Patrick McFadin

KubeCon + CloudNativeCon Europe 2022 wrapped Friday, and if there&rsquo;s one significant conclusion I can share from the week, it&rsquo;s this: the cloud native community isn&rsquo;t losing any steam. More projects and more use cases. The community is maturing from the conversations I heard about the themes covered at the conference.&nbsp;
Before I dive into my quick takes on what I saw as the key takeaways, I have to thank everyone that stopped by the DataStax booth and shared Apache Cassandra&reg; stories. <a href="https://k8ssandra.io/">K8ssandra</a> adoption is growing steadily in the Cassandra+Kubernetes community and it was great to meet some of our community face to face. Valencia, Spain was an excellent host.&nbsp;
<img src="https://cdn.sanity.io/images/bbnkhnhl/production/e19160298234ceb2e620f728a98a76057ff2f38c-1560x903.jpg" alt="Images of DataStax booth at KubeCon 22 Europe and developers discussing their projects with DataStax engineers" width="1560" height="903" />
OK, let&rsquo;s get right into it.&nbsp;
<h2>Wrestling the massive cloud native ecosystem</h2>
An inside joke within the cloud native community: the <a href="https://landscape.cncf.io/">Cloud Native Computing Foundation (CNCF) landscape</a> can look like an eye chart. Yet the ecosystem has to be this complex because we aren&rsquo;t building just one type of virtual data center for our applications. Think of all the different ways we build declarative infrastructure and every possible use case. All of a sudden, this landscape looks smaller than it should be.&nbsp;
The CNCF is pitching in to help end-users make decisions with the next version of <a href="https://www.cncf.io/blog/2022/05/18/cloud-native-maturity-model-2-0/">Cloud Native Maturity Model 2.0</a>. There&rsquo;s a key addition to the model called Business Outcomes in this update. This is an acknowledgement that organizations don&rsquo;t make the cloud native move simply for technical reasons. Clear communication on business outcomes is another success factor. Kubernetes is happening in every organization, and essential tools like maturity models provide a lot of confidence moving forward. When you&rsquo;re done explaining to the C-suite how you will crush your cloud native squad goals, you can read a nice bedtime story to your kids with <a href="https://www.cncf.io/wp-content/uploads/2021/10/Admiral-Bash.pdf">Admiral Bash</a>. What a time to be alive!&nbsp;
<h2>The best security position: default</h2>
If we are going to automate the entire data center with Kubernetes, when is there a better chance to tackle security issues? That is a question that several groups around the cloud native ecosystem are answering with a resounding &ldquo;Now!&rdquo;&nbsp;
First is the announcement of an updated <a href="https://www.cncf.io/blog/2022/05/18/announcing-the-refreshed-cloud-native-security-whitepaper/">Cloud Native Security Whitepaper</a> from the Cloud Native Computing Foundation (CNCF), which added specific use cases and guidance around our increasingly regulated IT world. But we know the most significant problem, and it&rsquo;s <a href="https://www.theregister.com/2022/05/18/red_hat_kubernetes/">you</a>. It turns out that when humans have to think about adding security, they usually don&rsquo;t. The best way to combat that problem is to make security default. Deploying your application in Kubernetes happens after a long chain of activities that can open vulnerabilities in each step. The CNCF Technical Advisory Group for Security has <a href="https://www.cncf.io/blog/2022/05/20/announcing-the-secure-software-factory-reference-architecture-paper/">announced</a> a Secure Software Factory Reference Architecture that you can find <a href="https://github.com/cncf/tag-security/blob/main/supply-chain-security/secure-software-factory/secure-software-factory.md">here</a>. Large <a href="https://blog.chainguard.dev/how-citi-are-building-the-secure-software-factory-with-sigstore-and-tekton/">organizations</a> with massive security needs have been championing this way of being for infrastructure and it&rsquo;s being formalized in the best way: with standards and tooling. This is the path to making security a default way of life, and I&rsquo;m all for it.&nbsp;
<h2>Cloud native? We got this!&nbsp;</h2>
In a complete surprise, in the regular State of Cloud Native Development released by CNCF, users indicated that they are increasingly managing their own Kubernetes clusters! I have to admit, I thought that was going to be a rapidly declining statistic, but the numbers don&rsquo;t lie.&nbsp;&nbsp;
<img src="https://cdn.sanity.io/images/bbnkhnhl/production/2288081985f32bb333d0f4e059a126a5078acaef-1596x702.png" alt="Graphic showing survey results for orchestration tools used over the last six months." width="1596" height="702" />
Source: <a href="https://www.cncf.io/wp-content/uploads/2022/05/Q3-2021-State-of-Cloud-Native-development_FINAL.pdf">Cloud Native Computing Foundation (CNCF)</a>
So what&rsquo;s behind this trend? The report offers a few ideas, mainly that it&rsquo;s all about your needs. Or at least all about the needs of your application&mdash;and the ability to customize the configuration to meet the use case. My take is along that line, but I would add that developers are getting over the Kubernetes learning curve and bending it to their will like any other tool. In-house Kubernetes has gotten much better over the years with great projects like <a href="https://k3s.io/">k3s</a>. Once your cluster is set up, you are a helm install away from building your bespoke data center. Yay us!
<h2>See you at KubeCon North America 2022</h2>
The North American counterpart of last week&rsquo;s event is a mere six months away, which is a lot of time in the cloud native world. Things move fast here, and it&rsquo;s hard to keep up. I look forward to hearing how some of you take the lessons we&rsquo;ve learned this week to practice. We can also expect more announcements around maturity in the cloud native community with security, automation, and standards. I&rsquo;m most curious if the trend of self-managed Kubernetes holds up. What do you think? Let&rsquo;s see what we find in October when we meet in Detroit.
Thanks again to everyone who stopped by our booth. I expect to see a lot of &ldquo;helm install k8ssandra&rdquo; shirts at Cloud Native community events this year! If you missed the in-person this year, you can learn more about <a href="https://k8ssandra.io/">K8ssandra</a> or even hand over the Cassandra driving to us via DataStax Astra DB and we&rsquo;ll even give you $200 to get started. Just <a href="https://www.datastax.com/lp/serverless-database?utm_source=P&amp;utm_medium=site&amp;utm_campaign=P&amp;utm_id=KubeCon">create an Astra DB account</a>, create a serverless Cassandra database, add a payment method, and enter &ldquo;KubeCon200&rdquo; to get your credit. 
&nbsp;

Build and scale cloud native apps

Discover the benefits of DBaaS and why your apps deserve an upgrade.

Learn about NoSQL Databases

Learn about NoSQL databases with Apache Cassandra and Astra DB.

2022 Recap: A Year for Customers, Community, and Real-Time Data

Highlights from 2022 and a glimpse into the year ahead.

ViewingCompany

3 Big Takeaways from KubeCon + CloudNativeCon Europe 2022

Sign up for our Developer Newsletter