>> Live from Seattle, Washington it's theCUBE covering KubeCon and CloudNativeCom North America 2018. Brought to you by Red Hat the cloud-native computing foundation and its ecosystem partner. >> Welcome back everyone, it's theCUBE's live coverage here in Seattle of KubeCon and CloudNativeCon 2018. I'm John Furrier, with Stu Miniman, host of theCUBE. Three days of live coverage. Wall to wall, 8000 people here. Doubled from the previous event in North America, expanding globally, we are here with Liz Rice, technology analyst, evangelist at Aqua Security and program co-chair here at KubeCon, CloudNativeCon. Liz, thanks for joining us. >> Thank you for having me. >> I know you had a busy day, keynotes and all. A lot of activity, a lot of hand shaking, walking around, very crowded. >> It is, we're packed. We're absolutely at capacity here and the event sold out and it's busy. >> A lot of energy, real quick, I know you guys did a lot of work, you guys always do a great job, exceptional performance again. >> Thank you. >> CNCF does a great job on the content programming. It's about the open source communities. That's fundamental, a lot of end users, both participating and consuming. Vendor list is expanding. Putting the program together gets challenging when you have these kind of numbers. What were the themes? How did you put it all together? What was resonating? What's the focus? >> Yeah, it was so hard, we had so many applications that we could only accept 13%, which makes it almost impossible some of the decisions you have to make. And some of the things that were coming out, were like Knative, a lot of submissions around Knative. Serverless in general obviously being quite a hot topic, I would say across our industry. Really great talks from end users and we've seen a few on the keynote stage. Where some brands that we're all aware of, people like Airbnb, sharing their stories of what they've done to make their deployments, their cloud-native deployments, their use of kubernetes successful. So it's not just working from the ties, and doing some experiments, they are telling us how they've done this for real. >> You had a very successful KubeCon in Copenhagen. And so how did you integrate from Copenhagen to here. What were some of the inefficiencies? Obviously, the bigger numbers here. You recently had China the success where, we've reported on SiliconANGLE, the open source consumption and contribution is off the charts. It's huge, it's growing and it's a new dynamic. So between China, and Copenhagen, here, interesting things happening. >> China was phenomenal for me. It was my first trip to China, so it was eye-opening in all sorts of respects. And one of the really interesting things there was the use of machine learning. The uses of kube flow, real life examples. Again I think there is something about how much data they've been able to collect in China. But we heard some really great stories of, for example, electricity companies using machine learning on kubernetes to predict demand. It was fascinating. >> It's a lot of adoption. >> Yes. >> They are at the front end, they are a mobile culture. IOT is booming over there, it's just massive. >> Absolutely. >> Alright here in Seattle, obviously Seattle home of AWS, and I was just talking to some folks here locally in Seattle, just this morning, they said they think this is the biggest conference of the year here in Seattle. Which is really telling where you guys have come from. Interesting dynamic. A lot of new ecosystem partners. What's happening? It seems to be energy, the buzz. There's a subtext here that's buzzing around the hallways. What's the most important thing that people should be taking away from this event this year? >> I think the scale of it is coming from real adoption and businesses that are moving their applications into the cloud. Public cloud and hybrid cloud and finding success through doing that with cloud native components. You mentioned the end users who want to be part of the community, and they actually wanted to contribute to the community. You can look around the hall and see booths from, like Uber's over there. They're really contributing to this community. It's not just a bunch of enthusiasts, it's for real. >> Problems being solved, real company end users. >> So Liz, one of the things we've been looking at this is not a monolith here. You've actually got a whole lot of communities. As I've been wandering the floor, if I'm talking to people. We had Matt come on to talk about Envoy and they had their own conference at the beginning of the week and they had 250 people. As I'm wandering around, you talk to a number and it's like oh, I'm here all about Helm. You know there's different service meshes all over the place that everybody is talking about. >> Yeah another big theme. >> You're heavily focused on the security aspects there. I believe you've got a project that Aqua has been involved in. It was kube-hunter if I've got it. Maybe before you talk about kube-hunter, maybe just talk about balancing, this isn't one community, it's gotten really big. Do we need to break