daily.\r\n\r\nChess is not merely a game; it is a mental exercise that engages multiple cognitive faculties simultaneously. Chess activates critical areas of the brain involved in planning, judgment, memory, and visual processing. It activates both the left and the right hemispheres of the brain. AD(H)D affects the very same parts of the brain associated with thinking, paying attention, and planning. By integrating chess into our daily routine, we can harness its benefits to improve our ability to handle AD(H)D and enhance overall cognitive functioning.\r\n\r\nWarning: this is not your regular KubeCon talk \ud83d\ude09", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "024075a9-dc2a-5584-8ebc-4dfa1a5bf0c9", "id": 498, "code": "YXGXZR", "public_name": "Oshrat Nir", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/oshrat_UqsfG9Y.jpeg", "biography": "Ben is a veteran cybersecurity and DevOps professional, as well as computer science lecturer. Today, he is the co-founder at ARMO, with a vision of making end-to-end Kubernetes security simple for everyone, and a core maintainer of the open source Kubescape project. He teaches advanced information security academically in both undergrad and graduate courses. In his previous capacities, he has been a security researcher and architect, pen-tester and lead developer at Cisco, NDS and Siemens.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/DVXBQT/", "id": 767, "guid": "3ef4f76a-c880-50bd-ba6c-11d879f987dc", "date": "2023-11-05T17:15:00-06:00", "start": "17:15", "logo": null, "duration": "00:05", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-767-democratize-llm-by-inferencing-llm-with-gpu-on-kubernetes-efficiently", "title": "Democratize LLM by Inferencing LLM with GPU on Kubernetes efficiently", "subtitle": "", "track": null, "type": "Lightning Talk", "language": "en", "abstract": "Recently the use of GPUs for LLM model training and inference has experienced significant growth. Kubernetes is an ideal platform for these workloads. However, GPU instances are considerably more expensive (10x-50x) than the general-purpose instances. The challenge is to develop a cost-effective Kubernetes cluster tailored for LLM inference workloads at scale.\r\n\r\nWe found that using GPUs on Kubernetes to infer a GPT-3-like model costs less than $0.001 per call, and it can automatically scale up and down using Kubernetes HPA.\r\n\r\nIn this session, we will delve into valuable cost optimization techniques, including horizontal autoscaling based on GPU and TPS metrics, predicting incoming traffic patterns to accelerate cluster autoscaling, choosing the correct instance size based on workload patterns, and improving GPU utilization through time-sharing.", "description": "Optimizing costs for Kubernetes applications is a consistently challenging topic, and this issue is further amplified when the workloads start to utilize GPUs for LLM inference. Our goal is to provide developers with insights on using existing open-source tools to optimize their LLM workloads on Kubernetes, and more importantly, introduce innovative cost-saving ideas specifically tailored for LLM workloads. By doing so, we aim to inspire greater adoption of the Kubernetes ecosystem by ML/AI frameworks, leading to improved performance and cost efficiency.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "7ee35065-88a2-582b-b13c-48e1381782e9", "id": 772, "code": "8CV9PW", "public_name": "Zihan Jiang", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/DSC_9171_mr1670262046181_1_TmtxX5r.jpg", "biography": "Zihan Jiang is a Senior Software Engineer on the Intuit Kubernetes Service (IKS) team at Intuit. He specializes in developing robust, modern SaaS platforms utilizing a variety of cloud-native projects. Before joining Intuit, he worked at VMware, where he concentrated on constructing enterprise-ready Kubernetes runtime solutions. Zihan earned his Master's degree from Carnegie Mellon University. As an experienced hiker, he has explored over 40 national parks across the United States.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/NZEXRY/", "id": 765, "guid": "85a3a4b6-e2b1-51e5-a9e6-e58dd0494f4b", "date": "2023-11-05T17:20:00-06:00", "start": "17:20", "logo": null, "duration": "00:05", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-765-styling-and-profiling-with-opentelemetry", "title": "Styling and Profiling with OpenTelemetry", "subtitle": "", "track": null, "type": "Lightning Talk", "language": "en", "abstract": "While OpenTelemetry is most closely associated with the 'three pillars' of tracing, logs, and metrics, its open design means that it can be extended to add new signals. In this talk, you'll learn about two new additions: Sessions and Profiles, and how you'll be able to use them to achieve end-to-end observability.", "description": "Sessions and Profiles are extensions to the OpenTelemetry Data Model designed to support two new use cases - Real User Monitoring (RUM) and continuous profiling.