Optimizing For Production Workloads

Breaking down the containers runtimes into their base functionality and then building them up into a series or core libraries and tools to specialize in core capabilities. Our goal is, rather then have one monolithic daemon to do all container management, to build up a series of tools that specialize in each different function of container management.

The tooling landscape for containers is evolving rapidly--to keep things running smoothly in production, you need to keep your eye on the latest developments in container infrastructure. This talk will introduce the following:

  1. containers/Image: Library used by other tools for pulling and pushing container images to and from a container registry like and into other types of container storage
  2. containers/storage: Library used for storing container images on disk supporting multiple container backends including Overlay, Devicemapper, and Btrfs
  3. libpod : Library for managing the lifecycle of pods and containers
  4. Skopeo: CLI tool that uses containers/image and containers/storage to move container images between different types of containers storage, including container registries, container storage, Docker storage, OCI Directories etc. Think of it as scp for container images.
  5. Buildah: CLI tool that allows you to build OCI container images using standard linux tools, no daemon necessary, also has support for Dockerfile
  6. CRI-O : API server daemon for the Kubernetes Container Runtime Interface. optimized for serving the Kubernetes and OpenShift Workloads. Supports multiple container runtimes like runc and kata containers out of the box.
  7. Podman: Simple CLI tool used to create pods and containers without requiring a daemon.

Tools share the same container storage and infrastructure, allowing users to pick and choose the best tool for their workloads.


Daniel Walsh

Engineer @Redhat working on CRI-O Container Runtime

Daniel Walsh has worked in the computer security field for over 35 years. Dan is a Consulting Engineer at Red Hat. He joined Red Hat in August 2001. Dan leads the Red Hat Container Engineering team since August 2013, but has been working on container technology for several years. Dan currently...

Read more
Find Daniel Walsh at:


Samuel Ortiz

Principal Engineer @Intel Open Source Technology Center

Samuel is a Principal Engineer at Intel's Open Source Technology Center, where he currently leads the Kata Containers and Clear Containers project. He's also the Linux kernel NFC maintainer and one of the CRI-O maintainers. In previous lives Samuel worked on networking and connectivity,...

Read more
Find Samuel Ortiz at:


Windsor, 5th flr.


Operating Systems: LinuxKit, Unikernels, & Beyond


Operating SystemsContainersKubernetesInfrastructureImmutable Infrastructure


From the same track

SESSION + Live Q&A Interview Available

Unikraft - Unleashing the Power of Unikernels

Recently, several papers and projects dedicated to specialized OSes and unikernels have shown the immense potential for performance gains that these have. By leveraging specialization and the use of minimalistic OSes, unikernels are able to yield impressive numbers, including fast instantiation...

Felipe Huici

Chief Researcher in the Systems and Machine Learning Group at NEC Laboratories Europe

SESSION + Live Q&A Operating Systems

The Modern Operating System in 2018

The last monolith is the operating system. There are tens or hundreds of millions of lines of code in the kernel, and orders of magnitude more in the userspace code that gets shipped with it. Not just any code, security critical code written in unsafe languages. Every other area of software has...

Justin Cormack

Developer @Docker

SESSION + Live Q&A Operating Systems

XDP in Practice: DDoS Mitigation @Cloudflare

XDP is a Linux technology which brings fast networking to native Linux. Historically Linux required specialized patches to reduce the overhead of network packet processing. XDP fixes that: it allows packet filtering, modification and retransmission with arbitrary user logic. The logic for an...

Gilberto Bertin

System Engineer @Cloudflare London

SESSION + Live Q&A Operating Systems

Making the Windows Command-Line Great Again!

The command-line is an essential tool for many developers and administrators, on any machine and any operating system. Attend this session to learn how Microsoft has been overhauling the Windows command-line experience in Windows 10, making it easier than ever to run Windows tools alongside Linux...

Rich Turner

Senior Program Manager @Microsoft

Tara Raj

Program Manager @Microsoft

View full Schedule