Loading…
18-19 June
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon India 2026 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in India Standard Time (UTC+5:30)To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change and session seating is available on a first-come, first-served basis. 
Venue: 205 (Level 2) clear filter
Thursday, June 18
 

12:00pm IST

Commit-Then-Disclose: Cryptographic SBOM Auditing Without IP Leakage - Sharvil Bhatt, Reliance Industries limited & Swastik Gour, Improving
Thursday June 18, 2026 12:00pm - 12:30pm IST
SBOM regulations (NTIA, EU CRA,CISA) create conflicting requirements: auditors demand transparency while vendors require confidentiality. We present a two-layer Merkle commitment architecture separating public change detection from private component disclosure. Layer 1 builds standard Merkle trees producing public roots for tamper detection—anyone monitors changes without seeing components. Layer 2 commits internal hashes with 256-bit random nonces, yielding private commitment roots shared only with auditors for cryptographic hiding. Selective disclosure reveals only changed components via decommitment tuples with O(log n) proofs. Auditors verify commitments reconstruct to trusted roots. Re-randomization refreshes nonces without altering data. Tested: 100 auditors, 100K components, 50K proofs, zero false accepts. Performance: 2.6M disclosures/second, 0.01ms proof generation, 625-byte paths. Policy-based filtering achieves 72% disclosure reduction.

Speakers
avatar for Swastik Gour

Swastik Gour

Product Engineer , CNCF ambassador, Improving
Swastik is a CNCF ambassador and a Product Engineer by profession who enjoys to contribute to opensource inclusing openssf hosted RSTUF , kyverno , knative , paralus , Kubevela and is also a CAPI CI signal release shadow . He likes to study about the latest tech And innovations going... Read More →
avatar for Sharvil Bhatt

Sharvil Bhatt

Researcher and ex security auditor, Ex Reliance Industries limited
Independent security researcher and published author working on applied cryptography and systems hardening. Interested in privacy-preserving systems and the security-performance tradeoffs of deploying crypto in resource-constrained environments.
Thursday June 18, 2026 12:00pm - 12:30pm IST
205 (Level 2)
  Security

12:40pm IST

Root Without Risk: A Decade-Long Quest for True Container Isolation - Sumir Broota, Broota Enterprise
Thursday June 18, 2026 12:40pm - 1:10pm IST
Kubernetes has long struggled with safe container isolation where `root` in a pod meant `root` on the node. This session shows how KEP‑127 and user namespaces finally make root inside a container harmless.

Real scenario: Your container needs CAP_SYS_ADMIN for FUSE mounts. An exploit succeeds. Without user namespaces: attacker = root on node, full cluster access. With user namespaces: attacker = UID 65536 - relatively powerless.

This talk chronicles the 9+ year journey mapping your pods "root" to an unprivileged nobody on the host.

Why it took 9 years:
- Early attempts (2016) failed-no kernel support
- v1.25-1.28: Three alpha rewrites
- v1.27: idmap mounts breakthrough
- v1.30: off-by-default Beta after CRI overhauls
- v1.33: Default beta-production-ready
- v1.34: Observability (metrics added)

What you'll learn:
✓ Live code walkthrough: kubelet → CRI → runc UID remapping
✓ Demos: container breakout attempts CVE-2024-21626 AKA Leaky Vessel patched
✓ Practical deployment patterns
Speakers
avatar for Sumir Broota

Sumir Broota

Sr DevSecOps Engineer & Tech Architect, Broota Enterprise
An independent DevSecOps and Tech Architecture consultant, kubestronaut, and cybersecurity and FOSS enthusiast, currently running Mumbai’s largest cybersecurity community -BreachForce.
Thursday June 18, 2026 12:40pm - 1:10pm IST
205 (Level 2)
  Security

2:30pm IST

Sponsored Demo: Scaling EdTech at Hyperspeed: How PhysicsWallah Reduced Kubernetes Costs Without Slowing Down - Avinash Gupta, Physicswallah & Gaurang Singh, Cast AI
Thursday June 18, 2026 2:30pm - 2:50pm IST
PhysicsWallah serves 10 million learners across India, running live classes 24/7 on Amazon EKS. As the platform scaled, Karpenter hit its limits. Spot interruptions were hard to handle gracefully, manual rightsizing consumed SRE bandwidth, and nodes were chronically over-provisioned for traffic spikes that came and went unpredictably.
In this talk, Avinash (Engineering Lead, PW) and Gaurang Singh (Field CTO APAC, CAST AI) walk through how PW adopted CAST AI to automate Kubernetes cost optimization without risking a single live class. Starting with a read-only POC, the team validated 48.67% cost savings before touching production. They then rolled out workload rightsizing (WOOP) and node autoscaling incrementally, cutting CPU requests by 35% in production.
The session covers the adoption playbook, lessons on configuring Pod Disruption Budgets before enabling rightsizing, and why multi-family spot pools outperform manual over-provisioning for spiky edtech workloads.

