Session
Zero Trust RabbitMQ with HashiCorp Vault
Whilst RabbitMQ has the ability to encrypt data in transit, it does not have the functionality out of the box to encrypt data at rest. This shifts the responsibility of encryption of data placed on message queues on developers. Implementing cryptography correctly in our applications is challenging and time consuming.
In this demo-driven talk, I will show you how you can use HashiCorp Vault’s API to implement a simple workflow that offsets the complexity of cryptography to Vault. In just a few lines of code, I will demonstrate how message producers will be able to encrypt its data, whilst message consumers can decrypt message payloads with minimal development effort. I will also show how to troubleshoot common errors from the API.
By the end of this talk, you will learn how to implement symmetric and asymmetric encryption of your application data before placing it on RabbitMQ message queues. You will also learn how to implement this workflow using Format Preserving Encryption (FPE).
Rob Barnes
Senior Developer Advocate, HashiCorp
East Grinstead, United Kingdom
Links
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top