Securing Spring Applications with Hashicorp Vault - Speaker Deck

Securing Spring Applications with Hashicorp Vault

by Jan Dittberner

Speaker Deck

Tweet

Tweet

Slide 1

Slide 1 text

Securing Spring Applications with Hashicorp Vault Jan Dittberner @jandd

Slide 2

Slide 2 text

Jan Dittberner Software architect Topics: Linux, PKI, Automation, … Jan Dittberner DevDay – Dresden, 24.04.2018 1

Slide 3

Slide 3 text

Jan Dittberner Software architect Topics: Linux, PKI, Automation, … Debian Developer Infrastructure team lead CAcert.org Jan Dittberner DevDay – Dresden, 24.04.2018 1

Slide 4

Slide 4 text

WHAT IS VAULT? HashiCorp Vault secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Vault handles leasing, key revocation, key rolling, and auditing. Through a unified API, users can access an encrypted Key/Value store and network encryption-as-a-service, or generate AWS IAM/STS credentials, SQL/NoSQL databases, X.509 certificates, SSH credentials, and more. Jan Dittberner DevDay – Dresden, 24.04.2018 2

Slide 5

Slide 5 text

DEMO

Slide 6

Slide 6 text

DEMO VAULT AND SPRING-BOOT, TOKEN AND APPROLE AUTHENTICATION Jan Dittberner DevDay – Dresden, 24.04.2018 3

Slide 7

Slide 7 text

DEMO DYNAMIC X.509 CERTIFICATES FROM VAULT PKI Jan Dittberner DevDay – Dresden, 24.04.2018 4

Slide 8

Slide 8 text

DEMO DYNAMIC DATABASE CREDENTIALS FROM VAULT DATABASE ENGINE Jan Dittberner DevDay – Dresden, 24.04.2018 5

Slide 9

Slide 9 text

THANKS! Q & A Jan Dittberner @jandd