Lead Security Operations & Senior Security Architect @ Alfresco
I work for Alfresco Software as Lead Security Operations and Senior Security Architect. I enjoy every day hardening environments and making safer cloud systems. I’m passionate about FLOSS (Free Libre Open Source Software) in general and Information Security, Incident Response and Digital Forensics. I like everything related to Cloud Computing and Automation. Among other projects, I develop and maintain Prowler (Security Assessment and Hardening Tool for AWS).
Session: Encryption at-rest and in-transit: Survival Guide with ADBP
To guarantee data integrity and confidentiality in Alfresco, we need to implement authentication and encryption at-rest and in-transit. With micro services proliferation, orchestrating platforms, complex topologies of services and multiple programming languages, there is a demand of new ways to manage service-to-service communication, and in some cases, without the application needing to be aware. In addition to that, compliance requirements around encryption and authentication come to the picture requiring new ways to handle them.
This talk will review encryption at-rest solutions for ADBP, and will be also discuss about solutions for encryption and authentication between services. This will be an introduction to service mesh and TLS/mTLS. We will see a demo of ACS running with Istio over EKS along with tools like WaveScope, Kiali, Jaeger, Grafana, Service Graph and Prometheus.
Day 1 – Wednesday – 11:00-11:45 – Moorfoot