DockerCon 2022 - From legacy to Kubernetes, securely & quickly

•

0 gostou•222 visualizações

You’ve been developing software for years and now your team is ready to take the plunge into orchestrated containers and Kubernetes. You’ve learned about containers, images, and Dockerfiles, but standing up a Kubernetes cluster and actually running your app in it seems like a daunting task. In this session, we’ll go over the basics to get your app up and running in Kubernetes right on your own workstation using Docker Desktop. On the way, we’ll cover some of the security aspects you need to keep in mind and show you how to implement them in your Kubernetes manifests. We’ll go over: 1.) Kubernetes basics, including pods, deployments, and services 2.) Moving a legacy app into a container and running it in Kubernetes 3.) Some security best practices to watch out for — and what can happen if you don’t 4.) Implementing those best practices to defend against and limit the blast radius of an attack

Tecnologia

From legacy to Kubernetes, securely & quickly

Using Docker Desktop to get your applications into Kubernetes right on your
desktop
Eric Smalling
 
Sr. Developer Advocate, Snyk

@ericsmalling

Eric Smalling
Sr. Developer Advocate, Snyk
@ericsmalling

Agenda
Kubernetes crash course

Moving a legacy app into Kubernetes

Security risks & defenses

Docker Desktop efficiency tricks

Kubernetes in 10 Minutes

Core concepts & types
● Pod

○ Smallest deployable computing unit you can
create and manage

○ Manages one or more containers that will all
run on the same host

○ Containers in the same pod share a network
namespace

○ Every pod get’s a unique IP address

○ By default, every pod can communicate with
every other pod in a cluster w/out NAT

■ Restrictions can be placed on this
pod: webapp

10.9.1.100
container:
 
log-watcher
volume: logvol
container:

ecommerce-app
apiVersion: v1

kind: Pod

metadata:

name: webapp

spec:

containers:

- name: ecommerce-app

image: mycorp/ecom:1.0

ports:

- containerPort: 8080

volumeMounts:

- mountPath: /logs

name: logvol

Kubernetes in 10 Minutes

Core concepts & types
● Deployment

○ Manages pod lifecycle

■ Scaling

■ Release rollout/rollback
apiVersion: v1

kind: Deployment

metadata:

name: webapp-deployment

…

replicas: 2

…

containers:

image: mycorp/ecom:1.0

ports:

- containerPort: 8080

volumeMounts:

- mountPath: /logs

name: logvol

- name: log-watcher

image: mycorp/log-fwd:1.0

volumeMounts:

pod:webapp
1.0
pod:webapp
1.0

Kubernetes in 10 Minutes

Core concepts & types
● Service

○ Provides logical grouping of pods

■ Selector based*

○ Exposes pods behind a single IP address and
DNS Name

■ Kubernetes service discovery = DNS

○ Provides load balancing across pods
apiVersion: v1

kind: Service

metadata:

name: ecom

spec:

selector:

app: webapp

tier: frontend

ports:

- protocol: TCP

port: 80

targetPort: 8080
pod:webapp pod:webapp pod:webapp
service:
ecom
app:

webapp
app:

webapp
app:

webapp
t
i
e
r
:
f
r
o
n
t
e
n
d
t
i
e
r
:
f
r
o
n
t
e
n
d
t
i
e
r
:
f
r
o
n
t
e
n
d
ecom.default.svc.cluster.local

ecom.default

ecom

Demo time: Moving a legacy app into Kubernetes
• Simple J2EE application

• Runs on Tomcat

• Containerized already

• Want to run on k8s but need a
faster, more iterative place to
experiment

• Docker Desktop k8s to the rescue!

References
Docker Desktop Kubernetes: https://docs.docker.com/desktop/kubernetes/

Kubernetes Home: https://kubernetes.io/

Kustomize: https://kustomize.io/

Security Context Cheat Sheet: https://snyk.co/DC22-k8sSecContextTop10

CKAD: https://www.cncf.io/certification/ckad/
@ericsmalling

Mais conteúdo relacionado

Semelhante a DockerCon 2022 - From legacy to Kubernetes, securely & quickly

Presented at All Things Open RTP Meetup Presented by Brad Topol Title: An Introduction to Kubernetes and Continuous Delivery Fundamentals Abstract: Kubernetes is a cloud infrastructure that has emerged as the de facto standard platform for managing, orchestrating, and provisioning container-based cloud native computing applications. Cloud native computing applications are built from a collection of smaller services and take advantage of the speed of development and scalability cloud computing environments provide. In this talk, we provide an overview of the fundamentals of Kubernetes. We begin with a short introduction to the concept of containers and describe the Kubernetes architecture. We then present several core features provided by Kubernetes such as Pods, ReplicaSets, Deployments, Service objects, and autoscaling capabilities. We conclude with a discussion of Kubernetes continuous delivery fundamentals and tools, including how to do small batch changes, source control, and developer access to production-like environments.