this into a micro-services space show? We'll have the core, but lots of other things and spread it out all over the world. >> Sure, it's a real challenge as this community is growing so fast and trying to keep the community feel. Balancing what the contributors want to do and making sure they're getting value and having the conversations they want, but also enabling the vendors, and the end users, and every constituent part to get something good out of this conference. It's a challenge as this gets bigger. There's no kind of, if this doubles again, will it feel the same? That's hard to imagine. So we got to think carefully about how-- >> We've seen that happen and it would not, even from last year to this year was a big change for a lot of people. >> For sure. >> So kube-hunter tell us about that. >> Yeah, kube-hunter, yes, kube-hunter is one of our open source projects at Aqua. It's basically penetration testing for kubernetes clusters, so it's written in Python. It attempts to make network requests looking for things like the open ports. It will tell you if you got some misconfigurations, 'cause a lot of the security issues with kubernetes can come about through poor configuration. And the other thing you can do, you can run it from externally to your cluster. You can also run it inside a pod inside your cluster and then that's simulating what might happen if an attacker got into your cluster, what could they do from there. They compromised a pod which could happen to a software vulnerability. Once they're in the pod, how vulnerable are you? What's the blast radius of that attack? And kube-hunter can help you see whether it's a complete disaster or actually fairly contained. >> Alright, Liz how are we doing from a security standpoint? We've watched the rise of containers over the last few years. And it's like okay wait do I need to put in some kind of lightweight VM? Do I do something there? What can I trust? What do I do? At AWS Reinvent a couple of weeks ago, there's the whole container marketplace. Feels like we are making progress but still plenty of work to do. >> Right, right, container security has lots of parts to it as you go through the life cycle of a container. Actually at AWS Reinvent, Aqua was recognized as having, I think they called it competency. Which I think it's a bit better than competency in container security. >> That's a complement I believe. >> Yeah, really complement, really competent. I think as community on the open source level, there are lots of good things happening. For example, the defaults in kubernetes have been getting better and better. If you are an enterprise, and particularly if you're a financial user, or a media company, or a government organization, you have much stronger requirements from a security perspective and that's where the open source tooling on its own may not be sufficient, and you may need to plug in commercial solutions like Aqua to really beef that up. And also to provide that end to end security right from when you're building your image through to the run time protection which is really powerful. >> Security has got to be built in from the beginning. Let me get your thoughts on end user traction and the huge demand for what end users are doing. I know you guys are seeing on the program side, the Linux foundation, CNC was talking about trying to get more case studies. We're seeing the end users prominent here. You mentioned Uber, Apple's here. A bunch of other companies, they're here. So end users are not only just contributing, they are also consuming. How are the new enterprises that are coming in consuming and interacting and engaging with kubernetes? Where are they on the IQ, if you will, level and what are they engaging on? Kubernetes has matured a bit and ready. It's been deployed, people using it. People gathering around it, but now people are starting to consume and deploy it at different scales. What's the end user uptake? What's the hot areas? What do you see the most people digging in? >> Great question, so I think we are seeing a lot of, particularly, I want to say like mature start-ups, so the Ubers and the Airbnbs and the Lyfts. They've got these massive scaled technology problems, and kubernetes is giving them, and the whole cloud-native community around it, it's giving them the ability to do these kind of custom things that they need to do. The kind of weird and wonderful things. They can add whatever adaptations they need, that maybe they wouldn't get if they were in a traditional architecture. So they're kind of the prominent voices that we are hearing right now. But at Aqua we are seeing some of these, maybe what you might call more traditional businesses like banks. They want to replicate that. They want to shape functionality really quickly. They are seeing challenges from upstart and they want to compete. So they know they've got to shift functionality quickly. They've got to do continuous deployment. Containers enable that. The whole cloud-native world enables that and that's where the adoption's from. >> They can take the blueprints from the people who built