>> Hello friends and welcome back to Fabulous Las Vegas, Nevada. We are here at AWS re:Invent in the heat of day three. Very exciting time. My name is Savannah Peterson, joined with John Furrier here on theCUBE. John, what's your, what's your big hot take from the day? Just from today. >> So right now the velocity of content is continuing to flow on theCUBE. Thank you, everyone, for watching. The security conversations. Also, the cost tuning of the cloud kind of vibe is going on. You're hearing that with the looming recession, but if you look at the show it's the bulk of the keynote time spent talking is on data and security together. So Security, Security Lake, Amazon, they continue to talk about security. This next segment's going to be awesome. We have a multi-, eight-time CUBE alumni coming back and great conversation about security. I'm looking forward to this. >> Alumni VIP, I know, it's so great. Actually, both of these guests have been on theCUBE before so please welcome Dan and Haiyan. Thank you both for being here from F5. How's the show going? You're both smiling and we're midway through day three. Good? >> It's so exciting to be here with you all and it's a great show. >> Awesome. Dan, you having a good time too? >> It's wearing me out. I'm having a great time. (laughter) >> It's okay to be honest. It's okay to be honest. It's wearing out our vocal cords for sure up here, but it is definitely a great time. Haiyan, can you tell me a little bit about F5 just in case the audience isn't familiar? >> Sure, so F5 we specialize in application delivery and security. So our mission is to deliver secure and optimize any applications, any APIs, anywhere. >> I can imagine you have a few customers in the house. >> Absolutely. >> Yeah, that's awesome. So in terms of a problem that, well an annoyance that we've all had, bots. We all want the anti-bots. You have a unique solution to this. How are you helping AWS customers with bots? Let's send it to you. >> Well we, we collect client side signals from all devices. We might study how it does floating point math or how it renders emojis. We analyze those signals and we can make a real time determination if the traffic is from a bot or not. And if it's from a bot, we could take mitigating action. And if it's not, we just forward it on to origin. So client side signals are really important. And then the second aspect of bot protection I think is understanding that bot's retool. They become more sophisticated. >> Savannah: They learn. >> They learn. >> They unfortunately learn as well. >> Exactly, yeah. So you have to have a second stage what we call retrospective analysis where you're looking over all the historical transactions, looking for anything that may have been missed by a realtime defense and then updating that stage one that real time defense to deal with the newly discovered threat. >> Let's take a step back for a second. I want to just set the table in the context for the bot conversation. Bots, automation, that's, people know like spam bots but Amazon has seen the bot networks develop. Can you scope the magnitude and the size of the problem of bots? What is the problem? And give a size of what this magnitude of this is. >> Sure, one thing that's important to realize is not all bots are bad. Okay? Some bots are good and you want to identify the automation from those bots and allow listed so you don't interfere with what they're doing. >> I can imagine that's actually tricky. >> It is, it is. Absolutely. Yeah. >> Savannah: Nuanced. >> Yeah, but the bad bots, these are the ones that are attempting credential stuffing attacks, right? They're trying username password pairs against login forms. And because of consumer habits to reuse usernames and passwords, they end up taking over a lot of accounts. But those are the bookends. There are all sorts of types of bots in between those two bookends. Some are just nuisance, like limited time offer bots. You saw some of this in the news recently with Ticketmaster. >> That's a spicy story. >> Yeah, it really is. And it's the bots that is causing that problem. They use automation to buy all these concert tickets or sneakers or you know, any limited time offer project. And then they resell those on the secondary market. And we've done analysis on some of these groups and they're making millions of dollars. It isn't something they're making like 1200 bucks on. >> I know Amazon doesn't like to talk about this but the cloud for its double edged sword that it is for all the greatness of the agility spinning up resources bots have been taking advantage of that same capability to hide, change, morph. You've seen the matrix when the bots attacked the ship. They come out of nowhere. But Amazon actually has seen the bot problem for a long time, has been working on it. Talk about that kind of evolution of how this problem's being solved. What's Amazon doing about, how do you guys help out? >> Yeah, well we have this CloudFront connector that allows all Amazon CloudFront customers to be able to leverage this technology very, very quickly. So what historically was available only to like, you know the Fortune 500 at most of the global 2000 is now available to all AWS customers who are using CloudFront just by really you can explain how do they turn it on in CloudFront? >> Yeah. So I mean CloudFront technologies like that is so essential to delivering the digital experience. So what we do is we do a integration natively. And so if your CloudFront customers and you can just use our bot defense solution by turning on, you know, that traffic. So go through our API inspection, go through our bot inspection and you can benefit from all the other efficiencies that we acquired through serving the highest and the top institutions in the world. >> So just to get this clarification, this is a super important point. You said it's native to the service. I don't have to bolt it on? Is it part of the customer experience? >> Yeah, we basically built the integration. So if you're already a CloudFront customer and you have the ability to turn on our bot solutions without having to do the integration yourself. >> Flick a switch and it's on. >> Haiyan: Totally. >> Pretty much. >> Haiyan: Yeah. >> That's how I want to get rid of all the spam in my life. We've talked a lot about the easy button. I would also like the anti-spam button if we're >> Haiyan: 100% >> Well we were talking before you came on camera that there's a potentially a solution you can sit charge. There are techniques. >> Yeah. Yeah. We were talking about the spam emails and I thought they just charge, you know 10th of a penny for every sent email. It wouldn't affect me very much. >> What's the, are people on that? You guys are on this but I mean this is never going to stop. We're going to see the underbelly of the web, the dark web continue to do it. People are harvesting past with the dark web using bots that go in test challenge credentials. I mean, it's just happening. It's never going to stop. What's, is it going to be that cat and mouse game? Are we going to see solutions? What's the, when are we going to get some >> Well it's certainly not a cat and mouse game for F5 customers because we win that battle every time. But for enterprises who are still battling the bots as a DIY project, then yes, it's just going to be a cat and mouse. They're continuing to block by IP, you know, by rate limiting. >> Right, which is so early 2000's. >> Exactly. >> If we're being honest. >> Exactly. And the attackers, by the way, the attackers are now coming from hundreds of thousands or even millions of IP addresses and some IPs are using one time. >> Yeah, I mean it seems like such an easy problem to circumnavigate. And still be able to get in. >> What are I, I, let's stick here for a second. What are some of the other trends that you're seeing in how people are defending if they're not using you or just in general? >> Yeah, maybe I'll add to to that. You know, when we think about the bot problem we also sort of zoom out and say, Hey, bot is only one part of the problem when you think about the entire digital experience the customer experiencing, right? So at F5 we actually took a more holistic sort of way to say, well it's about protecting the apps and applications and the APIs that's powering all of those. And we're thinking not only the applications APIs we're thinking the infrastructure that those API workloads are running. So one of the things we're sharing since we acquired Threat Stack, we have been busy doing integrations with our distributed cloud services and we're excited. In a couple weeks you will hear announcement of the integrated solution for our application infrastructure protection. So that's just another thing. >> On that Threat Stack, does that help with that data story too? Because it's a compliance aspect as well. >> Yeah, it helps with the telemetries, collecting more telemetries, the data story but is also think about applications and APIs. You can only be as secure as the infrastructure you're running on it, right? So the infrastructure protection is a key part of application security. And the other dimension is not only we can help with the credentials, staffing and, and things but it's actually thinking about the customer's top line. Because at the end of the day when all this inventory are being siphoned out the customer won't be happy. So how do we make sure their loyal customers have the right experience so that can improve their top line and not just sort of preventing the bots. So there's a lot of mission that we're on. >> Yeah, that surprise and delight in addition to that protection. >> 100% >> If I could talk about the evolution of an engagement with F5. We first go online, deploy the client side signals I described and take care of all the bad bots. Okay. Mitigate them. Allow list all the good bots, now you're just left with human traffic. We have other client side signals that'll identify the bad humans among the good humans and you could deal with them. And then we have additional client side signals that allow us to do silent continuous authentication of your good customers extending their sessions so they don't have to endure the friction of logging in over and over and over. >> Explain that last one again because I think that was, that's, I didn't catch that. >> Yeah. So right now we require a customer to enter in their username and password before we believe it's them. But we had a customer who a lot of their customers were struggling to log in. So we did analysis and we realized that our client side signals, you know of all those that are struggling to log in, we're confident like 40% of 'em are known good customers based on some of these signals. Like they're doing floating point math the way they always have. They're rendering emojis the way they always have all these clients that signals are the same. So why force that customer to log in again? >> Oh yeah. And that's such a frustrating user experience. >> So true. >> I actually had that thought earlier today. How many time, how much of my life am I going to spend typing my email address? Just that in itself. Then I could crawl back under the covers but >> With the biometric Mac, I forget my passwords. >> Or how