An Introduction to Kubernetes and Continuous Delivery Fundamentals

All Things Open

K8s in 3h - Kubernetes Fundamentals Training

Piotr Perzyna

Microservices , Docker , CI/CD , Kubernetes Seminar - Sri Lanka

Mario Ishara Fernando

Docker intro workshop: Dockerize your PHP app

Andrés Collado

Kubernetes for Java Developers

Anthony Dahanne

Speakers: Vic Iglesias, Benjamin Good, Karl Isenberg Venue: Google Cloud Next '19 Video: https://www.youtube.com/watch?v=rt287-94Pq4 Continuous Integration and Delivery allows companies to quickly iterate on and deploy their ideas to customers. In doing so, they should strive to have environments that closely match production. Using Kubernetes as the target platform across cloud providers and on-premises environments can help to mitigate some difficulties when ensuring environment parity but many other concerns can arise. In this talk we will dive into the tools and methodologies available to ensure your code and deployment artifacts can smoothly transition among the various people, environments, and platforms that make up your CI/CD process.

CI/CD Across Multiple Environments

Karl Isenberg

IBM MQ in containers MQTC 2017

Robert Parker

This talk is a gentle introduction to the core concepts required to successfully deploy your first few apps to Kubernetes, followed by an overview of the Kubernetes architecture to enable you to understand how to deploy a cluster yourself. The tool kubeadm is then used to easily set up Kubernetes clusters on any computers running Linux. We'll then try out the theory we learned by deploying some Pods, Deployments and Services to our new cluster and observing their behaviour.

How to install and use Kubernetes

Luke Marsden

Cloud Native Night, April 2018, Mainz: Workshop led by Jörg Schad (@joerg_schad, Technical Community Lead / Developer at Mesosphere) Join our Meetup: https://www.meetup.com/de-DE/Cloud-Native-Night/ PLEASE NOTE: During this workshop, Jörg showed many demos and the audience could participate on their laptops. Unfortunately, we can't provide these demos. Nevertheless, Jörg's slides give a deep dive into the topic. DETAILS ABOUT THE WORKSHOP: Kubernetes has been one of the topics in 2017 and will probably remain so in 2018. In this hands-on technical workshop you will learn how best to deploy, operate and scale Kubernetes clusters from one to hundreds of nodes using DC/OS. You will learn how to integrate and run Kubernetes alongside traditional applications and fast data services of your choice (e.g. Apache Cassandra, Apache Kafka, Apache Spark, TensorFlow and more) on any infrastructure. This workshop best suits operators focussed on keeping their apps and services up and running in production and developers focussed on quickly delivering internal and customer facing apps into production. You will learn how to: - Introduction to Kubernetes and DC/OS (including the differences between both) - Deploy Kubernetes on DC/OS in a secure, highly available, and fault-tolerant manner - Solve operational challenges of running a large/multiple Kubernetes cluster - One-click deploy big data stateful and stateless services alongside a Kubernetes cluster

Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)

QAware GmbH

Cluster management with Kubernetes

Satnam Singh

Docker on docker leveraging kubernetes in docker ee

Docker, Inc.

Docker Kubernetes Istio

Araf Karsh Hamid

Francisco Javier Ramírez Urea - IT Architect, Hoplasoftware Guillaume Morini - SE, Docker The integration of Kubernetes orchestration into the Docker Enterprise Platform presents deployments with interesting new abstractions for application connectivity. Devs and Ops are often challenged with rationalizing how pod networking (with CNI plugins like Calico or Flannel), Services (via kube-proxy) and Ingress work in concert to enable application connectivity within and outside a cluster. Similarly, given the dynamic and transient nature of containerized microservice workloads, how to leverage scalable and declarative approaches like network policies to express segmentation and security primitives. This session provides an illustrative walkthrough of these core concepts by going through common deployment architectures providing design, operations, and scale considerations based on experience from numerous production deployments. We will discuss Kubernetes publishing methods and deep dive into Ingress Controllers. This session will also showcase how to complement application and operations workflows with policy-driven business, compliance and security controls typically required in enterprise production deployments including going further into limiting traffic to services, session persistence, rewriting, and activating container health checks.

