Loading…
6-7 August
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon India 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in India Standard Time (UTC+5:30)To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis. 
Company: Intermediate clear filter
Wednesday, August 6
 

11:30am IST

Back To the Basics - Service Mesh Fundamentals - Kannan Jayaprakasam, Google
Wednesday August 6, 2025 11:30am - 12:00pm IST
Hall 2
In containerized environments like Kubernetes, service mesh has emerged as a key architectural component to ensure reliable, secure, and observable communication between services. Despite the growing popularity of service mesh, many developers, operators, and architects find the concept of a service mesh intimidating due to its perceived complexity and wide array of features.

In this talk speaker from the gRPC team in Google will demystify service mesh technology by returning to the basics, providing clear understanding of what a service mesh is, the problems it solves, and how it fits into a cloud-native ecosystem. Additionally, this talk will explore the differences between proxy-based and proxyless service mesh architectures, discussing their advantages, disadvantages, and use cases.
Speakers
avatar for Kannan Jayaprakasam

Kannan Jayaprakasam

Software Engineer, Google
Kannan works as a software engineer at Google in the gRPC team.
Wednesday August 6, 2025 11:30am - 12:00pm IST
Hall 2
  Cloud Native Novice

11:30am IST

Supercharge Backstage: Self-Service GitOps Staging Environments With VCluster and FluxCD - Farhaan Shamsee & Rakesh Reddy, Siemens Technology
Wednesday August 6, 2025 11:30am - 12:00pm IST
Hall 1
What if developers could create fully isolated, production-like environments—directly from Backstage—with just a click?

This talk showcases Backstage as a powerful self-service platform to spin up vClusters representing Dev, Test, and Prod environments. Each virtual cluster is fully GitOps-managed with FluxCD, automatically pulling from specific Git branches to mirror real deployment stages.

The environments can be provisioned on-demand—whether on a developer’s local laptop (using WSL), a centralized server, or a remote EKS cluster—offering flexibility and production-like confidence at every stage.

We’ll deep-dive into building this “staging system” where code is tested safely before ever reaching customers, while giving developers the speed and autonomy they crave—all powered by Backstage.

By the end of the session, you’ll learn how to build a practical, cloud-native staging system to test, validate, and promote code safely—before your customers ever see it.
Speakers
avatar for Farhaan Shamsee

Farhaan Shamsee

Senior DevOps Engineer, Siemens Technology Services Private Limited
Farhaan is a Senior DevOps Engineer at Siemens passionate about platform engineering and open source. With extensive experience in Kubernetes, GitOps, and cloud-native technologies, he focuses on building scalable self-service platforms. His work integrates tools like Backstage, vCluster... Read More →
avatar for Rakesh Reddy

Rakesh Reddy

Sr.DevOps Engineer, siemens
Rakesh Reddy G is a Senior DevOps Engineer at Siemens with 7+ years of experience in Kubernetes, AWS, and CI/CD automation. He specializes in GitOps, security, and self-service platforms using tools like Backstage and FluxCD. Passionate about open-source and DevOps best practices... Read More →
Wednesday August 6, 2025 11:30am - 12:00pm IST
Hall 1
  Platform Engineering

12:10pm IST

To Succeed in Platform Engineering, Build Infrastructure Knowledge Graphs - Safeer C M, MoEngage
Wednesday August 6, 2025 12:10pm - 12:40pm IST
Hall 1
Platform engineering continues to evolve as a critical discipline for modern software development. However, infrastructure complexity is slowing down its momentum. The software infrastructure is a complex web of interrelated entities that spans much beyond a simple software catalog and cloud resources. Such infrastructure management is often driven by a team’s understanding of the implicit relationship between these entities. This is not scalable and often leads to operational challenges and loss of developer productivity. Knowledge graphs can build relationships between entities from diverse infrastructure sources and make explicit what was previously implicit knowledge. It elevates the developer productivity and its neglected counterpart - operational excellence. This talk will discuss the importance of knowledge graphs and the strategies and mental models that will help in building knowledge graphs around the software infrastructure.
Speakers
avatar for Safeer CM

Safeer CM

Principal Engineer, MoEngage
Safeer has worked in site reliability, DevOps, and platform engineering for the past 19 years. Safeer is the author of the book Architecting Cloud-Native Serverless Solutions. He is an ambassador for the Continuous Delivery Foundation. Currently, he is working as a Principal Engineer... Read More →
Wednesday August 6, 2025 12:10pm - 12:40pm IST
Hall 1
  Platform Engineering

12:10pm IST

Sovereign Kubernetes at Adobe: Navigating Trust, Security & Compliance Across Jurisdictions - Amandeep Singh, Adobe
Wednesday August 6, 2025 12:10pm - 12:40pm IST
Hall 6
Sovereign deployments operate in geographically or network-isolated environments where data at rest and in transit is highly sensitive and tightly controlled due to jurisdictional regulations. These deployments come with strict security and compliance requirements.

At Adobe, we manage multiple sovereign Kubernetes deployments across different regulatory frameworks, each with unique constraints and challenges. We have to keep operational overhead minimal while ensuring compliance and security at scale.

This talk will cover key compliance and security requirements, such as vulnerability reporting, runtime container scanning, and policy enforcement. We will dive into the challenges we faced and the solutions we developed, including:
- Building a secure and efficient image distribution system
- Automating image vulnerability scanning
- Using Falco for real-time threat detection and response
- Enforcing compliance with Kyverno and Falco
Speakers
avatar for Amandeep Singh

Amandeep Singh

Computer Scientist, Adobe
Currently a Computer Scientist at Adobe, building Adobe's AEM platform. With extensive experience across various cloud technologies, I’ve been working in the Kubernetes space for the past three years. Outside of work, I’m an avid reader and a passionate foodie.
Wednesday August 6, 2025 12:10pm - 12:40pm IST
Hall 6
  Security

2:10pm IST

Scaling AI Like a Pro-PepsiCo’s LLM Deployment Strategy on Kubernetes for AI-Driven Business Impact - Praseed Naduvath & Dhanashree Shetty, PepsiCo
Wednesday August 6, 2025 2:10pm - 2:40pm IST
Hall 3
As PepsiCo continues to push the boundaries of AI-driven innovation, multiple 70-billion-parameter Llama model has been deployed within our Kubernetes-based AI platform, showcasing our ability to operationalize large-scale LLMs efficiently while optimizing performance, cost, and scalability.

This session will explore our journey of deploying and managing a high-performance LLM on Kubernetes. We’ll share insights on architectural decisions, GPU provisioning, and fine-tuning techniques for efficient inferencing. Attendees will learn how we tackled memory optimization, high availability, cost-performance balancing, and Responsible AI practices.