about solving CAPTCHA's? How fun is that? >> How many pictures have a bus? >> I got one wrong the other day because I had to pick all the street signs. I got it wrong and I called a Russian human click farm and figured out why was I getting it wrong? And they said >> I love that you went down this rabbit hole deeply. >> You know why that's not a street sign. That's a road sign, they told me. >> That's the secret backdoor. >> Oh well yeah. >> Talk about your background because you have fascinating background coming from law enforcement and you're in this kind of role. >> He could probably tell us about our background. >> They expunge those records. I'm only kidding. >> 25, 30 years in working in local, state and federal law enforcement and intelligence among those an FBI agent and a CIA cyber operations officer. And most people are drawn to that because it's interesting >> Three letter agencies can get an eyebrow raise. >> But I'll be honest, my early, early in my career I was a beat cop and that changed my life. That really did, that taught me the importance of an education, taught me the criminal mindset. So yeah, people are drawn to the FBI and CIA background, but I really value the >> So you had a good observation eye for kind of what, how this all builds out. >> It all kind of adds up, you know, constantly fighting the bad guys, whether they're humans, bots, a security threat from a foreign nation. >> Well learning their mindset and learning what motivates them, what their objectives are. It is really important. >> Reading the signals >> You don't mind slipping into the mind of a criminal. It's a union rule. >> Right? It actually is. >> You got to put your foot and your hands in and walk through their shoes as they say. >> That's right. >> The bot networks though, I want to get into, is not it sounds like it's off the cup but they're highly organized networks. >> Dan: They are. >> Talk about the aspect of the franchises or these bots behind them, how they're financed, how they use the money that they make or ransomware, how they collect, what's the enterprise look like? >> Unfortunately, a lot of the nodes on a botnet are now just innocent victim computers using their home computers. They can subscribe to a service and agree to let their their CPU be used while they're not using it in exchange for a free VPN service, say. So now bad actors not, aren't just coming from you know, you know, rogue cloud providers who accept Bitcoin as payment, they're actually coming from residential IPs, which is making it even more difficult for the security teams to identify. It's one thing when it's coming from- >> It's spooky. I'm just sitting here kind of creeped out too. It's these unknown hosts, right? It's like being a carrier. >> You have good traffic coming from it during the day. >> Right, it appears normal. >> And then malicious traffic coming from it. >> Nefarious. >> My last question is your relationship with Amazon. I'll see security center piece of this re:Invent. It's always been day zero as they say but really it's the security data lake. A lot of gaps are being filled in the products. You kind of see that kind of filling out. Talk about the relationship with F5 and AWS. How you guys are working together, what's the status? >> We've been long-term partners and the latest release the connector for CloudFront is just one of the joint work that we did together and try to, I think, to Dan's point, how do we make those technology that was built for the very sophisticated big institutions to be available for all the CloudFront customers? So that's really what's exciting. And we also leverage a lot of the technology. You talked about the data and our entire solution are very data driven, as you know, is automation. If you don't use data, you don't use analytics, you don't use AI, it's hard to really sort of win that war. So a lot of our stuff, it's very data driven >> And the benefit to customers is what? Access? >> The customer's access, the customer's top line. We talked about, you know, like how we're really bringing better experiences at the end of the day. F5's mission is try to bring a better digital world to life. >> And it's also collaborative. We've had a lot of different stories here on on the set about companies collaborating. You're obviously collaborating and I also love that we're increasing access, not just narrowing this focus for the larger companies at scale already, but making sure that these companies starting out, a lot of the founders probably milling around on the floor right now can prevent this and ensure that user experience for their customers. throughout the course of their product development. I think it's awesome. So we have a new tradition here on theCUBE at re:Invent, and since you're alumni, I feel like you're maybe going to be a little bit better at this than some of the rookies. Not that rookies can't be great, but you're veterans. So I feel strong about this. We are looking for your 30-second Instagram reel hot take. Think of it like your sizzle of thought leadership from the show this year. So eventually eight more visits from now we can compile them into a great little highlight reel of all of your sound bites over the evolution of time. Who wants to give us their hot take first? >> Dan? >> Yeah, sure. >> Savannah: You've been elected, I mean you are an agent. A former special agent >> I guess I want everybody to know the bot problem is much worse than they think it is. We go in line and we see 98, 99% of all login traffic is from malicious bots. And so it is not a DIY project. >> 98 to 99%? That means only 1% of traffic is actually legitimate? >> That's right. >> Holy moly. >> I just want to make sure that everybody heard you say that. >> That's right. And it's very common. Didn't happen once or twice. It's happened a lot of times. And when it's not 99 it's 60 or it's 58, it's high. >> And that's costing a lot too. >> Yes, it is. And it's not just in fraud, but think about charges that >> Savannah: I think of cloud service providers >> Cost associated with transactions, you know, fraud tools >> Savannah: All of it. >> Yes. Sims, all those things. There's a lot of costs associated with that much automation. So the client side signals and multi-stage defense is what you need to deal with it. It's not a DIY project. >> Bots are not DIY. How would you like to add to that? >> It's so hard to add to that but I would say cybersecurity is a team sport and is a very data driven solution and we really need to sort of team up together and share intelligence, share, you know, all the things we know so we can be better at this. It's not a DIY project. We need to work together. >> Fantastic, Dan, Haiyan, so great to have you both back on theCUBE. We look forward to seeing you again for our next segment and I hope that the two of you have really beautiful rest of your show. Thank you all for tuning into a fantastic afternoon of coverage here from AWS re:Invent. We are live from Las Vegas, Nevada and don't worry we have more programming coming up for you later today with John Furrier. I'm Savannah Peterson. This is theCUBE, the leader in high tech coverage.

(upbeat music) >> Welcome back everyone to Supercloud22, I'm John Furrier, host of theCUBE here in Palo Alto. For this next ecosystem's segment we have Muddu Sudhakar, who is the co-founder and CEO of Aisera, a friend of theCUBE, Cube alumni, serial entrepreneur, multiple exits, been on multiple times with great commentary. Muddu, thank you for coming on, and supporting our- >> Also thank you for having me, John. >> Yeah, thank you. Great handshake there, I love to do it. One, I wanted you here because, two reasons, one is, congratulations on your new funding. >> Thank you. >> For $90 million, Series D funding. >> Series D funding. >> So, huge validation in this market. >> It is. >> You have been experienced software so, it's a real testament to your team. But also, you're kind of in the Supercloud vortex. This new wave that Supercloud is part of is, I call it the pretext to what's coming with multi-clouds. It is the next level. >> I see. >> Structural change and we have been reporting on it, Dave and I, and we are being challenged. So, we decided to open it up. >> Very good, I would love it. >> And have a conversation rather than waiting eight months to prove that we are right. Which, we are right, but that is a long story. >> You're always right. (both laughs) >> What do you think of Supercloud, that's going on? What is the big trend? Because its public cloud is great, so there is no conflict there. >> Right. >> It's got great business, it's integrated, IaaS, to SaaS, PaaS, all in the beginning, or the middle. All that is called good. Now you have on-premise high rate cloud. >> Right. >> Edge is right around the corner. Exploding in new capabilities. So, complexity is still here. >> That's right, I think, you nailed it. We talk about hybrid cloud, and multi cloud. Supercloud is kind of elevates the message even better. Because you still have to leave for some of our clouds, public clouds. There will be some of our clouds, still running on the Edge. That's where, the Edge cloud comes in. Some will still be on-prem. So, the Supercloud as a concept is beyond hybrid and multi cloud. To me, I will run some of our cloud on Amazon. Some could be on Aisera, some could be running only on Edge, right? >> Mm hm >> And we still have, what we call remote executors. Some leaders of service now. You have, what we call the mid-server, is what I think it was called. Where you put in a small code and run it. >> Yeah. >> So, I think all those things will be running on-prem environment and VMware cloud, et cetera. >> And if you look back at, I think it has been five years now, maybe four or five years since Andy Jassy at reInvent announced Outposts. Think that was the moment in time that Dave and I took this pause back and said "Okay, that's Amazon." who listens to their customers. Acknowledging Hybrid. >> Right. >> Then we saw the rise of Snowflakes, the Databricks, specialty clouds. You start to see people who are building on top of AWS. But at MongoDB, it is a database, now they are a full blown, large scale data platform. These companies took advantage of the public cloud to build, as Jerry Chen calls it, "Castles in the cloud." >> Right. >> That seems to be happening in all areas. What do you think about that? >> Right, so what is driving the cloud? To me, we talk about machine learning in AI, right? Versus clouded options. We used to call it lift and shift. The outposts and lift and shift. Initially this was to get the data into the cloud. I think if you see, the vendor that I like the most, is, I'm not picking any favorite but, Microsoft Azure, they're thinking like your Supercloud, right? Amazon is other things, but Azure is a lot more because they run on-prem. They are also on Azure CloudFront, Amazon CloudFront. So I think, Azure and Amazon are doing a lot more in the area of Supercloud. What is really helping is the machine learning environment, needs Superclouds. Because I will be running some on the Edge, some compute, some will be running on the public cloud, some could be running on my data center. So, I think the Supercloud is really suited for