Agenda
Open source, containers and orchestration are the order of the day. Kubernetes has taken the industry by storm and become the de-facto orchestration standard throughout the commercial, financial and government sectors. This premier event is the only one of its kind, DevNation Federal brings the most respected industry experts and key maintainers of popular open source projects on stage to deliver a one day immersive conference to federal developers.
Thursday, June 27, 2019
InterContinental Washington D.C. - The Wharf
801 Wharf Street, SW, Washington, DC 20024
8:00 - 9:00 a.m. | Breakfast & Registration |
9:00 - 9:10 a.m. | Red Hat Welcome Adam Clater, Chief Architect, Red Hat Michelle Davis, Senior Solutions Architect, Red Hat |
9:10 - 9:35 a.m. | Small but Mighty: How to Create Internet-Scale Change Laura Thomson, Senior Director of Engineering, Firefox Engineering Operations at Mozilla Corporation |
9:35 - 10:00 a.m. | DoD Software Factory with the DoD Enterprise DevSecOps Initiative Nicolas Chaillan, Chief Software Officer for the Air Force and the Co-Lead for the DoD Enterprise DevSecOps initiative |
10:00 - 10:25 a.m. | Service Mesh and Istio Explained Lin Sun, Senior Technical Staff Member & Master Inventor, IBM |
10:25 - 10:45 a.m. | Break |
10:45 - 11:10 a.m. | The #1 Thing We Learned from Our DevOps Transformation Simmons Lough, Software Architect, US Patent and Trademark Office |
11:10 - 11:35 a.m. | Pushed to Higher Standards: Reliability and Resiliency in Application Development on AWS Jibby Ayo-Ani, Lead DevOps Engineer, Welkin Health |
11:45 a.m. - 12:30 p.m. | Lunch & Networking |
12:30 - 1:00 p.m. | Breakout Sessions |
1:10 - 1:40 p.m. | Breakout Sessions |
1:50 - 2:20 p.m. | Breakout Sessions |
2:30 - 2:55 p.m. | Apache Kafka® and the Rise of Event-Driven Microservices Jun Rao, Co-founder, Confluent |
2:55 - 3:20 p.m. | Clarity in the World of Service Mesh Confusion Christian Posta, Global Field CTO, Solo.io |
3:20 - 4:00 p.m. | Lightning Talks |
4:00 - 6:00 p.m. | Happy Hour |
Sessions
Keynote
9:10 - 9:35 a.m.
Small but Mighty: How to Create Internet-Scale Change
Laura Thomson, Senior Director of Engineering, Firefox Engineering Operations at Mozilla Corporation
You, too, can change the world. In this talk, I'll tell the story of how the Let's Encrypt certificate authority drove the rapid rise of the adoption of HTTPS, and how the collaboration, dedication and focus of a few people can create Internet-scale change. The lessons of Let's Encrypt show that barriers to change are more than just technical, and overcoming them is critical to progress. This talk will inspire developers to persevere with their dreams and work towards a better Internet.
Keynote
9:35 - 10:00 a.m.
DoD Software Factory with the DoD Enterprise DevSecOps Initiative
Nicolas Chaillan, Chief Software Officer for the Air Force and the Co-Lead for the DoD Enterprise DevSecOps initiative
The Department of Defense is massively adapting DevSecOps and enable its Programs with a Continuous Authority to Operate model and a Containerized Architecture leveraging baked-in security with their sidecar security stack.
Keynote
10:00 - 10:25 a.m.
Service Mesh and Istio Explained
Lin Sun, Senior Technical Staff Member & Master Inventor, IBM
Have you heard the buzz around service mesh lately? With Kubernetes rising up to the de facto standard of container orchestration system and the new application server, why do we even need service mesh? What exactly is service mesh and why we need to pay attention to it? What about Istio and how does Istio really work? Join us to learn how Kubernetes, service mesh and Istio relate, and how you can leverage a service mesh technology like Istio in your cloud native journey.
Keynote
10:45 - 11:10 a.m.