We’ll also discuss how our infrastructure, orchestration, and resource management evolved to meet large-scale inferencing demands, ensuring AI-driven innovation remains scalable, responsible, and efficient at PepsiCo.
Speakers
avatar for Dhanashree Shetty

Dhanashree Shetty

Architect, PepsiCo
Dhanashree Shetty is a cloud engineer with over 14 years of experience in IT, specializing in cloud infrastructure. As a tech enthusiast, she enjoys exploring emerging technologies such as cloud automation and orchestration, as well as containerization, Kubernetes platforms. In her... Read More →
avatar for Praseed Naduvath

Praseed Naduvath

Platform Architect, PepsiCo
Praseed Naduvath is a techno-manager with over 18 years in IT, specializing in cloud infrastructure, container orchestration, and service mesh technologies. A Certified Kubernetes Administrator and Security Specialist, he excels in managing and securing complex Kubernetes environments... Read More →
Wednesday August 6, 2025 2:10pm - 2:40pm IST
Hall 3
  AI + ML

2:10pm IST

Who Let the Pods Out? Extending Kubernetes with Custom Controllers and CRDs - Ria Bhatia, Godman Sachs
Wednesday August 6, 2025 2:10pm - 2:40pm IST
Hall 2
Kubernetes is powerful, but its true strength lies in extensibility. Many developers struggle to adapt it to their needs, often resorting to workarounds instead of leveraging built-in extension mechanisms. What if Kubernetes worked for you, not the other way around?

This beginner-friendly session will introduce you to Custom Resource Definitions (CRDs) and custom controllers, guiding you through their design, implementation, and deployment. You'll learn how to create Kubernetes-native abstractions that automate workflows, simplify operations, and enhance the developer experience. We'll cover best practices, automation strategies, and performance optimizations to ensure scalable and maintainable extensions that integrate seamlessly with Kubernetes.

Get ready to move beyond workarounds and let your pods thrive with clean, scalable, and native Kubernetes extensions!
Speakers
avatar for Ria Bhatia

Ria Bhatia

Software Engineer, Goldman Sachs
Ria Bhatia is a passionate software engineer specializing in databases, scalability, and deployment strategies. Committed to gender diversity in tech, she mentors aspiring engineers and actively shares her learnings with the community. An enthusiastic speaker, Ria has presented at... Read More →
Wednesday August 6, 2025 2:10pm - 2:40pm IST
Hall 2
  Cloud Native Novice

2:10pm IST

Keep Calm and Carry on Cluster Updates - Thanks To Kyverno Chainsaw - Vijay Dharap, Kubermatic
Wednesday August 6, 2025 2:10pm - 2:40pm IST
Hall 6
Do you often find yourself upgrading various resources in k8s cluster? may be some 3rd party helm chart?

Do you get a feeling of shooting in the dark? That you do not exactly know what all changes are being brought in due to new helm chart version?

Have you faced broken deployments because 3rd paty helmchart maintainer changed the values.yaml layout and you did not change the overrides.yaml to adjust to changed structure?

Yes? Yes? Yes? Well... then you have come to right place find solution to such problems!

I will introduce you to Kyverno Chainsaw, which aims to help us reliably verify the deployments!

With Chainsaw, you define test steps (which can changes / delete existing resources / add new resources) and write assertion to verify that all changes have been reflected in the cluster.

During the session - lets explore Chainsaw via few demos and integrate it in CD pipelines and use reports.

Bonus: I will share small generator I wrote to create Chainsaw testcases quickly.
Speakers
avatar for Vijay Dharap

Vijay Dharap

Tech Lead, Kubermatic
Vijay is a Certified Kubernetes Administrator and AWS certified solution architect. Vijay has designed and managed complex and hybrid deployments of multiple clusters for large chemical manufacturers in the world. Vijay has spoken at various conferences in past. Vijay is happily... Read More →
Wednesday August 6, 2025 2:10pm - 2:40pm IST
Hall 6
  Operations + Performance

2:50pm IST

Kubernetes at the Edge – Come See It in Action! - Xavier Avrillier & Antonia von den Driesch, Giant Swarm
Wednesday August 6, 2025 2:50pm - 3:20pm IST
Hall 2
Edge computing is still a fairly new area in the cloud native tech industry and is growing fast. As computing moves to the edge, what does Kubernetes look like beyond the cloud, and why does it matter?

This session features a live demo with a Raspberry Pi, camera, and real-time AI detection. Watch as our edge device identifies raised hands, sends data to a Kubernetes cluster via KubeEdge, and visualizes results instantly.

We'll explore:
- Edge Kubernetes challenges: connectivity, resources, security
- KubeEdge's approach to decentralized workloads
- Real-world applications across industries

Join us to see how AI, Kubernetes, and edge computing converge to enable powerful new possibilities.
Speakers
avatar for Xavier Avrillier

Xavier Avrillier

Solutions Architect, Giant Swarm
Xavier is a Solutions Architect at Giant Swarm, he is currently working on the managed Kubernetes product in hybrid environments and smart factories. His main focus is around cluster lifecycle and customer implementations.
avatar for Antonia von den Driesch

Antonia von den Driesch

Platform Engineer, Giant Swarm
Antonia has been a platform engineer at Giant Swarm for 5 years and is currently working on development of Giant Swarms Industrial IoT platform which brings their managed Kubernetes product to Smart Factory customers.
Wednesday August 6, 2025 2:50pm - 3:20pm IST
Hall 2
  Cloud Native Experience

2:50pm IST

Mastering Kubernetes Control Plane Performance Optimization With Observability - Liu Jiaxu, Alibaba Cloud
Wednesday August 6, 2025 2:50pm - 3:20pm IST
Hall 6
Are you experiencing performance issues with your Kubernetes control plane? Symptoms such as rising CPU/memory usage, 429 TooManyRequests errors, and delayed responses from the APIServer or ETCD can significantly degrade cluster responsiveness, especially in large environments, ultimately threatening infrastructure reliability.
In this talk, based on our experience managing tens of thousands of production clusters, we will explore how to leverage observability to identify performance bottlenecks and root causes. We'll compare logging, monitoring, and tracing within the Kubernetes control plane, using real-world example - analyzing LIST request.
We will introduce best practices for observability, discuss common performance pitfalls such as APF flow control issues, misconfigured APIServer webhooks, and the heavy burden of excessive LIST requests on control plane, etc. Additionally, we will share optimization solutions for these scenarios, empowering you to enhance cluster performance.
Speakers
avatar for Liu Jiaxu

Liu Jiaxu

Senior Software Engineer, Alibaba Cloud
Jiaxu Liu is a Senior Engineer on the Container Service Team at Alibaba Cloud. He specializes in observability enhancement and large-scale cluster management and optimization for Alibaba Cloud's container service offerings. Before joining Alibaba Cloud, he worked at Nokia as a Senior... Read More →
Wednesday August 6, 2025 2:50pm - 3:20pm IST
Hall 6
  Operations + Performance

2:50pm IST

IDP as a Product: Where Developer Happiness Meets Platform's Excellence - Ninad Desai & Ruturaj Kadikar, InfraCloud Technologies
Wednesday August 6, 2025 2:50pm - 3:20pm IST
Hall 1
As a developer, are you overwhelmed by the growing number of tools just to ship code? Struggling with visibility into cost, performance, and reliability? Torn between enabling developer autonomy and enforcing governance? The answer to all these challenges lies in building an Internal Developer Platform (IDP) like a real product. With clear ownership, iteration, and a focus on your internal users—you solve for both scale and usability. An IDP unifies onboarding, CI/CD, infrastructure provisioning, observability, cost visibility, and more.
You’ll learn how an IDP can streamline the entire developer journey while embedding security and operational best practices by design. We’ll discuss prioritising Developer Experience (DevEx), aligning platform capabilities with developer needs, and avoiding becoming a bottleneck.
Whether you’re a platform engineer or an engineering leader, you’ll walk away with actionable insights to make your platform a true enabler at scale.
Speakers
avatar for Ninad Desai

