Back To Kube

Dear Kubernauts,

We're back, after a busy summer. Join us for a fantastic evening of talks and networking at the new Wise offices.

We're still interested in you giving a lightning talk. Please, give a step forward and show us what you've been working on.

Agenda:

• 6pm Pizzas and networking
• 6:30pm Welcome and Sponsors
• 6:45pm Mattias & Tom - The Microservice That Navigated the Cloud Native Ocean with a SPIFFE Identity
• 7:10 pm lightning talks
• 7:20pm 2nd talk TBC
• 8 pm Pub

As usual, we could not do this without our lovely long-term sponsors: Rawkode Academy & Control Plane.

Talk 1- Mattias Gees & Tom Meadows

The Story of Crush: The Microservice That Navigated the Cloud Native Ocean with a SPIFFE Identity

Deep in the vast Cloud Native ocean lived a turtle-shaped microservice called Crush. Crush was a happy API server written in Go, but always struggled with security. Speaking with databases, message queues and cloud services all required secrets, and Crush messed up every time. Sharing them, losing them from memory, failing to rotate, you name it. Crush felt hopeless. One day, Crush was provided with a document that changed everything. This is the story of how a microservice (Crush the turtle) was provided with a SPIFFE ID, allowing it to encrypt its traffic to other services (other sea animals) with mTLS and even gain access to other platforms and services (different reefs of the ocean), all in a standard, globally accepted manner without compromising security. Expect many twists and turns as Crush finds success (illustrated in live demos) using his new-found identity, but in other scenarios is not understood, leading to stormy situations in the great big Cloud Native ocean.