**In order to facilitate networking and business relationships at the event, you may choose to visit a third party’s booth or access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth or participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.**
Speakers
avatar for Gaurang Singh

Gaurang Singh

Field CTO APAC, Cast AI
Gaurang Singh is Field CTO, APAC at CAST AI, where he helps enterprises optimize Kubernetes infrastructure at scale across cloud cost, performance, and automation. He works closely with platform engineering teams in BFSI, telecom, and media industries, specializing in large-scale... Read More →
avatar for Avinash Gupta

Avinash Gupta

Senior Director of Engineering, Physicswallah
Avinash Gupta is Senior Director of Engineering at PhysicsWallah, where he leads product engineering and infrastructure across PW's platform and its subsidiaries. With over a decade of experience scaling engineering and infra functions at high-growth organizations, he brings deep... Read More →
Thursday June 18, 2026 2:30pm - 2:50pm IST
205 (Level 2)

3:00pm IST

Sponsored Demo: From Local App to Cluster in Minutes with Headlamp and OSS - Sanket Bakshi, Microsoft
Thursday June 18, 2026 3:00pm - 3:20pm IST
Getting an existing app onto Kubernetes often breaks down at the last mile: writing Dockerfiles, generating manifests, and figuring out how everything fits together across environments.

This demo shows a working path from a developer laptop to a production cluster using open-source tools. We start in VS Code with the Containerization Assist MCP server, which generates Dockerfiles and Kubernetes manifests and iterates based on real build feedback. Then we move into Headlamp, the CNCF Kubernetes UI, to inspect a local cluster, validate the deployment, and promote the same workload to AKS without switching tools.

You’ll see a single flow from local app to local cluster to AKS in minutes, how containerization artifacts get created and refined, and how Headlamp provides a consistent view across environments. The focus is on a practical, repeatable path that stays aligned with open-source tooling while working seamlessly with managed Kubernetes.


**In order to facilitate networking and business relationships at the event, you may choose to visit a third party’s booth or access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth or participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.**
Speakers
avatar for Sanket Bakshi

Sanket Bakshi

Senior Program Manager, Cloud Native, Microsoft

Thursday June 18, 2026 3:00pm - 3:20pm IST
205 (Level 2)

3:30pm IST

Sponsored Demo: Cloud Native AI: Model Management with Harbor & Velero - Dhruv Tyagi, Broadcom
Thursday June 18, 2026 3:30pm - 3:50pm IST
As AI scales on Kubernetes, platform teams face a massive hurdle: managing multi-gigabyte AI models. Baking LLMs directly into container images breaks CI/CD pipelines, bloats storage, and couples the model lifecycle to the inference server code.
In this session, discover how to bring operational maturity to AI workflows. First, we will explore Harbor’s evolution as an AI model registry supporting the Cloud Native AI (CNAI) spec. You will see a live demo of packaging and pushing quantized models into Harbor as standard OCI artifacts, leveraging layer deduplication and rich metadata.

Then, we will tackle Day-2 operational resilience for these deployments. We will demonstrate how to reliably back up and restore your AI namespace: including inference services, configurations, and model cache PVCs ensuring your workloads survive unexpected disasters.

Join us to learn a practical, open-source blueprint for confidently distributing and protecting production AI workloads on Kubernetes.


