View More
View Less
System Message
An unknown error has occurred and your request could not be completed. Please contact support.
Wait Listed
Personal Calendar
Conference Event
There aren't any available sessions at this time.
Conflict Found
This session is already scheduled at another time. Would you like to...
Please enter a maximum of {0} characters.
{0} remaining of {1} character maximum.
Please enter a maximum of {0} words.
{0} remaining of {1} word maximum.
must be 50 characters or less.
must be 40 characters or less.
Session Summary
We were unable to load the map image.
This has not yet been assigned to a map.
Search Catalog
Replies ()
New Post
Microblog Thread
Post Reply
Your session timed out.
This web page is not optimized for viewing on a mobile device. Visit this site in a desktop browser to access the full set of features.
DockerCon 2018
Add to My Interests
Remove from My Interests

187485 - Istio In the adoption of cloud native technologies developers have found one of the greatest challenges is the integration of services in distributed systems. The challenges include service discovery, load balancing, fault tolerance, end-to-end monitoring, dynamic routing for canary deployments and most importantly securing the communication channels. Istio solves these problems by providing a layer of infrastructure between the services and the network that allows the service communication to be controlled outside the application code. This fundamentally changes how services are connected, managed and secured. During thisworkshop you will gain hands-on experience to understand how Istio is changing the landscape of cloud native applications. We will walk through deploying each piece of Istio alongside a microservice application running in Kubernetes and in the process create a service mesh to control the communication. In a series of hands-on labs, we see features of Istio such as: • Traffic Management, Resilient Communication and Load Balancing between Services • Policy Enforcement and Rate Limiting • Telemetry, Monitoring and Reporting • Securing Communication between • Microservices Canary Deployments Lee Calcote - Head of Technology Strategy, SolarWinds
Girish Ranganathan - Principal Architect, SolarWinds
187481 - Migrating a .Net App to Docker This workshop teaches you how to move existing full .NET Framework apps into container and run them on the Docker container platform for Windows, to modernize the application architecture. You'll learn how to break out back-end features into separate containers and integrate them with a message queue, and how to break out UI components into containers and integrate them with a reverse proxy. At the start of the session you'll be running a monolithic ASP.NET app in a single container, and by the end you'll have a distributed application running across multiple containers, using Docker to build, run and manage them all. Steven Follis - Solution Engineer, Docker
Elton Stoneman - Developer Advocate, Docker
187483 - Migrating a Java App to Docker This workshop covers the process for migrating a N-tier Java REST application to Docker. The process begins with a containerization of the application without changing code. After the containerized application has been tested, we will add a messaging queue to improve application performance through horizontal scaling and elastic deployment of the app. As the application scales, we’ll add logging and monitoring by deploying an ELK stack. Finally, we’ll replace the original JSP client interface to separate the client development from the Java application development. Through each step of the migration, we’ll go through the process of creating images, registering images in Docker Trusted Registry and deploying the application in Docker Enterprise Edition. Sophia Parafina, Docker
Eric Smalling - Solution Architect, Docker
154351 - How MIT's AI Competition runs on 2,000 Docker Containers Battlecode is MIT’s 17 year old AI competition, where players submit bots that compete against each other in a real time strategy game. In order to run such a competition with thousands of competitors, Battlecode must be able to securely sandbox untrusted player code, guarantee a consistent execution environment, and scale to run hundreds of matches in seconds. We achieve this through a unique usage of Docker; to this date, we have deployed our container to hundreds of match-running servers and thousands of competitors. Some of the interesting challenges we have faced when using Docker for Battlecode are, in no particular order, 1) using docker in docker to ensure players don’t tamper with match running software, 2) deploying software to competitors with Docker, and 3) managing a distributed horde of containers. Joshua Gruenstein - Developer, MIT Battlecode
187663 - Docker Storage Concepts In this lab we'll learn how Docker handles storage. We'll take a look at how the file system is represented on disk and how that relates to file system drivers. We'll move from there into looking at bind mounts and volumes - what they are and when to use them. Finally we'll show how to provide persistent storage to your applications. Derrick Miller - Senior Solutions Engineer, Docker
Daniel Finneran - EMEA Solutions Architect, Docker
155124 - From Zero to Hero: How to Champion the Docker Cause I'm a developer who fell in love with a tool that made my life easier. Then, I decided to share it with my colleagues at Virginia Tech to hopefully make their day-to-day work easier and better too. Eventually, I became known as "the Docker guy", not only at Virginia Tech, but in my local tech community. In this talk I'll share my story from playing with Docker to helping launch Virginia Tech's Container-as-a-Service offering, from participating in the Docker Community to becoming a Community Leader and Docker Captain, and developing a Docker training program for Virginia Tech. This journey has taken me many places, both personally and professionally, and I'll share why and when you need an evangelist at your company and how you can become the best Docker evangelist and champion ever! Michael Irwin - Application Architect, Virginia Tech
187204 - Container Innovation SIG This half day includes talks on some of the top Open Source projects and areas shaping the future of container-based platforms including:
High Performance Containers and the Convergence of Big Data and Big Compute By Christian Kniep (Docker)
KubeFlow: Machine Learning Meets Containers by Jay Smith (Google)
Introduction to Hyperledger Fabric by Jonathan Levi (Hacera)
