The New Stack Makers

By The New Stack

Listen to a podcast, please open Podcast Republic app. Available on Google Play Store.

Category: Podcasting

Open in iTunes

Open RSS feed

Open Website

Rate for this podcast

Subscribers: 68
Reviews: 0


The New Stack Makers is all about the developers, software engineers and operations people who build at-scale architectures that change the way we develop and deploy software. For The New Stack Analysts podcast, please see For The New Stack @ Scale podcast, please see For The New Stack Context podcast, please see Subcribe to TNS on YouTube at:

Episode Date
Snyk's Gareth Rushgrove on How Visibility is Driving Security
This is the classic security problem Gareth Rushgrove, director of product management at Snyk, pointed to during his conversation with The New Stack founder and publisher Alex Williams at KubeCon's Cloud Native Security Day. Snyk is a Software-as-a-Service dedicated to helping organizations flag and fix vulnerabilities in their open source, third-party dependencies.
Dec 06, 2019
Will Kubernetes Drive Cloud-Native Telcos?
The New Stack Editor in Chief Alex Williams sat down at last month’s Kubecon to talk about telco’s cloud-native future with Heather Kirksey, VP of community and ecosystems at OPNFV, and Taylor Carpenter, partner and founder of Vulk Coop design and development cooperative. The different collaborative, telecom-focused Linux Foundation and CNCF working groups that Kirksey and Carpenter are a part of have witnessed — and sometimes driven — telco’s move over the last five years from monolithic hardware appliances toward what’s now known as the cloud.
Dec 05, 2019
From IT Admin to Kubernetes Admin
Deploying and managing Kubernetes infrastructure may be the most challenging aspect of developing and delivering cloud-native applications. We will discuss leveraging a purpose-built appliance that provides a production-ready Kubernetes platform that also supports existing VMware virtualized applications in hybrid (private and public cloud) deployments. This approach provides rapid results to quickly stand up the environment as well as automated Lifecycle Management of the entire stack to enable organizations to securely and non-disruptively stay up-to-date and secure with their Kubernetes and vSphere clusters. We will discuss what is available today from Dell Technologies Cloud with PKS on VCF on VxRail as well as the roadmap forward for next year and beyond with Project Pacific and Tanzu Mission control.
Dec 04, 2019
Kubernetes: It's Not Easy but What's To Come?
Janikiram MSV is one of the few analysts and writers who is also a certified member of the Kubernetes community. He is able to bring into his writing an analysis that details the issues that an everyday users and developers face. He is also a regular contributor to The New Stack, on Kubernetes and other technologies.  In this edition of The New Stack Makers podcast recorded live at KubeCon + CloudNativeCon North America 2019, Janikiram discusses why developer happiness is such a challenge, the new role of the configurator and the issues that are coming as Kubernetes matures and isolation becomes a larger issue. He also discusses multi-tenancy and challenges to come as users adopt services and face security risks with less defined cluster isolation.
Dec 03, 2019
Why Time Series is Upending the Database Market
This podcast is sponsored by InfluxData. In this week’s The New Stack Makers podcast interview in advance of AWS re:Invent, The New Stack Founder and Publisher Alex Williams caught up with InfluxData Vice President of Product Tim Hall to discuss why time-series databases are gaining in popularity with developers and how they differ from other databases.
Dec 02, 2019
Kafka Streaming, APIs and Logging — the Oracle Way
Oracle continues to grow its global cloud presence. At KubeCon, the company announced its global expansion along with Kafka streaming, an API gateway, and data logging capabilities.
Nov 29, 2019
Which Comes First: Kubernetes or Service Mesh?
Service meshes, Istio and the underling architectures — fine topics to discuss over a short stack with The New Stack. At Kubecon + Cloud NativeCon in San Diego, We explore the scaling of application architectures and how business objectives fit with approaches, team development and workflows that come with service mesh technologies.
Nov 28, 2019
Kubernetes Back Up, Restore and Migration with Velero
Guests: Carlisia Campos, Tom Spoonemore, and Efri Nattel-Shay Velero is an open source project that provides backup, restore and migrating capabilities for Kubernetes.  Originally developed by Heptio and known as Ark, Velero is supported by Dell's PowerProtect, allowing users to back up their Kubernetes clusters. In an interview at KubeCon, The New Stack discussed Velero  with VMware's Carlisia Campos, a maintainer for Velero and member of the VMware technical staff; Tom Spoonemore, VMware's cloud native apps director and Dell's Efri Nattel-Shay, director of product management.
Nov 27, 2019
How to Make User Interfaces, Pipelines and Jenkins X an Easier Fit
The idea is to empower all DevOps' stakeholders with better access to continuous integration (CI)/continuous delivery (CD) pipelines. Your organization also very likely relies on Jenkins as the backbone for the production pipeline with a reliance on Git to share and collaborate. However, the problem has long been that  Jenkins is notoriously hard to implement and use for many organizations. The added complexities of shifting to cloud native and Kubernetes platforms have further compounded the difficulties — but this new age of Jenkins and cloud native deployments have also set the stage for the creation of CloudBees' open source Jenkins X. CloudBees created Jenkins X mainly to help facilitate and automate CD pipelines to Kubernetes and cloud native environments. The idea is also to allow Jenkins X to make it easier to develop and deploy cloud native applications to Kubernetes without having to learn the intricacies of the orchestrator. Jenkins X is also one of four projects of the Continuous Delivery Foundation (CDF), which also includes  Jenkins, Spinnaker and Tekton. CloudBees says it is also continuing to try and improve Jenkins X, by simplify how developers and all DevOps stakeholders work with the tool. To that end, the company has developed its first-ever graphical interface. In this The New Stack Makers podcast recorded during KubeCon + CloudNativeCon in San Diego last week, CloudBees' Moritz Plassnig, vice president, cloud and Peter Muir, lead architect, spoke with Alex Williams, founder and editor-in-chief of The New Stack about how CloudBees continues to try to make Jenkins X both more accessible and easier to use.
Nov 26, 2019
How Storage and Databases Can Catch Up With Kubernetes
Guests: Sugu Sougoumarane & Quinton Hoole Google and other tech giants can be hard examples to follow. As organizations rush to scale their infrastructure on a mix of on-premises and cloud environments, especially on Kubernetes, they often struggle when trying to store and analyze data from stateless sources. A lot of the traditional storage databases have not worked at the scale needed, while the early cloud services, such as AWS and Google, developed their own storage environments internally. “Kubernetes was very much focused initially on the stateless workloads and didn't do a very good job, to be perfectly honest, of providing any kind of support for storage, other than to the extent that you could connect to an existing public cloud provider,” Quinton Hoole, technical vice president of Huawei’s Futurewei Technologies, said. “I think that's evolved a lot over the last several years, as there are many different cloud native database [options]. People are starting to do serious stateful workloads in the cloud and in Kubernetes, in particular.” In this edition of The New Stack Makers podcast recorded live at KubeCon + CloudNativeCon North America 2019, Sugu Sougoumarane, co-founder and Chief Technology Officer at PlanetScale, as well as Hoole, discuss what tools and approaches organizations can take to store and manage data from Kubernetes and containers. They also cover how storage and database-management tools are catching up to organizations’ often complex infrastructure needs. However, finding the right tool mix is not easy. KubeCon + CloudNativeCon sponsored this podcast.
Nov 26, 2019
Explaining How AI Algorithms Make Decisions
Lauren Maffeo studies the emerging threats of artificial intelligence in her work as an analyst for GetApp, a software reviews site under Gartner Research that uses proprietary data to help match software buyers with the best tools for their businesses. In these two episodes of The New Stack Makers, Maffeo provides her perspective on artificial intelligence, its power and the threats it poses when unchecked. The top performing companies in the financial markets are using technologies based upon artificial intelligence. These technologies are powerful but can at times prove to pose indirect biases. That can lead to a bank loan getting denied, a passport not issued, a payment getting stopped and a black person getting a longer prison sentence due to the color of their skin.
Nov 22, 2019
Threads and Threats When Computers Think and Biases Emerge
The threads and threats that come with computer intelligence were apparent to Pamela McCorduck in 1960 as a graduate student in English Literature. Those same threads and threats are apparent today in the biases that can come with black box algorithms and indirect biases that Lauren Maffeo studies in her work as an analyst for GetApp, a software reviews site under Gartner Research that uses proprietary data to help match software buyers with the best tools for their businesses. In these two episodes of The New Stack Makers, McCorduck and Maffeo each provide their perspectives on artificial intelligence, its power and the threats it poses when unchecked.
Nov 20, 2019
Docker Security Fundamentals and Best Practices
Docker. You know it. You use it. You might well be confused by it. Is it Docker? Or is it docker? And why has Docker (or docker) taken a back seat to Kubernetes? There are so many questions regarding this technology. But one question that has been on the hearts and minds of many a container administrator is security. You might think that, given the isolated nature of containers, they’d be harmless. On certain levels that is the case. If a container is deployed correctly, it cannot access the deploying ecosystem. In theory. But, as we’ve all discovered in the realm of technology, where there’s a will there’s a way. Although you might fully understand how to deploy a containerized application and scale it out to meet the needs of your company, are you taking the necessary steps to ensure that application, and the hosting environment, is as secure as possible? What can you do? Listen as Jack Wallen discusses these topics with Scott McCarty, principal product manager for containers at Red Hat.
Nov 12, 2019
The Challenge Of Machine Learning And How DevOps And The Edge Will Modernize Data Science
First came agile. Then came DevOps. Except they only came to a few departments, mainly the traditionally IT ones. What's keeping them from reaching the most extreme realms of tech? According to Luke Marsden, CEO and founder of Dotscience, enterprise-grade artificial intelligence (AI) and machine learning is being held back, in part, because the mathematicians and statisticians behind it are stuck in the days of Waterfall — still emailing code back and forth to each other. Basically most enterprise AI and machine learning initiatives are stuck at the gate. On this episode of The New Stack Makers, we talk to Marsden about why.
Nov 11, 2019
KubeCon Preview: Kubernetes and Community at VMware
VMware has certainly seen some changes in its corporate structure during the past few years — but today, VMware’s business moves have been especially relevant for developers. Following its agreement to purchase Pivotal in August, for example, VMware continues to try to adapt its open source contributions and services for the ever-evolving needs of the community, with a greater emphasis on Kubernetes. This means VMware is increasingly engaged in offering and creating the tools and platforms developers need for Kubernetes, as well as for other open source projects.  In this edition of The New Stack Makers podcast: Kubernetes, open source, the developer experience and new technologies. VMware’s role during the upcoming KubeCon + CloudNativeCon conference was also discussed. The guests from VMware on hand to discuss these topics were: Bryan Liles, senior staff engineer. Tim Pepper, senior staff engineer. Tasha Drew, product line manager.  All three guests are actively engaged in the open source community, and particularly, in improving the Kubernetes experience for DevOps engineers.
Nov 06, 2019
How Developers Compare Around the World When It Comes to Kubernetes
Executives from Pivotal joined this latest episode of The New Stack Makers podcast recorded at the SpringOne Platform conference to discuss what the developer experience is like around the world. They were particularly well-suited to offer input about what developers face as customers worldwide since each executive is based in the U.S., Europe and Asia, respectively. The common-thread experiences they described also covered what it's like to deploy software on Kubernetes and CI/CD best practices and tools. The podcast guests from Pivotal were Lionel Lim, vice president and managing director, Asia Pacific and Japan; Chad Sakac, Americas Sales; Bas Lemmens, vice president and general manager, EMEA.
Nov 04, 2019
How to Build a Tech Community that Motivates Even the Unpaid
At least in the tech industry, the word “community” is teetering somewhere between adage and advantage. As developer experience becomes more of a necessity, does building a community have to be part of your business strategy? In this episode of The New Stack Makers, we sit down with Jono Bacon, community and collaboration strategy consultant, speaker and author. Our conversation unsurprisingly begins with talking about the emerging role of developer relations, developer advocate or developer evangelist. It is often an external-facing role, and yet acts as the liaison among infrastructure, product and marketing. It’s a role that is still rather a fish out of water, often immeasurable and flopped around from department to department.
Oct 31, 2019
Instant Data in a Post-DevOps World Comes Down to State
Stateful data management and storage are set to remain ever-present in IT infrastructures for the foreseeable future. But as containers and Kubernetes take hold, storage management for stateless and multiplatform environments is set to change. This holds true whether your organization employs hundreds of developers spread around the world who regularly spin up stateless containers or if your organization has data spread among multicloud and on-premises legacy environments. In any case, all of this data must be stored somewhere in a stateful form. At the end of day, all that “state” really means is that “data outlasts containers,” Murli Thirumale, CEO and co-founder of Portworx, said. However, in this era of stateless data, a new kind of storage has emerged. In this edition of The New Stack Makers podcast, recorded during TC Sessions: Enterprise in September in San Francisco, Thirumale described this new era of storage management and Portworx's role in this context as a provider of stateful storage for containers and multiplatform environments.
Oct 30, 2019
Informing Spinnaker's Continuous Delivery Platform with Kubernetes
How does your product change when it scales up in the open source world? How does that change your drive to create a better developer experience? In this episode of The New Stack Makers recorded at the SpringOne Platform conference, The New Stack founder and editor-in-chief Alex Williams sits down with Olga Kundzich, senior product manager for the Spinnaker continuous delivery platform at Pivotal. They discuss the best practices that help drive Pivotal's open source community, and how that informs Spinnaker's roadmap.
Oct 29, 2019
NetApp: Data Fabrics for Data That Is Everywhere
It wasn't that long ago when data fabrics were mainly relegated to various strategies organizations had in place for data management. The concept was largely limited to making sure data was where it should be and stored in the right places. Flash forward to today, and data fabrics are very much tied to often mission-critical analysis, often across a mix of multicloud and on-premises environments. DevOps teams, of course, increasingly rely on data fabrics to help support DevOps operations and culture.  In this edition of The New Stack Makers podcast, Neil Stanley, product manager, data fabric at NetApp Cloud Data Services, and Jason Blosil, senior product marketing manager, cloud solutions, for NetApp, spoke about what data fabric means today, and how NetApp has adapted its architectural approach for modern DevOps challenges.
Oct 28, 2019
GitLab's Meltano, a Data Pipeline That Uses Git as the Source of Truth
Data engineering is 10 years behind the software engineering world and, in many ways, remains mired in "spreadsheet land," Danielle Morrill, general manager for the GitLab startup Meltano, said. As a way to make up for the lack of viable data engineering processes, Meltano can meet the needs of organizations without the in-house expertise of software developers who can invent a tailored solution from scratch. "A lot of people are great with spreadsheets and can't write code or think they can't write code, but conceptually, they already are," Morrill said. "So, I think the roadmap [for Meltano] is very much about bringing them along." In this episode of The New Stack Makers podcast recording during the GitLab Commit conference in Brooklyn, New York in September, Morrill described how Meltano casts an as wide net as an open source alternative for data modeling, analysis and management.
Oct 25, 2019
How Pivotal Helped Dell Become 'Startup-Fast'
It wasn’t that long ago when Dell Digital’s software product teams were typically bogged down in very silo'ed development cycles. One of the more troubling effects was how long it took to complete projects, often measured in months. In some cases, software releases could even take a year before deployment. And all to often these very long development cycles did not result in something that met Dell Digital’s business goals — as in, creating something the customer wanted or needed. Besides the requisite culture for agile development, missing in Dell’s digital-transformation strategy was a single underlying platform that Pivotal Labs eventually provided, said Greg Bowen, chief technology officer and senior vice president, Dell Digital (the IT organization that supports Dell). With the help of Pivotal Labs' platform and the adoption of a more agile DevOps culture, Dell Digital's teams are now "extremely hyper-focused on the outcome with the business partner right there in the development process,” Bowen said. “And so, that's allowed us to take the scale of an enterprise company, and become almost startup in nature.” In this latest episode of The New Stack Makers podcast recorded at the SpringOne Platform conference, Bowen discussed how Dell Digital's transformation was dependent as much on culture and processes as it was on selecting the right technologies and tools including, as mentioned above, Pivotal Labs' platform.
Oct 24, 2019
Why Container Security Has No Easy Answers
There are many opinions out there about what your organization must do — or buy — to make sure container environments are secure. But taking a step back, containers stand on the shoulders of open source, and the security and compliance processes that teams have learned during the past decades remain applicable in many instances. At the same time, container security has its own set of rules and best practices that are often less than apparent. Worse still, much of the confusion around open source security remains, further compounding the challenges. “If I look at the container environment, we’re kind of back in the bad old days where the container Docker file may have a license, but almost always it is not the license for all of the software that is included in the container, which usually contains many components,” Dirk Hohndel, vice president and chief open source officer at VMware, said. The quintessential question, Hohndel says, is how do you find secure containers and “ensure that the one that you have is actually secure?” In this latest episode of The New Stack Makers podcast, host Alex Williams discusses the status of compliance and security now that containers are becoming such a core part of open infrastructure. He is joined by VMware’s Hohndel and Andrew Wilson, a long-time chief open source compliance officer at Intel.
Oct 23, 2019
Making Data Readily Available for Developers
The technology industry is undergoing a data revolution in which the unlimited storage and compute power of the cloud is changing how data is stored, processed and managed. Alluxio is a platform for data orchestration that aims to simplify and standardize how data is managed across different types of infrastructure by creating a layer of abstraction between the storage and application layers. The Alluxio orchestrator virtualizes data and allows applications to access it in a way that’s compute, storage and cloud agnostic. It’s a platform designed to eliminate data silos and make data readily available and performant for developers. Haoyuan (H.Y.) Li, CTO and founder of Alluxio, is a co-creator of the Apache Spark streaming library and built Alluxio as an open source virtual distributed file system for a computer science PhD project at Berkeley. Li is now building a startup, which currently boasts 40 employees and several large enterprise customers. The company offers enterprise features and support on top of its open source project.
Oct 21, 2019
How Software Makes a Porsche More Than Just A Car
Porsche has always been about technology since Ferdinand Porsche founded the iconic brand in 1931. This is manifest in today’s new models, whether it’s how engineers have shaved milliseconds from the turbo rotations for an even more responsive takeoff blast in the new 2020 Porsche 911 Carrera 4 or the battery-powered motor for a zero-to-60 mph acceleration in the Taycan Turbo S in a slam-you-back-in-your-seat 2.6 seconds. But Porsche is radically changing, the company asserts. This means the Porsche experience — for those lucky enough to have driven one of the fabled models — is no longer brought to you by a sports car manufacture...but by Porsche as a “mobility provider.”  And this Porsche metamorphosis as a mobility provider hinges on software development, company executives say.  In this latest The New Stack Makers podcast recorded at Cloud Foundry Summit EU, hosted by Alex Williams, founder and editor in chief of The New Stack, Porsche’s Matthias Hub, Porsche IT project manager and prototyper, and Thorsten Türk-Steppe, Porsche product owner, described how Porsche is reinventing itself as a company through its DevOps’ software emphasis as a mobility provider. Watch on YouTube:
Oct 17, 2019
The Patterns Behind Java, Kubernetes and Modern Distributed Systems
When The New Stack Editor-in-Chief Alex Williams sat down with Pivotal’s VP of Technology Cornelia Davis at SpringOne Platform in Austin Texas, they had a lot to talk about. Almost 40 years. Davis’s tech career began in aeronautics which could go give years from code written to rocket launched. She has journeyed right alongside as we went from SOA and SOAP to REST to the distributed systems we have today. During her talk and in this conversation, she reflects on the patterns that drove APIs from a RESTful layer toward toward true autonomy, where everything is as loosely coupled as possible, with bounded context. A chat with Davis feels one third practical computing, one third theoretical mathematical foundations, and a third grammar. To give context to the chat, let’s give some background. The traditional object-oriented or imperative programming is focused on using statements to change a program’s state. On the other hand, declarative or functional programming focuses on what the program should accomplish and isn’t worried about how that result is achieved, This is why the first is referred to as stateful programming, while the latter is stateless. In this conversation, Davis describes functional programming as a statement of relationship between the first part of a problem and the rest of the problem. You trust that the second half of that problem is correct, so all that is important is how you combine these things. Watch on YouTube:
Oct 16, 2019
Why NetApp Wants You to Have One Safe Foundation for Any Infrastructure
One of the main components of the mantra “all companies are software companies” is organizations’ DevOps must deploy and update applications rapidly and at scale. The supporting infrastructure hosting the production pipelines and deployments must also be both safe and sound, regardless of whether it is on the cloud, on premises or — more likely — a mix of both The main theme of this episode The New Stack Makers podcast, hosted by Alex Williams, founder and editor in chief of The New Stack, was how NetApp offers a foundation for DevOps deployments and data management across cloud native and on premises infrastructures. NetApp’s Diane Patton, hybrid cloud services (NetApp Cloud Services on HCI)  and Robert Esker, product management and strategy, discussed, among other things, how NetApp’s HCI can serve as the underlying foundation for a number infrastructures. "We provide this common set of tools, so no matter where the developer wants to deploy their application, they can use that exact same toolset and deploy it either on-prem or deploy in any of the major cloud providers as well.," Patton said.
Oct 15, 2019
Pivotal SpringOne Platform Keynote Overview: Is Kubernetes Boring Yet?
Building enterprise level software takes a lot of skill and creativity. When developers want to come together to discuss, create, and inspire one another, the place they flock to is the SpringOne Platform conference, which took place this year in Austin, Texas. Pivotal Senior Vice President of Product James Watters said it best at the keynote for the event, which he later recapped alongside VMware Principal Engineer Joe Beda in an interview with TNS founder and editor-in-chief Alex Williams. "It's because it's the one place for people who are really passionate about building modern applications in enterprises all hang out. There's some places where that's considered like, 'Oh that won't happen,' or 'We're not doing that yet,' or, 'We're straddled with so much heritage,' but you know, this is the conference where on stage you can see Netflix saying, 'We're all in on SpringBoot, it's how we build all our applications,' and then the next customer gets up from Home Depot or TDA and says, 'We do it the same way,' and to me that's kind of inspiring because it's I think kind of a lifeblood for enterprises to come to a place where they have a peer group that's doing the same difficult thing which is modernizing their applications," said Watters.
Oct 14, 2019
Two Open Source Advocates on How They Build Community Through Education
One of the themes of the Cloud Foundry Summit series has always been to help reinforce the strong sense of community among those who take part in the open source movement. In this way, the recently held Cloud Foundry Summit EU in September lived up to its mission. Among those on hand at the conference whose jobs are to initiate and educate organizations, about open source and the Cloud Foundry, as well as to include more individuals in the movement, were Ivana Scott, business operations manager, EngineerBetter and Sara Lenz, sales and account Manager, anynines. They were the guests on The New Stack Makers podcast recorded at Cloud Foundry Summit EU, hosted by Alex Williams, founder and editor in chief of The New Stack. Both Lenz and Scott are particularly well-positioned to offer a fresh perspective on how to grow the community through education. Scott first became involved in the open source community in in 2007 when she joined training provider in London. There, she was  part of the events team, and was involved in organizing events, training courses, conference and meetups, while devoting a “huge amount”  of effort to support open source communities. She then became directly involved in the Cloud Foundry community after joining EngineerBetter in 2018. Watch on YouTube:
Oct 10, 2019
How NetApp's Trident Helps Kubernetes with Stateful Workloads
A question that may come to mind for those managing enterprise workloads is: What is Trident? This is the main question that George Tehrani, Director of Product Management, Open Ecosystem answered on this episode of The New Stack Makers, hosted by TNS founder and Editor-in-Chief Alex Williams.
 "By and large, any workload of importance to the enterprise needs some sort of persistence. So what Trident is, is an open source storage orchestrator that NetApp developed and continues to maintain. It greatly simplifies the creation, management, and consumption of persistent storage for enterprise workloads in Kubernetes, as well as the other major distributions of Kubernetes such as OpenShift."
Oct 09, 2019
How Switzerland's Largest Telecom Met Its At-Scale-Development Goals
Three years ago, Lukas Lehmann, head of cloud services, Swisscom described how his organization at that time was largely client-server dependant. In order to achieve its goals as both Switzerland’s largest telecom and as an IT provider, it became apparent that the Swiss firm had to find ways to scale across its entire operations in a way that remained consistent and robust. In this podcast from Cloud Foundry Summit EU hosted by Hosted by Alex Williams, The New Stack founder and editor-in-chief, Lukas Lehmann, head of cloud services, Swisscom discussed his organization was able to scale to achieve its shift to at-scale application development goals across cloud environments thanks largely to partnership with Cloud Foundry.  Stefan Voegele, expert middleware engineer, for insurance provider Swiss Re, was also on hand to discuss how his firm uses Swisscom’s platform as a service (PaaS) in its shift to a cloud environment. “Helping our customers and ourselves make a digital transformation is key to us,” Lehmann said. “That is why such a platform [as Cloud Foundry’s] and being involved in such an ecosystem is very important for us.” Watch on YouTube:
Oct 08, 2019
Don't let SREs Leave Cybersecurity Behind
Alex Delgado, a security engineer at the Gremlin chaos testing service, points to the disconnect many enterprises have. It’s not that the developers aren’t building with the newest technologies like Kubernetes and microservices. It’s just that security and compliance haven’t even heard of these things. And it's increasing risk. “You can’t secure something that you don’t know how it works,” he said, on this episode of The New Stack Makers, where Delgado reflects on his past at a security and defense enterprise and his present at scale-up Gremlin. He began his career in customer support and then remediation of customer concerns. That put him in an interesting but often frustrating position as he moved into security, which had him throwing code over the wall that was released maybe three months down the line.
Oct 07, 2019
Security Automation and Closing the Software Development Life Cycle Loop
Automating security is now more of an issue as attack surfaces become more expansive and change. We sat down at GitLab Commit Brooklyn with Shamiq Islam, Head of Application, Blockchain, and Infrastructure Security at Coinbase and Philippe Lafoucrière, Distinguished Engineer at GitLab to discuss all things security automation and why today’s enterprises should look into automating their security and closing the software development life cycle loop. Watch on YouTube:
Oct 03, 2019
CI/CD in Kubernetes
All things continuous integration, continuous delivery, the GitLab experience in new environments, and even mainframes were the topics of discussion taking place at GitLab Commit during an interview TNS founder & Editor-in-Chief Alex Williams had with Eddie Zaneski, Developer Relations Manager at DigitalOcean, Kyle Persohn, Senior Engineer at Northwestern Mutual, and Sean Corkum, Senior Software Engineer at Northwestern Mutual. Launching the discussion was the topic of CI/CD in an organization. Specifically, how organizations can get their teams involved with and building out CI/CD. "It has to be ingrained in the culture of the team to really take full advantage of everything that you can get from that. Making sure you're building fast, failing fast, and everyone understands and is totally on board like, 'Yeah, this is the right way that we should go,'" said Corkum.
