This day, 5th of December, started also with a general session and the first speaker was Banjot Chanana, Vice President of Product at Docker. He started with a recap of yesterday’s general session. He also touched on the digital transformation and that OPS needs choice,agility and security to be successful in the new world order.
There was a demo of how Docker Enterprise 2.1 and DTR can help ops with implementing security. I already spend time on this topic during the workshop Building a Secure, Automated Software Supply Chain. You can find more info in this post.
Banjot also invited a customer, Tele2, on stage to tell about their journey with Docker. Gregory Bohncke and Dennis Ekkelenkamp, from Tele2, told about the challenges they had:
- Meet Market Demand
- Improve Service Quality
- Quick Timeframe
And about their rollout plan:
- 6 months
- Started with a convincing POC
- Create a core project Team
- Talk to other customer
- Their partner Amazic
Next on stage came Mano Marks (Director Developer Relations at Docker) and Jenny Burcio (Sr Program Manager at Docker) to talk about the docker community. There are currently 500+ community leaders and 450+ events per year. So that is more then 1 Docker related event per day. The following people were announced as Community leader of the year:
- Cristiano Diedrich, Narco Antonio Martin Junior (Porto Alegre, Brazil)
- Augustine Corea (Mumbai and Mangaluru, India)
- Adina-Valentina Radulescu (Timisoara and Brasov, Romania)
- Mohammed Aboullaite (Casablanca, Morocco)
- Michael Irwin (Blacksburg, United States)
Next to the community leaders there are also the Docker Captains. They also contributed to the community bij teaching people, writing articles and speaking at sessions. Bret Fisher received the Tip of the Captains Hat award.
The next speaker was Kal De, CTO and EVP of Engineering at Docker. He spoke about open source and the roots from Docker and about compose. There are 1 million monthly downloads of compose files and 25k new compose files published on Github per week. Docker announced that they are open sourcing our support for using Docker Compose on Kubernetes: https://dockr.ly/2RFZh6Y
The next announcement were around CNAB. For this, Matt Butcher from Microsoft and Gareth Rushgrove from Docker came on stage. Cloud native shouldn’t mean experts only. Can we make cloud apps as easy to install as desktop apps? To make his possible Microsoft and Docker announced CLOUD NATIVE APPLICATION BUNDLE (CNAB).
CNAB is now available at https://cnab.io for everybody to give it a spin.
After the general session I followed two other sessions. The first session was Docker Container Security by Yuvraj Metha and Steve Richards. In this session they started with slides and after that they addressed all the steps from the slide in a demo. I liked that approach in the presentation. They focussed on four security verticals:
- Secure software supply chain, securing the software pipeline
- trusted images (scanning)
- details of included components and vulnerability ops
- verify the publisher
- integrated with Docker CLI
- run only trusted images
- Webhooks (automation scanning)
- automated promotions
- Runtime security, securing the application in production
- identify vulnerabilities in production, scanning running images (Docker Enterprise 2.1)
- run trusted images
- Infrastructure security, securing infrastructure from the application
- secure access sso with SAML v2.0
- secure access native Kubernetes RBAC
- Compliance meet regulatory standards
- FIPS 140-2 18.03 Linux 18.09 ook Windows (only FIPS validated container platform)
- detailed audit logs (Docker Enterprise 2.1)
My last session of DockerCon 2018 was From Monolith to microservices by Jeff Nickoloff. Jeff shared a lot of information in how to make the transition form a monolith to microservices. He addressed the steps you have to take, the changes in testing, organization, tools, etc. In all a very useful session.
Next to visiting the workshops, the sessions and the expo I also had some good talks with the people of Rancher, StorageOS and Twistlock and of course a lot of networking with other attendees. All in all a very useful event.