KubeCon + CloudNativeCon Europe 2025: Full Schedule

In-person
1-4 April 2025
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in British Summer Time (BST) (UTC +1). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis.

11:15 BST

Advancements in AI/ML Inference Workloads on Kubernetes From WG Serving and Ecosystem Projects - Yuan Tang, Red Hat & Eduardo Arango Gutierrez, NVIDIA

Wednesday April 2, 2025 11:15 - 11:45 BST

Level 3 | ICC Capital Suite 7-9

The emergence of Generative AI (GenAI) has introduced new challenges and demands in AI/ML inference, necessitating advanced solutions for efficient serving infrastructures. The Kubernetes Working Group Serving (WG Serving) is dedicated to enhancing serving workload on K8s, especially for hardware-accelerated AI/ML inference. This group prioritizes compute-intensive inference scenarios using specialized accelerators, benefiting various serving workloads such as web services and stateful databases.

This session will dive into recent progress and updates on WG Serving's initiatives and workstreams. We will spotlight discussions and advancements in each workstream. We are also actively looking for feedback and partnership with model server authors and other practitioners who want to utilize powers of K8s for their serving workloads. Join us to gain insight into our work and learn how to contribute to advancing AI/ML inference on K8s.

Speakers

Eduardo Arango Gutierez DE

Senior Systems Software Engineer, NVIDIA

Eduardo is a Senior Systems Software Engineer at NVIDIA, working on the Cloud Native Technologies team. Eduardo has focused on enabling users to build and deploy containers on distributed environments.

Yuan Tang

Principal Software Engineer, Red Hat

Yuan is a principal software engineer at Red Hat, working on OpenShift AI. He has led AI infrastructure and platform teams at various companies. He holds leadership positions in open source projects, including Argo, Kubeflow, and Kubernetes. He's a maintainer and author of many popular... Read More →

Wednesday April 2, 2025 11:15 - 11:45 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Serving

11:15 BST

OpenFeature Update From the Maintainers - Thomas Poignant, Adevinta & Lukas Reining, codecentric AG

Wednesday April 2, 2025 11:15 - 11:45 BST

Level 3 | ICC Capital Suite 10-12

OpenFeature is an open specification that provides a vendor-agnostic, community-driven API for feature flagging that works with your favorite feature flag management tool or in-house solution.

Come along to hear all the news about OpenFeature (including: code generation, support of tracking events, OTEL semantic conventions, distributed flag evaluation) and the projects future plans.

We also wants to open the floor to all the questions about the current state and future of OpenFeature.

Speakers

Thomas Poignant

Head Of Engineering, Adevinta

French guy living in Paris, I'm on a thrilling journey as a tech enthusiast, currently working as a Head of Engineering at AdevintaProudly contributing to the CNCF's OpenFeature project as a member of the Technical Committee, I'm immersed in the dynamic world of open source.

Lukas Reining

OpenFeature TC Member and IT Consultant & Developer, codecentric AG

Lukas is a software developer and IT consultant at codecentric. His main interest is centered around software architecture and cloud native applications.

Wednesday April 2, 2025 11:15 - 11:45 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, OpenFeature

11:15 BST

OpenTelemetry Project Update - Daniel Gomez Blanco, Skyscanner; Severin Neumann, Independent; Alolita Sharma, Apple; Trask Stalnaker, Microsoft; Pablo Baeyens, Datadog

Wednesday April 2, 2025 11:15 - 11:45 BST

Level 3 | ICC Capital Suite 14-16

Join us for the official OpenTelemetry project updates session at KubeCon+CloudNativeCon. In this session, Governance Committee members will share some of the latest project developments and milestones achieved, and they will offer a glimpse into the future of OpenTelemetry. This session is your chance to engage with other contributors present at the event, ask questions about the project, and receive direct responses from core project maintainers. Don't miss this opportunity to stay informed and contribute to the discussion on the exciting advancements within OpenTelemetry.

Speakers

Severin Neumann

OpenTelemetry Governance Committee Member, Independent

Severin is an elected member of the OTel Governance Committee and a co-maintainer of the OpenTelemetry (OTel) SIG Communications, which is reponsibile for the website, documentation, blog and social media channels of the project. He is currently focusing on a project which aims to... Read More →

Alolita Sharma

OpenTelemetry Governance Committee Member, Observability Engineering at Apple, Apple

Alolita Sharma is a member of OpenTelemetry GC, Observability TAG co-chair, CNCF End-User TAB Chair and Governing Board member. She leads Apple’s AIML observability teams. She contributes to open source, open standards at OpenTelemetry, Unicode, W3C. She has served on the boards... Read More →

Daniel Gomez Blanco

Principal Software Engineer, OpenTelemetry Governance Committee, Skyscanner

Observability lead at Skyscanner, member of the OpenTelemetry Governance Committee, and author of "Practical OpenTelemetry: Adopting Open Observability Standards Across Your Organization". Throughout my career, my main focus has been reducing the cognitive load required to operate... Read More →

Trask Stalnaker

Principal Software Engineer, Microsoft

OpenTelemetry Governance Committee, OpenTelemetry Semantic Convention and Java Instrumentation Maintainer, Java @ Microsoft

Pablo Baeyens

Software Engineer, Datadog

Pablo Baeyens is a Senior Software Engineer working at Datadog. He lives in Granada, Spain and since late 2020 he has been involved in the OpenTelemetry project, where he is part of the OpenTelemetry Governance Committee and maintains the OpenTelemetry Collector. Outside of open source... Read More →

Wednesday April 2, 2025 11:15 - 11:45 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, OpenTelemetry

11:15 BST

Prometheus 3.0 Has Released – Deep Dive Into Features and Roadmap - Richard Hartman, Grafana Labs

Wednesday April 2, 2025 11:15 - 11:45 BST

Platinum Suite | Level 3 | Room 1-2

Join us for

* A short intro on what Prometheus is, why it is the cloud native default, and why everyone using Kubernetes successfully is using Prometheus in some way or form
* A deep dive into the newest developments
* A Q&A with the Prometheus maintainers

Speakers

Richard Hartmann

Office of the CTO, Grafana Labs

Richard "RichiH" Hartmann is the Director of Community at Grafana Labs, a member of the Office of the CTO of Grafana Labs, Prometheus team member, OpenMetrics founder, OpenTelemetry member, CNCF Technical Oversight Committee member, CNCF Governing Board member, and more. He also leads... Read More →

Wednesday April 2, 2025 11:15 - 11:45 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Prometheus

11:15 BST

Rook: Intro and Deep Dive With Ceph Storage - Travis Nielsen, Blaine Gardner & Madhu Rajanna, IBM, Artem Torubarov & Deepika Upadhyay, Clyso

Wednesday April 2, 2025 11:15 - 11:45 BST

Platinum Suite | Level 3 | Room 3-4

The Rook project will be introduced to attendees of all levels and experience. Rook is an open source cloud-native storage operator for Kubernetes, providing the platform, framework, and support for Ceph to natively integrate with Kubernetes. The panel will discuss various scenarios to show how Rook configures Ceph to provide stable block, shared file system, and object storage for your production data. Rook was accepted as a graduated project by the Cloud Native Computing Foundation in October 2020.

Speakers

Madhu R

Software Architect at IBM Deutschland RD GmbH, IBM Deutschland RD GmbH

Software Architect at IBM Storage on the OpenShift Data Foundation (ODF) team. He is a maintainer of the Ceph-CSI and CSI-Addons and a reviewer of the Rook project.

Travis Nielsen

Rook Lead Maintainer, IBM

Travis Nielsen is a Senior Technical Staff Member for IBM where he is a maintainer on Rook and member of the ODF and Ceph engineering team. Prior to IBM and Red Hat, Travis worked in storage at Quantum and Symform, a P2P storage startup, and was an engineering lead for the Windows... Read More →

Blaine Gardner

Rook Maintainer, IBM

Blaine is a Senior Advisory Software Engineer at IBM Storage on the Ceph OpenShift/Fusion Data Foundation (ODF) team. He is a maintainer of the CNCF-graduated Rook project making sure Ceph and Kubernetes live together in harmony. Their current focus topics are the Container Object... Read More →

Deepika Upadhyay

Ceph Engineer, Clyso

I’m Deepika, a Ceph Engineer at Clyso working on the Rook project. With over 5 years in the Ceph community, I specialize in deploying large-scale Rook Ceph clusters for enterprises, particularly in containerized environments. My career started with Ceph Storage Engineering, focusing... Read More →

Artem Torubarov

Software engineer, Clyso GmbH

Senior software engineer with over 10 years of experience. I’m a passionate advocate for Go, Kubernetes, and the CNCF ecosystem. Most part of my careed developed deistributed backend applications. Currently, I work at Clyso, focusing on storage technologies, including running Ceph... Read More →

Wednesday April 2, 2025 11:15 - 11:45 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Rook

12:00 BST

KEDA: Unlocking Advanced Event-Driven Scaling for Kubernetes - Zbynek Roubalik, Kedify & Jorge Turrado, SCRM Lidl International Hub

Wednesday April 2, 2025 12:00 - 12:30 BST

Platinum Suite | Level 3 | Room 3-4

KEDA continues to evolve, introducing powerful new capabilities that make event-driven scaling in Kubernetes more flexible, secure, and insightful. In this session, we’ll delve into the latest enhancements launched over the past year, including:
- OpenTelemetry Integration: Gain richer observability of autoscaling behavior and system performance.
- Admission Webhooks: Achieve finer-grained control and streamlined validation of scaling actions.
- Security Improvements: Protect your production environments with strengthened, built-in security measures.
- Expanded Scalers & HTTP Scaling: Scale from an even broader range of event sources and natively handle HTTP-based scaling.
- Additional Fixes & Improvements: Benefit from smaller adjustments and refinements that further enhance performance and usability.
- Future?!

Join us to learn how these innovations can reshape your approach to dynamic autoscaling in event-driven workloads, helping you maximize resource efficiency and reliability.

Speakers

Zbynek Roubalik

CTO, Kedify

Zbynek is a founder and CTO of Kedify, a company specializing in enterprise-grade autoscaling of Kubernetes applications. He is also the maintainer of KEDA, a CNCF project focused on enabling autoscaling for event-driven applications on Kubernetes. Zbynek has previously served as... Read More →

Jorge Turrado

Principal SRE, SCRM Lidl International Hub

I have over 8 years of experience working in software development, including development, infrastructure architecture, and monitoring. Currently, I am an SRE at SCRM Lidl International Hub, as well as a Microsoft MVP award recipient for 6 years in a row and a CNCF Ambassador. I... Read More →

Wednesday April 2, 2025 12:00 - 12:30 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Keda

12:00 BST

SIG Instrumentation Introduction and Deep Dive - Damien Grisonnet & Pranshu Srivastava, Red Hat; Yongrui Lin & Richa Banker, Google

Wednesday April 2, 2025 12:00 - 12:30 BST

Level 3 | ICC Capital Suite 7-9

Kubernetes SIG Instrumentation is responsible for ensuring high quality and consistent instrumentation across the Kubernetes project. We will begin with an introductory overview of the efforts the SIG Instrumentation has worked on in the past and is currently working on. This deep dive session will go into detail about currently ongoing efforts happening within SIG Instrumentation to share with the audience concrete pieces of work to encourage future collaboration. Software engineering and operations are both disciplines practiced in SIG Instrumentation, and any experience will help the special interest group's mission. Join this session to learn how to get involved in SIG Instrumentation to make instrumentation even better!

Speakers

Pranshu Srivastava

Senior Software Engineer, Red Hat

I work on improving O11y for Red Hat's OpenShift cloud platform, and Kubernetes' instrumentation APIs, as well as its sub-projects, as a SIG Instrumentation co-chair.

Damien Grisonnet

Senior Software Engineer, Red Hat

Damien Grisonnet is a Software Engineer at Red Hat, he is very active in the monitoring ecosystem of Kubernetes for which he serves as a technical lead for Kubernetes SIG Instrumentation as well as a maintainer for projects such as kube-state-metrics, metrics-server, and prometheus-adapter... Read More →

Richa Banker

Software Engineer, Google

Co-chair for SIG Instrumentation, with some ongoing contributions to SIG API machinery. Working on GKE upgrades at Google.

Yongrui Lin

Software Engineer, Google

Software Engineer since 2018.

Wednesday April 2, 2025 12:00 - 12:30 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Instrumentation

12:00 BST

Standardizing CI/CD Observability With OpenTelemetry: Insights From the CI/CD Observability SIG - Dotan Horovits, OpenObservability Talks & Adriel Perkins, Liatrio

Wednesday April 2, 2025 12:00 - 12:30 BST

Level 3 | ICC Capital Suite 10-12

We all know that observability is a must-have for operating systems in production. But we often neglect our own backyard - our software release process. As a result, we also lack standardization, and each CI/CD tool invent its own way of reporting about pipeline runs, which causes fragmentation, lock-in and difficulty to leverage existing observability tools.

We've been talking about the need for a common "language" for reporting and observing CI/CD pipelines for years, and finally, we see the first "words" of this language entering the "dictionary" of observability - the OpenTelemetry open specification and semantic conventions. On this talk the OTel CI/CD SIG leads will share the need, and the work of the SIG.

Join us to learn about this new SIG, its role, the milestones achieved and roadmap ahead. The talk will also discuss the alignment with adjacent open source communities such as the CDF's Jenkins and CDEvents and the Eiffel community.

Speakers

Dotan Horovits

Ambassador, CNCF

Horovits is an international speaker and thought leader, as well as a CNCF Ambassador and the host of the successful OpenObservability Talks podcast.Currently working as senior developer advocate for the Open Source Strategy & Marketing team at AWS, Horovits evangelizes on Observability... Read More →

Adriel Perkins

Principal Engineer, Liatrio

Adriel is a Principal Engineer at Liatrio with a passion for Security and Observability. His journey has led him through the intricate corridors of FedRAMP JAB authorizations in the government sector to the dynamic and collaborative realm of OpenTelemetry in the open-source community... Read More →

Wednesday April 2, 2025 12:00 - 12:30 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Instrumentation

12:00 BST

Wasm I Right or Wasm I Wrong? a Review of the Wasm Ecosystem - Taylor Thomas, Cosmonic & David Justice, Microsoft

Wednesday April 2, 2025 12:00 - 12:30 BST

Level 3 | ICC Capital Suite 14-16

WebAssembly (Wasm) has long been touted as the next era of compute, with its portability, security, and efficiency. But many people still question if it is ready for production usage. Once rooted in browsers, Wasm has found a home at the edge, in serverless platforms, and in many of the CNCF projects you know and love. Early experiments often meant fumbling with custom ABIs, but the advent of the component model makes interoperability and composability a breeze. In this talk, David and Taylor, two of the Wasm WG chairs, will cover Wasm’s journey from its browser origins to its role as a building block of cloud-native applications. They’ll show how CNCF projects are leveraging Wasm today, from spinning up services to extending existing stacks, all without getting bogged down in bespoke ABIs. Then they’ll finish with a candid discussion about the component model, its strengths and weaknesses, and how you can successfully use it in your projects today.

Speakers

David Justice

Principal Engineer Lead, Microsoft

David Justice is a Principal Software Engineer Lead in Microsoft's Azure Container Upstream team. He leads teams focused on high performance Kubernetes cloud infrastructure, micro-virtual machines, and server-side WebAssembly. David is also a co-chair of the TAG-Runtime Wasm working... Read More →

Taylor Thomas

Engineering Director, Cosmonic

Taylor Thomas is an Engineering Director working on WebAssembly platforms at Cosmonic. He actively participates in the open source community and is one of the creators of Krustlet and Bindle. He is a CNCF Ambassador and a regular speaker at various open source conferences and meetups... Read More →

Wednesday April 2, 2025 12:00 - 12:30 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Runtime

12:00 BST

What's New With Kubectl and Kustomize … and How You Can Help! - Eddie Zaneski, Defense Unicorns; Marly Salazar, Integral Ad Science; Maciej Szulik, Defense Unicorns

Wednesday April 2, 2025 12:00 - 12:30 BST

Platinum Suite | Level 3 | Room 1-2

Have you ever wondered how kubectl and kustomize enhancements are designed and built? Curious why your favorite feature request wasn't accepted? Join the folks from Kubernetes SIG CLI to find out!

In this session, the SIG CLI maintainers will provide an introduction to the tooling they are working on and an overview of how to get started contributing. They will share the work done over the past year and the roadmap for what is next. Join us to help shape your favorite tools!

Speakers

Maciej Szulik

Staff Platform Engineer, Defense Unicorns

Maciej is a passionate developer with almost two decades of experience in many languages. Currently he's working on Kubernetes for Defense Unicorns. Whereas at night he is hacking on side projects with python. In his spare time he enjoys reading a good book or taking photos.

Eddie Zaneski

Technical Advisor to the CTO, Defense Unicorns

Eddie lives in Denver, CO with his wife and dog. He loves open source and works on the Kubernetes project. When not hacking on random things you'll most likely find him climbing rocks somewhere.