Ninad Desai

Staff Site Reliability Engineer, Infracloud pvt ltd
Engineer at heart with 12+ years of experience building secure, scalable cloud-native platforms and solutions. Passionate about simplifying and sharing learnings in DevOps, SRE, and platform engineering through real-world stories and community engagement.
avatar for Ruturaj Kadikar

Ruturaj Kadikar

Senior SRE, InfraCloud Technologies
Tech enthusiast navigating through Cloud-Native space! DevOps - SRE - Observability - Chaos - Production Grade Kubernetes - Disaster Recovery
Wednesday August 6, 2025 2:50pm - 3:20pm IST
Hall 1
  Platform Engineering

3:50pm IST

Beyond Productivity: Scaling Cloud Dev Environments for Faster Feedback & Sustainable Engineering - Siddhant Khare, Gitpod & Nancy Chauhan, Independent
Wednesday August 6, 2025 3:50pm - 4:20pm IST
Hall 1
Local dev setups worked fine when teams were small. But when you’re dealing with hundreds or thousands of developers, things start to break - slow onboarding, dependency hell, inconsistent environments, and wasted compute cycles.

Cloud Developer Environments (CDEs) promise instant, reproducible workspaces, but shifting from local machines to cloud-first workflows is easier said than done. Latency, security, adoption hurdles, and cost can turn a promising initiative into an operational headache.

This talk will go deep into:

* Why local dev is unsustainable—from wasted CPU cycles to lost engineering hours.
* How cloud environments reduce friction—ephemeral, pre-configured workspaces that just work.
* Optimizing for speed—pre-warmed environments, AI-assisted debugging, and workload-aware compute allocation.
* Measuring impact—tracking developer velocity, infra costs, and sustainability improvements.
* Lessons from real-world rollouts—what works, what breaks, and how to get buy-in.
Speakers
avatar for Nancy Chauhan

Nancy Chauhan

CNCF Ambassador, Engineer
I am Nancy Chauhan, a software engineer passionate about solving complex problems and enhancing software reliability. As a CNCF Ambassador, I engage with a global cloud-native community, contributing to open-source projects and fostering collaboration. I also founded the Women in... Read More →
avatar for Siddhant Khare

Siddhant Khare

Software Engineer, Gitpod
Siddhant Khare is a Software Engineer at Gitpod, where he works on developer productivity, cloud-native architectures, and AI-driven automation. With deep expertise in Go, Rust, and distributed systems, he builds scalable solutions that improve developer workflows. His work spans... Read More →
Wednesday August 6, 2025 3:50pm - 4:20pm IST
Hall 1
  Platform Engineering

4:30pm IST

⚡ Lightning Talk: Confidential VMs in Kubevirt: Securing VMs With KubeVirt Trusted Execution Environments - Basavaraju G, IBM
Wednesday August 6, 2025 4:30pm - 4:35pm IST
Hall 3
Multi cloud deployments and shared infrastructure enhance data privacy and security issues, with containerized workloads becoming mainstream in Kubernetes, there is a need to host containers securely in addition to virtual machines (VMs) to safeguard hardware-level workloads.
KubeVirt is a cloud native virtualization platform that comes with Confidential Virtual Machines for the most sensitive use cases. They take advantage of Trusted Execution Environments such as AMD SEV, Intel TDX, and IBM Secure Execution to provide data-in-motion encryption for their workloads and defend against subverted host admins as well as against system attacks.
In this session, we will cover KubeVirt methodology for Confidential VMs, including the design of the architecture, challenges of implementation, and deployments. We will examine how the VMs protect sensitive workloads using memory encryption, workload isolation while being placed within Kubernetes orchestration and automation.
Speakers
avatar for Basavaraju G

Basavaraju G

Senior Software Engineer, IBM
Basava Raju.G is a seasoned Senior Software Engineer at IBM, specializing in IBM Kubernetes Service and Openshift Container Platform. With over all 13 years of experience in cloud-native and Platform as a Service (PaaS) Domain. He earned his Master’s in Computer Science At SJCE... Read More →
Wednesday August 6, 2025 4:30pm - 4:35pm IST
Hall 3
  ⚡ Lightning Talks, Security

4:30pm IST

Unlocking the Power of Kuma Service Mesh: Enhancing Reliability and Developer Productivity - Deepak Verma & Arpit Mishra, Zomato
Wednesday August 6, 2025 4:30pm - 5:00pm IST
Hall 2
This session delves into Zomato's journey of adopting Kuma Service Mesh to manage over 500 microservices with 10,000 dataplanes. The session begins by addressing common challenges in service communication, such as observability gaps, insecure traffic, and inconsistent configurations across environments, and explore how Kuma Service Mesh resolves these issues.

The presentation highlights how Kuma standardises configurations, minimises debugging efforts, and improves application performance, thereby reducing developer overhead. A key focus is on leveraging Kuma to enhance developer workflows through local-preview environments, allowing dynamic traffic routing to local services based on headers. This facilitates rapid iteration and debugging.

Additionally, we will discuss our roadmap for utilising Kuma's zone-aware routing to reduce cross-zone data transfer, lowering costs and enhancing efficiency.
Speakers
avatar for Arpit Mishra

Arpit Mishra

Software Engineer, Zomato
Arpit is a Linux and Networking enthusiast, currently working as a Software Engineer at Zomato with extensive experience in Site Reliability, Developer Experience and System Engineering. He previously worked in Glance and has a total of three years of experience in software industry... Read More →
avatar for Deepak Verma

Deepak Verma

Site Reliability Engineer, Zomato
A technology enthusiast working at Zomato with 7+ years of experience where his focus is developer experience, system administration and automation. As a SRE, Deepak has been involved in applying site reliability principles to facilitate business growth through the seamless and reliable... Read More →
Wednesday August 6, 2025 4:30pm - 5:00pm IST
Hall 2
  Connectivity

4:30pm IST

Building a Cloud Native IaC Platform for an Enterprise by Leveraging the Kubernetes Ecosystem - Florian Hopfensperger, Allianz Technology & Yury Tsarev, Upbound
Wednesday August 6, 2025 4:30pm - 5:00pm IST
Hall 1
Infrastructure teams have long been a staple of large enterprises, responsible for creating and managing cloud and on-premises resources. However, each team often operates with its own user interface, making it difficult for developers to access the infrastructure they need efficiently. How can we enhance the developer experience while enabling infrastructure teams to offer products more effectively?