DCEU 18: Docker Container Networking

Docker, Inc.

Docker kubernetes fundamental(pod_service)_190307

Inhye Park

Kubernetes workshop -_the_basics

Sjuul Janssen

K8s best practices from the field!

DoiT International

Collabnix Online Webinar - Demystifying Docker & Kubernetes Networking by Bal...

Ajeet Singh Raina

kubernetes for beginners

Dominique Dumont

Kubernetes is also called the "distributed Linux of the cloud" – which implies that it provides fundamental infrastructure, which can solve a lot of challenges. Let’s see how PHP applications fit into this picture. In this presentation, we are going to explore when Kubernetes is a good fit for operating your PHP application and how it can be done in practice. We’ll look at the whole lifecycle: how to build your application, create or choose the right Docker images, deploy and scale, and how to deal with performance and monitoring. At the end you will have a good understanding about all the different stages and building blocks for running a PHP application with Kubernetes in production.

Scaleable PHP Applications in Kubernetes

Robert Lemke

Nebulaworks invited Bitnami's software engineer, Adnan Abdulhussein to present on, "The App Developer's Kubernetes Toolbox." Details: If you're developing applications on top of Kubernetes, you may be feeling overwhelmed with the vast number of development tools in the ecosystem at your disposal. Kubernetes is growing at a rapid pace, and it's becoming impossible to keep up with the latest and greatest development environments, debuggers, and build test and deployment tools. Learn: • The current state of development in Kubernetes • Comparison of shared and local Kubernetes development environments • Overview of different development tools in the ecosystem • Which tools make sense in common scenarios • How Bitnami uses Kubernetes as a development environment

The App Developer's Kubernetes Toolbox

Nebulaworks

Semelhante a DockerCon 2022 - From legacy to Kubernetes, securely & quickly (20)

An Introduction to Kubernetes and Continuous Delivery Fundamentals

K8s in 3h - Kubernetes Fundamentals Training

Microservices , Docker , CI/CD , Kubernetes Seminar - Sri Lanka

Docker intro workshop: Dockerize your PHP app

Kubernetes for Java Developers

CI/CD Across Multiple Environments

IBM MQ in containers MQTC 2017

How to install and use Kubernetes

Kubernetes One-Click Deployment: Hands-on Workshop (Mainz)

Cluster management with Kubernetes

Docker on docker leveraging kubernetes in docker ee

Docker Kubernetes Istio

DCEU 18: Docker Container Networking

Docker kubernetes fundamental(pod_service)_190307

Kubernetes workshop -_the_basics

K8s best practices from the field!

Collabnix Online Webinar - Demystifying Docker & Kubernetes Networking by Bal...

kubernetes for beginners

Scaleable PHP Applications in Kubernetes

The App Developer's Kubernetes Toolbox

Mais de Eric Smalling

Vulnerability exploits too often seem like empty threats that our security teams warn us about, but not something that would ever happen to my code! Join me in this hands-on workshop, where we will walk through a remote code execution exploit and how it can be used to expand to take over an entire Kubernetes cluster along with steps you can employ that would mitigate the attack. Slides from live presentation at DockerCon, October 4, 2023

DockerCon 2023 - Live Demo_Hardening Against Kubernetes Hacks.pdf

Eric Smalling

Container scanning tools, industry publications, and application security experts are constantly telling us about best practices for how to build our images and run our containers. Often these non-functional requirements seem abstract and are not described well enough for those of us that don’t have an appsec background to fully understand why they are important. In this session, we will go over several of the most common practices, show examples of how your workloads can be exploited if not followed and, most importantly, how to easily find and fix your Dockerfiles and deployment manifests before you commit your code. Presented at KubeHuddle NA 2023 in Toronto, ON May 18th 2023

KubeHuddle NA 2023 - Why should devs care about container security - Eric Sma...

Eric Smalling

ATO 2022 - Why should devs care about container security.pdf

Eric Smalling

KubeCon NA 2022 - Hardening against Kubernetes Hacks.pdf

Eric Smalling

DevOpsDays Chicago 2022 - Hands-on hacking containers and ways to prevent it

Eric Smalling

As a developer, learning to write well-formed Dockerfiles can be challenging, especially for those new to containers. These builds can also can require specific build tools or container runtime access that might not be available in your build environments. Architects also often face the challenges of providing governance on image standards across their organization’s teams and the various applications they support. In this lightning talk, you will see a couple of open-source tools in action that can make it easier to meet all of these challenges as well as references to other tools and techniques for varying requirements.