AI and automation really well. >> Yeah, it is a good point about Microsoft, too. And I think Microsoft's existing install base saved Azure. >> Okay. >> They brought Office 365, Sequel Server, cause their customers weren't leaving Microsoft. They had the productivity thing nailed down as well as the ability to catch up >> That's right. >> To AWS. So, natural extension to on-premise with Microsoft. >> I think... >> Tell us- >> Your Supercloud is what Microsoft did. Right? Azure. If you think of, like, they had an Office 365, their SharePoint, their Dynamics, taking all of those properties, running on the Azure. And still giving the migration path into a data center. Is Supercloud. So, the early days Supercloud came from Azure. >> Well, that's a good point, we will certainly debate that. I will also say that Snowflake built on AWS. >> That's right. >> Okay, and became a super powerhouse with the data business. As did Databricks. >> That's right. >> Then went to Azure >> That's right. >> So, you're seeing kind of the Playbook. >> Right. >> Go fast on Cloud Native, the native cloud. Get that fly wheel going, then get going, somewhere else. >> It is, and to that point I think you and me are talking, right? If you are to start at one cloud and go to another cloud, the amount of work as a vendor for us to use for implement. Today, like we use all three clouds, including the Gov Cloud. It's a lot of work. So, what will happen, the next toolkit we use? Even services like Elastic. People will not, the word commoditize, is not the word, but people will create an abstraction layer, even for S3. >> Explain that, explain that in detail. So, elastic? What do you mean by that? >> Yeah, so what that means is today, Elasticsearch, if you do an Elasticsearch on Amazon, if I go to Azure, I don't want enter another Elasticsearch layer. Ideally I want us to write an abstracted search layer. So, that when I move my services into a different cloud I don't want to re-compute and re-calculate everything. That's a lot of work. Particularly once you have a production customer, if I were to shift the workloads, even to the point of infrastructure, take S3, if I read infrastructure to S3 and tomorrow I go to Azure. Azure will have its own objects store. I don't want to re-validate that. So what will happen is digital component, Kubernetes is already there, we want storage, we want network layer, we want VPM services, elastic as well as all fundamental stuff, including MongoDB, should be abstracted to run. On the Superclouds. >> Okay, well that is a little bit of a unicorn fantasy. But let's break that down. >> Sure. >> Do you think that's possible? >> It is. Because I think, if I am on MongoDB, I should be able to give a horizontal layer to MongoDB that is optimized for all three of them. I don't want MongoDB. >> First of all, everyone will buy that. >> Sure. >> I'm skeptical that that's possible. Given where we are at right now. So, you're saying that a vendor will provide an abstraction layer. >> No, I'm saying that either MongoDB, itself will do it, or a third party layer will come as a service which will abstract all this layer so that we will write to an AP layer. >> So what do you guys doing? How do you handle multiple clouds? You guys are taking that burden on, because it makes sense, you should build the abstraction layer. Not rely on a third party vendor right? >> We are doing it because there is no third party available offer it. But if you offer a third party tomorrow, I will use that as a Supercloud service. >> If they're 100% reliable? >> That's right. That's exactly it. >> They have to do the work. >> They have to do the work because if today I am doing it because no one else is offering it- >> Okay so what people might not know is that you are an angel investor as well as an entrepreneur been very successful, so you're rich, you have a lot of money. If I were a startup and I said, Muddu, I want to build this abstraction layer. What would be funding advice that you would give me as an entrepreneur? As a company to do that? >> I would do it like an Apigee that Google acquired, you should create an Apigee-like layer, for infrastructure upfront services, I think that is a very good option. >> And you think that is viable? >> It is very much viable. >> Would that be part of Supercloud architecture, in your opinion? >> It is. Right? And that will abstract all the clouds to some level. Like it is like Kubernetes abstract, so that if I am running on Kubernetes I can transfer to any cloud. >> Yeah >> But that should go from computer into other infrastructures. >> It's seems to me, Muddu, and I want to get your thoughts about this whole Supercloud defacto standard opportunity. It feels like we are waiting for a moment where there is some sort of defacto unification, whether it is in the distraction layer, or a standards body. There is no W3C here going on. I mean, W3C was for web consortium, for world wide web. The Supercloud seems to be having the same impact the web had. Transformative, disruptive, re-factoring business operations. Is there a standardized body or an opportunity for a defacto? Like Kubernetes was a great example of a unification around something for orchestration. Is there a better version in the Supercloud model where we need a standard? >> Yes and no. The reason is because by the time you come to standard, take time to look what happened. First, we started with VMs, then became Docker and Containers then we came to Kubernetes. So it goes through a journey. I think the next few years will be stood on SuperCloud let's make customers happy, let's make enough services going, and then the standards will come. Standards will be almost 2-3 years later. So I don't think standards should happen right now. Right now, all we need is, we need enough start ups to create the super layer abstraction, with the goal in mind of AI automation. The reason, AI is because AI needs to be able to run that. Automated because running a work flow is, I can either run a workflow in the cloud services, I can run it on on-prem, I can run it on database, so you have two good applications, take AI and automation with Supercloud and make enough enough noise on that make enough applications, then the standards will come. >> On this project we have been with SuperCloud these past day we have heard a lot of people talking. The themes that developers are okay, they are doing great. Open source is booming. >> Yes >> Cloud Native's got major traction. Developers are going fast and they love it, shifting left, all these great things. They're putting a lot of data, DevOps and the security teams, they're the ones who are leveling up. We are hearing a lot of conversations around how they can be faster. What is your view on this as relative to that Supercloud nirvana getting there? How are DevOps and security teams leveling up to devs? >> A couple of things. I think that in the world of DevSecOps and security ops. The reason security is important, right? Given what is going on, but you don't need to do security the manual way. I think that whole new operation that you and me talked about, AI ops should happen. Where the AI ops is for service operation, for performance, for incident or for security. Nobody thinks of AI security. So, the DevOps people should think more world of AI ops, so that I can predict, prevent things before they happen. Then the security will be much better. So AI ops with Supercloud will probably be that nirvana. But that is what should happen. >> In the AI side of things, what you guys are doing, what are you learning, on scale, relative to data? Is there, you said machine learning needs data, it needs scale operation. What's your view on the automation piece of all this? >> I think to me, the data is the single, underrated, unsung kind of hero in the whole machine learning. Everyone talks about AI and machine learning algorithms. Algorithms are as important, but even more important is data. Lack of data I can't do algorithms. So my advice to customers is don't lose your data. That is why I see, Frank, my old boss, setting everything up into the data cloud, in Snowflake. Data is so important, store the data, analyze the data. Data is the new AI. You and me talk so many times- >> Yeah >> It's underrated, people are not anticipating how important it is. But the data is coming from logs, events, whether there is knowledge documents, any data in any form. I think keep the data, analyze the data, data patterns, and then things like SuperCloud can really take advantage of that. >> So, in the Supercloud equation one of the things that has come up is that the native clouds do great. Their IaaS to SaaS is interactions that solve a lot of problems. There is integration that is good. >> Right. >> Now when you go off cloud, you get regions, get latency issues- >> Right >> You have more complexity. So what's the trade off in the Supercloud journey, if you had to guess? And just thinking out loud here, what would be some of the architectural trade offs of how you do it, what's the sequence? What's the order of operations to get Superclouding going? >> Yeah, very good questions here. I think once you start going from the public cloud, the clouds there scale to lets say, even a regional data center onto an Edge, latency will kick in. The lack of computer function will kick in. So there I think everything should become asynchronous, right? You will run the application in a limited environment. You should anticipate for small memories, small compute, long latencies, but still following should happen. So some operations should become the old-school following, like, it's like the email. I send an email, it's an asynchronous thing, I made a sponsor, I think most of message passing should go back to the old-school architectures They should become asynchronous where thing can rely. I think, as long as algorithms can take that into Edge, I think that Superclouds can really bridge between the public cloud to the edge. >> Muddu, thanks for coming, we really appreciate your insights here. You've always been a great friend, great commentator. If you weren't the CEO and a famous angel investor, we would certainly love to have you as a theCUBE analyst, here on theCUBE. >> I am always available for you. (John laughs) >> When you retire, you can come back. Final point, we've got time left. We'll give you a chance to talk about the company. I'm really intrigued by the success of your ninety million dollar financing realm because we are in a climate where people aren't getting those kinds of investments. It's usually down-rounds. >> Okay >> 409 adjustments, people are struggling. You got an up-round and you got a big number. Why the success? What is going on with the company? Why are you guys getting such great validation? Goldman Sachs, Thoma Bravo, Zoom, these are big names, these are the next gen winners. >> It is. >> Why are they picking you? Why are they investing in you? >> I think it is not one thing, it is many things. First all, I think it is a four-year journey for us where we are right now. So, the company started late 2017. It is getting the right customers, partners, employees, team members. So it is a lot hard work went in. So a lot of thanks to the Aisera