This talk will showcase how Allianz Technology leverages the Kubernetes ecosystem and open-source software to build an infrastructure-as-code platform powered by over 1,000 Kubernetes control planes. This approach simplifies the developer experience through customized APIs while providing infrastructure engineers with a scalable framework for delivering infrastructure products and gaining insights for continuous improvement.
Speakers
avatar for Yury Tsarev

Yury Tsarev

Principal Solutions Architect, Upbound
Yury is an experienced software engineer who strongly focuses on open-source, software quality and distributed systems. As the creator of k8gb (https://www.k8gb.io) and active contributor to the Crossplane ecosystem, he frequently speaks at conferences covering topics such as Control... Read More →
avatar for Florian Hopfensperger

Florian Hopfensperger

Software Engineering Lead, Allianz Technology
Florian is a Software Engineering Lead at Allianz Technology working on Kubernetes Control Planes. He is an enthusiast for Cloud Computing, GitOps and Open Source Software and actively contributes to it.
Wednesday August 6, 2025 4:30pm - 5:00pm IST
Hall 1
  Platform Engineering

4:37pm IST

⚡ Lightning Talk: Enhancing Runtime Protection Leveraging Compliance Frameworks - Ramakant Sharma, AccuKnox Inc.
Wednesday August 6, 2025 4:37pm - 4:42pm IST
Hall 3
Runtime security for cloud workloads involves continuously monitoring workload behavior and preventing deviations from normal activity.

The ideal approach is to enforce application-specific zero-trust policies that establish a baseline and prevent unexpected behavior. While, implementing zero trust requires ongoing tuning and is more of a Day 2 operation. In addition, Hardening policies can be established by translating compliance frameworks' prescriptive guidance into enforceable runtime security policies. By adopting a layered runtime security approach, the attack surface can be significantly reduced.

In this talk, we’ll demonstrate how to enhance runtime security using policies influenced by compliance frameworks like CIS and MITRE, etc. We’ll showcase real-world examples and enforce these policies using KubeArmor.
Speakers
avatar for Ramakant Sharma

Ramakant Sharma

Software Engineer, AccuKnox Inc. | Maintainer@KubeArmor, AccuKnox Inc.
Working as a software engineer at AccuKnox Inc., actively contributing to open source and maintainer KubeArmor, CNCF Sandbox project.
Wednesday August 6, 2025 4:37pm - 4:42pm IST
Hall 3
  ⚡ Lightning Talks, Security

4:58pm IST

⚡ Lightning Talk: Optimizing SNAT Port and IP Address Management in Kubernetes - Nitin Nizhawan & Prachi Sahu, Microsoft
Wednesday August 6, 2025 4:58pm - 5:00pm IST
Hall 3
Kubernetes workloads rely on public IP addresses for egress traffic via SNAT connections. By default, Kubernetes nodes provide a limited number of SNAT ports (1024 per node), often insufficient for workloads requiring extensive outbound connectivity. Allocating additional IP addresses statically for SNAT purposes in large clusters can lead to significant inefficiencies and wastage of limited public IPv4 resources. This session introduces an innovative SNAT port and IP address management solution developed for AKS multi-cluster, multi-tenant platforms, demonstrating how optimized IP allocation significantly reduces IP address wastage and associated costs.
Speakers
avatar for Nitin Nizhawan

Nitin Nizhawan

Principal Software Engineer, Microsoft
With over 16 years of experience in software engineering, I have a robust background in developing enterprise applications using Java, C#, and Golang. I have successfully developed solutions for both on-premises and cloud environments. For the past three years, I have been dedicated... Read More →
avatar for Prachi Sahu

Prachi Sahu

Software Engineer, Microsoft
I'm a Software Developer at Microsoft with hands-on experience working on Kubernetes and Docker at an intermediate level. My work focuses on the Linux platform and distributed networking within Azure Kubernetes Service (AKS). I work closely on network debugging and observability using... Read More →
Wednesday August 6, 2025 4:58pm - 5:00pm IST
Hall 3
  ⚡ Lightning Talks, Connectivity

5:02pm IST

⚡ Lightning Talk: Solving Multi-Region K8s Challenges: Improving Pod Startup Time & Reducing NAT Costs With Zot - Tamil Vanan Karuppannan, Arcesium
Wednesday August 6, 2025 5:02pm - 5:07pm IST
Hall 3
Managing a multi-region Kubernetes deployment comes with significant challenges, especially around container image distribution. In our setup, we had a central container registry in a public cloud, but as the number of clusters grew across regions, our NAT transfer costs skyrocketed— a staggering 10x increase

A major contributor to this cost was cross-region image pulls, which also impacted pod startup times. We explored multiple solutions and found Zot (a CNCF sandbox project) to be an ideal fit due to its lightweight architecture and pull-through cache capabilities

By configuring Zot as a regional caching layer, we:

Reduced NAT data transfer costs significantly by keeping frequently pulled images closer to the clusters.
Improved pod startup times by eliminating long fetch delays from a central registry.
Simplified registry management without adding unnecessary complexity.
Speakers
avatar for tamilhce

tamilhce

Principal Engineer, Arcesium
Tamil vanan is a cloud native Tech lead at Arcesium and a former Kubernetes SME at VMware. He is passionate about finding solutions to problems in the cloud native environment. He works with cloud-native technologies like Kubernetes, multi-cloud and networking. He is a passionate... Read More →
Wednesday August 6, 2025 5:02pm - 5:07pm IST
Hall 3
  ⚡ Lightning Talks, Operations + Performance

5:10pm IST

Rewriting the Rules: Why Kubernetes Is Moving To NFTables - Daman Arora & Yash Kumar Singh, Broadcom
Wednesday August 6, 2025 5:10pm - 5:40pm IST
Hall 2
This session will explore why NFTables offer clear advantages over IPTables and IPVS, especially in large-scale production environments from both maintainers and end users perspective. We’ll share a user story who faced persistent issues with IPTables, saw some success with IPVS, and finally solved their scalability problems by migrating to NFTables. From a maintainers perspective we will showcase how and why NFTable outperforms the other proxy modes. We’ll provide performance insights and discuss kernel compatibility.
We will also discuss NFTables compatibility with various CNI providers and plugins, and how NFTables support is already integrated in many environments, providing a smoother transition. Attending this session you will get an indepth understanding of behavioral changes when migrating from IPTables and IPVS to NFTables, including key metrics to track.
Speakers
avatar for Yash Singh

Yash Singh

Software Engineer, Broadcom
Yash Singh is a Software Engineer at VMware. He works on Kubernetes core components releases, building and validating the Kubernetes FIPS for Tanzu. He plays an important role in the development of Tanzu Extend Support of Kubernetes and its components. Yash contributes to a host of... Read More →
avatar for Daman Arora

Daman Arora

Senior Software Engineer, VMware by Broadcom
Trying to maintain kube-proxy.
Wednesday August 6, 2025 5:10pm - 5:40pm IST
Hall 2
  Connectivity
 
Thursday, August 7
 

11:30am IST

The Fast and the Fluent: AI-Powered Speech Translation at the Edge With K0s - Bharath Nallapeta, Mirantis Inc.
Thursday August 7, 2025 11:30am - 12:00pm IST
Hall 1
Imagine walking up to a self-service kiosk at an airport, hospital, or hotel, speaking in your native language, and instantly hearing a real-time translation—without cloud delays or privacy risks. Traditional speech translation relies on heavy cloud compute, but what if it could run directly on low-power edge devices like Raspberry Pi or even phones?
This session demonstrates how Kubernetes (k0s) enables AI-powered multilingual speech translation at the edge, eliminating latency, cloud dependency, and high operational costs. With a single k0s control plane, running outside of edge, managing hundreds of kiosks, AI models are deployed, updated, and scaled seamlessly. We’ll showcase a live demo of real-time speech translation running on edge devices, proving how edge-native AI can revolutionize automated customer interactions.
AI-powered customer service—automated, private, and built for scale.
Speakers
avatar for Bharath N R

Bharath N R

Senior Software Engineer | Open Source Contributor, Mirantis Inc.
Bharath Nallapeta is a seasoned Kubernetes and cloud-native technology expert with a deep passion for AI and its integration with modern infrastructure. With extensive experience in designing and optimizing Kubernetes-based AI/ML deployments, he has contributed to open-source projects... Read More →
Thursday August 7, 2025 11:30am - 12:00pm IST
Hall 1
  AI + ML

11:30am IST

Smart Capacity-Aware Volume Provisioning for LVM Local Storage Across Multi-Cluster Kubernetes Fleet - Arathi Balasubramanian & Amarnath Ch, Microsoft
Thursday August 7, 2025 11:30am - 12:00pm IST
Hall 2
In the world of containerization, workloads require reliable, performant storage for logs, data persistence, debugging, and real-time processing. Today, Kubernetes and open-source solutions provide a diverse range of storage provisioning options to choose from for single-cluster environments.