Oct 01, 2019
T-Mobile’s ‘Eye Opening’ Shift to GitOps
It is certainly never easy to port existing software production pipelines and operations to a cloud native or, more typically, to a mix and match of cloud, bare metal and on-premises server environments. This assumption certainly held true for the situation T-Mobile was in during its digital journey . But while T-Mobile’s operations are on a gargantuan scale of magnitude compared to most organizations, T-Mobile succeeded by applying many of the same practices any organization needs to rely on, whether for a 10-person shop or if the company is Google. This includes an increasing reliance on GitOps for version control (VC) and repository functions but also as a way to combine all data access and functions into a single source to help manage the enormous complexity of multi-cloud and server environments, including, of course, Kubernetes deployments. One of T-Mobile’s main goals was moving “a lot of those pieces out of the traditional location where they might be in a database of inside of a certain system of record, and a service registry and more into a repository. So,  we're able to recreate things on the go to manage our user base in a more dynamic fashion,” Philip Marc Schwartz, principle engineer, software, T-Mobile, said. “It's been an eye-opening experience to be able to work through the problems that you see with those systems as you're trying to get them working. And it's very interesting to see those problems solved where you can really work on them in a finite level.” Watch on YouTube:
Sep 26, 2019
Quarks vs. Eirini: What's the Difference?
"Cloud Foundry is a project that predates Kubernetes, and as container orchestration has evolved, we have started seeing more microservice components built into Cloud Foundry that were used as a way to containerize to some extent. This speaks to the history of project Eirini and project Quarks," said TNS founder and Editor-in-Chief Alex Williams during a live interview recorded at Cloud Foundry Summit Europe, where he was joined by Jennifer Spinney, Staff Software Engineer at Pivotal, and Vlad Iovanov, Technical Lead at Cloud Foundry SUSE. Spinney went on to explain, "So, Cloud Foundry traditionally has this component called Diego, which is actually a rewrite of the old way that containers used to be run in Cloud Foundry via these DEAs, we replaced that with Diego when we did that we introduced this hard boundary between the API of CF and the back end that schedules containers and schedules your actual app workloads. So then when Kubernetes started picking up steam, because we have this hard boundary now between the Cloud Foundry API and the back end that's actually scheduling jobs, we could look at swapping out Diego with just Kubernetes because it's kind of doing the same thing. Back when we started Diego, Kubernetes wasn't fully there yet, there was still a lot of maturing to do. Now I think we're seeing Kubernetes becoming way more mature, and it's much more possible to just drop in Kubernetes instead of Diego."
Sep 25, 2019
GitLab’s Growth — Deep Transparency Makes a Difference
At GitLab Commit, GitLab's first user conference that took place last week in Brooklyn, GitLab announced that it has received 268M in funding, valuing the company at 2.75B dollars. TNS Founder Alex Williams dove into this announcement and many more with GitLab CEO & co-founder Sid Sijbrandij, asking candidly what the next steps are for GitLab after it received that kind of funding. "We're going to continue what we were doing. This money will enable us to keep hiring people, and keep hiring people to make GitLab more mature in every single aspect. GitLab is incredibly broad, started with version control and CI, but now we go all the way from planning what you want to do to monitoring the results of that. We want to make sure every part of GitLab becomes as good as the best parts," said Sijbrandij.
Sep 24, 2019
How InfluxDB Now Extends to a ‘Pay as You Scale’ Model on the Cloud
Once largely reserved for the finance industry, times series databases are increasingly emerging as must-haves for many organizations. A classic SQL database,  for example, is not designed to process thousands or — in many cases — millions of data points per second that a time series database can monitor, track,  analyze and assimilate for forecasting applications for real-time analytics and business intelligence. These applications often include application, server, network  monitoring, for industrial or IoT data. However, many organizations are faced with the conundrum of not being able to afford investing in the required hardware infrastructure for time series data analysis or most of their operations are cloud-based and they have faced a dearth of viable alternatives. As a solution, InfluxData, a leading data has launched InfluxDB Cloud 2.0, the first serverless time series platform as a service (PaaS). In this The New Stack Makers podcast, Paul Dix, co-founder and CTO, InfluxData, discussed InfluxDB Cloud 2.0, and how the evolution of time series databases have evolved to create a need for a cloud-based alternative.
Sep 23, 2019
Github and Developer Advocacy In and Outside a Business
A question we’re asking a lot is: What is a developer advocate? Often followed by: Which department do you report to? How do you measure your role? It’s a somewhat old role in the fact that people have been marketing to devs since software started getting sold. It’s a somewhat new role under its name. When Rob Zazueta mentioned he was hired at WeWork to build a developer relations team focused on internal developers first, it surprised me to realize that companies — even ones with massive API programs — aren’t really advocating to their internal developers. This is a shame. This would promote reusable code, shared learnings, and brand advocates that can go out and talk for you. On this episode of The New Stack Makers, we sit down with Brian Douglas, developer advocate at Github. This is something he does for both external and internal developers.
Sep 18, 2019
Netlify's Head of Community Perry Eising on Creating Accessible and Inclusive Tech Events
When applying for an open award for people that did activism in the Portland tech community, Netlify's Head of Community Perry Eising found himself having to identify outside of his gender identity as a result of the form not having an option for nonbinary people to be recipients of the award. After realising he was getting mixed signals, he decided to ask the company about it directly, "That moment of bravery was just, I didn't know how they were going to respond. I didn't know how clued in they were to having people who were nonbinary as part of their organization, whether they knew what that was, whether they were going to treat me well, whether they were going to laugh at me. Us as underrepresented people in tech, I think there's always that nervousness if we're going to bring up a concern to people who were organizing something, whether they're going to have the knowledge to take that in,  or whether they're going to reject us, or whether they're going to laugh at us," Eising said. Eising's experience addressing the issue of exclusion with the event organizer in question turned out positive, as they didn't realize their form had been excluding those that were nonbinary. This interaction began a collaboration between Eising and the organization where he volunteered and collaborated with them to make their events more inclusive. "It's not always like that, you don't always have those experiences where you're welcome when you bring something forward and so I decided that I wanted to respond to this personal event of mine by creating a guide that kind of laid out that experience, of this sort of mismatch of signals you can experience, and give opportunities for people to understand why that was the case but also provide really hands-on solutions for people that are planning, promoting organizing, orchestrating events to be more gender inclusive." Thus, the Gender Inclusive Events Guide was created.
Sep 17, 2019
User Journey & Developer Persona, with Dormain Drewitz, Sr. Director of Product Marketing at Pivotal
The user journey evolves at many levels, says Pivotal Software Senior Director of Product Marketing Dormain Drewitz. "There's a couple of different user journeys that are really happening. You've got user journeys at the developer level, you have user journeys at more of the platform, engineering level, and the teams that are operating and building the platforms, and you have user journeys kind of at the business level and what does that mean for lines of business and their whole relationship to software?" During a podcast with TNS Founder & EiC Alex Williams at Cloud Foundry Summit Europe, Drewitz discussed not only the user journey, but the evolution of the developer persona itself. In particular, how developers can learn from those that came before them. Watch on YouTube:
Sep 16, 2019
Storage in a DevOps World
Part of the transition to DevOps that comes with cloud native application development, has been a shift in responsibility for storage, away from dedicated specialists towards developers who are increasingly responsible for provisioning the storage for the applications they build. “People do not want storage to be a complicated task,” said Chris Merz, principal technologist at NetApp. “It is a piece of infrastructure. It should be simple, it should be scalable, it should be self healing. They should follow the same patterns as the systems that DevOps practitioners and cloud native architects are building every day.” Before Kubernetes, building and operating container-based applications was onerous—it involved manually handling tasks like DNS management, load balancing, scaling and resource monitoring. Now the Kubernetes ecosystem handles all of that—but there needs to be a way to get the same level of automation for storage, Merz said.
Sep 11, 2019
Ushering in the The Industry 4.0 Age with InfluxData and the OPC-UA Server
On this episode of The New Stack Makers, TNS Founder & EiC Alex Williams sits down with Jeroen Coussement, Co-founder & CEO, Factry to focus on the use of OPC-UA and InfluxDB in industrial settings. Coussement built an open-source OPC-UA server to bring data from and to process control systems as well as demonstrate the value of a time series database by collecting data from industrial control systems, adding further context with additional data (and interpreting the result visually), using this as a basis for optimization. When working in an industrial IoT context, there are many concerns that one has to keep in mind throughout the software development process. When Coussement built the OPC-UA server and the Node OPC-UA Logger, he emphasised 'flattening out' the schema when building the server, and made Node the language of choice when developing the logger. "You just configure it and it will log the data from your process to InfluxDB. That's basically it in a nutshell. It also provides buffering, because typically you don't want any data loss, so you install that collector on one of your automation servers, where it's as close to the source as possible. There, it will start collecting the data and if there's some kind of network issue, it will buffer the data so when the network comes back online, it will send over the data it has been collecting in the meantime," said Coussement.
Sep 10, 2019
What You May Not Know About What Open Source Means for Your Organization
There are common perceptions that organizations have about open source — but  these perceptions also vary a lot. This is especially the case when it comes to describing what organizations’ role in open source development should be, as well as the best way to take advantage of this ongoing explosion in open source tools and their availability. (Call it a renaissance, if you will). What open source means — and what it should mean — is a main topic of this episode of this The New Stack Makers podcast, recorded during the Open Source Summit in San Diego, with the recently released results of the survey the second annual survey “Open Source Programs in the Enterprise.” Dirk Hohndel, vice president, chief open source officer, VMware, discussed his take on the results and what they meant for VMware, which  co-sponsored the survey in partnership with The Linux Foundation’s TODO Group. The survey results also served to quantify many of the operations Hohndel has made during his work with the open source community. Given that enterprises increasingly describe themselves as software companies, a key consideration is to determine how software's role specific to your organization. Or more specifically,  Hohndel said,  most businesses view software as "key to what they do."
Sep 09, 2019
This Week In Machine Learning & AI Introduces the TWIMLcon Conference
On this episode of The New Stack Makers, TNS Founder & EiC Alex Williams sits down with Sam Charrington, Founder of This Week in Machine Learning & AI (TWiML & AI). The inaugural TWIMLcon conference takes place October 1st-2nd, 2019 at the Mission Bay Conference Center in San Francisco, California. TWIMLcon aims to bring a fresh perspective to AI & ML events, growing out of conversations that Charrington had with enterprises that, “Tended to be at a very interesting transition point.” Noting that he heard towards the end of last year that, “Companies kicked off a lot of machine learning proof-of-concept types of projects, they had some initial successes, their data science teams were out evangelising, and some of those proof-of-concepts were starting to mature [...] And so all of a sudden these organizations, they were challenged with the transition from ‘How do I successfully execute an individual machine learning project,’ to ‘How do I become an engine for delivering machine learning at my organization?’” said Charrington.
Sep 05, 2019
What is GitOps and Why It Might Be The Next Big Thing
With containers comes a level of agility never before experienced in the world of business. In seconds, administrators can roll out deployments for a multitude of services. And when those businesses need to scale those containers, they can turn to Docker Swarm or Kubernetes. But what happens when even a standard container workflow can’t keep up with the ever-growing demand of business? You’d be hard-pressed to find a more efficient means of deploying and scaling a container cluster than that found in Kubernetes. And although that may very well be true, it doesn’t mean the development cycle can’t be improved. Enter GitOps GitOps is a method of workflow that was conceptualized by “everyone who successfully did infrastructure-as-code … is the true creator of the concept of GitOps.” (according to Priyanka Sharma, Director of Technical Evangelism at GitLab). However, ask anyone in the know and they will immediately say that Weaveworks wrote the book on this new workflow.
Sep 04, 2019
Progressive Delivering Distributed Systems with Canarying, Service Meshes, and Chaos Engineering
There's a continued welcome evolution in the role of the developer — from code monkey to creative worker. It's a good way to motivate and retain some of the most in-demand roles, by making the job more creative and less tedious. But truly it's in response to our increasingly complicated and distributed systems. As much of these roles has to be automated as possible to allow developers and other tech roles to focus on more problem solving and systems resiliency. In this episode of The New Stack Makers, we talk to Jason Yee about two trends surrounding this evolution — the role of the developer evangelist and the role of progressive delivery. We've already written about the increasing popularity of the developer advocate or evangelist. It's an eclectic role that involves a mix of content marketing and public speaking, documentation writing, and customer support. For Yee, in this role for almost three years at monitoring and analytics service Datadog, it's all about community, helping developers "think about tech in a different way."
Aug 26, 2019
How a Leading Gambling Software Maker Staves Off Observability Chaos
Playtech describes itself as the world’s largest online gambling software supplier. It has achieved monumental growth to bolster its leading position in gaming software by largely relying on the creativity of its DevOps teams around the world. Needless to say, givings its developers and operations teams such freedom could come at a price, as managing the data and input of such as widespread and far-reaching DevOps structure would, for many companies, end in chaos. In this episode of The New Stack Makers podcast, Aleksandr Tavgen, technical architect, for Playtech described how the Isle of Man-based company has succeeded in achieving what the company says is “full observability” of Playtech’s operations platform thanks largely to InfluxDB 2.0, Flux and the OpenTracingAPI.
Aug 22, 2019
Eric Brewer on Why Envoy and Istio are the Future of Networking
For this episode of The New Stack Makers, TC Currie is joined by Dr. Eric Brewer, Google Fellow and VP of Infrastructure at Google where he’s the architect of Cloud Native systems at massive scale.  He’s also been a Computer Science Professor at UC Berkeley since 1994.   TC caught up with Dr. Brewer at the recent Service Mesh Days in San Francisco. “Istio at its core decouples developers from operations,” Brewer said. That decoupling lets both sides go faster and with more confidence. Traditionally, when developers are writing a service, they worry a lot about the API, what are the methods, how does it work? But when you’re deploying microservices, then you start need to think about other questions. What are the policies that are calling this service?  Does it have quota? Does it have a denial of service?  How does it get authenticated?  How is it secured?  All of these questions that are not about what the API does, but are operations pieces.
Aug 21, 2019
GitLab’s CD Journey Without Kubernetes
GitLab has been very busy recently expanding on its leading software repository manager for DevOps to underpin its customers' continuous integration/continuous delivery (CI/CD) efforts. GitLab is also a very transparent company and actively communicates lessons it has learned along the way firsthand to better support its customers. As a case in point, Priyanka Sharma, director of technical evangelism at GitLab who serves on the board of the Cloud Native Computing Foundation (CNCF), recently surprised many by describing in a recent The New Stack blog post how GitLab began its CD journey without first completely shifting its underlying IT infrastructure to Kubernetes first. “We’re in the process of moving to Kubernetes, and we need to deploy even more frequently than we have in the past as we increase the velocity of feature development,” Sharma wrote. “But instead of modernizing completely with Kubernetes and then starting CD, we have opted to push our existing CI/CD system to the limit by using our preexisting legacy tools — and a lot of smarts.” In this episode of The New Stack Makers podcast hosted by Alex Williams, founder and editor in chief of The New Stack, Sharma further discussed how GitLab has sought to not necessarily opt for necessarily the latest-and-greatest tools sets in its move to CD. Instead, the focus has been on finding the most direct path while maintaining the investments in and support of GitLab’s legacy systems. “We're now in a place where we will start slowly moving to canaries because now we're maxed out what we could do with this legacy system,” Sharma said.
Aug 20, 2019
Accessibility as an Essential Part of the Inclusive Developer Experience
We've written some about accessibility in terms of building apps and websites — although there's always more to learn and do — but what about accessibility and inclusion in the developer world? How can you best serve your full customer base when your customers are developers? How is designing for inclusion an essential part of the developer experience? These are the questions Pivotal Labs' Senior Designer Raquel Breternitz is trying to answer in this episode of The New Stack Makers. Why is inclusion so important to Breternitz? "We don't have to just make sure that someone can get there, and can understand it when they do, but we also have to find the ways in which folks are excluded and break those barriers down as well," she told The New Stack in a follow-up conversation.
Aug 13, 2019
Splice Machine Allows Businesses to Modernize AND Keep Customized Programs
Splice Machine brings SQL Back, said Monte Zweben, CEO at Splice Machine, but with a spectacular twist. It’s common for data infrastructure to reside on three separate platforms:  transactional databases, data warehouses, and the recently-added machine learning (ML) environment. Most artificial intelligence (AI) applications are built on historical data that has been loaded in to ML environments for data mining.  So you’re looking in the rearview mirror to figure out what has already happened, he said.  And that requires computational engines. Then, since you want to perform actions to make decisions in the moment, you need an operational data store, like traditional database management systems or a NoSQL data store, but people use these to make decisions in the application in the moment. Lastly is new ML algorithms, data science workbenches and modeling workflows.
Aug 12, 2019
TC Sessions Preview: Why Software is the New 5-Year Growth Plan for the Enterprise
It’s just easier — a greenfield startup founder picks and chooses the best technology platforms and software development tools that best serve the needs of the business model. For organizations with years of legacy software in place, the digital journey is often harder, yet inherently necessary to survive in today’s DevOps-centric world. In this episode of The New Stack Makers podcast hosted by Alex Williams, founder and editor in chief of The New Stack, ahead of the upcoming TC Sessions: Enterprise event, how organizations attempt to keep up with the disruption amid an explosion of new and powerful open source tools served as a central theme. On hand to discuss what is at stake were: Ron Miller, enterprise reporter at TechCrunch. Yvonne Wassenaar, CEO of Puppet. Shawn Wormke, senior director of Aspen Mesh.
Aug 08, 2019
How Graph Databases are Changing Our Relationships with Data
What does Justin Bieber have to do with our relationships to, well, anything? If nothing else, his staggering 105.8 million followers on Twitter (at the time of this conversation) is a real challenge for data scientists. If you wanted to know how The Bieb’s assemblage relates to him and one another, you could never achieve it with an entity-first relationship model — you know, columns, rows and spreadsheets, or, as Wikipedia calls it, “a simple relational database implementation, each row of a table represents one instance of an entity type, and each field in a table represents an attribute type.” If you really want to begin to understand the reasoning behind The Beib’s broad fanbase, you’d need to organize data relationship-first. This is just one of the real-world examples Dr. Denise Gosnell offered regarding the importance of graph databases and the tech behind them that is shifting how we think about and organize data. The head of global Graph practice at DataStax and one of the world’s foremost researchers on graph theory, graph algorithms, graph databases, and applications of graph data across all industry verticals offered more business use cases as well, including the interrelatedness of your primary and secondary LinkedIn connections and the growing popularity of smart meters.
Aug 07, 2019
Intel's AI4Good: Good News for a Change
“There’s so much passion for using AI in ways that are beneficial,” Anna Bethke, Head of AI4 Social Good at Intel’s AI Products Group.  And she wanted to make it easier for others to get involved. Bethke’s team partners with companies and social justice organizations to give them access to Intel’s knowledge of deep learning skills and techniques, making it easier for them to mine social media and other data to filter out the noise. One of her first partnerships is with National Center for Missing and Exploited Children (NCMEC). Their mission is to find children who are being trafficked or in danger of being kidnapped and alert the local law enforcement so they can take action. They get hundreds of thousands of alerts a day from social media like Facebook and Twitter, which was completely unmanageable. There are three points of information NCMEC needs.  First, identify and prioritize which posts represent the most danger to the child.  Second, identify where the post is originating, which is often complicated by the use of multiple IP addresses and IP address obscuring.  Once the location is found, the legal jurisdiction needs to be identified so the information can be sent to the proper authorities (e.g., police or sheriff department).  But how do you find that information in the flood of data?
Jul 31, 2019
What the Paradigmatic Shift in Machine Learning Means for DevOps
Artificial intelligence (AI) and machine learning (ML) have been under study for years. But what is new is the tremendous impact and overlap AI and ML are now having on application development. Among the benefits, we will continue to see applications based on massive amounts of data sets that make use of human brain-like neural network computing to perform tasks in minutes or seconds that previously required thousands of human hours to perform. On a more practical level, AI is used to automate some of the more rudimentary tasks in software production pipelines, while freeing up time for developers to focus on more creative and intellectually rewarding work. ML and AI fit are also increasingly leveraging the resources and ability to rapidly scale Kubernetes, and more specifically, Kubeflow offer. During a podcast from the recently held from KubeCon + CloudNativeCon China, Alex Williams, founder and editor in chief of The New Stack, spoke with Dr. Han Xiao, engineering lead at Tencent AI Lab, and Alejandro Saucedo, chief scientist at the Institute for Ethical AI and machine learning, to learn more leveraging AI’s and ML’s power for today’s at-scale application development and deployments.
Jul 30, 2019
Cloud Foundry Sees Challenges Worldwide, Exciting Differences in China
The Cloud Foundry Foundation may have faced some skepticism at the outset a few years ago, but it has since more lived up to its reputation as a as a principle hub for creating and leveraging open source software on the cloud. In many respects, Cloud Foundry has matured well beyond the initial phases of a startup, and with this maturity comes inherent challenges. Now, more than ever, Cloud Foundry must true to its core mission and to never “break the user,” Abby Kearns, executive director at the Cloud Foundry Foundation, said. During a podcast from the recently held from KubeCon + CloudNativeCon China, Kearns spoke with host Alex Williams, founder and editor in chief of The New Stack, about how the foundation continues to serve the developer open source community and what its missions continues to be. Kearns also revealed some especially interesting observations about China-based developers and their approach to the Cloud Foundry and open source community. Watch on YouTube:
Jul 29, 2019
Can the Tech Industry Curb Climate Change and Inequality?
Inequality is growing. The climate crisis and global heating will only serve to increase this great human divide. All the while, technology is a huge contributor to both of these problems — from the massive carbon footprint and wasted electricity of data centers to mining limited resources to exploitation of factory workers to the continued lack of diversity and inclusion, there’s a lot of consequences to our supposedly forward-thinking industry. What are our responsibilities as people working in tech to curb these trends? In this episode of The New Stack Makers, we sat down with Nabil Hassein a technologist, educator and researcher into the historical link between computing and imperialism, to talk about what they call these “fractal patterns of inequality,” and how we examine and change the often damaging relationships within tech.
Jul 25, 2019
How A China-Based Bare Metal Provider Solved a Problem with Open Source
Kubernetes continues to spread across the cloud and to on premise and bare metal server environments — and with the wider scale adoption often comes growing pains. Specific to bare metal, for example, Kubernetes platforms lack viable load balancing capabilities. Beijing Yunify Technology, a China-based bare metal service provider, says it has solved the issue, with the development of open source  Porter designed to solve the issue of load balancing on bare metal in production on Kubernetes, During this The New Stack Makers podcast recorded live at KubeCon + CloudNativeCon Open Source Summit China 2019 in Shanghai, Xuetao Song, senior software engineer at Beijing Yunify Technology, described in more detail about how Porter offers load balancing capabilities for Kubernetes, while also touching on other container-related themes. Watch on YouTube:
Jul 24, 2019
The Evolution of the Site Reliability Engineer
This episode of The New Stack Makers podcast talks to two Digital Ocean alumni and co-chairs of SREcon 2020 Americas who have had two very different journeys that led them to become one of the most wanted roles in tech — site reliability engineers. As the name suggests, an SRE is someone focused on the reliability of an organization's most important systems.  The term site reliability engineer dates back to 2003 when it was coined at Google, but it certainly has existed for decades more in different forms — disaster recovery and production testers, for example — as engineers have always tried to keep essential services like healthcare and finance online. The growing demand for SRE came as we went cloud-native and needed these engineers to work in production and on operations, with a heavy focus on automation and observability. As systems became increasingly distributed, this is a role that has evolved from just shoring up uptime for a monolith to a relationship broker who has views into organization-wide systems, a knack for problem-solving, and a love of metrics.
Jul 23, 2019
How PingCAP’s TikV Is Set to Process Transactions from China's 800 Million Internet Shoppers
It wasn’t that long ago when Kevin Xu, general manager of global strategy and operations at PingCAP, remembers walking into what he described as a “dark and dingy” basement at an internet cafe to play World of Warcraft and eat noodles in his native China. “Those days did exist, but not so much anymore — there are many mobile phone vendors now and [almost] everything is being done on your smartphone,” Xu said. But after attending Stanford University Law School from 2014 until 2017 — when he took advanced computer science classes at the campus because he thought law school was “boring” — the Chinese Internet economy has become a much different place. “The interesting thing about the Chinese internet economy is that, number one, it has the largest number of Internet users in the world of about 800 million people since my last count, which is like two and a half times the entire population of the United States and is probably more now,” Xu said. “And not only are they internet users, but they are also mostly mobile users.” KubeCon + CloudNativeCon Open Source Summit China 2019 in Shanghai served as the perfect backdrop to record this latest edition of The New Stack Makers podcast with Xu.
Jul 17, 2019
Want Career Stability? Look to Infrastructure, says Tameika Reed, founder of Women in Linux
In today’s episode of The New Stack Makers, TC Currie is joined by Tameika Reed, whose day gig is as a  Senior Infrastructure Engineer at EXPANSIA, a company providing full spectrum services for IT migration and integration.  After 16 years in infrastructure, she got tired of not seeing anyone like her. So three years ago she decided to be the change she wanted to see in the world, and founded Women In Linux. This group provides free on-line training in the wide variety of ways in which Linux is used, along with job boards and career advice. Within 30 minutes of the decision to found Women in Linux, Reed’s friend had her set up with an LLC, started paperwork to become a non-profit, and set up the Women in Linux Meetup page.  The goal of the group is to introduce infrastructure newbies to Linux and other tech useful for those looking at infrastructure careers.  Most of her talks are very technical. “We talk about getting women and under-represented minorities into tech,” Reed said, “but those conversations revolve around teaching women to code.  They’re missing out on a huge market with cloud, security in general, embedded Linux.”  Along the way she started dispensing career advice during her meetups and manages a job board.
Jul 15, 2019
OpenFaaS Creator on the Success of Open Source's Community-Funding Model
In this latest episode of The New Stack Makers podcast, we sit down with Alex Ellis, creator of OpenFaaS, to discuss the latest update to his open source serverless platform, what this new concept "Serverless 2.0" means, and the difficulties of supporting an open source project. Ellis created OpenFaaS a few years back after wanting to extend the functionality offered by Amazon Web Services' function-as-a-service Lambda to any containerized computing environment, a feature that has since been emulated by other serverless offerings. The idea is that you can package not only your application, but all the supporting libraries and dependencies as well, so they can run as serverless. You are not limited to one cloud provider, or one language runtime.  "I wanted a way to combine my love with Docker with my love of coding," Ellis said. With serverless 2.0, "you can run any code, whether binary or an HTTP server, anyway you like — your laptop, on premises, on OpenShift, in the cloud," Ellis said.  Kubernetes provides the common substrate. Watch on YouTube:
Jul 11, 2019
The Continuous Delivery Foundation Gets a Reality Check
The Continuous Delivery Foundation (CDF) was created to help introduce processes, standards and other support and stewardship for DevOps teams that now face what some say is the Wild West of open source tools and platforms for deployments on Jenkins and coud native platforms. While there have been concerns expressed about potential overlap with the Cloud Native Computing Foundation (CNCF) — a sibling Linux Foundation-managed project — the concept is certainly attractive, especially for those teams that plan to or already rely on Jenkins, Jenkins X, Spinnaker and Tekton for their production pipelines. However, there is one catch: the CDF has yet to release any specifications and primitives after the initiative was announced a few months ago. During a podcast hosted by Alex Williams, The New Stack founder and editor in chief, questions were put to Dan Lorenc, a software engineer for Google and Kohsuke Kawaguchi, the CDF’s technical oversight committee (TOC) chair and CTO for CloudBees, about the CDF’s immediate plans, as well as what the oversight committee hopes to achieve.
