SSl with Letsencrypt on Kubernetes

Talk at RFCs we Love

Ashwin Murali

April 27, 2019

More Decks by Ashwin Murali

See All by Ashwin Murali

AWS Community Day UAE 2024 - Sponsorship Deck

0

350

Learn Enough Containers to be Dangerous

0

440

Do More for Less With ECS Fargate!

0

81

Cloud engineer’s journey and survival in the cloud

1

2.1k

What does it take to be a good DevOps Engineer - Tamil / Vadivelu edition 0.1

0

440

0

130

Deploying a Web App on Azure Container Services

0

1.2k

Why DevOps And a few other uncomfortable.. things..

0

120

Connecting 10000 cars to the AWS Cloud

0

1.3k

Other Decks in Technology

See All in Technology

OpenID Connectによるサービス間連携

0

140

AIガバナンス実践 - 生成AIコネクタのデータ漏洩リスクと実務対策

0

130

Gradle×GitHub_ActionsでCI時間を約50%短縮ジョブ分割の設計と落とし穴 / Cutting CI Time by ~50% with Gradle and GitHub Actions: Job-Splitting Design and Pitfalls

0

510

シンデレラなんかになりたくない！ガラスの靴が割れた時代にどう歩く？

0

220

layerx-fde-practices

6

2.8k

「使われるデータ基盤」を目指してデータアナリストとワークショップをやった話

2

920

Sony_KMP_Journey_KotlinConf2026

0

160

イベントストーミングとKiroの仕様駆動開発で実現する要件の認識合わせプロセス

7

920

Copilot CLI・IDE・Web・スマホで途切れない開発フローを目指して / One Copilot flow - CLI IDE Web Mobile

1

1.1k

ルールやカスタム機能、どう使う？理想の出力を引き出すために今知りたいIBM Bob 5つの機能

0

120

GitHub Copilot のこれまでとこれから: From Copilot to Collaborative Agents

1

230

Typiaで配信JSONの安全性を構造的に担保する(TSKaigi2026)

PRO

1

200

Featured

See All Featured

<Decoding/> the Language of Devs - We Love SEO 2024

1

230

Leading Effective Engineering Teams in the AI Era

9

2k

Building Experiences: Design Systems, User Experience, and Full Site Editing

0

520

Winning Ecommerce Organic Search in an AI Era - #searchnstuff2025

1

2k

The innovator’s Mindset -  Leading Through an Era of Exponential Change - McGill University 2025

PRO

1

180

The MySQL Ecosystem @ GitHub 2015

251

13k

A brief & incomplete history of  UX Design for the World Wide Web: 1989–2019

2

380

Stop Working from a Prison Cell

274

21k

Design and Strategy: How to Deal with People Who Don’t "Get" Design

133

19k

Optimising Largest Contentful Paint

37

3.7k

Docker and Python

47

3.9k

Test your architecture with Archunit

1

2.2k

Transcript

SSL with Lets Encrypt on K8s Ashwin @ Zoomcar
Agenda • SSLs and LetsEncrypt • K8s and Microservices •
Cert Manager Demo • Q & A
SSLs and Lets Encrypt
• Privacy • Integrity • Identification
SSL / TLS / HTTPS
• SSLv2 - 1995-ish - Netscape • SSLv3 • TLS
1.0 - 1999 - IETF - SSLv3.1 • TLS 1.1 - 2006 • TLS 1.2 - 2008 • SSL 3.0 dep - 2015 • TLS 1.3 - 2018
Keys & Handshake
Asymmetric Handshake
Symmetric key Data exchange
Certificates & Authorities
• Issue Certificates • Confirm Identity of Cert Owner •
Provide Proof of Cert Validity
• Domain Validated • Organization Validated • Extended Validation
K8s and Microservices
• Microservices - Architectural Guidance • Multiple services on colocated
arch • Does not dictate container use • Containers best suited for use case
Kubernetes
• Code will fail • System resilience and availability •
Typical functions: Config, Deploy, Scale, Auth, Quota, Lifecycle, Federate, etc
Demo & Questions
Thank You [email protected] +91 9003010231