Sovereign Cloud Stack

Sovereign Cloud Stack (SCS) is federated cloud technology built entirely with Open Source Software — putting users and providers in control.

SCS at the OpenInfra Summit 2022 – Schedule and Community Gathering

Eduard Itrich, Bianca Hollery June 02, 2022

We’re just one week ahead of the OpenInfra Summit 2022 and we’re thrilled to meet you all on-site again. This post is to inform you about our activities at this truly important and exciting event for our community. Numerous members will be present with various talks and sessions throughout all three days. We have collected all contributions of our community below1 and we hope to see you at one or the other presentation.

Schedule

10:10 – 10:17

Dr. Franziska Brantner

The Intersection of Open Source Technologies and Digital Sovereignty

Berlin Congress Center - B - B08
Digital sovereignty is a key priority for the German Government and the Ministry for Economic Affairs and Climate Action (BMWK). In her keynote, Franziska Brantner will elaborate on its strategic and political relevance and will shed light on the concrete activities of the BMWK to strengthen sovereignty with a special focus on open source. A followup Q&A with Frederic Lardinois will shed more light on the role open source plays in tackling digital sovereignty.

14:50 – 15:20

Eduard Itrich

Digital sovereignty: Why open infrastructure matters

Berlin Congress Center - B - B08
Hardly any other term has been redefined and reframed so frequently in public discussions in recent years as “digital sovereignty”. Interpretations range from using Open Source Software down to local franchise agreements with proprietary cloud providers applying the term as a boilerplate. This talk will demystify the term “digital sovereignty” and outline why it is not just enough to be sovereign on a higher container layer or create local spin-offs from proprietary cloud service providers. Together we will look at different criteria for digital sovereignty and realize that closed-source “sovereign” cloud offerings may not bring as much sovereignty as promised. Open infrastructure matters and is key to independence, trust and innovation. In order to achieve true digital sovereignty, we need open source, operating knowledge and vital open communities.

16:00 – 16:40

Marvin Titus
Jonas Schäfer
Felix Huettner

Fearless automation: Deploying OpenStack on top of Kubernetes with YAOOK, How a retailer became a Cloud Provider

Berlin Congress Center - B - B08
STACKIT is part of the IT organization within the Schwarz Group, the largest European retail company. This includes Lidl and Kaufland, Schwarz Produktion in food production and PreZero in environmental services. In cooperation with Cloud and Heat the Schwarz Group created the Lifecycle Management Tool for OpenStack "Yaook" (Yet another openstack on kubernetes). Since 2021 it is available as opensource. The Yaook project aims to be the next step in automating deployment and operation of OpenStack clouds. In its core, it relies on Kubernetes operators, small pieces of code which compare observed and intended state in order to determine actions to converge the system. This idea can, however, be taken to a next level: What if there was a control loop which managed an entire OpenStack deployment? Yaook provides just that. Beyond the initial installation, it supports "Day 2 operation" tasks, such as upgrades and node maintenance / reinstallation. At the same time, Yaook knows its limits and will wait for human operator input in cases of potential loss of data or availability. That way, Yaook makes for a resilient and reliable life-cycle management of OpenStack clouds.

11:20 – 11:35

Eduard Itrich

Digital sovereignty: Why open infrastructure matters

Berlin Congress Center - A - OpenInfra Stage
Hardly any other term has been redefined and reframed so frequently in public discussions in recent years as “digital sovereignty”. Interpretations range from using Open Source Software down to local franchise agreements with proprietary cloud providers applying the term as a boilerplate. This talk will demystify the term “digital sovereignty” and outline why it is not just enough to be sovereign on a higher container layer or create local spin-offs from proprietary cloud service providers. Together we will look at different criteria for digital sovereignty and realize that closed-source “sovereign” cloud offerings may not bring as much sovereignty as promised. Open infrastructure matters and is key to independence, trust and innovation. In order to achieve true digital sovereignty, we need open source, operating knowledge and vital open communities.

14:15 – 14:30

Christian Berendt

How to create beautiful cloud-native landscapes?

