Seattle, WA
December 10–13, 2018
Click Here for More Information & Registration
View Venue Map
Thursday, December 13 • 1:45pm - 2:20pm
Deep Dive: SPIFFE - Emiliano Bernbaum & Andrew Harding, Scytale

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
SPIFFE (Secure Production Infrastructure for Everyone) and SPIRE are two of the newer projects to join the CNCF. These projects build on designs first championed at Google, Twitter and elsewhere to provide robust authentication and trust between disparate micro-services in heterogeneous operating environments.

This talk will expand on concepts introduced during the SPIFFE 101 session to explore in detail how SPIRE performs attestation to workloads in diverse infrastructure and middleware settings, how it leans on different secrets storage backends and how PKI material is automatically delivered to a node and workload. The talk also will cover how these capabilities can be extended and customized through SPIRE’s plugin framework.

In this session, we will demo two (2) things, specifically:

1) How SPIFFE can be used to secure communication between two workloads running on different Kubernetes clusters running on different clouds. For a twist, we'll demo this for both direct connections as well as those going through load balancers.

2) How to federate SPIRE deployments in different trust domains. This demo will also showcase how we federate JSON Web Tokens (JWT) to facilitate cross-cloud communication.

avatar for Emiliano Berenbaum

Emiliano Berenbaum

CTO, Scytale
Before co-founding Scytale, Emiliano was a principal engineer at Splunk, where he helped lead the engineering effort to convert Splunk into an entirely SaaS offering and platform. Previously, he was Okta’s founding employee, where he worked on all aspects of the SaaS offering, culminating... Read More →
avatar for Andrew Harding

Andrew Harding

Software Engineer, Scytale
Andrew is a software engineer who loves his craft. He enjoys building all sorts of software but has a soft spot for security, in particular, identity management. Before joining Scytale, Andrew worked on a wide variety of services, infrastructure, and tooling across cloud and device... Read More →

Thursday December 13, 2018 1:45pm - 2:20pm
Tahoma 5 @ TCC The Conference Center (TCC) - Separate from WSCC building