Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Keynote - Brandon Philips - CoreOS Fest 2016
Search
Brandon Philips
May 09, 2016
Programming
3
220
Keynote - Brandon Philips - CoreOS Fest 2016
Brandon Philips
May 09, 2016
Tweet
Share
More Decks by Brandon Philips
See All by Brandon Philips
Node.js Workflow with Minikube and Skaffold
philips
0
210
Manage the App on Kubernetes
philips
0
300
Production Backbone Monitoring Containerized Apps
philips
0
100
KubeCon EU 2017: Dancing on the Edge of a Volcano
philips
1
530
rkt - KubeCon EU keynote - 2017
philips
1
230
FOSDEM_Keynote_2017-_.pdf
philips
0
75
Tectonic Summit Day 2 Keynote
philips
0
290
Kubernetes: Simple to Manage Anywhere (self-hosted, Tectonic upgrade demo)
philips
0
230
KubeCon Keynote 2016- Distributed Systems Simplified on Kubernetes
philips
2
510
Other Decks in Programming
See All in Programming
オブジェクト指向のリ・オリエンテーション~歴史を振り返り、AI時代に向きなおる~
hanyudaeiiti
10
5.7k
今の SmartHR にエンジニアで入社するとどうなるの?
daisukeshinoku
5
4.6k
ADRを一年運用してみた/adr_after_a_year
hanhan1978
7
2.2k
try! Swift Tokyo 2024のLT枠に採択されたプロポーザルを出すときに考えていたこと
ski
0
340
StreamlitとTerraformでデータカタログを作った話
gussan0223
0
300
Designing for tomorrow's programming workflows
honnibal
PRO
2
110
educure_カリキュラム生操作マニュアル.pdf
linew_official
0
480
App Router への移行は「改善」となり得るのか?/ Can migration to App Router be an improvement
takefumiyoshii
8
2.1k
Micro Frontends for Java Microservices - Devnexus 2024
mraible
PRO
0
430
単体テストを書かない技術 #phpcon_odawara
o0h
PRO
26
7.9k
puregoの活用例
aethiopicuschan
0
220
チーム力を高めるスクラム実践法:カンバン公開と課題攻略について - ニフティのスクラムトーク Vol. 2 - NIFTY Tech Talk #18
niftycorp
PRO
1
110
Featured
See All Featured
Designing with Data
zakiwarfel
95
4.8k
Dealing with People You Can't Stand - Big Design 2015
cassininazir
356
22k
XXLCSS - How to scale CSS and keep your sanity
sugarenia
240
1.2M
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
226
16k
Put a Button on it: Removing Barriers to Going Fast.
kastner
58
3k
A Philosophy of Restraint
colly
196
16k
Reflections from 52 weeks, 52 projects
jeffersonlam
344
19k
Keith and Marios Guide to Fast Websites
keithpitt
408
22k
Easily Structure & Communicate Ideas using Wireframe
afnizarnur
186
16k
The Power of CSS Pseudo Elements
geoffreycrofte
59
5k
Why You Should Never Use an ORM
jnunemaker
PRO
50
8.6k
Typedesign – Prime Four
hannesfritz
36
2.1k
Transcript
Keynote: CoreOS Fest 2016 @BrandonPhilips |
[email protected]
CTO, CoreOS Inc
MISSION Secure the Internet
STRATEGY Accelerate with Open Source
GOAL Work with People We Love to Work With
SUCCESS 1000s Have Contributed to Projects CoreOS Introduced
Simone Gotti rkt Contributor
Frode Nordahl Dex Contributor (LDAP support)
Julien Garcia Gonzalez Clair Contributor (hyperclair CLI)
Hitoshi Mitake etcd Contributor
All of You We Look Forward to Working with You
Coreos & Event Staff From New York, Berlin, and San
Francisco
TIMELINE The Story so Far
3 YEARS AGO None of this existed
2.5 YEARS AGO Foundations Established
1.5 YEARS AGO Standards and Security
1 YEAR AGO Kubernetes v1.0
TODAY Production, Scale, and Security
NEW TECHNOLOGY Updates and Announcements
ETCD v3.0 BETA Efficient and Scalable
Punishing Functional Tests
Punishing Functional Tests
Punishing Functional Tests
gRPC Based API ~4x Faster vs JSON HTTP/2 Improves Efficiency
New Storage Engine Scales to GB of Data Consistent Performance
Continuous Snapshots
etcd v3 will support Kubernetes as it scales to 5.000
nodes and beyond
BETA AVAILABLE TODAY github.com/coreos/etcd
TODAY 9:50am Introduction to etcd v3 B08
QUAYCTL BitTorrent Container Image Pulls
Image Layers foo-filesystem.tar.gz bar-filesystem.tar.gz meh-filesystem.tar.gz Image metadata Image binary data
{ {“id”: “foo”}, {“id”: “bar”, “meta”: “data”}, {“id”: “meh”, “meta”: “data”}, }
Pulling Layers $ rkt fetch docker://quay.io/ex/app:v1.0 Fetch layer1: 51.4 MB/51.4
MB Fetch layer4: 97 B/97 B Fetch layer5: 2.7 MB/3.2 MB … ~120MB in Total
Squashed Image Layers { {“id”: “meh”, “meta”: “data”}, } meh
Image metadata Image binary data foo bar
Pulling Squashed Layers $ rkt fetch docker://quay.io/ex/app:v1.0 Fetch layer1: 81.2
MB/81.2 MB …
SIZE SAVINGS Many ~50% Smaller
BitTorrent with quayctl $ quayctl rkt torrent pull \ quay.io/coreos/clair
BitTorrent with quayctl $ quayctl docker torrent pull \ quay.io/coreos/clair
BitTorrent Improvements
BitTorrent Improvements
BitTorrent Improvements
BitTorrent Improvements
BitTorrent Improvements
AVAILABLE TODAY github.com/coreos/quayctl
TODAY 14:20 Distribution to Worldwide Clusters B08
JWTPROXY Service to Service Authentication
JWTPROXY Service to Service Authentication Micro Service Micro Service
SECURITY SCANNING
CVE-2015-0235 GHOST
CVE-2015-0235 GHOST
None
None
None
None
builders
bt tracker
jwtproxy Use HTTP auth headers Negotiate load balancers Compatible with
TLS infrastructure
TOMORROW 9:50 Service to Service Auth B08
JWTPROXY AVAILABLE TODAY github.com/coreos/jwtproxy
CVE-2015-0235 66 % of analyzed images on Quay.io
Security Scanning In Quay Enterprise
AVAILABLE TODAY quay.io/plans
OPEN CONTAINER INITIATIVE Building an Industry Standard
OCI Image Format Spec Maintainers from Across Industry Best of
Docker Image and appc Image Registry Support in the Coming Months
OCI IMAGE v0.1.0 github.com/opencontainers/image-spec
TODAY 13:30 Common Container Standards B08
LET'S KEEP BUILDING For Production, Scale, and Security
GOAL Work with People We Love to Work With
Thank you! Keynote: CoreOS Fest 2016 @BrandonPhilips |
[email protected]
CTO,
CoreOS Inc