KubeCon + CloudNativeCon Europe 2025: Full Schedule

In-person
1-4 April 2025
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in British Summer Time (BST) (UTC +1). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis.

09:00 BST

Keynote: Welcome + Opening Remarks - Chris Aniszczyk, CTO, Cloud Native Computing Foundation

Wednesday April 2, 2025 09:00 - 09:25 BST

Level 0 | ICC Auditorium

Speakers

Chris Aniszczyk

CTO, Linux Foundation (CNCF)

Chris Aniszczyk is an open source executive and engineer with a passion for building a better world through open collaboration. He's currently a CTO at the Linux Foundation focused on developer relations and running the Open Container Initiative (OCI) / Cloud Native Computing Foundation... Read More →

Wednesday April 2, 2025 09:00 - 09:25 BST
Level 0 | ICC Auditorium

Keynote Sessions

09:26 BST

Keynote: Into the Black Box: Observability in the Age of LLMs - Christine Yen, CEO and Cofounder, Honeycomb

Wednesday April 2, 2025 09:26 - 09:41 BST

Level 0 | ICC Auditorium

LLMs can provide a quick injection of magic into an existing product (or product concept)! Most of us looking to build on LLMs aren't ML engineers or AI experts, after all, and this new wave of LLM offerings makes it easy for any of us to build something delightful.

But once that product or feature is shipped, in production, in front of users, the problems all collapse back into something that feels awfully familiar: performance challenges, questionable accuracy, and unhappy or confused users.

This talk will assert that building on LLMs is just like buliding on top of any other sort of black box in our architecture (APIs, DBs, etc)—this one just happens to be inherently unpredictable and probablistic.

We'll cover how to leverage observability best practices (like SLOs!) in this highly parameterized and rapidly evolving world, with nondeterministic outputs and a bunch of perceived risks—and you'll emerge more confident and ready to deal with this new AI-driven world.

Speakers

Christine Yen

CEO/Cofounder, Honeycomb

Christine is the CEO/cofounder of Honeycomb, an observability tool for teams who build and manage software that matters. She cares deeply about bridging the gap between devs and ops with technological and cultural improvements—and thinks that observability is really just a way... Read More →

Wednesday April 2, 2025 09:26 - 09:41 BST
Level 0 | ICC Auditorium

Keynote Sessions, Observability

Content Experience Level Intermediate

09:42 BST

09:48 BST

Keynote: AI Enabled Observability Explainers - We Actually Did Something With AI! - Vijay Samuel, Principal MTS, Architect, eBay

Wednesday April 2, 2025 09:48 - 10:03 BST

Level 0 | ICC Auditorium

If folks think that this will be yet another hand wavy AI talk, prepared to be disappointed! Over the last few quarters, the Observability platform team at eBay has embarked on the journey of building "Explainers" for telemetry signals. "So, you are just shoving data into an LLM, big deal!" - one might say. The approach that we took was slightly different. Yes, an LLM does know how to interpret an OTEL trace waterfall but does it do it predictably? No! For various reasons. This is where AI and Engineering have a beautiful marriage. For each signal, we have carefully married crafty algorithms and LLMs to create more predictable and accurate AI enabled experiences. Some of which include explaining traces, metrics and logs.

We have also cumulated these building block explainers to create compound explainers that can explain dashboards. This talk describes how things like critical path detection along with LLMs are better than just giving entire traces to the LLMs and more.

Speakers

Vijay Samuel

Principal MTS, Architect, eBay

Vijay Samuel works with eBay's Reliability Engineering as its architect. During his time at eBay Vijay has transformed eBay's observability platform into a cloud native offering that is primarily built on top of open source technologies. He loves to code in Go and play video game... Read More →

Wednesday April 2, 2025 09:48 - 10:03 BST
Level 0 | ICC Auditorium

Keynote Sessions, Observability

Content Experience Level Intermediate

10:04 BST

10:10 BST

Keynote: The Observability Platform Engineering Advantage: From Zero-Code to Monitoring as Code - Kasper Borg Nissen, Developer Relations Engineer, Dash0

Wednesday April 2, 2025 10:10 - 10:25 BST

Level 0 | ICC Auditorium

Observability is often an afterthought in platform engineering and many organizations settle for a "good enough" approach, leading to fragmented data, complex query languages, and vendor lock-in. But a cohesive observability strategy is critical, not just for applications running on the platform, but also for the platform itself and the services it depends on.

Enter OpenTelemetry, a CNCF project that unifies observability data across traces, logs, and metrics, reducing metadata fragmentation and vendor-specific lock-in. With zero-code instrumentation, developers can collect insights effortlessly, while platform engineers can enforce observability as code, enabling scalable, repeatable monitoring.

This session explores how platform engineers can bridge the gap between developers, operators, and observability by integrating OpenTelemetry into cloud-native stacks. You'll learn how to simplify instrumentation, leverage monitoring as code with OpenTelemetry Operator and Perses (CNCF Sandbox project), and optimize observability across multiple layers of your platform. By embracing open standards, you can enhance visibility, reduce complexity, and build a more resilient, insight-driven platform.