community for where we are. Why customers and where we are? Look, fundamentally there is a problem to solve. Like, what Aisera is trying to solve is can we automate customer service? Whether internal employees, external customer support. Do it for IT, HR, sales, marketing, all the way to ops. Like you talk about DevSecOps, I don't want thousands of tune ups for ops. If I can make that job better, >> Yeah >> I want to, any job I want to automate. I call it, elevate the human, right? >> Yeah. >> And that's the reason- >> 'Cause you're saying people have to learn specialty tools, and there are consequences to that. >> Right, and to me, people should focus on more important tasks and use AI as a tool to automate those things right? It's like thinking of offering Apple City as Alexa as a service, that is how we are trying to offer customer service, like, right? And if it can do that consistently, and reduce costs, cost is a big reason why customers like us a lot, we have eliminated the cost in this down economy, I will amplify our message even more, right? I am going to take a bite out of their expense. Whether it is tool expense, it's on resources. Second, is user productivity And finally, experience. People want experience. >> Final question, folks out there, first of all, what do you think about Supercloud? And if someone asks you what is this Supercloud thing? How would you answer? >> Supercloud, is, to me, beyond multi cloud and hybrid cloud. It is to bridge applications that are build in Supercloud can run on all clouds seamlessly. You don't need to compile them, re-clear them. Supercloud is one place to build, develop, and deploy. >> Great, Muddu. Thank you for coming on. Supercloud22 here breaking it down with the ecosystem commentary, we have a lot of people coming to the small group of experts in our network, bringing you in open conversation around the future of cloud computing and applications globally. And again, it is all about the next generation cloud. This is theCUBE, thanks for watching. (upbeat music)

>> (upbeat music) >> Announcer: From around the globe, it's theCUBE with digital coverage of AWS Public Sector Partner Awards Brought to you by Amazon Web Services. >> Hi, and welcome back. I'm Stu Miniman and this is theCUBE's coverage of Amazon Web Services, Public Sector Awards for their partners. Really interesting, we get to talk to people around the globe, we talked to the vendors, the award winners as well as their customers who have some interesting projects. So happy to welcome to the program coming to us from Argentina. I have Leo Bracco. He is the Latin American Executive Director for CloudHesive and joining him, his customer Carolina Tchintian. She is the Director of the Political Institution Program at CIPPEC. Thank you so much for joining us. >> Thank you. >> Thank you for having us. >> All right, so Leo, first of all, let's start with you if we could. So CloudHesive first of all, congratulations, you were the Nonprofit Sector award winner for cybersecurity solutions. Of course, anybody that knows public sector, there's the government agencies, there's nonprofits there's education. The cybersecurity of course, went from the top priority to the top, top priority here in 2020. So if you could just give us a snapshot of CloudHesive for our customer. >> Well, CloudHesive is a US based company, started six years ago in 2014. And we decide a couple of years ago to move to Latin America and to start working with Latin America customers. Our offices are in Argentina right now. And one of the focus that we have in the solutions that we give to our customers is security. We work on services to help companies to reduce the cost, increase productivity, and what should the security posture? So we've been working a long time ago to many NPOs, and seeing how they can leverage the solutions and how they can give secure, how to be secure in the world. In the internet. >> All right, Carolina, if you could tell us a little bit about the CIPPEC and maybe then key us up as the project that you're working on. >> Okay, thank you. So CIPPEC is a nonprofit think tank, nonprofit organization, independent organization that aims to deliver better public policies in different areas. In economic development, in social protection and state and government. My particular program, the political institutions program goal is, or the mission is basically to promote evidence based decisions to improve democratic processes and to guarantee civil and political rights across all the countries. So we on issues such as improving election administrations, legislative work, representation, and that's our area of work. >> Wonderful. Sounds like a phenomenal project. Leo, if you could help us understand where did CloudHesive get involved in this project? Was there an existing relationship already, or was it for a specific rollout? that tell us about, obviously the security angles are a big piece? >> No, we didn't have a previous engagement with them. They come to us with a very short time to elections and they need a secure solution. So we first have to analyze the actual solution, how it works, acknowledging well the current infra that they have. Then we have to understand the challenge that they're facing. They have a very public site, they need to go public and they need to be very secure. And the last, we have to develop a fast migration strategy. We knew that AWS was the perfect fit for the need. So we just had to align a good strategy with the customer need. And all these it has been done in less than 72 hours. That was our deadline to elections. >> Wow, talk about fast. Okay, Carolina, help us understand a little bit. Had your organization, had you been using a Cloud before? Seventy-two hours is definitely an aggressive timeline. So help us understand a little bit as to what went into making your decision and obviously, 72 hours super short timeframe. >> Super, super short. Yeah, that was a big challenge. So let me tell you more about what we do and the context. So Argentina holds elections, national elections every two years. In each election year CIPPEC tries to generate and systematize analysis of provincial and national elections with the goal of informing key actors in the electoral processes. This is and decision makers, political parties, media, and general population. So as our first experience in 2017, with informed voter project, we had this collaboration with the National Electoral Authorities in which we created a landing page in our website where you could find as the voter, all of the information you need to go and cast your vote throughout the entire election process. Meaning from the campaign stage, election administration details, polling places, electoral offer, participation et cetera. So that was a landing page hosted in our website. And in 2017, we managed to have a button in every eligible voter in Argentina Facebook feed. So you could go click there and go to our website, right. And have all of the information summarize in a very simple way, straightforward way. So what happened in the 2017 election day is that the button was so successful that the landing page made our server to collapse in the first hours of the election day. So we learned a huge lesson there, which was that we had to be prepared in 2019, if we wanted to repeat this experience. And that is how we get to CloudHesive. >> Wonderful, Leo, if you could, help us understand a little bit architecturally what's going on there, what was CoHesive doing, what AWS services were leveraged? >> Perfect. Well we need great reliability, performance, scalability of course and the main thing security. We have no doubt about the Cloud and all the differentials of AWS. Our main question was about how do we align the right services to give the best solution to the customer? So we did kind of strategy with S3, CloudFront, and we, at the same time being monitorizing everything with CloudTrail and securing the public's access to all of these information. That give us a perfect fit for the solution, a very easy solution and very of course scalable, but more than anything, we could improve the customer experience in very small amount of time. So this is a very simple solution, that fits perfect for the customer. >> Wonderful. Carolina, if you could, tell us how did things go? What lessons have you learned? Anything along the way that you would give feedback to your peers or other organizations that were looking to do something similar? >> Yeah, well, the 2017 experience was a very tough experience for us because we've been preparing for election day during the 2016 and 2017. And the infrastructure was the limit we had in that point. So we couldn't afford ... We have a commitment with informing voters and informing key actors on election process. And these key actors are expecting that information on election day, before, and after. The lesson there is, we cannot be limited by the infrastructure. Assuming that in 2019, that the landing page would receive a similar amount or a huge amount of traffic volume visits on the election day, basically, we knew that traditional hosting service couldn't fulfill those needs so we had to go beyond traditional and the partner was critical to help us to the migration, to the Cloud. >> Yeah, Leo, maybe you could speak a little bit to that, the scalability, and of course, nonprofit's very sensitive to costs involved in these solutions. Help us understand that those underpinnings of leveraging, AWS specifically in CloudHesive. How this meets their needs and still is financially, makes sense. >> Perfect. When you have this kind of solutions, of course, your first concern is, okay, how do I make a scalable solution that fits on the, just on this moment that they need the behavior for so many infrastructure involved. And then at the other day, they need no infra at all, but you have another two big things that you have to focus on. One, is the security, you need to monitor all the behaviors of the content and pay attention to any external menace. You have one 24-hour day, so you need to be very responsibility and high sensitive information that the customer has on the set of data there. It's good to say that we have no security incidents, and no security breach during the most public stage of the operation, so that there was very good for us. The next thing is from the delivery perspective. You have a potential pick of people over the side to usually manage the content delivery network to answer all the requirements. You must be able to share the content in CloudFront, and so you have, and you can achieve your goals, right? And what I can say, it's about numbers, we achieve more than 99.5 efficiency hit rate you over the CDN, that's over CloudFront. And we kept server CPU such below 10% all the time. So this was a major success for us. Like we have no trouble, we use things at the most. And most of anything, the customer has the security, everything look from our perspective. (mumbles) >> Leo, what follow up if I could, if you look at 2020 being able to scale and respond to the changes in workload and be able to stay secure when bad actors, many people are working at home, but doesn't mean the bad actors aren't out there. We've actually seen