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "19cd2da0-55dd-59fa-9744-ec7c6769690a", "id": 485, "code": "Z3LC8K", "public_name": "Austin Parker", "avatar": null, "biography": "Austin Parker is the Community Maintainer for the OpenTelemetry project. They're a speaker, author, and observability nerd.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/FSEPWM/", "id": 791, "guid": "5a7d187c-954e-5034-ac2c-3e247c4b4727", "date": "2023-11-05T17:25:00-06:00", "start": "17:25", "logo": null, "duration": "00:05", "room": "ROOM 1", "slug": "cloud-native-rejekts-na-chicago-2023-791-naming-is-hard-kubernetes-edition", "title": "Naming is hard, Kubernetes edition", "subtitle": "", "track": null, "type": "Lightning Talk", "language": "en", "abstract": "There are two hard problems in computer science: naming, cache invalidation, and off-by-one errors. In this lightning yet lighthearted talk, we'll show a few areas where Kubernetes chose rather confusing names, and we'll (try to) explain why. Exhibit A: services (we can't start/stop them in Kubernetes). Exhibit B: services strike back (you don't need a LoadBalancer service to do load balancing). Exhibit C: return of the services (ExternalNames are not necessarily external, in fact, quite the contrary!). Exhibit D: apiVersion is not (just) the version of the API. If you know Kubernetes, this talk will help you to understand (or memorize) better how it works. And if you don't (lucky you, and is there a bit of room available under that rock?) you'll probably still have a good laugh (hopefully not at the expenses of the other folks).", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "c6353da5-fa9a-517e-aafa-0954253f0a4e", "id": 790, "code": "7YUALD", "public_name": "Tiffany Jernigan", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/cornicello_tiffany220815-274_1x1_4zj3TQP.jpeg", "biography": "Tiffany is a senior developer advocate at VMware and is focused on Kubernetes. She previously worked as a software developer and developer advocate (nerd whisperer) for containers at Amazon. She also formerly worked at Docker and Intel. Prior to that, she graduated from Georgia Tech with a degree in electrical engineering. In her free time she really likes to travel and dabble in photography. You can find her on Twitter @tiffanyfayj and more places on linktr.ee/tiffanyfay.", "answers": []}], "links": [], "attachments": [], "answers": []}], "ROOM 2": [{"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/W3QGEP/", "id": 790, "guid": "6ff9821b-a481-5cc1-ba38-d20ef5bc0021", "date": "2023-11-05T09:30:00-06:00", "start": "09:30", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-790-7-tricks-to-improve-your-productivity-and-reduce-your-frustration-with-kubernetes", "title": "7 tricks to improve your productivity and reduce your frustration with Kubernetes", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Do you know how to\u2026\r\n\r\n\u2026wait for a Pod to be Running, or for a Deployment to be Available?\r\n\r\n\u2026\"turn off and on again\" a Deployment?\r\n\r\n\u2026connect to a Service in a different Namespace when the client is hardcoded to connect to \"db\"?\r\n\r\n\u2026 generate a YAML manifest without copy-pasting it from the docs or ChatGPT?\r\n\r\n\u2026 switch between namespaces (or even clusters!) super quickly?\r\n\r\n\u2026 get an image with (almost) any tool you need without having to write and build a Dockerfile?\r\n\r\nIf you answered \"no\" to any of these questions, then this talk is for you, since you'll see how to do all these things (and a few more). You're invited to a parade of tips, tricks, and techniques, to improve your productivity and reduce your frustration with Kubernetes!", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "c6353da5-fa9a-517e-aafa-0954253f0a4e", "id": 790, "code": "7YUALD", "public_name": "Tiffany Jernigan", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/cornicello_tiffany220815-274_1x1_4zj3TQP.jpeg", "biography": "Tiffany is a senior developer advocate at VMware and is focused on Kubernetes. She previously worked as a software developer and developer advocate (nerd whisperer) for containers at Amazon. She also formerly worked at Docker and Intel. Prior to that, she graduated from Georgia Tech with a degree in electrical engineering. In her free time she really likes to travel and dabble in photography. You can find her on Twitter @tiffanyfayj and more places on linktr.ee/tiffanyfay.