Invention, IBM and Istio, with Lin Sun

Kubernetes Podcast from Google

Episode | Podcast

Date: Tue, 14 Jan 2020 16:23:54 +0000

<p>What do you do next when you have over 150 patents to your name? Write a book, of course! <a href="https://twitter.com/linsun_unc">Lin Sun</a> is a Senior Technical Staff Member and Master Inventor at IBM, where she has spent the past 14 years doing software engineering in areas including cloud and open technologies. She has worked on the Istio service mesh since 2017, and is on the Istio steering and technical oversight committees. Lin joins <a href="https://kubernetespodcast.com/about">Adam and Craig</a> to discuss invention, making Istio easier to use, and how being a mother has impacted both.</p> <p>Do you have something cool to share? Some questions? Let us know:</p> <ul> <li>web: <a href="https://kubernetespodcast.com">kubernetespodcast.com</a></li> <li>mail: <a href="mailto:kubernetespodcast@google.com">kubernetespodcast@google.com</a></li> <li>twitter: <a href="https://twitter.com/kubernetespod">@kubernetespod</a></li> </ul> <h3 id="chatter-of-the-week">Chatter of the week</h3> <ul> <li><a href="https://www.seattletimes.com/seattle-news/weather/several-inches-of-snow-in-parts-of-puget-sound-region-and-more-on-the-way/"> Snow in Seattle</a></li> </ul> <h3 id="news-of-the-week">News of the week</h3> <ul> <li><a href="https://grafana.com/blog/2020/01/09/introducing-tanka-our-way-of-deploying-to-kubernetes/"> Tanka, from Grafana</a> <ul> <li><a href="https://news.ycombinator.com/item?id=22011251">Hacker News commentary</a></li> <li><a href="https://jsonnet.org/">Jsonnet</a></li> <li><a href="https://blogs.vmware.com/cloudnative/2019/02/05/welcoming-heptio-open-source-projects-to-vmware/"> ksonnet archived</a></li> </ul> </li> <li><a href="https://github.com/brendandburns/configula">Configula, from Brendan Burns</a> <ul> <li><a href="https://en.wikipedia.org/wiki/Caligula">Caligula, from Rome</a></li> </ul> </li> <li><a href="https://www.cncf.io/blog/2020/01/08/toc-votes-to-move-falco-into-cncf-incubator/"> Falco moves to the CNCF incubator</a> <ul> <li><a href="https://www.youtube.com/watch?v=cVikZ8Oe_XA">Falco’s biggest hit, Rock Me Amadeus</a></li> </ul> </li> <li><a href="https://www.cncf.io/blog/2020/01/09/certified-kubernetes-application-developer-ckad-certification-is-now-valid-for-3-years/"> CKAD is now valid for 3 years</a></li> <li><a href="https://github.com/projectcontour/contour/releases/tag/v1.1.0">Contour 1.1.0</a></li> <li><a href="https://medium.com/better-programming/getting-serious-about-open-source-security-1d15609478fa"> Getting serious about open-source security</a> by Dan Lorenc <ul> <li><a href="https://kubernetespodcast.com/episode/039-minikube/">Episode 39, with Dan Lorenc</a></li> </ul> </li> <li><a href="https://thebsdbox.co.uk/2020/01/02/Designing-Building-HA-bare-metal-Kubernetes-cluster/"> Designing and Building HA Kubernetes on Bare-Metal</a></li> <li><a href="https://github.com/Azure/AKS/issues/1373">AKS Latency and performance/availability issues due to IO saturation and throttling under load</a></li> <li><a href="https://www.stackrox.com/post/2020/01/kubernetes-networking-demystified/"> Kubernetes Networking Demystified</a> by Karen Bruner at StackRox</li> <li><a href="https://devspace.cloud/blog/2020/01/09/access-to-kubernetes-for-developers"> How to Give Developers Access to Kubernetes During Development</a> by Daniel Thiry <ul> <li><a href="https://devspace.cloud/blog/2020/01/08/computing-resource-cost-for-cloud-development-with-kubernetes"> How to deal with computing resource cost for Kubernetes-based development</a></li> </ul> </li> <li><a href="https://www.datadoghq.com/blog/istio-metrics/">Key metrics for monitoring Istio</a> from Datadog</li> <li><a href="https://www.learncloudnative.com/blog/2020-01-09-deploying_multiple_gateways_with_istio/"> Deploying multiple Istio Ingress Gateways</a> by Peter Jausovec</li> <li><a href="https://monitoring2.substack.com/p/big-prometheus">Big Prometheus</a> by Clay Smith from Monitoring Monitoring</li> <li><a href="https://itnext.io/breaking-changes-in-helm-3-and-how-to-fix-them-39fea23e06ff"> Breaking Changes in Helm 3 (and How to Fix Them)</a> by Jack Morris</li> <li><a href="https://alex.kaskaso.li/post/pull-based-pipelines">Security advantages of pull-based CD pipelines</a> by Alex Kaskasoli</li> <li><a href="https://banzaicloud.com/blog/zero-touch-authentication-on-kubernetes/"> Zero touch authentication on Kubernetes</a> by Peter Wilcsinszky at BanzaiCloud</li> <li><a href="https://banzaicloud.com/blog/vault-multi-datacenter/">Vault replication across multiple datacenters on Kubernetes</a> by Nandor Kracser</li> <li><a href="https://containerjournal.com/topics/container-ecosystems/openstacks-complicated-kubernetes-relationship/"> OpenStack’s Complicated Kubernetes Relationship</a> by Mike