Speakers

Kasper Borg Nissen

Developer Relations Engineer, Dash0

Kasper is a Developer Relations Engineer at Dash0, where he is thrilled to step into the observability space. He looks forward to promoting open standards with OpenTelemetry and Perses, helping teams gain deeper insights into their systems. Previously, Kasper served as a Staff Platform... Read More →

Wednesday April 2, 2025 10:10 - 10:25 BST
Level 0 | ICC Auditorium

Keynote Sessions

10:26 BST

Keynote: Empowering Accessibility Through Kubernetes: The Future of Real-Time Sign Language Interpretation - Rob Koch, Principal, Slalom Build

Wednesday April 2, 2025 10:26 - 10:41 BST

Level 0 | ICC Auditorium

Communication barriers exclude millions of people from fully participating in everyday interactions. For the deaf and hard-of-hearing community, the absence of scalable, real-time sign language interpretation remains a persistent challenge. In this session, we will demonstrate a forward-looking AI-powered application that translates sign language into spoken language, deployed and orchestrated on Kubernetes. This application leverages generative AI (LxMs) to scale for multiple users, representing a step toward a future where communication is accessible to all.
Using the sign language translation use case, the session will demonstrate how Kubernetes is well positioned to support AI workloads, how it optimizes cluster resources for video and language processing, and how it integrates seamlessly with generative AI use-cases.

Speakers

Rob Koch

Principal, Slalom Build

A tech enthusiast who thrives on steering projects from their initial spark to successful fruition, Rob Koch is Principal at Slalom Build, AWS Hero, and Co-chair of the CNCF Deaf and Hard of Hearing Working Group. His expertise in architecting event-driven systems is firmly rooted... Read More →

Wednesday April 2, 2025 10:26 - 10:41 BST
Level 0 | ICC Auditorium

Keynote Sessions, AI + ML

Content Experience Level Intermediate

10:42 BST

Keynote: Closing Remarks

Wednesday April 2, 2025 10:42 - 10:45 BST

Level 0 | ICC Auditorium

Wednesday April 2, 2025 10:42 - 10:45 BST
Level 0 | ICC Auditorium

Keynote Sessions

14:30 BST

Trust No One: Secure Storage With Confidential Containers - Aurélien Bombo, Microsoft

Wednesday April 2, 2025 14:30 - 15:00 BST

Level 0 | ICC Auditorium

If you are processing and storing sensitive data in the cloud, can you really trust anyone (including the cloud)? The answer is no. Confidential Containers (CoCo) is a CNCF project that leverages Trusted Execution Environments (TEEs) to tackle this challenge. A critical aspect in this effort is providing secure and confidential storage solutions that can be seamlessly deployed across cloud providers.

This session explores the implementation of trusted storage in CoCo, highlighting key aspects such as Kubernetes storage drivers, device virtualization, and the role of attestation in secure key release and data encryption. We also demonstrate how we prevent attackers from injecting data into the TEE using the CNCF Rego policy language.

Overall, we aim to show how cloud providers and end users can securely store and protect sensitive data, enabling the adoption of confidential computing across numerous use cases.

Speakers

Aurélien Bombo

Software Engineer, Microsoft

Aurélien is a contributor to the Confidential Containers project and serves on the Architecture Committee of sister project Kata Containers. At Microsoft, he works on the Linux confidential platform.

Wednesday April 2, 2025 14:30 - 15:00 BST
Level 0 | ICC Auditorium

Security

Content Experience Level Intermediate

15:15 BST

The Security Challenges of Running Untrusted Code in Production on Kubernetes at Internet Scale - Christian Weichel & Alejandro de Brito Fontes, Gitpod

Wednesday April 2, 2025 15:15 - 15:45 BST

Level 0 | ICC Auditorium

Running untrusted code from 1.5 million developers presents unique security challenges that push container isolation to its limits. At Gitpod, we spent six years building secure boundaries for development environments on Kubernetes, ultimately discovering fundamental security limitations that led us to rearchitect our platform. Our recent technical deep-dive blog ended up on Hacker News and sparked quite the intense debate (speakers are the OP).

This deep-dive examines our security evolution from standard container isolation to custom security implementations involving user namespaces, seccomp profiles, and network isolation. We'll explore how we handled privileged operations like Docker-in-Docker, FUSE filesystems, and root access requests while maintaining isolation. Whether you're dealing with multi-tenant workloads or running untrusted code, you'll gain practical insights about our learnings on real-world security boundaries in Kubernetes.

Speakers

Alejandro de Brito Fontes

Senior Engineer, Gitpod

Alejandro is a software entrepreneur and systems architect with more than 20 years of experience designing, building, and operating mission-critical IT infrastructure.

Christian Weichel

Chief Technology Officer, Gitpod

Chris Weichel is the Chief Technology Officer at Gitpod, where he leads the engineering team that builds and maintains the cloud-native platform for software development. With over 20 years of experience in software engineering and human-computer interaction, he has a comprehensive... Read More →

Wednesday April 2, 2025 15:15 - 15:45 BST
Level 0 | ICC Auditorium

Security

Content Experience Level Advanced

16:15 BST

Signed, Sealed, Delivered - Sign and Verify All the Things - Jeremy Rickard, Microsoft

Wednesday April 2, 2025 16:15 - 16:45 BST

Level 0 | ICC Auditorium

You're a cluster operator facing evolving supply chain threats. You're getting hit with rate-limits causing service availability issues. A configuration change made it into production and deployed unapproved images. Someone got access to your registry and tampered with an image. How do we handle these threat vectors? Digital signing and policy enforcement can help! In this talk, we'll look at how CNCF projects like ORAS, Notary, Flux, and Kyverno can be used together to ensure that everything in your production clusters, from images to configuration YAML, comes from a trusted source and has been digitally signed to ensure it hasn't been tampered with and. how to do this with a registry you control. You'll leave this session with knowledge of how these tools work together to enable you to protect your clusters, some of the gaps, and how you can address them. Jeremy will walk through a complete end-to-end experience and provide a Github repo with samples to take home.

