Accelerating the Next 10,000 Clouds by Michael Kadera, Intel

•Télécharger en tant que PPTX, PDF•

0 j'aime•487 vues

In these slides we discuss how Intel has enabled hardware based security for container use cases. We will also demonstrate Clear Containers functioning in the latest Docker release and how you can use Clear Containers today.

Technologie

Unleash Tens of Thousands of New Clouds:
Intel® Clear Containers Available for Docker*
Michael
Kadera
Cloud & Data Center Manager
Intel
*Other names and brands may be
claimed as the property of others.

intel.com/cloudforall
Intel®Clearcontainers:fast,
secure,andavailableforDocker*Michael Kadera
Customer Engineering Cloud and Data Center Manager
*Other names and brands may be
claimed as the property of others.

UnleashTensofThousandsofNewClouds
Intel®CloudforAll
in creating enterprise
ready, easy to deploy
SDI solutions
for high efficiency
clouds across
workloads
the industry to
accelerate cloud
deployments
Invest Optimize Align

intel.com/cloudforall
Containers are...
Speedy
Fast create, update and
uninstall cycle.
Request and provision
in (milli)seconds
Manageable
Containers take the
complexity out of
bundling, distributing
and installing
applications
Easy
Simple and easy to use
and maintain
Secure?
What about security
and isolation? Can a
container include
hardware isolation like
a Virtual Machine?

Intel® Clear Containers
Are secure like a Virtual Machine
Deploy at the speed of a container
With a low memory footprint
Integrate with Docker*
*Other names and brands may be
claimed as the property of others.

intel.com/cloudforall
Server hardware
Linux* Kernel
Container A Container CContainer B
Middleware
App App App
Middleware Middleware
*Other names and brands may be
claimed as the property of others.

intel.com/cloudforall
Server hardware
Linux Kernel
Container A
Middleware
(A)
App
Intel® VT-x
Linux* Kernel
(A)
Container B
Middleware
(shared with A)
App
Linux Kernel
(shared with A)
Container C
Middleware
(C)
App
Linux Kernel
(C)
*Other names and brands may be
claimed as the property of others.
Intel® VT-x Intel® VT-x
Intel® Clear Containers and Intel® Virtualization Technology
(Intel® VT-x)

intel.com/cloudforall
Intel® Clear Containers 2.0
LAUNCH A SECURED CONTAINER
WITHIN MULTI-TENANTENVIRONMENTS
IN UNDER 45MILLISECONDS†
WITH
MEMORY
OVERHEAD OF
48-50MEGBYTES†
Now available with Docker*!
*Other names and brands may be
claimed as the property of others.
† Intel® Core™ i7 processor 5557U @ 3.10GHz, 16GB DDR3 memory, 4 vCPU, Qemu-lite 2.6.0.15 x86_64, Clear Container Linux* kernel 4.5-9, Docker 1.12.0-dev, build
3d80884f3d7d60c51c0ccd6b487ebbeb98d2f7e8
(PER EACH INCREMENTAL CONTAINER)

intel.com/cloudforall
Intel® Clear Containers with Docker*!
1.12
Switchable runtime
in Docker 1.12
OCI
Intel® Clear
Containers are OCI
spec compatible
2.0
Intel® Clear
Containers 2.0
Available soon on
GitHub* and
clearlinux.org
*Other names and brands may be
claimed as the property of others.

intel.com/cloudforall
Docker* enables switchable runtime support
Docker UI/CLI
Docker Engine
containerd
Intel® Clear Containers
w/ Intel® Virtualization Technology
Container
Docker-runC
OCI Compatible
Container
*Other names and brands may be
claimed as the property of others.

Demo
Intel® Clear Containers with
Docker* switchable runtime
*Other names and brands may be
claimed as the property of others.

intel.com/cloudforall
Join our community and enable containers to be…
Speedy Manageable Easy Secure
Clearlinux.org
Join the mailing list
Check our blog for
announcements
Get the code
GitHub:
https://github.com/clearlinux
IRC on Freenode*
#clearlinux
Get involved
*Other names and brands may be
claimed as the property of others.

Contenu connexe

Tendances

The Docker Enterprise Edition platform helps customers deploy and manage applications faster and it secures the application pipeline at a lower cost than traditional application delivery models. But it takes more than just great technology to achieve the desired results. The organization and culture of your enterprise directly impacts what you transform, how it’s done, and who does it. Success requires a strategy for how you will govern the Docker EE container platform, how to assess your application estate, what your delivery pipeline will look like, and how to ensure developers, operators, security teams and others play nicely together. In this talk I will cover topics such as different types of workloads (legacy, microservices, FaaS, big data, ...), how your org chart can influence whether you deploy a CaaS (Containers as a Service) vs CLaaS (Clusters as a Service), how "shifting left" can determine if you can outsource, centralized vs distributed CI/CD and how containers play a role, transforming your pets into cattle, how giant whale balloons are used for onboarding, and a prescriptive and comprehensive methodology for successfully deploying Docker in your enterprise.

How to build your containerization strategy

Docker, Inc.

Introduction to Docker

Pubudu Jayawardana

Lee Namba, Docker The Docker Enterprise container platform helps organizations deploy and manage applications faster and it secures the application pipeline at a lower cost than traditional application delivery models. But it takes more than just great technology to achieve the desired results. The organization and culture of your enterprise directly impacts what you transform, how it’s done, and who does it. Success requires a strategy for how you will govern the container platform environment, how to assess your application estate, what your delivery pipeline will look like, and how to ensure developers, operators, security teams and others play nicely together. In this talk I will cover topics such as different types of workloads (legacy, microservices, FaaS, big data and more), how your org chart can influence whether you deploy CaaS (Containers as a Service) vs CLaaS (Clusters as a Service), how "shifting left" can determine if you can outsource, centralized vs distributed CI/CD and how containers play a role, transforming your pets into cattle, how giant whale balloons are used for onboarding, and a prescriptive and comprehensive methodology for successfully deploying containers into your enterprise.

DCSF19 How To Build Your Containerization Strategy

Docker, Inc.

Intro to docker - innovation demo 2022

Hussain Mansoor

Millions of developers use .NET to build high performance apps, from Enterprise to hobbiests. Docker enables .NET developers to build containerized applications that can be deployed natively to Windows or Linux. Windows containers support applications that leverage the full .NET Framework. And with AspNetCore on Linux developers can target both Linux-based Docker containers or Windows containers. In both cases you can develop your applications on Windows using your favorite .NET developer tools - then build Docker images and run them as containers on Windows Server or Linux machines. This session in this session, you will learn how to build or migrate full .NET Framework applications and deploy them as Windows Containers. Then you will learn to build AspNetCore applications that can target either Windows or Linux containers, without any changes to your code. Topics covered include - Common considerations as you work locally - Running local Docker containers, and preserving as environment settings - Unit testing - Choosing the right base image - Working with IIS or Kestrel - Composing multiple containers - Working with a Docker Registry

Docker for .NET Developers - Michele Leroux Bustamante, Solliance

Docker, Inc.

Presented by Casper S. Jensen, Software Engineer, Uber At Uber, we've been introducing Docker to give service owners more control over their environments. However, everything at Uber is moving very fast so we have had to do it a way such that Docker fitted into the existing infrastructure and services could be migrated seamlessly to Docker without any service interruptions. In this talk we will talk about the challenges we faced while doing this, such as handling both non-Docker and Docker builds, image replication, integration with our deployment systems and other challenges when deploying Docker at scale.

DockerCon EU 2015: Placing a container on a train at 200mph

Docker, Inc.

DockerCon 16 General Session Day 1

Docker, Inc.

Photon Controller: An Open Source Container Infrastructure Platform from VMware

Docker, Inc.