Jonathan Levi, Hacera
David Aronchick - WA, Google
Michelle Casbon - Senior Engineer, Google
Jay Smith - Cloud Customer Engineer, Google
Christian Kniep - Technical Account Manager, Docker
151972 - Accelerating Development Velocity of Production ML Systems with Docker The rise of microservices has allowed ML systems to grow in complexity, but has also introduced new challenges when things inevitably go wrong. This talk dives into why and how Pinterest Dockerized the array of microservices that produces the Pinterest Home Feed to accelerate development and decrease operational complexity and outlines benefits we gained from this change that may be applicable to other microservice based ML systems. Most companies provide isolated development environments for engineers to work within. While a necessity once a team reaches even a small size, this same organizational choice introduces potentially frustrating dependencies when those individual environments inevitably drift. This project was initially motivated by challenges arising from the difficulty of testing individual changes in a reproducible way - without having standardized environments, pre-deployment testing often yielded non-representative results, causing downtime and confusion for those responsible for keeping the service up. The Docker solution that was eventually deployed pre-packages all dependencies found in each microservice, allowing developers to quickly set up large portions of the Home Feed stack, and always test on the current team-wide configs. This architecture enabled the team to debug latency issues, expand our testing suite to include connecting to simulated databases, and more quickly do development on our thrift APIs. This talk will feature tips and tricks for Dockerizing a large scale legacy production service and discuss how an architectural change like this can change how an ML team works. Kinnary Jangla - Engineering Manager, Pinterest
154354 - How To Build Your Containerization Strategy The Docker Enterprise Edition platform helps customers deploy and manage applications faster and it secures the application pipeline at a lower cost than traditional application delivery models. But it takes more than just great technology to achieve the desired results. The organization and culture of your enterprise directly impacts what you transform, how it’s done, and who does it. Success requires a strategy for how you will govern the Docker EE container platform, how to assess your application estate, what your delivery pipeline will look like, and how to ensure developers, operators, security teams and others play nicely together. In this talk I will cover topics such as different types of workloads (legacy, microservices, FaaS, big data, ...), how your org chart can influence whether you deploy a CaaS (Containers as a Service) vs CLaaS (Clusters as a Service), how "shifting left" can determine if you can outsource, centralized vs distributed CI/CD and how containers play a role, transforming your pets into cattle, how giant whale balloons are used for onboarding, and a prescriptive and comprehensive methodology for successfully deploying Docker in your enterprise. Lee Namba - EMEA Practice Manager, Docker
154883 - Java in a World of Containers Container technologies such as Docker are rapidly becoming the de-facto way to deploy cloud applications, and Java is committed to being a good container citizen. This session will explain how OpenJDK fits into the world of containers, specifically how it fits with Docker images and containers. The session will focus on the production of optimized Docker images containing a JDK. We will introduce technologies such as jlink, that can be used to reduce the size of the created image. The session will explain Alpine/musl support for an effective image and runtime. The session will also talk about and the inclusion of Class Data Sharing (CDS) archives and Ahead of Time (AOT) shared object libraries for improving startup time. The attendees will learn about the recent work that has gone into OpenJDK for interacting with container resource limitations. Robert Vandette - Consulting Engineer, Oracle
Arun Gupta - Principal Technologist, AWS
155328 - Designing a Centralized Container Platform for a Multi-Cluster Enterprise Environment Deploying, operating and maintaining many independent clusters is always a key challenge for central service providers in large enterprises. The number of customers and different use-cases realized on the provided platform requires an architecture that is highly integrated into the enterprise IT ecosystem. In this talk we highlight the challenges that came up during the development of the “Container as a Service” Platform based on Docker Enterprise Edition. We also address the architectural and operational decisions we made to cope with requirements of different stakeholders. Further we will show the integration of a multi-cluster/multi-tenant Platform into our existing IT factory. Till Schenk - IT Infrastructure Architect, Robert Bosch GmbH
160496 - Creating Effective Docker Images Sick of getting paged at 2am and wondering "where did all my disk space go?" This has actually happened to me, and you can learn from my mistakes! New Docker users often start with a stock image in order to get up and running quickly, but that isn't always the right answer. Creating efficient images is often overlooked, but important. Beyond saving resources, using minimal images also delivers important security benefits: include only what you need and not a whole runtime that might have security vulnerabilities. In this session, I'll talk about how to create effective images and lessons I've learned from running containers in production at a number of startups. I'll also cover topics like "how do layers work?" and some things you should think about when creating your images, such as; choosing or creating the right base image; the importance of caching; using RUN statements conservatively; cleaning up as you go. I'll also address best practices; both at a high level with multi-stage builds; and some language-specific best practices, for example, tips and tricks for creating containers for Node.js vs Go. To illustrate these points, we'll cover: How layers work? Choosing a base image vs. creating your own The basics of building minimal images and the importance of choosing a base image vs. creating your own The basics for building minimal images and the importance of caching High level best practices for Linux containers (in general, and some language specific examples). High level best practices for Windows container images. New and improved: multi-stage builds Good vs. not so good Dockerfile examples Docker Image Scanning, and other friends. What's up next? Looking to the future for more optimization. Abby Fuller - Sr. Technical Evangelist, Amazon Web Services
