DevOpsDays Philadelphia 2019 - Base64 is not encryption - a better story for... by Seth Vargo

Channel:
United States Confreaks
Subscribers:
42,400
Published on ● Video Link: https://www.youtube.com/watch?v=7Q3RkyBOvHM


Category:
Let's Play
Duration: 28:55
24 views
0

DevOpsDays Philadelphia 2019 - Base64 is not encryption - a better story for Kubernetes Secrets by Seth Vargo

Secrets are a key pillar of Kubernetes’ security model, used internally (e.g. service accounts) and by users (e.g. API keys), but did you know they are stored in plaintext? That’s right, by default all Kubernetes secrets are base64 encoded and stored as plaintext in etcd. Anyone with access to the etcd cluster has access to all your Kubernetes secrets.

Thankfully there are better ways. This lecture provides an overview of different techniques for more securely managing secrets in Kubernetes including secrets encryption, KMS plugins, and tools like HashiCorp Vault. Attendees will learn the tradeoffs of each approach to make better decisions on how to secure their Kubernetes clusters.



Other Videos By Confreaks


2022-07-05DinosaurJS 2019: The Art of Teaching by Lori Culberson
2022-07-05DinosaurJS 2019: The Future of Web Animation by Sarah Drasner
2022-07-05DinosaurJS 2019: Data science in the browser: DX & UX by Jana Beck
2022-07-05DinosaurJS 2019: Pika: Reimagining the Registry by Fred K. Schott
2022-07-05DinosaurJS 2019: Codemods: Refactoring JavaScript using JavaScript by Saimon Sharif
2022-07-05DinosaurJS 2019: How to Have an Amicable Breakup With a JavaScript Library by Daria Caraway
2022-07-05DinosaurJS 2019: Postmortem on the Ingen Incident by Hayley Denbraver
2022-07-05DinosaurJS 2019: Building JavaScript for JavaScripters by Cassidy Williams
2022-07-05DevOpsDays Philadelphia 2019 - Arrested DevOps Live
2022-07-05DevOpsDays Philadelphia 2019- Join Our Party: The Cloud Native Adventure Brigade by Bridget Kromhout
2022-07-05DevOpsDays Philadelphia 2019 - Base64 is not encryption - a better story for... by Seth Vargo
2022-07-05DevOpsDays Philadelphia 2019 - Remote Desktop, Continuously Delivered by Rosemary Wang
2022-07-05DevOpsDays Philadelphia 2019 - We Have a Complex Systems Problem…and We Need to... by Jon Moore
2022-07-05DevOpsDays Philadelphia 2019 - Ignite Karaoke with Various Speakers
2022-07-05DevOpsDays Philadelphia 2019 - Ignites - A Brief Wild Ride Around Quantum Computing by Marco Coulter
2022-07-05DevOpsDays Philadelphia 2019 - Ignites - Nontechnical Skills for Technical People by Marissa Murphy
2022-07-05DevOpsDays Philadelphia 2019- Ignites - The Test Automation Pyramid by Alan S Koch
2022-07-05DevOpsDays Philadelphia 2019 - Ignites - Zero to DevOps in less than a year... by Rachel Sweeney
2022-07-05DevOpsDays Philadelphia 2019 - Ignites - DevOps for good: How you can and should... by Steve Ross
2022-07-05DevOpsDays Philadelphia 2019 - Creating a Culture of Inclusion by Jeremy Hayes
2022-07-05DevOpsDays Philadelphia 2019 - Deduplicating an Organization by Jearvon Dharrie