an increase in security attacks. So just, do you have any commentary overall about what's happening more recently in what you see in your space? >> Yeah, well, we're very focused right now and while security is being each time bigger, right? One of the biggest menace in security is our own team, because we have to keep our teams auto align to the process and understanding the security as a first step doing things from the network perspective. Then we have a very good experience over this last two years, with all the security tools that AWS is seeking to the market. So we now have CloudTrail. We can do many things with WAF we're working towers of new good security solutions. And so I think this will be the future. We have to focus ourself in these two pillars. The first pillar is, okay, what we can do on our own network and the other pillar's, all the tools that AWS is giving us so we can manage security from a new perspective. >> Carolina, last question that I have for you is, look forward a little bit, if you will, are there things that you'll be looking to do in future election cycles or anything else from this project that you could expect going forward? >> Yeah, definitely. We're going to repeat this experience in 2021. Trying to think of the success was the 2019 election cycle. And in this particular informed voter project, we might want to keep doing this for the next election cycles, not only 2023 now, but for the future. >> All right then, Leo, last piece for you, first of all, congratulations, again, winning Best Cyber Security Solution for Nonprofit. Just talk a little bit if you would, about your partnership with AWS and specifically, the requirements and what you see in the nonprofit segment. >> Well, we see that the nonprofit are growing large too, they will need very good scalable solutions. We see that all the focus that we have in on security is the next need because we have been working on these towers to the future. The solutions kept growing each time. The networks are growing each time. And the traffic is growing. The focus on the security will be one of the appendix of our work in the future. And I think that's the biggest issue that we are going to have. Having good engineers, good hard work and manage the challenge and consolidate all the solution as a need. Right now, we're working on many projects with different NGO's and we're working towers that they have the solution that fits them. And of course, we try to keep, in all the public sector, we try to keep the cost at a range level that we can afford that our customers can afford. That's I think, a big problem that we're having. >> Well, Carolina, congratulations on the progress with your project. Thank you so much for joining us. And Leo, thank you again for joining us and congratulations to you and the CloudHesive team for winning the award. >> Thanks. >> Thank you very much. >> All right, stay tuned for more coverage, theCUBE, at the AWS Public Sector Partner Awards. I'm Stu Miniman. Thanks for watching. (upbeat music)

(upbeat music) >> Announcer: From theCUBE studios in Palo Alto, in Boston, connecting with thought leaders all around the world. This is a CUBE conversation. >> Hi, and welcome back. I'm Stu Miniman and this is theCUBE's coverage of Amazon Web Services, Public Sector Awards for their partners. Really interesting, we get to talk to people around the globe, we talked to the vendors, the award winners as well as their customers who have some interesting projects. So happy to welcome to the program coming to us from Argentina. I have Leo Bracco. He is the Latin American Executive Director for CloudHesive and joining him, his customer Carolina Tchintian. She is the Director of the Political Institution Program at CIPPEC. Thank you so much for joining us. >> Thank you. >> Thank you for having us. >> All right, so Leo, first of all, let's start with you if we could. So CloudHesive first of all, congratulations, you were the Nonprofit Sector award winner for cybersecurity solutions. Of course, anybody that knows public sector, there's the government agencies, there's nonprofits there's education. The cybersecurity of course, went from the top priority to the top, top priority here in 2020. So if you could just give us a snapshot of CloudHesive for our customer. >> Well, CloudHesive is a US based company, started six years ago in 2014. And we decide a couple of years ago to move to Latin America and to start working with Latin America customers. Our offices are in Argentina right now. And one of the focus that we have in the solutions that we give to our customers is security. We work on services to help companies to reduce the cost, increase productivity, and what should the security posture? So we've been working a long time ago to many NPOs, and seeing how they can leverage the solutions and how they can give secure, how to be secure in the world. In the internet. >> All right, Carolina, if you could tell us a little bit about the CIPPEC and maybe then key us up as the project that you're working on. >> Okay, thank you. So CIPPEC is a nonprofit think tank, nonprofit organization, independent organization that aims to deliver better public policies in different areas. In economic development, in social protection and state and government. My particular program, the political institutions program goal is, or the mission is basically to promote evidence based decisions to improve democratic processes and to guarantee civil and political rights across all the countries. So we on issues such as improving election administrations, legislative work, representation, and that's our area of work. >> Wonderful. Sounds like a phenomenal project. Leo, if you could help us understand where did CloudHesive get involved in this project? Was there an existing relationship already, or was it for a specific rollout? that tell us about, obviously the security angles are a big piece? >> No, we didn't have a previous engagement with them. They come to us with a very short time to elections and they need a secure solution. So we first have to analyze the actual solution, how it works, acknowledging well the current infra that they have. Then we have to understand the challenge that they're facing. They have a very public site, they need to go public and they need to be very secure. And the last, we have to develop a fast migration strategy. We knew that AWS was the perfect fit for the need. So we just had to align a good strategy with the customer need. And all these it has been done in less than 72 hours. That was our deadline to elections. >> Wow, talk about fast. Okay, Carolina, help us understand a little bit. Had your organization, had you been using a Cloud before? Seventy-two hours is definitely an aggressive timeline. So help us understand a little bit as to what went into making your decision and obviously, 72 hours super short timeframe. >> Super, super short. Yeah, that was a big challenge. So let me tell you more about what we do and the context. So Argentina holds elections, national elections every two years. In each election year CIPPEC tries to generate and systematize analysis of provincial and national elections with the goal of informing key actors in the electoral processes. This is and decision makers, political parties, media, and general population. So as our first experience in 2017, with informed voter project, we had this collaboration with the National Electoral Authorities in which we created a landing page in our website where you could find as the voter, all of the information you need to go and cast your vote throughout the entire election process. Meaning from the campaign stage, election administration details, polling places, electoral offer, participation et cetera. So that was a landing page hosted in our website. And in 2017, we managed to have a button in every eligible voter in Argentina Facebook feed. So you could go click there and go to our website, right. And have all of the information summarize in a very simple way, straightforward way. So what happened in the 2017 election day is that the button was so successful that the landing page made our server to collapse in the first hours of the election day. So we learned a huge lesson there, which was that we had to be prepared in 2019, if we wanted to repeat this experience. And that is how we get to CloudHesive. >> Wonderful, Leo, if you could, help us understand a little bit architecturally what's going on there, what was CoHesive doing, what AWS services were leveraged? >> Perfect. Well we need great reliability, performance, scalability of course and the main thing security. We have no doubt about the Cloud and all the differentials of AWS. Our main question was about how do we align the right services to give the best solution to the customer? So we did kind of strategy with S3, CloudFront, and we, at the same time being monitorizing everything with CloudTrail and securing the public's access to all of these information. That give us a perfect fit for the solution, a very easy solution and very of course scalable, but more than anything, we could improve the customer experience in very small amount of time. So this is a very simple solution, that fits perfect for the customer. >> Wonderful. Carolina, if you could, tell us how did things go? What lessons have you learned? Anything along the way that you would give feedback to your peers or other organizations that were looking to do something similar? >> Yeah, well, the 2017 experience was a very tough experience for us because we've been preparing for election day during the 2016 and 2017. And the infrastructure was the limit we had in that point. So we couldn't afford ... We have a commitment with informing voters and informing key actors on election process. And these key actors are expecting that information on election day, before, and after. The lesson there is, we cannot be limited by the infrastructure. Assuming that in 2019, that the landing page would receive a similar amount or a huge amount of traffic volume visits on the election day, basically, we knew that traditional hosting service couldn't fulfill those needs so we had to go beyond traditional and the partner was critical to help us to the migration, to the Cloud. >> Yeah, Leo, maybe you could speak a little bit to that, the scalability, and of course, nonprofit's very sensitive to costs involved in these solutions. Help us understand that those underpinnings of leveraging, AWS specifically in CloudHesive. How this meets their needs and still is financially, makes sense. >> Perfect. When you have this kind of solutions, of course, your first concern is, okay, how do I make a scalable solution that fits on the, just on this moment that they need the behavior for so many infrastructure involved. And then at the other day, they need no infra at all, but you have another two big things that you have to focus on. One, is the security, you need to monitor all the behaviors of the content and pay attention to any external menace. You have one 24-hour day, so you need to be very responsibility and high sensitive information that the customer has on the set of data there. It's good to say that we have no security incidents, and no security breach