China is the biggest emerging market for Cloud computing, with strong momentum in both business and technology. Docker is starting to get adopted rapidly by Chinese organizations in their development and production environments. As the leading cloud provider in China, Alibaba Cloud commits to open container technologies, and provides Aliyun Container Service as the open platform for cloud native applications. In this session, we will share use cases and experiences learned from Docker practices in Alibaba Cloud. It will cover topics including container technology in life-cycle process of Micro-Service applications; highly scalable, distributed Docker registry for global image distribution, and more. Join us to hear how to align customer's business needs with cutting edge container technologies.

Docker Practice in Alibaba Cloud by Li Yi (Mark) & Zuhe Li (Sogo)

Docker, Inc.

About 94% of AI Adopters are planning to use containers in the next 1 year. What’s driving this exponential growth? Faster time to deployment and Faster AI workload processing are the two major reasons. You can use GPUs in big data applications such as machine learning, data analytics, and genome sequencing. Docker containerization makes it easier for you to package and distribute applications. You can enable GPU support when using YARN on Docker containers. In this talk, I will demonstrate how Docker accelerates the AI workload development and deployment over the IoT Edge devices in efficient manner

Delivering Docker & K3s worloads to IoT Edge devices

Ajeet Singh Raina

My Journey to Becoming a Docker Captain

Ajeet Singh Raina

Say Bye to VMware PowerCLI ! Time to "GOVC"

Ajeet Singh Raina

Build your own container-based system with the Moby project Docker Community Edition—an open source product that lets you build, ship, and run containers—is an assembly of modular components built from an upstream open source project called Moby. Moby provides a “Lego set” of dozens of components, the framework for assembling them into specialized container-based systems, and a place for all container enthusiasts to experiment and exchange ideas. Patrick Chanezon and Mindy Preston explain how you can leverage the Moby project to assemble your own specialized container-based system, whether for IoT, cloud, or bare-metal scenarios. Patrick and Mindy explore Moby’s framework, components, and tooling, focusing on two components: LinuxKit, a toolkit to build container-based Linux subsystems that are secure, lean, and portable, and InfraKit, a toolkit for creating and managing declarative, self-healing infrastructure. Along the way, they demo how to use Moby, LinuxKit, InfraKit, and other components to quickly assemble full-blown container-based systems for several use cases and deploy them on various infrastructures.

Oscon 2017: Build your own container-based system with the Moby project

Patrick Chanezon

Top 5 benefits of docker

John Zaccone

You can secure your containerized microservices without slowing down development. Through a combination of Linux kernel features and open source tools, you can isolate the host from the container and the containers from each other, as well as finding vulnerabilities and securing data. Two of Red Hat's Docker contributors will discuss the state of container security today, covering Linux namespaces, SElinux, cgroups, capabilities, scan, seccomp, and other tools you can use right now.

Practical Container Security by Mrunal Patel and Thomas Cameron, Red Hat

Docker, Inc.

Fast and efficient software testing is easy with Docker. We often use containers to maintain parity across development, testing, and production environments, but we can also use containerization to significantly reduce time needed for testing by spinning up multiple instances of fully isolated testing environments and executing tests in parallel. This strategy also helps you maximize the utilization of infrastructure resources. The enhanced toolset provided by Docker makes this process simple and unobtrusive, and you’ll see how Docker Engine, Registry, Machine, and Compose can work together to make your tests fast.

Efficient Parallel Testing with Docker by Laura Frank

Docker, Inc.

Develop and deploy Kubernetes applications with Docker - IBM Index 2018

Patrick Chanezon

Docker provides PODA (Package Once Deploy Anywhere) and complements WORA (Write Once Run Anywhere) provided by Java. It also helps you reduce the impedance mismatch between dev, test, and production environment and simplifies Java application deployment. This session will explain how to: * Run your first Java application with Docker * Package your Java application with Docker * Share your Java application using Docker Hub * Deploy your Java application using Maven * Deploy your application using Docker for AWS * Scale Java services with Docker Engine swarm mode * Package your multi-container application and use service discovery * Monitor your Docker + Java applications * Build a deployment pipeline using common tools

Modernizing Java Apps with Docker

Docker, Inc.

Hewlett Packard Enterprise has a vast IT organization that consists of 15k Dev + Ops professionals, operating in 11 countries, with hundreds of development teams working together on over 1000 projects. Millions of lines of code get changed every day, generating 20,000+ change request in an average year. And now, we’re on a journey to building a Docker environment for this massive organization, to serve the needs of our own multi-billion dollar enterprise. This session showcases our own learnings across multiple phases of our containerization project, with real life experiences from both the Dev and Ops perspectives. We’ll also talk about shared experiences from some of HPE’s customers. “Coding” our infrastructure with Docker, one application image, one deployment command, multiple deployment models – this is an “extreme” tale of how one of the world’s largest enterprises is fully embracing Docker.

Chugging Our Own "Craft Brew” – HPE’s Journey Towards Containers-as-a-Service...

Docker, Inc.

Docker Azure Friday OSS March 2017 - Developing and deploying Java & Linux on...

Patrick Chanezon

Tendances (20)

How to build your containerization strategy

Introduction to Docker

DCSF19 How To Build Your Containerization Strategy

Intro to docker - innovation demo 2022

Docker for .NET Developers - Michele Leroux Bustamante, Solliance

DockerCon EU 2015: Placing a container on a train at 200mph

DockerCon 16 General Session Day 1

Photon Controller: An Open Source Container Infrastructure Platform from VMware

Docker Practice in Alibaba Cloud by Li Yi (Mark) & Zuhe Li (Sogo)

Delivering Docker & K3s worloads to IoT Edge devices

My Journey to Becoming a Docker Captain

Say Bye to VMware PowerCLI ! Time to "GOVC"

Oscon 2017: Build your own container-based system with the Moby project

Top 5 benefits of docker

Practical Container Security by Mrunal Patel and Thomas Cameron, Red Hat

Efficient Parallel Testing with Docker by Laura Frank

Develop and deploy Kubernetes applications with Docker - IBM Index 2018

Modernizing Java Apps with Docker

Chugging Our Own "Craft Brew” – HPE’s Journey Towards Containers-as-a-Service...

Docker Azure Friday OSS March 2017 - Developing and deploying Java & Linux on...

En vedette

Building a Virtualized Continuum with Intel(r) Clear Containers

Michelle Holley

Apache Spark is one of the most popular big data projects, offering greatly improved performance over traditional MapReduce models. Much of Apache Spark’s power comes from lazy evaluation along with intelligent pipelining, which can make debugging more challenging. Holden Karau and Joey Echeverria explore how to debug Apache Spark applications, the different options for logging in Spark’s variety of supported languages, and some common errors and how to detect them. Spark’s own internal logging can often be quite verbose. Holden and Joey demonstrate how to effectively search logs from Apache Spark to spot common problems and discuss options for logging from within your program itself. Spark’s accumulators have gotten a bad rap because of how they interact in the event of cache misses or partial recomputes, but Holden and Joey look at how to effectively use Spark’s current accumulators for debugging before gazing into the future to see the data property type accumulators that may be coming to Spark in future versions. And in addition to reading logs and instrumenting your program with accumulators, Spark’s UI can be of great help for quickly detecting certain types of problems. Holden and Joey cover how to quickly use the UI to figure out if certain types of issues are occurring in our job.

Debugging Apache Spark - Scala & Python super happy fun times 2017

Holden Karau

Victor Vieux at Docker Paris Meetup #1

Docker, Inc.

DockerCon14 Contributing to Docker by Tianon

Docker, Inc.

Open source is good for both business and humanity

Docker, Inc.

OpenStack Summit

Docker, Inc.

Docker at Spotify

Docker, Inc.