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/VU9AWC/", "id": 755, "guid": "18c1a055-7952-57a6-acce-da81a0de3e49", "date": "2023-11-05T10:05:00-06:00", "start": "10:05", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-755-unlocking-collaboration-guardrails-as-the-bridge-between-dev-and-ops-in-kubernetes-deployments", "title": "Unlocking Collaboration: Guardrails as the Bridge Between Dev and Ops in Kubernetes Deployments", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Long before Kubernetes, DevOps teams used configuration practices and policies to ensure successful and secure deployments. While K8s' declarative configuration model and built-in validation mechanisms were intended to streamline these processes, the distributed nature of K8s has led to new challenges. Traditional configuration practices and policies are no longer efficient, resulting in an inability to bridge the gap between developers and Ops.\r\n\r\nEnsuring that configurations and policies are properly managed and consistent with the intended behavior of a cluster is a challenging task. Add to that the lack of standardization in large organizations with multiple projects, dynamic deployments, and the difficulty of balancing policy enforcement with developer flexibility to innovate, and most platform engineers face a major challenge.\r\n\r\nThis talk will discuss how creating guardrails for developers through modern configuration practices and policy enforcement can solve these issues ultimately helping teams adhere to established standards, security practices, and compliance requirements throughout the CI/CD pipeline while fostering collaboration between Devs and Ops once and for all.\r\n\r\n\r\n\r\nBenefits to the Ecosystem\r\n\r\nThis session offers attendees a comprehensive understanding of the challenges teams face when employing configuration practices and policy enforcement in Kubernetes while providing insight and practical strategies for tackling these obstacles using cloud-native solutions. \r\n\r\nPlatform engineers and DevOps practitioners will be better equipped to help their teams \r\nnavigate the complexities of Kubernetes configurations and policy enforcement resulting in higher quality, secure deployments, and faster time to market by establishing a common language among Devs and Ops to empower individuals and increase collaboration among teams.\r\n\r\nBy sharing various tools, strategies, and real-world examples, this session aims to foster a culture of knowledge sharing and continuous improvement within the Kubernetes community", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "dc559ff6-2e6a-5489-8619-a394c3f910ad", "id": 759, "code": "XDVBC7", "public_name": "Cortney Nickerson", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/0qpk_7Gb_400x400_3DR56l9.jpeg", "biography": "Cortney is a Developer Advocate at Kubeshop where she spends most of her time talking about and advocating for Monokle, an open source tool that helps configure and deploy Kubernetes applications. Cortney fell into the world of tech and open-source by chance about 4 years ago after joining a startup focused on web application security. During that time, she volunteered in the Data on Kubernetes Community where she slowly learned about Kubernetes by writing their weekly newsletter. When not talking about Monokle, you can find her reading novels, sharing random facts for no reason, speaking about DEI and her own struggles with imposter syndrome, and trying to get her kids to bed at a reasonable time.", "answers": []}, {"guid": "9dd0b7e2-b800-5650-9e56-12f4f0208a08", "id": 760, "code": "L8LE3N", "public_name": "Ole Lensmar", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/Photo_on_2023-10-05_at_16.15_QyTps7s.jpg", "biography": "Long time technology and API enthusiast turned Kubernetes aficionado and now CTO at Kubeshop, an accelerator for open-source projects. When not trying to come up with catchy biographies you can find Ole playing guitar, riding his (mostly virtual) bike or rewatching the Haunting of Hill House for the umpteenth time.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/XEPKJK/", "id": 704, "guid": "6f35902d-5e64-50ea-875d-4e9d35de07f3", "date": "2023-11-05T10:40:00-06:00", "start": "10:40", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-704-opentelemetry-tools-you-should-never-leave-the-house-without", "title": "OpenTelemetry Tools You Should Never Leave the House Without", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Getting started with any new technology is challenging, but it doesn\u2019t (always) have to be! Whether you\u2019re new to observability or a seasoned practitioner new to OpenTelemetry, we\u2019ll show you what to keep in your toolbox. This way, you spend less time figuring out why your data isn\u2019t showing up and more time getting value from your telemetry.