October 25-27, 2017 - Prague, Czech Republic
Click Here For Information & Registration
Back To Schedule
Thursday, October 26 • 11:45 - 12:35
Secrets Management in Mesos - Vinod Kone, Mesosphere, Inc.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Without first class support for secrets (Credentials, API keys etc), application and framework developers had to traditionally resort to out-of-band mechanisms to transmit and use secrets in Mesos. This is changing now!

In this talk, we will describe the newly-added native support for secrets in Mesos. The Secrets API will let Mesos inject sensitive information into either the container environment or sandbox without exposing it to unauthorized actors. The advantage of this approach is that users do not need to explicitly store sensitive information in their task configuration but can let Mesos retrieve it from a secret store at container launch time. This is possible via the new “Secrets Resolver” module interface which allows operators to integrate Mesos with 3rd party secret stores (e.g., HashiCorp’s Vault).

We will show a cool demo at the end that shows secrets in action.

avatar for Vinod Kone

Vinod Kone

Apache Mesos PMC, Mesosphere
Vinod Kone is a committer and PMC member of the Apache Mesos project. He is currently a Tech Lead and Engineering Manager @ Mesosphere. Previously, he was a Tech Lead and Manager of the Mesos team @Twitter. Vinod completed his PhD in Computer Science from UC Santa Barbara.

Thursday October 26, 2017 11:45 - 12:35 CEST
Congress Hall 2