Speakers

Jeremy Rickard

Principal Software Engineer, Microsoft

Jeremy Rickard is a principal software engineer at Microsoft where he works on the Azure Container Upstream team. He is currently a co-chair for SIG Release and serves on both the CNCF and the Kubernetes Code of Conduct Committees. He was also the Kubernetes 1.20 Release Lead.

Wednesday April 2, 2025 16:15 - 16:45 BST
Level 0 | ICC Auditorium

Security

Content Experience Level Any

17:45 BST

Securing AI Workloads: Building Zero-Trust Architecture for LLM Applications - Rohit Ghumare, Taikun & Joinal Ahmed, NTG

Wednesday April 2, 2025 17:45 - 18:15 BST

Level 0 | ICC Auditorium

As businesses increasingly rely on LLM applications for their important functions, it becomes important to implement strong security measures to protect sensitive information and guarantee smooth operations. This session shows how to build a zero-trust security architecture for AI workloads using cloud native patterns. We'll explore how to implement AI Gateways that have strong authentication and authorization and include audit logging. Keep compliance and governance requirements while you secure model artifacts and implement runtime security and protect against prompt injection attacks.

Speakers

Joinal Ahmed

head of ai, ntg

Joinal is an experienced Data Science professional with a interest on building solutions with quick prototypes, community engagements and influencing technology adoption.

Rohit Ghumare

DevRel As Service, Founder

As a Google Developer Expert specializing in Google Cloud, I am a passionate DevOps Advocate and a dedicated Community Evangelist. I lead and nurture multiple communities across diverse platforms, fostering DevOps and Developer Relations awareness. My commitment to the open-source... Read More →

Wednesday April 2, 2025 17:45 - 18:15 BST
Level 0 | ICC Auditorium

Security

Content Experience Level Intermediate

09:00 BST

Keynote: Welcome Back + Opening Remarks

Thursday April 3, 2025 09:00 - 09:05 BST

Level 0 | ICC Auditorium

Thursday April 3, 2025 09:00 - 09:05 BST
Level 0 | ICC Auditorium

Keynote Sessions

09:06 BST

Keynotes To Be Announced

Thursday April 3, 2025 09:06 - 09:27 BST

Level 0 | ICC Auditorium

Thursday April 3, 2025 09:06 - 09:27 BST
Level 0 | ICC Auditorium

Keynote Sessions

09:28 BST

Keynote: Awards Ceremony

Thursday April 3, 2025 09:28 - 09:38 BST

Level 0 | ICC Auditorium

Thursday April 3, 2025 09:28 - 09:38 BST
Level 0 | ICC Auditorium

Keynote Sessions

09:39 BST

Keynotes To Be Announced

Thursday April 3, 2025 09:39 - 10:10 BST

Level 0 | ICC Auditorium

Thursday April 3, 2025 09:39 - 10:10 BST
Level 0 | ICC Auditorium

Keynote Sessions

10:10 BST

Keynote: Adventures of Building a Platform as a Service for the Government - Hans Kristian Flaatten, Lead Platform Engineer, Norwegian Labor and Welfare Administration & Audun Fauchald Strand, Principal Software Engineer, NAV

Thursday April 3, 2025 10:10 - 10:25 BST

Level 0 | ICC Auditorium

Who said that Government Tech has to be boring? In Norway the largest administration has been using Kubernetes for over 7 years! StatefulSets had just been introduced (alpha) and RBAC was still in beta. During this time we moved from quarterly releases to thousands of continuous releases each week across our fleet of cloud native applications!

Could we replicate the success we had at NAV for other agencies? Could we provide them with a fully managed platform as a service to let them focus on building new and innovative services for their users and not reinventing the wheel by building yet another platform?

In this session Audun and Hans Kristian will share their experience building and operating one of the largest platforms of its kind in Norway providing a fully fledged application development platform for more than a 100 product teams. And how they set an ambitious goal of being able to provide their platform as a service to other agencies.

Speakers

Audun Fauchald Strand

Principal Software Engineer, and Director of Platforms, NAV

Principal Engineer at NAV. Worked for FINN.no before that. Loves to increase developer speed and make developers happy.

Hans Kristian Flaatten

Lead Platform Engineer, Norwegian Labor and Welfare Administration

CNCF Abassasor, Google Developer Expert (GDE) for Cloud, Grafana Champion and Platform Engineer at the Norwegian Labor and Welfare Administration (NAV) working on NAIS - a platform built to increase development speed by providing the best experience to build, run and operate applications... Read More →

Thursday April 3, 2025 10:10 - 10:25 BST
Level 0 | ICC Auditorium

Keynote Sessions, Platform Engineering

Content Experience Level Any

10:25 BST

Keynote: Closing Remarks

Thursday April 3, 2025 10:25 - 10:30 BST

Level 0 | ICC Auditorium

Thursday April 3, 2025 10:25 - 10:30 BST
Level 0 | ICC Auditorium

Keynote Sessions

14:15 BST

KubeCon FamilyFortune, Episode 2 - Tim Hockin, Google & Lucy Sweet, Uber

Thursday April 3, 2025 14:15 - 14:45 BST

Level 0 | ICC Auditorium

Join us for a rousing game of Family Fortune (Family Feud to our friends across the pond)! We will have silly questions with even sillier answers, as we try to guess what our global community of Kubernauts think.