Berlin Congress Center - A - OpenInfra Stage
Cloud computing with Kubernetes has evolved to a widely accepted de-facto standard without vendor lock-in for creating scalable and flexible applications for critical business systems of record. 23KE, based on the open source project Gardener, is a production proven open-source Kubernetes-as-a-Service solution to fully automate and operate a global, multi-cloud, and hybrid Kubernetes service. It often serves as a fundamental gateway platform for important cloud services. We will demonstrate how we can enable the Gaia-X vision of an open, independent multi provider and cloud-edge continuum and how we enabled City Cloud to do Managed Kubernetes right.

14:50 – 15:20

Kurt Garloff
Felix Kronlage-Dammers

An Open Operations concept

Berlin Congress Center - B - B05
Open Infrastructure technology has become increasingly mature. Nevertheless, high quality management and operations of open platforms continues to require DevOps teams with significant skills. The Sovereign Cloud Stack project has been created with the goal to significantly lower the bar. While the integration of a standardized operational stack helps the platform operations teams, it is only an important first step. The next step is to create strong communities that share operational practices and make them openly available. Documenting best practices, publishing the little tools to do cleanup jobs or the setup of dashboards that can be used for capacity management are all important contributions. Being transparent about bugs, incidents, security responses may sound disturbing to traditional Ops teams at first -- yet it is key to build up experience. It also helps to create trust with users, especially when incidents do occur. This is the core of the Open Operations concept.

16:00 – 16:30

Kurt Garloff
Christian Berendt
Felix Kronlage-Dammers

Forum on Loadbalancer-as-a-Service - fostering Octavia and taking LBaaS to a next Level

Berlin Congress Center - A - A05
As part of the collaboration within the Sovereign Cloud Stack project the topic of Loadbalancer-as-a-Service has grown interest. Especially in regard to Octavia and its further development as well as topics such a Multi-Region / geo-redundant loadbalancing. Discussion arose around the future development of octavia and wether the current path being taken is the one that serves operators of OpenStack based clouds best.

16:40 – 17:10

Christian Berendt

Intent-based holistic data center management

Berlin Congress Center - A - OpenInfra Stage
OpenStack is great for delivering large amounts of resources via APIs "as a service“. However, when it comes to enrolling and managing physical resources themselves, e.g. Switches or PDUs, or even more generally the entire data center, OpenStack itself reaches its limits. Is the IPAM the source of truth or OpenStack itself? How is the reconciliation done? Who approves changes there? How can annomalies be found? An intent-based holistic data center management approach approach allows a high abstraction of the underlying configurations and control. For example, it is thus possible to populate a pool of physical servers first with OpenStack. If the requirement changes in the future, a part can be removed from this pool of resources and populated with a completely independent workload, for example a Gardener on Metal. In this talk we will present our open source based approach (that is available as open source) with Netbox, Git, Python, Ansible and OpenStack Ironic in detail.

17:20 – 17:40

Kurt Garloff
Thierry Carrez
Sebastian Wenner
Felix Kronlage-Dammers
Nils Magnus

Sovereign OpenStack

Berlin Congress Center - A - A06
There's a lot of talk about the Gaia-X project and the associated principle of sovereignty in Europe recently. There are even reference implementations based on OpenStack. However, they are not the same. We'd like to have a panel discussion with stakeholders to discuss topics like strategic directions, focus, data privacy, and security features.

17:20 – 17:40

John Garbutt

Nova Compute REST API History

Berlin Congress Center - B - B05
Have you ever wondered why the first version of Nova's API is called v2? And what is the point of microversions anyway? What happened to that v3 Compute API? Why don't you have any Beta APIs? What happened to the EC2 API? Why are those folks from Rackspace so touchy about HTTP 500 errors? How were all these decisions made? The history of the Nova API is really a history of the community discussions and people that shaped its direction. Back when I first started working with OpenStack Bexar and Citrix XenServer, things were somewhat different to today. We used euca2ools to start VMs. At Rackspace public cloud I spent some time worrying about HTTP 500 errors. At StackHPC I have spent time working with many different people using OpenStack APIs and they are frequently interested in the history of the OpenStack Compute API. Lets take a deep look at the history of a few API quirks and lessons I learnt about Open Development.

