►
From YouTube: Throw Away Your Passwords: Trusting Workload Identity - Ric Featherstone, ControlPlane
Description
Don’t miss out! Join us at our upcoming hybrid event: KubeCon + CloudNativeCon North America 2022 from October 24-28 in Detroit (and online!). Learn more at https://kubecon.io. The conference features presentations from developers and end users of Kubernetes, Prometheus, Envoy, and all of the other CNCF-hosted projects.
Throw Away Your Passwords: Trusting Workload Identity - Ric Featherstone, ControlPlane
Trust is required to secure our systems: we need it to bootstrap infrastructure, to run workloads, and to reassure our customers of their privacy. But how do we establish and secure this "trust" in a dynamic cloud native system?
Historically we relied upon identifiers such as IP addresses, passwords, and certificates, but can we do better than these antiquated authentication mechanisms? In this talk we:
Demystify machine identity and its relationship to secrets management and access control
Discuss the issues with historical approaches in a cloud native environment
Solve the "bottom turtle" trust bootstrap quandary
Appraise the open source implementations and technologies available to you
Demonstrate practical examples of how to acquire a workload identity or secret zero
Strive for a world in which passwords and static keys are replaced by dynamic credentials and hardware roots of trust
A
A
A
A
We're
up
against
the
post
lunchtime
dip
at
the
end
of
a
long
week,
so
you're,
probably
all
as
tired,
as
as
I
am,
I'm
going
to
attempt
to
cover
a
lot
of
ground
in
sort
of
30
minutes,
or
so
I'm
going
to
focus
on
concepts
rather
than
going
into
too
much
depth
on
some
of
these
things.
The
idea
is
to
give
you
options
that
you
can
kind
of
take
away
and
apply
to
the
things
that
you're
doing
when
you
get
back
to
your
day,
jobs.
A
A
So
historically,
infrastructure
was
reasonably
static.
Iop
addresses
were
statically
allocated,
so
you
could
reasonably
use
these
to
represent
your
identity,
firewalls
used
ip
and
port
combinations,
ip
addresses
were
used
in
x509
certificates,
secrets
and
certificates
were
manually
deployed
to
machines
by
admins.
A
A
Ip
addresses
are
no
longer
a
useful
identifier.
Workloads
come
and
go.
Your
workload
will
get
a
different
ip
address
as
it
gets
restarted.
You
could
have
multiple
instances
of
your
workload,
so
they've
got
multiple
ip
addresses.
At
the
same
time,
secrets
distribution
becomes
a
much
harder
problem
with
these
dynamic
workloads.
A
A
A
So
that
all
sounds
great,
but
how
do
you
get
one?
How
do
you
get
this
secret?
Zero,
this
workload
identity
so
we'll
start
simple,
something
with
something
that
you're
probably
already
familiar
with,
and
then
we'll
sort
of
build
on
that
so
who's
running
workloads
on
kubernetes
at
the
moment,
quick
show
help
me
out
a
little
show
of
hands
yeah
loads
of
you
excellent
who's
heard
of
the
token
review
api.
A
It's
a
simple
api
call,
the
the
subjects
token
in
in
the
payload
there
and
then
the
relying
parties
token
in
the
authorization
bearer
field
there,
and
we
can
just
make
this
api
call
if
you're
passing
jots
around
when
you're
making
api
calls
and
things
like
that,
you
want
to
make
sure
you're
using
a
secure
channel
to
protect
yourself
against
interception
and
replay
attacks
and
once
you've
made
that
api
call
from
the
response.
You
can
get
information
back
about
the
the
subject.
A
The
username,
the
fully
qualified
name
of
the
service
account
there.
You
might
use
the
groups
and
now
you
can
use
this
information
to
start
to
make
authorization
decisions,
and
this
is
the
most
common
way
of
integrating
kubernetes
workloads
with
hashicorp,
vault
and
kubernetes
authentication
method.
A
A
If
you
are
passing,
these
service
account
tokens
around
you,
you
need
to
be
careful
about
about
this.
The
tokens
themselves
they
exist
for
the
lifetime
of
that
service
account
they're
replaced
if
you
delete
the
token
but
they're
not
rotated,
so
there's
some
things.
We
can
do
to
kind
of
restrict
the
usefulness
of
a
compromised
token.
A
They're
sometimes
called
projected
service
account
tokens.
They
use
the
projected
volume
functionality
they're
bound
by
audience
and
time.
So
in
this
example.
Here,
if
our
demo
service
is
malicious
and
we
pass
it,
our
service
account
token,
it
can't
use
our
token
to
impersonate
us
to
another
service
because
it's
bound
by
that
audience
there
and
this
this
works
kind
of
within
a
single
kubernetes
cluster.
