notes.md

Notes from the board:

Networking

• Network policy
• Calico, weaveworks
• Private networking
• Ingress, Routes, IP tables
• Alternate ingress - eg. Traefik

Security

• RBAC by default
• Content trust (Notary)
• Security policies
• Hardening
• Secrets/ConfigMaps
• Endpoints
• Container runtime. containerd, clear containers
• Cluster security
• Namespace segregation
• Tiller security

Registry

• ACR
• Image scanning
• Container image security
• Mgmt OS and patching
• Global replication

CI/CD

• Choice: Jenkins, Brigade, VSTS
• ACR Builder
• Helm versioning, proper charting
• Developer productivity
• Comparison to ksonnet/skaffold
• Inner Loop. Draft, Dev Spaces
• GitOps

Data / AI / ML

• Machine learning on k8s
• Kubeflow

Microservices

• Service mesh (linkerd, istio)
• Distributed tracing
• Logging
• TLS
• OpenFaaS
• Microservices architecture
• gRPC
• NATS

Infrastructure

• Terraform
• Kured
• Backup, HA, DR
• Monitoring / logging
• Auto-scaling
• Log Analytics
• Grafana

Storage

• On / off cluster
• Portworx
• Hybrid / Multicloud
• PVC's

Other

• Virtual Kubelet / ACI Connector
• OSBA
• Chaos Testing
• OpenShift
• PKS
• Rancher
• Google compete
• Branding
• Modular labs vs. guided