Putting an Invisible Shield on Kubernetes Secretskubectl already in production; TEE-based secure kubectl completed PoC • API server and the rest changes for the TEE-based - PoC stage • Where we go? • To keep the production practice • To explore more intersections between Cloud-Native and Confidential Computing • To submit KEPs to upstream for related changes Special Thanks We’d like to thank the contributors to this work: Yinyong Zheng, Wei Zhang, Yong0 码力 | 33 页 | 20.81 MB | 1 年前3- A Day in the Life of a Data Scientist Conquer Machine Learning Lifecycle on Kuberneteskubernetes and all that stuff • Pachyderm can version datasets and trigger new trainings when changes occur • Distributed File Systems • NFS • HDFS • … Classic DevOps solutions: • Containers • CI/CD0 码力 | 21 页 | 68.69 MB | 1 年前3
- 用户界面State of the UI_ Leveraging Kubernetes Dashboard and Shaping its Futurekubectl 功能与kubectl保持一致 3. Multi-cluster management 多集群管理 4. Improved security 提高安全性 Top requested changes 1. Third-party plugins or integrations 集成第三方插件 Which third-party plugins or integrations would0 码力 | 41 页 | 5.09 MB | 1 年前3
- 运维上海2017-Kubernetes 在大规模场景下的service性能优化实战 - 杜军app=MyApp Replicas: 2 Service <10.0.0.11>:<9376> Label: app=MyApp Endpoints: track backend pod changes <172.17.10.1>:<80> <172.17.10.2>:<80> ... Cluster DNS record: pod1.clusterdomain pod2.clusterdomain0 码力 | 38 页 | 3.39 MB | 1 年前3
- VMware SIG Intro to the vSphere Cloud Providerusers looking to try out Kubernetes or develop with it day-to-day. 7 Out of tree components, what changes for me? In-tree vSphere Cloud Provider vSphere CSI Out-of-tree vSphere Cloud Provider0 码力 | 12 页 | 425.38 KB | 1 年前3
- 多雲一體就是現在:
GOOGLE CLOUD 的
KUBERNETES
混合雲戰略Prometheus + Grafana + EFK ● Ingest metrics and logs into Stackdriver without any instrumentation changes ● Aggregate logs from many clusters -- whether GKE or GKE On-Prem Logging and Monitoring Cloud0 码力 | 32 页 | 2.77 MB | 1 年前3
- Go Programming Pattern in Kubernetes Philosophyc Controller • The heart of Kubernetes orchestrator • drives the cluster state based on the changes to the API objects for { desired := getDesiredState() current := getCurrentState() makeChanges(desired0 码力 | 29 页 | 2.12 MB | 1 年前3
- 秘钥管理秘钥Turtles all the way down - Securely managing Kubernetes Secretskeys used for encryption of cardholder data, including the following: 3.6.4 Cryptographic key changes for keys that have reached the end of their cryptoperiod (for example, after a defined period of0 码力 | 52 页 | 2.84 MB | 1 年前3
- QCon北京2018/QCon北京2018-《Kubernetes-+面向未来的开发和部署》-Michael+ChenJSON • Provides core control loops for platform • Watches shared state through apiserver • Makes changes from current to desired • Policy-based workload scheduler • Topology aware • Assists with availability0 码力 | 42 页 | 10.97 MB | 1 年前3
- Operator Pattern 用 Go 扩展 Kubernetes 的最佳实践used for garbage collection of the controlled object and for // reconciling the owner object on changes to controlled (with a Watch + EnqueueRequestForOwner). // Since only one OwnerReference can be a0 码力 | 21 页 | 3.06 MB | 9 月前3
共 12 条
- 1
- 2
相关搜索词
PuttinganInvisibleShieldonKubernetesSecretsKailunQinAntGroupKubeConChinaMLLifecycle用户界面用户界面StateoftheUILeveragingDashboardandShapingitsFuture运维上海2017大规规模大规模场景service性能优化实战杜军VMwareSIGIntrotovSphereCloudProvider多雲一體就是現在GOOGLECLOUDKUBERNETES混合雲戰略gopatternk8s秘钥管理TurtlesallwaydownSecurelymanagingQCon北京2018面向未来面向未来开发部署MichaelChenOperatorPatternGo扩展最佳实践