Loading…
Attending this event?
Virtual Event
August 17–August 20, 2020
Learn More and Register to Attend This Event

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please register here.

Please note: This schedule is automatically displayed in Central European Summer Time (CEST). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Tuesday, August 18 • 17:45 - 18:20
Save Your Services from Sneaky Snoops With SPIFFE? - Daniel Feldman, Scytale

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Lurking inside almost every cloud native project is a hidden threat: hardcoded credentials for services like external APIs and databases. While these credentials can be set to long random strings and encrypted, they still can be stolen by an intruder or accidentally misused by insiders. In this talk, we’ll demonstrate how to use CNCF’s SPIFFE and SPIRE Projects to securely authenticate to workloads such as PostgreSQL, MongoDB, and AWS from inside your services, all without any hardcoded credentials -- eliminating an entire class of security vulnerabilities while decreasing your work as a DevSecOps team.

Speakers
avatar for Daniel Feldman

Daniel Feldman

Software Engineer, Scytale
Daniel Feldman is a Scytale software engineer who is making networks more secure by implementing SPIFFE zero-trust security. Before joining Scytale, he worked at Veritas, implementing zero-trust security for NetBackup enterprise backup software which is used by more than 10,000 c... Read More →


Tuesday August 18, 2020 17:45 - 18:20
Virtual
Feedback form isn't open yet.