Now, envision scaling this to a broader fleet model, where multiple clusters are in play—worker clusters managed by a single control cluster, supporting a variety of workloads with replica counts in the range of thousands. How can we ensure seamless, dynamic volume provisioning through intelligent, capacity-aware decisions, while optimizing disk utilization across clusters, minimizing manual intervention, and maintaining high performance, reliability, and security as workloads and customer demands grow?

In this session, we will tackle these challenges head-on, exploring the architecture of capacity-aware, dynamic volume provisioning for LVM local storage across a multi-cluster Kubernetes fleet.
Speakers
avatar for amarnath ch

amarnath ch

Principal Software Engineer, Microsoft
Amar is a Principal Software Engineer at Microsoft, specializing in Kubernetes and cloud infrastructure experience in designing scalable, resilient multi-cluster architectures.
avatar for Arathi Balasubramanian

Arathi Balasubramanian

Software Engineer II, Microsoft
Arathi is a skilled software engineer with deep expertise in distributed systems, currently working in the Platform team at Microsoft AI. Arathi specializes in optimizing volume provisioning and Kubernetes-based storage solutions for scalable, high-performance workloads across multi-region... Read More →
Thursday August 7, 2025 11:30am - 12:00pm IST
Hall 2
  Data Processing + Storage

11:30am IST

Handling Node Churn in Karpenter: Efficient Scaling for Large EKS Clusters - Shivani Mehrotra, Expedia Group & Chetan Saini, Antra Info Solution PVT LTD
Thursday August 7, 2025 11:30am - 12:00pm IST
Hall 6
Managing node churn in large Amazon EKS clusters posed challenges due to fluctuating workloads, leading to instability and high costs. In this session, we’ll share how we leveraged Karpenter, an open-source K8s autoscaler, to optimize node provisioning and minimize churn across multiple EKS clusters. We’ll explore strategies like Pod Priority, PDBs, and node pools, improving scheduling efficiency and reducing resource waste thereby reducing cloud costs. Additionally, we’ll discuss reducing do-not-disrupt annotations, tightening affinity rules, aligning Karpenter nodes with EC2 savings plans and using latest features of karpenter like reserved instances to enhance performance and cost savings. One can gain insights into understanding node churning and its impact on costs and stability, optimizing Karpenter to scale nodes efficiently, achieving cost savings through spot instances and refined scaling policies. Join us to learn how to make EKS clusters more efficient and cost-effective!
Speakers
avatar for Shivani Mehrotra

Shivani Mehrotra

Software Development Engineer II, Expedia Group
Shivani, SDE-II at Expedia Group is a platform engineer, specializing in building robust systems. Passionate about innovation, Shivani thrives on challenges, delivering impactful results in her role. Outside of work, Shivani enjoys exploring new technologies and staying at the forefront... Read More →
avatar for Chetan Saini

Chetan Saini

Software Engineer III, Antra Info Solution PVT LTD
Chetan, SDE-II at Expedia Group, is a platform engineer specializing in building scalable and resilient systems. He enjoys solving complex technical challenges and optimizing infrastructure for efficiency and performance. Always eager to explore new technologies, Chetan stays up to... Read More →
Thursday August 7, 2025 11:30am - 12:00pm IST
Hall 6
  Platform Engineering

12:10pm IST

Running Databases Efficiently at Scale - Case Study of Flipkart's Local PV Journey on K8s - Yashpal Choudhary & Akif Ahmed Khan, Flipkart
Thursday August 7, 2025 12:10pm - 12:40pm IST
Hall 2
Running large-scale, performance-sensitive distributed databases on K8s requires balancing between latency, reliability, and cost efficiency. At Flipkart, we tackled this challenge by leveraging K8s Local Persistent Volumes (Local PVs) to optimize both performance and infrastructure costs for our stateful workloads.

With a storage footprint of 4PB of directly attached SSDs, 15PB of directly attached HDDs, comprising 1000 K8s stateful nodes spanning across 3 clusters (2 on-prem & 1 on public cloud infrastructure) LocalPV storage currently powers various internal database platforms (Aerospikes, HBase, TiDB) leveraged by critical business applications at Flipkart.

In this talk, we’ll share practical insights from our journey of scaling database infrastructure with Local PVs. We’ll dive into key challenges and solutions, including dynamic provisioning, workload scheduling, and automating maintenance workflows to ensure operational efficiency at scale.
Speakers
avatar for Akif Ahmed Khan

Akif Ahmed Khan

Software Engineer, Flipkart
Cloud Platform - Kubernetes, Cloud Infrastructure Services, Platform Services
avatar for Yashpal Choudhary

Yashpal Choudhary

Software Engineer, Flipkart
K8s Infrastructure
Thursday August 7, 2025 12:10pm - 12:40pm IST
Hall 2
  Data Processing + Storage

12:10pm IST

Cluster API To Streamline Kubernetes Clusters Lifecycle Management at NVIDIA - Megha Singhal & Gulshan Khatri, NVIDIA
Thursday August 7, 2025 12:10pm - 12:40pm IST
Hall 6
Teams independently provisioning and managing Kubernetes clusters often leads to silos, inefficiencies, and rising operational costs.

This presentation will showcase how NVIDIA successfully consolidated its Kubernetes infrastructure management using ClusterAPI and in-house bare-metal machines. The speakers will demonstrate NVIDIA's implementation that incorporates heterogeneous machine types, including CPU, GPU, TEGRA, and ARM, enabling high-performance workloads to run seamlessly.

By implementing a custom ClusterAPI infrastructure provider, NVIDIA made lifecycle management of Kubernetes clusters more efficient. The team enhanced ClusterAPI by wrapping its templates into Helm charts, standardizing cluster deployments across the organization. Through GitOps workflows, NVIDIA ensured cluster creation and management followed a declarative, version-controlled approach, reducing operational overhead while improving consistency in multi-environment deployments.
Speakers
avatar for Gulshan Khatri IN

Gulshan Khatri IN

SRE Lead, Nvidia
Gulshan is a SRE Lead at Nvidia. He started working with Kubernetes on small-scale clusters, scaling them to thousands of nodes over time. Today, he leads a team that provides Kubernetes as a Service.
avatar for Megha Singhal

Megha Singhal

Senior Site Reliability Engineer, Nvidia
Megha Singhal is a Senior SRE specializing in Kubernetes, automation, and cloud-native reliability, focused on scaling and optimizing resilient systems.
Thursday August 7, 2025 12:10pm - 12:40pm IST
Hall 6
  Platform Engineering

2:10pm IST

Auto-instrumentation for GPU Performance Using eBPF - Marc Tudurí, Grafana Labs
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 3
Modern AI workloads rely on large GPU fleets whose efficient utilisation is crucial due to high costs. However, gathering telemetry from these workloads to optimise performance is challenging because it requires manual instrumentation and adds performance overheads. Further, it does not produce telemetry in a standardised format for commonly used visualisation tools like Prometheus.