Marly Salazar

Staff Engineer, Integral Ad Science

I am a software engineer with a heavy background in legacy and on premises systems, and migrating those to the cloud, modernizing and automating them. I have been working on the kubernetes project for a year and a half, primarily on kubectl.

Wednesday April 2, 2025 12:00 - 12:30 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, CLI

14:30 BST

A Practical Guide To Kubernetes Policy as Code - Jim Bugwadia, Nirmata; Rita Zhang, Microsoft; Andy Suderman, Fairwinds; Joe Betz, Google

Wednesday April 2, 2025 14:30 - 15:00 BST

Level 3 | ICC Capital Suite 7-9

Policies play a critical role in ensuring Kubernetes security, compliance, and governance in your clusters. However, navigating the evolving array of options and implementation strategies can be overwhelming.

Join Rita (Gatekeeper, SIG-Auth), Joe (ValidatingAdmissionPolicy, SIG-API-Machinery), Jim (Kyverno, Policy WG), and Andy (Goldilocks, Policy WG) as they share their collective expertise to help you build a robust Policy as Code (PaC) solution for your organization.

In this session, they’ll explain what PaC is, why it’s essential, and demonstrate how to effectively use built-in Kubernetes features like ValidatingAdmissionPolicy and MutatingAdmissionPolicy alongside CNCF policy engines such as OPA/Gatekeeper and Kyverno to manage your PaC lifecycle.

Speakers

Jim Bugwadia

Founder and CEO, Nirmata

Jim Bugwadia is a co-founder and the CEO of Nirmata, the Kubernetes policy and governance company. Jim is an active contributor in the cloud native community and currently serves as co-chair of the Kubernetes Policy and Multi-Tenancy Working Groups. Jim is also a co-creator and maintainer... Read More →

Rita Zhang

Principal software engineer, Kubernetes SIG Auth co-chair, Security Response Committee, Microsoft

Rita Zhang is a Principal software engineer at Microsoft, based in San Francisco bay area. She leads the Azure Container Upstream team of maintainers and contributors building features for Kubernetes upstream and CNCF projects. She is a Kubernetes sig-auth chair, a member of the Kubernetes... Read More →

Joe Betz

Staff Software Engineer, sig-api-machinery TL, Google

Joe Betz is a tech lead of the Kubernetes api-machinery SIG. Joe has contributed to extensibility features including custom resources, admission webhooks, and CEL. Joe has also contributed to etcd as a project maintainer.

Andy Suderman

CTO, Fairwinds

Andy Suderman is CTO at Fairwinds, a managed Kubernetes-as-a-Service provider. Andy has worked with cloud native technologies for the last eight years helping organizations adopt and manage Kubernetes. Andy is the creator and primary developer of Goldilocks—an open source tool that... Read More →

Wednesday April 2, 2025 14:30 - 15:00 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Policy

14:30 BST

Cloud Native Storage and Data: The CNCF Storage TAG Projects, Technology & Landscape - Raffaele Spazzoli, Red Hat; Alex Chircop, Akamai

Wednesday April 2, 2025 14:30 - 15:00 BST

Level 3 | ICC Capital Suite 10-12

This talk will introduce the CNCF Storage TAG and discuss how the TAG operates, how we work with CNCF Storage projects, and the work we have done to build guidance and write whitepapers for the ecosystem. During this session we will cover an overview of storage and data projects in the CNCF, including the broader ecosystem, as well as projects that are currently being reviewed. We will also share updates of our latest work including the CNCF Storage Whitepaper, Performance and Benchmarking whitepaper, Cloud Native Disaster Recovery whitepaper, and the Data on Kubernetes whitepapers on database patterns and AI/ML workloads. Join us to find out how to contribute and participate in the CNCF storage community and discover practical guidance on how to use cloud native storage in your environments.

Speakers

Alex Chircop

Chief Architect, Akamai

Chief Architect at Akamai. Previously a founder and CTO of Ondat (formerly StorageOS), building software defined solutions for cloud native environments. Alex is also a co-chair of the CNCF Storage TAG. Before embarking on the startup adventure he spent over 25 years engineering infrastructure... Read More →

Raffaele Spazzoli

Senior Principal Architect, red hat

Raffaele is a full-stack enterprise architect with 20+ years of experience. Currently Raffaele covers a consulting position of cross-portfolio application architect with a focus on OpenShift. Most of his career Raffaele worked with large financial institutions allowing him to acquire... Read More →

Wednesday April 2, 2025 14:30 - 15:00 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Storage

14:30 BST

Enhancing CRI-O With CDI: Streamlining Device Integration in Kubernetes - Harshal Patil, Red Hat

Wednesday April 2, 2025 14:30 - 15:00 BST

Level 3 | ICC Capital Suite 14-16

The Container Device Interface (CDI) offers a standardized approach for integrating third-party devices into containerized environments, simplifying the complexities associated with device management. In this session, we will explore the innovative application of CDI within the CRI-O runtime to enhance device support in Kubernetes clusters.

Attendees will gain insights into:

1. CDI Fundamentals: Understanding the architecture and benefits of CDI in container runtimes.
2. CRI-O Integration: How CRI-O leverages CDI to manage device configurations seamlessly.
3. Practical Applications: Real-world examples demonstrating the deployment of devices using CDI in CRI-O, including GPU acceleration and custom hardware support.

This session is tailored for users interested in deepening their understanding of device management within Kubernetes. Join us to discover how CDI integration in CRI-O can simplify and enhance your Kubernetes deployments.

Speakers

Harshal Patil

Principal Software Engineer, RedHat

Harshal is an Open Source developer working on Kubernetes and cri-o. At Redhat, he focuses on kubelet, cri-o and sigstore related projects. In past, Harshal has contributed in introducing manifest list images, encrypted container images, secure containers using kata, evented pleg... Read More →

Wednesday April 2, 2025 14:30 - 15:00 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, cri-o

14:30 BST

Mastering Efficiency in Argo CD: Scaling Smarter, Not Costlier - Alexander Matyushentsev, Akuity

Wednesday April 2, 2025 14:30 - 15:00 BST

Platinum Suite | Level 3 | Room 1-2

Argo CD is a tool that automates the management of Kubernetes clusters and enhances developer productivity. Providing a single pane of glass for managing multiple clusters is a challenging task that requires significant computing resources, which can lead to increased cloud expenses.

Maintainers and Argo CD users have been working collaboratively to identify bottlenecks that drive up cloud costs and develop effective solutions. Many of these findings have been integrated into the product, while others have resulted in best practices that users can adopt to minimize the cost of running Argo CD.

In this presentation, we will explore the architecture of Argo CD and identify components that may incur higher costs as Argo CD scales. We will cover the improvements introduced in recent releases. Finally, we will share best practices that users can follow to optimize the cost of running Argo CD, along with several known edge cases that can be expensive and the corresponding solutions.

Speakers

Alexander Matyushentsev

Chief software architect, Akuity

Argo Co-Creator, Argo CD Lead, and maintainer. Energetic and passionate software engineer with over a decade of software development experience. I'm an enthusiast of continuous integration, agile environments, and a huge open-source believer. Core contributor and maintainer of http://argoproj.io... Read More →

Wednesday April 2, 2025 14:30 - 15:00 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Argo, Argo CD

14:30 BST

Scalable DNS With CoreDNS Plugins: A Deep Dive - Yong Tang, Ivanti & John Belamaric, Google

Wednesday April 2, 2025 14:30 - 15:00 BST

Platinum Suite | Level 3 | Room 3-4

CoreDNS is a highly flexible and extensible DNS server widely recognized as the default DNS solution in Kubernetes. With its strong focus on service discovery, CoreDNS has gained popularity in various cloud-native environments. Its adaptability is largely driven by a plugin-based architecture, allowing developers to easily introduce new features and optimize performance at various levels. In this session, we will dive deep into CoreDNS’s extensive plugin ecosystem, examining several plugins that significantly enhance DNS scalability in Kubernetes. We’ll also walk through developing a Go-based demo plugin that leverages source IP for service discovery. Finally, we will look at the latest project updates and outline the roadmap for the CoreDNS community moving forward.

Speakers

Yong Tang

Senior Director of Engineering, Ivanti

Yong Tang is Senior Director of Engineering at Ivanti. He is a core maintainer of CoreDNS and contributes to many container, cloud-native, and machine learning projects for the open source community. In addition to CoreDNS, he is a maintainer of Docker/Moby. He is also a maintainer... Read More →

John Belamaric

Senior Staff Software Engineer, Google

John is a Sr Staff SWE, co-chair of K8s SIG Architecture and of K8s WG Device Management, helping lead efforts to improve how GPUs, TPUs, NICs and other devices are selected, shared, and configured in Kubernetes. He is also co-founder of Nephio, an LF project for K8s-based automation... Read More →

Wednesday April 2, 2025 14:30 - 15:00 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, CoreDNS

15:15 BST

SIG-Node: Intro and Deep Dive - Sergey Kanzhelev & Dixita Narang, Google; Francesco Romani & Peter Hunt, Red Hat

Wednesday April 2, 2025 15:15 - 15:45 BST

Level 3 | ICC Capital Suite 14-16

This session covers the latest updates in the Kubernetes Node subsystem. SIG Node owns components like Kubelet, Container Runtime Interface (CRI), Node API. SIG Node is responsible for Pod lifecycle from allocation to teardown, shared (“classic”) resource management, topology alignment and device access via device plugins. SIG Node is also a major contributor of the Dynamic Resource Allocation (DRA) which is becoming the bedrock of the new generation or resource management. We work with container runtimes, kernels, networking, storage, and more; anything between the pod and the underlying hardware that runs them is in SIG Node’s purview!

The session will be interesting for end users, seasoned contributors, and people seeking to get involved. Attendees will leave the session with a better understanding of the latest developments like DRA, PSI, pod level resources, in-place VPA and more, as well as understand the roadmap in these days of AI/ML and other workloads adoption.

Speakers

Narang Dixita Sohanlal

Software Engineer, Google

Dixita Narang is a Software Engineer at Google on the Kubernetes Node team. With a primary focus on resource management within Kubernetes, Dixita is deeply involved in the development and advancement of the Memory QoS feature, which is currently in the alpha stage. She is a new contributor... Read More →

Peter Hunt

Senior Software Engineer, Red Hat

Peter Hunt is a Senior Software Engineer working at Red Hat. Passionate about free software, Peter focuses on being a chair for SIG node, maintaining CRI-O, and ~writing~ squashing bugs. Outside of the virtual world, Peter likes collecting floral-printed pants, cooking, and danci... Read More →

Francesco Romani

software engineer, Red Hat

Principal software engineer, joined Red Hat in late 2013, involved in open source projects since 2006. Worked in Red Hat about all things virtualization, then moved to the cloud native virtualization and now on cloud-native network functions. Currently works in the resource management... Read More →

Sergey Kanzhelev

Staff Software Engineer, Google

Sergey Kanzhelev is a seasoned cloud native maintainer. Sergey a chair of Kubernetes SIG node and one of the approvers. He is a co-founder of OpenTelemetry. He is working on both - engineering aspect of software and its practical application. With the Kubernetes, he is contributing... Read More →

Wednesday April 2, 2025 15:15 - 15:45 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Kubernetes, SIG Node

15:15 BST

Simplifying Apache Kafka on Kubernetes With Strimzi - Lukáš Král & Gantigmaa Selenge, Red Hat

Wednesday April 2, 2025 15:15 - 15:45 BST

Level 3 | ICC Capital Suite 10-12

When it comes to data streaming platforms for modern event driven architectures, Apache Kafka has become the most popular choice. However managing Kafka clusters on Kubernetes brings its own set of challenges such as upgrades, topics management and scaling. This is where Strimzi shines, it’s a CNCF incubating project that makes running Kafka on Kubernetes seamless.

In this talk, we will briefly introduce Strimzi and its key features, exploring how it simplifies not just Day 1 but also Day 2 operations in a Kubernetes native way. We will then deep dive into Strimzi’s recent enhancements such as KRaft migration, auto rebalancing, and tiered storage. Finally, we will give you a sneak peek into what’s next for Strimzi, including exciting upcoming features.

Whether you're a beginner or an experienced Kubernetes practitioner, this talk will equip you with the knowledge and tools to leverage Strimzi for Kafka on Kubernetes.

Speakers

Gantigmaa Selenge

Senior Software Engineer, Red Hat

Gantigmaa Selenge is a Senior Software Engineer working on Red Hat AMQ Streams, where she focuses on adapting the Apache Kafka ecosystem to be offered as a distributed and high-performance data streaming platform. She contributes to the development of both Apache Kafka and Strimzi... Read More →

Lukáš Král

Senior Software Quality Engineer, Red Hat

Lukas Kral is a Senior Software Quality Engineer at RedHat, working on projects related to Apache Kafka. One of them is Strimzi, a CNCF project for running Apache Kafka on Kubernetes, where he is also one of the maintainers. His main focus is on testing and providing automation of... Read More →

Wednesday April 2, 2025 15:15 - 15:45 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Strimzi

15:15 BST

Simplifying the Networking and Security Stack With Cilium, Hubble, and Tetragon - Bill Mulligan & Anna Kapuścińska, Isovalent at Cisco; Dorde Lapcevic, Google; Amir Kheirkhahan, DBSchenker

Wednesday April 2, 2025 15:15 - 15:45 BST

Level 3 | ICC Capital Suite 7-9

Join us as we celebrate nearly a decade of Cilium, now the de-facto standard CNI for Kubernetes and a cornerstone of cloud native networking, observability, and security. This session provides updates on the latest Cilium release and showcases how its unified eBPF-powered stack is transforming Kubernetes environments by replacing fragmented toolchains with seamless, secure, scalable, and simplified solutions.

We’ll explore features like multi-cluster networking, scaling to 65,000 nodes, and service mesh use cases and dive into sub-projects Hubble for network observability and Tetragon’s security observability and runtime enforcement. Hear from contributors and adopters DB Schenker, Google, and Isovalent about how Cilium is simplifying the cloud native stack and solidifying its role as the comprehensive networking and security solution for modern cloud native architectures.

Speakers

Bill Mulligan

Community Builder, Isovalent at Cisco

Bill Mulligan is a cloud native pollinator and community builder. He has given talks, written articles, and appeared on podcasts on a wide range of topics around cloud native. While at CNCF he restarted the Kubernetes Community Day program. He is currently at Isovalent growing the... Read More →

Amir Kheirkhahan

Platform engineer, DBSchenker

Amir is a platform engineer at DB Schenker, responsible for designing and implementing infrastructure solutions for development squads.His key responsibilities encompass the deployment and maintenance of a comprehensive toolchain within Kubernetes environments, the optimization of... Read More →

Dorde Lapcevic

Senior Software Engineer, Google

Dorde is a software engineer at Google, working on networking performance and scalability of GKE (Google Kubernetes Engine). The main part of the work is designing scalable networking features, optimizing their performance and reliability and testing the system to the limits, to be... Read More →

Anna Kapuścińska

Software Engineer, Isovalent at Cisco

Anna is a software engineer at Isovalent, focusing on eBPF-based observability and security. Her previous roles span the industry: she wore both developer and SRE hats, and worked in AdTech, FinTech, public healthcare, end-user SaaS company and a hosting provider. On good weather... Read More →

Wednesday April 2, 2025 15:15 - 15:45 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Cilium

15:15 BST

What's New in gRPC - Kevin Nilson, Google

Wednesday April 2, 2025 15:15 - 15:45 BST

Platinum Suite | Level 3 | Room 3-4

This talk will go through all the exciting new features we have recently added to gRPC. We will be covering topics such as OpenTelemetry, Service Mesh, K8s Gateway APIs and GAMMA. We will also cover tips and tricks for building a Microservices Application with gRPC.

Speakers

Kevin Nilson

Software Engineering Manager, Google

Kevin works at Google as a Software Engineer Manager on the gRPC team. At Google Kevin has worked on projects such as Chromecast, Google Home, Stadia and now gRPC. Kevin is a Java Champion and four time JavaOne Rock Star. Kevin has spoken at conferences such as Google I/O, JavaOne... Read More →

Wednesday April 2, 2025 15:15 - 15:45 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, gRPC

15:15 BST

What's New in Knative Eventing: Security, Discovery, Integrations, and JobSink - Pierangelo Di Pilato & Christoph Stäbler, Red Hat

Wednesday April 2, 2025 15:15 - 15:45 BST

Platinum Suite | Level 3 | Room 1-2

Knative Eventing continues to evolve, empowering developers with robust tools to build event-driven applications in the cloud-native ecosystem. In this session, we'll explore the latest features, including:

- Security: HTTPS endpoints, OIDC token integration, and per-source service accounts for secure communication
- Event Discovery: the event registry enables you to discover and understand the types of events that your event meshes can handle
- Integrations: the growing ecosystem of event sources and sinks, designed to broaden the reach of Knative Eventing in diverse workflows
- JobSink: unlocks long-running asynchronous jobs by leveraging Kubernetes batch jobs and queuing systems, addressing the limitations of traditional serverless event processing

Whether you're a seasoned Knative user or just getting started, this talk will provide actionable insights and demonstrate how Knative Eventing continues to enable event-driven architecture for cloud-native applications.

