December 18, 2019

141 words 1 min read

How the Department of Defense Moved to Kubernetes and Istio

How the Department of Defense Moved to Kubernetes and Istio

This session will showcase the DoD Enterprise DevSecOps initiative and its architecture. It describes how the Department of Defense is securing OCI compliant containers, moving to Kubernetes and Istio …
Talk Title How the Department of Defense Moved to Kubernetes and Istio
Speakers Nicolas Chaillan (Chief Software Officer, Department of Defense)
Conference KubeCon + CloudNativeCon North America
Conf Tag
Location San Diego, CA, USA
Date Nov 15-21, 2019
URL Talk Page
Slides Talk Slides
Video

This session will showcase the DoD Enterprise DevSecOps initiative and its architecture. It describes how the Department of Defense is securing OCI compliant containers, moving to Kubernetes and Istio, ensuring abstraction and scale across hundreds of environments, including Clouds, on-premise and classified environments. It will particularly focus on the sidecar security stack leveraging Envoy and sidecar containers to ensure zero trust security and baked-in multi-layer security.

container devsecops secops security zero trust envoy cloud istio kubernetes
comments powered by Disqus
The future of cloud-native programming (sponsored by IBM)

The future of cloud-native programming (sponsored by IBM)

December 15, 2019

Today, we are witnessing a great proliferation of cloud-native paradigms such as 12-factor apps, microservices, and serverless. Tamar Eilam discusses an emerging unified cloud platform (based on open source projects such as Kubernetes and Istio) and explains why the new frontier is its evolution to unify multiple programming paradigms for greater simplification with power of expression.
Running Istio and Kubernetes On-prem at Yahoo Scale

Running Istio and Kubernetes On-prem at Yahoo Scale

December 18, 2019

At Yahoo!, there are 18+ production grade Kubernetes(K8s) clusters and my team operates one of the largest on-prem K8s clusters handling 150K+ containers, 500+ applications and serving 1Million+ reque …
Panel: Is Service Mesh Ready for Edge-Native Applications?

Panel: Is Service Mesh Ready for Edge-Native Applications?

December 12, 2019

Edge deployments, in contrast to large public clouds, pose interesting demands since they are physically insecure & capacity constrained. Also, Edge Computing Apps such as AR-VR, have low-latency char …
From Brownfield to Greenfield: Istio Service Mesh Journey at Freddie Mac

From Brownfield to Greenfield: Istio Service Mesh Journey at Freddie Mac

December 6, 2019

Freddie Mac is one of the two mortgage loan corporations in the United States managing trillions of dollars of assets across the country. Our infrastructure is spread across different Kubernetes provi …
Flyte: Cloud Native Machine Learning & Data Processing Platform

Flyte: Cloud Native Machine Learning & Data Processing Platform

November 29, 2019

Flyte is the backbone for large-scale Machine Learning and Data Processing (ETL) pipelines at Lyft. It is used across business critical applications ranging from ETA, Pricing, Mapping, Autonomous, etc …
Open Source Weave Ignite - The GitOps VM

Open Source Weave Ignite - The GitOps VM

November 28, 2019

Weave Ignite is a new open source tool that combines Firecracker microVMs with OCI images, containerd and CNI to unify containers and VMs. It integrates with Kubernetes and GitOps operators so it can …