Speakers

Tim Hockin

Distinguished Software Engineer, Google

Tim has spent most of his career at Google, where he works on Kubernetes and Google Kubernetes Engine (GKE). He is one of the technical leads of the Kubernetes project, and has been part of it since before it was publicly announced. He mostly pays attention to topics like APIs, networking... Read More →

Lucy Sweet

Senior Software Engineer, Uber

Lucy is a Senior Software Engineer at Uber Denmark who works on platform infrastructure

Thursday April 3, 2025 14:15 - 14:45 BST
Level 0 | ICC Auditorium

Cloud Native Experience

Content Experience Level Any

15:00 BST

Cloud Native Wheel of Fortune: 5 Spins for 5 Topics! - Steve Wade, Independent & Matteo Bianchi, GitHub

Thursday April 3, 2025 15:00 - 15:30 BST

Level 0 | ICC Auditorium

Reimagine the traditional conference talk in this dynamic, audience-driven session. You'll choose five topics from a curated list of 10 hot cloud-native themes.

Our catalogue includes cloud-native security, eBPF, cloud sustainability, GitOps, Platform Engineering, Networking, Service mesh, and the Kubernetes Release Cycle, but you can also add your proposal. The choice is yours!

Matteo and Steve will guide you through each chosen subject, offering expert insights, real-world applications, and actionable takeaways. This rapid-fire format promises a high-energy, engaging experience tailored to your interests.

This session offers a unique blend of breadth and depth, allowing you to explore multiple facets of the cloud native ecosystem in a compact timeframe. You'll expand your knowledge and hone your ability to quickly grasp and apply diverse cloud-native concepts - an invaluable skill in today's rapidly evolving tech landscape.

Speakers

Steven

Cloud Native Consultant & Trainer, Independent

Steve Wade founded The Cloud Native Club, a global community for cloud-native enthusiasts, and maintains the Flux Terraform Provider. As an experienced conference speaker, independent cloud-native consultant, and trainer, Steve shares his expertise worldwide. He has held platform... Read More →

Matteo Bianchi

Solutions Engineer, GitHub

Matteo is a CNCF Ambassador and Cloud Native aficionado, a former startup CTO, DevRel and current Solution Engineer. Kubernetes open source contributor, part of the release team since v.1.31, Comms Release Lead for v.1.32 and Release Lead Shadow for v.1.33Hacker, builder and problem... Read More →

Thursday April 3, 2025 15:00 - 15:30 BST
Level 0 | ICC Auditorium

Cloud Native Experience

Content Experience Level Any

16:45 BST

⚡Lightning Talk: High Availability With '503: Unavailable' - Robert-Jan Huijsman, Reboot

Thursday April 3, 2025 16:45 - 16:50 BST

Level 0 | ICC Auditorium

Traditionally, we think "high availability" ("HA") means "very rarely responds '503: Unavailable'". Our applications and platforms have a lot of code to support that. For example, Knative contains a "Queue-Proxy" that holds requests while an application is scaling up - so that it doesn't have to respond "503: Unavailable" while the application is unavailable!

However, users don’t care about HTTP return codes - they care when their request is answered. Can we deliver a great user experience without the complexity of buffering in-flight requests?

We recently took a different approach to HA: an application (built using Envoy, Istio, and gRPC) that doesn't hesitate to return "503: Unavailable" and expects clients to retry. We found this approach reduces complexity drastically, while maintaining all the metrics our users care about. In this talk we'll discuss which applications might see benefits from this approach, the pitfalls we had to avoid, and whether we're still "Highly Available".

Speakers

Robert-Jan Huijsman

Founding Engineer, Reboot

My passion is building systems - especially computer systems and the human systems (organizations) that build them. I studied computer science in Amsterdam, worked at Google (Spanner, Firebase) in Silicon Valley, ran my own intercontinental startup (Tracis), and am now the entire... Read More →

Thursday April 3, 2025 16:45 - 16:50 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Application Development

Content Experience Level Any

16:50 BST

⚡Lightning Talk: Kueue: Save Some QPS for the Rest of Us! How To Manage 100k Updates Per Second - Patryk Bundyra, Google

Thursday April 3, 2025 16:50 - 16:55 BST

Level 0 | ICC Auditorium

What if you had to update 100,000 objects every second? How do we avoid choking up the API server with such a load? Is directly modifying etcd objects even a viable option? In Kueue, we asked those questions a lot, and honestly, using standard CustomResourceDefinitions alone couldn’t keep up with the demands of this scale. In this session we will showcase how we combined the best of both worlds: CRDs and the good old K8s API Aggregation Layer to handle the dynamic positioning of up to 100,000 jobs in the queue.

Attendees will also gain valuable insights into system design decisions when dealing with such a scale and practical lessons for addressing similar challenges. We will delve into the pros and cons of both CRDs and the Aggregation Layer, providing clear guidance on when and why to use each. Finally, attendees will see how the K8s API Aggregation Layer extension works in practice and receive hands-on knowledge on choosing the right tool for the job.