152812 - Frequently Answered Queries on StackOverflow Jump start your adoption of Docker by avoiding some of the most common issues encountered. This talk aims to clarify many of the common points of confusion around docker, leveraging countless questions on StackOverflow and hands on experience implementing Docker in production environments. Topics include pitfalls of treating containers like virtual machines, why you should not define a volume in a Dockerfile, how host volumes and a named bind mount are different, the easy way to debug networking issues inside your containers, the difference between exposing and publishing a port, and how RUN, CMD, and ENTRYPOINT may not behave as you expect. Brandon Mitchell - Solutions Architect, BoxBoat
154735 - Containers for Beer - An Edge Appliance Enables Operational Improvements for Craft Brewers The state of the art for information management in the craft brewery is the clipboard. Enabling real-time and historical visibility of the process will result in better beer and clearly make the world a better place to live. Using containers running on a low-cost industrial edge device, process and lab data are sent to a cloud database where visualization and analysis are performed. The goal of this proof-of-concept is to deploy a prototype edge appliance and demonstrate a business case for a cloud-based subscription service. Containers on the edge device are key to delivering configurable solution that will meet varying requirements of breweries. On-premise user functionality includes real-time monitoring and display of the brewing and fermentation processes. Cloud-based functionality includes managing recipes, tracking batches, comparing batch performance, and machine learning to predict fermentation results. Huck Bales - Senior Operational Technologies Engineer, Stone Technologies
153085 - Automated Hardware Testing Using Docker for Space Two things are for certain – space is hard, and Docker is not just for web content! Space software development traditionally lags behind state of the art software process for good reason – our missions are long (7+ years), we run on highly constrained embedded hardware, and the software cannot fail. Docker, along with a devops mentality, has helped us create a scalable, parallelizable and rapidly deployable test infrastructure for DART, NASA’s mission to hit an asteroid at 6 km/s. During the presentation, we will walk through how our dev cycle has changed from a human based testing system to an automated one. We will outline how we are using Docker (and NASA Goddard’s Core Flight Executive) for both our embedded development environment and our scalable test environment. Next, we will discuss what deployment means to us (and how different it is from web deployment). Lastly, we will explore lessons learned on how our hardware-centric testing approach was adapted into a software-based approach: what worked, what didn’t, what we wish we could do someday. How can you help? We are new to Docker. We are excited to share our experiences and hear from the Docker community on our use cases, technological hurdles that we faced, our solutions to these problems, and how we can harness Docker to the fullest extent. Christopher Heistand - Flight Software Lead, Johns Hopkins Applied Physics Lab
154486 - Building Your Production Tech Stack for Docker Container Platform This session will focus on the practicals of building a fully-functional stack of container cluster tools, with different options for stacking those tools from the OS-up. We’ve all seen examples of common technologies stacks, like the good ol’ LAMP and MEAN stacks for apps, but what about lower-level infrastructure? And can we get it without cloud vendor lock in please? Oh and pure containers and infrastructure-as-code too? With Docker, sure thing! This session will cover: Which OS/Distro and Kernel to use VM’s or Bare Metal Recommended Swarm architectures Tool stacks for “pure open source”, “cloud-service based”, and “Docker EE” scenarios Demos of these tools working together including InfraKit, Docker, Swarm, Flow-Proxy, ELK, Prometheus, REX-Ray, and more. Bret Fisher - Docker Captain and DevOps Sysadmin, Independent Consultant
155016 - Building your NoSQL ship: How an Enterprise transitioned from a RDBMS to NoSQL DB using Agile and Docker How do you bring a NoSQL DB into a production Docker Environment? What are key orchestration challenges? How can you design a portable solution that can lift and shift into any environment? What are pro’s and con’s to containerizing your database? By establishing a set of best practices and proper testing you can ensure that your infrastructure design can be resilient in any global environment. The challenge is identifying what works best for your organization. Disruptive testing and partnering with other teams within your company can ensure success when implementing a global application. In this session you will learn from a member of MetLife’s ModSquad innovation team firsthand what challenges MetLife overcame using a NoSQL DB in a Docker environment. You will learn about key decisions impacting orchestration, availability, database replication, and disaster recovery. Additionally, you will understand key differences in classic and swarm mode and how Kubernetes and Docker teaming up will help your Production Design. Jonell Taylor - Platform Engineer, MetLife
155180 - Windows Container Security The majority of the container security discussion revolves around containers on Linux while the security of containers in Windows is left as a mystical black box. In this talk we'll peel back the curtain and dive in to how Windows containers are secured. Does Windows have namespaces? How does it compose the layers of a container's filesystem? How does it limit resource usage of containers? I heard there's a Hyper-V isolation thing, what's that about? We'll answer all these questions and more! David Lawrence - Senior Software Engineer, Docker
Saruhan Karademir, Microsoft
159838 - Fear is the Mind Killer

What are you afraid of? The dark? A monster under the bed? That your company is going to have a next level data breach that vaults your CISO into the lead story on every major news outlet?