Dockerizing brownfield enterprise applications can often be a daunting task - involving changes to the application code/configuration and existing build processes. The DCHQ platform provides “on-the-fly” containerization of both Linux & Windows enterprise applications – including Java, Oracle, .NET and others. By doing so, DCHQ transforms non-cloud-native applications into completely portable applications that can take advantage of cloud scaling, storage redundancy and most importantly, deployment agility without introducing a single change to the application source control repository. In this session, we will cover the deployment automation of an Enterprise Java application with PostgreSQL multi-host cluster set up for Master-Slave replication and automated storage management with redundant EBS volumes on AWS using DCHQ + EMC REX-Ray. We will also cover the deployment automation of an Enterprise .NET application demonstrating the application life-cycle management capabilities post-provision -- including monitoring, alerts, continuous delivery, application backups, scale in/out, in-browser terminal to access the containers, log streaming, and application updates.

On-the-Fly Containerization of Enterprise Java & .NET Apps by Amjad Afanah

Docker, Inc.

LXC to Docker Via Continuous Delivery

Docker, Inc.

DockerCon14 Automated Chef Cookbook Testing

Docker, Inc.

DockerCon SF 2015: DHE/DTR

Docker, Inc.

DockerCon SF 2015: Panel Discussion Birds of a Different Feather Soar Together

Docker, Inc.

DockerCon SF 2015: Cultural Change using Docker

Docker, Inc.

DockerCon14 John Engates

Docker, Inc.

Developer Week

Docker, Inc.

A community is one of the key components of an open source software project. The success of an open source project like Docker is highly dependent on a large and active community. The speakers will share their experience of how to successfully build a local community by the example of how they raised a Docker community at their University (Univ. of Bamberg, Germany). They summon their best practices as a result of the mistakes they made, illustrated by story telling. This is a talk from me as a student, which is an underrepresented group at DockerCon.

How to Successfully Build a Local Docker Community by Mathias Renner

Docker, Inc.

Making it Easier to Contribute to Open Source Projects Using Docker Container...

Docker, Inc.

Securing your Containers (Meetup at Docker HQ 4/7)

Docker, Inc.

How GE Appliances Brought Docker Into the Enterprise - Talk Description: In a traditional enterprise IT shop, it’s common to find a plethora of aging technologies. From COBOL running on mainframes, to huge Java applications spread across both physical and virtual hardware, the enterprise can sometimes resemble a living museum of IT. For application owners, bureaucracy, lack of business priority, and complex infrastructure can slow innovation, and make it difficult to stay current. At GE, we leveraged Docker/Mesos to create an internal application platform that brings speed, simplicity, and cutting edge deployment processes to our enterprise, empowering developers to go from concept to production in minutes, rather than months.

DockerCon SF 2015: From Months to Minutes

Docker, Inc.

Intro to Docker October 2013

Docker, Inc.

En vedette (20)

Building a Virtualized Continuum with Intel(r) Clear Containers

Debugging Apache Spark - Scala & Python super happy fun times 2017

Victor Vieux at Docker Paris Meetup #1

DockerCon14 Contributing to Docker by Tianon

Open source is good for both business and humanity

OpenStack Summit

Docker at Spotify

On-the-Fly Containerization of Enterprise Java & .NET Apps by Amjad Afanah

LXC to Docker Via Continuous Delivery

DockerCon14 Automated Chef Cookbook Testing

DockerCon SF 2015: DHE/DTR

DockerCon SF 2015: Panel Discussion Birds of a Different Feather Soar Together

DockerCon SF 2015: Cultural Change using Docker

DockerCon14 John Engates

Developer Week

How to Successfully Build a Local Docker Community by Mathias Renner

Making it Easier to Contribute to Open Source Projects Using Docker Container...

Securing your Containers (Meetup at Docker HQ 4/7)

DockerCon SF 2015: From Months to Minutes

Intro to Docker October 2013

Similaire à Accelerating the Next 10,000 Clouds by Michael Kadera, Intel

Docker_Interview_Questions__Answers.pdf

RifqiMultazamOfficia

At VaST ITES INC, we specialize in engineered DevOps and Cloud Solutions to revolutionize the IT process. Our team works dedicatedly to deliver results-driven solutions. Contact the best DevOps consulting in Toronto! We provide services like: Platform Engineering Services Integrated DevSecOps services DevOps containerizations Services End-to-end Logging and Monitoring services Data Migrations Solutions and Services AWS Services Azure Services GCP Services Cloud Foundry services VMware services Migrate On-Premise Infra to Cloud Bridging the Gap Between Development and Operations Our goal has always been to treat one another with respect, and trust, and to put the needs of our customers first. For more than 5 years, we have remained faithful to these founding goals by placing a consistent emphasis on people and connections – with our customers, our employees, and our business partners. While maintaining solid relationships with our current clients, we have continued to expand and take on new clients. The foundations for these relationships are the development, employee loyalty, and client pleasure that have resulted from our constant emphasis on ethical business practices and putting people first. Mission: Our goal is to transform your digital experience into cost-effective, functional, user-centric and innovative technology solutions. VaST ITES INC. quickly recognizes and adapts to the changing digital environment, enabling customers to strengthen their market presence. Vision: We aim to be a leading global provider of outsourcing and offshoring technology solutions. Attention to detail, quality assurance, and careful selection of talented people help businesses grow into profitable assets. WHY CHOOSE US Our experienced team of DevOps consultants offers customized solutions to help your business achieve faster software delivery, increased agility, and improved team collaboration. With a proven track record of successful implementations, we can help you reduce costs, increase efficiency, and shorten your time-to-market. - We are up-to-date with the latest technologies and trends in the market, thus provide with the best results. - Tailored and unique solution for every client. We understand that the needs of every client vary, thus we provide distinctive solutions to every client according to their condition. - We provide end-to-end support. We transparently communicate goals, challenges, and ideas. - We have a team of professional and result-centric developers who endeavors to meet your goals. marketing@vastites.ca info@vastites.ca +1 3127249560

Why Docker is Needed Infographic Post - VaST ITES INC..pdf

VaST ITES Inc

We will examine the current state of container (and Kubernetes) support in Open Platform for Network Function Virtualization (OPNFV). We will also examine new container technologies that use lightweight virtual machines for containerized workloads, as exemplified by Intel Clear Containers and the upcoming Kata Containers project. We’ll look at the components of container management systems, with an eye towards the integration of lightweight virtualization into OPNFV’s container support. Finally, we’ll have a hands-on lab session in which you’ll be able to install Kubernetes with cc-runtime, the Intel Clear Containers runtime engine for containers. We'll explore how it functions and the challenges and opportunities for integrating into OPNFV. Lab instructions can be found at http://www.dragstroke.org.s3-website.us-east-2.amazonaws.com/

Lightweight Virtualized Containers For Open Platform for NFV* (OPNFV*)

Michelle Holley

Docker

Neeraj Wadhwa

The Axigen Docker image is provided for users to be able to run an Axigen based mail service within a Docker container. The following services are enabled and mapped as 'exposed' TCP ports in Docker: § SMTP (25 - non secure, 465 - TLS) § IMAP (143 - non secure, 993 - TLS) § POP3 (110 - non secure, 995 - TLS) § WEBMAIL (80 - non secure, 443 - TLS) § WEBADMIN (9000 - non secure, 9443 - TLS) CLI (7000 - non secure

Axigen on docker

BUSINESS SOFTWARES & SOLUTIONS

The Docker Training in Bangalore From myTectra,Online

myTectra Learning Solutions Private Ltd

Docker Interview Questions

Satyam Jaiswal

Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...

Docker, Inc.

Taking the Containers First Approach

strikr .

Docker and containerization

Amulya Saxena

HPC Cloud Burst Using Docker

IRJET Journal

Clear Linux OS - Introduction

Open Source Technology Center MeetUps

Docker - A Quick Introduction Guide

Mohammed Fazuluddin

Docker team training

Karthik Venkateswaran

Top Docker Alternatives to Consider in 2024

Clarion Technologies

Docker 101 - Nov 2016

Docker, Inc.

Docker

Vu Duc Du

What is Docker & Why is it Getting Popular?

Mars Devs

Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...