**In order to facilitate networking and business relationships at the event, you may choose to visit a third party’s booth or access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth or participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.**
Speakers
avatar for Dhruv Tyagi

Dhruv Tyagi

Product Marketing Engineer, Broadcom
Dhruv Tyagi is a Product Marketing Engineer at VMware by Broadcom focusing on architecting, validating, and promoting the end-to-end infrastructure solutions for VCF Edge and Kubernetes. Dhruv specializes in Hybrid Cloud Infrastructure, Container Orchestration, Automation, and DevOps... Read More →
Thursday June 18, 2026 3:30pm - 3:50pm IST
205 (Level 2)

4:00pm IST

Sponsored Demo: The True Cost of Building at Machine Speed - Dan Lorenc, Chainguard
Thursday June 18, 2026 4:00pm - 4:20pm IST
AI is fundamentally reshaping software development. Engineering teams are already shipping 10-50x more code through agentic workflows, but the security infrastructure built for human-paced development can't scale with them. This talk examines the hidden costs and compounding risks that emerge when organizations embrace AI velocity without rethinking their software supply chain. As the attack surface expands during every sprint and exploitation timelines compress from weeks to hours, a new class of threats is emerging: AI-powered malware targeting CI/CD pipelines, physically impossible attack rates, and zero-days that legacy scanning tools were never designed to catch. Drawing on real-world examples, Dan Lorenc outlines what a secure-by-default foundation looks like in the agentic era, where vulnerabilities are eliminated before they reach your environment. 

**In order to facilitate networking and business relationships at the event, you may choose to visit a third party’s booth or access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth or participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.**
Speakers
avatar for Dan Lorenc

Dan Lorenc

CEO and Co-founder, Chainguard
Dan Lorenc is co-founder and CEO of Chainguard, a company revolutionizing how organizations build securely with open source software, shaping modern development practices for companies like Canva, OpenAI, Snap Inc, and Snowflake. 
His foundational contributions to software supply chain security predate watershed moments like SolarWinds and Log4j. Before founding Chainguard, Dan spent over a decade at Google where he led several influential projects. He created Tekton and Sigstore to make containers more secure... Read More →
Thursday June 18, 2026 4:00pm - 4:20pm IST
205 (Level 2)

4:30pm IST

Sponsored Demo: Cut the Bill, Not the Brains. AI Coding Agents That Ship More and Cost Less - Matas Kaminskas, Cast AI
Thursday June 18, 2026 4:30pm - 4:50pm IST
Your AI coding bill is going to surprise you. Not because the models stopped working - because they're working too well, and you're running everything through the most expensive ones by default.

There's a 12× per-token cost gap between frontier and OSS models. On real coding benchmarks, the gap in output quality is almost nothing. The difference is the harness - the layer most teams never touch.

This talk is about that layer: how automatic task routing cuts spend without touching quality, why the harness matters more than the model you pick, and what the infrastructure underneath actually looks like (vLLM, prefix caching, Kubernetes-native GPU orchestration).

Based on Kimchi, the open-source coding agent we built after our own Anthropic bill went vertical. Practical, benchmarked, runs today.

**In order to facilitate networking and business relationships at the event, you may choose to visit a third party’s booth or access sponsored content. You are never required to visit third party booths or to access sponsored content. When visiting a booth or participating in sponsored activities, the third party will receive some of your registration data. This data includes your first name, last name, title, company, address, email, standard demographics questions (i.e. job function, industry), and details about the sponsored content or resources you interacted with. If you choose to interact with a booth or access sponsored content, you are explicitly consenting to receipt and use of such data by the third-party recipients, which will be subject to their own privacy policies.**
Speakers
avatar for Matas Kaminskas

Matas Kaminskas

Senior Engineering Manager, Cast AI
Matas is a Senior Engineering Manager at CAST AI, leading Kimchi - an open-source AI coding agent and inference platform built on open-source models. He has spent 10+ years building distributed systems and helping companies cut Kubernetes infrastructure costs at scale.
Thursday June 18, 2026 4:30pm - 4:50pm IST
205 (Level 2)
 
Friday, June 19
 

12:00pm IST

Inference in Progress… Please Monitor Responsibly - Gaurav Sharma, NVIDIA
Friday June 19, 2026 12:00pm - 12:30pm IST
Running GPU inference on Kubernetes is no longer exotic — it’s becoming the default for modern AI workloads. But while teams obsess over model latency and throughput, the real problems usually hide deeper: GPU under-utilization, memory fragmentation, node-level contention, noisy neighbour, and observability gaps that make debugging feel like guesswork.
In this talk, we’ll walk through a practical, field-tested monitoring approach for GPU inference workloads on Kubernetes. Attendees will learn how to instrument GPU nodes, collect and correlate GPU-specific metrics, build alerting around inference SLOs, and detect performance regressions before they disrupt production. We’ll also cover common anti-patterns and what “good” looks like for GPU observability in 2025.
If you're running (or planning to run) GPU inference at scale, this session will help you monitor responsibly — and keep your cluster healthy, efficient, and fast.
Speakers
avatar for Gaurav Sharma