Speakers

Christoph Stäbler

Senior Software Engineer, Red Hat

Christoph is a Software Developer at Red Hat and an active contributor to the Knative project. He specializes in serverless technologies with a focus on event-based architectures and the further development of Knative Eventing.

Pierangelo Di Pilato

Principal Software Engineer, Red Hat

Pierangelo is a principal software engineer at Red Hat. He leads the Knative Eventing Working Group and has a passion for data, event-driven and streaming systems.

Wednesday April 2, 2025 15:15 - 15:45 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Knative, Eventing

16:15 BST

Dapr in 2025: Durable Execution for AgenticAI Systems and Becoming the Backbone of App Platforms - Yaron Schneider, Diagrid

Wednesday April 2, 2025 16:15 - 16:45 BST

Platinum Suite | Level 3 | Room 3-4

In this maintainer track we'll cover existing and upcoming features that allow developers to more easily create Agentic AI systems. We will also showcase Dapr's role as an Application Developer Platform that is filling the gap required to govern and regulate access from applications to their underlying infrastructure and providing zero-trust security across both service to service and service to infrastructure interactions.

Speakers

Yaron Schneider

CTO, Diagrid

Yaron co-created the CNCF projects Dapr and KEDA while at Microsoft and led the engineering architecture for serverless container platforms that run at scale using open source technologies. Yaron is an avid lover of open source tech and distributed systems, and is a co-founder and... Read More →

Wednesday April 2, 2025 16:15 - 16:45 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Dapr

16:15 BST

Flux Ecosystem Evolution - Stefan Prodan, ControlPlane & Sanskar Jaiswal, Kong

Wednesday April 2, 2025 16:15 - 16:45 BST

Platinum Suite | Level 3 | Room 1-2

In this session, Stefan and Sanskar will talk about the latest developments in the Flux CD ecosystem and how the Flux project has evolved over the past year.

Stefan will introduce Flux Operator, a new component that enhances the Flux UX with high-level abstractions for defining GitOps workflows. He will showcase Headlamp's new plugin that comes with a set of dashboards for monitoring Flux and debugging GitOps pipelines.

Sanskar will present the latest features of Flagger and how Gateway API plays an essential role in enabling progressive delivery for Kubernetes applications.

Finally, they will discuss the roadmap for Flux & Flagger and how the community can contribute to the project's success.

Speakers

Sanskar Jaiswal

Software Engineer, Kong

Sanskar works as a software engineer at Kong Inc. working on building serverless API gateways. He's also a maintainer of Flux and Flagger. He is passionate about contributing to OSS with him being involved in Kubernetes SIG-Network projects and kube-rs. He loves reading about distributed... Read More →

Stefan Prodan

Principal Engineer, ControlPlane

Stefan is a Principal Engineer at ControlPlane and an open source contributor to cloud-native projects. He is the creator of Flagger the progressive delivery operator for Kubernetes, and a core maintainer of the CNCF's Flux project. Stefan has over 20 years of experience with software... Read More →

Wednesday April 2, 2025 16:15 - 16:45 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Flux

16:15 BST

Kubernetes Data Protection WG Deep Dive - Dave Smith-Uchida, Veeam

Wednesday April 2, 2025 16:15 - 16:45 BST

Level 3 | ICC Capital Suite 7-9

Data Protection WG is dedicated to promoting data protection support in Kubernetes. The Working Group is working on identifying missing functionalities and collaborating across multiple SIGs to design features to enable data protection in Kubernetes. In this session, we will discuss what is the current state of data protection in Kubernetes and where it is heading in the future. We will also talk about how interested parties (including storage and backup vendors, cloud providers, application developers, and end users, etc.) can join this WG and contribute to this effort. Details of the WG can be found here: https://github.com/kubernetes/community/tree/master/wg-data-protection.

Speakers

Dave Smith-Uchida

Technical Leader, Veeam

Dave has been a leader in data protection for Kubernetes for the last several years. In addition to his work at Veeam on K10, he is a founding member of the Kubernetes Data Protection Working Group and was formerly the architect for the Velero Open Source Kubernetes backup project... Read More →

Wednesday April 2, 2025 16:15 - 16:45 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Data Protection

16:15 BST

SIG Cloud Provider Deep Dive: Testing Cloud Controller Managers - Michael McCune, Red Hat; Bridget Kromhout, Microsoft; Walter Fender, Google

Wednesday April 2, 2025 16:15 - 16:45 BST

Level 3 | ICC Capital Suite 10-12

Recent discussions in SIG Cloud Provider have focused on improving our testing, and it turns out that testing cloud controllers is complicated. In this presentation the maintainers will explain in detail how such testing is accomplished, and what you can do to help ensure that the cloud controller tests cover more infrastructure providers.

Testing isn’t just a technical topic to discuss in the bike shed though; it is also vital to ensuring the confidence in, and quality of, Kubernetes. The SIG maintainers will discuss how doing more testing in the Kubernetes community will lead to a better platform for everyone. Expect to walk away from this talk with a clear vision for what SIG Cloud Provider is planning for the next generation of tests, and how you can contribute to that effort!

Speakers

Michael McCune

Senior Principal Software Engineer, Red Hat

Michael McCune is a software developer creating open source infrastructure and applications for cloud platforms. He has a passion for problem solving and team building, and a lifelong love of music, food, and culture.

Bridget Kromhout

Principal Product Manager, Microsoft

Bridget Kromhout is a Principal Product Manager at Microsoft Azure, focusing on the open source cloud native ecosystem. Her CS degree emphasis was in theory, but she now deals with the concrete (if 'cloud' can be considered tangible). After years on call for production (from enterprise... Read More →

Walter Fender

Staff Engineer, Google

Graduated from U.C. Berkeley. Working at Google and on Kubernetes API Machinery and Cloud Provider for eight years. Maintainer for the APIServer Network Proxy and Config Connector projects.

Wednesday April 2, 2025 16:15 - 16:45 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Cloud Provider

16:15 BST

The State of Backstage in 2025 - Ben Lambert, Camila Loiola, Fredrik Adelöw, Patrik Oldsberg & Vincenzo Scamporlino, Spotify

Wednesday April 2, 2025 16:15 - 16:45 BST

Level 3 | ICC Capital Suite 14-16

The Backstage project has seen a big push for stability and maturity in the last year. Backstage’s new backend system had its stable 1.0 release, and a lot of work has gone into the new frontend system as well, all towards the end goal of making Backstage easier to manage and extend. During this work there has still been space to ship many new features and improvements, both big and small.

Join the maintainers for a session featuring project updates, feature highlights, and live demos, as is tradition. Among the topics covered will be success stories from running Backstage at Spotify's scale with thousands of members of the engineering organization and an ever growing catalog.

Finally there will be a look toward the future, highlighting the upcoming roadmap items and what to be excited for in the coming year!

Speakers

Patrik Oldsberg

Senior Engineer, Spotify

Patrik is a Senior Software Engineer at Spotify and a core maintainer of Backstage. In 2019 he joined the team in Spotify’s platform organization that owned the Backstage platform, and worked together with the rest of the team to bring it out in the open. Before joining Spotify... Read More →

Ben Lambert

Senior Software Engineer, Spotify

Ben is a Senior Engineer at Spotify, where he spends most of his time working on Backstage, the Open Source framework for building Developer Portals. Ben's passion for modern software engineering is evident in his contributions to Backstage and commitment to fostering a thriving developer... Read More →

Vincenzo Scamporlino

Senior Software Engineer, Spotify

Vincenzo is a Senior Software Engineer at Spotify, based in Stockholm, and members of the Backstage core team. With a career that began as a Mobile Engineer in Digital Creative Agencies, he later transitioned to Full-Stack Engineering. Today, you might find him on Discord, engaging... Read More →

Camila Loiola

Software Engineer, Spotify

Software engineer, teacher, and speaker who loves developer experience tools.

Fredrik Adelöw

Core Maintainer of Backstage, Senior Engineer at Spotify, Spotify

Core maintainer of Backstage, at Spotify

Wednesday April 2, 2025 16:15 - 16:45 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Backstage

17:00 BST

How To Gateway With Ingress - 140 Days InGate - Marco Ebert, Giant Swarm & James Strong, Isovalent at Cisco

Wednesday April 2, 2025 17:00 - 17:30 BST

Level 3 | ICC Capital Suite 14-16

It still seems like yesterday when we announced this new project for a Gateway API implementation based on NGINX at KubeCon NA 2024.

Now, around 4.5 months later, we'd like to check in with you on what we've built so far, the features we're glad to support, the challenges we've faced and continue to face, and the exciting times and tasks that still await us.

We'd love for you to stop by and join us on our wonderful journey to a new Gateway API implementation!

Speakers

James Strong

solution architect, isovalent at cisco

James has been working in the cloud for 7 years. He helped build a private cloud at GE Appliances and developed and supported REST API's in AWS on docker. Recently he has passed the CNCF's CKA exam and helps companies migrate their applications to Kubernetes.

Marco Ebert

Site Reliability Engineer, Giant Swarm

I'm Marco - working in Open Source for more than a decade, with Kubernetes since 2016 and as a maintainer of Ingress NGINX since 2023! As an SRE, I'm always interested in infrastructure & networking and love learning new stuff while troubleshooting complex platforms. After work... Read More →

Wednesday April 2, 2025 17:00 - 17:30 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Network

17:00 BST

Jaeger V2: OpenTelemetry at the Core of Modern Distributed Tracing - Jonah Kowall, Paessler & Pavol Loffay, Red Hat

Wednesday April 2, 2025 17:00 - 17:30 BST

Level 3 | ICC Capital Suite 10-12

Discover Jaeger v2, where OpenTelemetry is now fundamentally integrated into the project's core architecture. This session explores how OpenTelemetry has become the central framework driving Jaeger's capabilities, transforming distributed tracing and observability. We'll highlight the key architectural advances and the project's evolution, focusing on how embedding OpenTelemetry at the core enables more powerful, standardized tracing across diverse system environments. Attendees will learn about the fully integrated Helm chart and Kubernetes operator, simplifying observability workflows. The presentation concludes by discussing the project's forward-looking roadmap and opportunities for community involvement through LFX and Google Summer of Code programs.

Speakers

Jonah Kowall

SVP Product and Design, Paessler

Jonah Kowall, computer scientist and open-source contributor to OpenSearch, Jaeger, OpenTelemetry. A technical leader across startups to large enterprises specialized in operations, security, and performance. Led Gartner research on monitoring. Product leadership at AppDynamics, Cisco... Read More →

Pavol Loffay

Principal software engineer, Red Hat

Pavol Loffay is a principal software engineer at Red Hat working on open-source observability technology for modern cloud-native applications. Pavol contributes and maintains Cloud Native Computing Foundation (CNCF) projects OpenTelemetry and Jaeger. In his free time, Pavol likes... Read More →

Wednesday April 2, 2025 17:00 - 17:30 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Jaeger

17:00 BST

Leveraging the Little Known Features of Artifact Hub - Matt Farina, SUSE

Wednesday April 2, 2025 17:00 - 17:30 BST

Level 3 | ICC Capital Suite 7-9

Artifact Hub has numerous special features that sit right below the surface. Did you know that Artifact Hub can notify you when an artifact has a new release? Did you know that artifacts can expose special metadata to Artifact Hub that can be used to show more rich information? These are just a taste of some of the more interesting things about Artifact Hub.

In this session you'll learn about the parts of Artifact Hub that sit below the surface. Those extras you might want to take advantage of in your own use, from delivering artifacts to finding and keeping up with the ones you use.

Speakers

Matt Farina

Distinguished Engineer, SUSE

Matt works as a Distinguished Engineer at SUSE as the chief architect of the Rancher team, focusing on cloud native technologies. He is also a maintainer on Helm and Artifact Hub. Matt is an author, speaker, and regular contributor to open source.

Wednesday April 2, 2025 17:00 - 17:30 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, ArtifactHub

17:45 BST

Attesting and Verifying Your Software Supply-Chain With In-toto - Alan Chung Ma, Keytos & Justin Cappos, New York University

Wednesday April 2, 2025 17:45 - 18:15 BST

Level 3 | ICC Capital Suite 7-9

in-toto is a framework that allows users to protect their software supply chain. The framework achieves this by providing two key capabilities: cryptographically attesting steps along the supply chain and enforcing policies that govern the relationships between the attestations.

This talk aims to introduce new users to in-toto and provide a brief overview of the progress made by all the subprojects and working groups.

Speakers

Justin Cappos

Professor, New York University

I am a professor at NYU who has been working on software supply chain security for more than 20 years. I am a maintainer / creator of the TUF, Uptane, and in-toto projects, which are all under the LF.

Alan Chung Ma

Software Engineer, Keytos

Alan is passionate about open software and has contributed to software supply chain security projects such as in-toto and sigstore. He is a software engineer at Keytos and graduated from Purdue University with a degree in Computer Engineering.

Wednesday April 2, 2025 17:45 - 18:15 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, in-toto

17:45 BST

Beyond CloudEvents: Endpoints, Messages, Schemas – CNCF XRegistry - Manuel Ottlik, HDI Global SE & Clemens Vasters, Microsoft Corporation

Wednesday April 2, 2025 17:45 - 18:15 BST

Level 3 | ICC Capital Suite 10-12

The CNCF xRegistry project is an offspring of the graduated CNCF CloudEvents project, motivated by the need to formally declare which events can be raised by services and which are available to handle. This session provides an overview of the xRegistry metadata model, its API and the mirroring document format, dives into reference implementations, explains its use in products, and shows you how you can leverage xRegistry to build robust and type-safe event pipelines.

Speakers

Manuel Ottlik

Manuel Ottlik, HDI Global SE

Manuel is the Product Owner of the Global Integration Platform at HDI Global SE. After he graduated in business computer science and applied computer science, he joined the financial industry in API management and eventually moved to HDI Global SE to merge a service bus, API management... Read More →

Clemens Vasters

Principal Architect, Microsoft Corporation

Clemens Vasters is Lead Architect in Microsoft’s Azure Messaging team that builds and operates a fleet of hyper-scale messaging services, including Event Grid, Service Bus, Event Hubs, Stream Analytics and Microsoft Fabric Eventstreams. Clemens represents Microsoft in messaging... Read More →

Wednesday April 2, 2025 17:45 - 18:15 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Cloudevents, xRegistry

17:45 BST

Buildpacks: Pragmatic Solutions To Quick and Secure Image Builds - Juan Bustamante, DBAccess & Aidan Delaney, Bloomberg

Wednesday April 2, 2025 17:45 - 18:15 BST

Level 3 | ICC Capital Suite 14-16

Buildpacks streamline the process of building, deploying, and managing applications by automating the creation of container images from source code. Their key objectives include detecting application dependencies, configuring runtime environments, and ensuring consistent builds across different platforms. By abstracting away complex infrastructure details, buildpacks enable faster deployments, enhance developer productivity, and ensure better security through standardized and reproducible workflows.

Speakers

Aidan Delaney

Bloomberg

Aidan is a Buildpacks.io maintainer and currently works in Bloomberg's Data License team.

Juan Bustamante

Computer Science Engineer, DBAccess

I joined Cloud Native Buildpacks in 2021, an open-source project that transforms the application source code into OCI images that can run on any cloud.I’ve been contributing to several features and bug fixes, but recently, I helped with the effort to improve the multi-architecture... Read More →

Wednesday April 2, 2025 17:45 - 18:15 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Buildpacks

11:00 BST

Expanding the Contributor Pipeline Through Inclusion - Khallai Taylor, E.ON Digital Technology; Sandeep Kanabar, Gen; Stéphane Este-Gracias, ITQ; Nancy Chauhan, Independent

Thursday April 3, 2025 11:00 - 11:30 BST

Level 3 | ICC Capital Suite 7-9

The growing demand for maintainers and contributors to sustain and evolve projects is an ongoing challenge. Yet, an untapped talent source—individuals from underrepresented groups—is often overlooked. Systemic barriers and a lack of inclusive practices most project members may not even realize.

This panel brings together members of TAG Contributor Strategy initiatives, including BIPOC, Women in Cloud Native, Blind and Visually Impaired, and Deaf and Hard of Hearing, to discuss how fostering inclusivity can unlock this potential. Panelists will share firsthand experiences of the barriers they’ve faced and discuss what a welcoming environment looks like from their perspectives.

Attendees will leave with actionable strategies to create more inclusive project spaces that attract and retain underrepresented contributors, ultimately ensuring the sustainability and vibrancy of open source for years to come.

