How to Secure Edge Compute

Transcript

1. HOW TO SECURE EDGE COMPUTE A PRIMER ON

2. Sr. Developer Advocate at HashiCorp he / him @ksatirli Kerim

   Satirli

3. 41 : 02

4. # " " " " " "

5. Cloud Edge ☁

6. edge com·put·ing noun computing that takes place at or near

   the physical location of the producer or consumer of data. point of presence mobile datacenter Similar:

7. Challenges trackers must be easy to enroll trackers can break

   rogue trackers lead to bad data trackers identify people

8. Challenges instances must be easy to enroll instances can break

   rogue instances lead to bad data instances identify services

9. Off-shore Challenge: Enrollment On-shore ▪ establish trust between network and

   device ▪ ensure device works ▪ disable (without removing) device in network gateway ▪ establish allowlist ▪ re-enable previously activated device ▪ ensure device works

10. Challenge: Enrollment device_id 11569343838664 device_rev v1 device_key vault:v1:Ajxr/3+mxye8d0tQWoGMlBkf3XW5aDjz+Pobt0Y2uzmfs6E= device_activated TRUE

    device_state 2x5

11. = Challenge: Identification

12. Challenge: Replacement employee_id A.643838.X3 employee_team_id A.589 device_id 11569343838664 device_link_date 1691514302

    previous_device_id 11569343838663

13. mutual TLS for gateway-to-cloud transform sanitized data to make it

    actionable inspect payload for rogue tracker data Ingress Protection

14. Data Visualization https://tracking-maps.svcs.dev/#/overview # " " " " " "

15. (Network) Security is a Team Sport.

16. speakerdeck.com/ksatirli