Call for round the year submissions for Rootconf in 2020
Submit a proposal at any time in the year on DevOps, infrastructure security, cloud, and distributed systems. We will find you a suitable opportunity to share your work.
RR
Roshan R
@roshan10
Stop Reinventing the wheel, Use Hashicorp vault!
Submitted May 6, 2019
Section:
Crisp talk
Technical level:
Intermediate
Session type:
Lecture
HashiCorp Vault is well known for secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing.
It also handles leasing, key revocation, key rolling, and auditing. Vault presents a unified API to access multiple backends: HSMs, AWS IAM,
SQL databases, raw key/value, and more. But what else is it good for?
This talk is about exploring lesser-known features of Vault besides Secret Storage, namely Encryption-as-a-service, Dynamic Secrets, Cubbyhole secret engine, PKI, etc
Outline
Overview of Vault Features & the Vault Architecture.
Introduction to Vault terminology.
Understanding various Vault Secret Engines
Exploring the Cubbyhole Secret engine.
Overview of Encryption-as-a-service feature.
Rotating Database credentials dynamically.
Vault for other production use cases.
Speaker bio
Roshan is a tech enthusiast and StackOverflow community contributor for the past few years. Currenlty he’s working as an Operations engineer at Endurance international group. He’s also an AWS certified professional and a multi-cloud expert. His area of interest also includes containerization, docker security, and infra automation.
Slides
https://docs.google.com/presentation/d/1eaPTM-LfrlI8txsOgFUaJerks1DwHcLIAvNPM5oTBwQ/edit?usp=sharing
{{ gettext('Login to leave a comment') }}
{{ gettext('Post a comment…') }}{{ errorMsg }}
{{ gettext('No comments posted yet') }}