When Doing the Right Thing Goes Wrong - Impact of Certificates on Service Based Infrastructure

Presented at BSidesSF 2015, April 19, 2015, 5 p.m. (60 minutes)

With the advent of micro service architecture securing inter-service communication has become more important than ever. Protecting these connections over HTTPS is usually the default approach, but poorly implemented solutions can lead to under protected services or cause outages within the system. This talk looks to highlight how bad practices, misunderstandings and design choices in certificate trust chains can leave a system vulnerable or even offline.

Presenters:

• Robert Lucero - Software Engineer in Test
  Robert Lucero is a physics major turned software developer. He has nine years of software development experience working on various projects at Microsoft and more recently at Okta. There's more stuff on his LinkedIn profile, but he'll probably tell you more over a beer.

Links:

• https://bsidessf2015.sched.com/event/2t3v/when-doing-the-right-thing-goes-wrong-impact-of-certificates-on-service-based-infrastructure