August 30, 2017

The Cloudcast #309 - Secrets Management for Secure Microservices

30 minutes

Brian talks with Seth Vargo (@sethvargo, Director of Technical Advocacy @HashiCorp) about the evolving security footprint of modern applications, the increasing needs for secrets management with microservices, the challenges of managing encryption, how to maintain highly available environments, and the evolution of Pittsburgh as a tech city.

Show Links:

[Donations for Hurricane Harvey, Houston Flood Victims] Red Cross
Buy Necessary Items, via Amazon, for Hurricane Harvey Victims
Use code “PCCLOUD” for 20% of Gold, Silver, Bronze passes at VelocityConf
Seth’s projects on GitHub
Seth’s book from O’Reilly
HashiCorp Vault [website] and GitHub project
[O’Reilly Velocity Conference, NYC] Microservices Secrets Management with Vault

Interested in ServerlessConf in NYC (Oct 8-11)? 20% Discount on all passes
Start Serverless Skills Bundle (4 courses) - (only $49 instead of $79)
FREE Alexa Development for Absolute Beginners

Show Notes

Topic 1 - Welcome to the show. Tell us about your background as a technologist and author.
Topic 1a - And since we’re going to talk about Vault, give us the basics of the Vault platform.
Topic 2 - Let’s start with the basics. Why are we seeing so many more discussions about secrets management with microservices vs. legacy applications?
Topic 3 - What are the core challenges that microservices applications face with regard to secrets? Is it key management, or key rotation or encryption of secrets, or something else?
Topic 4 - Since secrets are so central to microservices, and critical to normal operations, how do you make sure that a platform like Vault is highly available? Or what happens if it goes out of service?
Topic 5 - If we’re talking about microservices, the conversation typically evolves to deploying them, which leads to discussions about container schedulers. Can you talk about the challenges that schedulers have with secrets and how Vaults helps to manage those challenges?

Feedback?

Email: show at thecloudcast dot net
Twitter: @thecloudcastnet and @ServerlessCast

...more

View all episodes

By Massive Studios

4.6

147147 ratings

August 30, 2017

The Cloudcast #309 - Secrets Management for Secure Microservices

30 minutes

[Donations for Hurricane Harvey, Houston Flood Victims] Red Cross
Buy Necessary Items, via Amazon, for Hurricane Harvey Victims
Use code “PCCLOUD” for 20% of Gold, Silver, Bronze passes at VelocityConf
Seth’s projects on GitHub
Seth’s book from O’Reilly
HashiCorp Vault [website] and GitHub project
[O’Reilly Velocity Conference, NYC] Microservices Secrets Management with Vault

Interested in ServerlessConf in NYC (Oct 8-11)? 20% Discount on all passes
Start Serverless Skills Bundle (4 courses) - (only $49 instead of $79)
FREE Alexa Development for Absolute Beginners

Show Notes

Topic 1 - Welcome to the show. Tell us about your background as a technologist and author.
Topic 1a - And since we’re going to talk about Vault, give us the basics of the Vault platform.
Topic 2 - Let’s start with the basics. Why are we seeing so many more discussions about secrets management with microservices vs. legacy applications?
Topic 3 - What are the core challenges that microservices applications face with regard to secrets? Is it key management, or key rotation or encryption of secrets, or something else?
Topic 4 - Since secrets are so central to microservices, and critical to normal operations, how do you make sure that a platform like Vault is highly available? Or what happens if it goes out of service?
Topic 5 - If we’re talking about microservices, the conversation typically evolves to deploying them, which leads to discussions about container schedulers. Can you talk about the challenges that schedulers have with secrets and how Vaults helps to manage those challenges?

Feedback?