NETWAYS, profile picture
Uploaded byNETWAYS
59 views

OSDC 2017 - Seth Vargo - Modern Secrets Management with Vault

The document discusses modern secrets management using HashiCorp Vault, focusing on security practices such as encrypted key-value stores, authentication, and access controls. It emphasizes that no request can be trusted without proper authentication and outlines various features like database credential management and multi-factor authentication. The presentation is aimed at DevOps professionals and includes insights on service-oriented architecture and security infrastructure.

Embed presentation

Download to read offline
Modern Secrets Management with Vault https://upload.wikimedia.org/wikipedia/commons/8/87/WinonaSavingsBankVault.JPG
 Seth Vargo Director of Technical Advocacy HashiCorp @sethvargo
DEVOPS DELIVERED @sethvargo
@sethvargo LOAD BALANCER FIREWALL APPLICATION Physical data center All processes handled "in app" TLS terminated at LB/firewall Monolithic Architecture
@sethvargo LOAD BALANCER SECURITY RULES Service-Oriented Architecture Shared infrastructure Internal and external requests Nothing is trusted Every request requires auth Expiration and "break glass"
@sethvargo
@sethvargo
@sethvargo
@sethvargo Encrypted KV Store
@sethvargo Encryption as a Service plaintext iuwhfbgo7et4 71nfslwfener
@sethvargo Database Credentials
@sethvargo AWS IAM Generator
@sethvargo Certificate Authority
@sethvargo SSH CA Authority
@sethvargo TOTP Generator 125 284My Corporate Login - jdoe :27 696 367AWS MFA Token - janedoe :27
@sethvargo TOTP Authenticator 125 284My Corporate Login - jdoe :27 696 367AWS MFA Token - janedoe :27 918 491HashiCorp Vault :27
@sethvargo Demo
@sethvargo www.vaultproject.io

More Related Content

PPTX
Authenticating to HashiCorp Vault in a VMware vSphere Environment
byMartez Reed
 
PPTX
Techcello hp-arch workshop
bykanimozhin
 
PPTX
Building multi tenant highly secured applications on .net for any cloud - dem...
bykanimozhin
 
PDF
20160304 blockchain in fsi client ready raymond
byMeng-Ru (Raymond) Tsai
 
PDF
DevSecOps: The Open Source Way for CloudExpo 2018
byGordon Haff
 
PDF
How to Meet FFIEC Regulations and Protect Your Bank from Cyber Attacks
byCloudflare
 
PPTX
Using Puppet With A Secrets Server
byconjur_inc
 
PDF
Recipe for good secrets management
byKevin Gilpin
 
Authenticating to HashiCorp Vault in a VMware vSphere Environment
byMartez Reed
 
Techcello hp-arch workshop
bykanimozhin
 
Building multi tenant highly secured applications on .net for any cloud - dem...
bykanimozhin
 
20160304 blockchain in fsi client ready raymond
byMeng-Ru (Raymond) Tsai
 
DevSecOps: The Open Source Way for CloudExpo 2018
byGordon Haff
 
How to Meet FFIEC Regulations and Protect Your Bank from Cyber Attacks
byCloudflare
 
Using Puppet With A Secrets Server
byconjur_inc
 
Recipe for good secrets management
byKevin Gilpin
 

What's hot

PDF
From secure VPC links to SSO with Elastic Cloud
byElasticsearch
 
PPTX
Security in microservices architectures
byinovia
 
PPTX
IoT Simulator - Feature Highlights
byRanjith Kumar
 
PPTX
CLOUDSEC LONDON 2016 - Puneet Kukreja - Enabling Cloud Security -
byPuneet Kukreja
 
PDF
Deploying Compliant Kubernetes: Real World Edge Cases
byDevOps.com
 
PDF
Microservices Security: dos and don'ts
byMinded Security
 
PDF
Sullivan handshake proxying-ieee-sp_2014
byCloudflare
 
PPTX
Shift to HTTPS and Save Your Website from the Wrath of Blacklisting
byCheapSSLsecurity
 
PDF
WSO2Con Asia 2014 - How WSO2 Cloud Accelerates Development
byWSO2
 
PDF
Open Web Widgets
byOpen Source Strategy Forum
 
PDF
Webinar slides: ClusterControl New Features Webinar
bySeveralnines
 
PPTX
API Gateway: Nginx way
byinovia
 
ODP
Nagios Conference 2014 - Andy Brist - Intro to Incident Manager
byNagios
 
PDF
Taking Flexibility to the Next Level
byForgeRock
 
PPTX
NYC Identity Summit Tech Day: ForgeRock DevOps/Cloud Strategy
byForgeRock
 
PDF
Standard Issue: Preparing for the Future of Data Management
byInside Analysis
 