Jul 10, 2019
What Makes Docker So Important
In this episode of The New Stack Makers, host Jack Wallen chats with two members of the Docker staff, engineer Christopher Crone and marketing specialist Jim Armstrong, about certain best practices (for both developers and enterprise users) when using Docker containers. Anyone from developers and enterprise users trusted with deploying containers will gain some insight into this agile technology. Out of the gate, the interview opens with a definition of containers and what makes this rising star technology so crucial to developers and important to businesses. But this isn’t a Wikipedia definition of a container, these definitions come from those who help create the technology charged with deployment of containers. According to Crone, “A container is a technology for isolating applications … you can start by running it on a physical machine or you can otherwise virtualize it … and finally there’s containers where you use kernel notions like namespaces to isolate processes inside the kernel.” Jim Armstrong adds, “Docker … created the tools (such as Docker Desktop) that took the underlying operating system parts … and made those tools easy to use.”
Jul 08, 2019
Leadership in the Open Source Community
When asked what makes a solid leader in today’s open source communities, the answer often varies depending on who you ask. In this podcast hosted by TNS Podcast Producer Kiran Oliver, the topic of leadership expanded beyond the basic, “What makes for a competent leader in today’s OSS community?” to encompass the ways in which we as a community can and should do to better help underrepresented minorities become leaders in open source. CNCF Director of Ecosystem Cheryl Hung, Microsoft Director of Open Source Initiatives Ashley McNamara, Aqua Security Technology Evangelist Liz Rice, and Two Sigma Engineer Leah Petersen all started their journeys in open source at different times, with very different goals in mind. Rice noted that, “For me, I was a developer for a long part of my career doing not open source software. At some point, more and more things, particularly in the infrastructure work and the distributed systems world were being done open source, and it just seemed like a natural progression. I don’t really remember ever making a conscious decision. Suddenly everything I was doing pretty much was in the open.” Watch on YouTube:
Jul 05, 2019
How to Build Open Source Sustainability
What takes an open source project from a hobby to international codebase that the world’s top companies rely on? How do you balance the wishes of the individual, creative contributor with that of corporate-backed finance and governance? How do you make the open source community a welcoming one? Open source sustainability and all these questions were on the table when The New Stack Editor in Chief Alex Williams sat down at our first Makers broadcast from Shanghai, China, at the Open Source Summit. For senior staff engineer at VMWare, Bryan Liles, this sustainability is all about the intersection of different open source projects within broader ecosystems that have a strong balance of governance and motivated community. Dan Kohn, executive director of the Cloud Native Computing Foundation (CNCF), says open source sustainability relies on commitment to continue building, supporting and stabilizing core infrastructure and critical libraries for important upstream dependencies. He says the whole purpose of CNCF is that, when organizations recognize there’s open source infrastructure that matters, there is a way to build a community that can financially and publicly support it moving forward. Watch on YouTube:
Jul 03, 2019
A Google Product Manager on Where Your Container Security Begins and Ends
One can reasonably assume container security will undergo many changes in the near term, especially considering the recent widely publicized security breaches (not to mention the ones we do not already know about). But Maya Kaczorowski, a Google product manager, begs to disagree. When it comes to responsibilities organizations share with cloud and tool providers, Kaczorowski, says the model isn't changing, per se. Instead, “people are becoming less and less worried about the pieces that they don't have to manage, or the pieces that they used to have to manage — but they are no simpler for whatever reason,” Kaczorowski said. Shared responsibilities, Google’s approach to container security and recently exposed vulnerabilities and other related themes were the subject of a podcast with Kaczorowski, recorded live at KubeCon + CloudNativeCon in Barcelona in May.
Jun 28, 2019
Kubernetes Co-Founders Field Hard Questions on Kubernetes’ Past, Present and Future
Kubernetes is not everything for everybody, as DevOps teams know. And while Kubernetes  can, of course, offer amazing power- and resource-savings and computing-performance advantages, the platform has also seen its share of controversy, such as during the Docker split in 2016. Many also have an opinion of what is right — and wrong — about Kubernetes. During this podcast recorded live at KubeCon + CloudNativeCon in Barcelona in May, The New Stack posed some of the harder questions about Kubernetes’ past and future to Kubernetes co-founders Tim Hockin, principal SW engineer, Kubernetes, GKE, and Google Cloud, and Craig McLuckie, vice president, VMware. who is one of Kubernetes creators.  The New Stack also solicited thoughts from Gabe Monroy, partner program manager, Microsoft, who is a lead product manager for containers on Microsoft Azure and described himself as  “one of the most engaged early community members. ”While the Kubernetes creators were certainly happy with the results from the outset, Hockin said its popularity was something “you could never have predicted.” “In terms of lessons learned, it’s not something you could have planned for, but then again, we could have tried,” Hockin said. Watch on YouTube:
Jun 27, 2019
Making Kafka Cloud Native
In this episode of The New Stake Makers, TC Currie is joined by Neha Narkhede, CTO and Co-founder of Confluent and one of the co-creators of Apache Kafka.  Narkhede has a passion for streaming data, and for the pasNeha Narkhede, CTO of Confluent and one of the developers of Apache Kafkat couple of years has been working on modernizing Apache Kafka to make it cloud native.With over 60% of the the Fortune 100 relying on Apache Kafka, the service has become both popular and entrenched.  But as cloud technology is expanding, some fundamental changes were necessary to make Apache Kafka truly cloud native. Kafka sits above the operation layer and below the application layer in the stack.  It lives in the data infrastructure layer alongside relational database and/or modern no-SQL databases, and along side data warehouses.  It provides a new foundation for data that can bring data from all those different variety of services in one place so you can consume it at a large scale, she said. “What we know about enterprises is they want to buy the whole car,” said Narkhede. So they took a year or so to build a cloud-native, fully managed service that developers can use in the public cloud.
Jun 26, 2019
The Cloud Native Computing Foundation's Technical Oversight Committee
Kubernetes, Prometheus, Envoy, containerd ... The list of projects managed by the Cloud Native Computing Foundation is quite extensive, and growing by the month it seems. But how does the CNCF manage its expansive collection of open source cloud native software projects? How does it decide when a project move from incubation to graduation. Many of these decisions are made by the CNCF's Technical Oversight Committee (TOC). We wanted to find out more about how the TOC operates. To this end, we invited the TOC chair (and Aqua Security Technology Evangelist) Liz Rice to appear on our newest episode of The New Stack Makers podcast, to discuss all things TOC. We invited Eduardo Silva, who is the core developer for one of the CNCF projects, Fluentd, a multi-platform open source log aggregator.  Silva, who is also a principle engineer for ARM, discussed his experience in agreeing to work with the CNCF. Last month, FluentD had "graduated," within the CNCF, moving up from "incubation status." Watch on YouTube:
Jun 25, 2019
Best Practices Across the DevSecOps Lifecycle
DevOps has been with us for several years now, and is becoming increasingly entrenched within the enterprise. Yet the speed and elevation that the practice offers can be at odds with an organization's security posture, which ensures that systems have no vulnerabilities and meet compliance — work that can take time to complete. Can a business do both? To help answer this question, we assembled a panel of experts at KubeCon + CloudNativeCon EU last month.  Our guests are: Dirk Herrmann, Principal Product Manager, Red Hat, John Morello, Chief Technology Officer, Twistlock, and Murugiah Souppaya, Computer Scientist, National Institute of Standards and Technology. Watch on YouTube:
Jun 24, 2019
Why Your Organization Cannot Live on Git Alone
The creation of Git by the principal developer behind the Linux kernel Linus Torvalds certainly qualified as a stroke of genius. But while Junio Hamano continues to do an excellent job of maintaining open source Git, organizations looking to make the jump to so-called agile development and deployment cycles must look beyond relying on a Git’s core version control and software repository capabilities. Call it growing pains, if you will — but the next stage in DevOps agility requires much, much more. This especially applies to DevOps teams looking to multiply the cadence of deployments with security embedded at the beginning of the cycle (yes, while easier said than done, it is possible).Getting there requires a rethinking of the traditional software development cycle. This involves doing the necessary so that as soon as code is stored on Git, the code is instantly integrated into the main production pipeline. How to make the jump past using Git mainly as a software repository for version control was the main subject of conversation with Ashish Kuthiala, director of product marketing, GitLab, for this edition of The New Stack Makers podcast recorded during the KubeCon + CloudNativeCon conference held in Barcelona at the end of May. Watch on YouTube:
Jun 21, 2019
How Service Meshes and Kubernetes Will Close Gap Between Speed and Security
We want to move fast — that's what agile software development and DevOps is all about — but how do we move fast without sacrificing security? Are we mistaking availability for security? This dichotomy and the challenge of security management has only become more severe as enterprises enable developers to release daily, and distributed systems and sophisticated attacks make it all much more complicated. Reuven Harrison, CTO and co-founder of Tufin Technologies, talks on The New Stack Makers podcast about what 16 years in enterprise security policy management looks like. Harrison said this security management has always begun with identifying business processes that enable efficient and effective security. It's just now there are thousands of security venders and hundreds of different tools to address cyber attacks. That's why he argues automation is key, yet security is still lagging in this area.
Jun 20, 2019
Rebuilding AI Toward a Feminist Alexa
Why is it every time I'm yelling at self-checkout tills or rolling my eyes at task-based AI, it's always by-default a female voice annoying me? Is that my internal bias against fellow women? Or is it just that I'm frustrated with the beginnings of tech, but all those AI beginners seem to be "feminine?" These are the thoughts that ran through my head as I was listening to Dr. Charlotte Webb's talk "Designing a Feminist Alexa: An Experiment in Feminist Conversation Design" at Skills Matter London's Beyond Tech conference. And it's what we explored when we spoke, following her talk, on this episode of The New Stack Makers. Webb is a co-founder of the Feminist Internet, a non-profit organization on a mission to advance internet equalities for women and other marginalized groups through creative and critical practice. The Feminist Internet blends art and design practices, critical thinking, and creative tech development together with pilot projects and soon AI consulting.
Jun 19, 2019
How Two High-Performance Computing Projects Got a Boost on Cloud Native
Building a simulation of the human heart. Pooling and crunching data from public transportation and other sources from around the world to determine travel distances and times. These are two projects Alfonso Santiago, researcher at the Barcelona Supercomputing Center and Charlie Davies, co-founder, technology and product director, iGeolise; are actively engaged in building. What they share in common is how they derive immense high-performance computing (HPC) resources on a cloud native platform (which Oracle offers). Santiago and Davies shared details about how HPC has helped to solve many of their respective projects’ struggles during a The New Stack Makers podcast hosted by Joab Jackson, managing editor, during KubeCon + CloudNativeCon in Barcelona. Also on hand was TJ Fontaine, a software engineer and consulting member of technical staff, for Oracle, who offered some context about Oracle’s role in these projects and in HPC on the cloud in general. Watch on YouTube:
Jun 18, 2019
CNCF, Docker Say They Are (Even More) Serious About Security
The fact that cloud native and container exploits are becoming more attractive targets for attackers as they grow in popularity is obvious. But as of late, some gaping security holes in both platforms have sparked even greater causes for concern. To wit, a security hole was recently revealed — with a sure-fire fix lacking at the time when this article was posted — that detailed how an attacker can gain root access to Docker container hosts. The vulnerability, similar in scope to an symlink-race attack, a SUSE security researcher revealed how the present vulnerability is applicable to any host associated with a Docker engine. Earlier this year, a Docker runtime exploit was revealed that exposed vulnerabilities in  Docker, Kubernetes' and Docker’s runC. It is always an easy bet to make that other Docker and cloud native vulnerabilities exist that have not yet been publicly revealed. And, needless to say, most attackers anyway are looking for easier doors to open — or, more accurately, doors opened for them — by running very easy-to-run password exploits. Watch on YouTube:
Jun 17, 2019
Pulumi CEO Cuts Through the Chafe, Describes Your Real Relationship with Kubernetes
During a podcast Alex Williams, founder and editor in chief of The New Stack hosted during the KubeCon + CloudNativeCon conference in Barcelona in May, Pulumi CEO Joe Duffy was on hand to discuss just what Pulumi does. He articulated how it serves as a popular way to deploy and manage infrastructure in a range of cloud and on-premise environments with a very wide range of programming languages. Not to say that Duffy’s description of Pulumi is not of interest — I can confirm it is — but what also make this podcast especially interesting is how he put developers’ and operations folks’ relationship with Kubernetes and multi-cloud environments into context. Watch on YouTube:
Jun 14, 2019
Container Security, Unverified Images, and Docker Vulnerabilities
Containers have only recently started to go mainstream as an important part of continuous integration and delivery (CICD). This is great for developer autonomy and individual ownership, but what about security? While Docker and Kubernetes have been the main drivers of this rapid container adoption, the ease at which these two orchestrators allow anyone to deploy code can leave security in peril. Does the fact that these are open-source platforms make it even more or less secure? Most importantly, how much do users understand about container security?This is some of what The New Stack Founder Alex Williams was asking when he sat down at DockerCon with Tianon Gravi, senior vice president of operations at InfoSiftr, and Noah Abrahams, Kubernetes engineer at Ticketmaster. At the end of May, the Docker Symlink-Race vulnerability was discovered in all versions of Docker container engines that offers an attacker a way to get to the host itself or any other containers managed by that host to not only read but modify the files. Abrahams sees security as something that falls on a spectrum of passive versus active versus retrospective. Watch on YouTube:
Jun 12, 2019
Corporate Open Source and the Grassroots Success of DevOps Days
How have open source communities changed over the years? Two decades ago, there were many open source projects, yet much of the code used in business still came from vendors. Those days, most all of the infrastructure — from the network stack to log analysis tools — is mostly open source. No longer is it only individual coders uploading their work, but the largest software companies are sharing their code as well. Some time over the past decade, the network effect kicked in and projects such as Linux or Kubernetes that were developed by communities around the world reached a level of sophistication that would be hard to watch even by the largest proprietary software vendor. Just ask Microsoft and Oracle, which both have been embracing open source for the past decade. In fact we did ask Microsoft and Oracle. For this newest episode of The New Stack Makers podcast, we pow-wowed with Oracle Principal Member of Technical Staff Karthik Gaekwad, Oracle Solutions Architect Kaslin Fields, and Principal Cloud Developer Advocate Microsoft Bridget Kromhout to discuss how to best build and maintain open source software communities today. The podcast was live-streamed last month from Kubecon + CloudNativeConEU, held last month in Barcelona. The secret to open source success? People. Lots of people, doing lots of things, not just coding. Watch on YouTube:
Jun 11, 2019
Tips for Installing a Service Mesh: Start with the Pain
On this episode of The New Stack Makers, TC Currie is joined by Zack Butcher, who has long been involved in and advocating for cloud engineering. He’s a founding engineer at Tetrate, and was an engineer on the Istio team at Google. She caught up with Butcher at the recent Service Mesh Days, where he led a four-hour training on installing & using Envoy, Istio and service meshes. The reason for choosing a service mesh is not connected to how many services you run, or how complicated your system is, Butcher said.  It’s: “I am having pain in a distributed system and I can’t really understand what’s going on.”
Jun 10, 2019
Microsoft's Chloe Condon On all Things Developer Advocacy
What is developer advocacy? Why is it so popular now? We sat down with Microsoft's Chloe Condon on this episode of The New Stack Makers to answer these, as well as how to add a touch of drama into your corporate tech job. Condon says that maybe job titles like hers — developer evangelist — are new, but this role has existed since there have been products marketed to engineers. Developer advocates tend to be more extroverted engineers, who have a tech background instead of just marketers that happen to work in tech. For her, the most important part of the role is the community, which is why she doesn't give a white board interview, but one question she asks all developer relations candidates — What communities are you currently involved in? These don't have to be running big conferences, but can be Meetups or even online communities. It shows you can build communities and you already have some.
Jun 07, 2019
How One of The Netherlands’ Largest Banks Got CI/CD
Wiebe de Roos, a CI/CD consultant and engineer for ABN Amro, one of The Netherlands largest banks with over 22,000 employees, joined the company when the bank was beginning its shift to CI/CD through its DevOps as well as DevSecOps. The reasons management decided its developer teams needed to make the shift included late deliveries and less-than-stellar innovation on the application front. “The teams were not really mature,” Roos said. Today, Roos says ABN Amro’s CI/CD processes underpinned by its DevOps and DevSecOps. The result: “Automation and compliance is now rolled out as part of the CI/CD processes to cope with the market changes,” Roos said.  “And now we see a big acceleration, because of course of containers, which are now also being adopted.” During this edition of The New Stack Makers podcast during the KubeCon + CloudNativeCon conference held in Barcelona at the end of May, Roos was joined by ABN Amro’s secure coding and AI team lead Dominik de Smit. They spoke with the host, Alex Williams, founder and editor and chief of The New Stack, about ABN Amro’s CI/CD, DevOps and DevSecOps journey. They also discussed the tools the development teams use, such as those Twistlock provides for containers and cloud native security, and how they have also played an essential role in meeting the real-world development, operational and security challenges they face. Watch on YouTube:
Jun 04, 2019
Oracle’s Vision of the Role of an SRE Today and Tomorrow
The role of the SRE in DevOps has become that much more crucial as software development covers that much more ground than in the past. Since becoming part of DevOps, SREs have been required to play a very active part throughout the production pipeline environment as well as during the post-deployment stage of software and application rollouts. When cloud native platforms and porting legacy systems to the cloud are added to the mix or deploying applications to on-premise and cloud environments simultaneously, the SRE’s responsibility becomes that much more critical. The SRE also must nimbly assume many of the tasks previously reserved for operations. While gone are the days when a single “operations guy” or team managed a data center, an SRE can still get that dreaded call or page at 3:00 AM when an applications crashes. But at the same time, as we see below, many of those operations-like tasks should become automated in the near future, so SREs can spend more time on what they usually like to do best: working directly with code development. Three SRE and engineering thought leaders from software giant and services provider Oracle obviously had a lot to say about the SRE’s role and DevOps tools at their disposal during a podcast hosted by Libby Clark, editorial director of The New Stack, during the KubeCon + CloudNativeCon conference held in Barcelona at the end of May. The podcasts guests from Oracle included: Dr. Jonathan Reeve, senior director, product management; Mickey Boxell, product manager, SRE; Timothy J. Fontaine, software engineer and consulting member of technical staff.
Jun 03, 2019
Why Open Source Developers Should Not Miss OSCON
O'Reilly’s OSCON’s scope this year will remain true to its seminal roots this year as one of the most far-reaching and comprehensive open source conferences of the year, its organizers say. Held July 15-18, 2019 in Portland, OR; OSCON, co-program chair Kelsey Hightower, a developer advocate at Google, described the conference as “the open source family reunion.” As a technologist, Hightower said he plans, among other things, to take advantage of the meet-and-greet and learning opportunities where “all the people who kind of started open source and set the principles of the foundation, all the way to the people who are kind of creating some of the newer projects, things that are on the edge” will be there.  “So, it is my chance to catch up with all the people you collaborate on GitHub or social media,” Hightower said. During a podcast hosted by Alex Williams, founder and editor-in-chief of The New Stack, both Hightower and fellow co-program chair Rachel Roumeliotis, vice president, content strategy at O'Reilly Media, who is one of many people who love conference venue in beautiful Portland, discussed both how OSCON will remain both true to its roots.
May 31, 2019
What’s Next for Service Meshes
Service meshes have emerged as not just as something nice to have, but today, as a quintessential must-have for microservices and Kubernetes management. Given the enormous complexity of these environments, service mesh infrastructure layers offer the management and observability required for cluster visibility and tracing, among other things, that organizations often live and die by. Among several open source options, Linkerd has emerged as a leading service mesh offering. But as William Morgan, CEO for Buoyant, which builds Linkerd, service meshes are more about solving a people problem when attempting to coordinate and management different developers’ work and collaborations. “I was an engineer in a previous life and a lot of the service mesh conversations that we have tend to be very engineering conversations around like well, the feature set and when you're going to support x and y. And in reality, what we found is that Linkerd is very good at solving what is actually a human problem, which is, especially as the company as a company or an organization grows, you have lots of people trying to do things at the same time,” Morgan said. “What Linkerd allows you to do is make the lives of developers easier, especially developers also platform owners, by moving a lot of the functionality that they would otherwise be responsible for down to the platform layer where they don't have to worry about it.”
May 29, 2019
Serverless, API Gateways and Challenges in Today’s Cloud Native World
New services and tools continue to emerge for cloud native deployments, vying for a place among what is already an immensely complex web of choices. During a podcast hosted by Alex Williams, founder and editor in chief of The New Stack, at KubeCon + CloudNativeCon in Barcelona, tools and goals by Oracle and Autom8.Network, which offers a decentralized function as a service (FaaS), were the main topics as a way to make serverless and other environments that much easier and reliaable for organizations to use. Podcast guests Maddie Patrichi, senior software developer for Oracle, and Gregg Altschul, co-founder and CTO, for Autom8.Network, offered their thoughts and described their projects.
May 28, 2019
A Conversation with the Co-Founder of WordPress on the Importance of Open Source
How was WordPress created? (That's, the open-source content management system, not, the for-profit hosting platform by Automattic.)At the end of 2002, b2/cafelog or simply B2, an open-source Web news and blogging tool, which generated pages dynamically from the contents of its MySQL database, was abandoned by its creator. Early 2003, Matt Mullenweg posted a couple paragraphs on his blog showing interest in forking that code and building something better. Mike Little was the only one to comment showing interest. And thus Mullenweg and Little became the co-founders of what would become known as WordPress.
May 20, 2019
Larry Peterson Identifies How Service Mesh can Help Telcos as They Move into Microservices
In this episode of The New Stack Makers, TC Currie is joined with industry veteran Larry Peterson, now CTO of the Open Networking Foundation (ONF) and Professor Emeritus at Princeton University.  Listeners might recognize his name as co-author of the seminal book Computer Networks: A Systems Approach, which is now open sourced, or as the Director of the PlanetLab Consortium. TC caught up with Dr. Peterson at the recent Service Mesh Days in San Francisco where he was interested in learning how service meshes might be able to help solve the telco industry’s problems as they move, in a slow-as-molasses sort of way, toward microservices architecture. The PlanetLab consortium combined with the ONF and network engineers are represented on the board by the CTOs of AT&T, Deutsche Telekom, and Comcast. Google is also on the board because it’s not just telco, but all network operators. All the ONF partners and their supply chains are are all interested re-organizing around a dis-aggregated solution, as they move to a more cloud-like architecture, said Peterson.
May 14, 2019
Building the Woke Web: Accessibility and Social Justice in Software Development
When we talk about accessibility on the Web, we often talk about can someone who is visually or dextrously impaired, but that's not the only bit of it. While meeting these legal accessibility requirements is important, we can't forget that the Web has systematically left groups of people behind, including the elderly, LGBTQ+, women, people still unconnected, and more — basically those that aren't the cis white men most commonly building and running the tech industry. In short, the most vulnerable people are kept from the potential of the Web. This is what we talked about and more when The New Stack Makers podcast spoke to BBC Software Engineer Olu Niyi-Awosusi leading up to her talk at this year's Afrotech Fest. First, the day job. Niyi-Awosusi's work at BBC — which aims to be the most accessible news website in the world — comes with two roles. She builds article webpages using React, and she is an accessibility champion. The latter is a voluntary but official role, probably unique to the BBC, tasked with keeping accessibility at the front of colleagues' minds.
May 13, 2019
How Empathy Will Make You a Better Developer
Atticus Finch, the wise country father and country lawyer literary character, in Harper Lee’s classic “To Kill a Mockingbird”, communicated one of the more timeless and poignant descriptions of what empathy means. Understanding another person’s point of view or plight, especially when it is removed from yours, requires one to “climb in his skin and walk around in it,” he says. Flash forward to today in this renaissance era in open stack development. While the act of understanding the “other” is critical in any context, empathy in the software development world is also especially important in a number of often surprisingly ways. Denise Yu, a senior software engineer at Pivotal, recently described in her The New Stack post “Why Empathy in Open Source Matters More Than You Think” just how broadly taking into account the wants and needs of others counts when dealing with colleagues, end-use software customers and people in general. Yu writes “Even without the financial motivations, empathy is something that we as product builders should care about because it is the right thing to do.” In a podcast hosted by The New Stack’s Joab Jackson, managing editor, at Cloud Foundry Summit North America last week in Philadelphia, Yu was able to continue her discussion on empathy and why it is so important in the software development sector. Jai Schniepp, product owner for cloud and Security at Liberty Mutual Insurance, also offered more details based on in-house practices and processes on why thinking of the other is critical.
May 08, 2019
Real Steps to Take to Go Beyond DevSecOps as a Concept
Those working in the developer and DevOps space have invariably heard of DevSecOps and, at the very least, know how it plays a critical role in the software delivery pipeline. But every organization is different and the tools and mechanisms for software delivery very accordingly. And once you throw into the mix the hundreds of different CI/CD tools available today, as well as the challenges associated with more-modern platforms, such as container and microservices deployments, the challenges of security and DevSecOps become that much more dauting — and in many cases, confusing. “A lot of people don’t really know what [DevSecOps] entails. Not so much that they don’t understand the concept — they get DevOps and they know how to implement it — but I think folks are still a little skittish about DevSecOps and how to implement it,” Sonya Koptyev, director of product marketing and evangelism for Twistlock, said.
May 06, 2019
One SRE’s Journey When Cloud Infrastructures Became What They are Today
InfluxData is a sponsor of The New Stack. When Gianluca Arbezzano, now a site reliability engineer (SRE) for InfluxData, first approached Chris Churilo, director of product marketing, over two years ago, what an SRE was and did was a largely nebulous concept for him.”I was looking at myself more as a DevOps person, but I was never a systems administration,” Arbezzano said. “I always wrote code and automated [applications and deployments].” Initially, when Arbezzano reached out to InfluxData, “he said he was a fan of InfluxDB and we just hit it off and I said ‘we’ve got to do something together,’ Churilo said. Arbezzano then grew into the role from there and has since been instrumental in helping InfluxData in a number of ways, including helping to automate InfluxCloud processes and making sure customer deployments remain on track. In this latest episode of The New Stack Makers podcast, Arbezzano and Churilo discussed what is like to be an SRE today and how it all fits together in InfluxData’s quest to help customers improve observability and analytics and automation with its time series platform.
