Cert-Manager Can Do SPIFFE? Solving Multi-Cloud Workload Identity Using a De Facto Standard Tool
May 01, 2023
38 min
Free
cert-manager
spiffe
kubernetes
workload-identity
multi-cloud
csi-driver
x509
authentication
security
cloud-native
identity-management
Description
This presentation explores how cert-manager can be leveraged to implement SPIFFE, a standard for workload identity, to solve multi-cloud workload authentication challenges. The speakers discuss the evolution of workload identity solutions, the limitations of traditional secrets management, and demonstrate how cert-manager, in conjunction with a CSI driver, can provide X.509-based SPIFFE identities. The talk also touches upon integrations with cloud providers like AWS and compares the approach with alternatives like SPIRE.