PPTX
Api Gateway - What's the use of an api gateway?
byinovia
 
PDF
Enterprise Security mit Spring Security
byMike Wiesner
 
PPTX
OWASP Ireland June Chapter Meeting - Paul Mooney on ARMOR & CSRF
byPaul Mooney
 
PDF
JWTs in Java for CSRF and Microservices
byStormpath
 
From secure VPC links to SSO with Elastic Cloud
byElasticsearch
 
Security in microservices architectures
byinovia
 
IoT Simulator - Feature Highlights
byRanjith Kumar
 
CLOUDSEC LONDON 2016 - Puneet Kukreja - Enabling Cloud Security -
byPuneet Kukreja
 
Deploying Compliant Kubernetes: Real World Edge Cases
byDevOps.com
 
Microservices Security: dos and don'ts
byMinded Security
 
Sullivan handshake proxying-ieee-sp_2014
byCloudflare
 
Shift to HTTPS and Save Your Website from the Wrath of Blacklisting
byCheapSSLsecurity
 
WSO2Con Asia 2014 - How WSO2 Cloud Accelerates Development
byWSO2
 
Open Web Widgets
byOpen Source Strategy Forum
 
Webinar slides: ClusterControl New Features Webinar
bySeveralnines
 
API Gateway: Nginx way
byinovia
 
Nagios Conference 2014 - Andy Brist - Intro to Incident Manager
byNagios
 
Taking Flexibility to the Next Level
byForgeRock
 
NYC Identity Summit Tech Day: ForgeRock DevOps/Cloud Strategy
byForgeRock
 
Standard Issue: Preparing for the Future of Data Management
byInside Analysis
 
Api Gateway - What's the use of an api gateway?
byinovia
 
Enterprise Security mit Spring Security
byMike Wiesner
 
OWASP Ireland June Chapter Meeting - Paul Mooney on ARMOR & CSRF
byPaul Mooney
 
JWTs in Java for CSRF and Microservices
byStormpath
 

Similar to OSDC 2017 - Seth Vargo - Modern Secrets Management with Vault

PDF
Chickens & Eggs: Managing secrets in AWS with Hashicorp Vault
byJeff Horwitz
 
PDF
Introducing Vault
byRamit Surana
 
PDF
Vault 101
byHazzim Anaya
 
PPTX
Vault Open Source vs Enterprise v2
byStenio Ferreira
 
PDF
Vault and Security as a Service
byPatrick Shields
 
PDF
Using Vault to decouple MySQL Secrets
byDerek Downey
 
PDF
Issuing temporary credentials for my sql using hashicorp vault
byOlinData
 
PPTX
Vault Digital Transformation
byStenio Ferreira
 
PDF
Secret Management with Hashicorp’s Vault
byAWS Germany
 
PDF
Vault
bydawnlua
 
PPTX
Hashicorp Vault Open Source vs Enterprise
byStenio Ferreira
 
PPTX
Secret Management with Hashicorp Vault and Consul on Kubernetes
byAn Nguyen
 
PPTX
Vault w/ config injection kubernetes canada
byJean-Philippe Bélanger
 
PDF
Eliminating Secret Sprawl in the Cloud with HashiCorp Vault - 07.11.2018
byHashiCorp
 
PDF
Secrets management vault cncf meetup
byJuraj Hantak
 
PDF
Can you keep a secret? (XP Days 2017)
byValerii Moisieienko
 
PDF
XP Days 2019: First secret delivery for modern cloud-native applications
byVlad Fedosov
 
PDF
Secure Secret Management on a Budget: Reasoning about Scalable SM with Vault ...
byMary Racter
 
PDF
Vault - Enhancement for K8S secret security
byHuynh Thai Bao
 
PPTX
Nodejsvault austin2019
byTaswar Bhatti
 
Chickens & Eggs: Managing secrets in AWS with Hashicorp Vault
byJeff Horwitz
 
Introducing Vault
byRamit Surana
 
Vault 101
byHazzim Anaya
 
Vault Open Source vs Enterprise v2
byStenio Ferreira
 
Vault and Security as a Service
byPatrick Shields
 
Using Vault to decouple MySQL Secrets
byDerek Downey
 
Issuing temporary credentials for my sql using hashicorp vault
byOlinData
 
Vault Digital Transformation
byStenio Ferreira
 
Secret Management with Hashicorp’s Vault
byAWS Germany
 
Vault
bydawnlua
 
Hashicorp Vault Open Source vs Enterprise
byStenio Ferreira
 
Secret Management with Hashicorp Vault and Consul on Kubernetes
byAn Nguyen
 
Vault w/ config injection kubernetes canada
byJean-Philippe Bélanger
 
Eliminating Secret Sprawl in the Cloud with HashiCorp Vault - 07.11.2018
byHashiCorp
 