There is, of course, good fear. But, there is also the type of fear that most of us won’t overtly acknowledge. Fear that undermines our careers and drives us to make suspect technological decisions.
In this talk we’re going to look at the psychology of fear, and how fear both protects us and holds us back. How fear keeps us from making the right decisions, scares us into making the wrong ones, or paralyzes us into not making any decision at all. Finally, we’ll wrap up with some practical advice on how to recognize when you’re acting out of fear, and how to deal with it.

Chloe Condon - Developer Evangelist,
Mike Coleman, AWS
160792 - Docker for Developers on Mac and Windows The whole Docker ecosystem exists today because of every single developer who found ways of using Docker to improve how they build software; whether streamlining production deployments, speeding up continuous integration systems or standing up an application on your laptop to hack on. In this talk we want to take a step back and look at where Docker sits today from the software developers point of view - and then jump ahead and talk about where it might go in the future. In this talk, we’ll discuss: * Making Docker an everyday part of the developing software on the desktop, with Docker for Windows and Docker for Mac * Docker Compose, and the future of describing applications as code * How Docker provides the best tools for developing applications destined to run on any Kubernetes cluster This session should be of interest to anyone who writes software; from people who want to hack on a few personal projects, to polyglot open source programmers and to professional developers working in tightly controlled environments. Everyone deserves a better developer experience. Gareth Rushgrove - Product Manager, Docker
187667 - Networking for Swarm and Kubernetes in Docker Enterprise Edition Docker Enterprise is changing the application landscape but you still need container A to talk to B in a reliable and portable way. In this workshop you will learn about key Docker Enterprise networking concepts. You will get your hands dirty by going over use-cases, best practices and examples across both Swarm and Kubernetes. Join us to learn more. David Yu, Docker
Moni Sallam, Docker
154487 - Packaging Software for Distribution on the Edge with Docker and Windows Server At GE Digital, in the Asset Performance Management space, we need to supply an edge solution that impacts both on-premise and data transmission to the cloud. Our current edge solutions are relatively simplistic, but as our technologies mature along with our customers’ needs, we’re finding that we need to grasp a more fog computing-based approach where we include more intelligence, more computing power, at the edge. Along with this computative power, we need to better remotely manage these systems – to be able to monitor progress and diagnose problems – a technology that would enable us to containerize, to better manage, our software bundlings and deployments. We found that Windows Docker seemed to fit the bill -- much of the technologies that live at our edge solutions are Windows OS based (as the customers’ main platforms are Windows OS based). This presentation reviews the approach that we took to repackage one of our main APM on-premise solutions using Windows Docker. We’ve created a prototype which we’re looking forward to productize and enable the capability of remote management to thousands of deployments. The presentation also contains a video demo of the running system. The on-prem APM system will demonstrate the usage of Docker networking along with docker volumes and three (3) docker containers – will discuss the construction of the images, and nuances, of execution of the running docker containers. Peter Ngai - Software Architect, GE Digital
154935 - 5 Patterns for Success for Application Transformation Legacy apps weren't designed to run in a modern distributed platform like Docker. They have their own ideas about logging, configuration and health which don't translate to the world of containers and make transformation projects hard. This session shows you how to bring your old apps into the modern world, and integrate them with Docker - without changing code. We'll cover patterns for all the core application concerns: * logging * configuration * monitoring * health * dependency management The sample apps will be in .NET and Java, and will show you how to turn your existing apps into good Docker citizens. Elton Stoneman - Developer Advocate, Docker
160795 - Docker Enterprise Edition: An Architecture and Operations Overview Docker Enterprise Edition (EE) is much more than just an application packaging format and run-time. It is an enterprise-ready container platform that automates the delivery of applications using an agile operating model with integrated security. Join members of the Docker product team as we walk through how you can leverage Docker EE to construct a pipeline to create new apps on Docker Desktop or modernize traditional apps using Docker Application Converter, move apps through a secure supply chain with Docker Trusted Registry, and deploy and monitor the apps at scale in Universal Control Plane. * Overview and architecture of Docker EE technical solution * Locking down a multi-tenant deployment by limiting user access to specific cluster nodes and API/CLI/UI permissions * Using Compose to simplify Dev app creation while leveraging both Swarm and Kubernetes for maximum Ops flexibility * Creating a secure supply chain that scans your apps for vulnerabilities and cryptographically signs them for verification Stick around for tips and tricks running Docker at scale, and demos of new features! Vivek Saraswat - Group Product Manager, Docker