Speakers

Khallai Taylor

Tech & Security Consultant, E.ON Digital Technology

On a day to day, I advise on OpenTelemetry, eBPF, and Observability architecture and integration at E.ON. I'm always open for a chat about all things OllY and belogining with in the CNCF community, starting with BIPOC! Let's Talk!

Nancy Chauhan

Student, Cornell University

I like hacking through software engineering problems. I have been developing solutions for software reliability and also like to break complicated concepts into easier tech content (blogs and videos).I have also worked in Dev Advocacy, amid the crossover of two things I like the most... Read More →

Stéphane Este-Gracias

CNCF Ambassador, ITQ

As an advocate for free and open-source software, I am dedicated to promoting innovation and collaboration. My passion has led me to participate in various initiatives, educating others about the benefits of using open-source software. Leveraging my expertise in cloud-native technologies... Read More →

Sandeep Kanabar

Lead Software Engineer, Gen (formerly NortonLifeLock)

Hailing from India, Sandeep is a passionate software engineer working at Gen (formerly NortonLifeLock). A frequent meetup speaker, Sandeep enjoys sharing his lessons learned from 15+ years in the tech space with the community. He's a staunch advocate for diversity and inclusion and... Read More →

Thursday April 3, 2025 11:00 - 11:30 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Contributor Strategy

11:00 BST

From the Observability TAG: Designing a Common Query Language for Observability Data - Alolita Sharma, Apple & Pereira Braga, Google

Thursday April 3, 2025 11:00 - 11:30 BST

Level 3 | ICC Capital Suite 10-12

Unifying query languages is key in reducing toil for app developers and end users to query and analyze observability data. A common query language that can leverage all observability data such as metrics, traces, profiles, events, logs to facilitate correlation, support trend analytics and provide end-to-end observability for AI applications. The Observability TAG QLS workgroup published a common query language spec in 2024. The workgroup recommended a SQL-like language. This talk will explore the design principles and challenges of creating a generic query language. It will delve into the core concepts, syntax, and semantics of such a language, drawing inspiration from SQL while addressing the unique requirements of observability data. It will also explore the trade-offs between simplicity, expressiveness, and performance. This query language convergence for end-to-end analytics could enhance reliability and operational efficiency for SREs and your app developers. A win-win for all.

Speakers

Alolita Sharma

OpenTelemetry Governance Committee Member, Observability Engineering at Apple, Apple

Pereira Braga

Observability Technical Steward, Principal Engineer, Google

I'm the technical Steward for Observability in xGE (Cross Google Engineering) and I'm the Chief Architect (Über Technical Leader) of a group of 100+ Engineers, who develop observability (monitoring, alerting, performance, investigation and risk) solutions for Google -> P2020 Mon... Read More →

Thursday April 3, 2025 11:00 - 11:30 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Observability

11:00 BST

Kubeflow Ecosystem: What’s Next for Cloud Native AI/ML and LLMOps - Johnu George, Nutanix; Andrey Velichkevich, Apple; Amber Graner, Kubeflow Project; Yuki Iwai, CyberAgent; Yuan Tang, Red Hat

Thursday April 3, 2025 11:00 - 11:30 BST

Level 3 | ICC Capital Suite 14-16

Over the years, Kubeflow has become one of the most widely adopted ML platforms on Kubernetes, managing the entire AI/ML lifecycle, from pipeline orchestration and data processing to distributed training, tuning, and inference. The challenges in the MLOps domain evolved over time with newer ML models and advancements in infrastructure capabilities. With the recent GenAI wave, users want to train and deploy custom LLMs on public clouds or on-premises infrastructure. Unlike traditional ML models, LLMs are massive, requiring significant data processing and computing resources for training and inference. The Kubeflow community has been working hard to provide first-class citizen support to generative models and their core abstractions, focusing more on LLMOps. In this talk, the speakers will discuss the requirements for the next-generation ML platform, its current shortcomings, the roadmap to solving these challenges and how you or your organization can contribute to Kubeflow’s success.

Speakers

Johnu George

Technical Director, Nutanix

Johnu George is a Technical Director at Nutanix with a background in distributed systems and large-scale hybrid data pipelines. He is an active in open-source and has steered several industry collaborations on projects like Kubeflow, Apache Mnemonic and Knative. His research interests... Read More →

Yuan Tang

Principal Software Engineer, Red Hat

Amber Graner

Open Source Community Advocate and Leader, Kubeflow Project

Amber Graner is an open source leader with experience in communities like Ubuntu, Linaro, Open Compute Project (OCP), Zeek, and Kubeflow. A decorated U.S. Army combat veteran, she blends leadership and inclusivity to empower individuals and organizations, fostering collaboration and... Read More →

Andrey Velichkevich

Senior Software Engineer, Apple

Andrey Velichkevich is a Senior Software Engineer at Apple and is a key contributor to the Kubeflow open-source project. He is a member of Kubeflow Steering Committee and a co-chair of Kubeflow AutoML and Training WG. Additionally, Andrey is an active member of the CNCF WG AI. He... Read More →

Yuki Iwai

Software Engineer, CyberAgent, inc

Yuki is a Software Engineer at CyberAgent, Inc. He works on the internal platform for machine-learning applications and high-performance computing. He is currently a Technical Lead for Kubeflow WG AutoML / Training. He is also a Kubernetes WG Batch active member, Job API reviewer... Read More →

Thursday April 3, 2025 11:00 - 11:30 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Kubeflow

11:00 BST

SIG API Machinery Maintainer's Track: The Kubernetes Building Blocks - Federico Bongiovanni, Google

Thursday April 3, 2025 11:00 - 11:30 BST

Platinum Suite | Level 3 | Room 1-2

An overview of the latest features from Extensibility to Admission policies, and what is in the bag for 2025+.

Speakers

Federico Bongiovanni

Senior Engineering Manager, Google

Engineering Manager who is passionate about people development and growth, building diverse and inclusive teams, and solving large scale technical challenges. With a large technical background in development, cloud computing at scale, building and running successful teams, and operating... Read More →

Thursday April 3, 2025 11:00 - 11:30 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Kubernetes

11:00 BST

The Immediate and Lasting Benefits of TAG Security Assessments - Eddie Knight, Sonatype & Ben Hirschberg, ARMO

Thursday April 3, 2025 11:00 - 11:30 BST

Platinum Suite | Level 3 | Room 3-4

The CNCF community has been doing security assessments through TAG security for years, and the value is clear.

Individual assessors are leveling up their skills, getting more connected with projects, and advancing their careers. Projects are reaching graduation faster, improving their development processes, and finding new ways to provide security features for end users.

This talk from a TAG leader and project maintainer will explore the inner workings of self- and joint-assessments, the value these bring to projects and assessors, as well as the difference between a security assessment and a threat model.

Speakers

Ben Hirschberg

Co-founder and CTO, ARMO

Ben is a veteran cybersecurity and DevOps professional, as well as computer science lecturer. Today, he is the co-founder at ARMO, with a vision of making end-to-end Kubernetes security simple for everyone, and a core maintainer of the open source Kubescape project. He teaches advanced... Read More →

Eddie Knight

OSPO Lead, Sonatype

Eddie Knight is a Software and Cloud Engineer with a background in banking technology. When he isn’t playing with his 2-year-old son, he combines his passion and job duties by working to improve the security of open source software.Eddie helps lead CNCF's Security Technical Advisory... Read More →

Thursday April 3, 2025 11:00 - 11:30 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Security

11:45 BST

SIG Security: Succession Planting for a Flowering Future - Cailyn Edwards, Okta; Iain Smart, AmberWolf; Rory McCune, Datadog; Mahé Tardy, Isovalent at Cisco

Thursday April 3, 2025 11:45 - 12:15 BST

Platinum Suite | Level 3 | Room 3-4

Kubernetes SIG Security takes a community-building approach to improving security for end users, project maintainers, and the Kubernetes project itself. Much like a garden thrives with careful planning, diverse plants, and collaboration, we use the same techniques to ensure our community is well tended and blooming. Join us as we introduce the next generation of SIG Security leadership and talk about succession plan(t)ing to ensure a smooth transition, encourage growth, and maintain the values that cultivate and foster the community we’ve built together.

Come learn what we’ve been working on, what we have planned for the future, and how you can get involved. We will go over the many roles required to create a rich community, from the gardeners to the pollinators - it really does take a village! Everyone is welcome: we all have something to teach and something to learn, and we would love to learn from you!

Bring questions, share ideas, and let’s plant some seeds. See you there!

Speakers

Iain Smart

Principal Consultant, AmberWolf

Iain is a Principal Security Consultant at AmberWolf, where he attacks and reviews cloud-native environments. Since discovering that public speaking really isn’t that scary, he has presented at various conferences including KubeCon EU and BlackHat. He enjoys playing with new technologies... Read More →

Mahé Tardy

Software Engineer, Isovalent at Cisco

Mahé is a security engineer at Isovalent and an active contributor to Kubernetes SIG Security. He was previously working as a security researcher and loves working with Linux, security, and Kubernetes!

Rory McCune

Senior Security Researcher and Advocate, Datadog

Rory is a senior security researcher & advocate for Datadog who has extensive experience with Cyber security and Cloud native computing. In addition to his work as a security reviewer and architect on containerization technologies like Kubernetes and Docker he has presented at Kubecon... Read More →

Cailyn Edwards

Senior Security Engineer, Okta

Cailyn Edwards (she/her) is a CNCF Ambassador and a Senior Security Engineer at Okta, where she spends her time paving roads, putting up guard rails and generally helping to secure the cloud. She is also an active contributor to SIG-Security and 2022 Contributor Award recipient. Her... Read More →

Thursday April 3, 2025 11:45 - 12:15 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Security

11:45 BST

The Key To Security: Externalized Service Account Key Management - Mo Khan & Rita Zhang & Stanislav Láznička & Anish Ramasekar, Microsoft

Thursday April 3, 2025 11:45 - 12:15 BST

Level 3 | ICC Capital Suite 10-12

Service account signing keys are critical for JWT signing and authentication in Kubernetes, yet the current model - loading keys from disk during kube-apiserver startup - introduces challenges in key rotation and security. Restarting kube-apiserver for key rotation disrupts operations, while storing signing keys on disk exposes sensitive materials to potential exfiltration. This talk explores KEP 740 which is an enhancement to Kubernetes’ service account key management, enabling seamless integration with HSMs and cloud KMSes. By offloading signing to external systems, we eliminate the need for restarts during key rotations and significantly enhance security by removing signing materials from the filesystem. Join us to learn how these updates can strengthen security and auditability, and provide Kubernetes distributions with the flexibility to choose key management solutions that meet their needs.

Speakers

Standa Láznička

Principal Software Engineer, Microsoft

I've been dealing with authentication, authorization and certificates in Open Source for quite some time.

Rita Zhang

Principal software engineer, Kubernetes SIG Auth co-chair, Security Response Committee, Microsoft

Mo Khan

Software Engineer, Microsoft

Mo Khan is a software engineer who is passionate about open source and security. He started working on Kubernetes in 2016, and currently serves as a chair, technical lead and subproject owner for Kubernetes SIG Auth, a member of the Kubernetes Security Response Committee and a contributor... Read More →

Anish Ramasekar

Principal Software Engineer, Microsoft

Anish Ramasekar is a software engineer at Microsoft. He is on the Azure Container Upstream team building features for Kubernetes upstream and various CNCF projects that are part of the Azure Kubernetes Service. Anish is a maintainer of the Secrets Store CSI Driver project.

Thursday April 3, 2025 11:45 - 12:15 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Auth

11:45 BST

TUF-en up Your Software Supply Chain - Marina Moore, Edera & Kairo De Araujo, Independent

Thursday April 3, 2025 11:45 - 12:15 BST

Platinum Suite | Level 3 | Room 1-2

Has your software distribution gotten overwhelmed with supply chain security metadata? Do you struggle to connect your SBOMs and attestations to images? In this talk we will cover how you can securely distribute your images along with software supply chain metadata for an end-to-end secure software distribution pipeline. We will discuss secure software update and distribution using TUF, and how this ties into other CNCF projects for securing your software supply chain. We will focus on how TUF ensures that images and metadata are current and resilient to tampering, and discuss recent improvements to the project. We will then demo how TUF can be used with in-toto to securely distribute and verify software supply chain metadata and attestations.

Speakers

Marina Moore

Research Scientist, Edera

Marina Moore is a Research Scientist at Edera. She is a maintainer of The Update Framework (TUF), a CNCF graduated project that provides secure software update and delivery. She is also a chair of CNCF's TAG Security where she contributes to security assessments and whitepapers, as... Read More →

Kairo De Araujo

Open Source Engineer, Independent

Kairo is a Senior Open Source Engineer. Kairo maintains python-tuf and is the author of Repository Service for TUF (RSTUF). His past roles include Senior Open Source Software Engineer at TestifySec, VMware, Senior Software Engineer at IBM, ING, Forescout, and a former System Engineer... Read More →

Thursday April 3, 2025 11:45 - 12:15 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, The Update Framework (TUF)

11:45 BST

Wasm Whiplash: WasmCloud's Wild Ride To Standards - Brooks Townsend, Cosmonic

Thursday April 3, 2025 11:45 - 12:15 BST

Level 3 | ICC Capital Suite 7-9

Everybody loves a standard. The CNCF contains many products and projects that integrate with well-defined standards—allowing them to focus on their own goals. See OpenTelemetry (OTEL) for example, the widely used standard for traces, logs and metrics and the second-most contributed to project in the CNCF (only behind Kubernetes).

In 2019, wasmCloud started as a hand-crafted WebAssembly (Wasm) application platform. We used our own IDL, codegen, and FFI protocol. Over the last five years we’ve broken down these proprietary bits one by one, rebuilding them around WASI 0.2 to become the incubating platform we are today.

This talk will use wasmCloud as a backdrop to explore innovative new standards in the cloud and Wasm-native spaces, and why they matter. You’ll learn why a platform built on standards leads to greater collaboration and the pitfalls of not using those standards based on what we learned from wasmCloud’s evolution towards being the best platform to run Wasm in production.

Speakers

Brooks Townsend

Senior Software Engineer, Cosmonic

Brooks is a Lead Software Engineer at Cosmonic, focusing on harnessing WebAssembly to alleviate the pains of modern software development. Brooks started his software development career with Critical Stack, a Kubernetes container orchestration platform that is now open source. He joined... Read More →

Thursday April 3, 2025 11:45 - 12:15 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, wasmCloud

11:45 BST

WG-Batch Updates: What’s New and What Is Next? - Marcin Wielgus, Google

Thursday April 3, 2025 11:45 - 12:15 BST

Level 3 | ICC Capital Suite 14-16

I will present improvements that the WG Batch has promoted in Kubernetes, and the opportunities under discussion to better support batch workloads such as HPC, AI/ML, data-analytics, etc. I will discuss enhancements and improvements to the Job and JobSet APIs as well as new release and roadmap for Kueue, a Kubernetes subproject that offers job queueing and scheduling, to build a multitenant, multicluster batch system. The WG Batch was created in 2022 to serve the demand from the ecosystem to better support batch applications in Kubernetes. The WG is composed of SIGs’ experts and developers from various communities, with the objective to set roadmaps and collaborate in designs and implementations.

Speakers

Marcin Wielgus

Staff Software Engieer, Google

Marcin Wielgus is a Staff Software Engineer at Google. Marcin joined the company in 2010 and since then he has been working on various projects, ranging from Android applications to recommendation engines. He started contributing to Kubernetes before the 1.0 release and currently... Read More →

Thursday April 3, 2025 11:45 - 12:15 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Batch

14:15 BST

Linkerd Update: Gateway API, Client-Specific Policy, Federated Services, Multicluster, Rust, & More! - Oliver Gould, Buoyant

Thursday April 3, 2025 14:15 - 14:40 BST

Platinum Suite | Level 3 | Room 3-4

The last year has seen a lot of features added to Linkerd, and we’re not slowing down! In this latest project update, you'll learn about the latest developments and upcoming features from Linkerd maintainers and directors. We'll discuss new Gateway API developments, client-specific policy configuration, improvements to federated Services and multicluster UX, and more. Come prepared to learn about the world's fastest, lightest service mesh!

Speakers

Oliver Gould

Linkerd Creator, Buoyant

Oliver is the creator of Linkerd.

Thursday April 3, 2025 14:15 - 14:40 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Linkerd

14:15 BST

Multi-cluster Orchestration System: Karmada Updates and Use Cases - Hongcai Ren, Huawei & Joe Nathan Abellard, Bloomberg

Thursday April 3, 2025 14:15 - 14:45 BST

Platinum Suite | Level 3 | Room 1-2

Karmada (Kubernetes Armada) is a Kubernetes management system that enables you to run your cloud-native applications across multiple Kubernetes clusters and clouds.

In this presentation, the maintainer of the Karmada project will share:

- A Brief introduction to Karmada, including what it is and why you need it.