it from the ground up, the large scale startups, cloud-native in the beginning, and kind of apply the traditional IT kind of approach with the same tooling and the same platform. >> And we are seeing some interesting things around making that easier. So things like the CNAB, the cloud-native application bundling, that is coming out at Microsoft and Docker are involved in that. I think that's all to do with making it easier for enterprises to just go, yeah, this is the application I want to run it in the cloud. >> So let me ask you a question around the customer end users that we see coming onboard, because you have the upstream kind of community, the downstream benefits are impacting certainly IT and then developers, right? The classic developers, IT is starting to reimagine their infrastructure. All the goodness with cloud, and machine learning, and application is being redefined. It's changing the investment. So in 2019, what's your view on how companies are shaping their investment strategy to IT investment or technology investment strategies with cloud-native? Because this is a real trend that you just pointed out. Okay I'm a big company and I've used the old way and now I want the new way. So there's a lot of okay, instant start. Turn the key, does it run? There's a lot of managed services here, so the new persona of customer. How does that impact their investment, IT investments in your mind? What are you seeing please share any color commentary around that? >> I'm sure we're all aware that we're seeing shifts away from the traditional data center into public cloud which has implications around opex rather than capex. And I guess following on from that people worrying about whether vendor lock-in is a thing. Should they be just adopting in one public cloud or perhaps putting their eggs across different baskets? Should they be using these managed platforms? We have all these different distributions, we have these different managed solutions for kubernetes, there's a lot of choice out there. I think it's going to be interesting to see how that shapes out over the next few years. Are all these different distributions going to find a niche or how's that going to work? >> Matt Klein had a great observation. He was on earlier today from Lyft. He says look to solve a problem, use the tech to solve a problem, and then iterate, build on that. It's iteration mull of dev, ops. I think that's a good starting point. There's no magic silver bullet here. There's no magic answer, I think it's more of just get in there and get it going. The other question I have for you is 2019 prediction for kubernetes. What's going to happen this coming year? We're seeing this picture now, 8000 people, diverse audience. >> Yeah. >> What's the prediction 2019 for kubernetes? >> Oh, great question. I think maybe broader than just kubernetes, but the kind of cloud-native. Because kubernetes is like Janet said in her keynote this morning it's essentially boring. It kind of does what it's supposed to do now. I think what's going to be interesting is seeing those other pieces around it and above it, the improved developer experiences making it easier for companies to adopt. Maybe some of these choices around things like what service mesh you're going to use. How you're going to implement your observability. How you're going to deploy all this stuff without needing to hire 20 super detailed experts. We've got all the experts in this stuff. They're kind of here. The early adopters, great. Maybe that next wave, how are they going to be able to take advantage of this cloud-native? >> I think the programmability is key. Well great to have-- >> I think a big part of that is actually is going to be serverless. The ease of using serverless rather than the flexibility you get out of-- >> The millisecond latency around compute, yeah it's great. Well thanks for coming on, really appreciate it. Final question for you, what surprised you this year? Is there one thing that jumped out at you that you didn't expect? Good, bad or ugly? Great show here, it was packed. The waiting list was like 1500. What was the surprise this year from a program standpoint? >> I think actually the nicest surprise was the contribution of Phippy and all those lovely characters from Phippy Goes to the Zoo and those characters being donated by Microsoft, Matt Butcher and Karen Chu's work, was terrific. And it's just beautiful, just lovely. >> That's awesome, thanks so much Liz. Appreciate Liz right here. Program co-chair at KubeCon, CloudNativeCon, also technology evangelist at Aqua Security. That's her day job and her other job, she's running the content programming which is very huge here. Congratulations, I know it's tough work, a great job. >> Thank you very much. >> It's theCUBE coverage, breaking down all the action here at KubeCon and CloudNativeCon. I'm John Furrier and Stu Miniman, stay with us. Three days of wall-to-wall coverage. We're only on day two, we've got a whole nother day. A lot of great stories coming out of here and great content. Stay with us for more after this short break. (upbeat music)