May 01, 2019
A Pivotal Craftsperson on Software Development Today
Pivotal’s Corey Innis’ job function, on paper at least, falls under the traditional category of software developer or engineer. Indeed, their “official” business title is staff software engineer at Pivotal. But instead, Innis says they have claimed another job title that is more reflective of what they actually do. Innis’ true title, they say, is “software craftsperson.” “At really healthy software and information technology organizations, the work is really much more like that of a craftsman than it is as an engineer,” Innis said. “I’m also really interested in diversity in the workplace, including gender diversity, so I claimed ‘person’ instead of 'craftsman,' as in 'craftsperson.' So, that’s where that’s coming from.” In this latest episode of The New Stack Makers podcast, Innis described how software development and culture have evolved over the course of his career that began in the bust days of the 1990s. Over the past two decades, coding and software engineering have also certainly evolved into a new culture and mindset — much of which DevOps and agile development have fostered — that, at the end of the day, reflect a more craftsperson collective mindset.
Apr 30, 2019
How Cloud Foundry Has Cast its Net Wide
Dieu Cao, director of product management at Pivotal Software, and the chair for the Cloud Foundry project management committee (PMC), says she was “at the right place at the right time” when her involvement with Cloud Foundry began. She had been directly involved with Pivotal before it became a company when Greenplum had contracted with Pivotal Labs. “I like to say that project went so well, that we decided to buy Pivotal Labs,” Cao said. After Pivotal became a separate company in 2013, Cao went on maternity leave in 2014. When she returned, Cao said her projects had changed. “I was looking for something to do,” Cao said. “Cloud Foundry was one of the projects that came into the Pivotal initiative. I’ve also been very product-oriented and I was in the right place at the right time. Initially, she became the project manager for the runtime team — which has now exploded from one to about 20 teams. After serving as the Runtime PMC Lead in the Cloud Foundry, she recently became the Cloud Foundry PMC chair. The Cloud Foundry Foundation has certainly changed during the past five years. Its evolution and exciting developments were the topic of a podcast hosted by The New Stack’s Joab Jackson, managing editor, at Cloud Foundry Summit North America last week in Philadelphia,
Apr 29, 2019
Ramin Keene of Fuzzbox on Experimenting in Production
On this episode of The New Stack Makers, TC Currie is joined by Ramin Keene, CEO & Founder, Fuzzbox a brand new company that makes it safe to experiment in production.  She caught up with him at the LaunchDarkly Trajectory convention in Oakland, California where he ended his talk with the question “If it were completely safe to experiment in production, why wouldn’t you?” Keene said he’s had to make a shift that is common across the industry where he used to be able to know his company’s entire stack and knew exactly what to do to fix it.  But with the growth and addition of complexity, he’s now about three levels removed from what the engineers are doing.
Apr 24, 2019
A Brief History of GraphQL with Lee Byron
On this episode of The New Stack Makers, TC Currie is joined by Lee Byron, the developer of GraphQL at Facebook and now manager of the web engineering team at the investment app Robinhood.  He also is a founder of the GraphQL Foundation, a neutral place for the GraphQL community to support the expansion of GraphQL and surrounding ecosystems, whose launch last November was covered by The New Stack.  Facebook’s mission when Byron joined in 2008 was to “map the social graph.” After that was complete, they moved on to new missions and GraphQL was developed in 2012 in response to the need to move Facebook onto mobile devices.  Facebook was originally designed on client-server architecture, and they clearly needed a native mobile data platform. By 2015, the React open source community gained traction and held their first conference.  The expanding use in the open source community, said Byron, led to the necessity to rebuild GraphQL from the ground up.
Apr 23, 2019
The Evolution Of APIs: Past And Present
APIs have certainly evolved beyond the first application programming interfaces (APIs) of the late 1960s to become the focal point of software development today. But during the past three to four years, APIs have also evolved to become fully integrated with DevOps and front- and back-end development. Among the benefits APIs offer, well-developed APIs serve integral role allowing organizations to realize their business goals more efficiently and rapidly.And APIs continue to evolve, of course. Beerinder Rodey, senior product manager at TIBCO Software who works with the company’s Mashery API management product, discussed APIs’ recent developments with The New Stack’s Joab Jackson, managing editor, at the Cloud Foundry Summit North America in Philadelphia. Four or five years ago, for example, API management was more focused on distribution, Rodey said. Then, developers often would say “‘I’ve got APIs and I just need to be able to get them out to my consumers. I want to maybe put them in some packages and make sure they’re discoverable and get some docks in front of them,’” Beerinder said. “[It was] mostly a distribution layer.”
Apr 22, 2019
Cloud Foundry's CTO on What Partnerships Mean Today for Open Source
“Building bridges” and forging partnerships,” at face value, might seem like marketing speak. But put into context, these  concepts can mean a lot. To wit, during a podcast hosted by The New Stack’s Joab Jackson, managing editor, at the Cloud Foundry Summit North America last week in Philadelphia  Cloud Foundry CTO Chip Childers had a lot to say.  Among other things, he articulated how Cloud Foundry has worked to remove silos and boost collaboration for the development of new cloud-native technologies for the open source community during the past year.Indeed, Childers explained how the theme of the show is building the future. “That really applies in two ways: it applies, of course, — and I think, we spend a lot of time talking about this — to the contributors that build the Cloud Foundry platform. But it also equally applies to the end users, Because the whole reason why companies like American Airlines or Charles Schwab or Comcast or DICK’S Sporting Goods...are really focused on cloud native platforms,” Childers said. “They’re really trying to use software as a competitive advantage in the market that’s extremely technology centric now. You know, every markets becomes technology-centric. So, they’re building the futures of their companies using these technologies, using these open source platforms that they can build off of, right? So dual meaning.”
Apr 18, 2019
How Service Meshes Found a Former Space Dust Researcher
Very early in his career as a student, Andrew Jenkins was studying space dust and other payloads for the U.S. Laboratory for Atmospheric and Space Physics as part of a NASA contract. It was there while working on communication protocols “almost from the physical layer” that he began to shift his attention to the software side. Monitoring, observability, logging and other capabilities that are increasingly essential for software production pipelines today could have already been put to use over 15 years ago when Jenkins was working for NASA. However, at that time, service meshes had yet to be developed — while Kubernetes, microservices and even DevOps were yet to come as well. After working as a graduate research assistant developing software for the International Space Station at the University of Colorado Boulder, Jenkins continued to shift “further and further up into the software side of things.” He began to see, after joining F5 Networks in 2013, how platforms could be used for application deliveries of load balancing, security and other tasks for cloud applications. By the time Aspen Mesh was formed in 2017 as a spinoff from F5, Jenkins had begun to develop true service mesh platforms to manage data traffic as part of a shift to Kubernetes clusters and the service-to-service communications in microservices. In other words, it is possible to say service meshes found Jenkins.
Apr 16, 2019
Cloud Foundry Summit’s Theme of Interoperability and Eirini
A major theme at Cloud Foundry Summit North America earlier this month in Philadelphia was interoperability and its importance to Cloud Foundry — as the  core functional tests validating Cloud Foundry Application Runtime releases for Project Eirini begin. Speaking to this during a podcast hosted by The New Stack’s Alex Williams, founder and editor-in-chief, were: Dr. Xiujiao Gao, client lead and cloud engineer at Stark & Wayne; Bernd Krannich, technical lead, Cloud Foundry SAP; and Julian Friedman, Cloud Foundry project lead, IBM. As part of Cloud Foundry’s continued push to improve interoperability, Eirini was created with this goal in mind for scheduling for the Cloud Foundry Application Runtime. As Cloud Foundry notes, organizations can choose to adopt Diego/Garden or Kubernetes to orchestrate to application container instances. Watch on YouTube:
Apr 15, 2019
Machine Learning AI Finds its Place in the Production Pipeline
Machine learning-aided artificial intelligence (AI) might one day be able to eventually emulate the intelligence of hundreds or even thousands of human brains simultaneously, in such a way that human input would be obsolete throughout the software development cycle. In theory, a single system could not only replace a hundred-member DevOps teams, but assume the roles and tasks performed by hundreds of similar-sized DevOps teams. You could easily imagine, like taxi and truck drivers, the days of the software developer are numbered — except they really are not.As far as thinking outside of the box or finding ways to write elegant and creative code or when chaos occurs, AI is largely lost. This but only partially explains why machine-learning taught computers may never be able to create art or write poetry to the extend a human can, while the mass replacement of men and women in the software development and operations should thus not happen anytime soon.But what machine learning is already good at, Nick Durkin, field CTO for Harness said during this episode of The New Stack Maker podcast, is assuming a lot of the more data-crunching and mundane tasks in the production and deployment pipelines.
Apr 10, 2019
Defensive Strategies for Your Stack
On today’s episode of The New Stack Makers, TC Currie is joined by Sean Armstrong, VP of Products at AppNeta, a SaaS company providing actionable, end-to-end network performance monitoring for their customers.   “The performance of your application,” Armstrong said, “is subject to how well the customer runs their own network & how well the internet between you and your customer is actually working. So you could get blamed for poor performance that’s completely outside of your control, and they use AppNeta to diagnose and troubleshoot those problems. ”With the explosion of SaaS companies and APIs providing building blocks for the modern IT stack, many if not most of its components are outside of their control.  In addition, with the rise of remote working, it’s likely your users are no longer in a central office.   Traditional monitoring is about making sure that your devices are healthy.  But you simply can’t do that when you don’t own the devices. “You need visibility after your firewall,” he said.
Apr 09, 2019
Why Containers Are Sweet Targets for Ransomware Attacks
Ransomware and other attacks are becoming increasingly common, as black hats discover how cloud native and other newer platforms can serve as softish targets. With the recently revealed Docker runtime exploit as an example of what can go terribly wrong, the pressure is obviously on security providers to stay ahead of the game — but finding the right solution for this new world of computer protection can mean the difference between a thriving architecture, or in the worst case, a complete shutdown of an organization’s operations. What to look for in the way of security solutions for cloud native, as well as serverless and more mature platforms was the main subject in this episode of The New Stack Makers podcast with Neil Carpenter, a solutions architect for Twistlock, hosted by Alex Williams, founder and editor-in-chief of The New Stack.
Apr 04, 2019
How to Begin Your Journey as a Contributor to the Linux Kernel
It is safe to assume that contributing patches and updates to the Linux kernel is something beneficial to do — regardless of what you do or where you are in your career. For some, it might just be a diversion from their lives as a full-time software developer. For others, learning how to design and apply patches can even serve as one of the ways to enter the field of computing, even if you are 16 or are as old as 60. You might have spent the past 10 years backpacking around Asia or working as a golf instructor. In any case, learning how to contribute means you will be furthering the continued expansion of Linux, as well to that common good of the open source community. During the latest episode of The New Stack Makers podcast hosted by Alex Williams, founder and editor-in-chief of The New Stack recorded during the Open Source Leadership Summit, Shuah Khan, a Linux Fellow, at the The Linux Foundation described what it takes to get starred on your journey as a contributor to the Linux kernel.
Apr 02, 2019
What 200 Software Developers Had to Say about ‘Remaking the World’
If you are working in software development on any level, you are invariably part of a collective effort that is having an unprecedented impact on society today  — whether you realize it or not. It is sometimes easy to forget that the underlying infrastructure and code for the apps and software that play a role in so many facets of our life involved, at some point, a human somewhere in the world going through the toil and often pain of writing code — and enjoying those occasional “aha” moments that come with bursts of creativity and just building stuff. The momentum of the open source movement, the resulting explosion of affordable and available platforms and tools  and the availability of new technologies, including but not limited to cloud-native, Kubernetes and microservices platforms have also played, of course, a major role. As Clive Thompson, a contributing writer for the “New York Times Magazine” and “Wired,” described in this The New Stack Makers podcast and in his book  “Coders: The Making of a New Tribe and the Remaking of the World,” you, as a software engineer or coder, are taking part in something directly or indirectly that has a far-reaching impact on the world we live in today. Based on interviews with over 200 coders, he also discusses about how his book puts software development into its historical context and addresses some of the problems in today’s industry, such as gender, racial and sexual orientation biases — and what can be done about it.
Apr 01, 2019
What Could Have Gone Wrong Before containerd
Things could have gone horribly wrong. Docker was already the de facto standard when Kubernetes adoption was starting to begin. Docker was also backing its own Swarm orchestrator. The need for an industry standard for container runtime was apparent. This lead to the creation and subsequent graduation in February of containerd within the Cloud Native Computing Foundation, joining the ranks of Kubernetes, Prometheus, Envoy and CoreDNS. “It’s containerd not just being creative but its donation of the CNCF was part of answering that call for kind of a stable boring core runtime that would stay underneath Kubernetes and have the right lifecycle support — to not cause those frictions between Kubernetes just wanting a stable layer that just runs containers without anything else,” Phil Estes, a distinguished engineer and CTO for Container and Linux OS Architecture Strategy for the IBM Watson and Cloud Platform division.
Mar 26, 2019
The Certainties About Your Job as an SRE
Site reliability engineers (SREs) are tightly woven into DevOps today. They also provide a changing and critical role in deployments on cloud native platforms and microservices deployments. But as a job description and function, an SRE position and role is often described  incorrectly — in that way, the definition of an SRE can mean many different things, depending on whom you talk to. And yet, SREs do share some common responsibilities in DevOps, especially in cloud native environments where the roles of development and operations are often very different compared to those for traditional monolithic and on-premise  infrastructures. In this episode of The New Stack Makers podcast Steve Herrod, managing director at General Catalyst,  expressed this truism: “One thing I would characterize most SREs by are that they are great with writing automation and scripts and using the tools themselves to do something custom In their environment.
Mar 25, 2019
'Genius Can Be Found Anywhere,' Techtonic Group's Heather Terenzio Explains
In this episode of The New Stack Makers,  TC Currie is joined today by Heather Terenzio, cofounder and CEO of  Boulder-based Techtonic Group, which was named “2017 Innovative Company of the Year” by the Colorado Legislature for their unique, outsourced apprenticeship program.  “Genius can come from anywhere,” said Terenzio, cofounder and CEO.  It turns out, she said, that once you remove barriers to employment, the top candidates for their apprenticeship program are people who come from groups currently underrepresented in the tech industry.  Unlike expensive college degrees or code schools, the Techtonic apprentices are fully paid while they learn.  Techtonic’s innovative apprenticeship program is the first-ever, Department of Labor (DOL)-registered Software Developer Apprenticeship program in the United States.  Terenzio started the program because she came into coding from civil engineering. "I realized that people from any background can learn to code.  It’s just a matter of screening for the right aptitudes," she said.
Mar 20, 2019
Unlocking the Value of AI at Scale, with Jack Norris, SVP at MapR
“It’s not who has the most data who wins, it’s who is able to act most quickly,” said Jack Norris, Senior Vice President, Data and Applications at MapR.  “Its about the data agility, being able to see what the data is telling you and being able to act appropriately.” In this episode of The New Stack Makers, TC Currie is joined by Jack Norris, Senior Vice President, Data and Applications at MapR a leading dataware firm.  Norris shares wisdom from a mashup of two of his recent talks: “Unlocking Artificial Intelligence (AI) Value at Scale” and "Three Problems, Three Myths, Three Realities.” It’s not just using AI to plumb historical or accumulated data, he said, but there’s a performance aspect of how one injects performance into a business operation.  The point of operationalizing AI is being able to understand the context of what is going on at a speed that you can actually influence the event.  For customer engagement, that’s interacting with the customer on the web, or with security it’s identifying a fraudulent transaction before it is completed.
Mar 19, 2019
The Great Security Shift to the Left
An organization may have made the great leap of integrating previously siloed teams in its software development and deployment processes by adopting DevOps practices. And for some security teams, while that scenario may even be the case, security code integration and processes is similar to a tennis match: the developers add the code, which is then volleyed over to the security team before sending the now-securitized code back to the developers who then send it back to security again for a final check. Or worse still, the security team does give its input until just before deployment, creating potential bottlenecks when getting the security right takes longer than expected. (And even worse still, of course, apps are shipped with glaring security holes and are only patched after a major breach). Call it an example of DevOps growing pains if you will, but the need very often exists for security to “shift left” in continuous integration/continuous delivery (CI/CD) processes, Sonya Koptyev, director of evangelism at Twistlock, said  in this episode of The New Stack Makers podcast hosted by Alex Williams, founder and editor-in-chief of The New Stack.
Mar 13, 2019
CI/CD Gets Standardization and Governance
Kubernetes, microservices and the advent of cloud native deployments have created a Renaissance era in computing. As developers write and deploy code as part of continuous integration and continuous delivery (CI/CD) production processes, an explosion of tools has emerged for CI/CD processes, often targeted for cloud native deployments. “Basically, when we all started looking at microservices as a possible paradigm of development, we needed to learn how to operationalize them,” Priyanka Sharma, director of alliances at GitLab and a member of the governing board at the Cloud Native Computing Foundation (CNCF), said. “That was something new for all of us. And from a very good place, a lot of technology came out, whether it's open source projects or vendors who are going to help us with every niche problem we were going to face.”
Mar 12, 2019
Twistlock Brings Container-Native Security to VMs
Many traditional security software providers have followed the gold rush to offer solutions for cloud native deployments. But finding a vendor that both meets the technology challenges associated with Kubernetes and microservices and offers a good fit for an organization’s specific needs can be a challenge — even while there has been a near explosion in purported solutions on offer that promise to offer “an exact fit.” However, the security needs of virtual machines (VMs), while more mature as a technology, do not necessarily get the attention they deserve from third-party software security providers. The result is that organizations struggle to find security solution for VMs as well as for what is required for Kubernetes and microservices running on cloud-native platforms and integrated with service meshes. “One of the frustrations that a lot of customers have expressed to us is that the traditional market for VM security is really a market that’s been defined by taking legacy technologies that were built for on-premises datacenters and traditional kind of server datacenter endpoint protection,” John Morello, CTO of Twistlock, said. “They are just kind of jamming that into a new marketing term, a new model and selling that as some sort of cloud-security product. But those products don’t really work well when you think about the way that people operate VMs in these modern stacks.”
Mar 05, 2019
Removing What You Hate from Software Development
You likely know you are in a great place if you are a software developer these days. The explosion of opportunities is largely based on the premise that practically any competitive organization today, regardless of what it does, is a software company that relies on the DevOps team to create and deploy the underlying platform on which the business model is based. But part of this API-centric revolution has emerged thanks to new programming tools, technologies and practices. These include, of course, Kubernetes,  microservices and cloud-native deployments, “fail fast, fail often” philosophies and other practices brought to the open source forefront by the likes of Netflix and Google. But as a developer today who loves to program and code, some, if not much, of the work can be unrelated to applying your skills and creativity to solving problems with code. You might instead find yourself struggling with more mundane tools and practices that might necessitate deployments to, for example, cloud-native platforms. Unfortunately, much of the job has to do with working with YAML and shell scripts, creating spaces and file names, etc. and devoting time and energy to “ all of those things that has to do with getting your code running that actually has nothing to do with code,” Gene Kim, co-author of the seminal and still very timely books “The Phoenix Project” and “The DevOps Handbook” and advisor to Atomist, which offers a software-delivery platform for cloud-native platforms.
Mar 04, 2019
Dr. Ayesha Khanna, CEO and founder of on Alleviating the Fear of AI
In this episode of The New Stack Makers, TC Currie is joined by Dr. Ayesha Khanna, Co-Founder and CEO of ADDO AI, an artificial intelligence solutions firm and incubator. Forbes named her one of south east Asia’s groundbreaking female entrepreneurs. She has been a strategic advisor on artificial intelligence, smart cities and fin-tech to leading corporations and governments around the globe. Her bio is too extensive to encapsulate in a brief introduction, but she brings both a depth and vision to all she does. She is also the Founder of 21C GIRLS, a charity that delivers free coding and artificial intelligence classes to girls in Singapore and finds time to be an advisor to the startups Octa (a chatbot for young travelers) and Arro (a delivery robot for sports). In this wide-ranging conversation, Khanna talks about the purpose of Artificial Intelligence (AI), harnessing the creativity in the rapidly-expanding middle class in Asia flowing into cities, Mobility as a Service is the wave of the future, and what Smart Cities, or even Smart Nations are and how they could be made a reality.
Feb 27, 2019
Masha Sedova Explains how Elevate Security’s game Hacker’s Mind Teaches Security
Joining TC Currie for this episode of The New Stack Makers is Masha Sedova, co-founder and CPO of Elevate Security, one of this year’s winner of CloudNOW’s Top Women in Cloud Innovation award, and creator of the game Hacker’s Mind. “It doesn’t matter what people know, it matters what they do,” said Sedova. "We’ve done a good job of telling people that they need to be concerned about security, but we haven’t told them what they need to do about it."  So engineers across tech are uncomfortably numb.  They’re concerned, she said, but un-empowered. After seeing really boring (and totally ineffective) security training, she and co-founder Robert Fly decided to focus on what they call people-powered security.  With the explosion  CI/CD pipelines, so much automation is taking place in the areas of QA and testing but security remains one of the last holdouts for integration into the pipeline.
Feb 25, 2019
War Stories About Edge Computing on Kubernetes
Edge computing on Kubernetes is emerging as a powerful way to share, distribute and manage data on a massive scale in ways that cloud or on-premise deployments cannot necessarily provide. Libby Clark, editorial director of The New Stack, hosted a podcast from During a podcast from Kubecon + CloudNativeCon in Seattle,  in Seattle about some of the challenges involved.On hand to discuss their projects and goals working with Kubernetes for edge-computing deployments were: Mike Milinkovich, executive director, the Eclipse Foundation; Kevin Xu, general manager, global strategy and operations, PingCAP; Derek Collison, creator of NATS and founder of a company called Synadia Communications. For the Eclipse Foundation, one of the main challenges is managing the interaction between edge and cloud for IoT gateways constructs or edge gateways, Milinkovich said. The Eclipse Foundation is also working with CNCF, Red Hat, Huawei and others and has co-created an IoT/edge working group within Kubernetes to focus on driving requirements from the edge into Kubernetes projects. Watch on YouTube:
Feb 21, 2019
How ‘Secure’ Your Cloud Native Can Be
Security for cloud-native deployments can certainly vary, depending on the organization, as well as different project groups. Serving as a guidepost, Working Group: Secure Access for Everyone (SAFE) was created to facilitate ”collaboration to discover and produce resources which enable secure access, policy control and safety for operators, administrators, developers  and end-users across the cloud native ecosystem,” according to the GitHub description. In that way, SAFE’s founders have envisioned a set of tools for  cloud native operators, administrators and developers, consisting of a system security architecture, a common vocabulary and libraries. SAFE’s potential and what cloud native security involves in general were discussed during a podcast Alex Williams, founder and editor-in-chief of The New Stack, recently hosted at KubeCon + CloudNativeCon in Seattle. The guests included: Ignasi Barrera, founding engineer, Tetrate; Liz Rice, technology evangelist, Aqua Security; and Sarah Allen, technical lead and manager, Google Cloud and SAFE WG chair. Watch on YouTube:
Feb 20, 2019
Explaining Explainable AI: Camille Eddy on Looking into the Black Box
In this episode of The New Stack Makers, TC Currie chats with Camille Eddy, whose interest in Explainable AI (XAI) started during an internship on advanced robotics at Hewlett Packard.  It’s also where she became concerned about the effect of the lack of diversity in social robots. Her talk “Recognizing Cultural Bias in AI,” given at the 2018 Open Source Conference started with this question:  “How could something as unchanging as the color of a person’s skin prevent them from being able to enjoy any product I create.” When we think about how we live and going around interacting with technology, Eddy said, we don’t always think of the interactions of other people. For example, the famous epic fail of a hand soap dispenser at Facebook HQ not dispensing soap to a black hand because it hadn’t been calibrated to see that skin color.
Feb 18, 2019
The Changing Face of APM
Are you simply "monitoring" your application or have you graduated, as some may imply, to "observability"? Is "observability" actually the evolutionary successor to "monitoring", or is it merely a rebranding of nomenclature? And how has monitoring (or observability) changed in this new world of microservices and serverless architectures? This week on The New Stack Makers, Alex Williams, founder and editor-in-chief of The New Stack, is joined by co-host Bradley Rydzewski, co-founder at, and guest JD Trask, co-founder & CEO of Raygun, to discuss the continuing evolution of application performance management (APM) beyond changing terminology - though they touch on that a little bit too. According to Trask, one of the primary changes that has occurred in the world of APM has been the amount of available compute and the resulting capabilities available to APM users.
Feb 15, 2019
Plastic SCM Mergebots: Version Control for CI/CD
In this episode of The New Stack Makers podcast, we speak with Pablo Santos, chief engineer of Plastic SCM, a company he founded in 2005, just before the tech explosion that gave us Git, GitHub, Dropbox, and, lest we forget, the iPhone. In many ways, Santos was ahead of his time. At a time when companies like Microsoft released software updates every two years, his design of a software system that updated three or four times a week was so revolutionary, they had to hide it from their corporate clients, by providing branded updates once a year. Once the industry started moving toward continuous delivery, or at least a 'delivery-more-often' model, the company's customers wanted to know how Plastics accomplished such magic.  So the company bundled its software into a proprietary platform. PlasticSCM benefited greatly from Git’s popularity, acknowledged Santos.
Feb 14, 2019
Eliminate the Stress of Deployment with LaunchDarkly's Feature Flags
Edith Harbaugh is CEO and co-founder of LaunchDarkly.  The company provides feature flagging for CI/CD pipelines and currently serves 100 billion features a day.  She’s the c0-host of a podcast covering software trends called To Be Continuous, a sponsor of the Test in Production Meetup, and also one of this year’s winner of the Top Women in Cloud Innovation award. “We didn’t create feature flags,” she said. “We just made them easy and enable the workflow around it.” Deployment is pushing coding out to production servers and release. Feature flags separate deployment into pieces and allow you to have very fine-grained control.  At its most simple, you can release a feature into production, but it has a kills switch so you can instantly roll back.
Feb 11, 2019
Conquering the Terror of Cloud Native Monitoring
One of the biggest concerns when deploying at scale is knowing whether your organization will be ready to effectively monitor what is not working, as well as being able to detect problem areas before they begin to cause real pain. As organizations begin to deploy to cloud native platforms, making sure that monitoring capabilities can make the shift is an ever greater concerns for many. What can be done to conquer the fears associated with monitoring for cloud native, as well as deployments for on-premise platforms, were among the subjects discussed during a podcast with John-Daniel Trask, co-founder and CEO of Raygun, and Chris Johnson co-founder and CTO of Hyperfish, hosted by Alex Williams, founder and editor-in-chief of The New Stack.