\r\n\r\nWe\u2019ll begin by showing how you can get a quick start by using telemetrygen to generate telemetry. We\u2019ll sneak in some problems to teach you about the common gotchas of instrumenting your services or exporting your data. Then we\u2019ll show you how to debug those issues using the OpenTelemetry Collector. We\u2019ll also demo some additional tools you may not be aware of!\r\n\r\nJoin us as we explore the diverse range of tools, techniques, and best practices for effective debugging in OpenTelemetry!", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "c974a5cc-63a3-58ab-9a0d-bba6306bbecd", "id": 721, "code": "KTZSXL", "public_name": "Alex Boten", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/profile-photo_GCxcouH.PNG", "biography": "Alex Boten is a senior staff software engineer that has spent the last ten years helping organizations adapt to a cloud-native landscape by mashing keyboards. From building core network infrastructure to mobile client applications and everything in between, Alex has first-hand knowledge of how complex troubleshooting distributed applications is.\r\n\r\nThis led him to the domain of observability and contributing as an approver and maintainer to OpenTelemetry.", "answers": []}, {"guid": "90ec4c06-7b89-5809-8976-33de70e32b1d", "id": 611, "code": "7B7YAA", "public_name": "Reese Lee", "avatar": null, "biography": "Reese Lee joined the OpenTelemetry team at New Relic in 2021, bringing along her enthusiasm for providing quality technical support and enablement for observability end users. She primarily works in the OpenTelemetry End User Working Group to help increase awareness and adoption of the software, including running the monthly End User Discussion Group. She has spoken on topics related to the project, and is excited to contribute more to the OpenTelemetry community.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/ZRFPYC/", "id": 733, "guid": "9c365e34-7763-5fa9-8f27-0065095c9e89", "date": "2023-11-05T11:25:00-06:00", "start": "11:25", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-733-running-containers-with-zero-known-vulnerabilities", "title": "Running Containers with Zero Known Vulnerabilities", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Have you ever run a vulnerability scanner? Were you shocked by the results? Vulnerabilities are both a security risk and a giant time suck for anyone tasked with investigating them, yet it's not unusual to find dozens or even hundreds of vulnerabilities in commonly-used images.\r\n\r\nBut it doesn't have to be this way!\r\n\r\nThis talk will go into details about how to dramatically reduce the vulnerability count in your images. We'll talk about the importance of reducing complexity, keeping software up-to-date and why Chainguard built a new Linux distribution called Wolfi to help in this quest. We'll also delve into the murky world of security advisories to understand why scanners sometimes report false positive vulnerabilities and what can be done about them.\r\n\r\nJoin Adrian and find out how to get your vulnerability count down without sacrificing functionality or velocity.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "2f26c9cc-508f-5814-b36f-fb0bab2615a3", "id": 453, "code": "YCARWX", "public_name": "Adrian Mouat", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/cabo-headshot-cropped_ogzAcFt.jpg", "biography": "Technical Community Advocate @ Chainguard\r\n\r\nAdrian has been involved with containers from the early days of Docker and authored the O\u2019Reilly book \u201cUsing Docker\u201d.\r\n\r\nHe works at Chainguard whose mission is to make the software lifecycle secure by default. His current focus is on improving the standard of security and provenance guarantees in container images.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/J33E8X/", "id": 778, "guid": "35ea20ea-5254-56f4-bd07-5c5d9d17226d", "date": "2023-11-05T12:00:00-06:00", "start": "12:00", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-778-taking-security-to-the-edge-of-the-factory-floor-with-cncf-projects", "title": "Taking Security to the Edge of the Factory Floor with CNCF Projects", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "It's common in manufacturing to see a large number of smart industrial machines out on the factory floor, all tied into a web of events with a Kubernetes cluster at the center.