A
A
A
Well,
unsurprisingly,
we
can
so
since
version
1.2,
1.12
of
kubernetes
and
stable
since
1.20
the
service
account
issue.
Discovery
feature
was
added
quick
show
of
hands
if
anybody's
heard
of
this
before
quite
a
few,
not,
but
in
my
experience
this
isn't
quite
as
well
known
as
the
token
review
api,
but
it's
based
on
the
oidc
discovery
protocol,
which
gives
you
the
means
to
dynamically
retrieve
the
details.
A
A
So
it's
it's
a
it's
a
simple
serialization
format:
we've
got
a
header,
a
payload
and
a
signature,
base64
url,
encoded
and
separated
with
a
period.
So
we
can
pipe
that
through
jq.
If
we
want
to
look
at
the
claims
in
the
in
the
payload
of
a
token,
you
can't
decode
the
signature,
because
it's
not
utf-8
encoded
but
you're
generally
interested
in
the
payload.
You
want
to
see
what
claims
are
when
you're
messing
up
with
tokens.
A
A
For
the
token
there's,
we've
got
some
around
the
validity
of
the
token
the
expiry
time,
not
before
the
issue
that
time
and
then
we've
got
information
about
the
subject
and
also
the
audience.
So
so,
who
is
this
token
valid
for
but
key
to
the
oidc
discovery?
Is
this
issuer
field
so
we'll
go
back
to
the
previous
slide.
A
So
with
that
issuer
field,
you
can
append
this
well-known
suffix
onto
there
and
that
will
give
you
the
discovery
document
and
from
that
we
can
extract
the
url
to
get
the
json
web
key
set,
which
allows
us
to
validate
the
signature.
And
then
we
know
it's
a
valid
token,
and
then
we
can
trust
the
claims
that
are
encoded.
In
that
token,
it's
it's
a
fixed
url
out
of
the
box
with
vanilla
kubernetes,
but
it
is
customizable
and
so
and
and
it's
also
protected
with
vanilla
kubernetes.
A
A
We
can
see
some
metadata
in
there
and
the
key
one
is
that
jwks
uri
and
if
we
do
a
get
on
that
we
get
the
key
set.
So
you
can
see
there
the
key
id.
We
talked
about
a
little
bit
earlier,
the
algorithm
and
then
we've
got
the
the
modulus
and
the
exponent
for
the
rsa
public
key,
and
then
we
can
reconstitute
that
public
key
and
verify
the
signature.
A
Eks
looks
the
same.
Take
that
issue
afield.
Stick
the
well
known
url
on
the
end,
get
the
discovery
document
slightly
different
metadata,
but
the
same
kind
of
thing.
The
key
field
again
is
that
jwks
uri
and
we
get
the
key
set
and
for
aks
same
sort
of
thing
notice
the
trailing
forward,
slash
on
the
issuer
field
there.
If
you're
building
something
yourself.
It's
I
mean
it's
a
simple
protocol.
A
A
So
there's
the
discovery
document
and
the
key
set
so
in
the
key
sets
that
we've
seen
so
far.
You've
only
got
one
key
in
there,
but
periodically
these
will
be
rotated
and
so
you'll
see
more
keys
in
that
list
there
and
that's
why
the
key
id
is
important.
You
need
to
make
sure
you're
getting
the
right
key.
A
A
So
now
you
can
start
to
run
your
infrastructure's
code
pipelines
on
your
kubernetes
clusters
with
temporary
cloud
credentials,
you're
not
having
to
put
long-lived
cloud
credentials
into
secrets
in
your
kubernetes
cluster.
You
can
exchange
your
token
for
these
temporary
credentials
so
and
you
can
go
across
cloud
providers
as
well.
So,
for
example,
you
could
run
in
gke
and
you
can
you
can
access
aws,
so
I
am
roles
for
service
accounts,
the
from
aws
that
builds
on
this
odc
discovery
and
this
web
identity
federation.
A
So
there's
there's
a
mutating
web
hook
that
aws
provides.
You
can
install
this
into
your
gke
cluster
and
then
you
annotate
your
service
account
with
the.
I
am
role
that
you
want
to
get
credentials
for
and
then,
when
you
do
a
deployment,
it
will
mutate
your
pod
and
it
will
automatically
it
will
automatically
mutate
and
add
the
bound
service
account
token
for
you,
and
also
the
environment
variables
required
to
use
the
aws
to
authenticate
for
the
aws
apis.
A
A
A
A
So
we
can
run
our
infrastructure's
code,
pipelines
in
github
and
get
temporary
cloud
credentials
and
and
create
infrastructure.
So
in
this
example
we're
configuring
gcp
to
get
temporary
credentials.
You
need
to
create
a
service
account,
a
workload,
identity
pool
an
oidc
provider,
and
then
you
do
some
mapping
between
the
claims
in
the
github
token
and
then
bind
that
to
the
gcp
service,
account
that
you
want
to
impersonate.
