The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon Europe 2020 - Virtual to participate in the sessions. If you have not registered but would like to join us, please register here.
Please note: This schedule is automatically displayed in Central European Summer Time (CEST). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Lurking inside almost every cloud native project is a hidden threat: hardcoded credentials for services like external APIs and databases. While these credentials can be set to long random strings and encrypted, they still can be stolen by an intruder or accidentally misused by insiders. In this talk, we’ll demonstrate how to use CNCF’s SPIFFE and SPIRE Projects to securely authenticate to workloads such as PostgreSQL, MongoDB, and AWS from inside your services, all without any hardcoded credentials -- eliminating an entire class of security vulnerabilities while decreasing your work as a DevSecOps team.