Ashnikbiz

Faster and Easier Software Development using Docker Platform

msyukor

Similaire à Accelerating the Next 10,000 Clouds by Michael Kadera, Intel (20)

Docker_Interview_Questions__Answers.pdf

Why Docker is Needed Infographic Post - VaST ITES INC..pdf

Lightweight Virtualized Containers For Open Platform for NFV* (OPNFV*)

Docker

Axigen on docker

The Docker Training in Bangalore From myTectra,Online

Docker Interview Questions

Evénement Docker Paris: Anticipez les nouveaux business model et réduisez vos...

Taking the Containers First Approach

Docker and containerization

HPC Cloud Burst Using Docker

Clear Linux OS - Introduction

Docker - A Quick Introduction Guide

Docker team training

Top Docker Alternatives to Consider in 2024

Docker 101 - Nov 2016

Docker

What is Docker & Why is it Getting Popular?

Docker EE 2.0 choice security agility by Erik Tan,Tech Insights Singapore - 2...

Faster and Easier Software Development using Docker Platform

Plus de Docker, Inc.

Raymond Arifianto, AccelByte and Mark Mandel, Google - We have been deploying containerized micro-services for our Game Backend Services for a while. Now we are tackling the challenge to scale up fleets of game dedicated servers in multiple regions, multiple data centers and multiple providers - some in bare metal, some in Cloud. So we leverage docker containerization to deploy Game Servers to achieve Portability, Fast Deployment and Predictability, enabling us to scale up to thousands of servers, on demand, without a sweat.

Containerize Your Game Server for the Best Multiplayer Experience

Docker, Inc.

Nicholas Dille, Haufe-Lexware + Docker Captain - Docker continues to be the standard tool for building container images. For more than a year Docker ships with BuildKit as an alternative image builder, providing advanced features for secret and cache management. These features help to make image builds faster and more secure. In this session, Docker Captain Nicholas Dille will teach you how to use Buildkit features to your advantage.

How to Improve Your Image Builds Using Advance Docker Build

Docker, Inc.

Lukonde Mwila, Entelect - As the cloud-native approach to development and deployment becomes more prevalent, it's an exciting time for software engineers to be equipped on how to dockerize multi-container applications and deploy them to the cloud. In this talk, Lukonde Mwila, Software Engineer at Entelect, will cover the following topics: - Docker Compose - Containerizing an Nginx Server - Containerizing an React App - Containerizing an Node.JS App - Containerizing anMongoDB App - Runing Multi-Container App Locally - Creating a CI/CD Pipeline - Adding a build stage to test containers and push images to Docker Hub - Deploying Multi-Container App to AWS Elastic Beanstalk Lukonde will start by giving an overview of how Docker Compose works and how it makes it very easy and straightforward to startup multiple Docker containers at the same time and automatically connect them together with some form of networking. After that, Lukonde will take a hands on approach to containerize an Nginx server, a React app, a NodeJS app and a MongoDB instance to demonstrate the power of Docker Compose. He'll demonstrate usage of two Docker files for an application, one production grade and the other for local development and running of tests. Lastly, he'll demonstrate creating a CI/CD pipeline in AWS to build and test our Docker images before pushing them to Docker Hub or AWS ECR, and finally deploying our multi-container application AWS Elastic Beanstalk.

Build & Deploy Multi-Container Applications to AWS

Docker, Inc.

Kevin Jones, NGNIX - NGINX is one of the most popular images on Docker Hub and has been at the forefront of the web since the early 2000's. In this talk we will discuss how and why NGINX's lightweight and powerful architecture makes it a very popular choice for securing containerized applications as a sidecar reverse proxy within containers. We will highlight important aspects of application security that NGINX can help with, such as TLS, HTTP, AuthN, AuthZ and traffic control.

Securing Your Containerized Applications with NGINX

Docker, Inc.

Kathleen Juell, Digital Ocean - Containers are an essential part of today's microservice ecosystem, as they allow developers and operators to maintain standards of reliability and reproducibility in fast-paced deployment scenarios. And while there are best practices that extend across stacks in containerized environments, there are also things that make each stack distinct, starting with the application image itself. This talk will dive into some of these particularities, both at the image and service level, while also covering general best practices for building and running Node applications with database backends using Docker and Compose.

How To Build and Run Node Apps with Docker and Compose

Docker, Inc.

Hands-on Helm

Docker, Inc.

Jeff Hajewski, Salesforce - There is a wealth of information on building deep learning models with PyTorch or TensorFlow. Anyone interested in building a deep learning model is only a quick search away from a number of clear and well written tutorials that will take them from zero knowledge to having a working image classifier. But what happens when you need to deploy these models in a production setting? At Salesforce, we use TensorFlow models to help us provide customers with insights into their data, and we do this as close to real-time as possible. Designing these systems in a scalable manner requires overcoming a number of design challenges, but the core component is Docker. Docker enables us to design highly scalable systems by allowing us to focus on service interactions, rather than how our services will interact with the hardware. Docker is also at the core of our test infrastructure, allowing developers and data scientists to build and test the system in an end to end manner on their local machines. While some of this may sound complex, the core message is simplicity - Docker allows us to focus on the aspects of the system that matter, greatly simplifying our lives.

Distributed Deep Learning with Docker at Salesforce

Docker, Inc.

James Fuller, webcomposite s.r.o. - Curl is the venerable (yet very modern) 'swiss army knife' command line tool and library for transferring data with URLs. Recently we (the Curl team) decided to build a release for Docker Hub. This talk will outline our current development workflow with respect to the docker image and provide insights on what it takes to build a docker image for mass public consumption. We are also keen to learn from users and other developers how we might improve and enhance the official curl docker image.

The First 10M Pulls: Building The Official Curl Image for Docker Hub

Docker, Inc.

Fabian Stäber, Instana - In recent years, we saw a great paradigm shift in software engineering away from static monolithic applications towards dynamic distributed horizontally scalable architectures. Docker is one of the key technologies enabling this development. This shift poses a lot of new challenges for application monitoring, ranging from practical issues (need for automation) to technical challenges (Docker networking) to organizational topics (blurring line between software engineers and operations) to fundamental questions (define what is an application). In this talk we show how Docker changed the way we do monitoring, how modern application monitoring systems work, and what future developments we expect.

Monitoring in a Microservices World

Docker, Inc.

Clemente Biondo, Engineering Ingegneria Informatica - When the COVID 19 pandemic started, Engineering Ingegneria Informatica Group (1.25 billion euros of revenues, 65 offices around the world, 12.000 employees) was forced to put their digital transformation to the test in order to maintain operational continuity. In this session, Clemente Biondo, the Tech Lead of the Information Systems Department, will share how his company is reacting to this unforeseeable scenario and how Docker-driven digital transformation had paved the path for work to continue remotely. Clemente will discuss learnings moving from colocated teams, manual approaches, email based-business processes, and a monolithic application to a mature DevOps culture characterized by a distributed autonomous workforce and a continuous deployment process that deploys backward-compatible Docker containerized microservices into hybrid multi cloud datacenters an average of twice a day with zero-downtime. He will detail how they use Docker to unify dev, test and production environments, and as an efficient and automated mechanism for deploying applications. Lastly, Clemente shares how, in our darkest hour, he and others are working to shine their brightest light.

COVID-19 in Italy: How Docker is Helping the Biggest Italian IT Company Conti...

Docker, Inc.

Chris Lauer, NOAA Space Weather Prediction Center - This is the story of how adopting a containerized workflow changed the way our small software team works at NOAA’s Space Weather Prediction Center. Our old architecture, a big ball of mud shared-database integration, just wasn’t cutting it - it was killing our agility. Over the past two years, our small team has adopted a microservice style architecture, using Docker with docker-compose and environment files as our deployment strategy for all new development. We’ve discovered the joys of using containers for identical dev, staging, and production environments. We work closely with scientists: much of the code we’re running has complicated and conflicting library dependencies. Docker captures these beautifully - we’ve even had some success teaching our scientists to use it! I’ll share what we’ve learned, some of the persistent challenges we face, and one place we really got it wrong. This talk builds off of a popular hallway track from DockerCon 2019.