A
And
then
google
provided
github
auth
action
that
allows
you
to
exchange
that
token
for
credentials.
So
you
can
get
an
access
token
to
use
in
authorization
bearer
field
for
making
api
calls.
You
can
get
a
credentials
file
and
in
this
case,
we're
just
getting
an
id
token,
which
is
the
same
as
the
the
kubernetes
jots
that
we've
been
looking
at
just
so
that
it
kind
of
looks
the
same.
A
And
if
we
pipe
that
through
jq,
we
can
see
a
similar
set
of
claims
that
we
were
getting
from
the
kubernetes
cluster
that
subject
field
there,
that
that
long,
numeric
string,
that's
the
oauth
2
client
id
for
your
gcp
service
account
and
you
can
look
in
the
console
and
verify
that.
That's
that's
correct.
A
A
A
You
might
want
to
extend
your
trust
domain
over
multiple
kubernetes
clusters
or
you
might
want
to
have
separate
just
domains
for
each
kubernetes
cluster,
but
you
want
to
federate
them
so
that
you
can
simplify
verifying
those
tokens
across
those
kubernetes
clusters.
You
might
not
even
be
running
in
kubernetes,
you
might
be
running
on
vms,
you
might
have
iot
devices,
so
we
need
something
a
little
bit
more.
We
can't
just
rely
on
that
that
kubernetes
is
the
identity
provider
and
that's
where
spiffy
and
spire
come
in,
so
spiffy
defines
the
standards
for
an
identity
framework.
A
A
Aspire
has
aspire
server,
then
you've
got
agents
that
run
on
nodes
and
they
attest
themselves
to
the
server,
and
then
the
workloads
will
attest
themselves
to
the
agent
running
on
the
node
that
they're
running
on
and
use
the
registration
api
to
map
selectors,
basically
metadata,
depending
on
how
they
test
themselves
to
the
workload
you
map
that
to
spiffy
ids
and
when
you're,
when
you're,
creating
your
spiffy
ids
for
your
workloads.
You
map
them
to
the
spiffy
id
of
the
agent.
A
A
So
we've
got
a
list
of
the
of
the
plugins
listed
in
the
documentation
there,
so
the
node
ones
agent
to
server
top
three.
There
are
our
pre-shed
secrets.
The
next
two
are
for
kubernetes.
The
sat
is
a
regular
service
count
token.
The
psat
is
a
bound
service,
account
token
and
then
the
next
three
are
cloud
identity
documents.
A
So
you
can
use
kind
of
information
that
this
node
already
has
or
that
you've
pre-populated
and
stored
on
there
and
then
for
workload
at
station
three
key
ones
there
unix
docker
and
kubernetes,
and
the
the
selectors.
So
for
the
unix,
for
example,
the
selectors
might
be
user
id
username
group
id
group
name
for
the
process.
That's
running
that
workload.
It
could
be
the
path
to
the
binary
on
the
file
system
that
the
digest
of
that
binary
itself
for
docker
it'll,
be
things
like
the
image
id
labels
environment
variables
for
kubernetes.
A
It's
your
service
account
your
namespace,
the
image
things
like
that
kind
of
just
just
metadata
about
this,
these
running
workloads
and
then,
when
the
workloads
come
up
and
talk
to
the
node
they're
just
attesting
themselves,
the
node's
checking
for
this.
This
metadata
mapping
it
knowing
which
identity
to
assign.
A
So
in
this
example,
deployment
we're
running
on
a
on
a
single
kubernetes
cluster
using
the
projected
service
account
token.
The
bound
service
account
token
for
the
no
data
station.
Now
under
the
covers.
That's
the
token
review
api
that
we
saw
at
the
start
of
the
talk
same
as
the
vault
authentication,
the
the
workloads.
Are
you
because
we're
running
on
a
kubernetes
cluster
we're
just
using
the
kubernetes
workload
data
station,
the
oidc
discovery
provider,
that's
an
optional
component,
and
that
exposes
the
endpoints
to
retrieve
the
discovery
document
and
the
jw
ks
url.
A
A
So
we
talked
about
x59
s
vids
as
well.
We
focus
kind
of
primarily
on
jots
before
and
and
the
reasoning
for
that
was
because
you
can
get
these
from
your
kubernetes
cluster.
You
don't
need
to
install
anything
else.
If
you're
running
kubernetes,
you've
got
you've
got
some
administration
of
that
kubernetes
cluster,
but
without
with
the
service
account
issuer
discovery
stuff.
A
So
that's
just
some
of
the
information
in
the
x
509
s
vids!
You
can
see
in
the
uri
sand
field.
There
we've
got
the
spiffy
id
so
just
domain
arbitrary,
workday
identifier,
and
if
we're
running
some,
that's
that's
kind
of
different
to
service
account
names.