Vizard of ContainerJournal</li> <li><a href="https://cloud.google.com/blog/products/containers-kubernetes/new-kubernetes-security-settings-2019"> Kubernetes 1.15 security changes in GKE</a></li> <li><a href="https://www.cncf.io/blog/2020/01/09/kubecon-cloudnativecon-north-america-2019-conference-transparency-report-the-biggest-kubecon-cloudnativecon-to-date/"> KubeCon + CloudNativeCon NA 2019 Transparency Report</a></li> <li><a href="https://www.cncf.io/blog/2020/01/13/zendesk-kubernetes-seemed-like-it-was-designed-to-solve-the-problems-we-were-having/"> Zendesk case study</a></li> </ul> <h3 id="links-from-the-interview">Links from the interview</h3> <ul> <li><a href="https://en.wikipedia.org/wiki/IBM_Master_Inventor">IBM Master Inventor</a></li> <li><a href="https://patents.google.com/?q=IBM&amp;inventor=Lin+Sun&amp;oq=inventor:(Lin+Sun)+IBM"> Lin’s patents</a></li> <li>Her favorites: <ul> <li><a href="https://patents.google.com/patent/US8103726">Analyzing email content to determine potential intended recipients</a></li> <li><a href="https://patents.google.com/patent/US10121056B2/">Ensuring a desired distribution of content in a multimedia document for different demographic groups utilizing demographic information</a></li> </ul> </li> <li><a href="https://cloud.google.com/blog/products/gcp/istio-modern-approach-to-developing-and"> Istio announcement blog</a> and <a href="https://istio.io/talks/istio_talk_gluecon_2017.pdf">GlueCon talk</a> from 2017</li> <li>Lin at the <a href="https://www.ibm.com/cloud/garage/experts/linsun/">IBM Cloud CTO Office</a> <ul> <li><a href="https://research.ibm.com/">IBM Research</a></li> <li><a href="https://www.ibm.com/cloud">IBM Cloud</a>, formerly known as <a href="https://www.ibm.com/uk-en/cloud/info/bluemix-now-ibm-cloud">Bluemix</a></li> </ul> </li> <li><a href="https://www.ibm.com/blogs/cloud-archive/2016/04/service-proxy-to-balance-monitor-and-test-your-microservices/"> Bluemix Service Proxy</a></li> <li><a href="https://www.ibm.com/blogs/cloud-archive/2016/06/amalgam8-integration-fabric-microservices-cloud/"> Amalgam8</a></li> <li><a href="https://www.envoyproxy.io/">Envoy</a></li> <li><a href="https://istio.io/news/releases/1.1.x/announcing-1.1/">Istio 1.1</a>, the “9 months” release <ul> <li><a href="https://istio.io/docs/concepts/traffic-management/#sidecars">The Sidecar resource</a>, which lets you scope which services are known by a given sidecar to reduce resource usage</li> </ul> </li> <li><a href="https://istio.io/about/release-cadence/">Release cadence</a></li> <li><a href="https://istio.io/news/releases/1.4.x/announcing-1.4/">Istio 1.4</a></li> <li><a href="https://istio.io/docs/concepts/security/#mutual-tls-authentication"> Mutual TLS</a></li> <li>New 1.4 features: <ul> <li><a href="https://istio.io/docs/tasks/security/authentication/auto-mtls/">Auto-mutual TLS</a></li> <li><a href="https://github.com/istio/client-go">client-go</a> library</li> <li><a href="https://istio.io/docs/ops/diagnostic-tools/istioctl-analyze/">istioctl analyze</a></li> </ul> </li> <li><a href="https://github.com/istio/istio/issues/6259">Requirement to declare containerPort</a> removed in 1.3, <a href="https://istio.io/docs/ops/configuration/traffic-management/protocol-selection/"> automatic protocol selection</a> added</li> <li>User Experience <a href="https://github.com/istio/community/blob/master/WORKING-GROUPS.md">working group</a> <ul> <li><a href="https://istio.io/docs/reference/commands/istioctl/#istioctl-experimental-add-to-mesh"> istioctl add-to-mesh</a></li> <li><a href="https://istio.io/docs/reference/commands/istioctl/#istioctl-experimental-describe-pod"> istioctl describe-pod</a></li> <li><a href="https://istio.io/docs/setup/install/istioctl/">istioctl install</a></li> </ul> </li> <li><a href="https://github.com/istio/community/blob/master/STEERING-COMMITTEE.md"> Steering committee</a></li> <li><a href="https://github.com/istio/community/blob/master/TECH-OVERSIGHT-COMMITTEE.md"> Technical oversight committee</a></li> <li><a href="https://docs.google.com/document/d/1v8BxI07u-mby5f5rCruwF7odSXgb9G8-C9W5hQtSIAg/edit"> istiod</a> <ul> <li><a href="https://blog.christianposta.com/microservices/istio-as-an-example-of-when-not-to-do-microservices/"> Istio as an Example of When Not to Do Microservices</a> by Christian Posta</li> <li><a href="https://docs.google.com/document/d/1v8BxI07u-mby5f5rCruwF7odSXgb9G8-C9W5hQtSIAg/edit"> Minion cluster mode</a></li> </ul> </li> <li><a href="https://wwwstage.ibm.com/account/reg/us-en/signup?formid=urx-33258"> Istio Explained</a><a href="https://www.ibm.com/downloads/cas/XWN1WV9Q">,</a> by Lin and <a href="https://twitter.com/dancberg">Dan Berg</a></li> <li><a href="https://developer.ibm.com/blogs/ibm-open-source-developers-productive-kubernetes/"> kui and iter8</a></li> <li><a href="https://twitter.com/linsun_unc">Lin Sun on Twitter</a></li> </ul>