This talk explores the potential of leveraging eBPF to capture CUDA calls made to GPUs, including kernel launches and memory allocations. Data from these probes can be used to export Prometheus metrics, facilitating detailed analysis of kernel launch patterns and associated memory usage. This approach offers significant benefits as eBPF imposes minimal overhead and requires no intrusive instrumentation. Our implementation is also open-source and available on GitHub.
Speakers
avatar for Marc Tudurí

Marc Tudurí

Staff Engineer, Grafana Labs
Marc Tuduri is Prometheus contributor, OpenTelemetry member and Software Engineer at Grafana.
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 3
  AI + ML

2:10pm IST

High-Performance Cloud Networking With Calico and Vector Packet Processing - Shatakshi Mishra & Abed Mohammad Kamaluddin, Marvell Technology
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 2
In cloud-native environments, high-performance networking is crucial for scalability and security. Calico, a leading solution for container networking, integrates the VPP dataplane alongside eBPF. VPP provides a scalable solution combining security with high-performance packet processing. In this session, we’ll discuss our work with Calico’s VPP dataplane, optimized by integrating Marvell’s high-performance native plugin, an open-source Data Acceleration Offload solution. This integration offloads cryptographic tasks and inline IPSec encryption to SmartNICs, reducing CPU usage and optimizing secure data transmission. VPP offers fast packet processing, low latency, and high throughput, essential for service meshes, edge computing, and microservices. By leveraging hardware offloading and optimizations, VPP enhances throughput and reduces CPU load, making it ideal for demanding networking tasks. We’ll present benchmark results showcasing improved throughput, latency, and resource use.
Speakers
avatar for Shatakshi Mishra

Shatakshi Mishra

Senior Software Engineer, Marvell Technology
Shatakshi Mishra is a Senior Software Engineer at Marvell Technology with 3+ years of experience. She is skilled in P4 Programming Language, Kubernetes Orchestration, and Cloud Native Technologies, dedicated to providing innovative solutions and leveraging cutting-edge technologi... Read More →
avatar for Abed Mohammad Kamaluddin

Abed Mohammad Kamaluddin

Director, Marvell Technology
Abed Mohammad Kamaluddin serves as the Director of Processor Software, Infrastructure Processors at Marvell Technologies. Leading a software team, he focuses on Packet Accelerators, Transport and Network Security stacks, VPP software, and DPU solutions, with a particular emphasis... Read More →
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 2
  Emerging + Advanced

2:10pm IST

Containerized Time Travel: Replicating Production Performance - Sravanthi Naga & Hari Babu Volli, Pegasystems
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 1
One of the significant challenges faced by Kubernetes-based applications is that performance issues often only manifest in production environments, making them difficult to reproduce in development or staging settings. Imagine if we could "time travel" and recreate real-world production conditions within a controlled environment.

This session explores how a leading global bank (200M customers in 150+ countries) successfully recreated production workloads in controlled settings. By leveraging synthetic data generation, trace playback, and workload simulation, we tackled most performance issues without compromising sensitive data. This approach not only enhanced system reliability and reduced downtime but also improved the bank's ROI by decreasing operational costs by 30% and increasing transaction efficiency by 25%, resulting in significant annual savings.

Join us as we unravel the secrets of "time travel" to replicate production performance and resolve issues effectively.
Speakers
avatar for Hari Babu Volli

Hari Babu Volli

Principal Software Engineer, Pegasystems India
Principal Software Engineer at Pega with over 10.5 years of experience in performance engineering. Proficient in debugging and analyzing performance bottlenecks through live monitoring with Dynatrace and other performance monitoring tools. Skilled in automation using Jenkins, and... Read More →
avatar for Sravanthi Naga

Sravanthi Naga

Senior Engineering Manager, Pegasystems
I am deeply passionate about technology, specializing in performance engineering, DevSecOps, and CloudNative solutions. I strive to create high-performing, resilient applications while fostering a culture of collaboration and learning. As a volunteer at CNCF Hyderabad, I am grateful... Read More →
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 1
  Observability

2:10pm IST

Fine-Grained Authorization: The Missing Piece in Agentic AI Security - Shivay Lamba, Couchbase & Ashish Jha, Okta
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 6
Securing data access for AI agents has become a critical challenge. Traditional access control approaches fall short when AI systems need contextual, document-level permissions at scale and speed.

This talk demonstrates how Fine-Grained Authorization (FGA) provides robust security for Retrieval-Augmented Generation (RAG) and agentic AI systems. Learn how to implement permission models that protect sensitive information while enabling AI to access only authorized data.

The talk explores implementations using OpenFGA and LangChain, showcasing how to build security directly into AI retrieval pipelines.

The presenters will provide real world case studies to discover how enterprises can prevent data leakage, implement multi-tenant isolation, and maintain audit trails while scaling to billions of access decisions.

Thus join us to understand how one can maintain security without sacrificing performance or user experience in Agentic / Gen AI applications.
Speakers
avatar for Ashish Jha

Ashish Jha

Solutions Engineering Specialist - Auth0, Okta
Ashish is a creative technologist currently driving revenue growth and fostering strong customer partnerships at Okta as a Solutions Engineer. With a strong foundation in Conversational AI, & being one of the leading community voices for Amazon Alexa, Ashish brings a unique perspective... Read More →
avatar for Shivay Lamba

Shivay Lamba

Senior Engineer, Couchbase
Shivay Lamba is a software developer specializing in DevOps, Machine Learning and Full Stack Development. He is an Open Source Enthusiast and has been part of various programs like Google Code In and Google Summer of Code as a Mentor and is currently a MLH Fellow. He has also worked... Read More →
Thursday August 7, 2025 2:10pm - 2:40pm IST
Hall 6
  Security

2:50pm IST

How Intuit Streamlined AI/ML Inference Workflows on K8s - Yashash H L & Sreekanth P R, Intuit
Thursday August 7, 2025 2:50pm - 3:20pm IST
Hall 3
Building ML systems that operate on real-time data streams is no easy feat, especially when dealing with complex messaging systems, scaling requirements, and the need for seamless inference. At Intuit, we saw firsthand how these challenges slowed down our ML teams and hindered innovation. That’s why we created Numaflow, a Kubernetes-native open-source platform that empowers teams to easily connect to streaming sources, apply transformations, and run inference at scale—without the typical overhead. In this talk, we’ll share how Numaflow enhances the developer experience, reduces boilerplate, and accelerates deployment of ML workflows. Whether you're a data scientist, ML engineer, or platform builder, this session will offer practical insights into running real-time inference on streaming data, the Intuit way.
Speakers
avatar for Sreekanth P R

Sreekanth P R

Senior Software Engineer, Intuit India
Senior Software Engineer, Intuit India
avatar for Yashash H L

Yashash H L

Senior Software Engineer, Intuit
Yashash is a Software engineer for the Intuit Platform and Analytics team in Bangalore, India. He is one of the lead contributors to open source Numaproj streaming platform. His focus areas include stream processing, analytics and observability.
Thursday August 7, 2025 2:50pm - 3:20pm IST
Hall 3
  AI + ML

2:50pm IST

Observability at Scale With Monitoring as Code: Grafana, Prometheus, & Tempo - Vipin GopalaKrishnapillai, Amway Global
Thursday August 7, 2025 2:50pm - 3:20pm IST
Hall 1
We built an enterprise-wide observability platform using CNCF Open Source tools (Grafana, Prometheus, Tempo) to address APM needs for Ops, AppDev, CloudFinOps, and Management. This self-service, automated platform offers dashboards, alerts, and notifications.

