Five Things You Didnt Know You Could Do with SPIFFE and SPIRE
Zero Trust networking and secure authentication are hot topics in security team meetings all over the world. But how do you actually get started? The open-source SPIFFE and SPIRE projects are your fou …
| Talk Title | Five Things You Didnt Know You Could Do with SPIFFE and SPIRE |
| Speakers | Andrew Jessup (Recovering Engineer, Scytale), Andrés Vega (Product Manager, Scytale) |
| Conference | KubeCon + CloudNativeCon North America |
| Conf Tag | |
| Location | San Diego, CA, USA |
| Date | Nov 15-21, 2019 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
Zero Trust networking and secure authentication are hot topics in security team meetings all over the world. But how do you actually get started? The open-source SPIFFE and SPIRE projects are your foundation for building ridiculously secure software, even between multiple clouds and clusters.In this talk, we will guide you through five practical applications with the open-source SPIFFE and SPIRE projects, including automatic authentication and mutual TLS encryption between:workloads on two different clouds,a workload in a virtual machine and an Istio cluster,a container in a Google Container Engine cluster and Amazon Web Servicesa workload in a Kubernetes cluster and a MySQL databasea workload in a Kubernetes cluster and a Hashicorp Vault clustera workload in a Kubernetes cluster and an API gatewayAnd we’ll do all of this without any annoying passwords, API keys, or secrets.This talk focuses on real, practical examples of the SPIFFE and SPIRE projects. It assumes no prior knowledge of them, though some passing familiarity with Kubernetes will be helpful.
