Tuesday, November 19 • 11:50am - 12:25pm
Five Things You Didn’t Know You Could Do with SPIFFE and SPIRE - Andrew Jessup & Andrés Vega, Scytale

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Zero Trust networking and secure authentication are hot topics in security team meetings all over the world. But how do you actually get started? The open-source SPIFFE and SPIRE projects are your foundation for building ridiculously secure software, even between multiple clouds and clusters.

In this talk, we will guide you through five practical applications with the open-source SPIFFE and SPIRE projects, including automatic authentication and mutual TLS encryption between:

workloads on two different clouds,
a workload in a virtual machine and an Istio cluster,
a container in a Google Container Engine cluster and Amazon Web Services
a workload in a Kubernetes cluster and a MySQL database
a workload in a Kubernetes cluster and a Hashicorp Vault cluster
a workload in a Kubernetes cluster and an API gateway

And we’ll do all of this without any annoying passwords, API keys, or secrets.

This talk focuses on real, practical examples of the SPIFFE and SPIRE projects. It assumes no prior knowledge of them, though some passing familiarity with Kubernetes will be helpful.

avatar for Andrew Jessup

Andrew Jessup

Recovering Engineer, Scytale
I'm head of product at Scytale, where we're redefining Privileged Access Management for a multi-cloud, micro-services driven world. A significant part of that vision is working to drive the SPIFFE and SPIRE projects to help organisations securely connect un-trusted systems.
avatar for Andres Vega

Andres Vega

Founder, M42

Tuesday November 19, 2019 11:50am - 12:25pm PST
Room 31ABC - San Diego Convention Center Upper Level
  Maintainer Track Sessions