Challenges:

1️⃣ Flexibility – Observing diverse tech stacks (Java, Node, Python, Go) with standard & custom metrics and tracing.
2️⃣ Scaling – Observing workloads across multiple Kubernetes clusters and regions.
3️⃣ Cost – Fully managed solutions like Dynatrace were expensive.

Solution:

Hub & Spoke Model: Centralized tooling observing global workloads.
✅ Metrics: AWS Managed Prometheus for metrics, self-hosted Grafana for dashboards and alerts.
✅ Traces: Self-hosted Grafana Tempo with S3 storage for cost optimization.
✅ MAC: Fully automated infrastructure with AWS CDK and TypeScript for self-service configuration.
Speakers
avatar for Vipin GopalaKrishnapillai

Vipin GopalaKrishnapillai

Full Stack Developer, Amway Global
Vipin is a platform engineer and CNCF contributor with deep expertise in Kubernetes, AWS, and cloud-native ecosystems. Passionate about automation, GitOps, and self-service platform engineering, they build scalable, developer-friendly infrastructure. As a contributor to CNCF projects... Read More →
Thursday August 7, 2025 2:50pm - 3:20pm IST
Hall 1
  Observability

2:50pm IST

Freeze,Investigate,Recover: Unlocking Forensic Container Checkpointing With CRI-U - Suman Chakraborty, Platform9 Systems & Neel Shah, Middleware
Thursday August 7, 2025 2:50pm - 3:20pm IST
Hall 6
Resilience in Kubernetes often relies on pod restarts, but what if we could checkpoint running containers for forensic analysis and seamless recovery? This is where Checkpoint/Restore in Userspace (CRIU) and its integration with CRI-O and Containerd come into play.
When applications fail, are compromised, or need migration, traditional recovery methods lose valuable runtime data, making debugging, forensic investigation, and live migration difficult. CRI-U enables container-level checkpointing, allowing us to snapshot an application’s complete state, including memory, processes, and open files. This unlocks new security forensics, failure recovery, and workload resilience possibilities.
This session will explore how forensic container checkpointing enhances Kubernetes resilience. Attendees will learn how to securely capture, analyse, and restore container states, ensuring minimal downtime and improved security
Speakers
avatar for Suman Chakraborty

Suman Chakraborty

Solutions Architect, Platform9 Systems
Suman is a Solution Architect at Platform9 Systems. He is a consultant and advisor for Kubernetes & Cloud Native Solutions, helping Customers and End users in their application modernisation journey and adoption with DevOps best practices. Suman has been a distinguished speaker and... Read More →
avatar for Neel Shah

Neel Shah

Developer Advocate, Middleware
A DevOps engineer with a great passion for building communities around DevOps.Have mentored 15+ hackathons and open source programs. Currently running various communities like CNCF ,Grafana,Hashicorp and Google Cloud . Have given more than 10+ talks in conferences like HashiTalk India... Read More →
Thursday August 7, 2025 2:50pm - 3:20pm IST
Hall 6
  Security

3:50pm IST

Multi-Layered Guardrails for Cloud Native AI: Enforcing Compliance and Safety at Scale - Vincent Caldeira & Anindita Sinha Banerjee, Red Hat
Thursday August 7, 2025 3:50pm - 4:20pm IST
Hall 3
As AI-powered cloud-native applications evolve, ensuring trust, compliance, and robustness requires dynamic governance mechanisms that operate seamlessly across distributed environments. This session introduces a multi-layered cloud-native framework that enforces AI guardrails at three critical stages: pre-processing (input validation), inference (real-time bias mitigation), and post-inference (output validation).

By leveraging Kubernetes orchestration, Istio service mesh, and knowledge graphs, the framework enables scalable AI governance that integrates multi-agent coordination, real-time intervention, and traceability to ensure AI decisions remain transparent, auditable, and aligned with compliance requirements.

Attendees will gain insights into cloud-native AI governance patterns, practical deployment strategies, and the role of multi-agent oversight in ensuring compliant, production-ready AI workflows within Kubernetes environments.
Speakers
avatar for Vincent Caldeira

Vincent Caldeira

CTO APAC, Red Hat
Vincent Caldeira, CTO of Red Hat in APAC, is responsible for strategic partnerships and technology strategy. Named a top CTO in APAC in 2023, he has 20+ years in IT, excelling in technology transformation in finance. An authority in open source and cloud-native technologies, Vincent... Read More →
avatar for Anindita Sinha Banerjee

Anindita Sinha Banerjee

Data Scientist, Red Hat
With over a decade in Data and Decision Sciences, I design NLP and AI solutions that solve complex business challenges. Currently a Data Scientist at Red Hat and former researcher at Tata Research Development and Design Center, I have presented research at premier conferences and... Read More →
Thursday August 7, 2025 3:50pm - 4:20pm IST
Hall 3
  AI + ML

3:50pm IST

Building a Scalable Observability Platform for Edge Compute Nodes - Naveen Kumar S P & Karthik A, Kongsberg Digital India
Thursday August 7, 2025 3:50pm - 4:20pm IST
Hall 1
Unlock edge observability at scale. Tackle distributed node chaos with robust monitoring, logging, and security. Dive into architectural patterns for aggregating data across challenging networks. Discover how to build resilient, multi-tenant observability for your edge deployments.
Presentation leverages a real-world case study to illustrate the architectural design patterns and best practices for building scalable edge observability, emphasizing the application of core cloud-native principles and technologies
Speakers
avatar for Naveen Kumar S P

Naveen Kumar S P

Solution Architect, Kongsberg Digital
Cloud Native Solution Architect with experience in designing, implementing, and managing complex enterprise IT infrastructures. Proven expertise in DevSecOps, SRE, and cloud technologies and edge computing. Deeply skilled in architecting and deploying scalable, resilient, and secure... Read More →
avatar for Karthik A

Karthik A

Cloud Operations Engineer, Kongsberg Digital India
DevOps professional with expertise in cloud infrastructure, Kubernetes, and automation. specializes in deploying and managing scalable systems, optimizing performance, and implementing best practices in container orchestration and monitoring.
Thursday August 7, 2025 3:50pm - 4:20pm IST
Hall 1
  Observability

3:50pm IST

Choose Your Shield: Evaluating Linux Security Modules for Cloud Native Ecosystems - Ramakant Sharma, AccuKnox Inc.
Thursday August 7, 2025 3:50pm - 4:20pm IST
Hall 6
LSMs provide kernel-level security mechanisms that can be used to address the dynamic challenges of cloud native security. KubeArmor, a runtime security engine and CNCF sandbox project uses LSMs to protect cloud workloads at runtime.