Predicting Space Weather with Docker

Docker, Inc.

Brian Christner, 56k + Docker Captain - In this session, we will unlock the full potential of using Microsoft Visual Studio Code (VS Code) and Docker Desktop to turn you into a Docker Power User. When we expand and utilize the VS Code Docker plugin, we can take our projects and Docker skills to the next level. In addition to using VS Code, we streamline our Docker Desktop development workflow with less context switching and built-in shortcuts. You will learn how to bootstrap new projects, quickly write Dockerfiles utilizing templates, build, run, and interact with containers all from VS Code.

Become a Docker Power User With Microsoft Visual Studio Code

Docker, Inc.

How to Use Mirroring and Caching to Optimize your Container Registry

Docker, Inc.

Ashish Sharma, SS&C Eze - SS&C Eze provides various products in the stock market domain. We spent the last couple of years building Eclipse which is an investment suite born in cloud. The journey so far has been very interesting. The very first version of the product were a bunch of monolithic windows services and deployed using Octopus tool. We successfully managed to bring all the monolithic problem to the cloud and created a nightmare for ourselves. We then started applying microservices architecture principles and started breaking the monolithic into small services. Very soon we realized that we need a better packaging/deployment tool. Docker looked like a magical solution to our problem. Since its adoption, It has not only solved the deployment problem for us but has made a deep impact on different aspects of SDLC. It allowed us to use heterogeneous technology stacks, simplified development environment setup, simplified our testing strategy, improved our speed of delivery, and made our developers more productive. In this talk I would like to share our experience of using Docker and its positive impact on our SDLC.

Monolithic to Microservices + Docker = SDLC on Steroids!

Docker, Inc.

Ara Pulido, Datadog - Container technologies, although not new, have increased their popularity in the past few years, with container orchestrators allowing companies around the world to adopt these technologies to help them ship and scale microservices with precision and velocity. Kubernetes is currently the most popular container orchestration platform, and while many organizations are migrating their workloads to it, Kubernetes is still relatively immature. New corner cases, errors, and quirks are regularly discovered as users push the boundaries of size and scale. When Datadog adopted Kubernetes we discovered some of these boundaries the hard way, and we continuously challenge and modify our infrastructure decisions in order to fit our use case. Join me in this talk for our story on what we learned while we scaled our Kubernetes clusters, the contributions to Kubernetes we made along the way, and how you can apply those learnings when growing your Kubernetes clusters from a handful to hundreds or thousands of nodes.

Kubernetes at Datadog Scale

Docker, Inc.

Andy Clemenko, StackRox - One underutilized, and amazing, thing about the docker image scheme is labels. Labels are a built in way to document all aspects about the image itself. Think about all the information that the tags inside your clothing carry. If you care to look you can find out everything about the garment. All that information can be very valuable. Now think about how we can leverage labels to carry similar information. We can even use the labels to contain Docker Compose or even Kubernetes Yaml. We can even include labels into the CI/CD process making things more secure and smoother. Come find out some fun techniques on how to leverage labels to do some fun and amazing things.

Labels, Labels, Labels

Docker, Inc.

Lukonde Mwila, Entelect As the cloud-native approach to development and deployment becomes more prevalent, it's an exciting time for software engineers to be equipped on how to dockerize multi-container applications and deploy them to the cloud. In this talk, Lukonde Mwila, Software Engineer at Entelect, will cover the following topics: - Docker Compose - Containerizing an Nginx Server - Containerizing an React App - Containerizing an Node.JS App - Containerizing anMongoDB App - Runing Multi-Container App Locally - Creating a CI/CD Pipeline - Adding a build stage to test containers and push images to Docker Hub - Deploying Multi-Container App to AWS Elastic Beanstalk Lukonde will start by giving an overview of how Docker Compose works and how it makes it very easy and straightforward to startup multiple Docker containers at the same time and automatically connect them together with some form of networking. After that, Lukonde will take a hands on approach to containerize an Nginx server, a React app, a NodeJS app and a MongoDB instance to demonstrate the power of Docker Compose. He'll demonstrate usage of two Docker files for an application, one production grade and the other for local development and running of tests. Lastly, he'll demonstrate creating a CI/CD pipeline in AWS to build and test our Docker images before pushing them to Docker Hub or AWS ECR, and finally deploying our multi-container application AWS Elastic Beanstalk.

Build & Deploy Multi-Container Applications to AWS

Docker, Inc.

Elton Stoneman, Docker Captain + Container Consultant and Trainer How do you provide a SaaS offering when your product is a 10-year old Fortran app, currently built to run on Windows 10? With Docker and Kubernetes of course - and you can do it in a week (... to prototype level at least). In this session I'll walk through the processes and practicalities of taking an older Windows app, making it run in containers with Kubernetes, and then building a simple API wrapper to host the whole stack as a cloud-based SaaS product. There's a lot of technology here from a real world case study, and I'll focus on: - running Windows apps in Docker containers - building a .NET Core API which can run in Linux or Windows containers - running the stack in Kubernetes with Docker Desktop locally and AKS in the cloud - configuring AKS workloads in Azure to burst out to Azure Container Instances And there's a core theme to this session: Docker and Kubernetes are complex technologies, but they're the key to modern development. If you invest time learning them, they make projects like this simple, portable, fast and fun.

From Fortran on the Desktop to Kubernetes in the Cloud: A Windows Migration S...

Docker, Inc.

This virtual meetup introduces the concepts and best practices of using Docker containers for software development for the Arm architecture across a variety of hardware systems. Using Docker Desktop on Windows or Mac, Amazon Web Services (AWS) A1 instances, and embedded Linux, we will demonstrate the latest Docker features to build, share, and run multi-architecture images with transparent support for Arm.

Developing with Docker for the Arm Architecture

Docker, Inc.

For many, the idea of speaking in front of a bunch of strangers can be enough to prevent you from ever responding to a CFP. But don't let it! Speaking at conferences, meetups, or even at your own company is a fantastic way to share you knowledge, meet others, advance your career, and give back. Whether you are on the fence, have decided to take the plunge and submit a CFP, or have already even a few talks, this session is for you. Drawing on their experience reviewing DockerCon CFPs and prepping speakers (including themselves) for a variety of conferences, Jenny Burcio and Ashlynn Polini will outline tips and strategies for turning your idea into a winning proposal and ultimately a compelling talk. They will share how to submit and prepare for your first - or next - conference talk.

Sharing is Caring: How to Begin Speaking at Conferences

Docker, Inc.

Plus de Docker, Inc. (20)

Containerize Your Game Server for the Best Multiplayer Experience

How to Improve Your Image Builds Using Advance Docker Build

Build & Deploy Multi-Container Applications to AWS

Securing Your Containerized Applications with NGINX

How To Build and Run Node Apps with Docker and Compose

Hands-on Helm

Distributed Deep Learning with Docker at Salesforce

The First 10M Pulls: Building The Official Curl Image for Docker Hub

Monitoring in a Microservices World

COVID-19 in Italy: How Docker is Helping the Biggest Italian IT Company Conti...

Predicting Space Weather with Docker

Become a Docker Power User With Microsoft Visual Studio Code

How to Use Mirroring and Caching to Optimize your Container Registry

Monolithic to Microservices + Docker = SDLC on Steroids!

Kubernetes at Datadog Scale

Labels, Labels, Labels

Build & Deploy Multi-Container Applications to AWS

From Fortran on the Desktop to Kubernetes in the Cloud: A Windows Migration S...