Speakers

Patryk Bundyra

Software Engineer, Google

Patryk is a Software Engineer at Google working on Kueue, an open-source SIG project. Member of the Kubernetes Batch Working Group, always willing to collaborate and share his knowledge.

Thursday April 3, 2025 16:50 - 16:55 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Platform Engineering

Content Experience Level Any

16:55 BST

⚡Lightning Talk: Observability Diet: Your 5-Step Plan To Trim the Data Fat - Pranay Prateek, SigNoz

Thursday April 3, 2025 16:55 - 17:00 BST

Level 0 | ICC Auditorium

Many organizations drown in terabytes of telemetry data but often use only 20% of it.

In this lightning talk, we'll sprint through battle-tested strategies in OpenTelemetry to trim your observability costs without compromising visibility. From intelligent sampling to SDK optimization, learn how to implement a lean observability practice that focuses on signal over noise.

Key Takeaways:
- Sampling : Tail based sampling, head based sampling for traces, probabilistic sampler processor for logs
- Using processors in the Otel collector with granular filtering/dropping of irrelevant attributes - to control volume going out of collector
- Reduce the volumes at the SDKs by controlling what attributes are sent - e.g.control what http.headers are sent
- Visibility on cardinality in time series (and suggestions on what attributes to drop)
- Use `Views` in SDKs to customise aggregation or which attributed are reported in metrics
- Using granular retention settings to reduce observability costs

Speakers

Pranay Prateek

Maintainer, SigNoz

Pranay is one of the maintainers at SigNoz, an open source APM. He loves working on open source and observability, and has deep interest in philosophy esp. around Existentialism He is one of the organisers of OpenTelemetry APAC discussion group meetings & has been speaker in events... Read More →

Thursday April 3, 2025 16:55 - 17:00 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Application Development

Content Experience Level Beginner

17:00 BST

⚡Lightning Talk: Resource Roulette: Winning the Kubernetes Allocation Game - Daniele Polencic, Learnk8s

Thursday April 3, 2025 17:00 - 17:05 BST

Level 0 | ICC Auditorium

In this lightning talk, we'll challenge the conventional wisdom of setting static requests and limits for Kubernetes workloads. As applications evolve and usage patterns fluctuate, predefined resource allocations become obsolete, leading to either resource waste or performance bottlenecks.

In just 5 minutes, you'll learn:

- Quick techniques to identify resource misconfigurations
- Simple tricks for implementing adaptive resource management
- Easy-to-apply strategies for balancing cost and performance

Speakers

Daniele Polencic

Instructor, Learnk8s

Daniele teaches containers and Kubernetes at Learnk8s. Daniele is a certified Kubernetes administrator by the Linux Foundation. In the last decade, Daniele trained developers for companies in the e-commerce, finance and public sector.

Thursday April 3, 2025 17:00 - 17:05 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Application Development

Content Experience Level Any

17:05 BST

⚡Lightning Talk: Rust Here, Rust There, Rust Everywhere! How a Crab Conquers the Cloud Native Landscape. - Sascha Grunert, Red Hat

Thursday April 3, 2025 17:05 - 17:10 BST

Level 0 | ICC Auditorium

The Rust ecosystem is growing slow and steady into the cloud native landscape. While some projects like youki completely set on the memory safe programming language, do others like CRI-O try to integrate it only partially into their projects. The overall goal of using Rust over anything else is to achieve a more performant, efficient and reliable software.

In this lightning talk, Sascha will outline the benefits and drawbacks of using Rust over the more commonly used Go language in the cloud native space. It will provide funky examples of how to switch between those languages, what are good and bad practices and how to deliver a Rust application to end users. The talk will provide an overview about which parts of the cloud native landscape are already Rusty and what we can expect in the upcoming years.

Join this lightning talk for a quick and compact cloud native comparison between Rust’s Ferris the crab and Go’s Gopher!

Speakers

Sascha Grunert

Principal Software Engineer, Red Hat

Sascha is a Principle Software Engineer at Red Hat, where he works on many different container related open-source projects like Kubernetes. He joined the open-source community in November 2018. Sascha's passions include contributing to open source, as well as giving talks and evangelizing... Read More →

Thursday April 3, 2025 17:05 - 17:10 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Cloud Native Experience

Content Experience Level Beginner

17:10 BST

⚡Lightning Talk: Scaling To the Stars: Simulating Massive Clusters With KWOK - Soumya Balakrishnan, NVIDIA

Thursday April 3, 2025 17:10 - 17:15 BST

Level 0 | ICC Auditorium

At NVIDIA, we operate a large fleet of GPU Clusters that run Gaming and AI/ML workloads. As we expand, ensuring that we scale safely and efficiently becomes a critical challenge. Enter KWOK(Kubernetes Without Kubelet), our secret weapon for stress-testing new features before they hit production.
This talk will dive into how we integrate KWOK into our development pipeline, showcasing how it's helped us maintain stability while rapidly innovating.
1. Identifying resource utilization boundaries: Demonstrate how KWOK has helped us evaluate the resource limits that need to be set on service pods so they can operate within safe boundaries.
2. Code optimization insights: Share examples of how KWOK has helped optimize our automation tools, significantly reducing their memory footprint.
3. Performance testing at scale: Illustrate how KWOK enables us to simulate large-scale environments, allowing us to identify potential bottlenecks and optimize system performance before production deployment.