during the most public stage of the operation, so that there was very good for us. The next thing is from the delivery perspective. You have a potential pick of people over the side to usually manage the content delivery network to answer all the requirements. You must be able to share the content in CloudFront, and so you have, and you can achieve your goals, right? And what I can say, it's about numbers, we achieve more than 99.5 efficiency hit rate you over the CDN, that's over CloudFront. And we kept server CPU such below 10% all the time. So this was a major success for us. Like we have no trouble, we use things at the most. And most of anything, the customer has the security, everything look from our perspective. (mumbles) >> Leo, what follow up if I could, if you look at 2020 being able to scale and respond to the changes in workload and be able to stay secure when bad actors, many people are working at home, but doesn't mean the bad actors aren't out there. We've actually seen an increase in security attacks. So just, do you have any commentary overall about what's happening more recently in what you see in your space? >> Yeah, well, we're very focused right now and while security is being each time bigger, right? One of the biggest menace in security is our own team, because we have to keep our teams auto align to the process and understanding the security as a first step doing things from the network perspective. Then we have a very good experience over this last two years, with all the security tools that AWS is seeking to the market. So we now have CloudTrail. We can do many things with WAF we're working towers of new good security solutions. And so I think this will be the future. We have to focus ourself in these two pillars. The first pillar is, okay, what we can do on our own network and the other pillar's, all the tools that AWS is giving us so we can manage security from a new perspective. >> Carolina, last question that I have for you is, look forward a little bit, if you will, are there things that you'll be looking to do in future election cycles or anything else from this project that you could expect going forward? >> Yeah, definitely. We're going to repeat this experience in 2021. Trying to think of the success was the 2019 election cycle. And in this particular informed voter project, we might want to keep doing this for the next election cycles, not only 2023 now, but for the future. >> All right then, Leo, last piece for you, first of all, congratulations, again, winning Best Cyber Security Solution for Nonprofit. Just talk a little bit if you would, about your partnership with AWS and specifically, the requirements and what you see in the nonprofit segment. >> Well, we see that the nonprofit are growing large too, they will need very good scalable solutions. We see that all the focus that we have in on security is the next need because we have been working on these towers to the future. The solutions kept growing each time. The networks are growing each time. And the traffic is growing. The focus on the security will be one of the appendix of our work in the future. And I think that's the biggest issue that we are going to have. Having good engineers, good hard work and manage the challenge and consolidate all the solution as a need. Right now, we're working on many projects with different NGO's and we're working towers that they have the solution that fits them. And of course, we try to keep, in all the public sector, we try to keep the cost at a range level that we can afford that our customers can afford. That's I think, a big problem that we're having. >> Well, Carolina, congratulations on the progress with your project. Thank you so much for joining us. And Leo, thank you again for joining us and congratulations to you and the CloudHesive team for winning the award. >> Thanks. >> Thank you very much. >> All right, stay tuned for more coverage, theCUBE, at the AWS Public Sector Partner Awards. I'm Stu Miniman. Thanks for watching. (upbeat music)

>> live from New York. It's the Q covering AWS Global Summit 2019 brought to you by Amazon Web service is >> Welcome back to New York City. This is a W s summit and I'm stew Minutemen. My co host is Corey Quinn. We've talked to Amazon executives. We've talked to some customers. We've also talked to some of the partners and part of the partner ecosystem is course these startups aws very robust ecosystem that they've been building out. And one of the pieces were real excited to dig into in the surveillance space habit of revering program for first time. Ken Robinson, the CEO and founder of Goto Software who is the maker of cloud pegboard, take so much for joining us >> having to be here so exciting. >> Alright, So, Cloud pegboard, you had us hooked when we talked about you know, serverless you know, the the information overload that we all feel in the United with world. Cory's got a full time job helping with that and other things related to it s oh, bring us a little bit about, you know, pegboard in your background. >> Yeah, I want to help you out. So my background is I ran a major cloud transformation to Amazon. My past job, which I left in January and really solve problems, information overload, was slowing people down, people making sub optimal choices. They're spending a lot of time trying to keep up. Sometimes we have to be fact because they didn't have the right information the right time. And I realized we need to solve this. And it wasn't just in our organization. Every Amazon practitioner across the planet really needs help to keep up. When I talked with people, these conferences, it that's like the main comment, like, I can't consume it >> all. How you keep up can it is staggering. Actually, I stopped asking about two years ago how you keep up because I talked to some amazingly smart, well connected people and they're like, No, no, it's impossible. But I want you to comment on something I used to be. When you talking about, I need to start this. I should have started a year ago, but I didn't, so I should start now and now it feels like, Well, if I could, I actually should wait a couple of months or six months or even a year but I absolutely get started. So I guess I might as well start now because things change at such a pace. I mean, that that, you know. Oh, wait. If I could just wait a little bit longer Gonna be Maurin better and cheaper and faster s O. You know what you're taking kind of pace of change in the industry. >> Well, you know, one thing is, I think you just have to keep agile and buy into the fact you're going to have to throw away things like don't get so buried filled with what you can do today as best you can. But be ready to re factor and get rid of it. >> Oh! Oh, my God. I had the i t organization and the whole our quarters. Everything in i t is additive. Nothing ever dies. But I do agree with you. We have been for more than a decade. You know why our analyst team and talking, You have to get rid of stuff that needs to be able to do that. You know, sunk costs is something you're familiar with. Economics is you know, I need to understand that that even have been doing it for a while. We need to be able to cut that. But way have these attachments to the things we've been doing and how we've been doing it. No change isn't necessarily easy, >> right? Well, there's a reason some of the attacks is because there's a lot of investment to build up in the first place. And when you put so much sweat into it, then I don't want to undo it. When it gets easier to build, it's easier to throw away. So I was just giving this talk earlier and saying I religiously stick with infrastructure is code because if you do that, it's just so easy to make incremental changes. And again, Serverless makes everything so much easier if we don't get married to something. If it's changing like one window function, yeah, it's just kind of a bench of a big deal. So if you invest a little bit lessons easier by making use of special, the high level managed service is then it's easier to the pivot from one thing to another. One needs to. >> Yeah, something I found is I play with this stuff myself in a very similar space, with less comprehensiveness and far more sarcasm, I suspect than your service does, is that when you're building everything out of composited Lambda Functions tied together in a micro service's style. Re factoring one of those micro service is usually doesn't take more than a day or two as opposed to, Oh, just rebuild the entire monolith from scratch, which it feels like everyone tries to do. At some point, it almost enforces good behavior. It makes it easier to evolve as I've been your experience it differently. >> Absolutely. So this two things it helps. It's easy to re factor and throw things out because it's small and it's again, you're not married to it as much, but also easy to incrementally add on. So I have this whole tier of these micro service. Is that a captain? All this data that we're pulling in from multiple sources, whether it's Amazon's Web site or terror, for more get up any source I confined that has data that I want to organize help with my users. So we get Henry finding new data sources, leaks new data sources, essentially a new lambda function. It's independent, and if I change it, we actually had one recently I found a better data source. I just threw up the old one and plugged in the new one. And it really was less than a day to write the new function and a brilliant into production. So, yeah, >> can you know, one of the answers I've had for a long time is you know, I need to rely on, you know, my consultants and my suppliers because, you know, you don't even understand some of these architectural things that are going on. And things are changing so fast. So you know, how much can software solve this for us? And you know that the tools itself, I have to imagine there's still a lot of people involved. >> Yeah. There's always gonna be a lot of people involved. And there is no free lunch that, you know, every architect or developer of the Amazon. You still need to get yourself trained, get the certifications, read the white papers, keep up to date with all the changes. And we really do is we're running inside again. That's my past. Life is an enterprise. You really want to build internal excellence. Certainly we can use outside help when you need it. Augmentation. and blasts my people everywhere. But you definitely wanna have some internal expertise. And people are committed to growing and continuing going to New York summit, going to reinvent talking to people and always constantly learning It's going to take human effort to help, uh, filter down and find out. Where is the trend that I really need to start thinking about? Hopefully people. It is a tool helps people be much more efficient and focus in much easier. But nothing will replace engineers, which is a good thing, >> right? And for those who are outside of the, I guess very small fraternity we have apparently built. Now there are two of us who track this stuff for a living. It's it is far more complex than most people would accept. Why don't you just sign up for the R. S s feed? Well, for starters, there's over a dozen official aws R s s feed, and they're