Dates
Conferences
Tags
Sort by:
Most recent
Conference: KubeCon + CloudNativeCon Europe 2023
Authors: Ashley Davis
2023-04-20
tldr - powered by Generative AI
The presentation discusses the importance of a safe private PKI and how to mitigate risks associated with it.
- The third risk in PKI is trust, and it is important to mitigate it to ensure the certificate is not useless
- Trust manager is a tool that can help in this situation, but a plan is still needed for trusting certificates
- Issuance and policy are important to prevent unauthorized requests and ensure the safety of the PKI
- Private PKI offers advantages such as cost-effectiveness and total control over certificate issuance
- Certificates are important for encryption in transit and protecting data from attackers
Conference: KubeCon + CloudNativeCon North America 2022
Authors: Shweta Vohra
2022-10-28
tldr - powered by Generative AI
PKI and Certificate management are critical security measures for communicating over networks within or outside an infrastructure. The presentation covers the basics of certificate infrastructure, a case study, and 5 must-knows about certificate management.
- PKI and certificate management are essential for secure communication over networks
- Certificates for Kubernetes clusters are simple, but microservices and service mesh require more complex design and implementation
- Certificate infrastructure involves trust establishment, certificate authority, registration authority, and verification authority
- Design considerations include network proxy layer, TLS version mismatches, certificate revocation methods, certificate automation and monitoring
- Tools like Spiffe/Spire and Grafana can be used for automation, monitoring, and analysis