Feb 07, 2019
What Open Source Really Means Today
The state of open source over the course of the past few decades has certainly changed. But IBM”s purchase of Red Hat and the evolution of service-oriented business models that have emerged more recent]y not withstanding, open source’s original spirit of sharing remains intact — while the extent to which that is the case remains a subject of debate. What open source really means today and how it has evolved were major themes of a podcast Alex Williams, founder and editor-in-chief of The New Stack, recently hosted at KubeCon + CloudNativeCon in Seattle. Among the open source thought leaders on hand to offer their observations were: - Alex Ellis, Senior Staff Engineer (open source), VMware; - Jason Dobies, Principal Technical Marketing Manager, Red Hat; - Ed Warnicke, Distinguished Consulting Engineer, Cisco Systems and Technical Steering Committee chair, - Heather Kirksey, Vice President, Community and Ecosystem, The Linux Foundation Watch on YouTube:
Feb 06, 2019
The Must-Haves for Making the Cloud Native Shift
The IT industry’s collective shift to cloud native remains, amid the hype, in the early stages. While among those organizations that have made the jump, the need to find the right tools to untangle the enormous complexity involved becomes immediately — and painfully — obvious. The emergence of service meshes to help make sense of it all are thus increasingly seen by DevOps teams as essential tool, instead of just another tool on the long list of nice-to-have options on offer today for Kubernetes and microservices. Often described as GitOps, another key enabler for cloud native is empowering developers with the ability to easily, quickly, and ideally, seamlessly make updates to code running on Kubernetes and microservices far to the left in the production pipeline. Monitoring and observability throughout the process, are of course, essential. These and other themes were discussing during a podcast Alex Williams, founder and editor-in-chief of The New Stack, recently hosted at KubeCon + CloudNativeCon in Seattle with Alexis Richardson, CEO of Weaveworks and Andrew Clay Shafer, senior director of technology at Pivotal. Watch on YouTube:
Feb 05, 2019
Cloud Native DevOps with JenkinsX
The road to streamlining CI/CD through DevOps in the shift to cloud native is hard — and can be fraught with peril. That, of course, is the challenge — while the potential rewards are significant, indeed. Automating all of that (an essential part of DevOps) set the stage for Jenkins to help streamline CI/CD processes, which represents another subset challenge. While remaining essential for many organizations’ development processes, Jenkins is notoriously difficult to master and manage, especially as projects are scaled. (This actually spells opportunities for those who can serve as in-house Jenkins experts of sorts, but such a specialty, in many ways, goes against the spirit of DevOps.) Now, as we enter the world of Cloud Native, extending Jenkins to new platforms, as well as CI/CD processes that may have worked reasonably well for monolithic deployments in the past, adds yet another technical challenge. Thus enters the utility of Jenkins X, which serves as tool to help standardize how to integrate CI and CD and Kubernetes. The idea is also to allow organizations to use their own source code while CloudBees’ Jenkins X automates the process as it is ported to cloud native environments. As part of “The New Stack Guide to Cloud Native DevOps” ebook podcast series, some of CloudBees’ key team members were on hand to discuss how Jenkins X, CI/CD and DevOps all elegantly fit together in today’s cloud native world.
Feb 04, 2019
Filling in the Dev and Ops Gap in Cloud Native Deployments
It’s great being a developer these days considering, among other things, the tremendous opportunities on offer in the cloud native space. But the race to get there when deploying code and applications can be, of course, fraught with challenges. Among them are how organizations are often forced to rethink the development and operations roles. Also, many developers are sometimes challenged by lacking the tools needed to port code they create with the high-powered languages they have mastered to the cloud, whether for Kubernetes, microservices or serverless platforms. As part of our upcoming EBook 'The New Stack Guide to Cloud Native DevOps' podcast series, Luke Hoban, CTO of Pulumi, spoke about, among other things, how to better unify dev and ops with general purpose programming languages and tools on offer to help make that happen.
Feb 01, 2019
IT is Dead. Long Live IT says Nutanix CIO Wendy Pfeiffer
Wendy Pfeiffer routinely lands on the “most powerful women in tech” lists, and is currently CIO of Nutanix.  The cloud provider lets enterprise companies create a hybrid cloud environment, allowing workloads to be run across public and private clouds, using whichever infrastructure that makes the most sense technologically.  Traditionally, on-premise stacks can be heavily fire-walled, but scaling is usually neither easy nor cost effective.  In the public cloud, they can scale with a more flexible operating system and take advantage of seemingly infinite capacity. Nutanix pioneered  hyperconverged infrastructure (HCI) technology, which is an operating system that addresses all of the technology stack layers (storage, compute, area networking).  On HCI, as workloads dynamically have access to each of the stack layers as they run HCI allows a company to build out infrastructure knowing they will be able to scale each layer as needed, creating the scalability of a public cloud while keeping most of their infrastructure on premise.
Jan 31, 2019
A Day in The Life of a Star Rancher Developer
What becomes very apparent when speaking with Rajashree Mandaogane, a software engineer for Rancher, is that she really enjoys coding and software development. While whether developers find their work “fun” or not is important and how much the fun factor counts for success is a subject of debate, Mandaogane does enjoy the work. She has also emerged as one of the key team members in Rancher’s development of its open source Kubernetes management and container orchestration platform. Evidence of Mandaogane’s passion for the job includes continually turning over different solutions for debugging or new features in her mind, even when she is at the gym or just opting to halfway work while watching a rerun of “Friends” at home. As part of The New Stack Makers podcast series featuring developers and engineers who share their down-in-the-trenches stories during this renaissance era in computing, Mandaogane also described, among other things, how her love for programming evolved into a passion for first Docker and containers and then Kubernetes while still an undergraduate at North Carolina State University.
Jan 30, 2019
Tom O'Neill of Periscope Data on What Data Scientists Do and Why You Care
In this episode of The New Stack Makers, TC Currie is joined by Tom O’Neill, co-founder and CTO of Periscope Data, who is responsible for overseeing the technology vision for the company. Periscope Data is a super fast platform for modern data teams.  “Fastest time to insight” With the explosion of data, O’Neill is tasked with finding the fastest way to make terabytes of data useful to their customers, who are data teams for data teams (data scientists, data analysts, data engineers) who write sQL, python or R. Data scientists are gaining in importance because of the explosion of available data since the advent of mobile devices.  AirBnB is not a hospitality company.  It’s a data company masquerading as a hospitality company.   But the data is only as good as the company’s ability to mine it.  It’s the data engineers that are making decisions in this environment.
Jan 29, 2019
CNCF’s Director Of Ecosystem On Her Life Before And After Google
Cheryl Hung, director of ecosystem, Cloud Native Computing Foundation CNCF, was already intent on working for Google as a young teenager. It was “a cool startup,” Hung said, where it seemed everyone wanted to work, with all kinds of fun and perks — including free food and even on-campus massages. Her career track did indeed take her to Google, where she worked as a software engineer and held other roles for over five years. Now, for the CNCF, she spends a lot of time traveling and helping organizations to learn about how they can take advantage of cloud native platforms. While Google its obvious connection to containers and Kubernetes represent a focal point in Hung’s career, Hung largely spoke of her lifework before and after her stint at the search engine giant during a podcast Alex Williams, founder and editor-in-chief of The New Stack, recently hosted at KubeCon + CloudNativeCon 2018 in Shanghai. Watch on YouTube:
Jan 28, 2019
How Raygun Co-Founder and CEO Spun Gold Out of Monitoring Agony
One of the first things John-Daniel Trask, co-founder and CEO at Raygun, noticed when he began to develop software was how painstaking it was to figure out what was wrong with the code. Initial error alerts, he created, were done by email. Much came down to just trial and error. “One of the things that we were doing a lot of the time when we were building software was always focusing on how we understood what went wrong and giving ourselves diagnostics,” Trask said during a podcast, hosted by The New Stack correspondents B. Cameron Gain and Simon Bisson. In 2012, after building an SaaS product for crash reporting, “it turned out that a lot people sort of saw the value in that as well,” Trask said. “And so, we’ve really been surfing that wave since.” After launch in 2013, “we’ve ended up with thousands of customers using the crash reporting product,” Trask said.
Jan 25, 2019
An Unconventional Path From Liberal Arts To Shaping DevOps
Priyanka Sharma, director of alliances, GitLab and a member of the governing board of the Cloud Native Computing Foundation (CNCF), is certainly an example of someone who hails from what she says was a “very unconventional entry into technology.” The end result today is that she is helping to shape the outcome of how organizations better take advantage of DevOps, especially when working on Kubernetes and microservices. Alex Williams, founder and editor-in-chief of The New Stack, spoke with Sharma during a podcast at  KubeCon + CloudNativeCon 2018 in Shanghai about her life work and what changes need to take place in DevOps today. However, it was not that long ago when Sharma hardly had access to a PC, much opportunity to learn programming or other computer skills while growing up in a small town in India. "It wasn't like computers were a part of my life — that was not the case,” Sharma said. “I ended up applying to colleges in the US,  and I remember as I was applying I was using a computer for the first time — I didn't even know how to use Microsoft Word.” Watch on YouTube:
Jan 24, 2019
A Manifesto For ‘Standing On The Shoulders Of Giants’
Software developers have been doing it all wrong — or maybe not, depending on whom you talk to. But at the very least, DevOps and CI/CD represent relatively new practices in computing that will continue to help organizations reap huge benefits as they mature during the coming year. Meanwhile, one way to offer immediate and direct improvements to production pipelines is applying more of an engineering mindset to software development. More specifically, developers need to “engineer our delivery,”  to develop and deliver better code, according to “The Software Defined Delivery Manifesto.” This was the theme of a podcast Alex Williams, founder and editor-in-chief of The New Stack, recently hosted. On hand to discuss with Williams how software development and delivery can and should be transformed were Marc Holmes, chief sales and marketing officer of Pulumi, which offers tools to help streamline software development, and Rod Johnson, founder and CEO of Atomist and one of the authors of “The Software Defined Delivery Manifesto.”
Jan 23, 2019
How Open Source Developers Wanted To Make Harbor ‘The Best Registry For Kubernetes’
Tracking and managing registries poses obvious challenges for organizations today. But as containers and Kubernetes enter the fray, the task gets that much more harder, given containers’ porous nature, among things. Up-and-coming Harbor is one purported solution as an open source cloud native registry for storing and scanning container images for vulnerabilities. How and why Habor can help address these security concerns for cloud native deployments, as well as how it came to be developed, were among the topics of discussion during a podcast Alex Williams, founder and editor-in-chief of The New Stack, recently hosted at KubeCon + CloudNativeCon 2018 in Shanghai. He was joined by Henry Zhang chief architect, cloud native apps, for open source Harbor, and Paul Dul, vice president of product management, cloud native applications, VMware. “The key thing is the security,” as Harbor, a container image management registry, offers features such as access, control and replication, as well as vulnerability scanning, Zhang said. Watch on YouTube:
Jan 22, 2019
Why You Really Can (and Should) Be A Kubernetes Mentor
Mentoring is a quintessential element for career advancement in the community, as teaching and helping to hone talent serve as a major contribution in the software development industry. Mentorships as way to boost contributions to Kubernetes is a case in point. In many respects, the future of Kubernetes depends on active members in the community. On hand to discuss the essential role mentoring plays in Kubernetes’ growth, Libby Clark, editorial director at The New Stack, hosted a podcast at KubeCon + CloudNativeCon North America in Seattle. Her guests included: Paris Pittman,  a developer relations program manager at Google Cloud who is also a coach at and subproject owner of special interest group Contributor Experience. “Contributor Experience is literally what it is: the experience of our upstream contributors,”  Pittman said. “And one of the subprojects that I do own is mentoring.” Tim Pepper, a senior staff engineer at VMware’s open source technology center. Pepper has been involved in Contributor Experience as well and his aim is to do “anything I can to help make it easier for new folks coming on board.” He is also one of the chairs of the Kubernetes SIG release, and as part of that, “we try to really practice the cycle of mentorship,” Pepper said. Nikhita Raghunath, a freelance software engineer originally from India who just over two years ago “did not even know what Kubernetes was,” before securing an internship at  Google Summer of Code last year. Today,  Raghunath helps run the Google Summer of Code and Outreachy Internship programs.
Jan 21, 2019
Accenture: DevOps Will Be Moot in 5 Years
The public discussion of DevOps as a movement empowering organizations to encourage collaboration between IT departments in order to enable automation and expedite business objectives, will have subdued in five years’ time, and probably well earlier.  This according to Keith Pleas, DevOps Architecture Senior Manager for globally respected IT consulting firm Accenture, in an interview at DevOps World 2018 in San Francisco for The New Stack Makers. Everybody would like to be the “miracle worker” in the IT operations side of the organization that saves the day and sees projects through on time, Pleas acknowledged.  “But the challenge is, technology is moving against that. “‘Continuous’ implies what?  Automation,” he continued.  “The automation is coming for the automation.  In the next one, two, three, five, ten years, DevOps will be configuration settings, and that’ll be about it.”
Jan 18, 2019
Portworx’ CTO on Disaster Recovery and Backup Complexities in Today’s Multi-Cloud World
The number of available options for application deployments and maintenance, whether on on-premise or in cloud environments, spells great opportunities. But as microservices, Kubernetes serverless platforms and other options are thrown into the mix, issues of how to manage the enormous complexity involved obviously emerges. A key concern for DevOps, among others, is creating best practices and processes for backups and disaster recovery (DR) in this context. During a podcast Alex Williams, founder and editor in chief of The New Stack, hosted; Gou Rao, co-founder and CTO of Portworx, gave an overview of the complexities involved, as well as emerging DR and backup practices. “People are still more in learning mode. Now, people have deployed their applications and they’re dealing with real-world problems operationally, and  not necessarily issues, but best practices about ‘how do I do this?’” Rao said.
Jan 16, 2019
Squashing Inclusivity Bugs in Open Source: Dr. Anita Sarma Shares Her Research
For this episode of The New Stack Makers, Dr. Anita Sarma, Associate Professor of Computer Science in the Department of Electrical Engineering and Computer Science at Orgeon State University, joins TC Currie to talk about her recent research on how to increase gender inclusivity in OSS.   Her recent research focuses on Problem Solving Facets in which men and women differ statistically.  She’s the author of  Squashing Inclusivity Bugs in Open Source Software: GenderMag methodology identifies gender bias in software tools to help designers eliminate it. With Open Source Software (OSS) becoming more and more a requirement for job searchers,  it’s critical to become a part of this community.  For example, Sarma said, one technologist told her he’d rather see a GitHub profile than a CV any day of the week. But currently, only about 10% of OSS contributors are women.   We’re no longer talking about whether diversity is a good idea, Sarma said, but how we can make it happen. In her research, she has focused on five ways in which men and women statistically differ in how they problem solve.
Jan 15, 2019
Open Source Activists From CNCF, The Rook Project And VMware’s Cloud PKS Tell Their Stories
The sheer size of KubeCon + CloudNativeCon 2018 in Shanghai drawing an estimated 8,000 attendees attests to how the open source movement is both mainstream and plays a key role in software development today. The thousands of attendees also reflect the exploding number of people involved in the open source community worldwide who play a part in this renaissance era of open stack development. The open source community can also sleep easier at night, knowing that they are also playing a role in making the world a better place in a number of ways, benefiting the software community as well as the end users who benefit from new applications that have the potential to induce positive changes in our daily lives. While at KubeCon + CloudNativeCon 2018, Alex Williams, founder and editor-in-chief of The New Stack, had the good fortune of being able to host a podcast with three people involved in exciting open source projects. On hand to discuss their work were: Jared Watts, senior maintainer on the Rook project (hosted by the Cloud Native Computing Foundation (CNCF); which offers storage architectures for cloud native environments; Ihor Dvoretskyi, developer advocate at CNCF; the now fabled organization fostering growth and helping to sustain container ecosystems; Wei Fu, director of engineering, leading VMware Cloud PKS, a SaaS offering for Kubernetes from VMware. Watch on YouTube:
Jan 14, 2019
Cloud Native Implications For Security And Twistlock 18.11
Cloud native architectures require a new approach to security. The cloud native stack doesn’t communicate in the predictable and tightly coupled way that stratified frontend, middleware and backend layers provide. Applications composed of microservices and serverless functions are loosely coupled pieces of code talking to each other in unique, asynchronous ways  — and there are exponentially more of them. “It’s an explosion of complexity,” said Sonya Koptyev, director of evangelism at Twistlock, in this podcast interview at KubeCon and CloudNativeCon last month in Seattle. When managing such complex environments, it can be difficult for operations and security teams to even know which services developers have running on various cloud providers, let alone to identify and remediate a critical vulnerability such as the recent, major privilege escalation vulnerability in Kubernetes that, if left unpatched, allows attackers to take over entire compute nodes. “Once [companies] get past that couple of hundred employee mark they have all sorts of services they’re running that the security team doesn’t know about, and with that you introduce all sorts of vulnerabilities and threats into the environment,” Koptyev said. “The security team can’t secure them because they don’t know about them.” Watch on YouTube:
Jan 11, 2019
Two CEOs Describe What The Cloud Really Offers Them
Organizations will obviously make hard decisions first about why it might make sense for them to makes the jump to the cloud — especially when porting data and infrastructure to a microservices and Kubernetes environments.  Famous use-case scenarios aside, from Netflix to Airbnb, many small- to medium-size organizations stand to benefit in different ways, depending on what they do. Typical concerns and needs organizations look for include compliance, data protection, and especially, how the cloud can specifically further their business goals — which can obviously vary, depending on the organization. Examples of what the cloud and cloud native platforms can do for organizations were the subject of a podcast Alex Williams, founder and editor-in-chief, of The New Stack recently hosted with Zara Nanu, CEO at Gapsquare, and Kenny Gorman, CEO of Eventador.  Bob Quillin, vice president, Oracle Cloud developer relations, was also on hand to describe what his customers have been telling him about what they need.
Jan 10, 2019
Fluentd’s Role As A Data Collector In Today’s Cloud Native World
Open source Fluentd has emerged as an open source data collector for massive amounts of log data from often many different sources — in a way that is especially useful for cloud native deployments on Kubernetes. As one of the developers, Eduardo Silva, principal engineer at Arm and part of the Fluentd development team at Treasure Data, described how and why Fluentd’s utility is becoming even more important to keep up with the demands of scaling data in today’s cloud native world. He discussed that and other benefits the data collector offers during a podcast hosted by Alex Williams, founder and editor-in-chief of The New Stack, recorded at KubeCon + CloudNativeCon 2018 in Shanghai. The main benefit for Fluentd is how any production environment can have access to comprehensive data analysis about applications, whether they are running on standard servers or on distributed systems with Kubernetes, Silva said. This data might include error information, warnings or general information about how an application is running. This information is provided in the form of messages, called logging, about how they are operating. Watch on YouTube:
Jan 09, 2019
T-Mobile Web Backend: Kubernetes, Cloud Foundry, and Portworx for Flexible Storage.mp3
T-Mobile knows a thing or two about how waves of traffic can put a strain on a e-commerce website. At least twice a year its site gets inundated by customers and potential customers — In October each year when the new phones are released, and again in December, this time for the holiday gift-buying season. T-Mobile has relied on container platform for managing its web site for several years now, and Kubernetes has proved to be instrumental in helping the company scale up the site to meet these peak demands, said James Webb, T-Mobile Cloud Foundry platform architect, in an episode of The New Stack Makers podcast recorded at KubeCon + CloudNativeCon last month in Seattle. Watch on YouTube:
Jan 08, 2019
Ted Dunning talks AI & Analytics in Production
While there are only a few companies using AI in production, it’s certainly where the future lies. In this wide-ranging episode of The New Stack Makers, TC Currie talks with Ted Dunning, Chief Application Architect at MapR and author, along with Ellen Friedman of the new book AI & Analytics in Production. We all have an image in the back of our minds of computers taking over the world, but the truth for the short-term, said Dunning is that some of the best value for artificial intelligence (AI) is going to be some of the most boring stuff.  AI, at least in the beginning, will replace boring repetitive tasks and mine massive amounts of data in ways not previously imaginable.
Jan 07, 2019
A University Researcher, Oracle On Why Serverless Matters
Serverless continues to mean different things for different people — but many users and proponents have very solid examples of how and why it works for them. Christopher Woods, research software engineer, at the University of Bristol, is a case in point. Woods said, besides saving money by paying engineers to maintain servers instead of building business logic, serverless allows organizations to shift code faster to the cloud. You also “do not have to think about any of that kind of non-strategic, undifferentiated heavy lifting,” he said. “[Serverless providers offer] the stuff that everybody has to do when you ship an app to the cloud: you have to choose a framework, you have to do find the server, you have to provision that server, you have to get your SSH key..I mean, these are kind of the old ways of doing things,” Woods said. “Maybe it’s going to scale, then what happens when that server goes down? I mean, all of these stuff is not strategic for the organization, so there’s no value to the business for spending time managing servers.” Woods, as well as Shaun Smith, director of product management for serverless at Oracle, and Chad Arimura, vice president of serverless at Oracle, discussed in detail what serverless can offer during a podcast hosted by Alex Williams, TNS founder and editor-in-chief, at KubeCon + CloudNativeCon North America 2018. Watch on YouTube:
Jan 04, 2019
Why Bloomberg Bet Its Data On Kubernetes
Bloomberg owes its success in maintaining its status as a financial information and data giant over the past few decades thanks largely to technology. After its creation in 1981 when Bloomberg shortly thereafter became synonymous with the large computer terminals on the desks of Wall Street and financial trading floors around the U.S., the company now describes itself as an information and technology company. With 19,000 employees worldwide, it offers software, financial, media and data services — with data heavily embedded in its DNA. Recently added to its immense data-management structure is a Kubernetes layer, which Bloomberg adopted about three years ago. During a podcast hosted by Joab Jackson, managing editor, and Alex Williams, founder and editor-in-chief, of The New Stack at KubeCon + CloudNativeCon North America 2018; Steve Bower, data and analytics infrastructure lead at Bloomberg, discussed why and how Bloomberg transitioned its data and infrastructure operations to Kubernetes and a largely cloud native platform and what he learned from making the move.
Dec 28, 2018
Google's Kelsey Hightower Dissects Serverless Hype And Hope
Serverless adoption is exploding — but what the platform is and how it might be able to help your organization depends on a lot of factors. “Breaking down the word ‘serverless,’ for a lot of people, means almost whatever you want it to mean these days,” Kelsey Hightower, a developer advocate at Google, said during a podcast hosted by Alex Williams, founder and editor-in-chief, of The New Stack at KubeCon + CloudNativeCon North America 2018.  “But I think there is this movement around so many managed services at this point and all of the problems you can solve…that you can now give it a term, a buzzword. So, that means that database now is fully managed and the security part is fully managed over the counter.” In many ways, serverless offerings can often be reduced to the concept of offloading server-management tasks to a third party. “We’re removing that ability or the need to think about the server,”  Hightower said. “So now, you have serverless because many services are eating that world as well.” Watch on YouTube:
Dec 27, 2018
How A Project Graduates From The CNCF
Originally created by ride-hailing firm Lyft over three years ago, Envoy serves as a network proxy geared for microservice service mesh architectures and was open sourced about two and a half years ago. About a year after Envoy 1.0’s release, Envoy entered into the fray of the Cloud Native Computing Foundation (CNCF) as an incubation project. During a podcast hosted Alex Williams, founder and editor-in-chief, of The New Stack at KubeCon + CloudNativeCon North America 2018; Cheryl J Hung, director of ecosystem at the CNCF, and Matt Klein, senior software engineer at Lyft, discussed how Envoy has benefited as an CNCF project, and consequently, how Envoy’s lifecycle has evolved. They detailed what happens when a CNCF project “graduates” and how users ultimately benefit from the process. “Overall, it’s been a great experience for us — the CNCF has been very helpful for helping us grow the project, not only from events perspective but helping with governance and just all those types of things,” Klein said. “So, Envoy has had a pretty spectacular growth over the last two years since it’s been open sourced and I think just through natural project growth and evolution especially during 2018, it became clear that it was time to look at the graduating criteria.” Watch on YouTube:
Dec 26, 2018
Oracle: Containers Work Really Well with Lifecycle Management
Lifecycle management can certainly help to address the often enormous complexities of cloud deployments. Among the challenges it can help to overcome, lifecycle management can offer monitoring, deployment and maintenance capabilities across single- or multi-multi-cloud deployments. As more organizations make the shift to container environments on the cloud, lifecycle management adapted for the environment is becoming available as well — and that’s a good thing. The new dynamics associated with container lifecycle management, was the main topic during a podcast hosted by Alex Williams, founder and editor-in-chief, of The New Stack at KubeCon + CloudNativeCon North America 2018, with a group of software engineers and product managers from Oracle. Watch on YouTube:
Dec 19, 2018
DevOps Power Panel: Can DevOps Apply to Everyone?
It remains a fact that most enterprises do not retain their own software developers.  Indeed, there are major institutions today whose IT operations leaders have never actually met the people who wrote their software, or know whether they’re still alive.  And throughout the Southeast Asian region, software developers are often hired on contract, produce their work in one lump sum, and wait to get paid once it’s installed, tested, and approved.  There, the benefactors don’t expect to need that software to be replaced for at least another five years, in some cases as high as 15 years. Some IT ops professionals perceive the idea of software development automation with daily release cycles as foreign a concept to their own way of work as, say, replacing their manufacturing lines with molecular manipulators that could produce fully functional bulldozers out of compressed peat moss.  DevOps may be an indicator of the directions that institutions and enterprises must evolve to stay relevant in the long term, but how many iterations of change will they require before they can declare themselves, technically speaking, “there?”
Dec 18, 2018
It Was Ugly, But Rancher Fought Back
The trouble CVE-2018-1002105 began to cause for Rancher, as well as the Kubernetes community, started a couple of years ago, long before it became public earlier this month. In Rancher’s case, users were already complaining about mysterious error messages and set up failures they were experiencing in 2016 with the release of Rancher 1.6 and Amazon’s ALB. More recently, the community began to experience similar problems in August with Rancher 2.1. “It was a pretty low risk vulnerability in the sense of it was very likely that there were other protections in place that will protect you from getting to it, but overall, the experience for us was really amazing working with the rest of the Kubernetes community to identify it, get it pushed out, get patches pushed to everyone and things worked the way they’re supposed to,” Shannon Williams, co-founder and vice president, of sales, said. We identified it. It was kind of kept quiet until the fixed that were pushed out, and then everyone had the ability to patch really quickly last week.” Watch on YouTube:
Dec 17, 2018
Buoyant CEO on Linkerd's Origins During Twitter's Heady Early Days
It wasn’t that long ago when deploying massive-scale projects to the cloud meant largely creating the underlying infrastructure to make the migration from scratch. This reinventing the wheel-like gargantuan task is what Twitter software engineers certainly had to do. But as they figured out how to scale the social media network from Twitter’s days as a fledging startup to handle today’s 300 million regular users today, they also, almost by accident it seems, created the basis for the first service mesh Linkerd. As William Morgan, now CEO of Buoyant,  the creator and primary sponsor of Linkerd, told Alex Williams, founder and editor-in-chief of The New Stack, during a recent podcast: “And the most amazing thing about this migration was it actually worked,” Morgan said, referring to his Twitter days. “So, it was there I think, for a company to be like, ‘okay we’re rebuilding everything from scratch for that actually to succeed.’ But somehow, we managed to succeed.”
