November 13–15, 2018 - Shanghai, China
Click Here For Information & Registration

To view the Chinese version of this schedule please go here.

Simultaneous translation will be provided for all keynote and breakout sessions.
Thursday, November 15 • 14:20 - 14:55
Istio Certificate Management Through Vault - Lei Tang & Yonggang Liu, Google

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
In this talk, we present the design and implementation of a new Istio certificate management system that uses Vault to securely manage Istio certificates. First, we introduce the identity system in Istio and the current architecture of Istio certificate management system. Next, we present the architecture of the new Vault-based Istio identity system with the details of its authentication and authorization mechanisms for issuing Istio certificates. We will go through a detailed example flow from a pod in Istio requesting a certificate to Vault signing the certificate request. Lastly, we will make a demo of the new Istio certificate management system.

avatar for Oliver Liu

Oliver Liu

Senior Software Engineer, Google
Dr. Oliver (Yonggang) Liu is a senior software engineer in Google. He is one of the early developers and core engineers of Istio. Oliver has 10 years of experience in research and development of distributed systems and service mesh. Oliver received his PhD degree from University of... Read More →
avatar for Lei Tang

Lei Tang

Software Engineer 软件工程师, Google
Dr. Lei Tang is a software engineer of Google. His current projects include cloud service mesh and cloud service platforms. He received his Ph.D. degree in Computer Science from Rice University. He was the recipient of the Best Paper Award of the 12th ACM International Symposium on... Read More →

Thursday November 15, 2018 14:20 - 14:55
302 A
  • Skill Level Any