Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Keynote - Brandon Philips - CoreOS Fest 2016
Search
Brandon Philips
May 09, 2016
Programming
3
220
Keynote - Brandon Philips - CoreOS Fest 2016
Brandon Philips
May 09, 2016
Tweet
Share
More Decks by Brandon Philips
See All by Brandon Philips
Node.js Workflow with Minikube and Skaffold
philips
0
230
Manage the App on Kubernetes
philips
0
310
Production Backbone Monitoring Containerized Apps
philips
0
130
KubeCon EU 2017: Dancing on the Edge of a Volcano
philips
1
640
rkt - KubeCon EU keynote - 2017
philips
1
240
FOSDEM_Keynote_2017-_.pdf
philips
0
97
Tectonic Summit Day 2 Keynote
philips
0
310
Kubernetes: Simple to Manage Anywhere (self-hosted, Tectonic upgrade demo)
philips
0
320
KubeCon Keynote 2016- Distributed Systems Simplified on Kubernetes
philips
2
530
Other Decks in Programming
See All in Programming
データベースのオペレーターであるCloudNativePGがStatefulSetを使わない理由に迫る
nnaka2992
0
230
PHPカンファレンス名古屋2025 タスク分解の試行錯誤〜レビュー負荷を下げるために〜
soichi
1
670
SwiftUI Viewの責務分離
elmetal
PRO
2
270
Serverless Rust: Your Low-Risk Entry Point to Rust in Production (and the benefits are huge)
lmammino
1
150
『テスト書いた方が開発が早いじゃん』を解き明かす #phpcon_nagoya
o0h
PRO
8
2.4k
Datadog Workflow Automation で圧倒的価値提供
showwin
1
150
React 19アップデートのために必要なこと
uhyo
8
1.4k
複数のAWSアカウントから横断で 利用する Lambda Authorizer の作り方
tc3jp
0
110
メンテが命: PHPフレームワークのコンテナ化とアップグレード戦略
shunta27
0
300
Ruby on cygwin 2025-02
fd0
0
180
CI改善もDatadogとともに
taumu
0
190
苦しいTiDBへの移行を乗り越えて快適な運用を目指す
leveragestech
0
990
Featured
See All Featured
Building an army of robots
kneath
303
45k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
49
2.3k
Adopting Sorbet at Scale
ufuk
74
9.2k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
47
5.2k
CoffeeScript is Beautiful & I Never Want to Write Plain JavaScript Again
sstephenson
160
15k
Docker and Python
trallard
44
3.3k
The Pragmatic Product Professional
lauravandoore
32
6.4k
A designer walks into a library…
pauljervisheath
205
24k
The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024
eileencodes
21
2.5k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.4k
Code Reviewing Like a Champion
maltzj
521
39k
Why You Should Never Use an ORM
jnunemaker
PRO
55
9.2k
Transcript
Keynote: CoreOS Fest 2016 @BrandonPhilips |
[email protected]
CTO, CoreOS Inc
MISSION Secure the Internet
STRATEGY Accelerate with Open Source
GOAL Work with People We Love to Work With
SUCCESS 1000s Have Contributed to Projects CoreOS Introduced
Simone Gotti rkt Contributor
Frode Nordahl Dex Contributor (LDAP support)
Julien Garcia Gonzalez Clair Contributor (hyperclair CLI)
Hitoshi Mitake etcd Contributor
All of You We Look Forward to Working with You
Coreos & Event Staff From New York, Berlin, and San
Francisco
TIMELINE The Story so Far
3 YEARS AGO None of this existed
2.5 YEARS AGO Foundations Established
1.5 YEARS AGO Standards and Security
1 YEAR AGO Kubernetes v1.0
TODAY Production, Scale, and Security
NEW TECHNOLOGY Updates and Announcements
ETCD v3.0 BETA Efficient and Scalable
Punishing Functional Tests
Punishing Functional Tests
Punishing Functional Tests
gRPC Based API ~4x Faster vs JSON HTTP/2 Improves Efficiency
New Storage Engine Scales to GB of Data Consistent Performance
Continuous Snapshots
etcd v3 will support Kubernetes as it scales to 5.000
nodes and beyond
BETA AVAILABLE TODAY github.com/coreos/etcd
TODAY 9:50am Introduction to etcd v3 B08
QUAYCTL BitTorrent Container Image Pulls
Image Layers foo-filesystem.tar.gz bar-filesystem.tar.gz meh-filesystem.tar.gz Image metadata Image binary data
{ {“id”: “foo”}, {“id”: “bar”, “meta”: “data”}, {“id”: “meh”, “meta”: “data”}, }
Pulling Layers $ rkt fetch docker://quay.io/ex/app:v1.0 Fetch layer1: 51.4 MB/51.4
MB Fetch layer4: 97 B/97 B Fetch layer5: 2.7 MB/3.2 MB … ~120MB in Total
Squashed Image Layers { {“id”: “meh”, “meta”: “data”}, } meh
Image metadata Image binary data foo bar
Pulling Squashed Layers $ rkt fetch docker://quay.io/ex/app:v1.0 Fetch layer1: 81.2
MB/81.2 MB …
SIZE SAVINGS Many ~50% Smaller
BitTorrent with quayctl $ quayctl rkt torrent pull \ quay.io/coreos/clair
BitTorrent with quayctl $ quayctl docker torrent pull \ quay.io/coreos/clair
BitTorrent Improvements
BitTorrent Improvements
BitTorrent Improvements
BitTorrent Improvements
BitTorrent Improvements
AVAILABLE TODAY github.com/coreos/quayctl
TODAY 14:20 Distribution to Worldwide Clusters B08
JWTPROXY Service to Service Authentication
JWTPROXY Service to Service Authentication Micro Service Micro Service
SECURITY SCANNING
CVE-2015-0235 GHOST
CVE-2015-0235 GHOST
None
None
None
None
builders
bt tracker
jwtproxy Use HTTP auth headers Negotiate load balancers Compatible with
TLS infrastructure
TOMORROW 9:50 Service to Service Auth B08
JWTPROXY AVAILABLE TODAY github.com/coreos/jwtproxy
CVE-2015-0235 66 % of analyzed images on Quay.io
Security Scanning In Quay Enterprise
AVAILABLE TODAY quay.io/plans
OPEN CONTAINER INITIATIVE Building an Industry Standard
OCI Image Format Spec Maintainers from Across Industry Best of
Docker Image and appc Image Registry Support in the Coming Months
OCI IMAGE v0.1.0 github.com/opencontainers/image-spec
TODAY 13:30 Common Container Standards B08
LET'S KEEP BUILDING For Production, Scale, and Security
GOAL Work with People We Love to Work With
Thank you! Keynote: CoreOS Fest 2016 @BrandonPhilips |
[email protected]
CTO,
CoreOS Inc