Loading…
In-person
1-4 April 2025
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in British Summer Time (BST) (UTC +1). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis. 
or to bookmark your favorites and sync them to your phone or calendar.
Type: Maintainer Track clear filter
Thursday, April 3
 

14:15 BST

Redesigning Ingress: Docker’s Transition To the Next-Gen Gateway API - Kateryna Nezdolii & Ryan Hristovski, Docker
Thursday April 3, 2025 14:15 - 14:45 BST
Level 3 | ICC Capital Suite 14-16
This presentation shares Docker's journey in redesigning its ingress system and migrating live traffic from a HAProxy and Nginx-based perimeter to an Envoy Gateway-powered ingress. The talk delves into the critical design decisions behind choosing Envoy Gateway, the challenges encountered, and the solutions that ensured a smooth transition.

Attendees will gain insights into implementing decentralized routing configurations with safe defaults and managing live migrations using techniques like safe canary rollouts with fast rollback mechanisms to ensure zero downtime.

Operational considerations, including latency optimization and improving developer experience, will also be discussed. This session will provide practical, actionable guidance for anyone seeking to build a cloud-native, scalable, and reliable ingress system.
Speakers
avatar for Kateryna Nezdolii

Kateryna Nezdolii

Engineer, Docker
Kateryna is an Infrastructure engineer at Docker where she works on Ingress initiative. Throughout her career she has been passionate about open source and cloud native technologies. Prior to joining Docker she has been part of Spotify Traffic Team where her focus was on shaping and... Read More →
avatar for Ryan Hristovski

Ryan Hristovski

Senior Software Engineer, Infrastructure, Docker, Inc
Ryan is a Senior Software Engineer at Docker specializing in distributed systems and networking. He led Docker’s migration from HAProxy to Envoy Gateway and introduced IPv6 support to the world’s most trafficked image registry, Docker Hub. Additionally, he drove the inception... Read More →
Thursday April 3, 2025 14:15 - 14:45 BST
Level 3 | ICC Capital Suite 14-16
  Maintainer Track, Envoy

14:15 BST

Securing the Gateway: A Deep Dive Into Envoy Gateway's Advanced Security Policy - Huabing (Robin) Zhao, Tetrate
Thursday April 3, 2025 14:15 - 14:45 BST
Level 3 | ICC Capital Suite 10-12
Envoy Gateway, a growing project within the Envoy ecosystem, has steadily gained traction since its release, with v1.3 now available and adoption expanding across various production environments. It efficiently manages Envoy-based application gateways, fully complying with the Kubernetes Gateway API while extending its capabilities through custom resource definitions (CRDs) to address areas beyond the Gateway API's current scope. Envoy Gateway's Security Policy simplifies access to Envoy's robust security features, eliminating the need for users to navigate complex Envoy configurations. These features include CORS, JWT authentication, Basic Auth, OpenID Connect (OIDC), External Authentication (Ext Auth), and more. This session includes a demo showcasing OIDC authentication and authorization based on JWT claims, offering practical insights for enhancing application security—whether you're an experienced Envoy user or new to open source.
Speakers
avatar for Huabing Zhao

Huabing Zhao

Engineer, tetrate
Huabing Zhao is a software engineer at Tetrate and a CNCF ambassador. He has developed a managed service mesh product on the cloud and assisted a lot of users in deploying Istio service mesh in production. He also founded Aeraki Mesh, a CNCF sandbox project that facilitates non-HTTP... Read More →
Thursday April 3, 2025 14:15 - 14:45 BST
Level 3 | ICC Capital Suite 10-12
  Maintainer Track, Envoy
 
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Monday, March 31
Tuesday, April 1
Wednesday, April 2
Thursday, April 3
Friday, April 4
Bafta | Ray Dolby Room
Civo Tech Junction
Crowne Plaza London Docklands
Level 0 | ICC Auditorium
Level 0 | ICC Capital Hall | Room 1
Level 0 | ICC Capital Hall | Room 2
Level 1 | Hall Entrance N10 | Room E
Level 1 | Hall Entrance N10 | Room F
Level 1 | Hall Entrance N10 | Room G
Level 1 | Hall Entrance N10 | Room H
Level 1 | Hall Entrance N11
Level 1 | Hall Entrance S10 | Room A
Level 1 | Hall Entrance S10 | Room B
Level 1 | Hall Entrance S10 | Room C
Level 1 | Hall Entrance S10 | Room D
Level 1 | Hall Entrance S5
Level 1 | Hall Entrances S8 - S9, N8 - N9
Level 2 | South Gallery | Room 11 - 12
Level 3 | ICC Capital Suite 1
Level 3 | ICC Capital Suite 10-12
Level 3 | ICC Capital Suite 14-16
Level 3 | ICC Capital Suite 17
Level 3 | ICC Capital Suite 7-9
Platinum Suite | Level 3
Platinum Suite | Level 3 | Room 1-2
Platinum Suite | Level 3 | Room 3-4
The Steel Yard
  • 🚨 Contribfest
  • 🪧 Poster Sessions
  • AI + ML
  • Application Development
  • Breaks
  • ⚡ Lightning Talks
  • Cloud Native Experience
  • Cloud Native Novice
  • CNCF-hosted Co-located Events
  • Connectivity
  • Data Processing + Storage
  • Emerging + Advanced
  • Experiences
  • Keynote Sessions
  • Maintainer Track
  • Observability
  • Operations + Performance
  • Platform Engineering
  • Project Opportunities
  • Registration
  • Security
  • Solutions Showcase
  • Sponsor-hosted Co-located Event
  • Tutorials
  • Content Experience Level
  • Advanced
  • Any
  • Beginner
  • Intermediate