Developing with Docker for the Arm Architecture

Sharing is Caring: How to Begin Speaking at Conferences

Dernier

Scaling API-first – The story of a global engineering organization Ian Reasor, Senior Computer Scientist - Adobe Radu Cotescu, Senior Computer Scientist - Adobe Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

apidays

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

💉💊+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHABI}}+971581248768 +971581248768 Mtp-Kit (500MG) Prices » Dubai [(+971581248768**)] Abortion Pills For Sale In Dubai, UAE, Mifepristone and Misoprostol Tablets Available In Dubai, UAE CONTACT DR.Maya Whatsapp +971581248768 We Have Abortion Pills / Cytotec Tablets /Mifegest Kit Available in Dubai, Sharjah, Abudhabi, Ajman, Alain, Fujairah, Ras Al Khaimah, Umm Al Quwain, UAE, Buy cytotec in Dubai +971581248768''''Abortion Pills near me DUBAI | ABU DHABI|UAE. Price of Misoprostol, Cytotec” +971581248768' Dr.DEEM ''BUY ABORTION PILLS MIFEGEST KIT, MISOPROTONE, CYTOTEC PILLS IN DUBAI, ABU DHABI,UAE'' Contact me now via What's App…… abortion Pills Cytotec also available Oman Qatar Doha Saudi Arabia Bahrain Above all, Cytotec Abortion Pills are Available In Dubai / UAE, you will be very happy to do abortion in Dubai we are providing cytotec 200mg abortion pill in Dubai, UAE. Medication abortion offers an alternative to Surgical Abortion for women in the early weeks of pregnancy. We only offer abortion pills from 1 week-6 Months. We then advise you to use surgery if its beyond 6 months. Our Abu Dhabi, Ajman, Al Ain, Dubai, Fujairah, Ras Al Khaimah (RAK), Sharjah, Umm Al Quwain (UAQ) United Arab Emirates Abortion Clinic provides the safest and most advanced techniques for providing non-surgical, medical and surgical abortion methods for early through late second trimester, including the Abortion By Pill Procedure (RU 486, Mifeprex, Mifepristone, early options French Abortion Pill), Tamoxifen, Methotrexate and Cytotec (Misoprostol). The Abu Dhabi, United Arab Emirates Abortion Clinic performs Same Day Abortion Procedure using medications that are taken on the first day of the office visit and will cause the abortion to occur generally within 4 to 6 hours (as early as 30 minutes) for patients who are 3 to 12 weeks pregnant. When Mifepristone and Misoprostol are used, 50% of patients complete in 4 to 6 hours; 75% to 80% in 12 hours; and 90% in 24 hours. We use a regimen that allows for completion without the need for surgery 99% of the time. All advanced second trimester and late term pregnancies at our Tampa clinic (17 to 24 weeks or greater) can be completed within 24 hours or less 99% of the time without the need surgery. The procedure is completed with minimal to no complications. Our Women's Health Center located in Abu Dhabi, United Arab Emirates, uses the latest medications for medical abortions (RU-486, Mifeprex, Mifegyne, Mifepristone, early options French abortion pill), Methotrexate and Cytotec (Misoprostol). The safety standards of our Abu Dhabi, United Arab Emirates Abortion Doctors remain unparalleled. They consistently maintain the lowest complication rates throughout the nation. Our Physicians and staff are always available to answer questions and care for women in one of the most difficult times in their lives. The decision to have an abortion at the Abortion Cl

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

?#DUbAI#??##{{(☎️+971_581248768%)**%*]'#abortion pills for sale in dubai@

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

Manulife - Insurer Innovation Award 2024

The Digital Insurer

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Martijn de Jong

Axa Assurance Maroc - Insurer Innovation Award 2024

The Digital Insurer

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Neo4j

Strategies for Landing an Oracle DBA Job as a Fresher

Remote DBA Services

MySQL Webinar, presented on the 25th of April, 2024. Summary: MySQL solutions enable the deployment of diverse Database Architectures tailored to specific needs, including High Availability, Disaster Recovery, and Read Scale-Out. With MySQL Shell's AdminAPI, administrators can seamlessly set up, manage, and monitor these solutions, ensuring efficiency and ease of use in their administration. MySQL Router, on the other hand, provides transparent routing from the application traffic to the backend servers in the architectures, requiring minimal configuration. Completely built in-house and supported by Oracle, these solutions have been adopted by enterprises of all sizes for their business-critical applications. In this presentation, we'll delve into various database architecture solutions to help you choose the right one based on your business requirements. Focusing on technical details and the latest features to maximize the potential of these solutions.

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Miguel Araújo

Boost Fertility New Invention Ups Success Rates.pdf

sudhanshuwaghmare1

A Domino Admins Adventures (Engage 2024)

Gabriella Davis

As privacy and data protection regulations evolve rapidly, organizations operating in multiple jurisdictions face mounting challenges to ensure compliance and safeguard customer data. With state-specific privacy laws coming up in multiple states this year, it is essential to understand what their unique data protection regulations will require clearly. How will data privacy evolve in the US in 2024? How to stay compliant? Our panellists will guide you through the intricacies of these states' specific data privacy laws, clarifying complex legal frameworks and compliance requirements. This webinar will review: - The essential aspects of each state's privacy landscape and the latest updates - Common compliance challenges faced by organizations operating in multiple states and best practices to achieve regulatory adherence - Valuable insights into potential changes to existing regulations and prepare your organization for the evolving landscape

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

TrustArc

Webinar Recording: https://www.panagenda.com/webinars/why-teams-call-analytics-is-critical-to-your-entire-business Nothing is as frustrating and noticeable as being in an important call and being unable to see or hear the other person. Not surprising then, that issues with Teams calls are among the most common problems users call their helpdesk for. Having in depth insight into everything relevant going on at the user’s device, local network, ISP and Microsoft itself during the call is crucial for good Microsoft Teams Call quality support. To ensure a quick and adequate solution and to ensure your users get the most out of their Microsoft 365. But did you know that ‘bad calls’ are also an excellent indicator of other problems arising? Precisely because it is so noticeable!? Like the canary in the mine, bad calls can be early indicators of problems. Problems that might otherwise not have been noticed for a while but can have a big impact on productivity and satisfaction. Join this session by Christoph Adler to learn how true Microsoft Teams call quality analytics helped other organizations troubleshoot bad calls and identify and fix problems that impacted Teams calls or the use of Microsoft365 in general. See what it can do to keep your users happy and productive! In this session we will cover - Why CQD data alone is not enough to troubleshoot call problems - The importance of attributing call problems to the right call participant - What call quality analytics can do to help you quickly find, fix-, and prevent problems - Why having retrospective detailed insights matters - Real life examples of how others have used Microsoft Teams call quality monitoring to problem shoot problems with their ISP, network, device health and more.

Why Teams call analytics are critical to your entire business

panagenda

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Edi Saputra

The value of a flexible API Management solution for Open Banking Steve Melan, Manager for IT Innovation and Architecture - State's and Saving's Bank of Luxembourg Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The value of a flexible API Management solution for O...

apidays

The Good, the Bad and the Governed - Why is governance a dirty word? David O'Neill, Chief Operating Officer - APIContext Apidays New York 2024: The API Economy in the AI Era (April 30 & May 1, 2024) ------ Check out our conferences at https://www.apidays.global/ Do you want to sponsor or talk at one of our conferences? https://apidays.typeform.com/to/ILJeAaV8 Learn more on APIscene, the global media made by the community for the community: https://www.apiscene.io Explore the API ecosystem with the API Landscape: https://apilandscape.apiscene.io/

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

apidays

Real Time Object Detection Using Open CV

Khem

Scaling API-first – The story of a global engineering organization

Radu Cotescu

Following the popularity of "Cloud Revolution: Exploring the New Wave of Serverless Spatial Data," we're thrilled to announce this much-anticipated encore webinar. In this sequel, we'll dive deeper into the Cloud-Native realm by uncovering practical applications and FME support for these new formats, including COGs, COPC, FlatGeoBuf, GeoParquet, STAC, and ZARR. Building on the foundation laid by industry leaders Michelle Roby of Radiant Earth and Chris Holmes of Planet in the first webinar, this second part offers an in-depth look at the real-world application and behind-the-scenes dynamics of these cutting-edge formats. We will spotlight specific use-cases and workflows, showcasing their efficiency and relevance in practical scenarios. Discover the vast possibilities each format holds, highlighted through detailed discussions and demonstrations. Our expert speakers will dissect the key aspects and provide critical takeaways for effective use, ensuring attendees leave with a thorough understanding of how to apply these formats in their own projects. Elevate your understanding of how FME supports these cutting-edge technologies, enhancing your ability to manage, share, and analyze spatial data. Whether you're building on knowledge from our initial session or are new to the serverless spatial data landscape, this webinar is your gateway to mastering cloud-native formats in your workflows.

