Loading…
25-27, August 2025
Amsterdam, Netherlands
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Central European Summer Time, CEST (UTC +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right. 

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.
Venue: Emerald Room clear filter
arrow_back View All Dates
Tuesday, August 26
 

11:00 CEST

Build Distroless Containers the Easy Way: From Full Fat To Featherweight With Unbase_oci - Nikolas Kraetzschmar, SAP
Tuesday August 26, 2025 11:00 - 11:40 CEST
Emerald Room
Tired of wrangling dependencies to craft distroless containers from scratch? unbase_oci flips the script.

Instead of painstakingly building up from a minimal base, you start with a comfortable, fully-featured container—think debian or ubuntu—and develop as usual. Then, with one simple command, unbase_oci automatically strips your image down to the bare essentials by comparing it to the base and keeping only what’s truly needed.

No more trial-and-error to get your distroless image just right. Write normal Dockerfiles, enjoy all your debugging tools during dev, and let unbase_oci do the slimming for production.

It’s Bash. It’s fast. It’s minimal. It works with any OCI image and requires nothing but standard Unix tools and your container engine of choice.

Let’s stop over-engineering minimalism. Build smart, then unbase.
Speakers
avatar for Nikolas Kraetzschmar

Nikolas Kraetzschmar

Software Engineer, SAP
Focused on building a streamlined, security-hardened Linux for container and Kubernetes environments, with a keen interest in C programming and security.
Tuesday August 26, 2025 11:00 - 11:40 CEST
Emerald Room
  Cloud & Containers
  • Audience Experience Level Any

11:55 CEST

Cloud Native IoT: OTA Updates and Device Repurposing With K8s - Anastassios Nanos & Charalampos Mainas, Nubis PC
Tuesday August 26, 2025 11:55 - 12:35 CEST
Emerald Room
This session presents an open-source system for integrating resource-constrained IoT devices like ESP32-based MCUs into k8s-managed environments. It covers secure device onboarding using Entity Attestation Tokens (EATs) and OpenDICE, where devices generate cryptographic identities from hardware-embedded secrets and attest their state during registration and OTA updates.

Devices are discovered using Akri, which exposes them as addressable Kubernetes resources. Firmware is built and packaged as OCI artifacts, stored in standard registries, and deployed via a k8s "FlashJob" operator that lives alongside the Akri framework. Upon deployment, prior to joining the cluster, devices are onboarded and validated via Akri's discovery handler. When repurposed, devices are validated again, to ensure end-to-end attestation of both hardware and software components.

The session focuses on concrete mechanisms for OTA management, hardware-rooted identity, and distributed execution targeting constrained systems under k8s control.
Speakers
avatar for Anastassios Nanos

Anastassios Nanos

Systems Researcher, NUBIS PC
I am a Researcher in Computer Systems and I am currently working on the lower-level parts of the stack to attack issues related to performance, scalability, power-efficiency and security in hypervisors.
avatar for Charalampos Mainas

Charalampos Mainas

Systems Software Engineer, Nubis PC
Charalampos Mainas is a systems engineer who is very interested in virtualization technologies and operating systems. His main focus is on finding ways to improve the performance and scalability of lightweight VMMs. Moreover, he has considerable experience with unikernel stacks, porting... Read More →
Tuesday August 26, 2025 11:55 - 12:35 CEST
Emerald Room
  Cloud & Containers

14:10 CEST

Server Partitioning Without VMs - for Flexibility and Performance - Antti Kervinen, Intel & Feruzjon Muyassarov, Ericsson Software Technology
Tuesday August 26, 2025 14:10 - 14:50 CEST
Emerald Room
Efficient use of servers with tens or hundreads of CPUs most often requires partitioning it so that only a fraction of CPUs is disclosed to a set of containers. This improves performance, hardware utilization, and mitigates the noisy neighbor problem.

In this session, you will learn about very flexible CPU and memory partitioning that enables squeezing maximum performance from the server. For instance, you will see how to arrange containers into dynamically growing and shrinking CPU sets. How to group containers into CPU sets based on their names, labels, QoS classes, or namespaces. How to pre-allocate isolated CPUs for latency critical containers. How to let containers burst outside their partitions if there are free CPUs. And without forgetting observability, how to view existing partitions in the cluster in detail, including exact CPUs and containers in each partition.

We use NRI plugins and the balloons policy for demonstrating this, without limitations of Kubernetes CPU manager, or overhead of VMs. That said, this partitioning makes sense inside large VMs, too.
Speakers
avatar for Antti Kervinen

Antti Kervinen

Cloud Orchestration Software Engineer, Intel
Antti Kervinen is a Cloud Orchestration Software Engineer working at Intel, whose interest in Linux and distributed systems has led him from academic research of concurrency to the world of Kubernetes. When unplugged, Antti spends his time outdoors discovering wonders of nature... Read More →
avatar for Feruzjon Muyassarov

Feruzjon Muyassarov

Software Engineer, Ericsson Software Technology
Feruzjon Muyassarov is a Software Engineer focused on Kubernetes optimization and resource management. At Ericsson Software Technology, he works on enhancing performance and hardware integration in cloud-native systems.https://www.linkedin.com/in/fmuyassarov/
Tuesday August 26, 2025 14:10 - 14:50 CEST
Emerald Room
  Cloud & Containers

15:05 CEST

Containers Live Migration: What’s There, What’s Missing, What’s Next? - Daniel Simionato, ControlPlane
Tuesday August 26, 2025 15:05 - 15:45 CEST
Emerald Room
Moving a running workload from one host to another transparently without disrupting its execution flow (“live migration”) is a solved problem for virtual machines, but still poses challenges for containers.