Speakers

Soumya Balakrishnan

Senior Software Engineer, NVIDIA

Soumya is a Senior DevOps Engineer at NVIDIA, specializing in cloud infrastructure and Kubernetes technologies.

Thursday April 3, 2025 17:10 - 17:15 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Platform Engineering

Content Experience Level Intermediate

17:15 BST

⚡Lightning Talk: Scheduling Success: Precision Updates for Continuous Manufacturing Operations - Raul - Mihail Galescu, Bosch Connected Industry

Thursday April 3, 2025 17:15 - 17:20 BST

Level 0 | ICC Auditorium

Cloud-native technologies are gaining traction in manufacturing, as the industry strives for zero-downtime deployments in production systems. However, many plants rely on legacy software that doesn’t integrate smoothly with cloud-native environments. Even when containerized, these components often fail to support seamless request redirection between replicas, causing disruptions during cluster or node updates. These disruptions require precise scheduling around plant shift plans. This lightning talk will explain why maintenance windows can still be effective and how Bosch Connected Industry addresses the limitations of public cloud providers' update controls. You’ll learn a simple yet effective approach to managing cluster updates and node image promotions in production-critical environments.

Speakers

Raul Galescu

Junior DevOps Engineer, Bosch Connected Industry

Raul is a Junior DevOps Engineer at Bosch Connected Industry, specializing in optimizing cloud-native solutions. Prior to this role, he worked as a Junior System Administrator at the West University of Timisoara and provided IT solutions to public institutions at a local company in... Read More →

Thursday April 3, 2025 17:15 - 17:20 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Platform Engineering

Content Experience Level Intermediate

17:20 BST

⚡Lightning Talk: Solving Real-World Edge Challenges With K0s, NATS, and Raspberry Pi Clusters - Prashant Ramhit, Mirantis, Inc.

Thursday April 3, 2025 17:20 - 17:25 BST

Level 0 | ICC Auditorium

Monitoring sea algae proliferation and coral growth in real time may seem daunting, but with the right tools, it becomes an exciting edge computing project. Using k0s, the lightweight CNCF-certified Kubernetes distribution, and NATS, the connective technology for edge computing, this project solved the challenges of data collection and processing in a distributed Raspberry Pi cluster.

Leveraging k0s’s minimal resource footprint and automated scaling, paired with NATS’s efficient messaging capabilities, the project enabled real-time sensor data collection and transmission under resource-constrained conditions. Dynamically bootstrapped Raspberry Pi clusters processed data locally while integrating with a central control plane.

Learn about dynamically bootstrapping Raspberry Pi clusters with k0s, managing distributed edge clusters, deploying NATS for scalable messaging, and scaling workloads based on environmental changes. See how k0s and NATS efficiently tackle real-world challenges.

Speakers

Prashant Ramhit

Snr. DevOps & QA, Mirantis, Inc.

Prashant is a skilled technologist with over two decades of experience, starting as a Linux System Administrator in the late 1990s. Progressing into SRE, DevOps, and Platform Engineering, he developed expertise in cloud-native systems and Golang development. Having worked at the BBC... Read More →

Thursday April 3, 2025 17:20 - 17:25 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Operations + Performance

Content Experience Level Beginner

17:25 BST

⚡Lightning Talk: There Is a New Volume Type in Town! - Mario Loriedo, Red Hat

Thursday April 3, 2025 17:25 - 17:30 BST

Level 0 | ICC Auditorium

Volumes of type “image” open new scenarios and ways to use containers. The primary use case is AI workloads, the main drive for KEP-4639, which introduced them. However, these new volumes can have a broader impact. They allow the composition of different OCI images to augment a workload’s capabilities. Think of it as a container sidecar, but without the container’s isolation and with volumes composability.

This lightning talk discusses the volumes of type “image” and their different use cases, from AI to workload troubleshooting.

Speakers

Mario Loriedo

Senior Principal Software Engineer, Red Hat

Mario is a Senior Principal Software Engineer at Red Hat. He works on Podman and on container-based developer tools. He has been a CNCF Ambassador and the tech lead of the Eclipse Che project. He has co-created the Devfile (a CNCF Sandbox Project). He has been a speaker at conferences... Read More →

Thursday April 3, 2025 17:25 - 17:30 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Cloud Native Experience

Content Experience Level Beginner

17:30 BST

⚡Lightning Talk: Extending Envoy With WebAssembly - Yuki Ito, newmo, Inc.

Thursday April 3, 2025 17:30 - 17:35 BST

Level 0 | ICC Auditorium

As a Cloud Native network proxy, Envoy has been widely used as a sidecar for Service Mesh, API Gateway, and many other cases. To deal with many custom requirements, Envoy has some extension points, one of which is the WebAssembly plugin feature.
In this Lightning Talk, the speaker, who is writing some WebAssembly plugins for Envoy and using them in a production environment, introduces the basics of the WebAssembly plugin for Envoy and explains how to write it using SDK by sharing some real-world examples.

Speakers

Yuki Ito

Software Architect, newmo, Inc.

Yuki is a software architect who promotes Platform Engineering, including API Platform, Cloud Infrastructure, CI/CD, and so on, for newmo, Inc. He also acts as a Google Cloud Champion Innovator in the fields of Serverless App Development and Modern Architecture.