Gaurav Sharma

Engineering Manager, Nvidia
Currently working as Engineering Manager for Reliability Engineering team for Nvidia AI. In the past I have been part of SRE teams for Nvidia cloud gaming, Microsoft Azure Reliability, Adobe Analytics & VMware Cloud Services.
Friday June 19, 2026 12:00pm - 12:30pm IST
205 (Level 2)
  Observability

12:40pm IST

Zero Trust for Autonomous Agents: Isolating AI Workloads on Kubernetes - Kanagalingam Senthalan, WSO2
Friday June 19, 2026 12:40pm - 1:10pm IST
AI Agents are moving from experimental scripts to autonomous "digital employees" creating a new security crisis. Because agents determine their own execution paths, standard security fails. Securing them requires strictly enforcing the 4 Pillars of Governance: Administration, Authentication, Authorization, and Audit at the infrastructure layer.

This talk presents a practical implementation of these pillars using Cell-Based Architecture on Kubernetes. We will demonstrate how to encapsulate agents into governed "Cells" to enforce Zero Trust controls at every critical traffic boundary:
1. User → Agent
2. Agent → Agent
3. Agent → Tool
4. Agent → LLM

We will translate these pillars into real Kubernetes primitives, giving attendees a blueprint to move from "unmanaged bots" to hardened, enterprise-ready workloads. All patterns demonstrated use CNCF-hosted projects and open-source identity primitives leveraging open standards like OIDC and OAuth 2.0.
Speakers
avatar for Kanagalingam Senthalan

Kanagalingam Senthalan

Technical Lead, WSO2
Kanagalingam Senthalan is a core contributor and technical lead for Project Thunder, an open-source identity service designed for cloud-native workloads including AI agents. Previously, he led the Application Identity team for WSO2 Internal Developer Platform, where he embedded security... Read More →
Friday June 19, 2026 12:40pm - 1:10pm IST
205 (Level 2)
  Security
  • Content Experience Level Any

2:30pm IST

Ready, Set, Go: WASM-Powered Containers Taking Your AI To New Heights - Anshika Tiwari, Amazon Web Services & Abhineet Saxena, NUTANIX
Friday June 19, 2026 2:30pm - 3:00pm IST
With the rise of containerization and edge computing, the demand for portable, efficient, and low-latency solutions is growing. WebAssembly (WASM), known for its small size and fast loading, is expanding beyond the browser into containerized and edge environments. When combined with CNCF projects like Kraken, WasmEdge Runtime, and containerd, WASM can unlock hardware accelerators (GPU, TPU, FPGA) to revolutionize AI/ML workloads across both containerized and edge deployments.

In this talk, we’ll explore:

1. How Kraken and WasmEdge Runtime enable seamless integration of WASM into containerized environments for enhanced performance.
2. Showcasing WASM-powered containers running AI workloads across various hardware platforms.

By the end of this talk, you'll know how to take your containerized and edge AI/ML workloads to the next level with speed, portability, and hardware acceleration.
Speakers
avatar for Abhineet Saxena

Abhineet Saxena

Systems Reliability Engineering II, Nutanix
Abhineet Saxena is a Cloud Engineer specializing in AWS, Linux, and DevOps, and an AWS User Group and CNCF Community Leader. He has organized and spoken at events like Kubernetes Birthday Bash, Grafana Jaipur, and Navigating the Cloud. A speaker at KubeCon India 2026, he focuses on... Read More →
avatar for Anshika Tiwari

Anshika Tiwari

CSA - Cloud Engineer, Amazon Web Services, Inc.
Anshika is a passionate DevOps/SRE Engineer who is always eager to learn & implement cloud-native solutions, she has contributed to streamlining deployment processes and enhancing system reliability. She is eager to share her experiences and insights at conferences, contributing to... Read More →
Friday June 19, 2026 2:30pm - 3:00pm IST
205 (Level 2)
  Emerging + Advanced
  • Content Experience Level Any

3:10pm IST

When Kubernetes Becomes an Interface, Not a Cluster - Samarth Sharma, DataGenie & Goutam Verma, Expedia
Friday June 19, 2026 3:10pm - 3:40pm IST
We often treat Kubernetes as a system you must continuously run and operate. But in practice, many teams interact with Kubernetes primarily as an API contract rather than as an always on control plane.
In this talk we'll explore a different way to think about Kubernetes, what if the Kubernetes API mattered more than the cluster itself?

