‹ All episodes

The Cloudcast

The Cloudcast #309 - Secrets Management for Secure Microservices

August 30, 2017 Aaron Delp and Brian Gracely
The Cloudcast #309 - Secrets Management for Secure Microservices
The Cloudcast
More Info
The Cloudcast
The Cloudcast #309 - Secrets Management for Secure Microservices
Aug 30, 2017
Aaron Delp and Brian Gracely
Brian talks with Seth Vargo (@sethvargo, Director of Technical Advocacy @HashiCorp) about the evolving security footprint of modern applications, the increasing needs for secrets management with microservices, the challenges of managing encryption, how to maintain highly available environments, and the evolution of Pittsburgh as a tech city.

Show Links:


Show Notes
  • Topic 1 - Welcome to the show. Tell us about your background as a technologist and author.
  • Topic 1a - And since we’re going to talk about Vault, give us the basics of the Vault platform.
  • Topic 2 - Let’s start with the basics. Why are we seeing so many more discussions about secrets management with microservices vs. legacy applications?
  • Topic 3 - What are the core challenges that microservices applications face with regard to secrets? Is it key management, or key rotation or encryption of secrets, or something else?
  • Topic 4 - Since secrets are so central to microservices, and critical to normal operations, how do you make sure that a platform like Vault is highly available? Or what happens if it goes out of service?
  • Topic 5 - If we’re talking about microservices, the conversation typically evolves to deploying them, which leads to discussions about container schedulers. Can you talk about the challenges that schedulers have with secrets and how Vaults helps to manage those challenges?
    Feedback?
    Apple Podcasts Spotify Amazon Music Podcast Index Overcast Stitcher +
    Show Notes
    Brian talks with Seth Vargo (@sethvargo, Director of Technical Advocacy @HashiCorp) about the evolving security footprint of modern applications, the increasing needs for secrets management with microservices, the challenges of managing encryption, how to maintain highly available environments, and the evolution of Pittsburgh as a tech city.

    Show Links:


    Show Notes
    • Topic 1 - Welcome to the show. Tell us about your background as a technologist and author.
    • Topic 1a - And since we’re going to talk about Vault, give us the basics of the Vault platform.
    • Topic 2 - Let’s start with the basics. Why are we seeing so many more discussions about secrets management with microservices vs. legacy applications?
    • Topic 3 - What are the core challenges that microservices applications face with regard to secrets? Is it key management, or key rotation or encryption of secrets, or something else?
    • Topic 4 - Since secrets are so central to microservices, and critical to normal operations, how do you make sure that a platform like Vault is highly available? Or what happens if it goes out of service?
    • Topic 5 - If we’re talking about microservices, the conversation typically evolves to deploying them, which leads to discussions about container schedulers. Can you talk about the challenges that schedulers have with secrets and how Vaults helps to manage those challenges?
      Feedback?