Upgrade to Pro — share decks privately, control downloads, hide ads and more …

SSl with Letsencrypt on Kubernetes

Ashwin Murali
April 27, 2019
Technology
0
21

SSl with Letsencrypt on Kubernetes

Talk at RFCs we Love

Ashwin Murali

April 27, 2019
Tweet

More Decks by Ashwin Murali

See All by Ashwin Murali
AWS Community Day UAE 2024 - Sponsorship Deck
cruisemaniac
0
260
Learn Enough Containers to be Dangerous
cruisemaniac
0
190
Do More for Less With ECS Fargate!
cruisemaniac
0
57
Cloud engineer’s journey and survival in the cloud
cruisemaniac
1
1.6k
What does it take to be a good DevOps Engineer - Tamil / Vadivelu edition 0.1
cruisemaniac
0
370
AWS VPC 101
cruisemaniac
0
120
Deploying a Web App on Azure Container Services
cruisemaniac
0
930
Why DevOps And a few other uncomfortable.. things..
cruisemaniac
0
91
Connecting 10000 cars to the AWS Cloud
cruisemaniac
0
1.1k

Other Decks in Technology

See All in Technology
DMMブックスへのTipKit導入
ttyi2
1
110
メールヘッダーを見てみよう
hinono
0
110
【Oracle Cloud ウェビナー】2025年のセキュリティ脅威を読み解く:リスクに備えるためのレジリエンスとデータ保護
oracle4engineer
PRO
1
100
【JAWS-UG大阪 reInvent reCap LT大会 サンバが始まったら強制終了】“1分”で初めてのソロ参戦reInventを数字で振り返りながら反省する
ttelltte
0
140
Unsafe.BitCast のすゝめ。
nenonaninu
0
200
深層学習と3Dキャプチャ・3Dモデル生成(土木学会応用力学委員会 応用数理・AIセミナー)
pfn
PRO
0
460
AWS re:Invent 2024 re:Cap Taipei (for Developer): New Launches that facilitate Developer Workflow and Continuous Innovation
dwchiang
0
170
#TRG24 / David Cuartielles / Post Open Source
tarugoconf
0
590
Formal Development of Operating Systems in Rust
riru
1
420
新卒1年目、はじめてのアプリケーションサーバー【IBM WebSphere Liberty】
ktgrryt
0
130
デジタルアイデンティティ人材育成推進ワーキンググループ 翻訳サブワーキンググループ 活動報告 / 20250114-OIDF-J-EduWG-TranslationSWG
oidfj
0
540
ABWGのRe:Cap!
hm5ug
1
120

Featured

See All Featured
Performance Is Good for Brains [We Love Speed 2024]
tammyeverts
7
570
Visualization
eitanlees
146
15k
The Cult of Friendly URLs
andyhume
78
6.1k
[RailsConf 2023] Rails as a piece of cake
palkan
53
5.1k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
173
51k
Typedesign – Prime Four
hannesfritz
40
2.5k
Building Flexible Design Systems
yeseniaperezcruz
328
38k
The Cost Of JavaScript in 2023
addyosmani
46
7.2k
How to train your dragon (web standard)
notwaldorf
89
5.8k
The Invisible Side of Design
smashingmag
299
50k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
230
52k
Testing 201, or: Great Expectations
jmmastey
41
7.2k

Transcript

  1. SSL with Lets Encrypt on K8s Ashwin @ Zoomcar

  2. Agenda • SSLs and LetsEncrypt • K8s and Microservices •

    Cert Manager Demo • Q & A

  3. SSLs and Lets Encrypt

  4. • Privacy • Integrity • Identification

  5. SSL / TLS / HTTPS

  6. • SSLv2 - 1995-ish - Netscape • SSLv3 • TLS

    1.0 - 1999 - IETF - SSLv3.1 • TLS 1.1 - 2006 • TLS 1.2 - 2008 • SSL 3.0 dep - 2015 • TLS 1.3 - 2018

  7. Keys & Handshake

  8. Asymmetric Handshake

  9. Symmetric key Data exchange

  10. Certificates & Authorities

  11. • Issue Certificates • Confirm Identity of Cert Owner •

    Provide Proof of Cert Validity

  12. • Domain Validated • Organization Validated • Extended Validation

  13. K8s and Microservices

  14. • Microservices - Architectural Guidance • Multiple services on colocated

    arch • Does not dictate container use • Containers best suited for use case

  15. Kubernetes

  16. • Code will fail • System resilience and availability •

    Typical functions: Config, Deploy, Scale, Auth, Quota, Lifecycle, Federate, etc

  17. Demo & Questions

  18. Thank You [email protected] +91 9003010231