Thursday April 3, 2025 17:30 - 17:35 BST
Level 0 | ICC Auditorium

⚡ Lightning Talks, Application Development

Content Experience Level Any

09:00 BST

Keynote: Welcome Back + Opening Remarks

Friday April 4, 2025 09:00 - 09:05 BST

Level 0 | ICC Auditorium

Friday April 4, 2025 09:00 - 09:05 BST
Level 0 | ICC Auditorium

Keynote Sessions

09:06 BST

Keynote: LLM-Aware Load Balancing in Kubernetes: A New Era of Efficiency - Clayton Coleman, Distinguished Engineer, Google & Jiaxin Shan, Software Engineer, Bytedance

Friday April 4, 2025 09:06 - 09:21 BST

Level 0 | ICC Auditorium

Traditional load balancing approaches, including round robin or those relying on metrics like QPS are often ineffective when applied to LLM serving. LLM requests vary significantly in computational demands due to prompt length, the model differences and their autoregressive nature, leading to unpredictable request running times. Moreover, the emergence of model multiplexing techniques (e.g., LoRA) introduces new complexities that necessitate LLM-aware load balancing strategies.
In this talk, we introduce a new set of Kubernetes APIs for routing to LLM workloads that allow configuration of serving objectives and priorities for each use case. These APIs integrate seamlessly with Gateway API, and an included extension means that support for these APIs can easily be plugged into many Gateway API implementations to enable turnkey LLM routing support.
This talk will show this project in action, demonstrating the significant improvements it can enable across a variety of real world examples.

Speakers

Jiaxin

Software Engineer, Bytedance

Jiaxin works at ByteDance Infrastructure Lab, focusing on serverless and AI infrastructure. He is also a co-chair of Kubernetes WG-Serving, Jiaxin drives innovations and contributes to the future of scalable AI systems.

Clayton Coleman

Distinguished Engineer, Google

Architect, engineer, and strategic visionary for application platforms in the cloud. Core contributor to Kubernetes and OpenShift, the open source platform as a service and the containerized cluster manager. I helped launch the shift to cloud native applications and the platforms... Read More →

Friday April 4, 2025 09:06 - 09:21 BST
Level 0 | ICC Auditorium

Keynote Sessions, AI + ML

Content Experience Level Intermediate

09:22 BST

Keynotes To Be Announced

Friday April 4, 2025 09:22 - 09:42 BST

Level 0 | ICC Auditorium

Friday April 4, 2025 09:22 - 09:42 BST
Level 0 | ICC Auditorium

Keynote Sessions

09:43 BST

Keynote: Cutting Through the Fog: Clarifying CRA Compliance in Cloud Native - Eddie Knight, OSPO Lead, Sonatype & Michael Lieberman, CTO, Kusari

Friday April 4, 2025 09:43 - 09:58 BST

Level 0 | ICC Auditorium

With the final release of the European Union’s Cyber Resilience Act, it would be fair to have concern about its implications to both the software you create and the resources you depend on. Much like London’s notorious fog, the hype and fear around the CRA have obscured the path our community is on.

In their role as leaders of CNCF’s Technical Advisory Group for Security and as maintainers of the OpenSSF Security Baseline, speakers Eddie Knight and Michael Lieberman are uniquely equipped to shed light on both the benefits and complexities of CRA.

This talk will be a light-hearted exploration of how cloud technology, open source projects, and end users can all benefit from the CRA— and how software creators can avoid falling on the wrong side of the law.

Speakers

Michael Lieberman

CTO, Kusari

Michael Lieberman is co-founder and CTO of Kusari where he helps build transparency and security in the software supply chain. Michael is an active member of the open-source community, co-creating the GUAC and FRSCA projects and co-leading the CNCF’s Secure Software Factory Reference... Read More →

Eddie Knight

OSPO Lead, Sonatype

Eddie Knight is a Software and Cloud Engineer with a background in banking technology. When he isn’t playing with his 2-year-old son, he combines his passion and job duties by working to improve the security of open source software.Eddie helps lead CNCF's Security Technical Advisory... Read More →

Friday April 4, 2025 09:43 - 09:58 BST
Level 0 | ICC Auditorium

Keynote Sessions, Security

Content Experience Level Any

09:59 BST

Keynotes To Be Announced

Friday April 4, 2025 09:59 - 10:10 BST

Level 0 | ICC Auditorium

Friday April 4, 2025 09:59 - 10:10 BST
Level 0 | ICC Auditorium

Keynote Sessions

10:10 BST

Keynote: Science at Light Speed: Cloud Native Infrastructure for Astronomy Workloads - Carolina Lindqvist, System Specialist, EPFL

Friday April 4, 2025 10:10 - 10:25 BST

Level 0 | ICC Auditorium

The Square Kilometre Array (SKA) project is a global collaboration for constructing the world’s largest radio telescope. This presentation shows how the Swiss SKA Regional Center (CHSRC) unit within the global SKA Regional Center Network (SRCNet) collaboration uses Kubernetes as a service management plane and leverages its ecosystem to build a novel infrastructure to support data- and compute-intensive astronomy use cases. The main focus is on an example setup of a Kubernetes cluster, showing how cloud-native tools are leveraged to interact with external storage and compute services, and demonstrating how to build infrastructure suitable for multiple sites. It is applicable both for beginners who seek guidance for where to start their cloud-native journey as well as intermediate Kubernetes users who wish to see examples of cloud-native use cases from within a scientific organisation.

