Session Name: A Platform Engineering Parable: Implementing Cloud Foundry Over Kubernetes
Come listen to the untold story of how one community made two technologies function together in three attempts over the past four years. This talk describes the path adopted by the Cloud Foundry community to create a "cf push" abstraction over Kubernetes. Cloud Foundry continues to see tremendous success as a "Platform". Small teams of operators were able to support large volumes of applications and app developers and deliver production excellence. The emergence of Docker for containers and Kubernetes for container orchestration caused the technology to lose a bit of steam over the years. Many engineers who have used Cloud Foundry though, swear by it! Organizations that use Cloud Foundry continue to revel in its operational excellence. The talk will also include a demo of Cloud Foundry Korifi, the latest attempt by the community, that implements a Cloud Foundry abstraction backed entirely by custom resources.
Session Name: Stronger Supply Chain Security Postures
Open Source Software is used by DevOps practitioners in a large number of organizations, big and small. Leadership teams within these organizations are being required to answer questions about the integrity of software artifacts and require establish provenance at each stage. For engineering teams who report to them and who write, build, and maintain software – security and compliance is paramount. Secure Open Source Supply Chains are crucial to those involved in creating and distributing open source software. Those engineers, engineering managers, and program managers who are responsible for delivering software that is or consumes open source software are under increasing scrutiny to establish provenance of their software artifacts. This talk will demonstrate the impact of adopting various projects of the OpenSSF within software supply chains. Various tools and techniques using open source projects to generate SBOMs, improve SLSA levels, and introduce signed builds. The projects demonstrated will be Cloud Native Buildpacks, kpack, and cosign — all of which are fully open source.
Ram Iyengar is an engineer by practice and an educator at heart. He was (cf) pushed into technology evangelism along his journey as a developer and hasn’t looked back since! He enjoys helping engineering teams around the world discover new and creative ways to work. He is a proponent of community-first product development.
.png?width=610&name=J1_ModernCybersecurityBook_Promo%201200x628%20v2@2x%20(1).png)