Dec 12, 2018
Couchbase's Ravi Mayuram on the Future of Databases
We’re moving beyond the idea that every company is a software company, said Ravi Mayuram, Senior Vice President of Engineering and CTO of Couchbase. “Now every company is a data company.” The Couchbase data platform is a unique NoSQL Engagement database, designed for using data to connect customers, employees, and machines.  The goal is to engage customers through exceptional digital experiences, which is rapidly becoming a key differentiator in business across all industries.   To create these experiences, enterprises need to leverage data in an agile, responsive, and scalable manner.  Enter Couchbase’s NoSQL Engagement platform, which Mayuram describes as distributed database that combines the noSQL concepts but adds SQL back into the mix. The whole platform is orchestrated with Kubernetes.
Dec 11, 2018
Is Salesforce Really Talking about a ‘DevOps Transition?’
The concept of business transition is so synonymous with Salesforce that a Google search for both phrases will automatically omit one phrase as being superfluous.  So it will come as an absolute shock to perhaps several of our readers that Salesforce finds itself just as much a journeyman to the concept of the “DevOps transition” as any corporation on the planet. “If it was three or four teams, we could have the build/test/deploy [pattern] easily,” said Byron Vonthal, product manager for CI/CD in the IT Department of Salesforce, in a wide-ranging interview for The New Stack Makers.  “But with 65 teams, it’s hard to get everybody moving at the exact same pace.  There are some teams that do this really well.  They’ve got the build/test/deploy down.  There are some teams that only have the build down, and that isn’t even incorporating their tests into the process.”
Dec 10, 2018
FoundationDB’s Legacy Continues with New Improvements
Alex Williams, founder and editor-in-chief of The New Stack, recently spoke with Ashish Motivala from Snowflake Computing and Clement Pang from VMware who are also committee members for the FoundationDB Summit. They described FoundationDB’s history and new improvements it offers for organizations seeking to scale their databases in multi-cloud environments and across different geographical sectors by using the open source alternative. The open source FoundationDB data store “falls in the genre of key-value stores or key-value databases so to speak,” said Snowflake Computing's Ashish Motivala. “And of the differences between FoundationDB and the plethora of other databases value stores out there is that it provides ACID compliance, which means it provides all transactional support unlike a lot of other databases,” Motivala said. “The other thing that it provides is a level of reliability that I haven’t seen in other databases in the past. And these two things really, for me, define what FoundationDB is.”
Dec 06, 2018
Two Transitions Make ‘Cloud Native DevOps’ a Challenge
DevOps, as any successful practitioner will tell you, involves deciding which processes in your organization are worth standardizing, and bringing software developers and IT operators together to work to automate them.  When a company is making a strategic effort to shift the infrastructure hosting burden away from IT operations and toward the public cloud, it’s not always clear whether those infrastructural processes are due to be perpetuated or expunged. “They are two different tracks that are in the midst of converging,” explained Naggi Asmar, vice president of engineering at customer experience platform provider Medallia, where the DevOps journey and the cloud journey are happening in parallel. “We were down the path using not necessarily cloud-native solutions for our DevOps.  Then a recent transition is for us to move to a more cloud-native infrastructure and development model.  So we still are in the middle of that transition.”
Dec 05, 2018
Portworx CTO Gou Rao: PX 2.0 Followed the ‘Big Shift’ to the Cloud
It is certainly well known how Kubernetes and microservices can offer organizations unapparelled opportunities in agility, speed to deployment, resource savings and other advantages — but harnessing this power can be a difficult, especially when moving to multi-cloud environments. The challenges associated with helping organizations make the jump to the cloud has served as a main theme of Portworx’s narrative as a company, culminating in the release this week of PX-Enterprise 2.0, a cloud native storage and data management solution geared for containers. This was the main during a podcast Alex Williams, founder and editor-in-chief of The New Stack, hosted with Gou Rao, co-founder and CTO, of Portworx. The release of PX-Enterprise 2.0 also culminates with the updates PX-Motion and PX-Central. As its name suggest, PX-Enterprise 2.0 is designed to facilitate data movement across and between a multi- and hybrid-cloud scenario, Rao said. “The goal is to compliment Kubernetes, by laying out a design pattern in how you manage and orchestrate multi-cloud applications,” Rao said. PX- Motion will allow you to do that across multiple Kubernetes clusters, even between different cloud providers.”
Dec 04, 2018
Two Thought Leaders on Open Source Past, Present and Future
Open source software has taken new and exciting directions since the early days when collaboration and sharing source code was first introduced a few decades ago. Whether or not the original spirit of the free software movement has been maintained or not is a subject of debate, open source has evolved to underpin computing today, ranging from the Linux operating systems of most servers to Kubernetes and the cloud. Before open open source reached its mainstream status of today, there were some amazing things that happened, as well as some bumps and even wars that took place. These and other open source-related themes were discussed during a podcast with Danese Cooper, vice president, special initiatives for NearForm, a long-time member of the Apache Software Foundation and an emeritus board member of the Open Source Initiative (OSI); and Umur Cubukcu, CEO and co-founder of Citus Data. In addition to the past and present trials and tribulations of the open source movement, they also discussed what lies ahead.
Dec 03, 2018
Former Google Engineer Helps Make China Become A ‘Cashless Society’
Ant Financial, a spinoff from Alipay of  China search engine giant Alibaba, offers credit card payment and financial services at scale in a country whose population is 1.4 billion, as well as to consumers worldwide.  Zhengyu He, head of systems engineering at Ant Financial, described what it has taken to bring monolithic and outdated systems to meet today’s computing challenges at scale during a podcast hosted by Alex Williams, founder and editor-in-chief of The New Stack, recorded at KubeCon + CloudNativeCon 2018 in Shanghai. Before Ant Financial was founded in 2014, Alipay had already begun to offer credit card payment services to consumers. “At that moment, China was not a really developed country and  we didn’t really have..sophisticated credit card systems,” He said, who worked at Google as a software engineer for over six years. “Ant Financial took the responsibility of actually building the national scale payment systems...And this is actually one of the greatest inventions I would say, in the last couple of years in China — so it’s like what we now call a cashless society." Watch on YouTube:
Nov 29, 2018
Kubeflow Co-Founder: Machine Learning Workflows On Kubernetes Can Be Simple
Machine learning (ML) should have a profound effect on many facets of our lives in the future, from self-driving cars and trucks to utility grid management. As artificial intelligence (AI) engineers and data scientists develop advanced systems based on neural networks and other technologies designed to teach machines to learn and act in ways similar to the human brain, workflows that integrate all facets of the underlying software development and deployments for ML applications will play an obvious and critical role. To that end, David Aronchick, Co-Founder of Kubeflow, described how Kubeflow can make setting up machine learning software production pipelines easier, during a podcast, Alex Williams, founder and editor-in-chief of The New Stack, recorded at KubeCon + CloudNativeCon 2018 in Shanghai. Watch on YouTube:
Nov 28, 2018
Security’s Case Against ‘Cloud-Native DevOps’
The whole point of the movement-within-a-movement that Utsav Sanghani, Senior Product Manager for Desktop and AppDev Security for code security platform provider Synopsys, calls “DevSecOps,” is to engage information security professionals in the task of automating enterprise processes.  That engagement requires a shared understanding among all departments of the infrastructure with which applications and critical functions are being hosted. That knowledge is cast to the wind, suggested Sanghani in an interview for The New Stack Makers, when an organization opts to host its applications on a cloud-native platform, and then attempt to leverage DevSecOps to secure it. “Let’s assume that your production builds are happening in the cloud,” said Sanghani.  “You’re working for a big financial institution.  As part of your production builds, you’re running scans using market-leading tools like, let’s say, Synopsys’ Coverity.  As part of that, if at any point something were to leak out that this application has a high-security CSRF issue with it, that’s going to be a PR nightmare for that big financial institution.
Nov 27, 2018
Why Kubernetes Makes Lyft Rides What They Are Today
Ride-sharing firm Lyft will continue to rely heavily in Kubernetes and microservices platforms in the race to offer mobility solutions that should eventually include AI-piloted cars in the very near future. This was a key point Vicki Cheung, engineering manager at Lyft,  told Alex Williams, founder and editor-in-chief of The New Stack, hosted during a podcast recorded at KubeCon + CloudNativeCon 2018 in Shanghai. After serving as head of engineering at OpenAI, a non-profit AI research group Tesla founder and CEO Elon Musk co-founded; Cheung joined Lyft after it had attempted to make the switch to a container-based stack a few years prior. This was “when like it was really, the hype was building up and everyone is trying to make the switch but before Kubernetes was a thing,” Cheung said. Watch on YouTube:
Nov 26, 2018
What Tech Can Learn From The Fashion Industry
Software will likely continue to underpin advances in tech throughout the indefinite future, especially as artificial intelligence, machine learning and other technologies begin to have a direct influence on new stack development. But the very male-dominated world of software development can also stand to benefit from new concepts and industries beyond the traditional realm of tech. The fashion industry is a perfect example, says Charmmie Hendon, who very recently transitioned into a key marketing role as the Special Projects Manager at Serverless Inc.  after joining the company as an Executive Assistant. How Hendon has successfully convinced the decision makers at Serverless of the many lessons the fashion industry can offer was one of the themes of Hendon’s conversation during a podcast Alex Williams, founder and editor-in-chief of The New Stack, hosted at ServerlessConf 2018. “Fashion is a lot faster in terms of tech, if you would believe it or not — they’re pushing product every three months. So, when you’re pushing product every three months, there’s a level of insanity or level of do or die, jumping off the cliff a lot of times just getting it done,” Hendon said. “So, coming to tech, this was the right speed for me. I was like, ‘okay, I’m not pushing product every three months,’ and I actually get to take a breath and think about what we’re doing here.” Watch on YouTube:
Nov 23, 2018
Telus Takes First Step Toward AI/ML with IT Automation
In the telecommunications industry, the level of manual labor involved in maintaining large and complex applications at scale on a traditional software architecture has become untenable. In an effort to avoid costly service outages, system administrators are frequently up all night monitoring dashboards for spikes in activity that may signal trouble, said Sana Tariq, a senior architect of Exchange-to-Exchange (E2E) service orchestration at Canadian telecommunications service provider Telus. “I don’t think that should exist anymore, the staying up all night,” Tariq said in a livestream and podcast with The New Stack at Open Source Summit held in Vancouver, B.C. this past August. “We need to advance to the point where we trust the algorithms to act on our behalf.”
Nov 22, 2018
Kubernetes Co-Creator Brendan Burns On What Comes Next
Like so many milestones that were achieve in the history of computing, creators and inventors rarely had eureka moments, but instead, found a very practical way to solve a problem. The creation of Kubernetes is but another example of something very big that was created with little initial fanfare, before becoming one of the most important developments in modern computing that will likely serve as the cornerstone of how software is deployed and developed for at least years to come. As Brendan Burns, distinguished engineer at Microsoft and one of the founders of Kubernetes, said during a podcast Alex Williams, founder and editor-in-chief of The New Stack, hosted during KubeCon + CloudNativeCon 2018 in Shanghai: “I don’t think we could have ever imagined that this would be where we’d be sitting five years from then — it’s really unbelievable.” Watch on YouTube:
Nov 21, 2018
Caicloud COO And CEO On The New Age Of AI Programming
The programming languages and platforms of tomorrow when code for machine learning and artificial intelligence code become as common as writing java scripts are just beginning. They should also be Kubernetes and cloud-native-centric, according to  to emerge, co-founder and COO  Jiayao (Julia) Han and CEO Xin Zhang of Caicloud, as the role operating systems and other components will play, during the podcast Alex Williams, founder and editor-in-chief of The New Stack, hosted live during KubeCon + CloudNativeCon 2018 in Shanghai. Watch on YouTube:
Nov 20, 2018
TriggerMesh Serverless Startup and OpenStack Summit Berlin
Welcome to The New Stack Context, a weekly podcast discussing the latest news around at-scale application development and management. For this week's episode, we discuss the latest developments in serverless computing, with Sebastien Goasguen who this month launched a new company, TriggerMesh, offering an event triggering cloud service for serverless workloads. Goasguen's last company, Skippbox was acquired by Bitnami, where he subsequently became senior director of cloud technologies. We're looking forward to hearing all about TriggerMesh. Also this week, we discuss the latest OpenStack Summit, held this week in Berlin.  The OpenStack Foundation is expanding its scope to include other infrastructure technology, which no doubt will cause ripples in the open source ecosystem. TNS editorial director Libby Clark hosts this episode of Context, with the help of TNS founder Alex Williams and TNS managing editor Joab Jackson.
Nov 17, 2018
A Software Engineer VP Learned She Loved Coding On A BBC Microcomputer
Many, if not most people, discover their life calling at a very young age. In the software engineering space, those with decades of experience who came of age in the 1980s and 1990s learned they loved to code often got their start programming in BASIC in grade school or junior high. Anouska Streets, vice president of engineering, at Fiserv, is yet another example of someone lucky enough to have had access to a PC while growing decades ago. In her case, it was a school BBC microcomputer made available to the students of her school when she was 11 while in the UK. Watch on YouTube:
Nov 15, 2018
Cloud Native Challenges and Opportunities with Continuous Delivery
Cloud Native means different things to different people. However, Ian Andrews, vice president, products and marketing, of Pivotal, sees continuous delivery at the heart of the cloud native movement. “In the last ten years or so, a handful of organizations decided that the model of building and operating software was not effective. One of the changes they needed was the rate of changes and management of software,” said Andrews talking about the evolution of the cloud native paradigm. People at the forefront of the cloud native revolution championed things like continuous delivery — frequent release of software that contrasted the traditional model. However, as people embraced the continuous delivery model they faced challenges they didn’t anticipate. Watch on YouTube:
Nov 14, 2018
New Context Security VP On Why It Pays to Be Paranoid
Today, we speak with Andrew Storms, vice president, security and product, for New Context, as part of The New Stack Makers podcast series featuring developers and engineers who share their down-in-the-trenches stories during this renaissance era in computing.  Storms took the opportunity to discuss his experience past and present as a security application developer. Renaissance aptly describes Storms’ 15-year plus career in IT security. Besides holding high-level security roles including Broderbund, nCircle Security, CloudPassage and others, he has written for “Wired” and taken part in an FBI Citizens Academy training course, which he says, more than reinforced any doubts he previously had about the importance of security. Still, Storms is sanguine about the levels of data security that leading cloud providers such as AWS and Google Cloud, for example, can offer compared to attempts to lock down data with on-premise data centers. “I still hear this today, which is fairly [based] on fear in my opinion: that is, 'moving all my stuff to the cloud is inherently going to be less secure than if I had it my building that I manage and secure,’” Storms said. "And it’s really just not that case anymore. So, predominantly most organizations are probably going to find a much stronger and more secure environment running it on Amazon or any of those public clouds, then they would be able to provide themselves.” However, “we do have to remember that there is a clear delegation between what is the responsibility of your provider versus yourself,” Storms said. In addition to how certain established cloud providers can offer reliable data security as part of their services, they can also offer superior technologies beyond what DevOps teams can usually develop for their on premises data centers.  “There came a point in time when the internal ops IT teams didn’t need to run giant data centers didn’t make sense to do so,” Storms said. "[It became clear on-premise] was actually predominantly more expensive and you didn’t get all these tools and fancy widgets and features [unless] you went to Amazon. Where today, you’ve seen [Amazon] become during the last few years  the leader in the innovation around services they’re providing on top of their platform.” Storms, who describes himself as “one of those crazy people who likes to work 60 hours a week,” says his first real job while still in college at Broderbund Software served as a springboard for his career in tech. “It was a great time for me,” Storms said where he held several roles, including product management, IT operations and security. “But what was a little different from most other people that went to school and took computer science major was I had that kind of very stringent developer background. That's also why when the industry, some 10-15 years later, starting to move into DevOps, that was something I really grasped on, because everything in my life as just an admin was about coding. It wasn’t necessarily about installing patches or getting software up to date — it was understanding how we do it once and how we automate it when we do that."
Nov 14, 2018
IOPipe Founder & CTO Erica Windisch: Why Foundations Are a ‘Disaster’
Alex Williams, the founder, and editor-in-chief of The New Stack sat down with Erica Windisch, founder, and CTO of IOpipe, to learn about her background, upbringing and evolution as the co-founder and CTO of IOpipe. Windisch grew up in Levittown, Pennsylvania in a middle-class family. She got interested in computers via playing video games. At one point she realized that she could use computers to program them. Windisch was also inclined towards art through. To her amazement, when her grandfather showed her his PC she came across an application called Paint Brush, it was a revelation that she could use computers to create art. “With computers, I could do both of these things - programming and creating art. It was ideal,” said Windisch. Watch on YouTube:
Nov 12, 2018
A Linux Admin and Engineer Shares Her Life Narrative
Those lucky enough to work in tech will almost certainly face life struggles at some point in their lives affecting careers. And those who are really fortunate are able to bounce back and continue on their successful career track after taking time off for family reasons. During a podcast hosted during OSCON in Portland, Ore. by Libby Clark, editorial director for The New Stack with Meryll Larkin, a senior Linux systems administrator and engineer,  Larkin  discussed how she took time off from her 20-year plus career in open source computing and Linux to care for her husband. Larkin is currently contracting for a company that she said, “I’m not supposed to name in Seattle.” “It’s a company with a large tech division and I’m doing security compliance, which is mostly running scripts and sending out emails, which is not my favorite kind of work, and they’re letting me update the scripts, which is more my favorite kind of work,” Larkin said.
Nov 07, 2018
How Stackery Is Making The Most of AWS SAM
On today's episode of The New Stack Makers, TNS Founder Alex Williams is joined by Stackery CEO Nate Taggart. Earlier in the year at ServerlessConf, the two discussed the makings of Stackery, and how it has standardized on top of the AWS Serverless Application Model to the benefit of both its developers and enterprise customers. Prior to making the move to standardize on AWS SAM, Stackery used a tool known as AWS Cloud Formation in its stack. "Amazon realised that because Cloud Formation was so powerful, that it was also very intimidating. So they released AWS SAM to focus on three common serverless patterns: Reading an API endpoint, one is creating a function on Lambda, and the other is to create a database, which they call a table. Actually a DynamoDB table. So SAM gives you, instead of having to configure all of the settings for all of your services, it gives you a nice on ramp into serverless and into infrastructure-as-code," said Taggart. Watch on YouTube:
Nov 06, 2018
Cloud Foundry Foundation’s CTO Wants More Open Source Simplicity
The open source moment has gone through some profound changes over the past two decades to become the cornerstone of full stack computing it is today. After entering tech in the late 1990s as programmer for early Web-based platforms, Chip Childers, CTO of the Cloud Foundry Foundation, has seen how the movement has evolved on a code level. He discussed this and other themes about his lifework during a podcast Alex Williams, founder and editor-in-chief of The New Stack, hosted during Cloud Foundry Summit Europe 2018 in Basel, Switzerland. Childers said: “I think we've learned a lot as an industry about it's open-source infrastructure services,” and noted how “there are definitely places where they are valuable.” However, much work remains to be done. “We've also learned that instead of trying to automate all of these devices,” Childers said. “We need to simplify. I'm reflecting what the industry is doing.” Watch on YouTube:
Nov 05, 2018
Cloud Foundry’s Executive Director On What Empathy Teaches
Whether everyone should learn to code or not is a subject of debate despite the hype — but those who wear the project management hat when offering software solutions to customers stand to gain valuable career lessons. During a podcast Alex Williams, founder and editor-in-chief of The New Stack, hosted during Cloud Foundry Summit Europe 2018 in Basel, Switzerland;  Abby Kearns, executive director of the Cloud Foundry Foundation, discussed the major influence this role has had on her career. Indeed, Kearns’ first job as a project manager set the course for her career after earning a computer science degree 20 years ago from Chapman University. “I went straight from graduating college into project management — to be quite honest, I think anyone that starts their career in tech should have to start with that job,” Kearns said. “It teaches you and gives you a broad understanding of a lot of the different pieces that go into making something happen.” Watch on YouTube:
Nov 01, 2018
IBM Software Engineers Discuss The Developer’s Evolution In A DevOps - Driven World
The role of a software developer has certainly changed over the years. Like programming in the punch card days in the 1960s when Star Trek debuted in the 1960s, professional coding has undergone radical changes over the decades. Using the Vulcan “mind meld” concept from Star Trek from a previous conversation as a starting point,  Alex Williams, founder and editor-in-chief of The New Stack, during Cloud Foundry Summit Europe 2018 in Basel, Switzerland, discussed how the developer’s role has changed during a podcast with Tammy Van Hove, distinguished engineer at IBM, and Simon Moser, senior technical staff member, IBM Germany Research and Development. Van Hove remembered wanting a communicator when she first saw Star Trek. “I wanted that communicator and then when the first flip phones came out, [I said], ‘oh, I got a communicator, right?’” Van Hove said. Regarding the developer experience today, the culture has become very “varied and community,” Van Hove said. “When I first started programming, it was terminals and terminal rooms,” Van Hove said, adding that “resources were limited.” Watch on YouTube:
Oct 31, 2018
Microservices In the Cloud Native World
Have you ever tried to explain microservices to anyone? Depending on the context, people explain it differently. But when it comes to establishing the relationship between microservices and Cloud Native, no one explains it better than Mark Russinovich, CTO of Microsoft Azure. According to him, the best way to understand microservice infrastructure is to look at the previous generation architecture of client-server era. The era of monoliths. Typically, there were three tiers: application (front end); the middle tier (business logic) and then the third tier of backend for things like database server. This model slows everything down. You can’t innovate because all three tiers need to be in sync with each other. Trying to be agile by embracing cloud means on-demand creation of computing resources. It breaks the older model. You end up with a mismatch between the delivery model of the application architecture and what the underlying platform can provide. Watch on YouTube:
Oct 30, 2018
PureSec Founder On Taking Control Of Serverless Security
One of the main  benefits of serverless is the ability to shift server administration- and platform management-related tasks to a third party, allowing for a greater focus on development and deployment. But this freedom can come at a price — relying on serverless also means, for example, giving more control to a third party. Many things for which you are at the mercy of the serverless provider include unexpected downtimes, fluctuating pricing, and ultimately, the inability to benefit from features tailored to your specific needs since you are likely one of thousands of customers. The control of underlying security parameters can also be an issue. However, with the right tools, it is possible gain visibility and control of runtime security for your serverless data and applications. Ory Segal, CTO and co-founder of serverless security provider PureSec, was on hand to discuss how, during a podcast hosted earlier this month by Alex Williams, founder and editor-in-chief of The New Stack, earlier this year at ServerlessConf 2018. The inherent issue with serverless is that customers do not own the runtime environment since “you are a guest,” Segal said. “Being able to sit there and monitor everything at a very low challenging,” Segal said. Watch on YouTube:
Oct 29, 2018
anynines Engineers On Offering Data Services With Cloud Foundry
A number of services on offer for Cloud Foundry architectures have emerged, posing new challenges — as well as offering new opportunities — for service providers. Steffen Zuber and Michael Lieser,  platform engineers for anynines, were on hand to discuss their challenges offering data services for Cloud Foundry platforms during a podcast hosted earlier this month by Alex Williams, founder and editor-in-chief of The New Stack,  during Cloud Foundry Summit Europe 2018 in Basel, Switzerland. Zuber described how their roles have evolved over the past year as platform engineers. “Last year, we [adopted] DevOps, as we have enabled users to use Cloud Foundry. We have begun to develop data services customers need to for database applications, messaging queues etcetera,” Zuber said. “We focus on the automation to set up these services. So, you have the features from Cloud foundry also for our data services.” When offering data services with Cloud Foundry, stateless is the operative word, Zuber said. Watch on YouTube:
Oct 24, 2018
How Allies Can Help Women In Tech
The state of gender diversity has a long way to go before it can reach acceptable levels in tech — as well as in society in general. The positive news is that there is a strong undercurrent of players who are striving to make a difference. Initiatives created to help bring about positive change was one of the main topics discussed during a podcast hosted earlier this month by Alex Williams, founder and editor-in-chief of The New Stack  during Cloud Foundry Summit Europe 2018 in Basel, Switzerland. Jennifer Cloer, founder of and lead consultant for THINKit PR, creator and executive producer for The Chasing Grace Project and co-founder of Wicked Flick Productions;  Swarna Podila, senior director, community, for the Cloud Foundry Foundation, and Steve Greenberg, founder of Resilient Scale, were the podcast guests on hand who spoke about their experiences and projects devoted to improved diversity. Watch on YouTube:
Oct 23, 2018
Kublr's Slava Koltovich Says Canaries are for Ops, Too
In this episode of The New Stack Makers, TC Currie talks with Kublr CEO Slava Koltovich about canaries, Kubernetes and operations. Klotovich, was working in company providing technical services to enterprise clients when Kubernetes hit the scene a few years ago. He saw that most companies who are providing Kubernetes abstraction layers are focused on development, and not so much was being done for operations. Recognizing an opportunity, Kublr was born. The Kublr products are tuned for the operations environment and for the typical use cases for operations. The teams normally responsible for having applications up and running, for example infrastructure teams and application support groups, have been slower to adopt Kubernetes. Since most open source code comes from developers, not surprisingly, most of the available Kubernetes services are focused on developers. Kublr saw the opportunity to tailor Kubernetes functions for operations.
Oct 22, 2018
Using BOSH To Get The Stack Done
Cloud Foundry’s BOSH continues to serve many organizations as a missing Cloud Provider Interface (CPI) link for managing deployments throughout the production cycle across multi-cloud environments. Dr. Nic Williams, CEO of Stark & Wayne, a cloud services consultancy, and Marco Voelz, a developer for software giant SAP, were on hand during Cloud Foundry Summit Europe in Basel last week to discuss during this podcast why BOSH continues to be at the heart of Cloud Foundry with Alex Williams, founder and editor-in-chief of The New Stack. BOSH remains a key part of Cloud Foundry's multi-cloud strategy thanks largely to its CPI, which “abstracts all those nitty-gritty infrastructure details from the BOSH code base itself,” Voelz said. In this way, BOSH can run on AWS, Azure, OpenStack or "wherever you like — as long as there’s a CPI for it," Voelz said. Watch on YouTube:
Oct 17, 2018
Dr. Nicole Forsgren on DevOps: 'You Are What You Measure'
Dr. Nicole Forsgren is the CEO and Chief Scientist of DevOps Research and Assessment (DORA), and the principal author of the annual State of DevOps Report.  On many occasions, she’s asserted the case that “you are what you measure” — that a company’s capabilities may be either enabled or constrained by the extent to which it is capable of perceiving how it does what it does.  In a recent conversation for The New Stack, I presented Dr. Forsgren with the notion that an organization that automates its processes in a cloud native manner must also measure those processes cloud-natively as well.  In so doing, I suggested, it would create a business that operated under very different principles, since it operates on a platform where measurement has a very different context. “I think I’ll agree to the point that, when we change our technology stack and applications in order to be cloud native,” the CEO responded, “that will likely change the way we do our work, whether it’s through a direct change because we’ve changed our work, or through the measurements that we now employ to track and evaluate that work.