Speakers

Carolina Lindqvist

System Specialist, EPFL

Carolina Lindqvist is a System Specialist at the EPFL SCITAS department for Scientific Computing and High Performance Computing (HPC). She works with Kubernetes infrastructure for scientific use cases. Before joining SCITAS, Carolina worked at the Blue Brain Project, startups and... Read More →

Friday April 4, 2025 10:10 - 10:25 BST
Level 0 | ICC Auditorium

Keynote Sessions, Emerging + Advanced

Content Experience Level Intermediate

10:25 BST

Keynote: Closing Remarks

Friday April 4, 2025 10:25 - 10:30 BST

Level 0 | ICC Auditorium

Friday April 4, 2025 10:25 - 10:30 BST
Level 0 | ICC Auditorium

Keynote Sessions

13:45 BST

Resilient Multi-Cloud Strategies: Harnessing Kubernetes, Cluster API, and Cell-Based Architecture - Tasdik Rahman & Javi Mosquera, New Relic

Friday April 4, 2025 13:45 - 14:15 BST

Level 0 | ICC Auditorium

In today's multi-cloud world, resilience and high availability at scale are crucial. This session will cover how we utilized Kubernetes with Cluster API and other cloud native components, to deploy a cell-based architecture across multiple cloud providers, scaling to 270+ clusters and 18,000+ nodes, creating independent, isolated cells that limit failures and improve uptime, thus simplifying compliance, cost management, and disaster recovery planning.

We'll explore how Cluster API facilitates seamless automation of cluster creation and management across our multi-cloud setup, upgrades, enhancing autonomy and resilience. Moreover, we'll highlight real-world use cases sharing our learnings from automation built for efficient management of k8s clusters while limiting operational overhead.

End users will learn from this talk on how they can use ClusterAPI, to automate their multi cloud cluster lifecycle management and leverage cellular architecture to build a highly available setup.

Speakers

Javier Mosquera Sanchez

Principal Software Engineer, New Relic

I am a Principal Software Engineer at New Relic, where I work as the multicloud architect for the initiative to integrate our offering into the main three cloud service providers (AWS, Azure, and GCP). I also serve as the Kubernetes architect for our Container Fabric team, which is... Read More →

Tasdik Rahman

Senior Software Engineer, New Relic

A generalist developer, with a focus on the infrastructure side of things. Past ClusterAPI release 1.9 team member, Past Contributor to oVirt.

Friday April 4, 2025 13:45 - 14:15 BST
Level 0 | ICC Auditorium

Operations + Performance

Content Experience Level Intermediate

14:30 BST

C.A.L.L.I.N.G. Now I'm Calling You, Calling You Now - Mario Macías & Terra Tauri, Grafana Labs

Friday April 4, 2025 14:30 - 15:00 BST

Level 0 | ICC Auditorium

The Kubernetes API is awesome and so tempting to use, especially when building Observability Solutions. Nobody wants to just get raw IP addresses and ports in their network or request telemetry, it’s much better to see your pod and service metadata. But what’s even better is that getting information about all the nodes in your cluster can help you produce amazing service graphs.

This talk is a story of how we took down the Kubernetes API in our biggest production cluster at Grafana, by deploying observability tools which make heavy use of the Kubernetes API. We’ll show you the techniques we used to avoid repeating our mistakes, by applying configuration changes and building services which helped us shield the Kubernetes API from the information thirsty observability tools, while keeping the functionality intact.

Speakers

Mario Macías

Staff Software Engineer, Grafana

I love programming since I was 12 years old. I’m a software engineer with 20 years of experience. During that time, I’ve been a scientific researcher, Ph.D student, university teacher, backend developer, and book writer. During the last 7 years I've focused on monitoring and observability... Read More →

Terra Tauri

Staff Software Engineer, Grafana Labs

terra is a Platform Network Engineer at Grafana Labs measuring beeps and boops for software that measures beeps and boops. Grafana ingests petabytes of data every single day and the Platform Networking squad is responsible for ensuring every one of those o11y packets makes it into... Read More →

Friday April 4, 2025 14:30 - 15:00 BST
Level 0 | ICC Auditorium

Operations + Performance

Content Experience Level Intermediate

15:15 BST

Using eBPF for Non-invasive, Performant, Instant Network Monitoring - Mario Macías & Marc Tudurí, Grafana

Friday April 4, 2025 15:15 - 15:45 BST

Level 0 | ICC Auditorium

Traditionally, monitoring your network connections required from devices being able to export the flows data. With the rise of software-defined networks, the responsibility of providing observability capabilities relied on the SDN providers or on software-based packet analyzers that often have a noticeable impact on the cluster’s performance.

eBPF is presented as an efficient, non-invasive mechanism to observe different layers of clusters’ network, from L3 to L7, and automatically extract relevant information without having to redeploy neither the network infrastructure nor applications.

Our talk explains the Grafana journey to provide plug and play network and services observability: how we connect to different layers of your services infrastructure to provide from how network packets flow through your system to the details of the L7 service/client requests and responses, and how the low-level network information is matched with Kubernetes metadata for improved user data navigation.

Speakers

Mario Macías

Staff Software Engineer, Grafana

Marc Tudurí

Senior Software Engineer, Grafana

Marc Tuduri is Prometheus contributor, OpenTelemetry member and Software Engineer at Grafana.

Friday April 4, 2025 15:15 - 15:45 BST
Level 0 | ICC Auditorium

Connectivity

Content Experience Level Any