cloud

What's Happening with Ingress-Nginx!

What’s Happening with Ingress-Nginx! - James Strong, Chainguard & Ricardo Katz, VMware This presentation will discuss our plans for Ingress-nginx 2.0 release, breaking changes, new features, and deprecations. We will also discuss our plans for gateway API, CVE reduction, and other security updates coming to ingress-nginx. As always, we will provide a community update, roadmap, and other critical information attendees should know about the project. Please join us to learn all about the progress and future of ingress-nginx.

Wolfi: A Secure-by-Default Distro for Curing Container CVE Chaos

Are you using container images with hundreds of known vulnerabilities? The majority of us are using images based on the Docker official images available on the Docker Hub. This includes base images – such as Debian and Ubuntu – as well as application images such as nginx and redis. Unfortunately these images often have hundreds of known vulnerabilities due to excessively large dependency trees with out-of-date packages. This security debt can lead to unnecessary security risks and slower development cycles.

Life of a CVE with Ingress-Nginx; Understanding the Project's Release Cycle

Life of a CVE with Ingress-Nginx; Understanding the Project’s Release Cycle - James Strong, Chainguard & Dylen Turnbull, Nginx INC Speakers: Dylen Turnbull, James Strong In 7 years, Ingress-nginx has had 221 releases, with over 6800 commits. To ensure stability and to test this highly configurable controller, the project has grown to over 400 e2e tests and helm chart tests across various kubernetes versions and deployment landscapes. We were 3/4 through our stabilization project in the last maintainer track we presented.

Understanding the Future of Ingress-nginx

Understanding the Future of Ingress-nginx - James Strong, Chainguard & Ricardo Katz, VMware Speakers: Ricardo Katz, James Strong In this talk, we will present the survey results from our Ingress-nginx community survey. The survey’s goal was to know what we should be doing for future releases and how to prioritize features, bugs, or other issues important to the community. The ingress-nginx project is undergoing a stabilization project as well. This stabilization project has worked to increase the security, review and deprecate older features, and fix long-standing issues with the project.

Chainguard Live: All About That Base Image

The Chainguard team has released a new whitepaper titled “All About That Base Image.” The whitepaper proposes “quiet” base images, minimal images with few or no security vulnerabilities, and other security features built-in. The intended audience is software development teams that use containers and are interested in reducing the workload associated with investigating and mitigating security vulnerabilities. The whitepaper helps software professionals better understand the security debt of popular base images by analyzing the number, severity, and lifetime of vulnerabilities.

Cloud Native Security Webinar

As organizations undergo a digital transformation, cloud migration now more than ever remains a high priority for those looking to expand their business and remain top competitors in their field. But how do companies develop and deploy in the cloud without fear? What is really needed to secure your cloud accounts, and develop your engineers’ innovation all while adhering to industry-wide security best practices? On Thursday, May 27th, discover the solution to those questions and more during our latest webinar where we present our unique framework, Cloud Guardian.

Realizing the benefits of container DevSecOps with AWS

AWS DevSecOps Container Pipeline workshop at DevOps Days Houston Workshop available at https://aws.containerdevsecops.io/ In this workshop Engineers will learn how to secure their container pipeline using AWS and other Cloud Native tools. This will be part Lecture and part hands on. We will be working through the following topics: Introduction Workshop Setup Development Environment Container Builds Container Pipeline Running Containers We will be using these tools and techniques to secure a container pipeline and runtime.

Networking and Kubernetes Early Release

This past year Vallery Lancey and I have been working on a Kubernetes Networking Book. I am proud to announce that we have an early release of Chapters 1-3 of the book available on O’Reilly Digital platform. Kubernetes Networking is an essential guide for anyone who wants to deploy, manage, or troubleshoot a production-scale Kubernetes network. Understanding Kubernetes clusters isn’t enough to operate Kubernetes at scale. Every layer of the stack–the network, operating system, and Kubernetes–depends on the layer below.

A Cloud Guru Advanced Networking with Kubernetes on AWS

I’ve spent the last year created a course for A Cloud Guru. With 3.4 hours of content and 36 lessons, I look forward to your feedback. Here is my “Advanced Networking with Kubernetes on AWS” Course. Since its release in 2014, Kubernetes has become the de-facto standard for container orchestration. Kubernetes is a distributed system for managing containers and its networking is no different. Many companies are deploying Kubernetes on-prem and in the cloud, both managed offerings and self-deployed.

AWS Cloud Governance & Security through Automation

At the August meetup for Atlanta AWS Builders group Jason Lutz and I presented on AWS Security. Presentation: https://www.slideshare.net/jstrong09/aws-dev-secops-atlanta-august-meetup Is that requirement from NIST 800-53 Controls or NIST 800-190? If you’ve ever wondered where those pesky cloud security controls come from, this meetup is for you. In this Meetup, Jame Strong and Jason Lutz from Contino (an AWS Permier Consulting Partner) will discuss how Contino views DevSecOps. They will review the Benefits of DevSecOps:

Containers and DevSecops

DevOps is established, and containers are all the rage, but we forget about security! Let’s talk about DevSecOps and Containers. We’re going to show you how to inject security into your Container Pipelines. Don’t have a pipeline? Don’t worry, because we’ll fix that too. In this talk, James Strong, Cloud Native Director at Contino and AWS APN Ambassador, will share knowledge around container security and building a DevSecOps pipeline in AWS with no servers.

KubeCon San Diego Recap

KubeCon San Diego Recap KubeCon had a great turnout this year with 12,000 attendees that filled the San Diego Convention center. Three things stood out to me: Security, Network, and Community. The community was a big theme at this event and in many of the keynotes. From David’s talk about non-code ways to contribute to CNCF’s projects. Kelsey Hightower’s keynote on how we could never have done this as an individual or a single company.

High-Performance Computing for Financial Services

The last week of July, I attended High-Performance Compute (HPC) Training for Financial Services in AWS. During this week-long training, AWS professionals in Financial Services shared their outlook on the needs that large financial institutions face from the industry, regulators, and markets. The first thing that caught my attention was this question: “If you could add 100,000 cores to your HPC grid, return them once you’re done and pay only for what you use, just like many of your peers do, how would that improve your business?

Intro to Kubernetes

In April, we kicked off [Kubernetes and Cloud Native Computing Louisville](https://www.meetup. com/Kubernetes-and-Cloud-Native-Computing-Louisville/) I presented an “Intro to Kubernetes”, here is a link to the presentation More about that Meetup here Recording

AWS Re:invent Recap 2018

Another year, another re:Invent down! 2018 had everything we have come to expect from AWS and re:Invent - releases, updates, sessions on everything and shots at Oracle. The focus this time was certainly on developer experience, Artificial Intelligence/Machine Learning and Serverless. There were at least sixteen new releases in regards to ML/AI. Sagemaker got new features in Ground truth and RL. There is now a marketplace for machine learning algorithm writers to release them and earn from all their hard work.

Code Louisville 2017

This talk was presented in 2017 at Louisville Local Software Development Conference Codepalousa. In this presentation I discussed DevOps, how Continuous Integration and Deployment integrates into that, and how CI/CD can be implemented with AWS services. Running Rules for CI/CD AWS Tool 1. Maintain a code repository Commit 2. Automate the build * 3. Keep the build fast Build 4. Make the build self-testing Deploy 5. Commit early, commit often Commit 6.

Masters Presentation

On May 9th 2015 I received my Master of Science in Computer Science from the University of Louisville. Here is my final project presentation is here. Previous Next     Page: /