Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
SSl with Letsencrypt on Kubernetes
Search
Ashwin Murali
April 27, 2019
Technology
0
17
SSl with Letsencrypt on Kubernetes
Talk at RFCs we Love
Ashwin Murali
April 27, 2019
Tweet
Share
More Decks by Ashwin Murali
See All by Ashwin Murali
Learn Enough Containers to be Dangerous
cruisemaniac
0
51
Do More for Less With ECS Fargate!
cruisemaniac
0
33
Cloud engineer’s journey and survival in the cloud
cruisemaniac
1
1.2k
What does it take to be a good DevOps Engineer - Tamil / Vadivelu edition 0.1
cruisemaniac
0
310
AWS VPC 101
cruisemaniac
0
110
Deploying a Web App on Azure Container Services
cruisemaniac
0
810
Why DevOps And a few other uncomfortable.. things..
cruisemaniac
0
78
Connecting 10000 cars to the AWS Cloud
cruisemaniac
0
950
Idiomatic Docker & K8s Deployments for Rails apps
cruisemaniac
0
2k
Other Decks in Technology
See All in Technology
社内での継続的な機械学習勉強会の開催のコツ
yudai00
2
400
Databricksの生成AI戦略
taka_aki
1
380
My road to OSEE Part1
yunolay
0
120
Security Hubのセキュリティスコアはどうやって計算されるか
toru_kubota
0
110
Blazor WASM × Code-first gRPC で始める C# ⼤統⼀理論
sansantech
PRO
1
950
株式会社EventHub・エンジニア採用資料
eventhub
0
2.1k
20240516 OpenID TechNight Vol.21 「OIDFシェアードシグナルフレームワーク(ID2)を利用してリアルタイムでセキュリティシグナルを共有するための最新情報」
oidfj
0
180
AWSの生成AI入門書を執筆しました🎉
minorun365
PRO
0
160
TypeScript の抽象構文木を用いた、数百を超える API の大規模リファクタリング戦略
yanaemon
6
1.3k
OPENLOGI Company Profile for engineer
hr01
1
2.2k
#phpconkagawa レガシーコードにもオブザーバビリティを 〜少しずつ始めるサービス監視〜
yamato_sorariku
0
570
Domain-driven Design: A Complete Example
ewolff
2
270
Featured
See All Featured
The Cult of Friendly URLs
andyhume
74
5.7k
Stop Working from a Prison Cell
hatefulcrawdad
266
19k
Writing Fast Ruby
sferik
622
60k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
21
2k
StorybookのUI Testing Handbookを読んだ
zakiyama
13
4.7k
Bash Introduction
62gerente
605
210k
Teambox: Starting and Learning
jrom
128
8.4k
Documentation Writing (for coders)
carmenintech
60
4k
個人開発の失敗を避けるイケてる考え方 / tips for indie hackers
panda_program
67
14k
A better future with KSS
kneath
231
16k
Large-scale JavaScript Application Architecture
addyosmani
504
110k
Web development in the modern age
philhawksworth
203
10k
Transcript
SSL with Lets Encrypt on K8s Ashwin @ Zoomcar
Agenda • SSLs and LetsEncrypt • K8s and Microservices •
Cert Manager Demo • Q & A
SSLs and Lets Encrypt
• Privacy • Integrity • Identification
SSL / TLS / HTTPS
• SSLv2 - 1995-ish - Netscape • SSLv3 • TLS
1.0 - 1999 - IETF - SSLv3.1 • TLS 1.1 - 2006 • TLS 1.2 - 2008 • SSL 3.0 dep - 2015 • TLS 1.3 - 2018
Keys & Handshake
Asymmetric Handshake
Symmetric key Data exchange
Certificates & Authorities
• Issue Certificates • Confirm Identity of Cert Owner •
Provide Proof of Cert Validity
• Domain Validated • Organization Validated • Extended Validation
K8s and Microservices
• Microservices - Architectural Guidance • Multiple services on colocated
arch • Does not dictate container use • Containers best suited for use case
Kubernetes
• Code will fail • System resilience and availability •
Typical functions: Config, Deploy, Scale, Auth, Quota, Lifecycle, Federate, etc
Demo & Questions
Thank You
[email protected]
+91 9003010231