Oct 16, 2018
GrapeUp’s Take On Creating Stacks On Open Source
A major theme among others at the Cloud Foundry Summit Europe in Basel last week was about how to leverage open source architectures while picking and choosing from the best-and-brightest tools to complete a stack. How to combine the best of both worlds was a major topic during a conversation at the Basel summit between Daniel Hekman, GrapeUp head of enterprise business development, Roman Swoszowski, GrapeUp vice president of cloud R&D, and Alex Williams, founder and editor-in-chief of The New Stack. “We see customer often prefer to use open source technologies, open source Cloud Foundry in particular, and of course, they also use other tools around that, so they can build a complete stack around their workloads and around their those applications,” Swoszowski said. “We thought why don’t we package that and make it easier for them them to set up.” Watch on YouTube:
Oct 15, 2018
Defining Company Values and DevOps Practices
“Where do you put your value as a company?” asked Sacha Labourey, CEO of DevOps automation platform maker CloudBees, speaking with The New Stack.  “Where do you think your differentiation will come from?  I’ll be a bit sarcastic here, because I have great regard for the IT Ops people, but a company is not going to become a leader of the market because it’s just ten times better at installing Linux and switches.  A company is going to be ten times better in the market at differentiating features, value, through software.  That comes from the development.” Here, Labourey represents a very powerful argument:  Too many of the processes that constitute IT operations are undistinguished, providing minimal business value to the company.  Automation absorbs those processes, enabling individuals to be reassigned to more value-intensive roles.  That’s assuming, of course, that their bosses haven’t watched that video where their heads pop into nothingness.
Oct 11, 2018
Cloud Native DevOps Roles Offer Vision of a New Organization
Kohsuke Kawaguchi is Chief Technology Officer of CloudBees, and the originator of the Jenkins automation platform upon which so many development and operations teams both depend. As Kawaguchi told The New Stack, he’s witnessed numerous examples of organic evolutions of automation, where two teams automated their own processes to the extent that the interactions between them get automated as well. In such a circumstance, he acknowledges, the transactions that take place may only exist today because they existed in the past — because that’s the way these jobs were designed to work, back before they became automated. “I do also wonder, is that an optimal way to do things?” asked Kawaguchi. “If you did the thinking from scratch, do you do automation along the previous organizational boundaries?”
Oct 10, 2018
Creating a Standard for Serverless Events
The Cloud Native Computing Foundation (CNCF) last year established a serverless working group to help define serverless technologies and how they fit into a cloud native architecture. One of the first, most common issues the group addressed was the lack of an industry-wide definition for events and the associated metadata. “Everyone defines an event a little bit differently and they don't really take into account the context of the event,” said <a href="" target="_blank">Ken Owens</a>, vice president of digital architecture at MasterCard and a member of the CNCF’s serverless working group. “Being able to fire off something and forget about it and hope that it works was a common pattern we used to have. We now have more business logic that's needed around those events to understand more about the context and the success or the failure of those events.”
Oct 09, 2018
AppDynamics Evangelist on Why Today's Developers Are in a Good Place
Today, we speak with Ravi Lachman, a technical evangelist for application monitoring platform provider AppDynamics, as part of The New Stack podcast series featuring developers and engineers who share their down-in-the-trenches stories during this renaissance era in computing. Lachman’s professional life began when he got his foot in the door over 10 years ago at IBM. There, he was paid to take part in its software engineer co-op program while completing his undergraduate studies at the Georgia Institute of Technology. “I was able to do the testing the high-paid engineers wouldn’t mind doing but they were like ‘just let the intern do it,’” Lachman said. “It was stellar…it was more than beer money.”
Oct 08, 2018
SignalFx Co-Founder and CTO on The Radical Performance Leaps Microservices Must Make
Monitoring today’s highly distributed and often immensely complex and decentralized environments requires unprecedented capabilities and reach. Speaking with Alex Williams, founder and editor in chief of The New Stack during the recently held PagerDuty Summit in San Francisco, SignalFx co-founder and CEO Karthik Rau and the CTO Arijit Mukherji discussed the new age of monitoring and how it has become a core capability in managing infrastructures. A core capability of effective monitoring consists of meeting the demands of highly distributed applications. “In a traditional enterprise architecture, you have a monolith and it’s running on a single server. There’s a lot of monitoring that you can do locally to understand if instances fail,” Rau said. “Today’s architectures are more and more distributed — you have VMs, you have containers, you have distributed architectures and distributed databases that might be running on tens or hundreds of nodes. And so what’s happening on one instance is not as interesting as what’s happening across the collection of instances since performance matters across an entire service.” Watch on YouTube:
Oct 05, 2018
Steve Hazel of Sauce Labs Says Pipeline Automation is Key for Competitive Advantage
With the move from waterfall to agile to continuous delivery, software testing has undergone several necessary transformations, the most important of which is testing automation. For this episode of The New Stack Makers, Steve Hazel, Co-Founder and Principal Architect at Sauce Labs joins TC Currie to talk about the move to automated testing, which Sauce Labs has been at the forefront. The best advice Hazel has is to aggressively invest in automating your deployment pipeline from start to finish. Watching their customers over the last ten years, he’s seen that companies who have completely automated their pipeline, start to finish, are going much faster than their competitors. “You should have push button deployment, from ‘I wrote that code on my laptop’ to that code goes into production, fully tested, if there’s a problem detected in production, it gets rolled back, making that 100% automatic, including how you spin up the infrastructure that’s going to run it, absolutely everything.”You just see how much faster origination are moving who are at 100% over the companies that are at 40% or 60% automated. It’s huge.”
Oct 03, 2018
PagerDuty’s CTO Alex Solomon On Building Microservices At Scale
Deploying microservices on cloud as well as on-premise environments can offer enormous boosts in computing and agility. But once rolled out, the ability to effectively manage hundreds or even thousands of microservices that run in highly distributed environments becomes critical in order to maintain these ambitious deployments. Alex Solomon,  CTO and co-founder at digital operations management PagerDuty, should know — Solomon started his career on the ground floor of cloud computing as a software engineer for over 10 years ago in 2006 and is now involved in the cutting edge of microservice deployments on the cloud. He described how cloud computing environments have evolved over the years and the current and emerging challenges associated with event triage, communication, collaboration and other concerns for this latest episode of The New Stack Makers podcast, hosted by Alex Williams, founder and editor-in-chief of The New Stack, during the recently held  PagerDuty Summit in San Francisco. Watch on YouTube:
Oct 02, 2018
Serverless for Teams
A pay-as-you-go pricing model and increased velocity are two well-known effects that serverless technologies have on application delivery. Just as important, but often overlooked, is how serverless affects developer workflows and team dynamics. Rather than focusing entirely on business logic and code, developers take on more responsibility for configuring cloud resources. “[Serverless] redistributes the responsibility of operations work and in the grand scheme it actually enforces the DevOps model,” Nate Taggart, CEO of Stackery, said. “Serverless is fundamentally DevOps. It’s developers having to iterate over operations work in the same cycle as their development work.” Serverless adoption doesn’t start with the CTO, Taggart said. Instead, organizations typically adopt serverless because their engineers have started to use AWS Lambda on their own in an effort to ship features faster. The absence of governance can create resiliency and scaling problems for organizations, as individual developers bring their own workflows into a team dynamic. Operations teams quickly lose visibility and control into the application as a whole, and rollbacks and troubleshooting become a concern.
Oct 01, 2018
Open Source and Humanity, a Discussion with Mårten Mickos
Elon Musk and Tesla's open-sourcing of its code is a symbol of a major next phase of transformation for how we perceive ourselves and society. It touches on the truth of open source software as an example that humans can show that really, they love to debate. "I think society has to always look for resilience, and build resilience into society. Things that will survive no matter what happens, and will survive even if nobody's watching, even if the boss is missing, even if there's no decision maker. Open and distributed meritocracies have always provided the strongest resilience. When you say how do we build cars, and IoT, and software in general that can stand the test of time, the best thing is to make it open so that anybody can participate and that the participation is based on merit. Not based on ownership, not based on nationality, not based on politics, it's based on the merits of the software. [...] The more open software is, the more it can become the underpinning of something very large," said Mickos.
Sep 27, 2018
Iterate Quickly and Test More, Turo's Car Sharing Service Depends On It
Iterate quickly and let the product team test out ideas, says Adam Bovill, director of engineering at Turo, the car-sharing service that connects owners with travelers. "If you can test ten, 15 or 100 ideas quickly and effectively you can find one, two, or ten that are good," said Bovill, adding that as the Turo team is working through ideas, their data science team comes up with different models to understand risk, pricing on vehicles. Turo has two different customers. They have owners, hosts and they put their cars on the platform. They make money when not using their cars. Then there are the people who are traveling who are needing a car. Hosts and owners both have different needs. Turo then uses algorithms to test those needs. New Relic has been used by Turo since its launch in 2012. They use the New Relic APM extensively, with New Relic getting 99 percent of their monitoring.
Sep 26, 2018
A Google Product Management Lead on What CI/CD Really Means
The term CI/CD can mean many things to many people, sometimes only referring in general terms to software development and deployment. Too often, it is buried in marketing speak, with only vague connotations in relation to CI/CD’s true meaning: as a way to combine continuous integration (CI) and continuous delivery (CD). Michael Winser, product management lead for Google’s Cloud Build, described what CI/CD means for Google as well as the term’s meaning for the software industry. He discussed that and the emergence of continuous integration and continuous delivery and their combination during the past decades, for this latest episode of The New Stack Makers podcast, hosted by Alex Williams, founder and editor-in-chief of The New Stack, recorded in New York last week. CI and CD are increasingly used interchangeably as software is deployed at scale, Winser said. “The terms get used together because the lines are a little bit blurry depending upon how you’re building your software, what kind of software you’re doing and you might have different processes,” Winser said. “But the way I think about it is ultimately CI is an automated approach towards verification, towards correctness of your software at the time of merging it.”
Sep 25, 2018
The Changing Role Of An SRE In An Event-Driven World
The role of the site reliability engineer (SRE) has emerged as a key component in new stack development. One part developer, another part operations admin; the SRE is a key player in DevOps teams, tasked with creating applications, following the process through the entire production cycle and then debugging and troubleshooting when things go awry. Abdullah Siddiqui, an SRE at cloud accounting software provider Xero, described to Alex Williams, founder and editor-in-chief of The New Stack, during the PagerDuty Summit in San Francisco last week, how the dynamics of what he does continues to evolve. At Xero, the SRE team is largely there, in part, to ensure product development teams have the support they need.
Sep 21, 2018
Taking a Proactive Approach to Distributed Tracing with New Relic APM
The evolution of distributed tracing has seen many changes over the years. TNS Founder Alex Williams sat down with New Relic Senior Product Manager Vic Soares to discuss where the industry is going and how customers are making the most of distributed tracing in their workflow. New Relic announced recently that it has made distributed tracing generally available in New Relic APM. "It's geared for folks that have written applications that rely on services oriented architecture, microservices architecture, to help them understand the path the request takes," said Soares. Williams then inquired as to the context of modern application development and distributed tracing, as modern software has become more complex over the years. Soares noted that distributed tracing allows users to be able to see how things flow, where errors are, and where issues impacting latency occur.
Sep 20, 2018
Build DevOps Teams, Start Your Digital Transformation
A digital transformation requires DevOps — DevOps consists of individual teams that make up the building blocks of a successful digital journey. This was a major theme of a conversation between Ben Connolly, head of Digital IT at Vodafone; Matty Stratton, DevOps Evangelist at PagerDuty and Alex Williams, founder and editor-in-chief of The New Stack, at the PagerDuty Summit in San Francisco last week. Vodafone, for example, which is at the early stages of its digital transformation, is relying on DevOps teams to boost its pace of delivery, responsiveness and its ability to innovate, Connolly says. “We are a fairly very large organization, and are a moving slowly in some places, so we are really keen to change that,” Connolly said. “The focus on DevOps is fundamental to empower our teams and to set our teams up with clear goals.” Watch on YouTube:
Sep 19, 2018
Devops and Security Practices Equals DevSecOps
On today's episode of The New Stack Makers, TNS Founder Alex Williams sat down for a discussion with tCell Founder and Vice President of Engineering Boris Chen to learn more about the impact of what is now called DevSecOps in today's enterprises. Unifying DevOps and Security and moving towards the trend of DevSecOps is something many engineering teams are embracing as they find themselves not only working across distributed systems, but distributed teams. Chen's 25 year background is based in enterprise software, with a background in J2E, with his previous role being VP of Engineering at Splunk. Early in his career he did a lot of QA and performance testing, which greatly impacted how he approached developing tCell. "That monitoring aspect seems to be a missing hole in application security in general," said Chen. These observations were how they arrived at tCell, with its architecture built upon inspiration from New Relic and AppDynamics in the APM space. Using agents that are able to plug into the application process, Chen noted, was not feasible in a cloud service, adding that if you plug in an agent to every server in your cloud service, the agent then becomes part of the software.
Sep 18, 2018
Jennifer Tejada, CEO At PagerDuty: DevOps Success Relies On Teams, Empathy And Inclusion
Jennifer Tejada, CEO of PagerDuty dropped by the TNS podcast booth to talk about teams with Alex Williams and TC Currie  at the PagerDuty Summit in San Francisco earlier this week.  The theme of the Summit is Ops and Opportunity and Tejada used her keynote to speak about the importance of being team-centric, and trust.  But how do you get there? When I think about teams and real-time operations, it can often be a mess, said Williams. “There is often chaos before there is order,” she acknowledged, smiling.  The way we’re working is changing.  The workforce is distributed and need to collaborate and work well together because minutes and seconds count. Real-time operations is about technology, she said,  but it’s more about helping people get the most out of the time and investment and tools they have to get the best outcome for their customers and their businesses. Watch on YouTube:
Sep 17, 2018
Stackery’s Ecosystem Manager on Listening to People in Tech
The concept of helping organizations deploy to serverless faster and with fewer resources is straightforward. But underneath the platform Stackery offers, of course, is a lot of heavy-lifting development work that goes into creating the necessary code. The end result is about making serverless more accessible for organizations that might otherwise not have the resources and knowhow in house to make the move. Besides software engineering skills to help to continue to build on Stackery’s platform, the importance of attracting the right talent is also critical. In this way, the team effort is key, Farrah Campbell,  ecosystem manager at Stackery, told TNS founder and editor-in-chief Alex Williams for this podcast sponsored by security platform provider Twistlock. “What I try to do at Stackery is something not [specific] to technology — it’s more about the team,” Campbell told Williams at Rontoms restaurant in downtown Portland where Stackery is based.
Sep 13, 2018
Pulumi CEO Joe Duffy on Deploying to the Cloud Faster with Your Favorite Language
Pulumi CEO and Co-Founder Joe Duffy and his team could have created a new programming language to help developers deploy their applications to multi-cloud environments — but they did not. “The tech nerd in me would love to go creating a new language,” Duffy, who was previously a long-time Microsoft software engineer and tool developer, said during a live interview with TNS founder and editor-in-chief Alex Williams. “I’ve done that a few times before, but it didn’t seem appropriate.” Instead, the Pulumi cloud native development platform allows developers to use the programming language of their choice for containers, Lambdas and infrastructure on the cloud. “We figured out a way where you can just write some code in your favorite language and that was sort of a major breakthrough,” Duffy said. “[It was] the initial line in the sand that we drew when we said, ‘we are going to just embrace languages that people know...and make them work.’ I think, for now, existing languages are doing just fine.”
Sep 12, 2018
The Keynotes from New Relic: Modern Visibility with Distributed Tracing
On this episode of The New Stack Makers, TNS founder and editor-in-chief Alex Williams was on-site at the New Relic offices in Portland, Oregon for a preview of the FutureStack 2018 conference keynotes and learn more about New Relic's approach to distributed tracing from New Relic SVP of Product Management, Aaron Johnson. Launching the conversation, Williams dove into New Relic's takeaways from FutureStack: "We can start with our focus on modern. We define modern as: Cloud, containers, microservices, serverless, and DevOps," said Johnson. Highlighting the 'lightning rod' that containers have become, Johnson explained that the creation and option of DevOps combined to create a 'seismic event' when brought together, leading to many companies that were not previously focused on software becoming software companies first, transforming their businesses with these technologies.
Sep 11, 2018
MapR's Jack Norris Talks Data for Fabrics, Persistence & AI
With CI/CD becoming more and more the defining competitive edge in the marketplace, the big question is how, exactly, does one accomplish continuous delivery? On this episode of The New Stack Makers, we sat down with Jack Norris, to talk about a big piece of that puzzle. He’s senior vice president at MapR, a company that provides a data fabric layer to the tech stack necessary for continuous delivery. The concept of a data fabric, which allows data to flow seamlessly across all locations whether its databases or along the edge, is a fundamentally different architecture, Norris said. Back in 2008, when MapR was created, it represented a paradigm shift in thinking about data. Traditionally, the application dictated how the data must be organized and you ended up separate application stacks and data silos. In today’s world of continuous delivery and speed of application use, data is a big pressure point, said Norris. A data fabric is an alternative to these separate silos. The fabric contains multiple types of data, supports different types of workloads, stretches across locations globally, and provides easy access to data on premise, in the cloud, or all the way to the edge, he said.
Sep 10, 2018
CI/CD with Jenkins X and Kubernetes
The entire technology industry has aligned behind Kubernetes. Since then, application lifecycle management has become much easier. Before Kubernetes, only the CI half of continuous integration and continuous delivery (CI/CD) was automated. CD was assembled by hand with scripts, pipelines, metadata and configurations. Kubernetes enables CD automation, and tools like Jenkins X make it simple to deploy on Kubernetes. “CI/CD should become increasingly like an appliance that just does CI and CD for you. It's not this kind of ninja scripty thing that only experts can figure out,” said James Strachan, chief architect at CloudBees. “Where we're trying to go with Jenkins X is not so much hiding Kubernetes, not so much hiding CI and CD and pipelines, but just automating it.”
Sep 05, 2018
Talking Up Kubernetes 1.12 with Present and Former Release Managers Tim Pepper and Josh Berkus
Kubernetes remains on track to offer some exciting new themes with the upcoming release of 1.12, while the team-backed process making it all happen continues to evolve as well. Before Tim Pepper, of the Open Source Technology Center at VMware,  began to lead the effort for the launch of 1.12 scheduled for the end of month, he already had a very solid and hands-on understanding of Kubernetes’ development process in a very hands-on way. Much of what he learned was as a shadow release manager for Josh Berkus, Project Atomic Community lead at Red Hat, who lead the 1.11’s release efforts. Both Pepper and Berkus were on hand at OSCON 2018 for a live interview with TNS founder and editor-in-chief Alex Williams. “The Kubernetes community does a really good job of grooming their contributors, as well as mentoring and training them,” Pepper said. “Specific to the release team, there's actually a process.”
Sep 04, 2018
What it Takes to Manage the Kubernetes Community
Sometimes, managing the software community can be just as much work as writing the actual software. Paris Pittman, Developer Relations Program Manager, Google, knows this because she's been working to help manage the Kubernetes community for some time now. She said she enjoys the work because the community has a terrific attitude, and is very inviting to newcomers. "I think that's one of the reasons we as a project have grown so much, is because we have a welcoming community. It's amazing to see how many issues (bugs, not personal issues) we have and deal with, and then still manage to be so welcoming and friendly to people that come to us," said Pittman.
Sep 03, 2018
DevOps World + Jenkins World 2018 Preview: Are DevOps and Jenkins Synonymous?
Jenkins has often been called the “engine of DevOps,” and in recent years through the aid of plug-ins, the hub for a continuous delivery pipeline.  It’s explained as an automation tool, and the principal software component around which an organization’s DevOps strategy may be based. Yet at its core, it is essentially an automation server.  Its extensive use by IT professionals for data center automation and infrastructure management is significantly under-reported.  Indeed, from the perspective of many data center managers, Jenkins is a movement that they started, and whose uptake by software developers is on account of their persistence. So Jenkins should be something these two departments of IT have in common with one another.  Is the extension of the annual Jenkins World conference into DevOps World an indication that these groups may finally be seeing eye-to-eye — and in the same conference hall?
Aug 29, 2018
When Breaking Up a Monolith, Consider Data as Much as Code
One of the most challenging aspects of migrating to a microservice architecture is deciding which pieces of the monolith to break off first into separate services. Architects must understand the business objectives, how the services function and how they will relate to the rest of the whole. Then, the team faces more challenges once services are up and running. Operational complexity increases because each service may have its own languages, toolsets and infrastructure. To help solve these and other problems that arise when moving to microservices, a new set of commercial monitoring solutions, such as Dynatrace, have emerged on top of existing open source tools like Prometheus. By pulling in data from multiple sources via an API, such monitoring tools can provide a complete view of an application, from its traffic patterns on the network and the database statements it executes, to which container, platform and host a service runs on. “Once you install Dynatrace, we're monitoring and tracking every single service, process, host, log, and also end user,” said Andreas Grabner, DevOps activist, Dynatrace. “We have a complete live dependency map from your complete environment.”
Aug 27, 2018
Discussing Microservices and APIs with's Taylor Barnett
On today’s episode of The New Stack Makers podcast, TNS founder and editor-in-chief Alex Williams sat down for a discussion with's Lead Community Engineer Taylor Barnett recorded live from OSCON 2018, held in Portland earlier this year. Starting off the conversation, Williams brought up the topic of service meshes, to which Barnett quickly noted, "A lot of places aren't even there yet. They're still in the getting started phases, now that we've been talking about microservices for a few years and how to grow that. There's a lot of tooling still to be built out there."
Aug 27, 2018
Redefining Cloud Native to Focus on Business Value
Cloud native isn’t limited to containers and microservices orchestration. This was the main conclusion the Cloud Native Computing Foundation (CNCF) reached when it set out this year to re-define the term “cloud native,” said Justin Garrison, co-author of the book Cloud Native Infrastructure, who was involved in the CNCF’s lengthy process. Under the new definition, CNCF recognizes that cloud native is not just a set of technologies to adopt, but that it also reflects a change in an organization’s structure and processes. “Technology is not the point. The point is business value and that may be about speed of deployment and speed of shipping function,” Liz Rice, technology evangelist at Aqua Security and co-chair of the CNCF’s KubeCon + CloudNativeCon event, said. “You need all the processes and the team structure and everything else around it.”
Aug 23, 2018
A Look Back at Kubernetes with Microsoft's Brendan Burns
On today’s episode of The New Stack Makers, TNS founder and editor-in-chief Alex Williams sat down with Microsoft Distinguished Engineer Brendan Burns at a lively afterparty from this year's Portland-based OSCON 2018. To begin the conversation, Williams inquired as to the time before OSCON, before Kubernetes--Specifically, where was Burns, and what had he been working on? While working with Joe Beda and Craig McLuckie at Google, Burns noted that Docker and containers, "Really changed the game," and that, "Orchestration was where we needed to go, but it had to be open source. It had to be a community. We had to build it out in the public, out in the open. The thing that we open sourced five years ago was a tiny, tiny shell of what it has become."
Aug 21, 2018
Form And Functions With Cloudreach's Emily Young And Linda Nichols
On today's episode of The New Stack Makers, TNS Founder & Editor-in-Chief Alex Williams was live from ServerlessConf 2018. Williams sat down with Linda Nichols, Cloud Enablement Leader at Cloudreach, and Emily Young, Cloudreach Cloud Software Engineer to discuss not only ServerlssConf, but hiring practices, how companies utilise functions, and more. Launching the discussion was a conversation surrounding the way in which Young has brought "server-full" technology into her home by purchasing 500 punchcards from Los Alamos National Laboratory, having an interest in vintage computing, mainframes, and servers. "It's really interesting being on both sides of it, watching the invention of computers, [...] where a computer took up an entire room and now we have these functions, we don't even worry about what the computer is. We just upload little punchcards to the cloud and get back output from AWS or Google Cloud." Watch on YouTube:
Aug 20, 2018
Automation Makes Microservices Security Practical to Deliver
The microservices philosophy and architectural approach have existed for a while in the form of a service-oriented architecture (SOA). A new set of sophisticated tooling makes this elegant architecture practical to deliver. The number of services, and their ephemeral nature, makes it virtually impossible to secure the environment using the tools and manually-driven processes of the past. “It really forces you to change the approach that you take for security from human-designed and maintained with a lot of direct manipulation to a much higher degree of automation,” John Morello, CTO of Twistlock, said. A new breed of security tools can understand and model an application’s typical traffic patterns, develop a reference model that reflects that known good state, and search for anomalies that violate that model. At the same time, new patterns and practices for developers, operations and security teams help integrate that security knowledge from the very beginning of the application development lifecycle.
Aug 15, 2018
GitHub's Nathan Stocks on All Things Rust
Rust has been growing and becoming a more commonly used tool in systems infrastructure. On this episode of The New Stack Makers recorded live at OSCON, we caught up with Nathan Stocks, Engineering Manager for Git Infrastructure at GitHub. He told us just why GitHub has been using Rust to help run its Git infrastructure. He's a big fan of the language, and while GitHub uses it for some projects, he was quick to point out that he can only describe how he uses the language, not how GitHub treats it as a formal tool. "Rust was a personal project by a Mozilla employee. Mozilla picked it up as an official sponsor in 2009, in May 2015, Rust 1.0 arrived. Rust is a really young systems language," said Stocks. "i do teach Rust. I love Rust. I think it's the future. As a systems language it's competing with C and C++, so we're looking at low level languages, compiled, statically typed. Rust gives you a whole bunch of new, modern features, and makes it so that systems programmers can have nice things too." Watch on Periscope:
Aug 13, 2018
Particle CEO Zach Supalla Talks the Reality of IoT
The Internet of Things is slowly working its way into our lives, to the point where we'll just call them Things. With so many software projects, open source tools, and hardware devices out there, it can be tough to even make the distinction between a modern sprinkler system and one that is Internet enabled: non-Internet enabled devices are becoming increasingly less common from hardware vendors across many verticals, from farming to utilities, to transport. Zach Supalla, CEO of Particle, has built a company around redefining what it means to be an IoT platform. While many companies offer a software management layer, or a set of hardware platforms upon which to build, Particle offers the entire retinue of needed assets, from microcontrollers with wireless chipsets, to a device operating system, to a cloud service provider, to development tools.