The #1 Thing We Learned from Our DevOps Transformation
Simmons Lough, Software Architect, US Patent and Trademark Office
At the United States Patent and Trademark Office (USPTO), the Office of Finance Management Systems (OFMS) is moving towards a culture of speedy and collaborative IT modernization. This keynote will address the most important factor that we learned during our DevOps transformation. We believe other Federal agencies can use this knowledge to improve and transform IT modernization in large organizations.
Keynote
11:10 - 11:35 a.m.
Pushed to Higher Standards: Reliability and Resiliency in Application Development on AWS
Jibby Ayo-Ani, Lead DevOps Engineer, Welkin Health
We’ve all used social media, email, search engines, and more. We interact with “the Cloud” every day and as people in the tech space at some point, we have all asked the question what is “the Cloud” and how do I get up there? Some of us have discovered the answers and even built our own systems in the cloud yet there’s still a long ways to go.
We as an industry have moved towards cloud computing as the standard to take the burden off of managing our own data centers, though the standards for security and reliability to our customers do not change. Cloud service providers, like Amazon Web Services, provide a plethora of opportunity to build scalable, reliable, secure, and resilient platforms. In this presentation, I take you through the DevOps engineer's lens of not only discovering the power of cloud computing but utilizing to its utmost power. From security vulnerabilities to natural disasters, your application needs protecting. Leave this talk feeling empowered to push yourself to higher standards.
Keynote
2:30 - 2:55 p.m.
Apache Kafka® and the Rise of Event-Driven Microservices
Jun Rao, Co-founder, Confluent
This talk will address something that is missing from a lot of the applications we build today, and something Kafka has enabled the vision for: I will be talking about events and how event-driven microservices are on the rise, as well as some practical applications that they enable in the industry.
Keynote
2:55 - 3:20 p.m.
Clarity in the World of Service Mesh Confusion
Christian Posta, Global Field CTO, Solo.io
Service mesh is a pattern and technology layer that has been emerging to solve cloud-native, service-to-service communication challenges. Things like service resilience patterns, service identity and security, metric collection and observability, et.al., can be solved with a service mesh. As you start to dig in, you may wonder “well, how do I get this into my services architecture?”, or “with the plethora of service mesh options out there, which one do I choose?”. You may also be wondering “do I need a service mesh for my situation?”. In this session, we look at when to use and not use a service mesh and then explore three open-source service mesh implementations, Istio, Linkerd, and Consul, how the compare and contrast and how to best get started with them. Lastly, we look at the SuperGloo service-mesh orchestrator which solves some of the challenges of operating a service mesh at scale, regardless of which mesh implementation you choose.
Breakout
12:30 - 1:00 p.m.
Waterside Room - Track 1
Policy Enabled Kubernetes with Open Policy Agent
Jimmy Ray, Software Engineer, Capital One
A move to Cloud Computing is done, in large part, to address the common concerns of “infrastructure provisioning” that are shared by all application teams. Moving to containers and Kubernetes can be seen as the next evolution in allowing development teams to focus on their work, not on infrastructure. Cloud Computing and containerization move fast, and require automated policy enforcement points. Open Policy Agent can be used with Kubernetes to enforce a variety of policies. Based on my Medium article: https://medium.com/capital-one-tech/policy-enabled-kubernetes-with-open-policy-agent-3b612b3f0203
Breakout
12:30 - 1:00 p.m.
Seaport 1 Room - Track 2
Next-generation containers with Ansible - an example
Jamie Duncan, Sr. Cloud Guy, Red Hat
Ansible is quietly powering the next revolution in how kubernetes is transforming our industry. In this session, we'll walk through how Operators work in kubernetes and OpenShift. We'll also discuss how we used Ansible to make our own lives better with a specific example.
Breakout
12:30 - 1:00 p.m.