not all inclusive. You have to look at poor request getting merchant there a p I updates. You see it in cloud formation and terra form from time to time. And I am certainly not comprehensive. In fact, when I built my newsletter. Originally my thought was that someone was gonna point out something like Cloud Backboard and say, Well, idiot, use this instead. And then I shut it down and admit defeat, and that was the plan. Instead, a bunch of people signed up, and now I want people to read it for the joke's not because it's the only half sensible way to figure out what happened last week. No, I'm a huge fan of the problem you're solving in the way you've got about doing it. That said, when we talk about service architectures, you mentioned spinning up Lambda functions and tying it back into other things. But as they mention Nicky, no today server. This goes beyond just functions as a service. There's a lot more to it than that. What else is your architecture >> includes everything. Serverless exclusively. So >> So they're poking on. So you're collecting every service thing they offer and then some just a get style points there, regardless. >> Well, so you know, one of the half several strategic principles and one of them is to rely solely on serve Ellis because I just can't afford a small start up to be building out Mon function requirements that are building the business. So S O. S to be hosting dynamodb cloudfront ap Gateway. Then we use will all these features Not only do I use all serverless, but we're also using for disaster recovery designed so that we're using some additional features within these, so it's easier fail over. So cloudfront, for example, has Arjun fail over a relatively new feature and it's really amazing, right? I can go to my S three and I have the benefits of estimates service hosting. But now, in a failure cloudfront relative my alternate region continue our operating same thing with dynamodb using global table replication only >> and continuous backup, which they released. I'm not kidding. Three days after I really needed it. It's that seems like that's always the case where they have these features and they come in right after you need to read if you build a crappy version of it and it's one of those. But I love about things at a relatively small scale like this is the economics are ridiculous. It's well, watch out for continuous backups that could be expensive, and I wound up checking it, and it wound up being something like two cents a month. Yeah, I work real hard to bring enough in to cover the back up. Yeah, I >> had someone come up to me after one of the talks and asking like he's not in Amazon. He's thinking the moving there. It's like how much you I have something a little bit similar to what you're doing, and how much will it cost? How much like Budget and I say, To be honest, I've got some credits, Levin warning, but I can't spend them. I can't. I want to accelerate by spending money. I can't do it, especially with dynamodb. Used to be that you would provisions something, a lot of eye ops and that would rack up really fast. Now I'm using the on demand, and it's just not costing anything. So that's what again. This Burn was talking about not paying for idle time, >> and some of the monitoring tools in the surveillance space air still approaching it from an economic first perspective, which for anything that isn't already scaled out, is ludicrous. It has, like warnings, going arrows going up or down on my spend on my land is every month, and it's 22 cents. It's I appreciate where you're going with this, but maybe that's not the driving concern right now. So I >> had a funny experience where I turned on Macy so we could get some good inspection on the anomaly buckets. And on the first of the month, I got a notice saying, Hey, you exceeded the free tier. I was in a bit of a panic has been more than once. I'm sad to say that I've let things run longer than they should and paid the price, and I owe something has run amok. Well, it turns out, just because of the metadata scans, it does kind of use a lot of access is. But then still was under a buck for the whole month by the time outs and done because I came in to begin the month with a bunch of scanning. Yeah, it's just a big fan of service. I did this thing. >> Yeah, I was just Kennedy. Speaking of survival is an Amazon event Bridge was announced this morning. Really building that event ecosystem around Lambda. Curious what impact that will have on you will cloud pegboard be able to go outside of AWS to kind of understand some of these sacks applications. >> I have to learn more about it. I was not in on a preview or anything, so I don't know exactly get. But But yes, we will rip apart meeting with other providers anywhere. There's an information source that can help developers hone in better and kind of get everything in the right place at the right time on. So, yes, things like that will help, especially if it can work through. I don't want to be opening up sqs cues way worried about the I am the cross account. That could be complicated, so I'll be interested to learn. And I don't know yet if that will help in those sorts of integrations, especially on the office. Can't authentication and authorization aspects of it? >> Yeah, there's a lot of promise in the idea of being able to give the minimum viable, required a p. I call for something third party. It seems like there they'll integrate into something like that. Well, here's how I am works and then we have to worry about access controls and oh yeah, there's no direct i p address the white list. And on and on and on. It's challenging to forcibly upgrade third parties. Unless you're effectively a giant, world spanning company, you can demand that they do it. So this it really feels like we're meeting third parties in some ways where they are. >> Yeah, I think so. And I think this is looking forward to them because I want to both consume maybe eyes. But also all my data is available via AP I So today it's a bit of a traditional. No, he and rest would have been the face, but if I could export that in other ways, that would be very interesting as well. >> I think it's too easy to get stuck in the economic story of times. I know it's weird is a cloud economist to be saying that, But when it comes to server list, the value is less about cost control, and saving money on it is you don't have to worry about entire subsets of problems capacity planning your effectively when it comes to things like Lambda Dynamodb and the rest. The constraint on scaling is going to be your budget. I promise. No matter who these budgets are, go for me. This is what they run amazon dot com on. I don't think I'm gonna do more business than that. Unless I really miss configure something. Challenge accepted. >> Yeah. Yeah. So I totally agree that scaling is the value, but it's also this more right. The scaling is absolutely one. And then, in addition to fragility, because survivalist means service. But now the term is getting confused, right? It means so many things. So I was saving serverless managed service is to help Seo. I'm talking about more than compute, but it also means is I'm getting a very high level function. So I'm getting so for David, we're using Comprehend. That's an awful lot of stuff going on under there that I don't have to worry about. I mean, I literally have an intern in a couple of days, completed a task to do some entity extraction of such a Amazon service stains out of unstructured data. She was able to do it. She just finished a freshman year, right? I was able to do this with minimal training because it's survivalist shouldn't worry about scalability. What she needed to know is that oh, I can use this function. I could read maybe I documentation, and I could just use it for me. Another big function behind step, but also no maintenance low, maybe a more accurate term. But essentially, it's no maintenance, especially for a small start up. I used to have businesses way back when pre Internet I ran an aviation weather service in my life was the bane of my existence because it had to be. At 24 7 I had satellite dishes that would get snowed on. I was an idiot. Did this in New England. They have to shovel him off at four in the morning. I don't like waking up in the middle of the night to serve my computers. They should serve me. And in the service of the fact that there's no maintenance stuff, just runs. You think about the times. How many times have you had a serve in the past when you just thought you should reboot it every week? Because maybe >> because tradition, >> tradition and maybe there's a leak somewhere, Melinda function reboots. Every invocation. It just never happens that I have run out of resource is something that I'm just a love affair. >> All right, so So Ken. It's obvious how you feel about server list, but as a start up, just give us a final thoughts on what it's like to be a startup that is on with and, you know, using AWS. >> Well, for me, it's fantastic. It allows me to focus on the problem, to solve immediately and by using high in the stack like you're saying surveillance capabilities. I'm not worried about the infrastructure. I read a little bit of confirmation. I deploy it, and I'm always working on business logic and functionality, and I'm not worrying about well, its scale. Do I have to maintain it, I think, really focus on the problems to solve, and that's where they've been very helpful to make. So now we have something where I can scale. I'm hoping I'm not there yet, but every Amazon practitioner should want to use cloud pegboard. I think it helps with a general problem, so I need to be able to scale to millions. Firstly, I don't know what the doctor is going to be, but I have confidence because I'm using all these service capabilities. S3 will do it. Amazon Gateway in Lambda will do it, so I don't worry about it. So for a start up, to not have to worry about that is it's really pretty powerful. >> And by the time you wind up in a cost prohibitive situation, we're okay. Running some baseline level load that something that isn't server Lis begins to make significant economic sense. At that point, your traffic volumes definitional hier so high that by that point there's a team of people who will be able to focus on that. You don't need to bring those people into get off the ground in >> the same way, right? It's that fast start, and we gotta learn. There's so much to learn here with any start up. But you know, in mind as well to really get some of the user experience, get the feedback. It's We have a lot of good ideas, and I think what we have now is helpful. I have a long term road map with a lot of great ideas, but it's gonna take a lot of user feedback to say, Is this working and the service lets you tried things quickly. I could get in front of people, get that learning cycle going and iterated fast as possible. So that will be really important. All right, >> Ken Robbins really help you appreciate you educating our audience. Climb aboard. Wish you best of luck with >> it. I appreciate being here. >> All right. For Cory Quinn. I'm still minimum, and we'll be back with more coverage here from eight of US Summit in New York City. Thanks. Always for watching the cue.