Look Ma' - Building Java and Go based container images without Dockerfiles

Eric Smalling

Container Stranger Danger - Why should devs care about container security

Eric Smalling

Presented at SCaLE 19x, Los Angeles 2022 Misconfigurations in your Kubernetes deployments can create unforeseen security vulnerabilities that can give bad actors leverage to exploit containers, nodes or even the entire control plane of your cluster. In this talk I'll show how easy it can be to break into a cluster and why using tools to find issues and enforce governance around them can make your clusters a less attractive target.

SCaLE 19x - Eric Smalling - Hardening against Kubernetes Hacks

Eric Smalling

https://2022.pythonwebconf.com/presentations/why-should-developers-care-about-container-security Container scanning tools, industry publications, and application security experts are constantly telling us about best practices for how to build our images and run our containers. Often these non-functional requirements seem abstract and are not described well enough for those of us that don't have an appsec background to fully understand why they are important. In this session, we will: go over several of the most common practices to best containerize Python applications show examples of how your application can be exploited in a container and most importantly, how to easily spot issues and fix your Dockerfiles and deployment manifests before you commit your code

Python Web Conference 2022 - Why should devs care about container security.pdf

Eric Smalling

Why should developers care about container security?

Eric Smalling

AWS live hack: Docker + Snyk Container on AWS

Eric Smalling

AWS live hack: Atlassian + Snyk OSS on AWS

Eric Smalling

Hacking into your containers, and how to stop it!

Eric Smalling

DevSecCon Lightning 2021- Container defaults are a hackers best friend

Eric Smalling

LFX Nov 16, 2021 - Find vulnerabilities before security knocks on your door

Eric Smalling

What’s with all of these container image vulnerabilities? I’m a developer, not a security analyst! Whether you’re a solo dev or a large team embracing DevSecOps, join me to learn practices I’ve seen successful teams using to build safer container images & avoid the mistakes they made along the way. If you’ve even run a vulnerability scan on a container you’ve probably seen it: the dreaded list with 100s, maybe even 1000s of issues on it. Containers have made life simpler in so many ways, but security sometimes doesn’t feel like one of them. So what can we do about it? In this talk, I’ll share what I’ve learned working with users and companies and the best practices I’ve picked up along the way to builds safer container images. I’ll also share what not to do, because there are many rabbit holes you can go down that end up wasting time and energy. I’ll share the processes and patterns that you can use whether you’re working on an individual project, or you’re part of a bigger team embracing DevSecOps.

So. many. vulnerabilities. Why are containers such a mess and what to do abou...

Eric Smalling

IBM Index 2018 Conference Workshop: Modernizing Traditional Java App's with D...

Eric Smalling

Best Practices for Developing & Deploying Java Applications with Docker

Eric Smalling

Docker 101 Workshop slides (JavaOne 2017)

Eric Smalling

This is a a talk I presented at Jenkins World 2017. Abstract: When building Docker images we often use multiple build steps and Dockerfiles to keep the image size down. Using multi-stage Docker builds we can eliminate this complexity, bringing all of the instructions back into a single Dockerfile while still keeping those images nice and small. One of the most challenging things about building images is keeping the image size down. Each instruction in the Dockerfile adds a layer to the image, and you need to remember to clean up any artifacts you don’t need before moving on to the next layer. To write a really efficient Dockerfile, you have traditionally needed to employ shell tricks and other logic to keep the layers as small as possible and to ensure that each layer has the artifacts it needs from the previous layer and nothing else. It was actually very common to have multiple Jenkins pipeline steps and/or projects with unique Dockerfiles for different elements of the final build. Maintaining multiple sets of instructions to build your image is complicated and hard to maintain. With multi-stage builds, you use multiple FROM statements in your Dockerfile. Each FROM instruction can use a different base, and each of them begins a new stage of the build. You can selectively copy artifacts from one stage to another, leaving behind everything you don’t want in the final image and simplifying the both the Dockerfile and Jenkins configurations needed to produce your images.

Simply your Jenkins Projects with Docker Multi-Stage Builds

Eric Smalling

Mais de Eric Smalling (20)

DockerCon 2023 - Live Demo_Hardening Against Kubernetes Hacks.pdf

KubeHuddle NA 2023 - Why should devs care about container security - Eric Sma...