Seaport 2 Room - Track 3
Modernizing Government with Booz Allen and Red Hat, an Openshift and SDP Story
Josh Boyd, Chief Technologist, Booz Allen Hamilton
In this session, you’ll learn how Red Hat’s OpenShift Container Platform paired with Booz Allen’s Solutions Delivery Platform enabled a greenfield re-envisioning of a civilian agency’s website for federal agencies to post funding opportunities and for grantees to find and apply to them. We’ll share with you the ups and downs of adoption and lessons learned during the journey to production and ATO.
Breakout
12:30 - 1:00 p.m.
Harbor Room - Track 4
Container Image Scanning: security enforcement beyond the 'list of CVEs'
Daniel Nurmi, CTO and Co-Founder, Anchore
With adoption of container technologies increasing across software development teams in every industry, securing container deployment environments has become challenging. Specifically, process changes that have emerged from the adoption of container native build processes have resulted in a substantial increase in the software surface area of artifacts being deployed in production. While the practice of vulnerability scanning can be applied to container images via existing tools, many other types of scans, checks and assertions are important to build into a modern container-based CI/CD flow in order to prevent as many security, best practice, and compliance violations as early as possible, given the large number of container images that can be generated in a short amount of time, and the broad range of locations from which images are being sourced.
Join us to learn about the categories of scans that are possible to perform against container images in CI/CD flows using static analysis, and how building these checks into your pipeline allows for the application of user-defined security, best-practice and compliance enforcement policies that evolve alongside the shifting characteristics of your container-based workloads.
Breakout
1:10 - 1:40 p.m.
Waterside Room - Track 1
Security concerns in the container runtimes
Dan Walsh, Senior Distinguished Engineer, Red Hat
This talk will cover breaking about the container runtimes, into individual tools to be able to concentrate on security in each of the runtimes.
The talk will explain CRI-O the container runtime for OpenShift/Kubernetes. CRI-O concentrates of running containers in production, with features enabled to allow for more securely running your workloads.
Buildah is the container runtime for building OCI Container Images, I will cover how it can be used to build smaller containers as well as how you can build containers from within containers.
Skopeo is a tool for copying container images from different types of storage, without requiring any privileges.
Podman is a developer, and simple runtime tool that allows developers and administrators to build, play and run small groups of containers on a system. Even allows you to run the containers without requiring root privileges.
Breakout
1:10 - 1:40 p.m.
Seaport 1 Room - Track 2
k3s lightweight kubernetes on the Edge
Mark Abrams, Field Engineer, Rancher Labs
Rancher Labs created K3s to solve a problem anyone who works with constrained resources understands: Kubernetes doesn't run in those environments. We removed alpha and optional features, converted others to dynamic add-ons, and replaced etcd with sqlite. The result is a single binary that works on x86 and Arm processors and lets you run Kubernetes workloads on hardware with as little as 512 MB of RAM. We want to share K3s with as many people in the Kubernetes community as we can. We've put together a live presentation to demonstrate a tiny slice of what people can do with K3s. It begins with a discussion of what K3s is and how it works, and then follows with a live demonstration of the software by installing it on a small device. With the basic cluster up and running, we will take a look at how to scale both services and the cluster itself. The presentation is very interactive and we anticipate lots of Q&A.
Breakout
1:10 - 1:40 p.m.
Seaport 2 Room - Track 3
Building sustainable civic tech with open data
Jason Hibbets, Senior Community Architect, Red Hat
What do you get when you blend open data, open source, and challenges created by a community and government partnership? The answer: Sustainable civic tech. There is a secret recipe for successful civic tech that solves community problems. As a Code for America brigade captain, organizer of numerous civic tech events and hackathons, and author of a book about open source, open government, and open data, I have a tremendous amount of experience to share about the civic tech scene. In this session, the audience will learn how the Open Raleigh Brigade partnered with our county IT innovation team to identify challenges based on community goals, set by our county commissioners. Finally, the audience will learn more about the open data competition and we'll explore the impact of open data and how its having a positive impact in our community. Session participants will learn: * The value of open data in civic tech * The importance of creating community-focused challenges * How events can compliment and advance community projects * How community and government partnerships can help create sustainable civic tech
Breakout
1:10 - 1:40 p.m.
