PKI and mutual TLS (mTLS) certificates are now heavily relied on, but uncontrolled certificate issuance increases the risk of severe service outages or compliance issues. Organizations are trying to combine high velocity operations and high availability, with the need for high security, controls, and compliance. These sometimes-conflicting requirements can be very hard to combine and the outcome of various approaches to balance them are not crystal clear.
But there are many roads that lead to Rome. You'll need several tools in your toolbox.

In this presentation you'll see how to combine a mature and compliant PKI with the automated, rapidly changing, multi-cloud deployments in modern DevOps. By using a HashiCorp Vault plugin for EJBCA PKI, which you'll see in a short demo, you can use the same efficient tool for managing certificates that you use for all other secrets, and the result is efficient, automated, secure, controlled, and compliant certificate issuance on a large scale. You'll also see how to chain tools using HashiCorp Consul for service mesh, secrets from Vault, and certificates from EJBCA.

Key takeaways:
- Security compliance is important
- Compliance does not have to slow you down (a lot)
- HashiCorp products integrate well in a compliance-centred environment
- Automation is key for security at scale

Speaker: Tomas Gustavsson

Slides here: [ Ссылка ]

#PKI #DevSecOps #HashiCorpVault #Consul #Cybersecurity #SecOps #DevOps #EJBCA #ShiftLeft -

If you liked this video and want to see more from HashiCorp, subscribe to our channel: [ Ссылка ]

To learn more, visit our hands-on interactive lab environment, HashiCorp Learn: [ Ссылка ]

HashiCorp is the leader in multi-cloud infrastructure automation software. The HashiCorp software suite enables organizations to adopt consistent workflows to provision, secure, connect, and run any infrastructure for any application. HashiCorp open source tools Vagrant, Packer, Terraform, Vault, Consul, Nomad, Boundary, and Waypoint are downloaded tens of millions of times each year and are broadly adopted by the Global 2000. Enterprise versions of these products enhance the open source tools with features that promote collaboration, operations, governance, and multi-data center functionality.

For more information, visit: www.hashicorp.com or follow us on social media:
Twitter: @hashicorp
LinkedIn: [ Ссылка ]
Facebook: [ Ссылка ]

свернуть