ATO 2022 - Why should devs care about container security.pdf

KubeCon NA 2022 - Hardening against Kubernetes Hacks.pdf

DevOpsDays Chicago 2022 - Hands-on hacking containers and ways to prevent it

Look Ma' - Building Java and Go based container images without Dockerfiles

Container Stranger Danger - Why should devs care about container security

SCaLE 19x - Eric Smalling - Hardening against Kubernetes Hacks

Python Web Conference 2022 - Why should devs care about container security.pdf

Why should developers care about container security?

AWS live hack: Docker + Snyk Container on AWS

AWS live hack: Atlassian + Snyk OSS on AWS

Hacking into your containers, and how to stop it!

DevSecCon Lightning 2021- Container defaults are a hackers best friend

LFX Nov 16, 2021 - Find vulnerabilities before security knocks on your door

So. many. vulnerabilities. Why are containers such a mess and what to do abou...

IBM Index 2018 Conference Workshop: Modernizing Traditional Java App's with D...

Best Practices for Developing & Deploying Java Applications with Docker

Docker 101 Workshop slides (JavaOne 2017)

Simply your Jenkins Projects with Docker Multi-Stage Builds

Último

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

MINDCTI Revenue Release Quarter One 2024

MIND CTI

Architecting Cloud Native Applications

WSO2

Sidekick Solutions uses Bonterra Impact Management (fka Social Solutions Apricot) and automation solutions to integrate data for business workflows. We believe integration and automation are essential to user experience and the promise of efficient work through technology. Automation is the critical ingredient to realizing that full vision. We develop integration products and services for Bonterra Case Management software to support the deployment of automations for a variety of use cases. This video focuses on the deployment of external web forms using Jotform for Bonterra Impact Management. This solution can be customized to your organization’s needs and deployed to support the common use cases below: - Intake and consent - Assessments - Surveys - Applications - Program registration Interested in deploying web form automations for Bonterra Impact Management? Contact us at sales@sidekicksolutionsllc.com to discuss next steps.

Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...

Jeffrey Haguewood

Artificial Intelligence Chap.5 : Uncertainty

Khushali Kathiriya

EMPOWERMENT TECHNOLOGY GRADE 11 QUARTER 2 REVIEWER

MadyBayot

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

DBX First Quarter 2024 Investor Presentation

Dropbox

Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...

Zilliz

Keynote 2: APIs in 2030: The Risk of Technological Sleepwalk Paolo Malinverno, Growth Advisor - The Business of Technology Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - APIs in 2030: The Risk of Technological Sleepwalk by ...

apidays

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

ICT role in 21st century education and its challenges

rafiqahmad00786416

Dubai, often portrayed as a shimmering oasis in the desert, faces its own set of challenges, including the occasional threat of flooding. Despite its reputation for opulence and modernity, the emirate is not immune to the forces of nature. In recent years, Dubai has experienced sporadic but significant floods, testing the resilience of its infrastructure and communities. Among the critical lifelines in this bustling metropolis is the Dubai International Airport, a bustling hub that connects the city to the world. This article explores the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Navigating the Deluge_ Dubai Floods and the Resilience of Dubai International...

Orbitshub

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke

Product Anonymous

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Accelerating FinTech Innovation: Unleashing API Economy and GenAI Vasa Krishnan, Chief Technology Officer - FinResults Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...

apidays

presentation ICT roal in 21st century education

jfdjdjcjdnsjd

DockerCon 2022 - From legacy to Kubernetes, securely & quickly

1. From legacy to Kubernetes, securely & quickly Using Docker Desktop to get your applications into Kubernetes right on your desktop Eric Smalling   Sr. Developer Advocate, Snyk @ericsmalling

2. Eric Smalling Sr. Developer Advocate, Snyk @ericsmalling

3. Agenda Kubernetes crash course Moving a legacy app into Kubernetes Security risks & defenses Docker Desktop efficiency tricks

4. Kubernetes in 10 minutes “… Kubernetes provides a way for us to run and schedule containerized workloads on multiple hosts.” Production Kubernetes, Chapter 1 Josh Rosso, Rich Lander, Alexander Brand, John Harris