Harbor Room - Track 4
Agile Integration: An Approach for Solving Modern Integration Challenges
Monica Hockelberg, Sr. Integration Domain Architect, Red Hat
So, what the heck is Agile Integration? In short, it's a response to our new normal. The landscape we operate in has changed. Agencies must respond faster than ever before to demands for information and services. At the same time, citizens expect government services to be accessible and efficient. As a result, delivery teams are being re-shuffled to improve collaboration and adopt agile practices. New architecture paradigms continue to emerge as the technological forces of cloud, containers, messaging, and APIs are further driving demand for flexible, holistic approaches to integration. A distributed integration approach allows you to respond to change faster, improve quality, and reduce risk. Agile Integration is a distributed integration approach that leverages the power and "goodness" of the open-source community, supports hybrid cloud environments with cloud-native tooling, and positions you to solve modern integration challenges with the technology you've been working with in the community. It's a game-changer. In this talk, we'll discuss the driving factors behind modernization efforts and you will learn how an agile approach to integration can create the runway you need to accelerate innovation within your own organization.
Breakout
1:50 - 2:20 p.m.
Waterside Room - Track 1
Serverless Suddenly Matters on Kubernetes with Knative
Tariq Islam, Product Manager, Google
Serverless is one of the most ambiguous terms in the tech industry today. In aggregate, it is a term that subsumes an array of interaction patterns for developers to utilize, a bit like a developer toolbox. In this session, we will cover a canonical definition of serverless and the technologies that enable this paradigm. Next, this session will cover what Knative brings over provider-specific serverless implementations. We will also look at the history of developer patterns in software development, and why serverless truly matters. A discussion will be held about the impact and the benefits that Knative has in this space on the people and processes within an organization. Finally we will run through a demo of Knative and talk about adoption patterns.
Breakout
1:50 - 2:20 p.m.
Seaport 1 Room - Track 2
Easier, Faster, Integrated...er: more Fluent Edge Data Collection with Beats
Jeremy Woodworth, Solutions Architect, Elastic
OpenShift's default log aggregation solution uses Fluentd as part of its "EFK" log aggregation solution. This talk will show how Elastic's Beats can collect more data, at greater scale, and with less effort. Among the details covered will be an overview of the current Beats family, the "module" construct and what it provides, and the current and growing list of Beats features that make them so powerful in Kubernetes / OpenShift architectures.
Breakout
1:50 - 2:20 p.m.
Seaport 2 Room - Track 3
Cloud-Native All the Things!
Keith Babo, Consulting Product Manager, Red Hat
Cloud adoption is not a matter of 'if', it's a matter of 'when'. The timeline for many of organizations facing this choice ranges somewhere between 'right now' and 'yesterday'. IT departments are struggling to come to terms with a constant stream of new and exciting technologies, while developing a strategy for how they will evolve their existing architecture to cloud-native. Throwing everything away and starting from scratch is not going to be possible, nor prudent, for most organizations. Survival will require pragmatism in adoption of new cloud technologies while retaining a connective fabric across your greenfield and brownfield environments. This session will offer pragmatic advice on how your existing IT architecture maps to the latest and greatest trends in cloud-native architecture, including: the relationship between Service Mesh, Event Mesh, and API Management; the future of cloud-native Java with Quarkus; the critical role of integration in Knative; and a whole lot more!
Breakout
1:50 - 2:20 p.m.
Harbor Room - Track 4
Digital Discrimination: Cognitive Bias in Machine Learning
Maureen McElaney, Developer Advocate, IBM
With increasing regularity we see stories in the news about machine learning algorithms causing real-world harm. People's lives and livelihood are affected by the decisions made by machines. Learn about how bias can take root in machine learning algorithms and ways to overcome it.
Code of Behavior
DevNation Federal adheres to the same code of behavior as all other Red Hat events. Please click here to review the Code of Behavior.
If you need assistance relating to conduct by an attendee, please contact the DevNation Federal Team.