Zero Day / September 8th, 2016
Join us on the evening September 8th for our Zero Day event in partnership with our friends at Docker London and Kubernetes London.
All Container Camp attendees are pre-registered for Zero Day but feel free to invite a friend as this is a free community event
Main Conference / Friday September 9th, 2016
Venue - Picturehouse Central
- 8:45 AM
- Registration & Morning Tea
- 9:25 AM
- Introduction and Welcome to Container Camp
- 9:30 AM
- Craig Box - Kubernetes 1.3: Stateful containers & cluster federation
By now, we're all very comfortable running stateless containers in a cluster. What about keeping state and running across clusters? Kubernetes 1.3 makes these both easy, and Craig will talk you through the how and the why.
- 9:55 AM
- Ben Firshman - Building serverless apps with Docker
Everyone's talking about serverless right now. For good reason – it's makes distributed apps much simpler to build, scale, and maintain. But what's the best way to start using it in practice?
Using Docker, you can mix in serverless techniques into your application today. I will show you how to do this and also delve a bit into how serverless is going to change how you build distributed apps in the future.
- 10:20 AM
- Coffee Break
- 10:50 AM
- Michael Hausenblas - Constructive destructiveness for containers
Resilience testing is a useful exercise, pioneered by Netflix with Chaos Monkey. We will have a look at applying this technique to containers incl. a live demo using https://github.com/dcos-labs/drax
- 11:15 AM
- Nishant Totla - Orchestrating Linux containers while tolerating failures
Although containers are bringing a refreshing flexibility when deploying services in production, the management of those containers in such an environment still requires special care in order to keep the application up and running. In this regard, orchestration platforms like Docker, Kubernetes and Nomad have been trying to alleviate this responsibility, facilitating the task of deploying and maintaining the entire application stack in its desired state. This ensures that a service will be always running, tolerating machine failures, network erratic behavior or software updates and downtime. The purpose of this talk is to explain the mechanisms and architecture of the Docker Engine orchestration platform (using a framework called swarmkit) to tolerate failures of services and machines, from cluster state replication and leader-election to container re-scheduling logic when a host goes down.
- 11:40 AM
- Mark Shuttleworth - Why we need a different container purely for apps
Fast, secure and reliable third-party Linux apps that run efficiently on any device from the RPi to the mainframe - with "snap", a new universal Linux package that works from Arch to Xubuntu thanks to a clever twist on standard container techniques.
Neither Docker nor LXD are specifically focused on "the app", they both create machine-like entities that require integration through the network. What if you just want a database?
Snaps are a new kind of container that explicitly shares stuff with other containers on the host machine through nicely defined secure interfaces. So fast, much fun, very delicious.
- 12:05 PM
- Lightning Lunch - Community Talks from 12:35 PM
Robert Porter - My Journey to Developing with Containers
Bart Spaans - KubeFuse Live Demo
Gareth Rushgrove - Make Dockerfile Great Again
Ivan Pedrazas - Can we deploy 1024 microservices in 5 minutes?
Christoph Andreas Torlinsky - Avoiding Silos in Container Networking
Nicolas De Loof - Containers Jungle
- 1:35 PM
- Jonathan Boulle - rktnetes: Integrating rkt and Kubernetes
rkt is a modern container runtime, built for security, efficiency, and composability. Kubernetes is a modern cluster orchestration system oriented around containers. Kubernetes doesn't directly execute application containers but instead delegates to a container runtime, which is integrated at the kubelet (node) level. When Kubernetes first launched, it only supported one container runtime engine - but over the last year, we've been hard at work integrating rkt as an alternative container runtime, aka rktnetes. The goal of rktnetes is to have first-class integration between rkt and the kubelet, and allow Kubernetes users to take advantage of some of rkt's unique features.
This talk will describe how rkt works and some of its unique features, how we worked with the Kubernetes community to integrate a new container runtime, and what the future holds, as well how to get started using rktnetes today.
- 2:00 PM
- George Lestaris - Alternatives to layer-based image distribution: using a CERN filesystem for container images.
The container land has been heavily influenced by Docker. After all, the huge ecosystem building Docker images and tools is hard to ignore. Docker, defines images as lists of layers. This helps container engines cache reused layers and avoid re-downloading the whole root filesystem when minor changes get pushed. The, fairly new, OCI image spec is adopting the same approach in standardising the image format.
However, layers can be chanky in size and hard to manage. Additionally, it would be better to increase the caching granularity to single files (say /bin/bash) instead of large layers. Physicists in the LHC computing GRID had a similar problem. They solced it with CernVM-FS. This talk explores the idea of using it for container image distribution.
- 2:25 PM
- Liz Rice - Building a container from scratch in Go
Everyone has heard of Docker, but what is a container? Is it really "a lightweight VM"? In this talk we'll dispel the magic by writing a container in about 100 lines of Go.
- 2:50 PM
- ** A Special Announcement **
- 2:55 PM
- Coffee Break
- 3:20 PM
- Ed Robinson - Træfɪk - Load Balancing microservices
Træfɪk is a modern HTTP reverse proxy and load balancer made for containers and microservices.
You will learn about some of Træfɪk’s features that make deploying microservices to container platforms a breeze.
You will learn how to set up automatic https with Let’s Encrypt.
There will be some demos to show how simple it is to automatically manage configuration using Træfɪk and an Orchestration Framework.
- 3:45 PM
- Chris Van Tuin - A Security State of Mind: Continuous Security for Containers & DevOps
With the rise of DevOps, containers are at the brink of becoming a pervasive technology in Enterprise IT to accelerate application delivery for the business. When it comes to adopting containers in the enterprise, Security is the highest adoption barrier. Is your organization ready to address the security risks with containers in a DevOps environment? In this presentation, you'll learn about: - An understanding of the underlying technologies for Containers and how they enable DevOps - The security risks with deploying containers in the enterprise - How to make your Container workflow more secure without slowing down DevOps - The dangers of untrusted content and importance of maintaining container images - Automating vulnerability management, security management, and compliance checking for container images.
- 4:10 PM
- Coffee Break
- 4:35 PM
- Dustin Kirkland - Streamlining HPC Workloads with Containers
One might find it ironic that some of the world's fastest supercomputers -- vast clusters capable of trillions of floating point operations per second -- can take upwards of a half an hour to reboot in between jobs. While we often talk about the density advantages of containers, it's the opposite approach that we use in the High Performance Computing world! Here, we use exactly 1 system container per node, giving it unlimited access to all of the host's CPU, Memory, Disk, IO, and Network. And yet we can still leverage the management characteristics of containers -- security, snapshots, live migration, and instant deployment to recycle each node in between jobs. In this talk, we'll examine a reference architecture and some best practices around containers in HPC environments.
- 5:00 PM
- Alex Ellis - Docker and IoT: securing the server-room with realtime ARM microservices
Why/what/how and demo of a scalable (over Swarm) real-time sensor network build on Docker ARM microservices and Raspberry Pi. Each sensor constantly samples the ambient temperature of individual server racks and sends a real-time alarm to the control room (LED display) when levels rise above normal levels. An anti-tamper motion sensor picks up tiny vibrations and alerts the admins when someone is performing unscheduled maintenance on the equipment. A custom made RGB LED display made by Pimoroni for Dockercon shows the status of up to 8 racks in real-time.
- 5:25 PM
- Farewell and round-up from the day
- 5:30 PM
- Container Camp Happy Hour