- Key features and real-world use cases

- Overview of the community, including the governance and how it works

- New features over the last year

- Next Plan

- QA

Speakers

Joe Nathan Abellard

Senior Software Engineer, Bloomberg

Joe Nathan Abellard is a Senior Software Engineer working on Bloomberg's Managed Compute engineering team. He enjoys solving technical problems, and is a contributor to the CNCF Karmada project.

Hongcai Ren

Senior Software Engineer, Huawei

Hongcai Ren(@RainbowMango) is the CNCF Ambassador, who has been working on Kubernetes and other CNCF projects since 2019, and is the maintainer of the Kubernetes and Karmada projects.

Thursday April 3, 2025 14:15 - 14:45 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Karmada

14:15 BST

Redesigning Ingress: Docker’s Transition To the Next-Gen Gateway API - Kateryna Nezdolii & Ryan Hristovski, Docker

Thursday April 3, 2025 14:15 - 14:45 BST

Level 3 | ICC Capital Suite 14-16

This presentation shares Docker's journey in redesigning its ingress system and migrating live traffic from a HAProxy and Nginx-based perimeter to an Envoy Gateway-powered ingress. The talk delves into the critical design decisions behind choosing Envoy Gateway, the challenges encountered, and the solutions that ensured a smooth transition.

Attendees will gain insights into implementing decentralized routing configurations with safe defaults and managing live migrations using techniques like safe canary rollouts with fast rollback mechanisms to ensure zero downtime.

Operational considerations, including latency optimization and improving developer experience, will also be discussed. This session will provide practical, actionable guidance for anyone seeking to build a cloud-native, scalable, and reliable ingress system.

Speakers

Kateryna Nezdolii

Engineer, Docker

Kateryna is an Infrastructure engineer at Docker where she works on Ingress initiative. Throughout her career she has been passionate about open source and cloud native technologies. Prior to joining Docker she has been part of Spotify Traffic Team where her focus was on shaping and... Read More →

Ryan Hristovski

Senior Software Engineer, Infrastructure, Docker, Inc

Ryan is a Senior Software Engineer at Docker specializing in distributed systems and networking. He led Docker’s migration from HAProxy to Envoy Gateway and introduced IPv6 support to the world’s most trafficked image registry, Docker Hub. Additionally, he drove the inception... Read More →

Thursday April 3, 2025 14:15 - 14:45 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Envoy

14:15 BST

Securing the Gateway: A Deep Dive Into Envoy Gateway's Advanced Security Policy - Huabing (Robin) Zhao, Tetrate

Thursday April 3, 2025 14:15 - 14:45 BST

Level 3 | ICC Capital Suite 10-12

Envoy Gateway, a growing project within the Envoy ecosystem, has steadily gained traction since its release, with v1.3 now available and adoption expanding across various production environments. It efficiently manages Envoy-based application gateways, fully complying with the Kubernetes Gateway API while extending its capabilities through custom resource definitions (CRDs) to address areas beyond the Gateway API's current scope. Envoy Gateway's Security Policy simplifies access to Envoy's robust security features, eliminating the need for users to navigate complex Envoy configurations. These features include CORS, JWT authentication, Basic Auth, OpenID Connect (OIDC), External Authentication (Ext Auth), and more. This session includes a demo showcasing OIDC authentication and authorization based on JWT claims, offering practical insights for enhancing application security—whether you're an experienced Envoy user or new to open source.

Speakers

Huabing Zhao

Engineer, tetrate

Huabing Zhao is a software engineer at Tetrate and a CNCF ambassador. He has developed a managed service mesh product on the cloud and assisted a lot of users in deploying Istio service mesh in production. He also founded Aeraki Mesh, a CNCF sandbox project that facilitates non-HTTP... Read More →

Thursday April 3, 2025 14:15 - 14:45 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Envoy

14:15 BST

SIG Network Intro and Updates - Dan Winship & Nadia Pinaeva, Red Hat; Bowei Du, Google; Daman Arora, Broadcom

Thursday April 3, 2025 14:15 - 14:45 BST

Level 3 | ICC Capital Suite 7-9

SIG Network is responsible for networking for Kubernetes clusters, and there's never a shortage of interesting problems to solve in this space. In this session we'll provide some updates about SIG Network as a whole, including:

* status and progress of core networking components
* status and progress of sub-projects
* considerations for the future

If you're interested in hearing about what's going on in the networking space, or maybe even interested in joining the SIG and finding a place to contribute, please join us!

Speakers

Bowei Du

Senior Staff Engineer, Google

Bowei is a lead on Kubernetes Networking at Google. He has worked on various topics in SIG-NETWORK, the most recent being helping shepard the new Gateway APIs (https://gateway-api.sigs.k8s.io/)

Nadia Pinaeva

Senior Software Engineer, Red Hat

Nadia Pinaeva is a Senior Software Engineer at Red Hat working on Openshift Networking. She collaborates with the SIG-network-policy to improve network security for Kubernetes clusters, and works on ovn-kubernetes network plugin.

Daman Arora

Software Engineer, Broadcom

Trying to maintain kube-proxy.

Dan Winship

Senior Principal Software Engineer, Red Hat

Dan is a Tech Lead for Kubernetes SIG Network and has been working on Kubernetes and OpenShift networking for 7 years at Red Hat.

Thursday April 3, 2025 14:15 - 14:45 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Network

15:00 BST

Emissary-ingress: Version 4 and the Road Ahead - Flynn, Buoyant

Thursday April 3, 2025 15:00 - 15:30 BST

Platinum Suite | Level 3 | Room 3-4

Emissary-ingress 4.0 is underway! This is the first new major version in some years for Emissary, one of the first Kubernetes-native, self-service API gateways and ingress controllers.

In this session, we'll start with a quick overview of the need for ingress controllers in general, the benefits of self-service developer workflows, and how Emissary-ingress can help with these issues. We'll also talk about the state of project, what Emissary 4 brings to the table, and how to get involved as a contributor, how to best offer feedback, and what's in store for the project in the future.

Emissary's maintainer sessions are always great opportunities to talk directly with Emissary-ingress maintainers and make sure your voice is heard when it comes to the project's future -- looking forward to seeing you there!

Speakers

Flynn

Tech Evangelist, Buoyant

Flynn is a technical evangelist at Buoyant, educating developers about Linkerd, Kubernetes, and cloud-native development in general. He has spent 40+ years in software, with a common thread of communications and security throughout, and is a coauthor of Linkerd: Up and Running from... Read More →

Thursday April 3, 2025 15:00 - 15:30 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Emissary-ingress

15:00 BST

In the Eye of Falco: Transforming Your View of Linux Kernel Security - Luca Guerra, Jason Dellaluce, Aldo Lacuku & Leonardo Grasso, Sysdig; Aurélie Vache, OVHcloud

Thursday April 3, 2025 15:00 - 15:30 BST

Platinum Suite | Level 3 | Room 1-2

The Falco project is constantly evolving to fly over your infrastructure, overseeing every security event in your cloud environment. In this session, maintainers will discuss Falco's latest developments, including supercharged container runtime integration, even more powerful plugins, additional context added to sources, improved Kubernetes configuration experience, higher performance and more accurate detection capabilities. Join us in our excitement about the growth of Falco Talon, our very own response engine that complements Falco’s detection rules with Kubernetes-native actions.

Speakers

Leonardo Grasso

Open Source Tech Lead Manager / Falco Core Maintainer, Sysdig

Leonardo leads a talented group of open source engineers advancing security projects at Sysdig. Based in Italy, Leonardo combines his deep passion for Linux, Kubernetes, Containers, and Security with a strong background in software design and R&D. As a core maintainer of Falco, a... Read More →

Jason Dellaluce

Tech Lead, Manager, Sysdig

Jason Dellaluce is an Senior Engineer and Manager at Sysdig and a core maintainer of Falco, the CNCF tool for Cloud Native Runtime Security. On a daily basis, he contributes to the Falco Community and is exposed to Linux, Kubernetes, Containers, Security, eBPF, and the Open Source... Read More →

Aurélie Vache

Developer Advocate, OVHcloud

Aurélie Vache is a Developer Advocate at OVHcloud. She is Docker Captain, CNCF ambassador, Cloud GDE, WTM Ambassador & GitPod Hero. Developer and Ops for over 19 years. Mentor and promote diversity and accessibility in technology. She created a new visual way for people to learn... Read More →

Luca Guerra

Sr. Open Source Engineer, Sysdig Inc.

Luca is an experienced software engineer, specializing in software design and security research. His professional experience includes designing security solutions, building and breaking secure systems, and vulnerability management. Luca is a core maintainer for the Falco project and... Read More →

Aldo Lacuku

Open Source Engineer at Sysdig, Falco Core Maintainer, Sysdig Inc

Aldo is a software engineer with a deep focus on cloud-native technologies and Kubernetes. Currently contributing to Falco and runtime security.

Thursday April 3, 2025 15:00 - 15:30 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Falco

15:00 BST

Istio: The Past, Present and Future of the Project and Community - Lin Sun, solo.io

Thursday April 3, 2025 15:00 - 15:30 BST

Level 3 | ICC Capital Suite 14-16

Istio, a CNCF graduated project, is the most popular service mesh, simplifying observability, traffic management, and policy for your services. The project, its roadmap, and the community have gone through several changes over the past few quarters and we’d like to give some updates. We will discuss the project and its health, new features added in recent releases, progress on the new ambient sidecar-less data plane mode, Gateway API support, the project roadmap, and much more. We will also discuss the plans for the future of community-building efforts and how you can help us make Istio the best that it can be.

Speakers

Lin Sun

CNCF TOC member and Head of Open-Source, solo.io

Lin is the Head of Open Source at Solo.io, and a CNCF TOC member and ambassador. She has worked on the Istio service mesh since the beginning of the project in 2017 and serves on the Istio Steering Committee and Technical Oversight Committee. Previously, she was a Senior Technical... Read More →

Thursday April 3, 2025 15:00 - 15:30 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Istio

15:00 BST

Kubernetes WG Device Management - GPUs, TPUs, NICs and More With DRA - Kevin Klues, NVIDIA & Patrick Ohly, Intel

Thursday April 3, 2025 15:00 - 15:30 BST

Level 3 | ICC Capital Suite 10-12

WG Device Management is making great progress improving support for GPUs, TPUs, NICs, and other specialized hardware in Kubernetes. In 1.32, we delivered the Dynamic Resource Allocation (DRA) feature to beta. This enables simple and efficient configuration, sharing, and allocation of specialized devices.

For 1.33, we are continuing to evolve DRA, with a focus on the APIs, abstractions, and feature designs needed to configure, target, and share the hardware for both batch and serving (inference) workloads.

Come to this talk to learn what we have delivered in Kubernetes 1.32, what is coming in 1.33 and beyond, and how you can influence the roadmap for Kubernetes support of accelerated workloads.

Speakers

Kevin Klues

Distinguished Engineer, NVIDIA

Kevin Klues is a distinguished engineer on the NVIDIA Cloud Native team. Kevin has been involved in the design and implementation of a number of Kubernetes technologies, including the Topology Manager, the Kubernetes stack for Multi-Instance GPUs, and Dynamic Resource Allocation (DRA... Read More →

Patrick Ohly

Principal Engineer, Intel

Patrick is a Principal Engineer at Intel, member of the Kubernetes Steering Committee, co-chair of K8s WG Device Management, WG Structured Logging, tech lead in SIG Testing, and maintainer of the logging infrastructure in Kubernetes. He is the main architect and developer of Dynamic... Read More →

Thursday April 3, 2025 15:00 - 15:30 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Device Management

15:00 BST

Longhorn: Intro, Deep Dive and Q&A - David Ko, SUSE

Thursday April 3, 2025 15:00 - 15:30 BST

Level 3 | ICC Capital Suite 7-9

Join us for an exploration of Longhorn, the cloud-native storage solution revolutionizing block storage for Kubernetes environments. This session will delve into Longhorn's architecture, showcasing the transition from v1 to v2 data engine, powered by SPDK (Storage Performance Development Kit).

We'll highlight the upcoming release 1.8's groundbreaking features, including enhanced online replica rebuilding with snapshot checksum, volume auto salvage, volume live migration, live upgrade, disaster recovery volume, etc. Discover how these innovations position Longhorn as a performance-driven, versatile storage solution for cloud-native infrastructures.

Speakers

David Ko

Engineering Director, SUSE, SUSE

A hands-on engineering leader and architect with over 15 years of software development experience, specializing in Microservices, distributed system design, CI/CD, automation, DevOps, containers, WASM, container orchestration (Kubernetes, Mesos), cloud computing, cloud-native solutions... Read More →

Thursday April 3, 2025 15:00 - 15:30 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Longhorn

16:00 BST

Driving Chaos Engineering Forward: What’s New and Next With LitmusChaos - Sarthak Jain & Saranya Jena, Harness

Thursday April 3, 2025 16:00 - 16:30 BST

Level 3 | ICC Capital Suite 7-9

Join the maintainers of LitmusChaos, a CNCF Incubating project, to explore the latest advancements in chaos engineering for cloud-native systems. This session will cover key updates from recent releases, including enhanced resilience testing, observability, and scalability features, while showcasing how they address real-world challenges faced by Developers and SREs.
We’ll also share insights into the project’s growth, governance updates, and contributions from the community that are driving LitmusChaos forward. Get a sneak peek into the roadmap, featuring upcoming initiatives aimed at making chaos engineering more accessible and impactful.

Speakers

Saranya Jena

Senior Software Engineer, Harness

Saranya is a Senior Software Developer at Harness and is a maintainer of LitmusChaos, a Chaos Orchestration framework designed for implementing chaos engineering in cloud-native environments. She likes contributing to the Open Source community, where her primary focus involves architecting... Read More →

Sarthak Jain

Senior Software Engineer, Harness

Meet Sarthak Jain, Senior Software Engineer at Harness! For over three years, he’s been maintaining open source tools like LitmusChaos and LitmusCtl, to make softwares more resilient. Sarthak loves exploring new ideas in tech and making things work better.

Thursday April 3, 2025 16:00 - 16:30 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Litmus

16:00 BST

etcd V3.6.0 and etcd-operator V0.1.0 - Benjamin Wang, VMware by Broadcom; Ivan Valdes Castillo, Independent; Siyuan Zhang, Google; Arka Saha, VMware By Broadcom; Ciprian Hacman, Microsoft

Thursday April 3, 2025 16:00 - 16:30 BST

Level 3 | ICC Capital Suite 10-12

etcd v3.6.0 has been released, almost 4 years after 3.5.0. It’s a big step forward. etcd-operator v0.1.0 is also now available and promises to greatly improve the usability and operability of etcd.

We will dive into all the new exciting features in 3.6, like downgrade support, v2store deprecation and performance improvement. We’ll also provide an upgrade checklist and highlight changes users need to make before upgrading to the 3.6 release. We will also show you how the etcd-operator works, how it can greatly simplify the operation of the etcd cluster. Come join us and raise your etcd questions with the on-site etcd maintainers.

Speakers

Ciprian Hacman

Senior Software Engineer, Microsoft

Ciprian Hacman is a Software Engineer, working with cloud-native technologies. He is also an open source project maintainer for kOps (Kubernetes Operations), etcd-manager, cloud-provider-aws and frequent contributor to other projects in the Kubernetes ecosystem.

Arka Saha

Software Engineer, VMware By Broadcom

Arka Saha, a Broadcom Software Engineer, leads Kubernetes releases & maintenance for Tanzu Extended Support. He manages VMware by Broadcom's Prow infrastructure, ensuring long-term support for k8s, etcd, containers, Golang & related components. Previously he managed Red Hat OpenShift... Read More →

Siyuan Zhang

Software Engineer, Google

I am a software engineer at Google. My past experience include machine learning and cloud infrastructure. I have been an etcd contributor since 2023.

Benjamin Wang

Staff software engineer, VMware by Broadcom

Benjamin Wang is a staff software engineer at VMware (acquired by broadcom). He is passionate about open source. He currently is an etcd maintainer and technical lead of sig-etcd. He loves to play Chinese chess in his spare time.