>> Live from Barcelona, Spain, it's theCUBE. Covering KubeCon CloudNativeCon Euope 2019. Brought to you by Red Hat, the Cloud Native Computing foundation and eco-system partners. >> Welcome back to the Fira here in Barcelona, Spain. This is theCUBE's coverage of KubeCon CloudNativeCon 2019. I'm Stu Miniman, my co-host for two days of coverage is Corey Quinn, and we're excited to have on the program a first time guest, but a company that we've known for quite a while, Daniel Lopez Ridruejo, who's the CEO and co-founder of Bitnami. Just announced recently that Bitnami is being acquired by VMware. Daniel, thanks so much for joining us and congratulations to you and the team on the 'exit' as it were. >> Thank you very much, gracias. It's an honor to be here. >> Yeah so we had Erica Brescia who's the co-founder of yours on theCUBE seven years ago. Back then I was trying to figure out exactly what Bitnami was and where it fit in this whole world. Maybe you can just bring us up to speed for those that maybe don't know, and there's all these people in the enterprise space that might not know your community that the dev space knows real well, as to bring us back the who and the why of Bitnami >> Yeah Erica is my co-founder and we have been building this together over the years. It has been quite a fair ride and, we started Bitnami as an offshoot of our previous company called Bedrock in which we made software easy to install. And then we realized that a lot of what people wanted to make easy to install on Linux was Open Source software, so we started working with companies like MySQL and SugarCRM, Splunk really early on when they were only four or five people, and over time we decided to do the same thing as an Open Source project for all those other tools and projects that didn't have a way to make them easy to install. We started as Bitnami.org, we wanted to emphasize that it was an Open Source project, was never going to be a company, and it didn't turn out that way. >> All right so, we got a lot of things to cover, but help us connect the dots as to those early you know, dot org, it wasn't a company, to a company having the dev space to, we're starting down the path towards the enterprise, which seemed to be a natural fit as to what happened today. >> Yeah so going back to your original question of why we wanted to make, was always being driven. There is all this marvelous Open Source software out there that is super difficult to use for a great majority of people, and we just wanted to lower the barrier to make it easy to use, and that's what got it started. We never expected the success. It turns out we went from a hundred, to a thousand, to ten thousand to hundreds of thousands of downloads, and you know, we're super popular with developers. We have literally millions of developers using Bitnami, and as part of that evolution, we started working with the cloud providers. We drive a significant percentage of usage for Amazon, for Google, for Microsoft, that's what makes it valuable to those cloud vendors, and as the next stage of the company, we wanted to go directly to the enterprises in which we already have a lot of developers in those same enterprises, but when you go move to production, you know that it's a lot of red tape, a lot of gates that you have to go about compliance and security, and that's where we're taking the company to. >> Nine, ten years ago I stumbled over you, over your company or I guess project at that time, and it was the second best way I ever found to run WordPress. The first of course is, don't run WordPress. I'm very serious. Don't run WordPress. And I'm curious now, with the acquisition of Bitnami, what is the longer-term vision for how this fits into a more cloud-native landscape. Is it continuing to just be the, well not just but, is it continuing to be the application you get from a catalog and it's up and running, is their a containerized story, is there something else I'm not seeing? >> No, that's the core of Bitnami, and that will continue to do that. What has evolved over time is that initially you could download an installer and run it on your Mac. And then we were one of the first early adapters of AWS, so we created all these AMIs and when, you know, people were thinking that we were crazy, that Amazon was a company that sold books, but you know, what were we doing? We kind of saw where it was going early on. And then as Kubernetes came along, we were really, really early there as well, and we were one of the early partners of these around Helm. We provided a lot of the Helm charts. Right now we may have dabbled a little bit on Serverless, So whatever comes next, we will be there and our goal continues to be the same thing, which is to make awesome software available to everyone. So independently of the underlying platform, that's where we're focusing, so, the core mission is not changing, we're just omitting that, and going after the enterprise, more red hat enterprise Linux, you know, more OpenShift, more multi tier, high availabilty, more production features. >> All right so, you talk about all those pieces, and you talk about linux and everything there. I want you help connect, how does that tie into VMware and what you see them doing today because, sure Linux has been something that could live on a hypervisor for a long time, but in many ways there's been struggles in competition between VMware and them and the Linux community in the past, but, you know, we're starting to see some of that change and maybe this helps accelerate some of that change. >> Yeah I think there is a couple of companies, Microsoft and VMware, that were completely different companies than five years ago and probably the decision would have been different for us like five years ago versus what the company is today and where they're going. For us VMware is, the holy grail of acquisition is 2 plus 2 equals five, and that's hardly the, you know, there's a lot of acquisitions that don't go that way. For us it was a very thought out decision and it was, I think it was clear for us in the sense that we have a very big footprint with developers, they own enterprise IT, we wanted to go enterprise, they wanted to go into developers, they understand Open Source, they understand distributed teams, yeah. >> Maybe, I'd love to hear your insight as to that developer community, because when I walk around the show floor, you know, there was that struggle between the enterprise and the developers, and now, the storage world, we need to get CI/CD and all these things and they're like "uh, we don't know how to get there" . And over the last few years, it seems there's been a blurring of the lines, and more enterprise is embracing it, Open Source is a big piece of that, so is it, as you said, five years ago this wouldn't have happened, but now it feels like we're ready for that next step of the curve. >> Correct. And all of that is because of this standardization, that Kubernetes is allowing, you can standardize business practices, and your seeing a consolidation, the CI/CD wall. And it's like, things that used to be very exotic now is business as usual. And it's a parallel, you know, I started using Linux in '93, when there was not even a concept of a Linux distribution, you have to do all these things just to get a prompt, but over time people have standardized, you know I remember there were like, 50 or 60 Linux distributions; StagWare, SLS. And eventually, everybody converged on Red Hat enterprise Linux. I think something similar is going to happen, we're just midway there, in which you will not have KubeCon because Kubernetes will be something transparent that is boring. So, we're not there yet, but at some point Kubernetes will be boring and there will be layers on top of that where all the action is. Or will be. >> From my perspective, coming from a small startup background, it seemed to me that VMware was always one of those stodgy, boring companies I didn't have much time for and lately there've been a series of high profile acquisitions, Heptio, Wavefront, CloudFront and now Bitnami, and it's really changing, almost without me noticing, my entire perception of their place in the modern evolving cloud ecosystem. >> I think so, and that's one of the things that attracted us and I talked to Victoria about it, get to spend a bit of time with the CEO, with the people at the high level. For us it was very important. But again, one thing we haven't mentioned is that, for the most part we have been bootstrapped. We have been profitable, we only took a little money from Ycombinator when we were already profitable. So we have choices. Sometimes our BC funded peers don't have that choice, so it was a very meditated decision, and for me for these kind of acquisitions, when a much bigger company joins forces with a smaller company, the strategies need to be aligned. And to me, VMware realized that the world, a few years ago, that the world is going to be moved to cloud, the world is going to go towards Kubernetes and containers. And the acquisition of Heptio, the acquisition of CloudHealth, told us that they're serious about that and that we can fit right in and take advantage of that transformation they are going. And so far it's working really, really, really well and that's part of what made us decide to go in this direction. >> Yeah Daniel, what can you tell us about things, once this actually does close, what will that mean for the brand? What about relationships with, you mentioned Heptio? But not only Heptio, Pivotal obvously is a big player in this space. How does all of that line up? >> With Heptio and other units like the marketplace's other groups, we were already working with them before the acquisition, with Heptio, with ksonnet and a bunch of other initiatives. We're just going to double down on that, and they want to keep Bitnami, they want to keep the brand, they want to keep the team. If anything we're going to get more resources, and again, that was the fact that they didn't want to touch something that is working. We have been partners for, I think, seven or eight years. We have gotten to know each other over that time and built that trust that is needed. In a way nothing is going to change. We're going to have the same team doing the same things, we're just going to have more access to their userbase. Which is what we're going to do. We started down this path because we were raising money to build an enterprise sales force, and at some point we decided, okay, this doesn't make sense. We're going to give away all this chunk of the company to get access to the enterprise, or to build a sales force to get access to the enterprise, when we can be part of VMware and get that for free. >> You've mentioned a fair bit about what's going to change as far as you getting exposure to new customers, effectively broadening into additional markets. What does this mean for your existing customers who are, in some cases, whenever you're a customer of a small-ish company, and there's an acquisition, it sometimes is natural to be a little concerned of, do I need to find a new vendor? Do I need to find a new provider? And frankly, there's nothing else like you that I've ever seen on the market. >> No, that's a really good question. For us, what is a little bit unique is we have millions of users, but we only have a handful of customers. So our customers are AWS, Google, Microsoft, Oracle. So it was very important; VMware is already a vendor to all of these; and so far everybody is going to stay and we're just going to continue and deepen the relationship. And that's one of the things that made this attractive. So for customers, nothing is going to change. And we're just going to continue to deepen those relationships. And again, that was important. Had we gone through some of the other options there would have been a lot of very outward conversations to have and that is not the case. >> Yeah Daniel, how about the developer community itself. It's just had millions of downloads out there. We understand how some of the reaction can be. >> Yeah, everybody is like, is VMware going to be the evil company that's going to touch that? And I think so far the feedback has been extremely positive, including even Hacker News, right, which is shocking. >> And those people don't like anything. >> I've been high Hacker News since the very beginning and it can be harsh. So it was something I was monitoring how people. And so far it has been very positive and that's only not a testimony how much people like Bitnami but also again, VMware acquire Heptio and everything's great. We talk to a lot of the people at Heptio, you know, hey how are things going? How has it been? And everybody loved it there, so for us it was something that gave us a lot of reassurance that all these other companies with a lot of Open Source DNA were being successful there and gave us reassurance. Time will tell. We'll see one year from now where we are, but so far everybody that we have talked to, all the conversations have been great. >> So Daniel you have a very interesting viewpoint on this whole ecosystem, we work with all the cloud providers. Any commentary you'd give of, you talk about that midway point of maturity? Where do you see things today, where do you see them going? What do we need to fix as an industry? >> Well it's very difficult to predict where things are going I just think that at this point it's very safe to say that it's going to be a multi-cloud war. That was not like three, four years ago. It seemed like it could be a repeat of the '90s in which Microsoft own ninety-something percent of the market share. And there was a lot of things that didn't make sense. Right now at least Amazon, plus a bunch of other clouds, are viable, and if anything they are growing. So a lot of companies like HashiCorp, like VMware. Companies that support this multi-cloud environment, not all of them, but all of them are very well positioned to thrive because it's not going to change any time soon. The other thing I think that is safe to assume is, we are going to have more artifacts than ever, so companies like Artifactory, I think they will do well. As any companies have to do to do with security. We're going to have more security issues, not less. But in the long term that's as much as I can predict. >> All right, well, Daniel, thank you so much. Congratulations again, and we look forward to seeing you at VMworld. Where we'll have theCUBE there. It'll actually be our tenth year being at Vmworld. >> Awesome >> So we're excited and always happy to talk to, especially the startups some great news here. For Corey Quinn, I'm Stu Miniman, thanks as always for watching theCUBE.