Instead of running a full control plane with etcd, schedulers, and nodes, workloads are executed locally using lightweight runtimes, while applications continue to interact through Kubernetes-style APIs.

We'll see:

=> Which Kubernetes components are actually required to run workloads
=> Running workloads without etcd, schedulers, or nodes
=> Local-first execution with Kubernetes-compatible APIs
=> Clear limitations and failure modes of this approach
=> What this model enables for edge, disaster recovery, and local development

The goal is not to replace Kubernetes, but to understand which parts of it are essential and which are incidental. with a demo
Speakers
avatar for Goutam Verma

Goutam Verma

SDE II, Expedia
Software Engineer at WSO2 | Google Summer of Code | ETH India | Summer of Bitcoin | MLH Fellowship | GeeksforGeeks | Speaker at KubeCon and OSS
avatar for Samarth Sharma

Samarth Sharma

Software Engineer, DataGenie
I am Samarth Sharma, a software engineer and an Opensource enthusiast. I have worked with various tech organizations as a Software Engineer Fellow, including Google Summer of Code' 22 and 23, Geeks for Geeks, MLH and Metafic.
Friday June 19, 2026 3:10pm - 3:40pm IST
205 (Level 2)
  Emerging + Advanced

4:10pm IST

Validating RK3588 for KubeEdge: Scalable ARM64 Edge Node Simulation Without Hardware - Sachin Jha, CNCF(KubeEdge)
Friday June 19, 2026 4:10pm - 4:40pm IST
In this session, I’ll share how I validated support for the RK3588 ARM64 chip in KubeEdge—without using any physical hardware. Instead of relying on real devices, I built a simulation-based setup that mimics how an RK3588-powered edge node behaves inside KubeEdge.

I’ll walk through the practical steps: how the environment was emulated, how pods were tested, and how metrics, node status, and edge-core behavior were verified. Along the way, I’ll also highlight the challenges, what worked, what didn’t, and the key lessons that made the process smoother.

If you’re interested in edge computing, ARM devices, or contributing to KubeEdge without access to specialized hardware, this talk will give you a clear, realistic, and easy-to-follow blueprint.
Speakers
avatar for Sachin Jha

Sachin Jha

LFX Intern, CNCF(KubeEdge)
Sachin is a cloud-native enthusiast and an active contributor to CNCF projects, currently focusing on Kyverno. With a strong background in DevOps, Kubernetes, and containerization, Sachin has been actively involved in open-source communities, collaborating on policy-driven security... Read More →
Friday June 19, 2026 4:10pm - 4:40pm IST
205 (Level 2)
  Emerging + Advanced

4:50pm IST

LLMs Behind Bars: Sandboxes at Scale for AI on a Short Leash - Prashanth Pai, CodeRabbit
Friday June 19, 2026 4:50pm - 5:20pm IST
LLMs can write code - and sometimes running that code is the most direct way to deliver product value. The moment you do, you’ve effectively introduced a remote-code-execution surface: the code is untrusted by default, but the system still has to execute it to stay useful.

In this talk, we’ll share what it took to build and operate production sandboxes for LLM-generated code at scale. We’ll cover the isolation model (containers, least-privilege defaults, syscall/filesystem restrictions), the operational reality (startup latency, resource limits, cold starts, observability), and the guardrails that matters when code or users try to misbehave. We’ll also dig into data protection: locking down egress, blocking exfiltration paths, and keeping secrets out of reach.

We’ll cover what worked, what failed, and what we’d do differently - ending with a practical, vendor-agnostic mental model and checklist you can apply.
Speakers
avatar for Prashanth Pai

Prashanth Pai

Principal Engineer, CodeRabbit
Prashanth Pai is a Principal Engineer at CodeRabbit, where he builds the infrastructure that powers safe, reliable execution for AI products in production.

He started his career at Red Hat and has been passionate about open source ever since.
Friday June 19, 2026 4:50pm - 5:20pm IST
205 (Level 2)
  AI + ML
 
  • Filter By Date
  • Filter By Venue
  • Filter By Type
  • Content Experience Level
  • Timezone

Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.