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Safe Software

Dernier (20)

Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

+971581248768>> SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHA...

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Manulife - Insurer Innovation Award 2024

2024: Domino Containers - The Next Step. News from the Domino Container commu...

Axa Assurance Maroc - Insurer Innovation Award 2024

Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...

Strategies for Landing an Oracle DBA Job as a Fresher

Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...

Boost Fertility New Invention Ups Success Rates.pdf

A Domino Admins Adventures (Engage 2024)

TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments

Why Teams call analytics are critical to your entire business

Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving

Apidays New York 2024 - The value of a flexible API Management solution for O...

Apidays New York 2024 - The Good, the Bad and the Governed by David O'Neill, ...

Real Time Object Detection Using Open CV

Scaling API-first – The story of a global engineering organization

Cloud Frontiers: A Deep Dive into Serverless Spatial Data and FME

Accelerating the Next 10,000 Clouds by Michael Kadera, Intel

1. Unleash Tens of Thousands of New Clouds: Intel® Clear Containers Available for Docker* Michael Kadera Cloud & Data Center Manager Intel *Other names and brands may be claimed as the property of others.

2. intel.com/cloudforall Intel®Clearcontainers:fast, secure,andavailableforDocker*Michael Kadera Customer Engineering Cloud and Data Center Manager *Other names and brands may be claimed as the property of others.

3. UnleashTensofThousandsofNewClouds Intel®CloudforAll in creating enterprise ready, easy to deploy SDI solutions for high efficiency clouds across workloads the industry to accelerate cloud deployments Invest Optimize Align

4. intel.com/cloudforall Containers are... Speedy Fast create, update and uninstall cycle. Request and provision in (milli)seconds Manageable Containers take the complexity out of bundling, distributing and installing applications Easy Simple and easy to use and maintain Secure? What about security and isolation? Can a container include hardware isolation like a Virtual Machine?

5. Intel® Clear Containers Are secure like a Virtual Machine Deploy at the speed of a container With a low memory footprint Integrate with Docker* *Other names and brands may be claimed as the property of others.

6. intel.com/cloudforall Server hardware Linux* Kernel Container A Container CContainer B Middleware App App App Middleware Middleware *Other names and brands may be claimed as the property of others.

7. intel.com/cloudforall Server hardware Linux* Kernel Container A Container CContainer B Middleware App App App Middleware Middleware *Other names and brands may be claimed as the property of others.

8. intel.com/cloudforall Server hardware Linux Kernel Container A Middleware (A) App Intel® VT-x Linux* Kernel (A) Container B Middleware (shared with A) App Linux Kernel (shared with A) Container C Middleware (C) App Linux Kernel (C) *Other names and brands may be claimed as the property of others. Intel® VT-x Intel® VT-x Intel® Clear Containers and Intel® Virtualization Technology (Intel® VT-x)

9. intel.com/cloudforall Intel® Clear Containers 2.0 LAUNCH A SECURED CONTAINER WITHIN MULTI-TENANTENVIRONMENTS IN UNDER 45MILLISECONDS† WITH MEMORY OVERHEAD OF 48-50MEGBYTES† Now available with Docker*! *Other names and brands may be claimed as the property of others. † Intel® Core™ i7 processor 5557U @ 3.10GHz, 16GB DDR3 memory, 4 vCPU, Qemu-lite 2.6.0.15 x86_64, Clear Container Linux* kernel 4.5-9, Docker 1.12.0-dev, build 3d80884f3d7d60c51c0ccd6b487ebbeb98d2f7e8 (PER EACH INCREMENTAL CONTAINER)

10. intel.com/cloudforall Intel® Clear Containers with Docker*! 1.12 Switchable runtime in Docker 1.12 OCI Intel® Clear Containers are OCI spec compatible 2.0 Intel® Clear Containers 2.0 Available soon on GitHub* and clearlinux.org *Other names and brands may be claimed as the property of others.

11. intel.com/cloudforall Docker* enables switchable runtime support Docker UI/CLI Docker Engine containerd Intel® Clear Containers w/ Intel® Virtualization Technology Container Docker-runC OCI Compatible Container *Other names and brands may be claimed as the property of others.

12. Demo Intel® Clear Containers with Docker* switchable runtime *Other names and brands may be claimed as the property of others.

13. intel.com/cloudforall Join our community and enable containers to be… Speedy Manageable Easy Secure Clearlinux.org Join the mailing list Check our blog for announcements Get the code GitHub: https://github.com/clearlinux IRC on Freenode* #clearlinux Get involved *Other names and brands may be claimed as the property of others.

14. Thank you!

15. intel.com/cloudforall †Tests document performance of components on a particular test, in specific systems. Differences in hardware, software, or configuration will affect actual performance. Consult other sources of information to evaluate performance as you consider your purchase. For more complete information about performance and benchmark results, visit http://www.intel.com/performance. Test and System Configurations: Intel® Core™ i7 processor 5557U @ 3.10GHz, 16GB DDR3 memory, 4 vCPU, Qemu-lite 2.6.0.15 x86_64, Clear Container Linux* kernel 4.5-9, Docker 1.12.0-dev, build 3d80884f3d7d60c51c0ccd6b487ebbeb98d2f7e8. No license (express or implied, by estoppel or otherwise) to any intellectual property rights is granted by this document. Intel disclaims all express and implied warranties, including without limitation, the implied warranties of merchantability, fitness for a particular purpose, and non-infringement, as well as any warranty arising from course of performance, course of dealing, or usage in trade. Intel, the Intel logo, and Intel Core are trademarks of Intel Corporation in the U.S. and/or other countries. *Other names and brands may be claimed as the property of others © 2016 Intel Corporation. Notices and disclaimers