185680 - Building a Center of Excellence for Docker and Containerization: Panel Discussion with PayPal, MetLife, and Splunk As with many new technologies, the adoption of containerization is as much cultural change as it is technological change.. The Docker container platform unlocks many advantages in software delivery but can also challenge traditional development and IT operations paradigms. Companies should consider the potential impact and opportunity the organization, culture and processes as part of the technology implementation. This panel led by Meghdoot Bhattacharya, Director of Cloud Engineering at PayPal, Tim Tyler, Principal Solutions Engineer at MetLife, and Mike Dickey, Senior Director, Engineering at Splunk will feature their experience in rolling out Docker Enterprise Edition across legacy codebases and multiple application teams with minimal disruption to the business. A successful pattern common across all three companies is the formation of a Center of Excellence (COE) to build expertise and focus the execution of the containerization strategy. Gain valuable insights into the intangibles such as how to find the right mix of skills for the team, how to find quick wins that solidify the strategy, and how to roll out Docker in phases to reduce disruption. Mike Dickey - Senior Director, Engineering, Splunk
Meghdoot Bhattacharya - Director of Cloud Engineering, PayPal
Tim Tyler - Principal Engineer, MetLife
Mark Church - Product Manager, Docker
186735 - Container Orchestration from Theory to Practice Join Laura Frank and Stephen Day as they explain and examine technical concepts behind container orchestration systems, like distributed consensus, object models, and node topology. These concepts build the foundation of every modern orchestration system, and each technical explanation will be illustrated using SwarmKit and Kubernetes as a real-world example. Gain a deeper understanding of how orchestration systems work in practice and walk away with more insights into your production applications. Stephen Day - CA, :D
Laura Frank Tacho - Director of Engineering, Codeship @ CloudBees
154800 - 5 years later: Is Docker still delivering? Confessions of a Docker-holic My name is Tom and I'm a self-confessed Docker-holic. This is my story. I first encountered Docker on August 19th 2013. One of our internal customers at Activision was growing weary of VMs and requested "fast, simple to build and reproducible" test environments to be used in the Continuous Integration pipeline. Docker was suggested and within 2 months we were running builds and tests in containers. What started as a single container test environment quickly escalated into test stacks using docker compose. 5 years later and we are using Docker to create scalable, multi-cloud Build and Test environments. The more we used Docker the more use cases we found. This talk will look at how the Build Engineering team evangelised container adoption, the change to the developer workflow, where did we fail and how did we recover. I'll also talk about some tips, tricks and anecdotes picked up along the way. The talk will conclude with "5 things I wish I'd known 5 years ago". Thomas Shaw - Infrastructure Engineer, Riot Games
187205 - Cloud Native Projects SIG This second half day features talks on some of the top Cloud Native Foundation projects including:
Kubernetes Community Office Hours by Paris Pittman (Google)
Everything You Need to Know About the Container Storage Interface (CSI) by Saad Ali (Google)
Introduction to Istio by Dan Berg (IBM) and Zack Butcher (Google)
An Intro to SPIFFE and SPIRE: Building Trust In and Between Modern Distributed Systems by Andrew Jesup (
A HotROD Ride With Jaeger by Yuri Shkuro (Uber)
Cloud Native Logging with Fluentd by Eduardo Silva (Treasure Data)
An Intro to OpenTracing: Follow your Requests from Mobile and Web Clients to Microservices and Monoliths by Priyanka Sharma and Ted Young (LightSpeed)
Saad Ali - Senior Software Engineer, Google
Dan Berg, IBM
Zack Butcher - Software Engineer, Google
Eduardo Silva - Sr Software Engineer, Treasure Data
Priyanka Sharma, LightStep
Paris Pittman, Google
Andrew Jessup - Vice President, Product Management, Scytale
Ted Young, LightStep
Yuri Shkuro - Staff Engineer, Uber Technologies
154229 - Dockerizing StarCraft 2 Learning Environment In August 2017, Blizzard Entertainment and Deep Mind released a StarCraft 2 Learning Environment (SC2LE) designed to take machine learning to the next level. The initial set up of the SC2LE development environment (without Docker) took over a day to troubleshoot and install. In this session, Elaine will share how Docker containers allowed her to cut the time needed to set up SC2LE from over 18 hours to under 30 minutes. Elaine Yeung - Software Engineer, Sentry
187486 - Monitoring and Logging Monitoring and Logging are essential in a productive development life-cycle, particularly when it comes to Enterprise DevOps. As we move faster and more efficient when deploying our applications into production the importance of proper monitoring and logging only increases. No longer do we blindly deploy applications and wait for phone calls until something breaks. As not its expected we know and understand the problem before the customer realises; with container monitoring and logging we can become even more proactive when fixing issues, provide constructive feedback to the business, and perform trend analysis to support capacity planning for the future. What are you going to learn in this Lab? Monitoring & Logging Concepts Available Tooling Docker Monitoring & Logging with Docker Enterprise Install & Configure Lab Brian Christner - Co-Founder, 56K.Cloud
John Harris - Technical Account Manager, Docker
153676 - Continuous Compliance with Docker Container Platform and OSCAL Highly regulated industries such as the financial, healthcare, and Government sectors present a number of unique challenges in the realm of IT compliance. While Docker Enterprise Edition is already being used to facilitate agile and secure development workflows in these environments, it has been notoriously difficult to correlate various standards and catalogs like PCI DSS, HIPAA and NIST 800-53 to containerized workflows and ensure compliance with the same. In this session, you’ll learn about NIST’s new Open Security Controls Assessment Language (OSCAL) specification, the problems it addresses, and how it has been embedded into Docker EE to support the notion of continuous compliance. This session will also highlight how Docker, Inc., in partnership with C2 Labs, extended the platform to give compliance professionals a concise window into the complete state of their Docker environment. Anil Karmel - Co-Founder and CEO, C2 Labs
Andrew Weiss - Lead Federal Sales Engineer, Docker
154784 - Don’t have a Meltdown! Practical Steps for Defending Your Apps Security is a key concern for application developers and operations teams, as well as security professionals. Have I done enough? What do I need to do in the face of new threats like Meltdown and Spectre? What happens when the next big issue comes along? What should my priorities be? How do containers help? In this talk we’ll demonstrate some common attacks live, and show how you can effectively defend your container deployment against them, using a combination of best practices, configuration, and tools. Taking inspiration from highlights of the OWASP Top 10, and other high profile exploits and attacks, in this talk we will look at risks and preventative measures related to: - authentication - injection - updates - sensitive data - configuration By the end of the talk you should understand the most important security risks in your applications, and how to go about mitigating them. Justin Cormack - Engineer, Docker
Liz Rice - Technology Evangelist, Aqua Security
155181 - Docker, Microservices, and the Service Mesh The nature of containerized, cloud-native applications is rapidly advancing with a fundamentally different architecture that will rely on service meshes with smarter proxies, traffic management, and enhanced observability for cooperating microservices, serverless functions, and complex workflows. In this session we will highlight the features that characterize this architectural transformation in the Docker cloud-native ecosystem. Tony Pujals - Director of Cloud R&D, Appcelerator
158240 - Kubernetes Extensibility Kubernetes is designed to be an extensible system. But what is the vision for Kubernetes Extensibility? Do you know the difference between webhooks and cloud providers, or between CRI, CSI, and CNI? In this talk we will explore what extension points exist, how they have evolved, and how to use them to make the system do new and interesting things. We’ll give our vision for how they will probably evolve in the future, and talk about the sorts of things we expect the broader Kubernetes ecosystem to build with them. Eric Tune - Engineer, Google
Tim Hockin - Principal Software Engineer, Google
159833 - Shaving my Head Made me a Better Programmer How do perceptions and stereotypes affect those in the programming community?This talk tells the true story of my physical transformation, and the surprising and drastic ways in which it affected how I was perceived and treated as a programmer. This new perspective allowed me to take a hard look at our community, and how it can at times be less welcoming and inclusive than we all intend it to be. This talk also covers the effects of unconscious bias, micro-aggressions, and stereotype threat within our community, and how to make engineering teams and our entire field more inclusive to all, and thusly more successful. Alex Qin - Director of Technology, Gakko
154892 - Message-Based Microservices Architectures Driven with Docker Microservices are not for everyone, but there are some incredible benefits to employing microservice architecture principles to enable co-evolution of services and features and reduce friction during the DevOps cycle. The growth of moving parts, however, does require tight DevOps procedures, and visibility into system operations including diagnostics, application events and audit trail. Event streaming can enhance your solution enabling async processing and scale, but also enhancing visibility to the solution as a whole. The good news is that if you are already designing a solution based on microservice principles, you are already positioned to incorporate events with less pain. Services that "fit in your head" lead to a manageable approach to introducing event-based strategies. In this session you'll learn how to design a microservices solution with Docker, that relies on event streams to produce workflow state, history and full audit. You'll see patterns for structuring your solutions, managing events and payloads, designing your eventual consistency strategy, and producing full history and audit logs for the solution. Michele Leroux Bustamante - CIO, Solliance
185590 - Troubleshooting Tips from Docker Support Engineers Docker makes everything easier. But even with the easiest platforms, sometimes you run into problems. In this session, you'll learn first-hand from someone whose job is helping customers fix these problems. In this session, you'll learn how to: Ask better questions & identify the real problems you want to solve Use command line tools to inspect internal Swarm and Kubernetes components Debug and troubleshoot interactions between Enterprise Edition components Troubleshoot Docker Enterprise Edition Windows nodes Apply these skills to troubleshooting Docker Enterprise Edition Eiichi Kitagawa - Support Engineer, Docker
Ada Mancini - Support Engineer, Docker, Inc.