Ivan Valdes Castillo

Independent, Independent

Ivan is a Site Reliability Engineer specializing in CI/CD pipelines, Infrastructure as Code, and automation. His dedication to spreading and mentoring the DevOps culture is evident in his efforts to foster collaboration and streamline development. In his free time, he is an active... Read More →

Thursday April 3, 2025 16:00 - 16:30 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, etcd

16:00 BST

Guiding Kubernetes: The Steering Committee's Role in Project Evolution - Maciej Szulik, Defense Unicorns & Paco Xu, DaoCloud

Thursday April 3, 2025 16:00 - 16:30 BST

Level 3 | ICC Capital Suite 14-16

The Kubernetes Steering Committee plays a crucial role in overseeing the non-technical aspects of the Kubernetes project and making important project-wide decisions. The committee has a wide scope of working and responsibilities. The committee has evolved over the years. In this session, let’s take a look at how the committee came to be created, the bootstrap era, how it works now and what’s in store for the future. We will have excerpts from our emeritus members who served to shape the goals and vision of the steering committee. We will explore how you can leverage our learnings to enhance the governance of your own cloud native projects. If you are eager to gain insights or have queries about the governance journey of the Kubernetes project, we encourage you to drop by and engage in an insightful discussion

Speakers

Maciej Szulik

Staff Platform Engineer, Defense Unicorns

Paco Xu

OpenSource Team Leader, DaoCloud

Paco is a member of Kubernetes Steering Committee and the lead of the DaoCloud open-source team. In community, Paco mainly work as a Kubeadm Maintaine and SIG-Node Reviewer. He is co-chair of KubeCon China 2024 and organized Kubernetes Contributor Summit China 2023 and KCD Chengdu 2022, and speaked at KubeCon EU 2023, KubeCon China 2021 & 2023, KCD Shanghai. In 2024, he becomes LFAPAC Evangelist... Read More →

Thursday April 3, 2025 16:00 - 16:30 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Kubernetes, Steering Committee

16:00 BST

Kubespray: Driving Cost-Efficiency for AI on Kubernetes - Antoine Legrand, Conny GmbH & Mohamed Zaian, New Work SE

Thursday April 3, 2025 16:00 - 16:30 BST

Platinum Suite | Level 3 | Room 1-2

In 2025, cost efficiency is more critical than ever as organizations strive to optimize budgets while scaling AI capabilities. Kubernetes has become the backbone for deploying AI workloads, but organizations face the challenge of balancing performance, scalability, and cost efficiency. This session will address these challenges head-on.

Kubespray, a flexible, production-grade, open-source Kubernetes cluster management tool, has empowered countless users and organizations across cloud and bare-metal environments.

Attendees will learn how to build cost-optimized Kubernetes clusters by leveraging efficient resource utilization, GPU integration, and multi-cloud deployment strategies. The session will cover practical configurations to reduce operational expenses while ensuring high availability and scalability for demanding AI use cases.

Speakers

Antoine Legrand

CTO, Conny GmbH

Antoine Legrand is CTO at LegalTech startup CONNY and co-founder of Kubespray, a key tool in the Kubernetes ecosystem. He works with leading industry players to improve the management of applications and Kubernetes clusters. Passionate about open source, Antoine has spent the past... Read More →

Mohamed Zaian

Senior Systems Engineer, New Work SE

Maintainer of Kubespray, Organization member kubernetes/kubernetes and kubernetes/kubernetes-sigs. I do Linux administration, infrastructure engineering, platform engineering, and Kubernetes as a Senior Systems Engineer at New Work SE in Hamburg, Germany.

Thursday April 3, 2025 16:00 - 16:30 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Kubernetes, kubespray

16:00 BST

Unlocking the Future of Kubernetes Policy as Code With Kyverno - Vishal Choudhary & Frank Jogeleit, Nirmata

Thursday April 3, 2025 16:00 - 16:30 BST

Platinum Suite | Level 3 | Room 3-4

Kyverno has emerged as a go-to tool for enforcing security, compliance, and operational best practices in Kubernetes. But it's not just about the past; it's about the future! Join Kyverno maintainers, Vishal and Frank, as they unveil the latest innovations in Kyverno and show how Kyverno's new policy formats align perfectly with the rapidly evolving Kubernetes APIs, including enhanced support for Kubernetes Validating Admission Policies (VAP) and Mutating Admission Policies (MAP). You will learn how Kyverno's adoption of Common Expression Language (CEL) empowers you to create, test, and manage sophisticated, dynamic, and expressive policies for all your policy use cases. Whether you're a policy newbie or a seasoned pro, this session will provide actionable insights and tips to elevate your Kubernetes policy-based security, automation, and governance.

Speakers

Frank Jogeleit

Senior Software Engineer, Nirmata

Frank works as a Senior Software Engineer for Nirmata and works with cloud technologies on a daily basis. In addition to his daily job, he supports various cloud native organizations such as Falco and Kyverno. Since 2021 he has been developing various tools, such as his tool "Policy... Read More →

Vishal Choudhary

Software Engineer, Nirmata

Vishal is a student and a software engineer, working on cloud-native projects focusing on governance and securing software supply chains for everyone! He is a maintainer of Kyverno and an active contributor at several other projects in the space. He is always looking to discuss tools... Read More →

Thursday April 3, 2025 16:00 - 16:30 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Kyverno

16:45 BST

Kubernetes SIG Storage: Intro & Deep Dive - Xing Yang, VMware by Broadcom & Jan Šafránek, Red Hat

Thursday April 3, 2025 16:45 - 17:15 BST

Level 3 | ICC Capital Suite 7-9

Kubernetes SIG Storage is responsible for ensuring that different types of file and block storage are available wherever a container is scheduled, storage capacity management (container ephemeral storage usage, volume resizing, etc.), influencing scheduling of containers based on storage (data gravity, availability, etc.), and generic operations on storage (snapshotting, etc.). SIG Storage also has a project that provides APIs for object storage support in Kubernetes. In this session, we will deep dive into some projects that SIG Storage is currently working on, provide an update on the current status, and discuss what might be coming in the future.

Speakers

Jan

Software Engineer, Red Hat

Jan is a Senior Principal Software Engineer at Red Hat working on storage aspects of Kubernetes. He started developing Kubernetes more than 8 years ago, and is one of the founding members of SIG-Storage. He’s the author of PersistentVolume controller, dynamic provisioning and StorageClass... Read More →

Xing Yang

Tech Lead, VMware by Broadcom

Xing Yang is a Tech Lead in the Cloud Native Storage team at VMware by Broadcom. She is a co-chair of CNCF Storage TAG, a co-chair of the Kubernetes Storage SIG, a co-chair of the Data Protection WG, and a maintainer in Kubernetes CSI. Before joining VMware, Xing was the Lead Architect... Read More →

Thursday April 3, 2025 16:45 - 17:15 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Storage

16:45 BST

SIG Docs and You: Modernizing API Reference Generation - Kat Cosgrove & Xander Grzywinski, Independent

Thursday April 3, 2025 16:45 - 17:15 BST

Platinum Suite | Level 3 | Room 3-4

The Kubernetes project has some of the best documentation in the industry, and it’s part of the reason for the project’s success. Writing and maintaining that documentation requires the help of a small army of contributors, but there’s an often unseen aspect to the documentation that still needs work: the API reference docs generator. SIG Docs is beginning work to overhaul this process, and we need you! Learn more about how the reference docs are currently generated, the technical problems we face with that process, our plans for the future, and how you can get involved in ensuring the Kubernetes documentation continues to be the best it can be.

Speakers

Kat Cosgrove

Open Source Advocate, Independent

Kat is a Developer Advocate focused on the growth and nurturing of open source through authentic contribution. In particular, her specialties are approachable 101-level content and deep dives on the history of technology, with a focus on DevOps and cloud native. She was the Kubernetes... Read More →

Xander Grzywinski

Open Source Program Manager, Independent

Xander is an open source program manager with experience at a wide array of companies. Previously he worked in various roles on platform and open source teams at Microsoft, Twitter, Apple, and HashiCorp. When not at a computer, you'd most likely find him at a pottery wheel.

Thursday April 3, 2025 16:45 - 17:15 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Kubernetes

16:45 BST

SIG-Multicluster Intro and Deep Dive - Jeremy Olmsted-Thompson & Laura Lorenz, Google; Stephen Kitt, Red Hat; Ryan Zhang, Microsoft

Thursday April 3, 2025 16:45 - 17:15 BST

Level 3 | ICC Capital Suite 14-16

SIG-Multicluster is focused on solving common challenges related to the management of many Kubernetes clusters, and applications deployed across many clusters, or even across cloud providers. In this session, we'll give attendees an overview of the current status of the multi-cluster problem space in Kubernetes and of the SIG. We’ll discuss current thinking around best practices for multi-cluster deployments and what it means to be part of a ClusterSet. Then we’ll highlight current SIG projects, focused use cases, and ideas for what’s next. Most importantly, we’ll provide information on how you can get involved either as a contributor or as a user who wants to provide feedback about the SIG's current efforts and future direction. Bring your questions, problems, and ideas - help us expand the multi-cluster Kubernetes landscape!

Speakers

Stephen Kitt

Senior Principal Software Engineer, Red Hat

Stephen is one of the maintainers of the Submariner project, providing connectivity and service discovery across multiple Kubernetes clusters. He is a long-time open source contributor, and has been at Red Hat since 2015, working on OpenDaylight and Submariner.

Jeremy Olmsted-Thompson

Principal Engineer, Google

Jeremy is a software engineer who works on Google Kubernetes Engine. His main focus is on simplifying the Kubernetes experience, and making it as easy as possible to deploy applications both within a cluster with things like GKE Autopilot, and across clusters with multi-cluster solutions... Read More →

Laura Lorenz

Software Engineer, Google

Laura Lorenz is a software engineer at Google. She is an active member of Kubernetes’ upstream focused on SIG-Multicluster, SIG-Node, and releases.

Ryan Zhang

Principal Software Engineering Manager, Microsoft

Dr. Ryan Zhang is a Principal Software Engineer Manager at Microsoft, working on Azure Kubernetes Service Team. Ryan has been working on Cloud Native open source projects for the past few years including CloudEvents, Open Application Model (OAM) and multi-cluster related initiati... Read More →

Thursday April 3, 2025 16:45 - 17:15 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Multicluster

16:45 BST

Vitess: Schema Changes at Scale - Deepthi Sigireddi & Shlomi Noach, PlanetScale

Thursday April 3, 2025 16:45 - 17:15 BST

Platinum Suite | Level 3 | Room 1-2

Welcome to the Vitess maintainer track session! Today, we discuss how Vitess enables smooth, controllable, and coordinated non-blocking schema changes at scale. We begin with a high level architecture of Vitess and the feature set it offers. We then deep dive into the operational complexity of making schema changes on high-traffic workloads and across multiple shards. We will show how Vitess simplifies the schema change process, making it near-seamless to the user across a large fleet of database servers. We’ll conclude with a preview of planned features.

Speakers

Shlomi Noach

Engineer, PlanetScale

Engineer and database geek, works at PlanetScale as a maintainer for open source Vitess. Previously at GitHub. Interested in database infrastructure solutions such as high availability, reliability, enablement, automation and testing. Shlomi is an active MySQL community member, authors... Read More →

Deepthi Sigireddi

Engineering Lead, PlanetScale

Deepthi is the Technical lead for Vitess, a CNCF graduated open source project. She also leads the Vitess engineering team at PlanetScale which offers a database service built on Vitess. She brings over 20 years of experience building scalable systems to this role. She enjoys speaking... Read More →

Thursday April 3, 2025 16:45 - 17:15 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Vitess

17:30 BST

Containerd: Project Update and Deep Dive - Maksym Pavlenko, NVIDIA; Akihiro Suda, NTT; Laura Brehm, Docker; Samuel Karp, Google; Jiaxiao Zhou, Microsoft

Thursday April 3, 2025 17:30 - 18:00 BST

Platinum Suite | Level 3 | Room 3-4

Join containerd maintainers for an update and deep dive into the latest developments in containerd. This panel will feature discussion of the launch and adoption of containerd 2.0, what’s next in 2.1, 1.7’s transition into Extended support, and how LTS is going with 1.6. Topics will also include how the containerd project is involved with the KEP process and highlight how the broader cloud native ecosystem is enhanced through extension points in containerd and subprojects like runwasi.

Speakers

Akihiro Suda

Software Engineer, NTT

Akihiro Suda is a software engineer at NTT Corporation. He has been a maintainer of Moby (dockerd), BuildKit, containerd, runc, etc. He is also a founder of nerdctl and Lima (CNCF project).

Maksym Pavlenko

Principal Engineer, NVIDIA

Maksym is a Principal Engineer at NVIDIA focused on container and microVM technologies, containerd and custom runtimes. He's been a containerd maintainer since 2019 focusing on snapshotters, new sandbox API, CRI, and overall architecture.

Jiaxiao Zhou

Software Engineer, Microsoft

Jiaxiao (Joe) Zhou is a Software Engineer at Microsoft. He is on the Azure Container Upstream team and works on bringing WebAssembly to the cloud through projects like "runwasi", "SpiderLightning", and "containerd-wasm-shims". He is also a champion of several WASI proposals including... Read More →

Samuel Karp

Staff Software Engineer, Google

Samuel Karp is a containerd maintainer and a Staff Software Engineer at Google, focused on nodes and the container runtime in Google Kubernetes Engine. Sam has been involved in the container ecosystem since 2014 and serves as the Chair of the Open Container Initiative's Technical... Read More →

Laura Brehm

Software Engineer, Docker

Software Engineer at Docker, focused on the Docker Engine, CLI, and Containerd. Maintainer @moby @containerd @compose-spec.

Thursday April 3, 2025 17:30 - 18:00 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Containerd

17:30 BST

Harbor Project - The Maintainers Session - Orlin Vasilev, SUSE & Vadim Bauer, 8gears Container Registry

Thursday April 3, 2025 17:30 - 18:00 BST

Level 3 | ICC Capital Suite 7-9

In Harbor v2.12.0, we've introduced significant enhancements and new features to elevate performance, security, and usability for developers and DevOps professionals. Key updates include the integration of SBOM (Software Bill of Materials) to improve compliance and security, alongside a revamped robot account functionality that strengthens CI/CD automation with advanced access controls and configuration options.

A notable addition is the ability to configure speed limits for proxy cache projects, enabling precise control over network bandwidth during artifact pulls.
Other improvements include exporting Harbor statistics as Prometheus metrics and UI updates for better usability. With support for Prometheus metrics and enhanced SBOM management, including TLS support and fixes, this release prioritizes security, automation, and operational efficiency.

Join our maintainers to dive deeper into these updates and explore exciting community-driven projects that complement Harbor’s evolution.

Speakers

Vadim Bauer

Harbor Maintainer, 8gears Container Registry

Vadim Bauer is a Container Silverback with over a decade of experience in running containers in production. As a maintainer of the CNCF project Harbor, he focuses on extending the boundaries of OCI artifact management, adoption, and developer experience. At 8gears, Vadim helps cloud... Read More →

Orlin Vasilev

Principle Open Source Technology Advocate, SUSE

Orlin Vasilev is Principal Open Source Technology Advocate and Community Manager for Project Harbor as part of the Cloud Native team at SUSE. Second term CNCF Ambassador and driving the biggest Meetup Group in Bulgaria. KubeCon CfP review board member and co-chair for Track 101 and... Read More →

Thursday April 3, 2025 17:30 - 18:00 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Harbor

17:30 BST

Helm 4 You - Matt Farina, SUSE & Andrew Block, Red Hat

Thursday April 3, 2025 17:30 - 18:00 BST

Level 3 | ICC Capital Suite 10-12

Have you heard? A new version of Helm, the Kubernetes package manager, is on the way and there has never been a better time to get excited about the project!

Whether you are a longtime user of Helm or are just getting started, Helm 4 represents not only a major development milestone, but acts as a catalyst for reinvigorating the Helm community. Helm 4 is being built by the community for the community. Features, capabilities, and project direction are all under consideration and it's not too late to get involved and have your voice be heard.

Join Helm maintainers as they provide an update on the next major version of Helm, the timelines, and the features being evaluated. They will also share how the community has been inspirational in helping make Helm 4 a reality. Since Helm continues to be a crucial component in the workflows of users and enterprises worldwide, a new version of Helm is only possible thanks to the continued collaboration from the Cloud Native community.

Speakers

Andrew Block

Distinguished Architect, Red Hat

Andrew Block is a Distinguished Architect at Red Hat that works with organizations to design and implement solutions leveraging cloud native technologies. He specializes in Continuous Integration and Continuous Delivery methodologies with a focus on security to reducing the overall... Read More →

Matt Farina

Distinguished Engineer, SUSE

Thursday April 3, 2025 17:30 - 18:00 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Helm

17:30 BST

How We Solved TLS at Scale: Self-Service, Multi-Tenant Cert-manager - Erik Godding Boye, Zenior & Tim Ramlot, Venafi, a CyberArk Company

Thursday April 3, 2025 17:30 - 18:00 BST

Level 3 | ICC Capital Suite 14-16

cert-manager is an open-source X.509 certificate controller for Kubernetes, designed to automate certificate management. In this session, we’ll explore how to configure cert-manager and its subprojects for large-scale certificate management.

At the scale of our production setup, managing and requesting certificates cannot be centralized and self-service is required. A self-service multi-tenant setup requires isolation between tenants, must support tenant-specific trust, and must be able to enforce security policies at scale.

We'll make use of key cert-manager subprojects including trust-manager, approver-policy, and csi-driver to simplify these challenges. You’ll walk away knowing how to use cert-manager in multi-tenant setups, leaving you free to focus on your all-important business logic!