5. Kubernetes in 10 Minutes Core concepts & types ● Pod ○ Smallest deployable computing unit you can create and manage ○ Manages one or more containers that will all run on the same host ○ Containers in the same pod share a network namespace ○ Every pod get’s a unique IP address ○ By default, every pod can communicate with every other pod in a cluster w/out NAT ■ Restrictions can be placed on this pod: webapp 10.9.1.100 container:   log-watcher volume: logvol container: ecommerce-app apiVersion: v1 kind: Pod metadata: name: webapp spec: containers: - name: ecommerce-app image: mycorp/ecom:1.0 ports: - containerPort: 8080 volumeMounts: - mountPath: /logs name: logvol

6. Kubernetes in 10 Minutes Core concepts & types ● Deployment ○ Manages pod lifecycle ■ Scaling ■ Release rollout/rollback apiVersion: v1 kind: Deployment metadata: name: webapp-deployment … replicas: 2 … containers: image: mycorp/ecom:1.0 ports: - containerPort: 8080 volumeMounts: - mountPath: /logs name: logvol - name: log-watcher image: mycorp/log-fwd:1.0 volumeMounts: pod:webapp 1.0 pod:webapp 1.0

7. Kubernetes in 10 Minutes Core concepts & types ● Deployment ○ Manages pod lifecycle ■ Scaling ■ Release rollout/rollback apiVersion: v1 kind: Deployment metadata: name: webapp-deployment … replicas: 3 … containers: image: mycorp/ecom:1.0 ports: - containerPort: 8080 volumeMounts: - mountPath: /logs name: logvol - name: log-watcher image: mycorp/log-fwd:1.0 volumeMounts: pod:webapp 1.0 pod:webapp 1.0 pod:webapp 1.0

8. Kubernetes in 10 Minutes Core concepts & types ● Deployment ○ Manages pod lifecycle ■ Scaling ■ Release rollout/rollback apiVersion: v1 kind: Deployment metadata: name: webapp-deployment … replicas: 3 … containers: image: mycorp/ecom:1.1 ports: - containerPort: 8080 volumeMounts: - mountPath: /logs name: logvol - name: log-watcher image: mycorp/log-fwd:1.0 volumeMounts: pod:webapp 1.0 pod:webapp 1.1 pod:webapp 1.0 pod:webapp 1.1 pod:webapp 1.0 pod:webapp 1.1

9. Kubernetes in 10 Minutes Core concepts & types ● Service ○ Provides logical grouping of pods ■ Selector based* ○ Exposes pods behind a single IP address and DNS Name ■ Kubernetes service discovery = DNS ○ Provides load balancing across pods apiVersion: v1 kind: Service metadata: name: ecom spec: selector: app: webapp tier: frontend ports: - protocol: TCP port: 80 targetPort: 8080 pod:webapp pod:webapp pod:webapp service: ecom app: webapp app: webapp app: webapp t i e r : f r o n t e n d t i e r : f r o n t e n d t i e r : f r o n t e n d ecom.default.svc.cluster.local ecom.default ecom

10. Demo time: Moving a legacy app into Kubernetes • Simple J2EE application • Runs on Tomcat • Containerized already • Want to run on k8s but need a faster, more iterative place to experiment • Docker Desktop k8s to the rescue!

11. Demo time: Moving a legacy app into Kubernetes • Simple J2EE application • Runs on Tomcat • Containerized already • Want to run on k8s but need a faster, more iterative place to experiment • Docker Desktop k8s to the rescue! pod:db pod:app pod:app pod:app svc:   app svc:   db LoadBalancer

12. Demo time: Moving a legacy app into Kubernetes • Simple J2EE application • Runs on Tomcat • Containerized already • Want to run on k8s but need a faster, more iterative place to experiment • Docker Desktop k8s to the rescue! pod:db pod:app svc:   app svc:   db LoadBalancer hostPath

13. References Docker Desktop Kubernetes: https://docs.docker.com/desktop/kubernetes/ Kubernetes Home: https://kubernetes.io/ Kustomize: https://kustomize.io/ Security Context Cheat Sheet: https://snyk.co/DC22-k8sSecContextTop10 CKAD: https://www.cncf.io/certification/ckad/ @ericsmalling

DockerCon 2022 - From legacy to Kubernetes, securely & quickly

Recomendados

Recomendados

Mais conteúdo relacionado

Semelhante a DockerCon 2022 - From legacy to Kubernetes, securely & quickly

Semelhante a DockerCon 2022 - From legacy to Kubernetes, securely & quickly (20)

Mais de Eric Smalling

Mais de Eric Smalling (20)

Último

Último (20)

DockerCon 2022 - From legacy to Kubernetes, securely & quickly