Securing DevOps Show & Tell: Mozilla Sops
This episode is an introduction to Mozilla Sops (https://github.com/mozilla/sops), the secrets management tools used by the Firefox Operations teams to handle infrastructure credentials.
Sops was created in 2015 and has grown into a widely used tool both inside and outside Mozilla. We walk through initial setup using PGP, discuss the internal structure of Sops encrypted files and why they play well with git, then explain how to use AWS KMS and GCP KMS, then show how to automate creation rules in a config file.
- 01:47 A bit of history
- 03:33 Using Sops with PGP
- 04:57 Internal structure of Sops encrypted files
- 07:05 Meaningful git diff
- 10:03 The bootstrapping of trust
- 12:54 Usage with AWS KMS
- 16:40 Usage with GCP KMS
- 19:34 Automating creation rules with .sops.yaml
- 25:17 Some closing thoughts
Видео Securing DevOps Show & Tell: Mozilla Sops канала Securing DevOps
Sops was created in 2015 and has grown into a widely used tool both inside and outside Mozilla. We walk through initial setup using PGP, discuss the internal structure of Sops encrypted files and why they play well with git, then explain how to use AWS KMS and GCP KMS, then show how to automate creation rules in a config file.
- 01:47 A bit of history
- 03:33 Using Sops with PGP
- 04:57 Internal structure of Sops encrypted files
- 07:05 Meaningful git diff
- 10:03 The bootstrapping of trust
- 12:54 Usage with AWS KMS
- 16:40 Usage with GCP KMS
- 19:34 Automating creation rules with .sops.yaml
- 25:17 Some closing thoughts
Видео Securing DevOps Show & Tell: Mozilla Sops канала Securing DevOps
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
![Mozilla SOPS: Secrets OPerationS](https://i.ytimg.com/vi/DWzJ87KbwxA/default.jpg)
![Manage Kubernetes Secrets with Mozilla SOPS & Flux 2 (with Leigh Capili)](https://i.ytimg.com/vi/8pbdXAd-F44/default.jpg)
![SOP Example: How to write a Standard Operating Procedure - FASTER!](https://i.ytimg.com/vi/g30mebrH-pw/default.jpg)
![4 Mindset Changes That Massively Improved My Life](https://i.ytimg.com/vi/PLGNGsJ5L40/default.jpg)
![Handling Errors in PowerShell with Try..Catch..Finally](https://i.ytimg.com/vi/LFWxH-bexNk/default.jpg)
![Helm 3 Dependencies Condition (3 Ways to Add Dependency)](https://i.ytimg.com/vi/LAVCJorZ2AA/default.jpg)
![terraform workspace](https://i.ytimg.com/vi/sTxddqkMeMo/default.jpg)
![Customer-Supplied Encryption Keys (CSEK) for Google Cloud Storage in action](https://i.ytimg.com/vi/LPMu7Kd_Z8w/default.jpg)
![Quick Byte - Mozilla SOPS](https://i.ytimg.com/vi/AAUJjwdCx4I/default.jpg)
![Exploring Authentication & Authorization in Kubernetes](https://i.ytimg.com/vi/dAUJ3TBwDWo/default.jpg)
![Working from Home: How to Plan Your Day](https://i.ytimg.com/vi/cWW7Q4eJr8w/default.jpg)
![Managing Secrets in GitLab / Git](https://i.ytimg.com/vi/e085yXUjrjE/default.jpg)
![DevSecOps : What, Why and How](https://i.ytimg.com/vi/DzX9Vi_UQ8o/default.jpg)
![Ingressing with k3s](https://i.ytimg.com/vi/QcC-5fRhsM8/default.jpg)
![Effective RBAC - Jordan Liggitt, Red Hat](https://i.ytimg.com/vi/Nw1ymxcLIDI/default.jpg)
![Mozilla Sops: How to use Sops for managing your Kubernetes Secrets | By M. Sharma](https://i.ytimg.com/vi/lkC3vLcuoMc/default.jpg)
![How to Create Standard Operating Procedures (SOPs) for Your Company](https://i.ytimg.com/vi/luGEBAVYKj4/default.jpg)
![Vault using the K8s CSI driver](https://i.ytimg.com/vi/fDWY84N9aRk/default.jpg)
![PowerShell Errors and Exceptions Handling](https://i.ytimg.com/vi/A6afjA5Q9eM/default.jpg)
![HELM 3 SECRETS TUTORIAL: Helm 3 Secret Management (Helm 3 Secrets Plugin)](https://i.ytimg.com/vi/hRSlKRvYe1A/default.jpg)