Cloud Management

Monday, February 7, 2022

- PST
PRO WORKSHOP: Serverless Deep Neural Network(DNN) with Azure Functions and ML.Net
Praveen Raghuvanshi
Praveen Raghuvanshi
Harman International, Cloud Architect

How does a machine classify different species of animals just by looking at an image? Computer Vision is the branch of Machine learning that does the magic and deep learning helps in achieving it. In this session, I will cover an introduction to Computer Vision, Deep Neural Networks and show how to build a serverless image classification application using Microsoft Azure Functions and ML.Net framework. The implementation will be in C# language. 

- PST
PRO WORKSHOP: Monitoring Microservices The Right Way
Dotan Horovits
Dotan Horovits
Logz.io, Technology Evangelist

Modern systems today are far more complex to monitor.
Microservices combined with containerized deployment results in highly dynamic systems with many moving parts across multiple layers.
These systems emit massive amounts of highly dimensional telemetry data from hardware and the operating system, through Docker and Kubernetes, all the way to application and its databases, web proxies and other frameworks.

Many have come to realize that the commonly prescribed Graphite+StatsD monitoring stack is no longer sufficient to cover their backs.
New requirements need to be considered when choosing a monitoring solution for the job, including scalability, query flexibility and metrics collection.

In this talk Horovits will look at the characteristics of modern systems and what to look for in a good monitoring system. He will also discuss the common open source tools, from the days of Graphite and StatsD to the currently dominant Prometheus.
This talk will put you on the right track for choosing the right monitoring solution for your needs. 

- PST
PRO WORKSHOP: FLiP Stack for Cloud Data Lakes
Timothy Spann
Timothy Spann
StreamNative, Developer Advocate

Utilizing an all Apache stack for Rapid Data Lake Population and querying utilizing Apache Flink, Apache Pulsar and Apache NiFi. We can quickly stream data to and from any datalake, data lake house, lakehouse, database or any datamart regardless of cloud or size. FLiP allows for Java and Python developers to build scalable solutions that span messaging and streaming in cloud native fashion with full monitoring.

Tuesday, February 8, 2022

- PST
PRO TALK (CloudWorld): Accelerate Application Performance with a Database Proxies
Erik Brandsberg
Erik Brandsberg
Heimdall Data, CTO

In this session, we will discuss how developers, DBA's, and Architects deploy database proxies to better manage SQL connections for Microservice architecture, buy avoiding unnecessary latency. We review various proxies (open source and proprietary) in the market and discuss key features that accelerate SQL scale without code changes. A live demo will be included. 

- PST
PRO TALK (CloudWorld): Cloud Anatomy 101: Breaking down Cloud-native
Grace Jansen
Grace Jansen
IBM, Developer Advocate

Getting to grips with cloud-native is as vital to your application evolution as breathing is to the body. However, with this term encompassing so many technologies, products and architectural styles, how do you decide which will be best for your own application? Diving into the anatomy and evolution of the human body can give us great insights into the journey you’ll need to make for your own application evolution. Join this session to find out why and discover what is critical for a healthy cloud-native system. 

Wednesday, February 9, 2022

- PST
KEYNOTE: JupiterOne -- Complex IAM Permissions Analysis Using Graphs
Akash Ganapathi
Akash Ganapathi
JupiterOne, Director of Solutions Architecture

Access control in AWS is done via IAM policies. Policies and permissions in IAM can get really complex really fast, leaving a ton of room for mistakes and misconfigurations. To put this in perspective:- There are six types of IAM policies- Policies can have a combination of Deny and Allow statements- Each statement includes Actions, Resources, Principal, Conditions- Each statement can also have negations (exceptions) such as NotResource or StringNotEquals in Conditions- And many other details and tricksIt is best practice to configure least privileged policies. However, to get it right is often more challenging than it looks. As a result, most policies are written with wildcards (*) in Actions, or Resources, or both, with no meaningful Conditions.It is also very difficult to understand the net effective permissions of a policy that contains both Allow and Deny statements, with seemingly contradicting conditions and exceptions. AWS provides an IAM policy simulator that helps, but only helps to a limited extent. With the IAM policy simulator, you have to specify the service(s), action(s), and/or resource(s) and get a “yes/no” answer back telling you if a policy grants the permission to that known combination. It cannot answer the broader question of “given a policy, what resource permissions does it grant access to” in general.