\r\n\r\nRight now, the industrial machines and the cluster are two different worlds with a patchwork mess of communications holding them together. In particular, there is no common mechanism for security, reliability, and observability out to the edge devices -- even though these elements are at least as critical there as within the cluster itself.\r\n\r\nWe can solve these problems by using two CNCF projects, Linkerd and K3s, to push security and control past the edge of the cluster out onto the factory floor. This is a world of unique challenges (from sorting out identity in an industrial setting to providing critical insights about failures before they turn into safety hazards) but also huge benefits.\r\n\r\nJoin us for a guided tour and demo of how this all works and what it can bring you.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "3590f542-c272-599f-8bd2-b12ac9f69e67", "id": 781, "code": "TQEUXQ", "public_name": "Andrew Gracey", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/profilepic_LSPgZAv.jpeg", "biography": "Andrew is currently the product manager for all things cloud native edge at SUSE. He is interested in where technology, business, and people intersect to help improve all three!", "answers": []}, {"guid": "c79815f9-c9a3-5e8c-bfeb-a6f475d29577", "id": 788, "code": "PPN7E3", "public_name": "Flynn", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/43022aeb252a24b78a92b4d0c5f75cb6_NhwgSfl.jpg", "biography": "Flynn is a technology evangelist at Buoyant, spreading the good word and educating developers about the Linkerd service mesh, Kubernetes, and cloud-native development in general. He has spent four decades in software engineering from the kernel up through distributed applications, with a common thread of communications and security throughout, and is the original author and a maintainer of the Emissary-ingress API gateway. He is most easily found as `@flynn` on the CNCF or Linkerd Slacks.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/RB3FZH/", "id": 793, "guid": "4808c3b0-785a-52a9-bc9f-69fcaed2b52a", "date": "2023-11-05T14:00:00-06:00", "start": "14:00", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-793-our-journey-towards-kubevirt-based-hyperconverged-infrastructure-from-docker-as-vms", "title": "Our Journey towards KubeVirt based HyperConverged Infrastructure from Docker as VMs", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "KubeVirt enables us to unify our multi-form factor infrastructure (VMs and Containers) workloads and provide all the K8s features. However, we had to overcome many challenges and address gaps.\r\nThis session will discuss the HCO setup and running VMs at scale and highlight the challenges we had trying to run both pods and VMs. E.g., setting up external connectivity for both VMs and Pods? How do we assign IP addresses dynamically?", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "a72e96f5-8d14-5900-827d-76d2ed3c942e", "id": 791, "code": "G3DDRE", "public_name": "Rahul Buddhisagar", "avatar": null, "biography": "Rahul is a senior engineering manager from Cloudera based in Santa Clara, California. He has held various roles in engineering and leadership in several domains ranging from speech recognition, storage, replication, and distributed systems. In his current role, Rahul works on providing an analytics/data engineering on-prem platform along with a Data Recovery product portfolio.", "answers": []}, {"guid": "e59d3061-d56b-53c7-acd8-127c97669adb", "id": 795, "code": "TEPVRW", "public_name": "Sunil Govindan", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/sunil_iuj3pF6.jpeg", "biography": "Sunil Govindan is Senior Engineering Manager@Cloudera. Sunil is primarily focussing on Resource Scheduling areas and contributing to Apache YuniKorn Scheduler for Kubernetes as a Committer and member of PMC from 2019 onwards. He has been an ASF Member since 2022 and has been contributing to the Apache Hadoop YARN project since 2013 in various roles as a Committer and a Project Management Committee (PMC) member.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/TMZ3JL/", "id": 685, "guid": "4febd7a8-910a-5bdb-a527-d845a558c63a", "date": "2023-11-05T14:35:00-06:00", "start": "14:35", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-685-building-a-sustainable-cncf-project-contributor-base", "title": "Building a Sustainable CNCF Project Contributor Base", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Maintaining an open source project is hard work, and maintainer burnout is common. It can be hard for overworked maintainers to balance the work that keeps the project running while investing in activity to increase future sustainability. The CNCF has resources, guides, and templates available to make it easier for you to build a contributor strategy that leads to becoming a sustainable CNCF project. This talk will help you apply those resources in your project.", "description": "This talk will include: 1) Discussion about the factors that impact project sustainability. 