Speakers

Erik Godding Boye

Platform Engineer, Zenior

Erik has 25+ years of experience as a software developer working as a contractor for multiple companies in various industries in Norway, For the last five years, he has been building value-added services on top of large multi-tenant Kubernetes clusters ensuring development teams... Read More →

Tim Ramlot

cert-manager maintainer, Venafi, a CyberArk Company

Tim started working at Venafi as a software engineer after his graduation as computer science engineer at Ghent University. He learned about cert-manager and Venafi through a Google Summer of Code internship. His mission at Venafi is to advance his problem solving skills, whilst contributing... Read More →

Thursday April 3, 2025 17:30 - 18:00 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, cert-manager

17:30 BST

Open Policy Agent (OPA) Intro & Deep Dive - Charlie Egan, Styra

Thursday April 3, 2025 17:30 - 18:00 BST

Platinum Suite | Level 3 | Room 1-2

Come to this session to learn about the Open Policy Agent (OPA) project. OPA is a general-purpose policy engine that solves a number of policy-related use cases for Kubernetes, service mesh, CI/CD, infrastructure permissions, and more.

During this session OPA maintainers will introduce the project for newcomers and then provide updates on recent features and improvements in OPA.

If you are interested in policy as code and security as it relates to cloud native technology, this session is for you. OPA maintainers will also be available for questions after the session.

Speakers

Charlie Egan

Senior Developer Advocate, Styra

Charlie has been working with in the Cloud Native space since 2018. He currently works as a Developer Advocate at Styra and on the OPA project. Charlie is interested in authentication and authorization across the stack. You can find him in the OPA Community Slack.

Thursday April 3, 2025 17:30 - 18:00 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Open Policy Agent (OPA)

11:00 BST

CNCF TAG Network and Cloud Native Network Landscape - Zhonghu Xu, Huawei

Friday April 4, 2025 11:00 - 11:30 BST

Level 3 | ICC Capital Suite 7-9

In this talk, we will introduce the CNCFNetwork TAG, discuss how we work with TOC and CNCF Network projects, and highlight the work we have done to better serve cloudnative ecosystem. Join us to find out how to contribute and participate in the CNCF network community.

Speakers

Zhonghu Xu

Principal Engineer, Huawei

Zhonghu currently serves as Istio Steering Committee and core maintainer and also istio TOP 3 contributors. He is also the CNCF TAG-Network Tech Lead, which helps networking project evolve healthily. He is also the maintainer of many CNCF projects, kmesh and volcano, etc. Zhonghu... Read More →

Friday April 4, 2025 11:00 - 11:30 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Network

11:00 BST

Cortex: Insights, Updates and Roadmap - Friedrich Gonzalez & Daniel Sabsay, Adobe; Charlie Le & Alolita Sharma, Apple; Daniel Blando, AWS

Friday April 4, 2025 11:00 - 11:30 BST

Level 3 | ICC Capital Suite 10-12

Join us for an in-depth session on Cortex, where we’ll guide you through a hands-on walkthrough for getting started with this powerful open-source metrics system. We'll share real-world challenges we've encountered within the Cortex community and how collaboration led to innovative solutions.

This session will also cover significant updates, including key enhancements in the upcoming Cortex 1.19 release. Whether you’re a new adopter or a seasoned contributor, this talk will provide valuable insights into the future of Cortex. We’ll conclude with a live Q&A, offering you a chance to engage directly with the maintainers.

Bring your questions, your feedback, and your enthusiasm as we explore what’s next for Cortex!

Speakers

Friedrich Gonzalez

Software Engineer, Adobe

Friedrich is a software engineer with 20 years of experience, currently working at Adobe. He is also a an OSS maintainer for Cortex. On his free time, Friedrich likes to play with the cutest doberman puppy there is.

Alolita Sharma

OpenTelemetry Governance Committee Member, Observability Engineering at Apple, Apple

Charlie Le

Software Engineer, Apple

Charlie is a software engineer at Apple, specializing in building and scaling cloud native observability solutions and infrastructure. Deeply inspired by the collaborative spirit of open source, he actively contributes to projects like Cortex and OpenTelemetry, shaping the future... Read More →

Daniel Blando

Software Engineer, AWS

Daniel Blando is a software engineer working at AWS, where he is part of the Amazon Managed Prometheus (AMP) team. He has a passion for distributed systems, where he contributes to enhancing scalability and high availability. Daniel is an active contributor to the Cortex open-source... Read More →

Daniel Sabsay

Software Engineer, Adobe

Daniel Sabsay is a software engineer with experience writing frontend browser applications, DSL translators, backend web services, and running highly available distributed systems. When not building software, he is playing and writing music, running, and riding bikes in the Santa... Read More →

Friday April 4, 2025 11:00 - 11:30 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Cortex

11:00 BST

Crossplane Intro and Deep Dive - The Cloud Native Control Plane Framework - Jared Watts & Nic Cope, Upbound

Friday April 4, 2025 11:00 - 11:30 BST

Platinum Suite | Level 3 | Room 3-4

The maintainers of the CNCF Crossplane project (https://www.crossplane.io/) will lead this session that will not only introduce the project to new attendees, but also dive deep into the details of Crossplane’s latest features, releases, and future direction. There is always something new to show off at Kubecon!

We will start with the basics on how Crossplane enables you to compose cloud infrastructure and services into custom platform APIs, and accelerate the journey of folks new to Crossplane to build a control plane of their own.

Then we will take a detailed tour through the key maturity investments we’ve been making and how to adopt them into your production ready platforms. Finally, as the project is now more than 5 years old, we will focus on the future direction of Crossplane and how we think we can take the project to the next level for the next 5 years. You won’t want to miss this chance to influence the future of Crossplane!

Speakers

Jared Watts

Founding Engineer, Upbound

Jared Watts is a Founding Engineer at Upbound, where he is working on advancing cloud-native computing by enabling anyone to build their own cloud platform. He is also a co-creator of the open source Crossplane (https://crossplane.io) and Rook (https://rook.io) projects. Prior to... Read More →

Nic Cope

Senior Principal Engineer, Upbound

Nic Cope is a senior principal engineer at Upbound, founders of the Rook and Crossplane CNCF projects. Before joining Upbound to help build Crossplane, Nic spent a decade in SRE and platform engineering teams at companies large and small, including Google, Spotify, and Planet Labs... Read More →

Friday April 4, 2025 11:00 - 11:30 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Crossplane

11:00 BST

CubeFS in Action: Empowering Users Through Case Studies - Leon Chang, OPPO

Friday April 4, 2025 11:00 - 11:30 BST

Level 3 | ICC Capital Suite 14-16

In this presentation, we will explore real-world applications of CubeFS through detailed end user case studies. CubeFS is a cloud-native distributed file system designed to meet the demands of modern data workloads. We will showcase how various organizations have successfully implemented CubeFS to address their unique challenges, including media processing, big data analytics, and machine learning.

Participants will learn about specific use cases, the challenges these organizations faced, the solutions they implemented using CubeFS, and the measurable results achieved. Additionally, user testimonials will provide insights into the transformative impact of CubeFS on their operations.

This session aims to highlight the versatility and efficiency of CubeFS, encouraging attendees to consider its application in their own projects. Join us for an engaging discussion on how CubeFS can enhance data management and drive innovation in your organization.

Speakers

Leon Chang

Distributed Storage Expert, OPPO

Currently working for oppo, has worked for Huawei, Tencent and other companies, has been engaged in storage research and development for more than 10 years, and is currently mainly engaged in the research and development of the open source project distributed file system cubefs

Friday April 4, 2025 11:00 - 11:30 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, CubeFS

11:00 BST

Ensuring Quality in Kubernetes: The Graduation Process From Alpha To GA - Antonio Ojea & Benjamin Elder, Google

Friday April 4, 2025 11:00 - 11:30 BST

Platinum Suite | Level 3 | Room 1-2

Kubernetes is constantly evolving, with new features graduating from alpha to beta and finally to general availability (GA). But how do we ensure these features are truly production-ready? This talk dives into the challenges of testing Kubernetes features as they mature, exploring how to tackle issues like API changes, backward compatibility, and unpredictable user behavior. We'll uncover effective strategies for "skew testing" across different Kubernetes versions and share practical tips for building a robust testing pipeline.

Speakers

Benjamin Elder

Senior Software Engineer, Google

Benjamin Elder is a Senior Software Engineer at Google working on Kubernetes. Ben is a long time contributor to the project since writing kube-proxy's iptables mode for GSoC 2015 and is an elected member of the Kubernetes Steering Committee.

Antonio Ojea

Antonio Ojea, Google

Antonio Ojea is a Software Engineer at Google, where he works on Kubernetes. He is one of the top contributors of the Kubernetes project, Tech Lead in Kubernetes SIG Network & Testing with a proven track record in leading technical initiatives to enhance Kubernetes networking stability... Read More →

Friday April 4, 2025 11:00 - 11:30 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Testing

11:45 BST

Beyond Classical Cryptography: Building Quantum-Resistant Cloud Native Infrastructure With SPIFFE - Andrés Vega, M42 & Hugo Landau, Messier42

Friday April 4, 2025 11:45 - 12:15 BST

Platinum Suite | Level 3 | Room 1-2

As quantum computing advances, traditional cryptographic systems face unprecedented vulnerabilities. We demonstrate integrating post-quantum cryptography (PQC) into cloud native infrastructure through SPIFFE identities, focusing on networking and security. We'll examine NIST's 2024 PQC standards and their key advantage: improved implementation error resistance.

Our live demonstration showcases end-to-end PQC in Kubernetes using SPIFFE/SPIRE, with L7 filtering, mutual authentication, and quantum-resistant cross-cluster communication. We cover:

* Deployment of PQC-enabled SPIRE, Cilium, and Envoy with Kyber KEM and Dilithium3 X.509 certificates
* Implementation of quantum-resistant (m)TLS
* Cilium network policies for L7 filtering with PQC
* Inter-node traffic security using Envoy mTLS with PQ algorithms

Attendees will gain practical insights and strategies for transitioning their infrastructure to quantum-resistant security in cloud native environments.

Speakers

Andrés Vega

Founder and CEO, M42

Maintainer, contributor, and author.

Hugo Landau

Chief Engineer, Messier42

An experienced software engineer with a background in internet security and cryptography technologies, Hugo has developed assorted cryptography, PKI and security infrastructure. He is also an OpenSSL committer, a Namecoin developer, has contributed to the ACME standards process and... Read More →

Friday April 4, 2025 11:45 - 12:15 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, SPIFFE

11:45 BST

Cloud Native AI: Harness the Power of Advanced Scheduling for High-Performance AI/ML Training - William Wang & Xuzheng Chang, Huawei

Friday April 4, 2025 11:45 - 12:15 BST

Level 3 | ICC Capital Suite 14-16

In the era of large models, as models and data are becoming increasingly larger, LLM workloads have extremely high requirements for network throughput and latency.

However, Kubernetes has no awareness of either the parallel models of LLM workloads or the underlying high-speed network communication topology, which leads to a loss in training performance. Meanwhile, many expensive high-performance underlying resources are not utilized more efficiently.

As one of the important projects for Cloud-native AI, Volcano has conducted in-depth research over the past year. It has remodeled the workloads in large model training and inference scenarios as well as the new network topologies, and designed and implemented high-performance scheduling features.

This talk will cover：
1. The complexities related to intelligent scheduling, improving performance and cost-effective
2. Methodology to reconsider the resource model and LLM workload
3. Enhancement to Volcano to optimize training for AI/ML

Speakers

William Wang (Leibo Wang)

Senior software engineer, Nvidia

Cloud native architect, open-source enthusiast, technical lead and maintainer of CNCF Volcano, software developer with a decade of experience in diverse domains including cloud native technology, large-scale cluster resource management, batch scheduling, BigData, and AI acceleration... Read More →

Xuzheng Chang

Senior engineer, Huawei Cloud

XuzhengChang is a maintainer of the Volcano community, with in-depth research and practical experience in the fields of batch computing and cloud-native AI scheduling. Xuzheng has spearheaded several significant features within the Volcano community, including network topology-aware... Read More →

Friday April 4, 2025 11:45 - 12:15 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Volcano

11:45 BST

Contributing To Kubernetes in Its Second Decade - How ContribEx Enhances the Journey! - Nabarun Pal, Broadcom; Mario Fahlandt, Kubermatic; Madhav Jivrajani, UIUC; Priyanka Saggu, SUSE

Friday April 4, 2025 11:45 - 12:15 BST

Platinum Suite | Level 3 | Room 3-4

SIG Contributor Experience has been wildly successful in helping grow the contributor base of Kubernetes in the first ten years of the project via New Contributor Workshops. We stressed on the importance of growing existing contributors in our last maintainer track session. However, the other side of the sustainability coin is ensuring that contributors who get started with contributing to Kubernetes, actually stick around. A lot has changed in the last decade, and we also need to change how we teach folks to contribute and interact with the community. Join us as we give a comprehensive overview of the Kubernetes governance and community structure, where you can seek help and what some pitfalls are that you will unexpectedly but inadvertently face in your contributor journey. We will highlight areas that are suited for folks from all backgrounds: marketing, content creation, event planning, community elections, automation and so much more!

Speakers

Nabarun Pal

Principal Software Engineer, Broadcom

Nabarun is a Principal Software Engineer at Broadcom, a maintainer of the Kubernetes project, a chair of Kubernetes SIG Contributor Experience and an emeritus Kubernetes Steering Committee member. He is contributing to kcp in various ways in the recent past.He is a Release Manager... Read More →

Priyanka Saggu

Kubernetes GitHub Admin, SIG Contribex Technical Lead, 1.31 Emeritus Advisor, 1.29 Release Lead, SUSE

Priyanka Saggu is a Kubernetes Engineer at SUSE, and has made significant contributions to Kubernetes project via Release, ContribEx, Testing and CLI SIGs. She's the Emeritus Advisor for Kubernetes 1.31 release cycle, Release Lead for Kubernetes 1.29, Kubernetes GitHub Admin, and... Read More →

Madhav Jivrajani

Kubernetes Maintainer, UIUC

Madhav is currently working at VMware on upstream Kubernetes. He has been a part of the Kubernetes community for about a year and mainly helps out with SIG-{Contribex, Node, Architecture, API-Machinery}. He was also involved with the structured logging efforts in the Kubernetes project... Read More →

Mario Fahlandt

Customer Delivery Architect, Kubermatic

Mario is from a small village in Germany and working for Kubermatic. He studied creative media at an English university and moved his field of knowledge to Cloud Native Infrastructure. He is working as a Customer Delivery Architect with the focus on planning and building concepts... Read More →

Friday April 4, 2025 11:45 - 12:15 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Kubernetes, Special Interest Group (SIG) Contributor Experience

11:45 BST

How We Tackle KubeVirt’s Growth and Scalability - Ľuboslav Pivarč, Red Hat & Alay Patel, NVIDIA

Friday April 4, 2025 11:45 - 12:15 BST

Level 3 | ICC Capital Suite 7-9

KubeVirt continues to grow at a considerable pace, and combined with our focus on Graduation, KubeVirt has had to evolve our processes and community structure to scale with the project size and community needs.
How we can test VMs at scale is part of this: minimising infrastructure requirements while maximising the limits that we can test and measure. After all, with great growth comes greater infrastructure responsibility.

In this talk we will follow up on the vision we shared in 2022, and how we have now enhanced our CI testing with Kwok, which allows us to create cluster simulations of 1000 nodes in seconds, without adding to our infra cost.
You can expect a comparison of our current approach of testing scalability with Kwok, challenges we had to overcome, and the advantages gained.

But life isn’t just testing and benchmarks. We will also cover our recent community structure changes, recent achievements, features, and engagements in the wider ecosystem.

Speakers

Ľuboslav Pivarč

Software Engineer, Red Hat

Ľuboslav Pivarč, Seminar Tutor & Software engineer at Red Hat. I have been working on Kubevirt for almost 3 years. I have been working with containers and Kubernetes since 2018. Within my free time, I worked as a seminar tutor (on and off) at the Faculty of Informatics, Masaryk... Read More →

Alay Patel

Senior Software Engineer, Nvidia

Alay is a Senior Software Engineer at Nvidia where he works on cloud gaming service, managing infrastructure for GPU workloads. He is passionate about open source with a focus on Kubernetes and platform engineering.

Friday April 4, 2025 11:45 - 12:15 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, KubeVirt

11:45 BST

Kubernetes SIG Architecture Intro and Updates - John Belamaric, Google & Davanum Srinivas, AWS

Friday April 4, 2025 11:45 - 12:15 BST

Level 3 | ICC Capital Suite 10-12

SIG Architecture maintains and evolves the design principles of Kubernetes, and provides a consistent body of expertise necessary to ensure architectural consistency over time. The SIG takes care of evolution of conformance definitions, API definitions/conventions, deprecation policy, design principles, and other cross-cutting concerns. In this talk, we will provide an introduction to SIG architecture, including its role and the various subprojects that support its activities. Additionally, we will provide a community update on the status of those efforts.

