Rootconf 2019
Rootconf

Rootconf 2019

On infrastructure security, DevOps and distributed systems.

About Rootconf 2019:

The seventh edition of Rootconf is a two-track conference with:

  1. Security talks and tutorials in audi 1 and 2 on 21 June.
  2. Talks on DevOps, distributed systems and SRE in audi 1 and audi 2 on 22 June.

Topics and schedule:

View full schedule here: https://hasgeek.com/rootconf/2019/schedule

Rootconf 2019 includes talks and Birds of Feather (BOF) sessions on:

  1. OSINT and its applications
  2. Key management, encryption and its costs
  3. Running a bug bounty programme in your organization
  4. PolarDB architecture as Cloud Native Architecture, developed by Alibaba Cloud
  5. Vitess
  6. SRE and running distributed teams
  7. Routing security
  8. Log analytics
  9. Enabling SRE via automated feedback loops
  10. TOR for DevOps

Who should attend Rootconf?

  1. DevOps programmers
  2. DevOps leads
  3. Systems engineers
  4. Infrastructure security professionals and experts
  5. DevSecOps teams
  6. Cloud service providers
  7. Companies with heavy cloud usage
  8. Providers of the pieces on which an organization’s IT infrastructure runs – monitoring, log management, alerting, etc
  9. Organizations dealing with large network systems where data must be protected
  10. VPs of engineering
  11. Engineering managers looking to optimize infrastructure and teams

For information about Rootconf and bulk ticket purchases, contact info@hasgeek.com or call 7676332020. Only community sponsorships available.

Rootconf 2019 sponsors:

Platinum Sponsor
CRED

Gold Sponsors
Atlassian Endurance Trusting Social

Silver Sponsors
Digital Ocean GO-JEK Paytm

Bronze Sponsors
MySQL sumo logic upcloud
platform sh nilenso CloudSEK

Exhibition Sponsor
FreeBSD Foundation

Community Sponsors
Ansible PlanetScale

Hosted by

Rootconf
Rootconf
Rootconf is a forum for discussions about DevOps, infrastructure management, IT operations, systems engineering, SRE and security (from infrastructure defence perspective). more
All submissions

Tasdik Rahman

@tasdikrahmangojek

Kingsly - The Cert Manager

Submitted Jun 8, 2019

Section: Crisp talk Technical level: Beginner Session type: Lecture

Problem Statement

Manage SSL/TLS certificate lifecycle for various backends which would include but not limited to
- IPSec VPNs
- HAProxy/envoy proxy

Existing Solutions

Generate certs using openssl(error prone) or use managed solution(expensive)

Solution

  • We built kingsly, which would act as broker between clients and letsencrypt, serving the clients with SSL certs.
  • It takes care of renewal of certs before their expiry dates.
  • extensible by writing custom clients to automate the whole manual process of updating certs with an example client.

Outline

Will go over the problem statement of how managing certs was a difficult problem for us and then how we went ahead solving it using kingsly.

Speaker bio

Product Engineer @ Gojek, Contributor to @oVirt, Backpacker, Weekend chef, theatre enthusiast.

Links

All submissions

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Hosted by

Rootconf
Rootconf
Rootconf is a forum for discussions about DevOps, infrastructure management, IT operations, systems engineering, SRE and security (from infrastructure defence perspective). more