It's
a
nice,
meaningful
identifier,
so
that's
kind
of
useful.
We
can
see
that
we
can
use
the
certificate
for
server
and
client
authentication.
So
we
can
now
start
to
use
this
for
mutual
tls.
A
So
I
did
say
something
about
hardware
route
of
trust,
so
the
rest
of
the
rest
of
this
deck
gives
an
indication
of
where,
where
I
think
kind
of
workload,
identity
is
heading
kind
of
trying
to
tie
that
trust
down
to
the
to
the
hardware
level.
There's
been
a
couple
of
interesting
talks
already
this
week
wednesday,
there
was
talk
about
the
confidential
containers
project
using
running
kubernetes
workloads
in
trusted
execution
environments.
A
A
So
please
don't
ask
me
any
difficult
questions
at
the
end
about
this,
but
I
wanted
to
just
give
you
some
information
about
some
of
the
things
you
might
want
to
go
away
and
look
at
and
keep
an
eye
out
and
say
it's
it's
an
evolving
field,
and
so
some
of
this
stuff
isn't
quite
production
ready.
So
don't
think
you
can
go
home
and
and
start
to
run
this
stuff,
but
it's
definitely
worth
keeping
an
eye
on
so
trusted.
A
Executive
environments,
we'll
leave
that
guys
who
know
what
they're
talking
about
much
more
than
I
do
I've
already
spoken
about
that
this
week.
Actually
I've
I've
just
scuffled
myself
there,
because
I'm
making
up
some
of
this
stuff
as
I
go
along
so
tpm's
quick
show
of
hands.
Who
knows
what
what
a
trusted
platform
module
is.
A
Oh,
that's
interesting.
More
people
know
about
that
than
know
about
the
kubernetes
token
review
api.
That's
so
you
can't
make
assumptions
when
you
come
and
do
things
like
this.
So
tpm
is
a
is
a
cryptographic
device.
Does
things
like
secure
generation
and
storage
of
of
keys
and
these
keys
can't
leave
that
tpm
in
a
in
an
unencrypted
form?
So
that's
really
that's
really
useful
property
for
for
tying
things
down
to
a
specific
machine.
A
So
we
earlier,
we
saw
that
you
could
use
an
x509
certificate
to
attest
to
node
to
spire,
but
if
I
get
hold
of
that
certificate
and
walk
off
with
it
and
put
it
on
another
another
machine,
I
can
impersonate
that
node
with
the
keys
from
a
tpm
they're
they're
encrypted
outside
of
that
tpm,
and
you
have
to
load
them
into
the
tpm
to
decrypt
them
and
use
them.
So
I
can't
I
can't
steal
your
certificate
and
pretend
to
be
you.
I
have
to
be
you
with
that
tpm.
A
A
A
You
can
use
that
to
kind
of
scan
the
files
on
on
your
node.
Stick
that
the
hash
of
that
into
the
the
pcr
and
then
keylime
can
remotely
check
that.
So
that
gives
you
the
ability
to
continuously
verify
the
integrity
of
your
remote
machines
and
on
the
keylime
site.
They've
got
a
nice
little
demo
of
removing
a
compromised
lcd
node
from
a
cluster.
A
So
we
can
use
this
with
with
spire.
Now
I
only
came
across
this
last
week,
frantically
playing
around
with
it
trying
to
get
it
to
work.
So
I
could,
I
could
get
it
in
here,
but
it's
it's!
It's
pretty
cool,
so
you've
got
a
a
local
device
id
which
is
a
a
public
and
a
private
key
and
a
certificate
that
are
provisioned
out
of
band,
and
then
they
come
out
of
the
tp,
the
the
tpm
encrypted
and
then
in
the
attestation
process,
the
agent
loads
them
into
the
tpm.
A
A
A
And
that's
it
so
key
takeaways
from
my
rambling
this
afternoon
you
might
already
have
a
workload
identity
if
you're
running
on
kubernetes,
you
have
you've,
got
your
service
account
token
and,
depending
on
on
what
you're
trying
to
do.
Your
kubernetes
cluster
might
work
as
your
identity
provider.
If
you're
running
on
kubernetes
and
just
talking
to
volt
on
the
same
kubernetes
cluster,
then
the
token
review
api
might
be
fine.
A
For
for
that,
if
you
would
kind
of
go
into
the
wider
fields
where
you
want
to
use
the
same
job
and
the
same
identity
in
your
job
and
your
x
509
certificate,
then
you
might
want
to
think
about
spliffy
inspire.
You
kind
of
you've
got
more
complexity
and
an
operational
and
administrative
overhead
to
run
spire,
but
if
you
need
the
extra
capabilities
that
gives
you
it,
it's
certainly
worth
thinking
about
it.