Blog.

Hi, my name is Marco. Working as a Senior Software Architect at Philips. I'm an Opensource Maintainer and Contributor. If you like my work, consider to sponsor my work.

I wrote my first blog March 2011. Mostly I'm writing on software development. In total I wrote 75 articles in 7 categories. Use search below to filter by title or click a category or tag to filter by tag or category.

Categories:

Software development DevOps Golang JavaScript Linux Uncategorized Windows Phone

Tags:

Zero-trust Spiffe Vault Sigstore Docker SLSA GitHub Git Helm Kubernetes Traefik Terraform ssh React Next.js Hexo Blog Markdown Nginx Elasticsearch Web TLS Letsencrypt HTTP/2 Windows Raspberry Pi raspbian test TDD benchmark concurrency parallelism boot Chocolatey Gradle Java HTML5 PWA SEO Performance VirtualBox Angular Node.js azure haproxy synology vagrant hyper-v BDD Jasmine Mocha Karma PuTTY Debian packer.io Chai Grunt Sinon npm Jenkins MSBuild MSpec OpenCover NuGet Architecture c#CQRS Design patterns Fluent Security JSON KnockoutJS Microsoft PowerShell Windows 8 Windows Phone Windsor MVVM MVC3 Security Entity Framework linq vhd Convincing Elevator pitch Softskills AMD jQuery Ncqrs diskpart vdisk DDD FakeItEasy Unittesting Dependency Injection Kinect

Stories

Going secretless and keyless with Spiffe Vault

Marco Franssen / June 5, 2022

Securing the software supply chain has been a hot topic these days. Many projects have emerged with the focus on bringing additional security to the software supply chain as well adding zero-trust capabilities to the infrastructure you are running the software on. In this blogpost I want to introduce you to a small commandline utility (spiffe-vault) that enables a whole bunch of usecases like: Secretless deployments Keyless codesigning Keyless encryption Spiffe-vault utilizes two projects t…