Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Since last we met: Opening Note
Search
Josh Wood
May 09, 2016
Technology
98
1
Share
Embed
Copy iframe code
Copy JS code
Copy link
Start on current slide
Since last we met: Opening Note
CoreOS Fest San Francisco, 111 Minna Gallery:
http://www.meetup.com/coreos/events/230147579/
Josh Wood
May 09, 2016
More Decks by Josh Wood
See All by Josh Wood
OpenShift and Kubernetes
joshix
0
220
SRE Principle and Operator Practice
joshix
0
890
Operator Hub and your Kubernetes Cluster
joshix
0
520
Operators are about automation
joshix
0
160
Automating Stateful Applications with Kubernetes Operators
joshix
0
200
Developing Apps on OpenShift
joshix
0
78
Intro to building Kubernetes Operators
joshix
1
140
Kubernetes Operators for App Developers
joshix
0
91
Kubernetes Operators
joshix
0
140
Other Decks in Technology
See All in Technology
Claude Code×Terraform IaC テンプレート駆動開発
itouhi
1
460
AmazonRoute 53ではじめてのドメイン取得!HTTPS化までの道のりを整理してみた
usanchuu
3
120
DevOps Agentで始めるAWS運用 〜フロンティアエージェントが変える運用の現場〜
nyankotaro
1
340
LLMと共に進化するプロセスを目指して
ymatsuwitter
12
3.7k
探して_入れて_作って_使う_Agent_Skills___LT.pdf
peintangos
2
180
Building applications in the Gemini API family.
line_developers_tw
PRO
0
2.4k
Amazon Bedrock AgentCore ワークショップ JAWS UG TOHOKU / amazon-bedrock-agentcore-workshop-jawsug-tohoku-2026
gawa
9
520
運用を見据えたAIエージェント設計実践
amacbee
1
3.4k
AIを「創る」と「使う」の循環 — HRテックが実践するリアルなAI組織実装
taketo957
0
1.8k
AI駆動開発が変える、大規模開発の前提 ーHuman in the Loop から Human on the Loop へ / AIE2026
visional_engineering_and_design
30
22k
NAB Show 2026 動画技術関連レポート / NAB Show 2026 Report
cyberagentdevelopers
PRO
0
130
ブロックチェーン / Blockchain
ks91
PRO
0
110
Featured
See All Featured
Measuring & Analyzing Core Web Vitals
bluesmoon
9
860
Visualization
eitanlees
152
17k
State of Search Keynote: SEO is Dead Long Live SEO
ryanjones
0
200
Avoiding the “Bad Training, Faster” Trap in the Age of AI
tmiket
0
170
The SEO Collaboration Effect
kristinabergwall1
1
480
Hiding What from Whom? A Critical Review of the History of Programming languages for Music
tomoyanonymous
2
850
HDC tutorial
michielstock
2
700
Why Our Code Smells
bkeepers
PRO
340
58k
Claude Code どこまでも/ Claude Code Everywhere
nwiizo
65
56k
Building Flexible Design Systems
yeseniaperezcruz
330
40k
Dominate Local Search Results - an insider guide to GBP, reviews, and Local SEO
greggifford
PRO
0
190
Future Trends and Review - Lecture 12 - Web Technologies (1019888BNR)
signer
PRO
0
3.6k
Transcript
Since last we met... Josh Wood | @joshixisjosh9 |
[email protected]
DocOps, CoreOS
MISSION Secure the Internet
MISSION Secure {the infrastructure that powers} the Internet
STRATEGY Accelerate with Open Source
SUCCESS 1000s Have Contributed to CoreOS Projects
All of You We Look Forward to Working with You
Coreos & Event Staff From New York, Berlin, and San
Francisco
NEW TECHNOLOGY Updates and Announcements
ETCD v3.0 BETA Efficient and Scalable
Punishing Functional Tests
Punishing Functional Tests
Punishing Functional Tests
gRPC Based API ~4x Faster vs JSON HTTP/2 Improves Efficiency
New Storage Engine Scales to GB of Data Consistent Performance
Continuous Snapshots
etcd v3 will support Kubernetes as it scales to 5.000
nodes and beyond
BETA AVAILABLE TODAY github.com/coreos/etcd
QUAYCTL BitTorrent Container Image Pulls
Image Layers foo-filesystem.tar.gz bar-filesystem.tar.gz meh-filesystem.tar.gz Image metadata Image binary data
{ {“id”: “foo”}, {“id”: “bar”, “meta”: “data”}, {“id”: “meh”, “meta”: “data”}, }
Pulling Layers $ rkt fetch docker://quay.io/ex/app:v1.0 Fetch layer1: 51.4 MB/51.4
MB Fetch layer4: 97 B/97 B Fetch layer5: 2.7 MB/3.2 MB … ~120MB in Total
Squashed Image Layers { {“id”: “meh”, “meta”: “data”}, } meh
Image metadata Image binary data foo bar
Pulling Squashed Layers $ rkt fetch docker://quay.io/ex/app:v1.0 Fetch layer1: 81.2
MB/81.2 MB …
SIZE SAVINGS Many ~50% Smaller
BitTorrent with quayctl $ quayctl rkt torrent pull \ quay.io/coreos/clair
AVAILABLE TODAY github.com/coreos/quayctl
JWTPROXY Service to Service Authentication
JWTPROXY Service to Service Authentication Micro Service Micro Service
SECURITY SCANNING
CVE-2015-0235 GHOST
None
None
None
bt tracker
jwtproxy Use HTTP auth headers Negotiate load balancers Compatible with
TLS infrastructure
JWTPROXY AVAILABLE TODAY github.com/coreos/jwtproxy
CVE-2015-0235 66 % of analyzed images on Quay.io
Security Scanning In Quay Enterprise
AVAILABLE TODAY quay.io/plans
OPEN CONTAINER INITIATIVE A Global Shipping Standard
OCI Image Format Spec Maintainers from Across Industry Best of
Docker Image and appc Image Registry Support in the Coming Months
OCI IMAGE v0.1.0 github.com/opencontainers/image-spec
rkt 1.0: February 2016 github.com/coreos/rkt • Modern security best practices
• Modular, composable with well-known tools • ACI, Docker; OCI support as available • Current: v1.5 • Alternate Kubernetes container engine, “rktnetes”
LET'S KEEP BUILDING For Production, Scale, and Security
Thank you! Until we meet again... @joshixisjosh9 |
[email protected]
DocOps,
CoreOS
joshix
itouhi
usanchuu
nyankotaro
ymatsuwitter
peintangos
line_developers_tw
gawa
amacbee
taketo957
visional_engineering_and_design
cyberagentdevelopers
ks91
bluesmoon
eitanlees
ryanjones
tmiket
kristinabergwall1
tomoyanonymous
michielstock
bkeepers
nwiizo
yeseniaperezcruz
greggifford
signer
![Since last we met... Josh Wood | @joshixisjosh9 | [email protected]](https://files.speakerdeck.com/presentations/ffc05bf635114417868ff11dab3e1c67/slide_0.jpg){kind=link}
![Thank you! Until we meet again... @joshixisjosh9 | [email protected] DocOps,](https://files.speakerdeck.com/presentations/ffc05bf635114417868ff11dab3e1c67/slide_42.jpg){kind=link}