SSl with Letsencrypt on Kubernetes

April 27, 2019

24

SSl with Letsencrypt on Kubernetes

Talk at RFCs we Love

Ashwin Murali

April 27, 2019

Tweet

More Decks by Ashwin Murali

See All by Ashwin Murali

AWS Community Day UAE 2024 - Sponsorship Deck

0

310

Learn Enough Containers to be Dangerous

0

350

Do More for Less With ECS Fargate!

0

69

Cloud engineer’s journey and survival in the cloud

1

2.1k

What does it take to be a good DevOps Engineer - Tamil / Vadivelu edition 0.1

0

420

0

130

Deploying a Web App on Azure Container Services

0

1.1k

Why DevOps And a few other uncomfortable.. things..

0

110

Connecting 10000 cars to the AWS Cloud

0

1.2k

Other Decks in Technology

See All in Technology

Oracle Base Database Service 技術詳細

oracle4engineer

PRO

12

80k

そのWAFのブロック、どう活かす？サービスを守るための実践的多層防御と思考法 / WAF blocks defense decision

0

200

ビズリーチ求職者検索におけるPLMとLLMの活用 / Search Engineering MEET UP_2-1

visional_engineering_and_design

1

150

防災デジタル分野での官民共創の取り組み (2)DIT/CCとD-CERTについて

0

310

なぜAWSを活かしきれないのか？技術と組織への処方箋

PRO

5

970

ニッポンの人に知ってもらいたいGISスポット

0

160

プレーリーカードを活用しよう❗❗デジタル名刺交換からはじまるイベント会場交流のススメ

0

180

OAuthからOIDCへ ― 認可の仕組みが認証に拡張されるまで

0

130

初めてのDatabricks Apps開発

1

120

Introduction to Sansan Meishi Maker Development Engineer

PRO

0

310

Findy Team+ QAチームこれからのチャレンジ！

findy_eventslides

0

430

このままAIが発展するだけでAGI達成可能な理由

0

120

Featured

See All Featured

ピンチをチャンスに：未来をつくるプロダクトロードマップ #pmconf2020

127

53k

Building Adaptive Systems

44

2.8k

Helping Users Find Their Own Way: Creating Modern Search Experiences

30

2.9k

The Myth of the Modular Monolith - Day 2 Keynote - Rails World 2024

26

3.1k

Fantastic passwords and where to find them - at NoRuKo

52

3.4k

Navigating Team Friction

190

15k

Let's Do A Bunch of Simple Stuff to Make Websites Faster

508

140k

Exploring the Power of Turbo Streams & Action Cable | RailsConf2023

35

6.1k

Testing 201, or: Great Expectations

45

7.7k

Product Roadmaps are Hard

PRO

54

11k

4 Signs Your Business is Dying

185

22k

40

3.7k

Transcript

SSL with Lets Encrypt on K8s Ashwin @ Zoomcar
Agenda • SSLs and LetsEncrypt • K8s and Microservices •
Cert Manager Demo • Q & A
SSLs and Lets Encrypt
• Privacy • Integrity • Identification
SSL / TLS / HTTPS
• SSLv2 - 1995-ish - Netscape • SSLv3 • TLS
1.0 - 1999 - IETF - SSLv3.1 • TLS 1.1 - 2006 • TLS 1.2 - 2008 • SSL 3.0 dep - 2015 • TLS 1.3 - 2018
Keys & Handshake
Asymmetric Handshake
Symmetric key Data exchange
Certificates & Authorities
• Issue Certificates • Confirm Identity of Cert Owner •
Provide Proof of Cert Validity
• Domain Validated • Organization Validated • Extended Validation
K8s and Microservices
• Microservices - Architectural Guidance • Multiple services on colocated
arch • Does not dictate container use • Containers best suited for use case
Kubernetes
• Code will fail • System resilience and availability •
Typical functions: Config, Deploy, Scale, Auth, Quota, Lifecycle, Federate, etc
Demo & Questions
Thank You [email protected] +91 9003010231