Speakers

Davanum Srinivas (Dims)

Principal Engineer, AWS

Davanum Srinivas (a.k.a Dims) is a Principal Engineer with AWS working full time on Kubernetes and related projects at CNCF. At CNCF, Dims is a member of the Technical Oversight Committee and as the current chair, represents the TOC on the CNCF Governing Board. In Kubernetes project... Read More →

John Belamaric

Senior Staff Software Engineer, Google

Friday April 4, 2025 11:45 - 12:15 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Architecture

13:45 BST

Bridge the Gap To OSS Adoption With Documentation: A Kubernetes Story - Rey Lejano, Red Hat; Natali Vlatko, Cisco; Divya Mohan, SUSE

Friday April 4, 2025 13:45 - 14:15 BST

Platinum Suite | Level 3 | Room 1-2

Accessible, comprehensive, and easy-to-read documentation aids open source project adoption.
New users of an open source project often follow the documentation to deploy the project.
Good documentation leads users to successfully deploy the project -- potentially leading to adoption.

This session highlights key strategies, factors, and attributes that aided the success of the Kubernetes documentation. Some of these include the importance of writing from a second-person perspective and accepting PRs that are "good enough" and not perfect, which creates a lower barrier to entry for new contributors to improve the docs. This talk will review many more strategies, factors, and attributes of the Kubernetes documentation that can be adopted by other projects and are helpful for future Kubernetes documentation contributors.

Speakers

Divya Mohan

Principal Technology Advocate, SUSE

Divya is a Senior Technical Evangelist at SUSE, where she contributes to Rancher’s cloud native open source projects. She co-chairs the documentation for the Kubernetes & LitmusChaos projects & has previously worked extensively in the systems engineering space during her tenure... Read More →

Natali Vlatko

Open Source Lead Architect, Cisco

Natali Vlatko (she/her) is an Open Source Architect at Cisco, specializing in open software, policy, and governance, and is a SIG Docs Co-Chair for Kubernetes. She plays on the fun computer in her spare time. Her academic background is in Egyptology and Archaeology; specifically... Read More →

Rey Lejano

Solutions Architect, CNCF Ambassador, K8s SIG Docs co-chair, Red Hat

Rey Lejano is a Solutions Architect at Red Hat and is the co-chair of Kubernetes SIG Docs. He contributes to Kubernetes SIG Security, Release, & Contributor Experience. He is a member of seven Kubernetes Release Teams including serving as the 1.23 Release Lead and 1.25 Emeritus Adviser... Read More →

Friday April 4, 2025 13:45 - 14:15 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Kubernetes

13:45 BST

Fluent Bit v4: A Decade of Innovation and What’s Next - Eduardo Silva, Chronosphere

Friday April 4, 2025 13:45 - 14:15 BST

Platinum Suite | Level 3 | Room 3-4

Fluent Bit has become the de facto standard for log processing in Kubernetes, powering observability pipelines across countless deployments. As we celebrate 10 years of Fluent Bit, we are excited to introduce Fluent Bit v4: a major milestone that pushes the boundaries of performance, efficiency, and interoperability.

This release brings extended and faster processing capabilities, deeper OpenTelemetry signals integration, expanded Prometheus support, and performance optimizations that further enhance Fluent Bit’s lightweight and high-performance design. In this session, we’ll explore what’s new in Fluent Bit v4, discuss real-world use cases, and showcase the next evolution of observability pipelines.

Whether you’re a long time user or new to Fluent Bit, this talk will provide valuable insights into the latest advancements and how they can elevate your observability stack.Fluent Bit has become the de facto standard for log processing in Kubernetes, powering observability pipelines across countless deployments. As we celebrate 10 years of Fluent Bit, we are excited to introduce Fluent Bit v4: a major milestone that pushes the boundaries of performance, efficiency, and interoperability.

Speakers

Eduardo Silva

Engineering manager, Chronosphere

Eduardo is an entrepreneur and Software Engineer. He is one of Fluentd project maintainers and creator of Fluent Bit, a lightweight Logs, Metrics, and Traces processor.

Friday April 4, 2025 13:45 - 14:15 BST
Platinum Suite | Level 3 | Room 3-4

Maintainer Track, Fluent Bit

13:45 BST

KubeEdge DeepDive: Architecture, Use Cases, and Project Graduation Updates - Fei Xu, Huawei & Hongbing Zhang, DaoCloud

Friday April 4, 2025 13:45 - 14:15 BST

Level 3 | ICC Capital Suite 7-9

In this session, KubeEdge project maintainers will provide an overview of KubeEdge's architecture and its industry-specific use cases. The session will begin with a brief introduction to edge computing and its growing importance in IoT and distributed systems. The maintainers will then delve into the core components and architecture of KubeEdge, demonstrating how it extends Kubernetes' capabilities to manage edge computing workloads efficiently. They will share success stories and insights from organizations that have deployed KubeEdge in various edge environments, such as smart cities, industrial IoT, edge AI, robotics, and retail, highlighting the tangible benefits and transformational possibilities. Additionally, the session will introduce the certified KubeEdge conformance test, hardware test, discuss advancements in technology and community governance within the KubeEdge project, and share the latest updates on the project's graduation status.

Speakers

Fei Xu

Senior Software Engineer, Huawei Cloud

Huawei Cloud, Senior Software Engineer KubeEdge TSC Member, Senior Software Engineer at Huawei Cloud. Focusing on Cloud Native,Kubernetes, EdgeComputing, EdgeAI and other fields. Currently maintaining the KubeEdge project which is a CNCF graduated project. And has rich experience... Read More →

Hongbing Zhang

KubeEdge TSC Member, Chief Operating Officer, DaoCloud

Hongbing Zhang is Chief Operating Officer of DaoCloud. He is a veteran in open source areas, he founded IBM China Linux team in 2011 and organized team to make significant contributions in Linux Kernel/openstack/hadoop projects. Now he is focusing on cloud native domain and leading... Read More →

Friday April 4, 2025 13:45 - 14:15 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, KubeEdge

13:45 BST

Managing Data at Scale: Best Practices and Evolution of SIG-Apps - Maciej Szulik, Defense Unicorns & Janet Kuo, Google

Friday April 4, 2025 13:45 - 14:15 BST

Level 3 | ICC Capital Suite 10-12

Over the past year, Kubernetes has expanded support for high-volume data workloads through Jobs, while the Workload APIs (StatefulSet, ReplicaSet, PDBs, etc.) have become more mature, consistent, and full-featured. SIG Apps has been hard at work, and there's even more on the horizon.

In this session, the SIG Apps leads will provide an overview of the accomplishments over the past year. They will delve into specific changes that have been implemented and discuss potential directions for further improvements. A significant focus will be on the Node Maintenance and Evacuation proposals, as well as other features requiring community input to reach completion.

The session will conclude with an open discussion and Q&A, offering attendees insights into contributing to SIG Apps and becoming part of its ongoing evolution.

Speakers

Janet Kuo

Staff Software Engineer, Google

Janet Kuo is a Staff Software Engineer at Google. She's joined the Kubernetes project since before the 1.0 launch in 2015. She is Kubernetes project maintainer, SIG Apps chair, and KubeCon co-chair emeritus. In her free time, she enjoys traveling and taking photos.

Maciej Szulik

Staff Platform Engineer, Defense Unicorns

Friday April 4, 2025 13:45 - 14:15 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, Apps

13:45 BST

Notary Project: The Key To Secure Software Supply Chain - Yi Zha, Microsoft & Guillaume Gill, OrangeLogic

Friday April 4, 2025 13:45 - 14:15 BST

Level 3 | ICC Capital Suite 14-16

Ensuring a secure software supply chain for container images is crucial in the cloud-native ecosystem. The Notary Project provides a robust solution for signing and validating container images and other artifacts, ensuring they come from trusted sources and have not been tampered with before use. In this session, Guillaume from OrangeLogic will discuss their enterprise practice of using the Notary Project to secure container images during the transformation to a cloud-native approach. Attendees will learn about the challenges faced, lessons learned, and benefits of using the Notary Project. Additionally, attendees will get a deep dive into the Notary Project, covering: mission and strategy, security audit, New scenarios and Roadmap. Join this session to discover why the Notary Project is the key to a secure software supply chain. Whether you’re new to container security, an experienced professional, or interested in contributing to the Notary Project, this session is not to be missed!

Speakers

Yi Zha

Senior Product Manager, Microsoft

Yi is a senior product manager on the Cloud Native Security and Registries team at Microsoft, dedicated to developing best-in-class solutions and tools that help Azure customers secure their software supply chain. He also plays a key role as a maintainer for the CNCF projects Notary... Read More →

Guillaume Gill

Lead Platform Engineer, OrangeLogic

Guillaume comes from software development on the web, for high traffic ecommerces and ERP, Then he migrated to the pure sysadmin side after 8 years, to start learning new skills. He finally came DevOps immediately by helping both teams working more efficiently and automate the processes.He's... Read More →

Friday April 4, 2025 13:45 - 14:15 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Notary

14:30 BST

Discover CNCF TAG Runtime: Advancing Cloud-Native Innovation from AI to Edge - Ricardo Aravena, Snowflake; Stephen Rust, Akamai; Rajas Kokodkar, Broadcom; Alexander Kanevskiy, Intel; Danielle Tal, Microsoft

Friday April 4, 2025 14:30 - 15:00 BST

Platinum Suite | Level 3 | Room 1-2

Join us at KubeCon + CloudNativeCon Europe 2025 in London to explore the evolving CNCF TAG Runtime ecosystem. This session dives into:

- CNCF Projects: An overview of key open-source projects driving cloud-native workloads.

- Working Group Updates:
- Cloud Native AI: How AI and cloud-native tech empower each other.
- WASM, Edge, and Batch: Innovations in WebAssembly, edge computing, and batch processing.
- Special-Purpose OS and CDI: Advances in lightweight OS and Container Device Interface.

- Emerging Trends: Insights into the future of cloud-native runtime technologies.

- Community Involvement: Learn how to contribute, grow as a contributor, and influence runtime projects in the CNCF landscape.

Discover the latest developments, connect with dynamic communities, and shape the future of open-source cloud-native runtime technologies. Join us to master the CNCF runtime ecosystem!

Speakers

Danielle Tal

PM, Microsoft

Danielle Tal is a Program Manager at Microsoft and an integral part of the team responsible for maintaining Flatcar Container Linux. The team is contributes to Linux OS distributions and Linux Security within Azure and other upstream projects. With a background in supporting diverse... Read More →

Alexander Kanevskiy

Principal Engineer, Cloud Orchestration Software, Intel Finland

Alexander is currently employed by Intel as Principal Engineer, Cloud Software, focusing on various aspects in Kubernetes: Resource Management, Device plugins for hardware accelerators, Cluster Lifecycle and Cluster APIs. Alexander has over 25+ years of experience in areas of Linux... Read More →

Ricardo Aravena

Cloud Native Lead, Snowflake

Ricardo currently works at TruEra as a Cloud Infrastructure Lead helping automate everything with cloud native technologies. He's an open source enthusiast and co-chair of the CNCF TAG-Runtime. He has been working in tech for more than 20 years and comes from a diverse professional... Read More →

Rajas Kakodkar

Senior Member of Technical Staff | Tech Lead TAG Runtime CNCF, Broadcom

Rajas is a senior member of technical staff at Broadcom and a tech lead of the CNCF Technical Advisory Group, Runtime. He is actively involved in the AI working group in the CNCF. He is a Kubernetes contributor and has been a maintainer of the Kube Proxy Next Gen Project. He has also... Read More →

Stephen Rust

Principal Architect, Akamai

Stephen Rust is a Principal Architect at Akamai, where he leads Cloud Native architecture within the Akamai Linode Cloud. Stephen has over 20 years of experience in operating systems, storage, and working in open source with containers, Kubernetes, and Cloud Native systems. At Akamai... Read More →

Friday April 4, 2025 14:30 - 15:00 BST
Platinum Suite | Level 3 | Room 1-2

Maintainer Track, Runtime

14:30 BST

Evolving OpenID Connect and Observability in Keycloak - Ryan Emerson, Red Hat & Takashi Norimatsu, Hitachi

Friday April 4, 2025 14:30 - 15:00 BST

Level 3 | ICC Capital Suite 7-9

OpenID Connect and observability have evolved a lot over the past year in the Keycloak project.

Keycloak's OAuth Special Interest Group has contributed security features related to OAuth 2.0 and OpenID Connect. We will demonstrate OAuth 2.0 Demonstrating Proof of Possession to make single page applications and native applications more secure, and OpenID Federation 1.0 support for building trust relationships between OpenID Providers and Relying Parties.

For better observability Keycloak now provides a full guide on how to use metrics for Service Level Indicators (SLI), Service Level Objectives (SLO), troubleshooting and sizing, together with example Grafana dashboards. Users will learn how they can utilise the Keycloak metrics and Grafana dashboards to identify excess request latencies that breach their SLO, we will then demonstrate how OpenTelemetry tracing can help debug the root cause of such breaches.

Speakers

Takashi Norimatsu

Senior OSS Specialist, Hitachi, Ltd.

Takashi Norimatsu, Senior OSS Specialist, Hitachi, Ltd. is a maintainer of Keycloak. He has been implemented and contributed security features like Financial-grade API (FAPI) security profiles, W3C Web Authentication (WebAuthn) API support. He leads Keycloak's community "OAuth SIG... Read More →

Ryan Emerson

Principal Software Engineer, Red Hat

Ryan Emerson is a Principal Software Engineer at Red Hat and a member of the Infinispan and Keycloak open-source product teams. He works on evolving Keycloak's HA architectures and improving day 2 operational capabilities, in addition to leading the development of the Infinispan Kubernetes... Read More →

Friday April 4, 2025 14:30 - 15:00 BST
Level 3 | ICC Capital Suite 7-9

Maintainer Track, Keycloak

14:30 BST

SIG Scheduling Intro & Updates - Maciej Skoczeń, Google; Kensei Nakada, Tetrate.io

Friday April 4, 2025 14:30 - 15:00 BST

Level 3 | ICC Capital Suite 14-16

SIG Scheduling is responsible for the components that make Pod scheduling decisions in a Kubernetes cluster, such as kube-scheduler for pod to node assignment, kueue for job queueing, Kwok for scheduling load testing, among other projects. In this session, you will learn the basics of these projects and how they can be extended. You will also learn about our recent advancements and ongoing work, such as higher scheduling throughput in kube-scheduler, fair sharing and hierarchical cohorts in Kueue and evaluating clusters’ performance and scalability efficiently using Kwok.

Speakers

Kensei Nakada

Software Engineer, Tetrate.io

Kensei Nakada is a platform engineer at Tetrate. In the community, he is a sig-scheduling approver, and a core maintainer of the project kube-scheduler-simulator and kube-scheduler-wasm-extension.

Maciej Skoczeń

Software Engineer, Google

Software Engineer at Google and SIG-Scheduling Reviewer. As a contributor, focusing mainly on measuring and improving performance of kube-scheduler.

Friday April 4, 2025 14:30 - 15:00 BST
Level 3 | ICC Capital Suite 14-16

Maintainer Track, Scheduling

14:30 BST

The NATS Stack - Libraries Extensions and the Execution Engine - Tomasz Pietrek & Jordan Rash, Synadia

Friday April 4, 2025 14:30 - 15:00 BST

Level 3 | ICC Capital Suite 10-12

NATS has grown far beyond its roots as a messaging system, and today it's evolving into a complete platform for building distributed applications.
In this session, we'll take a closer look at the latest additions to the NATS ecosystem, focusing on how they simplify solving real-world problems.

We'll explore new library extensions and their practical applications,
dive into how Leafnodes are unlocking powerful edge capabilities for modern, geographically distributed systems,
and walk you through a live demo where with power of NATS Execution Engine it all comes together.

Whether you're a seasoned developer or new to NATS, this talk will inspire you to rethink what's possible with a messaging system that goes beyond messaging.
Join us to discover how the NATS Stack can help you build scalable, reliable, and efficient applications with ease.

Speakers

Tomasz Pietrek

OSS Engineering Manager, Synadia

Tomasz is OSS Engineering Manager at Synadia, spearheading thr OSS team while actively contributing to key NATS projects, including NATS Server, Rust client and others. Before that he held Principal Architect, Tech Lead and Solution Architect roles in companies spanning Fintech, Industry... Read More →

Jordan Rash

Software Engineer, Synadia

Jordan is a US Navy veteran and software developer based in Denver, CO, with a career deeply rooted in open-source software and cybersecurity. Currently, he is part of the team at Synadia developing the NATS Execution Engine, bringing cutting-edge solutions to distributed systems... Read More →

Friday April 4, 2025 14:30 - 15:00 BST
Level 3 | ICC Capital Suite 10-12

Maintainer Track, NATS