Presentation

Microservice security with Vault

Published 7:00 AM UTC Oct 15, 2018

Learn how HashiCorp Vault works, and why it's a key component of your security posture in a microservices environment.

We've all been there. You're not paying attention and you leak API keys or other secrets to GitHub by accident. Sandeep Dinesh, a GCP developer advocate, has been there too. In his talk at the NDC Oslo conference, Dinesh explores why we need secrets managers like Vault now more than ever.

The dynamic infrastructure and architecture associated with microservices brings up a new set of security challenges, and this talk covers those challenges as well as how Vault can address them.

What you'll learn in this talk:

  • A review of why traditional, static infrastructure with a "castle and moat" approach was much simpler
  • An overview of how security needs to work in dynamic infrastructures (i.e. cloud, microservices).
  • A primer on Vault’s architecture and its secrets-as-a-service functionality
  • How to store static secrets (e.g. WiFi credentials).
  • A definition of dynamic secrets and usage examples (e.g. database passwords or cloud keys)
  • How Vault's encryption-as-a-service works.

More resources like this one

  • 2/3/2023
  • Case Study

Automating Multi-Cloud, Multi-Region Vault for Teams and Landing Zones

  • 1/5/2023
  • Case Study

How Discover Manages 2000+ Terraform Enterprise Workspaces

zero-trust
  • 12/13/2022
  • White Paper

A Field Guide to Zero Trust Security in the Public Sector

  • 9/26/2022
  • Case Study

How Deutsche Bank onboarded to Google Cloud w/ Terraform

View all resources