As a maintainer of KubeArmor, I will share my understanding working with LSMs to implement a robust runtime security engine to protect cloud workloads through the lens of KubeArmor.

While all LSMs provide crucial security benefits, their effectiveness varies significantly based on use-case, deployment context and operational requirements.

In this session, I'll be evaluating LSMs including SELinux, Apparmor and BPF-LSM across three critical dimensions:
Performance impact: The overhead each LSMs introduce.
Security capabilities: Each LSM's effectiveness against common attack vectors through live demonstrations.
Operational complexity: Highlighting the learning curve, complexities in implementation and maintenance.
Speakers
avatar for Ramakant Sharma

Ramakant Sharma

Software Engineer, AccuKnox Inc. | Maintainer@KubeArmor, AccuKnox Inc.
Working as a software engineer at AccuKnox Inc., actively contributing to open source and maintainer KubeArmor, CNCF Sandbox project.
Thursday August 7, 2025 3:50pm - 4:20pm IST
Hall 6
  Security

4:30pm IST

Sandboxing Agentic AI With LSM-BPF - Rahul Jadhav, Accuknox
Thursday August 7, 2025 4:30pm - 5:00pm IST
Hall 3
AI Agents are autonomously taking decisions, interacting with each other, and ensuring that the user specified deliverable is achieved. In lot of cases, AI Agents are dynamically generating the code to achieve the functionality. This dynamically generated code needs to be guardrailed i.e., an untrusted model could generate malicious code that will have equal access as that of the model itself. The aim of the talk is to create awareness of security issues sorrounding this use-case, explain the existing tooling/frameworks (such as executing in remotely hosted MicroVMs, use of WASM from NVIDIA). Explain the operational issues using such sandboxing mechanism and then put forth an approach leveraging LSM-BPF that combines the power of Linux Security Modules (LSM) with that of eBPF to achieve better sandboxing. KubeArmor, a CNCF Project, would be used to explain how this can be achieved.
Speakers
avatar for Rahul Jadhav

Rahul Jadhav

Nephio SIG-Security chair, CNCF Ambassador, CTO AccuKnox, Accuknox
An avid coder, a systems engineer working on solutions involving security and performance of cloud-native tech. Contributed towards several open sources including Linux Kernel and worked closely with IETF Standards (such as ROLL, 6lo, LWIG) and Linux Foundation. Taken several projects... Read More →
Thursday August 7, 2025 4:30pm - 5:00pm IST
Hall 3
  AI + ML

4:30pm IST

Security: The Thing That Everyone Loves To Hate - Bhavani Indukuri, Zscaler; Sonali Srivastava, InfraCloud Technologies; Ram Iyengar, The Linux Foundation; Anusha Hegde, Nirmata
Thursday August 7, 2025 4:30pm - 5:00pm IST
Hall 6
Security often takes center stage—only after “something” goes wrong. When DevOps teams return a DevOops response! Teams scramble after breaches, misconfigurations, and compliance failures only to realize too late that preventive measures had been missing all along.

For the millions of marketing dollars poured into Shift-left and DevSecOps, security shouldn’t be an afterthought—it needs to be woven into every stage of the Software Development Lifecycle (SDLC).

In this panel, we will share real-world stories and discuss how to build a more security-conscious team culture. Security issues span a spectrum of causes ranging from communication breakdowns, lack of training, and plain old human error. We'll cut through the marketing noise and explore the tools and techniques that make a difference. No buzzwords. Just actionable advice you can take home and implement. Honest narratives, shot straight from the heart.
Speakers
avatar for Bhavani Indukuri

Bhavani Indukuri

Staff Platform Engineer, Zscaler
Bhavani is a Staff Platform Engineer at Zscaler. She plays a pivotal role in streamlining and optimising DevOps and CloudNative solutions, ensuring seamless and efficient software delivery. Previously, at ServiceNow, she was actively involved in migrating infrastructure to Kubernetes... Read More →
avatar for Ram Iyengar

Ram Iyengar

Evangelist, OpenSSF
Ram Iyengar is an engineer by practice and an educator at heart. He was (cf) pushed into technology evangelism along his journey as a developer and hasn’t looked back since! He enjoys helping engineering teams around the world discover new and creative ways to work. He is a proponent... Read More →
avatar for Sonali Srivastava

Sonali Srivastava

Developer Advocate, InfraCloud Technologies
My expertise in software development allows me to perform POCs and craft engaging demos, tutorials, and videos that showcase the power of cloud-native solutions. Over the past five years, I’ve worn many hats: monitoring Linux servers as a system administrator, developing a cloud... Read More →
avatar for Anusha Hegde

Anusha Hegde

Senior Technical Product Manager, Nirmata
Anusha Hegde is a Senior Technical Product Manager at Nirmata, focusing on cloud security, Kubernetes policy management, policy-as-code automation, and building AI-first products while analyzing AI’s impact on her product and customers. Previously, she was a Tech Lead at VMware... Read More →
Thursday August 7, 2025 4:30pm - 5:00pm IST
Hall 6
  Security
 
  • Filter By Date
    Aug 6 - 7, 2025
  • Filter By Venue
    Hyderabad, Telangana, India
    All
    Hall 1
    Hall 2
    Hall 3
    Hall 4
    Hall 6
    MRG 1-6
    Registration Centre
  • Filter By Type
    AI + ML
    Application Development
    Breaks
    ⚡ Lightning Talks
    All
    Cloud Native Experience
    Connectivity
    Emerging + Advanced
    Operations + Performance
    Platform Engineering
    Security
    Cloud Native Experience
    Cloud Native Novice
    Connectivity
    Data Processing + Storage
    Emerging + Advanced
    Experiences
    Keynote Sessions
    All
    Observability
    Operations + Performance
    Maintainer Track
    All
    API Expression
    Argo
    Contributor Experience
    Contributor Strategy
    Flatcar
    Harbor
    Keycloak
    Kubeflow
    Kyverno
    OpenKruise
    Rook
    Vitess
    etcd
    Observability
    Operations + Performance
    Platform Engineering
    Project Opportunities
    All
    Project Lightning Talk
    Registration
    Security
    Solutions Showcase
  • Content Experience Level
    Advanced
    Any
    Beginner
    Intermediate
  • Timezone
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Wednesday, August 6
Thursday, August 7
Hall 1
Hall 2
Hall 3
Hall 4
Hall 6
MRG 1-6
Registration Centre
  • AI + ML
  • Application Development
  • Breaks
  • ⚡ Lightning Talks
  • Cloud Native Experience
  • Cloud Native Novice
  • Connectivity
  • Data Processing + Storage
  • Emerging + Advanced
  • Experiences
  • Keynote Sessions
  • Maintainer Track
  • Observability
  • Operations + Performance
  • Platform Engineering
  • Project Opportunities
  • Registration
  • Security
  • Solutions Showcase
  • Content Experience Level
  • Advanced
  • Any
  • Beginner
  • Intermediate