16. intel.com/cloudforall

Notes de l'éditeur

Key Message: Announcement: Intel initiative to make cloud technology easier to deploy and feature complete to bring all the benefits of the cloud to every data center. Announcement: Intel initiative to make cloud technology simple to deploy and manage, accelerate deployments of highly efficient Cloud infrastructure for broad enterprises and cloud service providers. To achieve this objective Intel will make a series of investments; these can take the form of collaborations, financial investments (M&A, Equity), standards, product launches, and major contributions to cloud stacks focused on driving customer adoption Goals: Drive a choice of easy to deploy solutions to the marketplace. Targeted collaborations and investments with cloud software vendors to deliver enterprise feature rich SDI stacks that take full advantage of Intel architecture capabilities Broad community engagement to drive standard frameworks for cloud software innovation. Note on “Tens of thousands of new clouds”: ~45k companies list of stock exchanges globally in addition there are hundreds of telco’s and CSPs and each can deploy multiple clouds per organization (source of 2010 according world federation of exchanges), hence we believe “tens of thousands of new clouds” over time is a realistic goal for mature cloud adoption.
Container technology has been incredibly important over the last decade to create new usages and services for all of us. Its one of the foundational technologies that has helped transform and move more people to the cloud; and for good reason. Insert IT example with PaaS and bundling applications. When I started working on PaaS solutions for our IT shop in 2011, it was truly amazing to see the speed and flexibility that came with the containers and the integrated solution. It was such a revelation to see this all together. So easy to use and bundle applications, upgrade and push new code. Truly transformational. Of course it wasn’t all good in the early days we had our challenges with integration and stability Many people who advocate for containers start by saying that virtual machines are expensive and slow to start, and that containers provide a more efficient alternative. The usual counterpoint is about how secure kernel containers really are against adversarial users with an arsenal of exploits in their pockets. App Containers are a way of bundling, distributing and installing the App Complex enterprise installation process turns into “just an App” Similar to Android’s .apk and Apple’s .app App Containers couple ease of creation with ease of deployment Both developers and IT/ops win Mega applications are complex and expensive to create, manage, secure and install. This one application has all information of an organization, being a prime target for malicious attackers. Once a single mega application installation is not enough for a company, going to multiple parallel installations is an enormous endeavor For example, installing a Microsoft Exchange server is a real big project for an IT department that takes a lot of training, planning and then the actual installation/configuration takes hours if not days. Even doing a second or third such server in an organization is a large project. And once installed, there’s careful nurturing of the installation by a team of professionals Compare this to Google where they instantiate a container that provides a service over 2 billion times per week. Container technology has been essential over the last decade to create new usages and services to (end)users. Its one of the foundational technologies that make up the cloud. Securing complex applications in a traditional container, multi-tenant environment can become challenging.
Key point: Overview of Clear Containers introduction, the Clear Linux Project and agenda topics. The answer is yes. Clear containers leverage Intel VT-x to provide hardware assisted isolation. While it can provide this isolation similar to a VM, Clear Containers are fast to launch, do this with a low memory footprint and are fully integrated into Docker. Today, I’ll provide an overview of Clear containers and how they work with a new Docker through a new feature called switchable runtime. I have also reserved some time in the end to share a very simple demo of Clear Containers working with the new release of Docker. Introduction Agenda: Describe what clear containers are and how they work Discuss how Clear Containers work with Docker Demo
Putting it together: A Linux kernel container includes (control groups (cgroup) for resource allocation + namespaces for separation/visibility. Traditional containers are about using control groups to manage resources and kernel namespaces to limit the visibility and reach of your container app. Containers A, B and C are separated from each other by a security & visibility barrier enforced by namespaces and each container has a set of resources (cpu, memory, disk) allocated to it via the cgroups mechanism. All of this is enforced by a single, shared instance of the Linux Kernel. This can work just fine for application of known trust levels, but can get much more complex in a munti-tenancy environment with applications of unknown trust levels. If you are running a multi-tenant environment with code of an unknown trust level you must take significant steps to secure your environment against a security breach.
Security: While there is separation between namespaces in terms of userspace/ring3 concepts, all namespaces share the same kernel. A kernel compromising security vulnerability allows malicious code in one namespace to compromise (and steal data from) other namespaces Most of the concerns about container security are centered around the container running as a privileged user on the host and the root privilege in the container technically being the same as the root privilege on the host. If you are a privileged user, you may be able to break out of the container, then as the privileged user, you can take over others containers and host processes. This security gap prevents adoption of container technology in various segments due to regulatory (financials, healthcare) or general security needs (government). Example of google approach to securing containers by “double-bagging” containers in VMs. But when it comes to cloud operations, "we see the VM as the only truly safe isolation. … Until we see foolproof security for containers, we will always double-bag our customers' workloads," Google's Craig McLuckie says. Source http://www.informationweek.com/cloud/infrastructure-as-a-service/google-docker-does-containers-right/d/d-id/1319146
Namespace A, B and C are separated from each other by a security & visibility barrier enforced by the Intel CPU. Intel Clear Containers have many optimizations compared to traditional VT-x usages) that reduce startup time and memory consumption to a level that it becomes close to the startup time and memory consumption of traditional containers. The memory overhead is thanks to KSM https://www.kernel.org/doc/Documentation/vm/ksm.txt we are able to share the memory space for the container with each container that is launched reducing the memory footprint. Need to point out - One copy of the middleware and one copy of the kernel. Users could add another container with a mix of Linux kernel and middleware c through Docker switchable runtime
Performance of boot time and container memory. Clear Containers are fast and optimized for low memory consumption, use Intel Virtualization Technology (VT-x) to isolate containers and can be adopted and utilized within traditional container models We implemented a number of optimizations in the Linux kernel as well as streamlined what the hypervisor is doing. For example, traditional VMs require emulation of hardware that is just not necessary for a container, like graphic console, so related components can be disabled, like VNC, spice, gtk. Light weight VM like clear containers do not require most of the legacy devices and are removed, like keyboard, mice, IDE, ISA bus. We can also skip the guest BIOS for the new platform, load guest kernel and jump to guest kernel directly. Low memory footprint: DAX (available in Kernel 4.0 and later) enables the system to do execute-in-place of files stored there. The memory overhead is roughly 48 to 50 MB per container running only 10 containers. The more containers running, the more opportunity to share memory thanks to KSM https://www.kernel.org/doc/Documentation/vm/ksm.txt. A second key feature to reduce memory cost is kernel same-page merging (KSM) on the host. KSM is a way to deduplicate memory within and between processes and KVM guests. Intel® Clear Containers combine the security and isolation advantages of traditional VMs with the deployment speed of containerized apps. They provide a single, protected, fast virtual machine (VM) upon which a container can create a scaled-out scenario within a data center. They utilize Intel® virtualization technology (Intel® VT-x) embedded in the silicon to address the security concerns of traditional container solutions, reducing the opportunity for malicious code or credentials to enter into another space. In addition, they substantially decrease the load time and memory requirements of traditional VMs, allowing for more VMs per physical machine. Intel Clear Containers can be utilized within any Linux-based operating system that supports Kernel-based Virtual Machine (KVM). Qemu-lite is on track to be upstream – Get information from Anthony Improvements/Optimizations (1.0 notes) A fast and light-weight hypervisor. Our first Clear Container started with “kvmtool” for this purpose and Clear Containers will use QEMU-lite for this purpose. Optimizations in the kernel. Optimizations in systemd. Utilization of the DAX “direct access” feature of the 4.0 kernel.This enables the page cache and VM subsystems to be bypassed entirely, allowing for faster filesystem accesses (no copies!) and lower per-container memory usage. Kernel same-page merging (KSM) on the host allows the KVM hypervisor to share identical memory pages among different process or virtual machines on the same server. This allows VM’s to share memory pages in a secure manner for memory that’s not already shared via DAX. Optimization of core user space for minimal memory consumption.
Clear Containers are Open Container Initiative compatible and with Docker’s new switchable runtime available in release 1.12, integration is easy. Clear Containers 2.0 will be released soon and as you will see is fully integrated with Docker 1.12 prerelease CC is available soon on ClearLinux.com and will announce on this site, our blog and mail list. The web site will be updated once the release is complete. OCI - Open Container Initiative (https://www.opencontainers.org/, https://github.com/opencontainers/specs). CC are compatible and not compliant: for example cgroups are not needed for a VM.
Docker’s new switchable runtime makes the switch from runC to an OCI compatible Container like Clear Containers easy by making a simple change in the systemd config file to invoke the alternate runtime as the default and easily switch between them. For example, you can run different Linux kernels or middleware and switch between them with the same Docker UI you have been using.
Demo notes It is so simple and integrated You need to look carefully to notice you are not running runC. Clear Containers are that well integrated
Clear Containers bring all the great things we love about traditional containers. They are fast with startup in just under 50 milliseconds. They are OCI compatible and are just as easy to manage and bundle your code and create new images. Easy to integrate with Docker 1.12 switchable runtimes and bring the added hardware enabled security with Intel VT-x. To get started, all you need to do is join become part of the community. Join the mailing list, start playing with the code and talke to us on IRC at #clearlinux.

Accelerating the Next 10,000 Clouds by Michael Kadera, Intel

Recommandé

Recommandé

Contenu connexe

Tendances

Tendances (20)

En vedette

En vedette (20)

Similaire à Accelerating the Next 10,000 Clouds by Michael Kadera, Intel

Similaire à Accelerating the Next 10,000 Clouds by Michael Kadera, Intel (20)

Plus de Docker, Inc.

Plus de Docker, Inc. (20)

Dernier

Dernier (20)

Accelerating the Next 10,000 Clouds by Michael Kadera, Intel

Notes de l'éditeur