This talk was given in April at the Cloudfoundry North American summit as part of the containers & serverless track.

The abstract for this talk was:

Secret management for containers at scale is a huge challenge, especially if you have compliance requirements like regular rotation of credentials, auditability, and emergency response time. Thankfully there are lots of great community projects that are able to help; the trick is knowing which to leverage given your threat model. This talk will outline some options for managing secrets in a containerized environment and propose a solution to the dreaded “secure introduction” problem.

The slides are available via Google slides:

A video of the live talk is available via the Cloudfoundry youtube channel: