16 May 2022
Valencia, Spain
View More Details & Registration

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2022 - Valencia, Spain and add this Co-Located event to your registration to participate in these sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Central European Standard Time, UTC +2. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."  The schedule is subject to change.

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Sign up or log in to bookmark your favorites and sync them to your phone or calendar.

Monday, May 16

07:30 CEST

Registration + Badge Pick Up
Monday May 16, 2022 07:30 - 17:00 CEST
Central Forum

Monday May 16, 2022 07:30 - 17:00 CEST
Central Forum

09:00 CEST

Welcome + Why We're Excited About eBPF - Liz Rice, Isovalent & Sarah Novotny, Microsoft
Click here to view captioning/translation in the MeetingPlay platform!

avatar for Sarah Novotny

Sarah Novotny

Open Source Wonk, Azure Office of the CTO, Microsoft
My technological focuses have been in recent years Open Source; Cloud and Utility Computing; Infrastructure automation; and Data (big and small; relational and non-relational).My calling, though, lies in sharing my excitement about technology and coalescing a group around a consistent... Read More →

Monday May 16, 2022 09:00 - 09:20 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

09:25 CEST

The Future of eBPF in Cloud Native - Thomas Graf, Isovalent
eBPF is taking the cloud native world by storm. Where will it lead us? This talk introduces eBPF by looking at the ecosystem of eBPF-enabled CNCF projects focusing on what they provide for end-users and how they will evolve in the coming years. The projects covered span a wide set of use cases including networking, security, service mesh, observability, and performance monitoring. We will answer questions such as "Why is eBPF so powerful?" "What is different to prior similar technologies?", and "What values does eBPF provide for end users?". To sum it all up, we will together look at how eBPF itself will evolve in the coming years and what impact that will have to the cloud native world.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Thomas Graf

Thomas Graf

CTO, Isovalent
Thomas is the Co-Founder and CTO of Isovalent, long-time eBPF developer, and one of the creators of the Cilium project. Before working on Cilium, and eBPF, Thomas was a Linux kernel developer for 15+ years focusing on networking, security, and eBPF. Thomas currently serves as the... Read More →

Monday May 16, 2022 09:25 - 09:55 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

10:00 CEST

10:15 CEST

Getting Linux Based eBPF Programs to Run with eBPF for Windows - Poorna Gaddehosur, Microsoft & Anurag Saxena, Microsoft
At Microsoft, we started on the eBPF for Windows story as a recognition of the engineering agility that eBPF as a technology has fostered in the developer community. A fundamental goal for us with this effort has been to meet the developers where they are and because of this, enabling eBPF programs written for Linux to run on top of the eBPF for Windows platform is very important to us. What better way to demonstrate this than a very relevant real world use case! With help from Cilium devs, we have been working to get the Cilium Layer-4 Load Balancer (L4LB) eBPF program running on eBPF for Windows. In this presentation, we will talk about the path we took towards enabling the Cilium L4LB eBPF program on top of eBPF for Windows. We will provide a demo of the work and provide the information required for any developer to try this out on their own. The eBPF-for-Windows platform is fully open sourced and so is the demo code and the instructions required to run it.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Poorna Gaddehosur

Poorna Gaddehosur

Principal Group Engineering Manager, Microsoft
Poorna Gaddehosur is a Principal Group Manager in the Core OS Networking organization at Microsoft. He is an architect shepherding the development of eBPF for Windows. Poorna also leads multiple teams in the networking space such as Software Defined Networking for Microsoft Azure... Read More →
avatar for Anurag Saxena

Anurag Saxena

Principal Software Engineer, Microsoft
Anurag Saxena is a Principal Software Engineer working at Microsoft. He is a subject matter expert on SDN, VPN Gateways for Microsoft Azure Stack and HCI. Currently he is working on the design and development of eBPF for Windows.

Monday May 16, 2022 10:15 - 10:45 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

10:45 CEST

IKEA Private Cloud, eBPF Based Networking, Load Balancing, and Observability with Cilium - Karsten Nielsen, IKEA IT AB
The digital systems of IKEA are situated in public cloud and private data centers around the world. In this talk we’ll highlight some of the challenges – and opportunities - we faced in setting up a large scale, multi-cluster distributed Kubernetes environment across our data centers. We’ll share how we have used Cilium and its eBPF features to have a better scaling profile, to improve observability and even to replace some of our proprietary load balancers. * Connecting Kubernetes workloads across our BGP network * Protecting multi-tenant workloads with multi-cluster network policy * Cilium support for multi-homed pods * Mimicking availability zones with Cilium ClusterMesh * Use Cilium with XDP, ServiceType Loadbalancer and Ingress to replace our proprietary load balancer fronting workload. You’ll leave this talk understanding how you can use Cilium and its eBPF capabilities to build and instrument your network and obtain great observability.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Karsten Nielsen

Karsten Nielsen

Senior Systems Engineer, IKEA IT AB
I work as a senior systems engineer at IKEA IT AB in the hybrid-/private cloud team focusing on topics around compute, network, service mesh, multi cloud, etc. Open Source and cloud native advocate and enthusiast by heart, using Linux and other open source tools to build products... Read More →

Monday May 16, 2022 10:45 - 11:15 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

11:20 CEST

eBPF? Safety First! - Kemal Akkoyun, Polar Signals & Dave Tucker, Red Hat
eBPF being a promising technology is no news. And C is the defacto choice for writing eBPF programs. The act of writing C programs in an error-prone process. Even the eBPF verifier makes life a lot easier; it is still possible to write unsafe programs and make trivial mistakes that elude the compiler but are detected by the verifier in the load time, which are preventable with compile-time checks. It is where Rust comes in. Rust is a language designed for safety. Recently the Rust compiler gained the ability to compile to the eBPF virtual machine, and Rust became an official language for Linux. We discover more and more use cases where eBPF can be helpful. We find more efficient ways to build safe eBPF programs that are parallel to these developments. We will demonstrate how we made applications combined with Rust in the data plane for more safety and Go in the control plane for a higher development pace to target Kubernetes for security, observability and performance tuning.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Kemal Akkoyun

Kemal Akkoyun

Software Engineer, Polar Signals
Kemal Akkoyun is a Senior Software Engineer at Polar Signals. He is one of the maintainers of Thanos and Prometheus. He is heavily invested in observability, profiling, and performance engineering. Kemal is interested in tools like Go, eBPF, Kubernetes, Prometheus, and Rust. He likes... Read More →

Dave Tucker

Principal Software Engineer, Red Hat
Dave Tucker is a Principal Software Engineer in Red Hat’s Office of the CTO. While his background is in Networking, Dave has done many things, including founding a startup, but his passion is systems programming. He can mostly be found writing Rust, drinking coffee and diving deeper... Read More →

Monday May 16, 2022 11:20 - 11:50 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

11:55 CEST

Bpftrace Meets Pixie: Dynamic Monitoring of K8s Clusters Unleashed - Omid Azizi, New Relic (Pixie)
Bpftrace is an essential tool for developers investigating the workings and performance of applications on Linux systems; Pixie is an eBPF-based observability platform for real-time troubleshooting of applications on Kubernetes. What if you could bring these two open-source projects together and combine the power of bpftrace with Pixie's approach to monitoring Kubernetes? This session presents Pixie's bpftrace integration and how it enables dynamic monitoring of Kubernetes clusters. This talk will show how Pixie can deploy a bpftrace program across all the nodes of your cluster, and make the collected data available for querying and visualization. Topics include (1) an overview of how the Pixie bpftrace integration works, (2) how to import existing bpftrace scripts (or write new ones) into Pixie, and (3) how to use the Pixie's query language to perform real-time debugging of Kubernetes applications. The talk will include a number of live demonstrations, including how bpftrace + Pixie can identify TCP issues, and even how to discover patterns of unauthorized bitcoin mining in your K8s cluster.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Omid  Azizi

Omid Azizi

Principal Software Engineer, New Relic (Pixie)
Omid is a Principal Software Engineer at New Relic and Founding Engineer at Pixie Labs. He leads the development of Pixie's eBPF-based data collector. Prior to working on Pixie, Omid worked as a hardware architect, developing novel memory systems at Hicamp Systems as well as AI chips... Read More →

Monday May 16, 2022 11:55 - 12:25 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

12:25 CEST

13:25 CEST

13:30 CEST

Falco & eBPF: Is the only Limit the Sky? - Federico Di Pierro, Sysdig & Andrea Terzolo, Politecnico di Torino
eBPF is a powerful technology, but how could it be used in critical scenarios with throughputs higher than billions events per second? If this question doesn't make you sleep at night, this is the right talk for you. Building a large scale tracing tool is hard... Falco uses BPF to trace syscalls, page-faults, context-switches, and many other system events; but collecting all of those inevitably leads to data losses. The situation becomes even more complex when we consider the portability issue: supporting lots kernel versions, even very old ones, means not being able to take advantages of all modern BPF concepts like ring-buffer, global variables, and other advanced tracing features. Starting from these assumptions, Andrea and Federico will drive you through the actual BPF probe architecture, its strengths, and the criticalities that must be faced every day. More precisely, they will outline some possible mitigations to actual problems and what they are planning for the future to improve the situation, exploiting, when possible, modern BPF tracing features.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Federico Di Pierro

Federico Di Pierro

Open Source Engineer, Sysdig
Since I started programming, around 10 years ago, I was always fascinated by Open Source world. Using linux as my daily driver, and C as main programming language, throughout my career I always looked forward to work for the Open Source community, a thing that I can say to enjoy very... Read More →
avatar for Andrea Terzolo

Andrea Terzolo

Research fellow, Politecnico di Torino
During my studies in Cybersecurity, I had the opportunity to get in touch with the Linux kernel and all its complexity. I was very impressed! So, after graduation, I started a research activity with the Polytechnic of Turin on an emerging technology: eBPF. And guess what? I fell in... Read More →

Monday May 16, 2022 13:30 - 14:00 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

14:05 CEST

Step by Step Kubernetes Observability with eBPF - Denis Jannot & Lin Sun, Solo.io
In this talk, we will explore how someone can use eBPF to get insights about the communications happening in a Kubernetes cluster. We will write an eBPF program and then use the BumbleBee (https://github.com/solo-io/bumblebee) open source project to build and deploy it. This program gathers information about all the network communications happening in the cluster and publishes the corresponding metrics that we store on Prometheus. We will then deploy a service that gets the metrics and correlate them with the Pod and Service IP addresses to build a graph displaying all the communications.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Denis Jannot

Denis Jannot

Director of field engineering, Solo.io
Denis is the Director of Field Engineering at Solo.io, a company building application networking solutions for the edge and service mesh. Denis is a passionate engineer who has spent his career in technical roles working directly with customers and users in architecting and adopting... Read More →
avatar for Lin Sun

Lin Sun

Director of Open Source, Solo.io
Lin is the Director of Open Source at Solo.io and a CNCF ambassador. She has worked on Istio service mesh since 2017 and serves on the Istio Technical Oversight Committee. Previously, she was a Senior Technical Staff Member and Master Inventor at IBM for 15+ years. She is the author... Read More →

Monday May 16, 2022 14:05 - 14:35 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

14:40 CEST

L3AF: Complete Lifecycle Management of eBPF Programs - Santhosh Fernandes, Walmart
- In this session, we will talk about how we can launch and manage eBPF programs using a daemon. At Walmart, we have developed a control plane that manages eBPF programs across a number of hosts running this daemon. The daemon can monitor and chain these programs (execute them in a sequence) in a pre-defined configuration state.
It achieves this by reading host-specific configurations that consist of eBPF programs attributes (artifacts, arguments, sequence IDs, policies/rules, network interface) to perform CRUD operations, akin to a linked list. In addition, we would like to discuss how the daemon leverages cilium's eBPF library to read eBPF maps and populate metrics specific to eBPF programs.

L3AF has been open-sourced under Linux Foundation (https://github.com/l3af-project/l3afd). L3AF is developed and managed by an enthusiastic community that is actively working on adding new features to it. We would also like to talk about how L3AF aims to provide a fully integrated software ecosystem around eBPF to unleash its full potential for community adoption across platforms.

Click here to view captioning/translation in the MeetingPlay platform!

Monday May 16, 2022 14:40 - 15:10 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

15:10 CEST

15:25 CEST

Lightning Talk: eBPF-Powered Observability for Telco CNFs - Junichi Kawasaki, KDDI
One of the critical KPIs for telecom operators is 99.999% availability. Of course, it should be assured even after introducing Cloud-native Network Functions (CNFs). How can we achieve this carrier-grade quality in the coming networks? How to maintain observability for CNFs? eBPF is expected to help telcos manage CNFs and keep the environment resilient with its high-performance, flexibility, and scalability. This talk will share how you can apply eBPF tools such as bcc and bpftrace to collecting fine-grained information (e.g. TCP retransmit) for network operation as well as how such data can be leveraged to developing ML models. This talk will also walk you through a test result in a 5G core network deployed by Kubernetes to show you what network data derived by eBPF are essential for failure prediction.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Junichi Kawasaki

Junichi Kawasaki

Network Engineer, KDDI
Junichi Kawasaki is Network Engineer at KDDI, telecom operator in Japan, where he has spent his time working on research and development for autonomous network, including monitoring and orchestration with open source. He now focuses on building CNF monitoring system using eBPF tools... Read More →

Monday May 16, 2022 15:25 - 15:55 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

15:35 CEST

Lightning Talk: BTFGen: one Step Closer to Truly Portable eBPF Programs - Mauricio Vásquez Bernal, Microsoft & Rafael David Tinoco, Aqua Security
Many cloud native projects started using eBPF to provide OS and application observability, networking and security. Kubernetes deployments run on many different kernel versions and currently there is a big challenge on portability, as the eBPF programs depend heavily on the kernel version. BPF CO-RE (Compile Once – Run Everywhere) is a mechanism to solve this issue. It requires the kernel to expose information about its types by using BTF (BPF Type Format), which is not always available. BTFHub aims to solve that by providing BTF files for released kernels that don't support BTF. However, it’s not possible to ship the BTF information for many different kernels with the application because of size limitations. BTFGen generates very small BTF files that can be shipped with the application, making it easier to run eBPF programs in different kernel versions. Mauricio will introduce the challenges of creating portable eBPF cloud native ready applications and how BTFGen helps to solve those challenges. The talk covers BTFGen implementation, in bpftool, and discusses our experience in integrating it to the open-source eBPF powered projects Inspektor Gadget and Tracee.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Mauricio Vásquez Bernal

Mauricio Vásquez Bernal

Software Engineer, Microsoft
Mauricio works as a software engineer in the Kinvolk team at Microsoft. He is mainly interested in eBPF, Kubernetes, networking and tracing technologies. He has been working with eBPF for some years now. Currently he focuses on developing tools for debugging and observability on cloud... Read More →

Monday May 16, 2022 15:35 - 15:45 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

15:45 CEST

Lightning Talk: Armoring Cloud Native Workloads with BPF LSM - Barun Acharya, Accuknox
Cloud Native Workloads are not protected by default as the various tools for security into place provides perimeter security at the host, or the network and not necessarily the workload itself. BPF LSM provides with security hooks necessary to set up least permissive perimeter for various workloads. KubeArmor is a cloud-native runtime security enforcement system that leverages various LSMs to secure the workloads. There’s a need for a declarative policy management system for Mandatory Access Control in modern workloads where underlying infrastructure is abstracted away. This talk will be about how BPF LSM provides fine grained control over security hooks and how KubeArmor leverages these LSM superpowers to abstract away the complexities. How BPF LSM compares with other LSMs to protect modern workloads and what design considerations/challenges for integrating BPF LSM in KubeArmor.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Barun Acharya

Barun Acharya

Software Engineer, Accuknox
Barun is a final year computer science undergraduate student in India and currently works as a Software Engineer at Accuknox. He loves to talk about Open Source and has been associated with programs like Google Summer of Code and LFX Mentorship. He is usually hacking on low level... Read More →

Monday May 16, 2022 15:45 - 15:55 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

16:00 CEST

Panel - Klustered: eBPF Edition - Moderated by David Flanagan, Pulumi; Duffie Cooley, Isovalent, Loris Degioanni, Sysdig, & Marga Manterola, Microsoft
In this special edition Klustered, David sends our worthy opponents from Isovalent, Microsoft, and Sysdig through a series of eBPF challenges. Wielding only their tools of choice, Cilium, Inspektor Gadget, and Sysdig/Falco, the teams must unravel the 3 breaks across their bare metal Kubernetes clusters to get their applications working.

During this panel we’ll show clips of each episode while discussing how eBPF changes the game for debugging, networking, and security.

We welcome your questions on eBPF and the tools above throughout the session, so come have a giggle and enjoy the show.

Click here to view captioning/translation in the MeetingPlay platform!

avatar for Loris Degioanni

Loris Degioanni

CTO, Sysdig
Loris Degioanni is the CTO and founder of Sysdig. He is also the creator of the popular open source troubleshooting tool, sysdig, and the CNCF runtime security tool Falco. Prior to founding Sysdig, Loris was one of the original contributors to Wireshark, the open source network analyzer... Read More →
avatar for Duffie Cooley

Duffie Cooley

Field CTO, Isovalent
Duffie is Field CTO at Isovalent focused on helping enterprises find success with Cilium and modern security tooling. Duffie has been working with all things systems and networking for 20 years and remembers most of it. A student of perspective, Duffie is always interested in working... Read More →
avatar for David Flanagan

David Flanagan

Staff Developer Advocate, Pulumi
David is a Staff Developer Advocate at Pulumi, a CNCF Ambassador, and host of the official Kubernetes Office Hours. As a professional technology magpie, David was an early adopter of cloud, container, and cloud-native technologies; crossing the murky waters of AWS in 2008, Docker... Read More →
avatar for Marga Manterola

Marga Manterola

Director of Engineering, Isovalent
A Debian Developer and Open Source enthusiast, Marga has been working with Linux for 20 years. She worked as an SRE at Google, in the team maintaining the internal Linux distribution used by Google engineers. She later joined the cloud native world, working on Flatcar, a container... Read More →

Monday May 16, 2022 16:00 - 16:40 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

16:40 CEST

Closing Remarks
Click here to view captioning/translation in the MeetingPlay platform!

Monday May 16, 2022 16:40 - 16:50 CEST
Pavilion 4 | Room A | Level 2 | Central Forum

17:00 CEST

CNCF-hosted Co-located Events Happy Hour
Join us onsite for drinks and appetizers with fellow co-located attendees from Monday's CNCF-hosted Co-located Events.

Network with attendees from:
  • Cloud Native Security Conference Europe hosted by CNCF
  • Cloud Native Telco Day Europe hosted by CNCF
  • Cloud Native Wasm Day Europe hosted by CNCF
  • eBPF Day Europe hosted by CNCF
  • FluentCon Europe hosted by CNCF
  • Kubernetes AI Day Europe hosted by CNCF

Monday May 16, 2022 17:00 - 18:30 CEST
Plaza | Feria Valencia
  • Timezone
  • Filter By Venue Valencia, Spain
  • Filter By Type
  • Breaks
  • Experiences
  • Keynotes
  • Lightning Talks
  • Panel
  • Registration
  • Sessions

Filter sessions
Apply filters to sessions.