Secrets management vault cncf meetup
byJuraj Hantak
 
Can you keep a secret? (XP Days 2017)
byValerii Moisieienko
 
XP Days 2019: First secret delivery for modern cloud-native applications
byVlad Fedosov
 
Secure Secret Management on a Budget: Reasoning about Scalable SM with Vault ...
byMary Racter
 
Vault - Enhancement for K8S secret security
byHuynh Thai Bao
 
Nodejsvault austin2019
byTaswar Bhatti
 

Recently uploaded

PDF
Integrating Risk Buffers Into Your Critical Path When & How
byOrangescrum
 
PDF
Anchore Enterprise Q4 2025 Release Webinar
byAnchore
 
PPTX
The OpenChain China Mini-Summit at COSCON 2025
byShane Coughlan
 
PDF
Code, Coins and Collaboration: How Open Source Shapes Modern Finance.
byDavid Okononfua
 
PPTX
SAP SOD Management for Secure & Compliant Access | s4access
bydigitalbacklinks123
 
PPTX
Binance Smart Chain Development Guide.pptx
bylakshubadai
 
PPTX
Why Your Business Needs Snowflake Consulting_ From Data Silos to AI-Ready Cloud
byChetu
 
PDF
IT Estate Modernization: Transform Your Infrastructure for the Future .pdf
byAstuteBusiness
 
PDF
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
PPTX
Managed Splunk Partner vs In-House: Cost, Risk & Value Comparison
byssuser6ab5a5
 
PPTX
Deep Dive into Durable Functions, presented at Cloudbrew 2025
byJoonas Westlin
 
PDF
Transforming Compliance Through Policy & Procedure Management
byInsurance Tech Services
 
PDF
nsfconvertersoftwaretoconvertNSFtoPST.pdf
byNSF Converter Software
 
PDF
Resource-Levelled Critical-Path Analysis Balancing Time, Cost and Constraints
byOrangescrum
 
PDF
Red Hat Summit 2025 - Triton GPU Kernel programming.pdf
bySanjeev Rampal
 
PPTX
AI-Powered Clinic Management Software for Trichology Clinics in India Enhanci...
byEasy Clinic
 
PDF
Influence Without Power - Why Empathy is Your Best Friend.pdf
bySuzanne Lagerweij
 
PPTX
AI Clinic Management Software for Otolaryngology Clinics Bringing Precision, ...
byEasy Clinic
 
PDF
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
PDF
Operating System (OS) :UNIT-I Introduction to Operating System BCA SEP SEM-II...
byKuvempu University
 
Integrating Risk Buffers Into Your Critical Path When & How
byOrangescrum
 
Anchore Enterprise Q4 2025 Release Webinar
byAnchore
 
The OpenChain China Mini-Summit at COSCON 2025
byShane Coughlan
 
Code, Coins and Collaboration: How Open Source Shapes Modern Finance.
byDavid Okononfua
 
SAP SOD Management for Secure & Compliant Access | s4access
bydigitalbacklinks123
 
Binance Smart Chain Development Guide.pptx
bylakshubadai
 
Why Your Business Needs Snowflake Consulting_ From Data Silos to AI-Ready Cloud
byChetu
 
IT Estate Modernization: Transform Your Infrastructure for the Future .pdf
byAstuteBusiness
 
API_SECURITY CONSULTANCY SERVICES IN USA
bydavidjohansen1597
 
Managed Splunk Partner vs In-House: Cost, Risk & Value Comparison
byssuser6ab5a5
 
Deep Dive into Durable Functions, presented at Cloudbrew 2025
byJoonas Westlin
 
Transforming Compliance Through Policy & Procedure Management
byInsurance Tech Services
 
nsfconvertersoftwaretoconvertNSFtoPST.pdf
byNSF Converter Software
 
Resource-Levelled Critical-Path Analysis Balancing Time, Cost and Constraints
byOrangescrum
 
Red Hat Summit 2025 - Triton GPU Kernel programming.pdf
bySanjeev Rampal
 
AI-Powered Clinic Management Software for Trichology Clinics in India Enhanci...
byEasy Clinic
 
Influence Without Power - Why Empathy is Your Best Friend.pdf
bySuzanne Lagerweij
 
AI Clinic Management Software for Otolaryngology Clinics Bringing Precision, ...
byEasy Clinic
 
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
Operating System (OS) :UNIT-I Introduction to Operating System BCA SEP SEM-II...
byKuvempu University
 

OSDC 2017 - Seth Vargo - Modern Secrets Management with Vault