2) Developing and executing on a contributor growth strategy, including governance, contributor onboarding, and mentoring. 3) Using ladders to promote contributors into leaders to share the workload and reduce maintainer burnout. 4) Metrics for measuring project sustainability.\r\n\r\nThe audience will walk away with a better understanding of how to grow their contributor base and build a sustainable community around their CNCF project.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "8ff9e47a-1c60-5a0c-a052-da48f2407720", "id": 708, "code": "LSLSSU", "public_name": "Dr. Dawn M Foster", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/dawn_KubeCon_EU_headshot_sq_yUi0fsm.jpg", "biography": "Dawn is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She works as the data science lead for the CHAOSS project where she is also co-chair of the governing board and a maintainer. She has 20+ years of experience at companies like VMware and Intel with expertise in community building, strategy, open source, governance, metrics, and more. She has spoken at over 100 industry events and has a PhD, MBA, and BS in comp sci. In her spare time she enjoys reading sci-fi, running, and traveling.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/SCVRBT/", "id": 691, "guid": "826efb01-6a73-5864-b6e5-ec4c6fc46d1a", "date": "2023-11-05T15:10:00-06:00", "start": "15:10", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-691-refining-the-scan-leveraging-ebpf-observability-to-enhance-static-analysis-tools-in-kubernetes", "title": "Refining the Scan: Leveraging eBPF Observability to Enhance Static Analysis Tools in Kubernetes", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Integrating eBPF observability data with static scanning tools in Kubernetes, such as API scans and image vulnerability scanners, can yield more accurate and actionable insights.\r\n\r\nStatic scanning tools (like Kubescape, Trivy, Grype) are a cornerstone in maintaining the security posture of our K8s clusters. However, their output can often be overwhelming and challenging to triage.\r\n\r\nBy harnessing eBPF's real-time, kernel-level observability, we propose to augment the accuracy of these tools, focusing their results and not overwhelm developers.", "description": "We will delve into how eBPF's ability to monitor system calls and network activity in real time can be used to contextualize the output of static scanners, thereby streamlining the process of identifying and addressing vulnerabilities. By the end of this session, you will have a firm grasp of how to utilize eBPF to enhance the output of static scanning tools in K8s, as well as how to implement a workflow that optimizes vulnerability scanning.", "recording_license": "", "do_not_record": false, "persons": [{"guid": "024075a9-dc2a-5584-8ebc-4dfa1a5bf0c9", "id": 498, "code": "YXGXZR", "public_name": "Oshrat Nir", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/oshrat_UqsfG9Y.jpeg", "biography": "Ben is a veteran cybersecurity and DevOps professional, as well as computer science lecturer. Today, he is the co-founder at ARMO, with a vision of making end-to-end Kubernetes security simple for everyone, and a core maintainer of the open source Kubescape project. He teaches advanced information security academically in both undergrad and graduate courses. In his previous capacities, he has been a security researcher and architect, pen-tester and lead developer at Cisco, NDS and Siemens.", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/Q8ART3/", "id": 674, "guid": "25fa49d3-7219-57a5-be3d-e1b3e9c2b8a9", "date": "2023-11-05T15:45:00-06:00", "start": "15:45", "logo": "https://cfp.cloud-native.rejekts.io/media/cloud-native-rejekts-na-chicago-2023/submissions/Q8ART3/image_InMGFHq.png", "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-674-hey-let-s-talk-again-about-limits-and-throttling-", "title": "Hey, let's talk again about Limits and Throttling !", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Let's get back to Resources Requests and Limits and see how much your apps are being Throttled despite all your efforts !", "description": "I know what you think.