KubeCon North America 2026

KubeCon North America 2026 preview

KubeCon + CloudNativeCon North America is the CNCF's flagship cloud-native event in North America — a week-long gathering of more than ten thousand cloud-native practitioners, project maintainers, vendors, and end users that consistently sets the direction of the broader Kubernetes ecosystem. KubeCon NA is the place where projects graduate, customer adoption stories are told at scale, and the operational disciplines that define the modern cloud-native stack come into focus.

KubeCon + CloudNativeCon North America 2026 takes place November 9 through 13, 2026. The agenda spans the full cloud-native landscape: Kubernetes at scale, platform engineering, multi-cluster and multi-cloud architectures, eBPF, service mesh, observability, supply chain security, FinOps, and the AI-on-Kubernetes track that has become one of the most-watched parts of the program. For any organization running serious Kubernetes — or building infrastructure on top of it — KubeCon NA is the most concentrated source of practical, peer-validated content on the calendar.

Meet Echo at KubeCon NA

KubeCon attracts exactly the teams Echo is built for. Platform engineers running production Kubernetes at scale, SREs responsible for cluster reliability, security leaders defending cloud-native attack surfaces, and the engineering executives funding all of it — these are the people in the room. And for nearly all of them, one of the most stubborn operational problems is the same: vulnerability scanners flooding CI pipelines with findings rooted in upstream base images, registries cluttered with patched and unpatched variants of the same image, and the never-ending work of rebuilding base images as new CVEs land.

Echo handles all of it. Every Echo image ships CVE-free, FIPS-validated using a CMVP-validated cryptographic module, and pre-hardened against DISA STIG requirements — so your team inherits a clean baseline rather than building one from scratch. Echo supports the largest variety of FIPS-validated crypto modules available, including OpenSSL, BoringCrypto, and Bouncy Castle, meaning you are covered regardless of what your development stack has chosen. All images ship with full SBOM transparency in both SPDX and CycloneDX formats, plus signed provenance and attestation via cosign and sigstore.

For Kubernetes-native teams, that translates directly into operational wins. Scanners come back clean, admission policies enforce without exceptions, and the supply chain story is provable end-to-end. Drop-in compatibility across the runtimes and frameworks already running in your clusters — Java, Python, Node, Go, .NET, NGINX, Postgres, and dozens more — means Echo replaces upstream images without forcing rewrites of Helm charts, manifests, or pipelines. The work that used to require a custom internal golden-image program becomes a registry pull.

Echo also provides the audit evidence that makes the difference at compliance time. The STIG validation tool produces per-image reports covering every required STIG check, with images prebuilt to pass validation. The FIPS runtime tester verifies FIPS compliance at runtime by executing both approved and unapproved cryptographic algorithms and reporting observed behavior. And for continuous monitoring, Echo's ConMon and POA&M reporting automatically scans, documents, and forwards justifications for unfixed vulnerabilities to auditors in real time — the same evidence pipeline that makes FedRAMP, CMMC, and adjacent compliance regimes tractable for cloud-native teams.

The results speak for themselves: teams using Echo eliminate 10,000 CVEs, save 4,000 engineering hours per year, bring average remediation time down to 3 days, and can report and triage new findings in under 24 hours. To see what this looks like in practice, read how Varonis used Echo to achieve FedRAMP authorization — with zero vulnerabilities showing up at audit and an experience their Deputy CTO described as "just a smooth ride."

At the largest cloud-native event of the year, that is a message worth hearing.

What to expect at KubeCon NA 2026

The KubeCon NA 2026 program continues the maturing arc the cloud-native community has been on: less debate about whether to use Kubernetes, more focus on the operational disciplines that make running it well sustainable. Expect deep technical content across platform engineering, multi-cluster fleet management, FinOps, security, and the operational realities of supporting hundreds of internal teams on a shared platform. Supply chain security — sigstore, SLSA, in-toto, and the operationalization of signed provenance — continues to be one of the most-attended tracks year over year.

AI-on-Kubernetes is expected to be the breakout content theme of 2026. Sessions on GPU scheduling, model serving frameworks, and the new generation of Kubernetes-native AI infrastructure projects will draw the largest rooms and reflect where a meaningful share of CNCF community energy is heading next. The Project Pavilion remains the heart of the event — the place where the open source ecosystem actually meets its users — and the partner ecosystem on the show floor reflects how broad the cloud-native vendor landscape has become.

KubeCon NA 2026 passes and rates

KubeCon NA 2026 registration is now open. CNCF offers tiered pricing — early bird, standard, and late — alongside member discounts, end-user discounts, and academic/non-profit rates. Securing your spot early is the best way to lock in the lowest pricing tier and guarantee access to the most in-demand co-located events, workshops, and tutorials, which historically fill quickly. Full pass pricing, co-located event details, and registration are available directly from the CNCF at events.linuxfoundation.org.

KubeCon NA gathers the broadest and deepest cloud-native audience of the year. Platform engineers, SREs, security leaders, project maintainers, and decision-makers from across the world's largest Kubernetes adopters all converge in the same week — and the density of the technical conversation makes every hour at the event productive. With co-located events spanning security (Cloud Native SecurityCon), AI (CloudNativeAIDay), and project-specific deep dives, registering early is recommended for anyone planning to attend.

Meet Echo at KubeCon NA 2026

The Echo team will be at KubeCon + CloudNativeCon North America 2026 for 1:1 conversations about how Echo can transform your container image security and supply chain evidence story. Whether you are running Kubernetes at hyperscale, building out a regulated-environment platform, or trying to break through a CVE remediation backlog that has become a permanent line item, come find us at the booth. We can walk you through exactly how Echo's CVE-free, FIPS-validated, STIG-hardened images change the picture — and what your scan dashboards, SBOM evidence, and audit reports look like once your base images stop being the source of the noise.