• Posts
Conference Talks
• DevOps Exchange London March 2022
• HashiConf EU 2021: The Zero Trust Mindset
• HashiTalks 2020: Securing RabbitMQ with Vault
• Kafka Summit EU 2021: Encrypting Kafka messages at rest to secure applications
DevOps
• What is the future of DevOps
HashiCorp Vault
• Architecting Vault - Part 1
• Architecting Vault - Part 2
• Architecting Vault - Part 3
• Architecting Vault - Part 4
The DevOps Lab (Channel9)
• Automating Secrets Management - Part 1
• Automating Secrets Management - Part 2
• Workload authentication

Architecting Vault - Part 4

In this blog edition, we’ll look at what Vault’s seal status means, different ways to unseal vault servers and when we can expect to find vault in a sealed state. Sealing is Vault protective mechanism that prevents you secrets from being accessible if the Vault server is ever compromised in any way. When you first deploy a Vault server, it is in a sealed state, which means, there aren’t many actions you can perform on the server.

August 6, 2019 Read

Architecting Vault - Part 3

So far in this blog series, we have covered hosting options for Vault deployments and also explored the different options available for Storage backends and some of the considerations needed when making your design decision. This post will look at the auth methods that are available for you to enable in your Vault deployment and how to make the right decision as to which option to choose for your use case.

July 29, 2019 Read

Architecting Vault - Part 2

In the previous blog post, i discussed hosting options for Hashicorp Vault and things to consider when making decisions about the platform to deploy your production Vault Cluster on to. This post will focus on the next architectural decision that you need to make when designing your vault cluster. Which backend do i want to use for my Vault Cluster? Firstly, let’s define what a backend is in the context of Vault and what capabilities a backend can enable for our cluster.

July 21, 2019 Read

Architecting Vault - Part 1

In the modern world, applications and the infrastructure they run on are moving to a multi-cloud, multi-platform and multi-service approach. This means that applications are being separated into service components that make up an application stack and run on a number of different platforms to deliver the business value, for example, some services may run in a container which is orchestrated by Kubernetes or Nomad, some may be run on Virtual Machines and the others run as Serverless functions using services like Lambda or FunctionApp.

July 14, 2019 Read