\r\nYou think you know how to set the right resource Requests and Limits for your pods. You think the kernel was fixed and throttling is not happening anymore.\r\n\r\nMaybe you're not even tracking the pod's throttling in your clusters...\r\n\r\nWell, I'm sorry to tell you that Throttling is happening in almost any cluster. And most people in 2023 still does not fully understand how Limits work and how to avoid throttling.\r\n\r\nIn this talk we'll review, again, how Resource Requests work, how Limits are applied and what is happening behind the scene.\r\n\r\nYou will learn:\r\n- identify your workload pattern\r\n- how to set limits right for the many containers inside a pod\r\n- how to graph Throttling\r\n- how to setup HorizontalPodAutoscaling the right way\r\n- how to prevent throttling and give full power to your pods (and reduce costs)\r\n\r\nYou'll walk out with all the superpower to be your company next performance and cost super-hero !", "recording_license": "", "do_not_record": false, "persons": [{"guid": "bb180a7d-b5ee-5710-af13-81beec3a2dfd", "id": 703, "code": "XDXMUA", "public_name": "Sebastien Prune THOMAS", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/XDXMUA_LIavs3T.jpg", "biography": "Devops / Infrastructure and a lot more... check it out", "answers": []}], "links": [], "attachments": [], "answers": []}, {"url": "https://cfp.cloud-native.rejekts.io/cloud-native-rejekts-na-chicago-2023/talk/QG7WL8/", "id": 699, "guid": "4c51b47e-363e-5506-a8f1-aa03707ec949", "date": "2023-11-05T16:30:00-06:00", "start": "16:30", "logo": null, "duration": "00:30", "room": "ROOM 2", "slug": "cloud-native-rejekts-na-chicago-2023-699-cracking-the-communication-puzzle-in-open-source-projects-under-cncf-proven-strategies-metrics-and-case-studies", "title": "Cracking the Communication Puzzle in Open Source projects under CNCF: Proven Strategies, Metrics, and Case Studies", "subtitle": "", "track": null, "type": "Talk", "language": "en", "abstract": "Effective communication is crucial for the success of any open source project, and the right communication platforms and methods can make all the difference. In this talk, we will explore ten engaging and catchy topics related to communication platforms and methods, content management, and social media for open source communities. We will discuss proven techniques and strategies for turning communication chaos into collaboration excellence, from documentation to community engagement, and managing your project's digital assets. We will also dive into social media advocacy and share practical tips for driving engagement and growing your community.\r\n\r\nEngage, Collaborate, and Thrive! As open source communities continue to grow and thrive, it's important to navigate the fine line between moderation and censorship, build trust and transparency with your audience in a post-truth world, and reach diverse audiences through inclusive communication. Visual storytelling can be a powerful tool to communicate your project's message, and we will explore creative ways to leverage it. We will also take a look at the evolution of communication tools in open source communities, from IRC to Slack, and discuss their impact.\r\n\r\nFinally, we will cover crisis communication in open source projects and share best practices and some super compelling case studies. Throughout the talk, Faeka will provide concrete examples and case studies of successful open source communication strategies and platforms, such as those used by the Linux Kernel community, Kubernetes, RedHat, Mozilla Foundation, and more!", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"guid": "a2c8fbf0-968f-59c5-a308-2f46254a4fa5", "id": 717, "code": "P9TGPC", "public_name": "Faeka Ansari", "avatar": "https://cfp.cloud-native.rejekts.io/media/avatars/P9TGPC_tsTw2Av.jpg", "biography": "Faeka Ansari is a dynamic speaker and open source evangelist who is dedicated to advancing open source strategy, implementation, and investment. With extensive experience as a community manager and Developer Relations Engineer, Faeka has become an expert in communication strategies, and social media management for open source communities.\r\n\r\nShe is a LFX Mentee'23 at CNCF, contributor to IstioMesh and member of the Kubernetes Release v1.29 team. She is one of the authors for Last Week in Kubernetes Development Newsletter and an active member of SIG ContribEx.\r\n\r\nShe also participates in upstream community initiatives, and is a GitHub Campus Expert, Google Developer Students Club Leader and MLSA. She is a recipient of the LiFT\u201923 Scholarship", "answers": []}], "links": [], "attachments": [], "answers": []}]}}]}}}