19:00 – ...?

Community Meetup

c-base, Rungestraße 20, 10179 Berlin
Let's socialize! See below for more information on our community meetup alongside the OIF Summit 2022.

09:40 – 10:10

Marcel Hild
Felix Kronlage-Dammers
Kurt Garloff
Karsten Wade

Open Operations: the Fifth Open paradigm

Berlin Congress Center - A - A05
For years the Four Opens accompanied us as we shared playbooks & config management, while ignoring what is seen as too-secret or too-hard to Open: operations. Are you interested in an all-open source hybrid cloud? Do you want a continuous environment for extended workload testing & AIOps modeling beyond CI/CD? Do you care for transparency of operation processes to learn from others? Are you afraid of opening up your operations? Or are you convinced this is the way modern infrastructure can run better? The Operate First project has Open operations in our community cloud, bringing together open source development, AIOps, & SRE practices into a GitOps-driven prototype environment. The SCS project is propagating the concept of Open Operations alongside the Four Opens as a Fifth paradigm to build better & more resilient infrastructure. Let’s start the broader discussion about leaving the Age of Secret Sauce & moving toward Open Operations - the benefits, hurdles, worries, & solutions.

11:50 – 12:20

Felix Kronlage-Dammers
Mathias Fechner

Observability in OpenStack: - Learnings and building blocks from the SIG Monitoring at SCS

Berlin Congress Center - B - B08
The Sovereign Cloud Stack (SCS) is built upon the shoulders of giants: With proven technology such as OpenStack and Kubernetes the SCS project is building a modular software stack. SCS is much more than just another cloud stack - much rather SCS gathers an open community to join forces and define common standards - while also providing a reference implementation. As part of the projects Special Interest Group Monitoring involved CSPs and community members looked at their needs for observability within OpenStack as well as other components and derived monitoring building blocks that feature alerting, metrics collection as well as logging. The talk will give an overview of the outcomes but will also highlight parts of the journey within the SIG and will give insights to understand the rationale behind design decisions.

14:40 – 15:10

Christian Berendt

Deprivileging of Service Accounts Between Individual OpenStack Services

Berlin Congress Center - A - A05
This problem affects all OpenStack operators. We would like to briefly outline the problem itself in order to get a commitment from the community that the problem needs to be solved.

14:40 – 15:50

Tobias Rydberg
Jimmy McArthur

The Future of the Public Cloud SIG

Berlin Congress Center - A - A06
What about a restart for the Public Cloud SIG? We would like to gather all of you OpenStack Public Cloud players to discuss the future of the Public Cloud SIG. What would be the mission for this group? How can we work together to improve our engagement in OpenInfra and OpenInfra as a whole? What activities can we do to achieve this? How can we collaborate? Meeting in person for the first time since forever is the perfect opportunity get this discussion going and put out the direction moving forward!

Community Meetup

We’re excited to invite you to our community gathering on Wednesday, June 8 (formerly known as „the secret party“). Let’s meet from 7 pm at the c-base e.V. (Rungestraße 20, 10179 Berlin), which is about 15 min by public transport from the Berlin Congress center (if you are probably attending the OpenInfra Summit).

c-base
c-base
c-base

Images by MeTaMiND EvoLuTioN MeTaVoLuTioN, CC BY 2.0, via Wikimedia Commons

Navigate me to the party

Join us for food and drinks2, for continuing the conversations started during the day or making plans for the next meeting. We thank our sponsors OSISM GmbH und Aitus UG for the food – they are both members of the Open Source Business Alliance e.V. - as well as the c-base for the great opportunity to have our social event in their space station. 😉

Contact us

If you need any further information, please contact Eduard or Bianca – they’ll be happy to help you. See you in Berlin!

  1. The schedule is adapted from the great work of Xiaoying Riley

  2. Please note that we cannot cover the beverage.