185636 - Kubernetes with Docker Since last DockerCon, Kubernetes has been integrated into both the Desktop and Enterprise editions of the Docker Platform. In this deep dive session, we’ll showcase live demos and explore where Kubernetes fits in the architecture of both the Desktop and the Enterprise editions and which community tools make this integration possible. We’ll be covering topics ranging from hypervisor control, storage and networking all the way to the integration of a custom RBAC system, native Compose file support and providing a rich user interface for Kubernetes. Alex Mavrogiannis - Software Engineer, Docker
Guillaume Tardif - Software Engineer, Docker
185681 - 5 Practices for Better, Cheaper, Faster Service Delivery As a disruptive force in the trillion dollar personal loan market, Lending Club built an online platform for peer-to-peer lending that embraces DevOps. Throughout this 10-year experience, Lending Club has dealt with changing business needs, new technology trends like the cloud, and embracing new technologies like containers. In this session, Rob Schoening, VP of TechOps for Lending Club, will outline some of the guiding principles that he's instilled in his organization to be able to embrace DevOps. These principles have allowed the company to grow from $1B in loans issued by 2012 to $33.6B of loans issued by the end of 2017. He'll cover some of the decisions the organization had to make along the way and how they approach DevOps today, including where Docker fits into this. Rob Schoening - VP, Operations, LendingClub
Ashley Sun - Senior Software Engineer (Infrastructure), LendingClub
154841 - Distributed systems for big data processing on Kubernetes: algorithms, architecture and implementation Data is growing quickly and generates events at an ever-increasing rate. Building a flexible, fast, and reliable solution to ingest, process and manage that data can be challenging. How can we make it easier? To form better understanding, in this talk we’ll explore underlying concepts and algorithms used in practical real-world distributed systems. We will also take a look at Kubernetes features, such as Stateful Sets, that help in implementation of big data processing architectures, covering Cassandra, Kafka and beyond. Alena Hall - Senior Cloud Developer Advocate/Engineer, Microsoft
Natallia Dzenisenka - Solutions Architect, Independent
154978 - Self-upgrading Servers with Docker Discover how we implemented a server that doesn't require any downtime to be extended with new features. Babelfish ( is an open source project created at source{d} that provides language parsing for *any* programming language. Each parser is written in its own language, so we can't just simply put everything in a binary. So how does this work? We are able to update and upgrade the API server by running Moby inside of Moby (we need to go deeper!) and using the Docker hub as our repository for parsers. In addition to this, each container image for parsers needs to follow some quite strict specifications: and in order to do so we build a set of images via Makefile and multi-stage builds. All in all creates an efficient system that although is architecturally complex provides a simple developer experience. This talk covers all the juicy details of the architecture and the lessons we learned while developing it. Francesc Campoy Flores - VP of Developer Relations, source{d}
187206 - Docker Platform Internals SIG

This half day highlights talks on the building blocks of the Docker Platform including:

Compose migration: from v2 to cluster-ready by Joffrey Fuhrer (Docker)
LinuxKit: The First Year by Justin Cormack (Docker)
Notary: Nation state resistant signing by David Lawrence (Docker)
Introduction to containerd by Michael Crosby (Docker)
Introduction to Buildkit by Tonis Tiigi (Docker)
Calico: What's a cat doing in my cluster? by Christopher Liljenstolpe (Tigera)

Joffrey Fuhrer - Software Engineer, Compose maintainer, Docker
Tonis Tiigi - Software Engineer, Docker
Justin Cormack - Engineer, Docker
David Lawrence - Senior Software Engineer, Docker
Christopher Liljenstolpe - CTO, Solutions, Tigera
Michael Crosby - Software Engineer, Docker
154438 - Istio: Managing, Securing, and Observing Microservices With the rapid adoption of microservices, Istio has become the de facto framework to load-balance, route, secure and monitor the traffic that flows between microservices. Istio provides a common networking, security, policy and telemetry substrate for services that we call a ‘Service-Mesh’. Come learn how the service-mesh helps with the transition to microservices, to empower operations teams, to adopt security best-practices and much more. We’ll also cover the state and ecosystem of the project, where it’s headed and how you can get involved. Zack Butcher - Software Engineer, Google
Lin Sun - Senior Technical Staff Member, IBM
154806 - Tips and Tricks of the Docker Captains Docker Captain Adrian Mouat will present a grab bag of tips and tricks for getting the most out of Docker. These tips are aimed at avoiding common pitfalls, addressing common misunderstandings and making common operations easier. Topics covered will include: - Build Processes - Security - Volumes - Databases - Orchestration - Debugging and Maintenance - Calling Docker from Docker Whilst aimed primarily at new and intermediate users, even advanced users should pick up some new information. This talk will make your daily life with Docker easier! Adrian Mouat - Chief Scientist, Container Solutions
155129 - Modernizing Traditional Applications with Docker Modernizing Traditional Apps with a Docker is a great way to start your containerization strategy and to prove to your leadership there is value. MetLife has outlined the early stages of their journey at past DockerCons, but have now moved past the POC stage and are in the process of transforming our technology portfolio globally. We are driving change on multiple levels in many ways, and now we've created a long-term strategy outlining how we will reach our technology goals using containers. At MetLife, we realized that once a PoC is complete, incorporating an entire application portfolio can be challenging: Where do you focus for the largest benefit to the organization? How and what do I spend the savings on if I want to ensure maximum value? How should people & processes change to align to match our transformation goals? In this session you’ll hear more about how MetLife has built their strategy to go forward, and you’ll learn how Docker's strategic approach to containerization and transformation can be applied in your company, too. Jeff Murr - Director, Container and Open Source Platforms, MetLife
Brian Walker - Solutions Architect, Docker
159751 - DaVita’s Container Journey in the Healthcare Industry When DaVita wanted to improve their end to end application lifecycle, they understood that containers were going to be a major part of their strategic approach. The IT team at DaVita began learning and educating themselves on how a container platform could help them improve app isolation and developer productivity. The ability to implement practices like image scanning and policy-based automation was crucial in getting DaVita to the next stage of its technology evolution. In this talk, Jason Richling and Pav Jimanov from DaVita will discuss the implementation process, from getting initial buy-in from key internal stakeholders, to key design decisions that enabled the final deployment across the enterprise. They'll also share some of their learnings and tips that can help you in your own container journey. Jason Richling - IT Director, DaVita
Pav Jimanov - Principal Engineer, DaVita
159823 - Democratizing Machine Learning on Kubernetes

One of the largest challenges facing the machine learning community today is understanding how to build a platform to run common open-source machine learning libraries such as Tensorflow. Both Joy and Lachie are both passionate about making machine learning accessible to the masses using Kubernetes. In this session they'll share how to deploy a distributed Tensorflow training cluster complete with GPU scheduling on Kubernetes. We’ll also share how distributed Tensorflow training works, various options for distributed training, and when to choose what option. We’ll also share some best practices on using distributed Tensorflow on top of Kubernetes, based on our latest performance tests performed on public cloud providers. All work presented in this session will be accessible via a public Github repository.