Current checkpoint and restore functionalities in both Kubernetes and LXD are somewhat limited or not completely fleshed out, and moving containers from one host to another involves either spinning up new replicas or stopping and restarting the containers, which is undesirable for stateful workloads like databases, machine learning or deep learning jobs.

Projects like CRIU (https://criu.org/Main_Page) and DMTCP (https://github.com/dmtcp/dmtcp) propose different approaches to offer checkpointing and restore functionalities in containers, but there is still no streamlined solution in LXD and Kubernetes.

In this lightning talk, we’ll go over the current state of the art, with a quick demo of what’s currently available, describing what’s missing and what will be the future developments to achieve seamless container live migration.
Speakers
avatar for Daniel Simionato

Daniel Simionato

Cloud Native Engineer, ControlPlane
Daniel Simionato is currently a Cloud Native Engineer at ControlPlane. Tinkerer at heart, he spent the majority of his career in a terminal tending or architecting Linux systems and Kubernetes clusters. When he’s not pressing keys in front of light boxes, he enjoys climbing and... Read More →
Tuesday August 26, 2025 15:05 - 15:45 CEST
Emerald Room
  Cloud & Containers

16:20 CEST

Your Containers Aren’t Alone: Demystifying Container Isolation - Marina Moore, Edera
Tuesday August 26, 2025 16:20 - 17:00 CEST
Emerald Room
How do you know your container workloads aren’t being viewed or altered by other workloads running in the same environment? Many technologies promise to isolate workloads from each other, but what do these technologies actually do, and which one is right for your workloads? In this talk we will discuss why people use multi-tenency to run containers from multiple users in the same cluster, the risks of multi-tenency, and what we can do about these risks. We will survey technologies with different levels of container isolation, from relying on namespaces to using virtual machines to using separate hardware. Each level of isolation is right for some use cases, so we will discuss the pros and cons of each. You’ll come away with a new understanding of how you can keep containers secure from each other and an understanding of the tradeoffs of various container isolation technologies.
Speakers
avatar for Marina Moore

Marina Moore

Research Scientist, Edera
Marina Moore is a Research Scientist at Edera. She is a maintainer of The Update Framework (TUF), a CNCF graduated project that provides secure software update and delivery. She is also a chair of CNCF's TAG Security where she contributes to security assessments and whitepapers, as... Read More →
Tuesday August 26, 2025 16:20 - 17:00 CEST
Emerald Room
  Cloud & Containers
 
  • Filter By Date
    Aug 24 - 28, 2025
  • Filter By Venue
    Amsterdam, Netherlands
    All
    Auditorium
    D201
    D202
    D203
    D204
    D406 (Elicium Level 4)
    Diamond Lounge
    Elicium 1
    Elicium 2
    Emerald Room
    First Floor Restaurant
    G001-002
    G102-103
    G104
    G105
    G106
    G107
    G109
    Hotel nHow Amsterdam RAI
    Meeting Room Vanilla - Hotel nHow Amsterdam RAI
    RAI Amsterdam
    TBA
  • Filter By Type
    Cloud & Containers
    Co-Located Events
    Digital Trust
    Embedded Linux Conference
    Equity + Inclusion + Accessibility
    Keynote Sessions
    Linux
    Open Source 101
    Open Source Leadership
    OpenGovCon
    Operations Management
    OSPOCon
    Project Mini-Summits
    Safety-critical Software
    Special Events / Exhibits / Breaks
    Standards & Specifications
    Technical Documentation
    Wildcard
    Zephyr Developer Summit
  • Audience Experience Level
    Advanced
    Any
    Beginner
    Intermediate
  • Timezone
Need help? View Support Guides
Event questions? Contact Event Planner
©2025 Sched About Privacy Terms
Share Modal

Share this link via

Or copy link

Filter sessions
Apply filters to sessions.
Filtered by Date - 
Clear filter
Sunday, August 24
Monday, August 25
Tuesday, August 26
Wednesday, August 27
Thursday, August 28
Auditorium
D201
D202
D203
D204
D406 (Elicium Level 4)
Diamond Lounge
Elicium 1
Elicium 2
Emerald Room
First Floor Restaurant
G001-002
G102-103
G104
G105
G106
G107
G109
Hotel nHow Amsterdam RAI
Meeting Room Vanilla - Hotel nHow Amsterdam RAI
RAI Amsterdam
TBA
  • Cloud & Containers
  • Co-Located Events
  • Digital Trust
  • Embedded Linux Conference
  • Equity + Inclusion + Accessibility
  • Keynote Sessions
  • Linux
  • Open Source 101
  • Open Source Leadership
  • OpenGovCon
  • Operations Management
  • OSPOCon
  • Project Mini-Summits
  • Safety-critical Software
  • Special Events / Exhibits / Breaks
  • Standards & Specifications
  • Technical Documentation
  • Wildcard
  • Zephyr Developer Summit
  • Audience Experience Level
  • Advanced
  • Any
  • Beginner
  • Intermediate