Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
SSl with Letsencrypt on Kubernetes
Search
Ashwin Murali
April 27, 2019
Technology
0
21
SSl with Letsencrypt on Kubernetes
Talk at RFCs we Love
Ashwin Murali
April 27, 2019
Tweet
Share
More Decks by Ashwin Murali
See All by Ashwin Murali
AWS Community Day UAE 2024 - Sponsorship Deck
cruisemaniac
0
270
Learn Enough Containers to be Dangerous
cruisemaniac
0
220
Do More for Less With ECS Fargate!
cruisemaniac
0
59
Cloud engineer’s journey and survival in the cloud
cruisemaniac
1
1.8k
What does it take to be a good DevOps Engineer - Tamil / Vadivelu edition 0.1
cruisemaniac
0
380
AWS VPC 101
cruisemaniac
0
120
Deploying a Web App on Azure Container Services
cruisemaniac
0
960
Why DevOps And a few other uncomfortable.. things..
cruisemaniac
0
93
Connecting 10000 cars to the AWS Cloud
cruisemaniac
0
1.1k
Other Decks in Technology
See All in Technology
[OpsJAWS Meetup33 AIOps] Amazon Bedrockガードレールで守る安全なAI運用
akiratameto
1
140
Aurora PostgreSQLがCloudWatch Logsに 出力するログの課金を削減してみる #jawsdays2025
non97
1
250
プルリクエストレビューを終わらせるためのチーム体制 / The Team for Completing Pull Request Reviews
nekonenene
3
1.8k
「頑張る」を「楽しむ」に変換する技術
tomoyakitaura
1
260
OPENLOGI Company Profile for engineer
hr01
1
20k
DeepSeekとは?何がいいの? - Databricksと学ぶDeepSeek! 〜これからのLLMに備えよ!〜
taka_aki
2
190
開発者のための FinOps/FinOps for Engineers
oracle4engineer
PRO
2
270
2025/3/1 公共交通オープンデータデイ2025
morohoshi
0
110
DevinでAI AWSエンジニア製造計画 序章 〜CDKを添えて〜/devin-load-to-aws-engineer
tomoki10
0
230
スクラムというコンフォートゾーンから抜け出そう!プロジェクト全体に目を向けるインセプションデッキ / Inception Deck for seeing the whole project
takaking22
3
200
事業を差別化する技術を生み出す技術
pyama86
2
550
AIエージェント入門
minorun365
PRO
34
20k
Featured
See All Featured
CSS Pre-Processors: Stylus, Less & Sass
bermonpainter
356
29k
Visualization
eitanlees
146
15k
Bootstrapping a Software Product
garrettdimon
PRO
307
110k
Large-scale JavaScript Application Architecture
addyosmani
511
110k
Building Your Own Lightsaber
phodgson
104
6.2k
Imperfection Machines: The Place of Print at Facebook
scottboms
267
13k
Art, The Web, and Tiny UX
lynnandtonic
298
20k
Why Our Code Smells
bkeepers
PRO
336
57k
GitHub's CSS Performance
jonrohan
1030
460k
A Philosophy of Restraint
colly
203
16k
Build The Right Thing And Hit Your Dates
maggiecrowley
34
2.5k
Testing 201, or: Great Expectations
jmmastey
42
7.2k
Transcript
SSL with Lets Encrypt on K8s Ashwin @ Zoomcar
Agenda • SSLs and LetsEncrypt • K8s and Microservices •
Cert Manager Demo • Q & A
SSLs and Lets Encrypt
• Privacy • Integrity • Identification
SSL / TLS / HTTPS
• SSLv2 - 1995-ish - Netscape • SSLv3 • TLS
1.0 - 1999 - IETF - SSLv3.1 • TLS 1.1 - 2006 • TLS 1.2 - 2008 • SSL 3.0 dep - 2015 • TLS 1.3 - 2018
Keys & Handshake
Asymmetric Handshake
Symmetric key Data exchange
Certificates & Authorities
• Issue Certificates • Confirm Identity of Cert Owner •
Provide Proof of Cert Validity
• Domain Validated • Organization Validated • Extended Validation
K8s and Microservices
• Microservices - Architectural Guidance • Multiple services on colocated
arch • Does not dictate container use • Containers best suited for use case
Kubernetes
• Code will fail • System resilience and availability •
Typical functions: Config, Deploy, Scale, Auth, Quota, Lifecycle, Federate, etc
Demo & Questions
Thank You ashwin@zoomcar.com +91 9003010231