SSl with Letsencrypt on Kubernetes

April 27, 2019

17

SSl with Letsencrypt on Kubernetes

Talk at RFCs we Love

Ashwin Murali

April 27, 2019

Tweet

More Decks by Ashwin Murali

See All by Ashwin Murali

Learn Enough Containers to be Dangerous

0

51

Do More for Less With ECS Fargate!

0

33

Cloud engineer’s journey and survival in the cloud

1

1.2k

What does it take to be a good DevOps Engineer - Tamil / Vadivelu edition 0.1

0

310

0

110

Deploying a Web App on Azure Container Services

0

810

Why DevOps And a few other uncomfortable.. things..

0

78

Connecting 10000 cars to the AWS Cloud

0

950

Idiomatic Docker & K8s Deployments for Rails apps

0

2k

Other Decks in Technology

See All in Technology

社内での継続的な機械学習勉強会の開催のコツ

2

400

Databricksの生成AI戦略

1

380

My road to OSEE Part1

0

120

Security Hubのセキュリティスコアはどうやって計算されるか

0

110

Blazor WASM × Code-first gRPC で始める C# ⼤統⼀理論

1

950

株式会社EventHub・エンジニア採用資料

0

2.1k

20240516 OpenID TechNight Vol.21 「OIDFシェアードシグナルフレームワーク（ID2）を利用してリアルタイムでセキュリティシグナルを共有するための最新情報」

0

180

AWSの生成AI入門書を執筆しました🎉

0

160

TypeScript の抽象構文木を用いた、数百を超える API の大規模リファクタリング戦略

6

1.3k

OPENLOGI Company Profile for engineer

1

2.2k

#phpconkagawa レガシーコードにもオブザーバビリティを〜少しずつ始めるサービス監視〜

yamato_sorariku

0

570

Domain-driven Design: A Complete Example

2

270

Featured

See All Featured

The Cult of Friendly URLs

74

5.7k

Stop Working from a Prison Cell

266

19k

Writing Fast Ruby

622

60k

Helping Users Find Their Own Way: Creating Modern Search Experiences

21

2k

StorybookのUI Testing Handbookを読んだ

13

4.7k

Bash Introduction

605

210k

Teambox: Starting and Learning

128

8.4k

Documentation Writing (for coders)

60

4k

個人開発の失敗を避けるイケてる考え方 / tips for indie hackers

67

14k

A better future with KSS

231

16k

Large-scale JavaScript Application Architecture

504

110k

Web development in the modern age

203

10k

Transcript

SSL with Lets Encrypt on K8s Ashwin @ Zoomcar
Agenda • SSLs and LetsEncrypt • K8s and Microservices •
Cert Manager Demo • Q & A
SSLs and Lets Encrypt
• Privacy • Integrity • Identification
SSL / TLS / HTTPS
• SSLv2 - 1995-ish - Netscape • SSLv3 • TLS
1.0 - 1999 - IETF - SSLv3.1 • TLS 1.1 - 2006 • TLS 1.2 - 2008 • SSL 3.0 dep - 2015 • TLS 1.3 - 2018
Keys & Handshake
Asymmetric Handshake
Symmetric key Data exchange
Certificates & Authorities
• Issue Certificates • Confirm Identity of Cert Owner •
Provide Proof of Cert Validity
• Domain Validated • Organization Validated • Extended Validation
K8s and Microservices
• Microservices - Architectural Guidance • Multiple services on colocated
arch • Does not dictate container use • Containers best suited for use case
Kubernetes
• Code will fail • System resilience and availability •
Typical functions: Config, Deploy, Scale, Auth, Quota, Lifecycle, Federate, etc
Demo & Questions
Thank You [email protected] +91 9003010231