Joy Qiao - Principal Solution Architect, Microsoft
Lachlan Evenson - Principal Program Manager, Microsoft
187478 - The Complexity to “Yes” in Analytics Software and the Possibilities with Docker and Containers When you have to say "YES" to everything, what does that really mean? The Boston Consulting Group (BCG) is a global management consulting firm that advises industry leading companies on value creation strategies, innovation, transformation, supply chain management and much more. BCG provides recommendations and analytics that are custom tailored to the needs of each client. To do this BCG is transforming what used to be presentations and manual models into software that is prototyped and distributed to their client to run on their infrastructure - in effect changing the way BCG delivers value. However the productization process poses unique challenges and opportunities. Their clients have every type of infrastructure and application stack within their IT environments, how can BCG ensure that the custom built analytics applications will operate well at scale in their client's production environment - especially when it is an environment that they don't control? The bespoke nature of the BCG business led the team to embark on an engineering led journey to containerization with Docker. Attend this session to learn more about the approach, challenges and how BCG is enabling transformation with Docker Enterprise Edition. Andrea Gallego - Gamma Principal, Gamma CTO, The Boston Consulting Group
154380 - Docker for Python Developers This talk looks at how to configure a Python-based development environment for both web development and data science. We'll look at how to configure Docker in your local development environment, set up Docker Compose to manage multiple containers, and utilize multi-stage builds to produce lean, production-ready images. Michael Herman - Denver, ClickFox
154795 - Improve Community Project Engagement with Docker America Brigade meetup, our small team of engaged citizens has been working on local civic issues with web technology for over five years. As the number of volunteers and code projects grew, we used Docker and Docker Compose to not only scale our infrastructure but also our volunteers through rapid project onboarding. All in the open. At Code for Hampton Roads, we are technical people who volunteer our time to build free apps and tools to help our local communities and change the way we engage with our government. With a few core developers, we were able to use Docker to scale our efforts to maintain applications used by thousands of local citizens and built in different technologies; all while onboarding new developers and bootstrapping them quickly. It has unlocked our ability to collaborate and iterate quickly from development to productions across our organization and local government. It also empowers our volunteers to jump in quickly, removing the “environment setup” challenge. This session will share how adopting Docker can help unlock productivity and collaboration to any organization, technical or not. We’ll share how Docker has improved our community and transformed our organization over the past five years. Stanley Zheng - Cloud Software Engineer, Cloud Reach
Kenia Valladarez - Cloud Software Engineer, Cloudreach
Remove From Schedule Add To Schedule Are you sure you would like to Delete this personal time? Edit My Schedule Edit Personal Time This session is full. Would you like to be added to the waiting list? Would you like to remove "{0}" from your schedule? Would you like to add "{0}" from your schedule? Sorry, this session is full. Waitlist Available Sorry, this session and it's waiting list are completely full. Sessions Available Adding this multi-day session automatically enrolls you for all times shown below. Removing this multi-day session automatically removes you for all times shown below. Adding this multi-day session automatically enrolls you for all session times for this session. Removing this multi-day session automatically removes you for all session times for this session. Click to view details Interests Hide Interests Search Sessions Export Schedule There is a scheduling conflict. You cannot add this session to your schedule because you are participating in another session at this time. Schedule Conflict. An error occurred while processing this request.. Adding this item creates a conflict with another session on your schedule. Remove from Waiting List Add to waiting list Removing this will remove you from the waiting list for all session times for this session Adding this will add you to the waiting list for all session times for this session. You have nothing scheduled Tap below to see a list of sessions and activities that are available to add to your schedule this week Choose from the list of sessions to the left to add to your schedule for the day Add a Session
Get More Results