Mohamed Shahat
Principal Advocate, Cloud Native at Venafi
London, United Kingdom
Actions
Mohamed's current focus is cloud-native security and machine identity management within the cloud-native ecosystem. Also, secure software supply chain. Mohamed has a strong background in Applications Architecture and Design through his time at TIBCO. Mohamed has helped variety of organizations with their Kubernetes-based Application platforms and helped them adopt a platform as a product mindset.
Area of Expertise
Ensuring compliance and audit success: harnessing cert-manager for robust security
With growing number of workloads that run in Kubernetes and the identities (that are cryptographically signed) attached to them it is critical for the platform engineers who operate clusters at scale to having the right observability for identities.
More importantly from an organization's perspective this is extremely important for successful compliance and audit requirements.
To ensure successful security compliance and audit, we need to have the right kind of observability to
- ensure all identities are valid & have not expired
- understand when and how identities are rotated and managed
- Having a view that is identity centric
In this session, we will talk/show how a comprehensive observability can be built that is identity centric that focused on TLS / SSL identities in Kubernetes by harnessing data from cert-manager and associated projects.
Securing Your Mesh Workloads : Anchoring Your Enterprise CA for Stronger Authentication
Many enterprises are either evaluating a service mesh or are have moved some of the service mesh enabled workloads to production.
One big security challenge enterprises are facing is the need to anchor the identity of workloads to the enterprise CA managed by crypto teams.
The crypto teams traditionally cater to non cloud native environments and are increasingly facing a lot of platform engineers who work in cloud native environments.
This session aims to cover -
- How can platform engineers work with crypto teams ?
- How can platform engineers manage TLS certs at scale for workloads especially when these certs are required to 1) identify a workload 2) use this identity to authenticate to other workloads
- Ensure that all the workloads are anchored to the enterprise CA for compliance.
This talk will go walkthrough the best practices and demonstrate how to setup your mesh workloads for stronger authentication by anchoring it to organization’s enterprise Certificate Authority.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top