Aug 09, 2018
Talking Serverless with Creator Soam Vasani
Serverless has grown to become more than just Amazon Lambdas. Today, there are dozens of implementations, from inside the clouds, to those that are designed to run inside a datacenter, to those that run in Kubernetes. That last batch is where the most interest has coagulated over the past year, and now even more so with the announcement of Knative as a project designed to smooth the Serveless experience on Kubernetes. Streamed live at Serverlessconf in San Francisco, this past week, we caught up with Soam Vasani, the creator of, a serverless framework for Kubernetes. He began the project in late 2016, and said that it has become a popular Function-as-a-Service system for Kubernetes users. The project was created at Platform9 to help make their customers more productive on the very first day they installed their own Kubernetes cluster. "You can build functions the same way you do, for example, on AWS Lambda, but you can run them anywhere on any Kubernetes cluster," said Vasani. Watch on YouTube:
Aug 08, 2018
Culture Bias in AI with Camille Eddy
Advertising and white papers may make AI seem like a pie in the sky proposition, with easy analysis, deep insights, and fair algorithms available everywhere. The reality, however, is that AI can expose an even darker side of our own humanity, acting as more of a mirror than as sky-pie. We saw this when Microsoft put an AI driven bot up on Twitter, only to have it spout racist statements shortly there-after. Camille Eddy, currently a student pursuing a mechanical engineering bachelors degree at Boise State, already has a long career as a high-tech robotics intern at places like Alphabet and HP. She's currently interning at nVidia, in fact, when she's not out on the speaking circuit. We caught up with Camille for a livestream at OSCON, where she presented a session on the topic of recognizing cultural bias in AI. Watch on Periscope:
Aug 07, 2018
Securing IoT of the World’s Fastest Super Car
Brandon Shibley is the VP of innovation at Toradex, a company that makes ARM-based System on Modules (SoM), which are different from Single Board Computers. While SBC comes with all components soldered onto the board, SoM offers different components as modules allowing for more flexibility and upgradability. SoM are used in specialized markets such as industrial automation, test and measurement, digital signage, automotive, medical, and more. SoM brings IoT capabilities to supercars, medical equipment and so on. Toradex SoM powers the world’s fastest hyper electric car Rimac Concept One, which uses Apalis iMX6. “We focus on providing industrial grade hardware solutions with long lifecycle support. We also provide software support for these System on Modules,” said Shibley. Watch on YouTube:
Aug 06, 2018
Discussing Serverless with Stackery and Google
We caught up with Kelsey Hightower, Staff Developer Advocate at Google, and Nate Taggart, CEO of Stackery, at a recent Serverless users group meetup. The pair were delivering a fire side chat on the state of serverless, and had keen insight not just into how this new technology fits into current applications, but how it fits in with the entire history of computing. "I think serverless is high in the hype-cycle right now. We've reached peak mania over the potential. It's always a panacea. This technology feels new when in reality it's probably just a new version of the same old thing we do. There's this cycle we go through of abstract away, then take back control," said Taggart.
Aug 02, 2018
How Distributed Teams are Like Microservices: Jim Rose of CircleCI Weighs In
Jim Rose, CEO of CircleCI joins TC Currie to talk about maintaining corporate culture in a distributed environment. Having over 140 team members in twenty-seven locations across twelve countries brings more than the usual problems in hiring and retaining talented employees. Their goal, said Rose, is to “make sure that every employee regardless of where they are feels connected and included and sort of dialed into everything that the company is trying to accomplish at any given time.” They have two sets of tools, he said. One layer is the digital tools to make communication possible across multiple channel options: email. Slack, Zoom and GitHub primary among them. The second layer is a set of processes and rituals so that each organization in the company stays connected and is able to broadcast what they're currently working on, the challenges that they're facing, the the gains that they're making and the progress that we're seeing in the market.
Aug 01, 2018
Docker Makes it Easy for a Developer to Build and Deploy Apps
One of the biggest contributions of Docker to the IT world has been making it super easy to use containers. A developer can work on their local machine, build the app and run it in production without any complexity, thanks to Docker on the desktop. On this episode of The New Stack Makers, TNS correspondent Swapnil Bhartiya sat down with Gareth Rushgrove, Product Manager, Docker, Inc to talk about the tool. Rushgrove said that his focus is more on developer desktop than on servers and cloud. “I care about individual developer laptop and desktop. We work towards creating the best developer experience for using Docker locally,” Rushgrove said. Recently, Docker announced the new version of Docker for Mac and Docker for Windows that enables a developer to create an app and run it in production under a minute, using templates. Now building and deploying an app is as simple as creating a Microsoft Office document. Watch on YouTube:
Jul 31, 2018
Red Hat's Chief Architect of Cloud Development Talks Traffic Management
Christian Posta  is the Chief Architect for Cloud Development at Red Hat, and we caught up with him at OSCON to chat about the next big problem Kubernetes adopters will face once they've gotten their systems containerized. That problem is traffic management, and the Istio Project, which should hit version 1.0 before the end of August, is the planned system for handling it all. Posta lays out the problem and how Istio solves it; "The context of traffic management is really more about doing deployments and reducing the risk of bringing code changes to production. I've worked for big banks, I've worked for big companies where we would release code once a quarter. Every three months we'd have everyone come in Friday night, stay until Sunday night and do a big bang release of everything.We would take a new version of the code, push it to production, and it would be live," said Posta.
Jul 30, 2018
Continuous Integration and Deployment in Kubernetes
Cloud economist, Corey Quinn, said that "Day to day, I solve one problem: I fix the AWS bill. There's a few things it tends to break down into; data transfer and figuring out region arbitrage," said Quinn. In his work, he sees a great many enterprise cloud environments and has some insight into what problems still face microservices adoption in big businesses. "People with an engineering background tend to have a natural bias where we focus on the tooling and the how.  For example, there's been a 30 or 40 year war going on about vi versus emacs, and there's still no clear winner. Some people say vi is the answer, other people are just wrong. So there's this natural tendency to get into how work gets done, almost to the point where it occludes what the work is. You see elements of this periodically arising these days with the microservices revolution. People are now starting to frantically cargo cult around what they see at conference talks, on bus advertisements, who knows where. They're starting to twist a sort of technology that is aimed at solving political and cultural problems and trying to use it in ways that are inappropriate. You can build a fantastic torque wrench, doesn't help you put the nail in any more effectively unless you hold it very wrong," said Quinn.
Jul 25, 2018
Helping Enterprises Move Faster With New Relic's Grace Andrews
The biggest challenge for businesses today is development of software at speed, at scale. For startups, this may be second nature, but for large enterprises, it's the nature of the beast: the bigger the company, the slower it probably moves. For developers inside of these enterprises, it can be easy to feel left behind. As the world moves on to cloud-based AI, IoT, serverless, event-driven streaming servers, the typical enterprise developer with a monolith, database, and an actual datacenter can easily get a feeling of being old and boring. Grace Andrews, solutions engineer at New Relic, said that most enterprises have the same problem: speed. "The ecosystem is growing so much faster than it ever has before. People are always talking about Docker, containers, microservices, etc. But folks sometimes forget there's still roughly 70% to 80% of the industry that is not yet fully automated. You've got folks on this side having conversations about these containerized ecosystems and environments, and how they need to be able to have both Kubernetes but also some other orchestration tool like a cloud platform... You have all of these things in motion, but you still have people who have physical servers. I think we're meeting this critical convergence point where, whether people are implementing the new techs in their environment, or they're looking at it, everybody is worried about scale and speed. Not only are they worrying about scale and speed, they are worried about getting left behind," said Andrews.
Jul 24, 2018
Adil Aijaz of Split Software Talks Agile Deployment
Building software at scale and at velocity requires a great deal of infrastructure, process, and management. While some companies like Facebook and Google may make it seem like CI/CD is easy to build, in reality, both of these companies have spent billions of dollars optimizing their build pipelines and enabling developers to be more productive by removing barriers in the build/test/fix feedback loop. For the rest of us, there are many ways to help improve a CI/CD process that don't actually require writing your own build system, or spending $1 billion to make PHP compile to C++, as Facebook once did. Instead, there are numerous vendors, open source projects, and CI/CD gurus out there to help your team get from writing code to deploying it to production much faster. One company aimed at helping solve the CI/CD speed-up problem is Split Software. Adil Aijaz is the CEO and co-founder of Split, and he sat down with us to discuss the current state of agile deployment in the enterprise world.
Jul 23, 2018
Covalent Talks Cilium, and How it Brings BPF to Kubernetes
The Berkeley Packet Filter is ancient history. It was created in 1992 at Lawrence Berkeley Labs as a way better filter and sort network packets. In the early 2000's it was at the heart of the long running SCO versus Linux lawsuit. Today, it's just another raw interface included with Linux. Recently, however, BPF has become a bit of an interesting topic, as it's become a popular replacement for IPTables. Thomas Graf, CTO and co-founder at Covalent. is also the leader of the Cilium Project. Cilium offers API-aware networking and security for Kubernetes users based on BPF. Graf said that the power of BPF can be tough to utilize in Kubernetes, and so the Cilium Project is aimed at making that easier. "It's allowing you to translate declarative high level intent such as policy, networking, localizing, all of this high level intent that is described with Kubernetes services. Cilium implements these high level constructs with BPF in a most efficient and secure manner. Its bringing the power of BPF in an easily consumable way, and implementing known Kubernetes interfaces," said Graf.
Jul 19, 2018
Neo4j’s Emil Eifrem on Graph Databases, Machine Learning, and More
When it comes to machine learning and GraphDB, “We’re in the first inning of a nine-inning game,” said Emil Eifrem, CEO and founder of Neo4j.  “If you look at machine learning algorithms, they are written in graph language, or can be expressed in graph language.” Eifrem joins TC Currie in this episode of The New Stack Makers.  Speaking from Fort Mason in San Francisco at the GraphTour event earlier this year, Eifrem talks about graph databases, how they are different from relational databases, and how this decade-old technology is keeping up with the new kids on the block.
Jul 18, 2018
Google's Melody Meckfessel and Sam Ramji Reveal the Secrets of DevOps
At the JFrog SwampUp conference in Napa earlier this year, Melody Meckfessel and former Google vice president Sam Ramji (now with Autodesk) were showing off the way Google makes its sausage. Unlike other less well curated development experiences, Google's process is worth examining and shouldn't leave anyone offended or covered in sausage leavings. For starters, Google's internal development processes and practices are immense. The numbers revealed by Meckfessel at the conference showed that over 500 million tests are run per day inside Google's systems. That's to accommodate over 4 million builds, daily. Why so many builds? Because Google's Bazel build system allows for near instant build processes, ensuring developers can quickly gain the feedback they need from their code.
Jul 17, 2018
Talking Up Kubernetes with Rancher
Shannon Williams has played a very hands-on role in launching software for over 20 years. Recently, after observing the power and potential of containerization, Williams co-founded  Rancher Labs in 2014, after successfully creating (now owned by Citrix Systems). Since 2014, things have changed. Kubernetes, of course, has emerged as the standard containerization platform, prompting Rancher to go “all Kubernetes” with its recent production release of Rancher’s namesake product Rancher 2.0. In this episode of The New Stack Makers podcast, Williams takes a step back to offer his perspective on Kubernetes and why and how Rancher made the shift to the platform.
Jul 12, 2018
Talking Serverless with Oracle's Chad Arimura
Just like Kung Fu in the 70's, serverless application development and deployment is hot. But just like Kung Fu, serverless is as much of a mindset as it is a platform. Amazon's Lambdas really kicked off the excitement, but going even further back, the origins of this style of programming can be found in functional principles: those found in Erlang, Haskell, and Scala. Primarily, the idea of stateless computing and the goal of building discrete application functions drive this new paradigm of serverless. What's new about serverless is the fact that applications are offered up to the cloud to run in some unknown nebula managed by the cloud provider, with scaling needs completely abstracted away from the developer. That's the promise, anyway. For the older readers out there, this probably sounds a bit like an elaborate new form of application server. And you'd be completely right. To this end, both IBM and Oracle's approach to the serverless revolution has been to offer open source runtimes for anyone to run in their own cloud.
Jul 11, 2018
Paperspace Co-Founders Discuss TPUs and Cloud Deep Learning
It's a crowded market if you're a machine learning company. Every vendor under the sun has integrated some new-fangled AI-driven service, making the real ROI tough to spot in the jungle of buzzwords and feature creep. Paperspace is hoping to make that journey a little easier for businesses by offering Gradient, an easily manageable infrastructure platform for deep learning. Under the hood, Paperspace is not just some AI startup: they're offering developers access to Google's Tensorflow Processing Units (TPUs), which are otherwise only available for research groups and other computer sciencey-types who've applied to Google to gain access. Paperspace is currently offering TPU access as well as GPU access in its deep learning platform. That alone was worth sitting down with CEO Dillon Erb and CTO Tom Sanfilippo for a chat. These co-founders took time to discuss just what it's like to build deep learning applications with TPUs.
Jul 10, 2018
Discussing Real World Chef Usage With DevOps Experts
There are two sides to every software and IT story: the story of the people doing the work, and the stories the vendors will tell you about how that work can be done more efficiently. Sometimes, the hardest part of the job can be reconciling these two often disparate views of the world, as vision means pavement, and tools meet unique problems. That's why it's so important to discuss the usage of IT tooling with real IT practitioners. Today, we've got two very smart IT folks packed into this episode of the Maker's Podcast, both here to discuss the usage of Chef in enterprise environments. First up is Stephen Figgins, Associate Director of Operations for Agile Technology Solutions at the University of Kansas. "We have been working with Chef for six years and have had a lot of success. Our Chef made it very easy for us to move to AWS. AWS had a lot of complexity to it, like learning how to setup security and networks and things like that. One thing we really didn't have to worry about in this was how do we configure the EC2 nodes we're going to create. Because we already knew how to take a blank EC2 node and make it run our application. We were able to not focus instead on lifting and shifting our applications from our non-cloud environment and instead focus on how we could best leverage the cloud," said Figgins. Watch on YouTube:
Jul 09, 2018
At Scale Delivery and Deployment with Kenzan CTO Jon Stockdill
There is a big difference between agile development and continuous delivery and deployment, but you probably can't get to the latter without having implemented the former. At the end of the day, every company wants to ship better code more often, in order to innovate in its market, but actually turning your software development and IT teams into lean mean feature shipping machines isn't as easy as taking a straight road to a clear goal ahead. Instead, the road to success is paved with DevOps tools, agile processes and best practices. One of those tools is Spinnaker, the open source, multi-cloud continuous delivery tool that originated at Google. Jon Stockdill, CTO and co-founder of Kenzan uses Spinnaker in his DevOps consulting engagements with clients. He said it's the best CI/CD solution out there, at the moment.
Jul 06, 2018
Chef Across The Enterprise
Chef isn't just for standing up machines anymore. With so much riding on enterprise infrastructure, it's tough to move things around with confidence, and to remain certain that everything you removed, moved or replaced is properly back online after such a shift. Chef has evolved to provide this sort of reassurance to IT administrators and developers, far beyond the original use case of provisioning and standing up single machines. Brittany Woods, automation engineer at CARFAX, said that "I'm responsible for making sure Chef works for us, and making sure people's lives are easier because of it. We are a Linux shop. Primarily, we use Chef. Exclusively we use Chef for Linux. We build the systems to support the products, and we Chef to make that happen, and we use Chef to manage those systems throughout their entire lifecycle," said Woods. "Chef is our way to fully manage that architecture from configuration--configuration specific to apps, configuration speicfic to tooling that we use--basically the entire build of the system outside of provisioning... Right now we are comprised of several different smaller teams that maintain a different focus. What products they support, they maintain cookbooks for those products. My role is to make them successful. To ensure they have the tools they need to be successful, and also to manage the Chef architecture," said Woods. Watch on YouTube:
Jul 03, 2018
Discussing DevOps, Data and Microservices with Vexata CTO Surya Varanasi
Data in microservice-based environments can be difficult to manage at scale. When application servers scale to near infinity, the datastores can't necessarily expand to meet that demand; they can only be optimized to keep up, and perhaps sharded. Considering just how much enterprise information is stored in some of those large systems, it's a worrying proposition to be asked by management to increase application performance when much of it is tied to an Oracle or Microsoft database. Surya Varanasi, CTO of Vexata, has been dealing with large amounts of data for over a decade, now. While he once worked around the hardware layer at Brocade, today he focuses very heavily on the enterprise databases that power businesses around the world. From Oracle, to SAP, to SAS, and Microsoft, Vexata swims in a decidedly enterprise pool of customers.
Jul 02, 2018
The State Of Building Images On Kubernetes
At KubeCon in Copenhagen in May, many talks focused on the work required to build continuous integration and continuous deployment pipelines using containers. One of the major issue still remaining in the container world is specifically that last bit of the CI/CD pipeline: building, storing, and securing containers built for internal software projects. Steve Speicher, principal product manager on the Red Hat OpenShift Team, spent a good deal of time at KubeCon looking into the solutions and remaining pain points that exist around dynamically building and managing containers within a more traditional agile development environment. "A lot of people want to leverage Kubernetes for the build in the pipeline itself, and so that's one of the things we're talking about here and learning more about what people are interested in to leverage the platform to do more CI/CD," said Speicher. Ben Parees, Principal Engineer at Red Hat, "You have people who have build CI/CD farms and infrastructure and then their deployment platform. With Kubernetes and OpenShift you have the opportunity to put that all in one, so your cluster is both your build platform, your test platform, and your deployment platform. It's easy to scale up multiple instances, to test them, run your builds there," said Parees.
Jun 28, 2018
Optimizely's Claire Vo Talks Successful A/B Testing at Scale
When building front-end software, it can be tricky to figure out just what works. As with any page layout endeavor, from the Web to the supermarket checkout line tabloids, there are plenty of nooks and crannies to explore with headlines, graphics, and colors. Any software shop earning money on the Web likely already knows about "A/B" testing: the practice of subtle changing your page design and gathering metrics on its effectiveness at converting visitors versus the existing version of the site. Now that such testing regimes are commonplace in the enterprise, it is inevitable that every team eventually encounters the egregeous and exhausting existentialist crisis that is test management. Gathering metrics for a single test is one thing, but what happens when the entire enterprise is pushing tests across thousands of sites all the time? Claire Vo is Silicon Valley success story: she sold her startup Experiment Engine to Optimizely in 2017. Her particular winning formula was to help solve this exact problem for enterprises: Managing experiments at scale across thousands of sites, and measuring results in order to effect actionable changes overall.
Jun 27, 2018
Security for Kubernetes
With all the excitement around containers and Kubernetes, it can be easy to forget that these systems still require the same types of help that older virtual machine and hardware-based systems needed. Chief among that list of needs is security. We sat down at KubeCon in Copenhagen to discuss this very topic with Liz Rice, Technology Evangelist at Aqua Security, Justin Cappos, Associate Professor Computer Science and Engineering at the NYU - Tandon School of Engineering. Cappos is one of the driving forces behind the TUF Project, which stands for "The Update Framework." "We had a pretty long history of going and doing a lot of work with folks at the Tor project and other large software distributions and maybe had concerns about nation-state actors maybe stepping in. About 3 or 4 years ago the Docker community came together and build a really nice implementation of TUF Notary, and as of about 6 months ago, both the Docker implementation, which is the cloud focused implementation of TUF, and the TUF specification itself became CNCF Projects," said Cappos. Watch on YouTube:
Jun 26, 2018
Dipping Into Data Lakes With Dremio's Kelly Stirman
Data lakes are an enticing idea: pour all of a company's information--both structured and unstructured--into a single system, and then everyone can access it and analyze it on demand. It's a great idea, but in practice, actually getting that data back out of the lake and into the hands of the people who need it can be a lot more difficult than it sounds. Kelly Stirman, CMO and vice president of Dremio, has been working with data for decades. In a past life, he worked on strategy at MongoDB, and before that, MarkLogic. In his latest role, he's tasked with helping companies find ways to solve their data lake problems. Chief among those problems, he said, is making that data usable by those who need it.
Jun 25, 2018
Removing Cultural Impediments To DevOps Uptake With Chef
At ChefConf 2018 in Chicago in late May, we sat down with Chef CTO and co-founder Adam Jacob, and Senior VP of Products and Engineering Corey Scobie, to discuss the cultural currents in the enterprise. Specifically, they focused on the proliferation of DevOps and DevOps tools within the business community. One of the things that is potentially a roadblock for uptake of DevOps in the enterprise has been the internal culture of many organizations. With so many new ideas and tools out there, it can feel like your company doesn't get it at all, and even perhaps fears DevOps. Jacob said that the whole IT organization inside of an enterprise must change to properly embrace DevOps, and he said this must even extend to the opinion IT has of itself. If an organization is doing the wrong thing, or is impeding the uptake of DevOps, said Jacob, administrators and IT workers must push to change those impediments, not resign themselves this being the state of things forever and always. "When you know something's not right in the world, in your company, in your organization, or whatever, you have two choices. You go back to work and you accept that, or you go back to work and you do something about it. One of the themes we've been talking about this week is that IT needs to change their thinking in the enterprise to continue to be successful and relevant, and to actually serve the business," said Corey Scobie, Senior Vice President of Product and Engineering at Chef. Watch on YouTube:
Jun 20, 2018
Iguazio's nuclio Serves Data 100x faster than AWS
Yaron Haviv, CTO and co-founder of Iguazio joins TC Currie for this episode of The New Stack Makers.  Haviv’s deep technological experience in the fields of big data, cloud, storage and networking led to him leading the team creating Iguazio’s new product nuclio. This open-source project, launched in December 2017, is an extremely fast serverless platform with a real-time processing engine.  Extremely fast meaning 100x faster than AWS Lambda. “Everyone knows that the value of data diminishes over time,” said Haviv, “so that means when the data starts flowing into the system, you need to start aggregating contextualizing and acting on it as it flows.” The question was how to process data at extreme speed and at scale, moving from the notion that data is something that you store and query to thinking of data as something you continuously process.
Jun 19, 2018
Red Hat's Michael Hausenblas Discusses The State Of Functions As A Service On Kubernetes
Michael Hausenblas, Red Hat developer advocate for OpenShift, still prefers the term Functions as a Service. In the push to expand the serverless capabilities of Kubernetes, Hausenblas, at KubCon in May, told us that one of the key desires for enterprises is to be able to host Amazon Lambda-like functionality internally as well as in public clouds. He expects as more users adopt serverless functions, that developers will increasingly become comfortable with function accessibility via APIs. Hausenblas then detailed some of the changes this shift would bring to developers and their tools. "On the upside, I see a lot of positive developments so that it's pretty easy to actually write something. You can write it any language, as long as it's in Node.js. From a developer point of view, I don't think this is a big problem. It's more on the operational side. So if you actually think about who is going to be on call when you're operating that at scale , since you don't necessarily have any administrators around any more," said Hausenblas. Watch on YouTube:
Jun 18, 2018
KubeFlow: Manage AI Workflows With Kubernetes
Artificial intelligence may be at the peak of its hype cycle for modern businesses, but for the IT administrator it is still a headache, requiring software and processes that may entirely outside the normal sphere of operations. But help is on the way. At Kubecon + CloudNativeCon 2018 last month, David Aronchick introduced the first working version (0.1) of Kubeflow, software that packages the most popular AI and machine learning software so it can be easily run on the Kubernetes container orchestration engine. "We can't ask people to be experts in everything," Aronchick told the audience at Kubecon, in a keynote introducing the technology.  He noted that today's AI tools, such as Jupyter Notebooks or TensorFlow, have to be managed individually and often at great effort (the "bespoke" model). Kubeflow could rationalize this unruly set of software, but offering a common platform upon which they can all be based, and offered easily to the end-user, the data scientist. Watch on YouTube:
Jun 14, 2018
Refocusing On Container Application Security
In the race to make this weird, wild world of distributed, containerized applications compatible with the virtualized infrastructure upon which most enterprises depend, perhaps no project has made more progress than Kata Containers.  The product of collaboration between the project and Intel’s Clear Containers, Kata aims to pair individual containers with hypervisors, creating that direct link with the hardware that typifies first-generation virtualization, and isolating host Linux kernels from one another. Google’s recent gVisor project follows a similar path, creating a minimal Linux kernel for the container hosts that reduces the likelihood of exploit. Some folks contend these architectures may render many of the more aggressive security systems being conceived for containerized environments unnecessary or redundant.  But in a conversation for The New Stack Makers, Aqua Security co-founder and CTO Amir Jerbi told us he believes that even the mode of process isolation gVisor and Kata introduce, would carry with it into practice some security challenges.  Try orchestrating a microservices environment with isolated instances in a multi-tenant environment, he suggests, and see what happens.
Jun 13, 2018
The Kubernetes Community 20-Year Health Plan
Back in May, the world's biggest Kubernetes users and contributors gathered in Denmark for KubeCon Europe. One of the topics we were keen to see addressed by this meeting of the minds was the future of Kubernetes, and the CNCF as a whole. To find out just what is being done to prepare the Kubernetes project for the long haul, we sat down with Jaice Singer DuMars, open source software governance program manager at Google, Aparna Sinha, group product manager for Kubernetes at Google, and Dan Kohn, executive director of CNCF. Watch on YouTube:
Jun 12, 2018
Inspec: Who’s Adopting It, Why, And How It Fits With Today’s DevOps Practices
InSpec is a tool for compliance and security testing. It started around operating systems and traditional VMs, and has grown into the security space as a result. Now, it has expanded beyond that. At this year's ChefConf held recently in May, TNS Founder Alex Williams sat down with Dominik Richter, Senior Product Manager at Chef, andAnnie Hedgpeth, Cloud Automation Engineer at 10th Magnitude. On today's episode of The New Stack Makers, the trio dove into the discussion of how InSpec fills a gap in today's DevOps workflow, and the project's goals for the future. Watch on YouTube:
Jun 11, 2018
A New Approach to DevOps with Spinnaker on Kubernetes
As organizations look to DevOps as a means to achieve digital transformation, they realize they must accelerate the end-to-end software delivery process, and also make it safer.   “It can seem like a boil-the-ocean type of problem. That makes it hard to figure out how you’re going to incrementally derive value from it,” said Andrew Phillips, a product manager in Google Cloud Platform’s DevOps division, in this episode of The New Stack Makers. By separating the developer feedback cycle from the rollout process, organizations can find a manageable starting point. Tools like Spinnaker were built for this purpose, Phillips said, “to provide an abstraction so that development teams can have a simplified experience, while still providing the operations teams with the ability to manage and tweak and define it in exactly the way that makes the most sense for the organization.”
Jun 06, 2018
The Best CI/CD Tool for Kubernetes Doesn't Exist
There is no single, best set of tools for continuous integration / continuous development (CI/CD) with Kubernetes — each organization will use the tools that are best suited for its specific use case. For this reason, the Cloud Native Computing Foundation (CNCF) does not advocate for one toolset over another when it comes to building, deploying and managing applications on Kubernetes, says Ihor Dvoretskyi, developer advocate at the CNCF. However, they do analyze what integrations and support are needed in the Kubernetes core and identify CI/CD trends in the process. “The hardest thing [about running on Kubernetes] is gluing all the pieces together. You need to think more holistically about your systems and get a deep understanding of what you're working with,” said Chris Short, a DevOps consultant and CNCF ambassador. “There [must be] a greater understanding of what your business is considering key metrics, or some people call it true north, and bringing that into the operations and development world more closely.” In this podcast, we talk with Dvoretskyi and Short about the trends they’re seeing in DevOps and CI/CD with Kubernetes, the role of the Kubernetes community in improving CI/CD and some of the challenges organizations face as they consider the plethora of tools available today.
Jun 05, 2018