SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure...

8
SaltStack Trust: An overview of the SaltStack platform security model

Transcript of SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure...

Page 1: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

SaltStack Trust: An overview of the SaltStack platform security model

Page 2: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

1

Page 3: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

The SaltStack Security Model

Authentication

2

1.

2.

3.

Page 4: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

Authentication (cont.) Rotating Keys

salt-key

Encrypted Communication Channels

Refreshing Keys

3

Page 5: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

Salt Access Control

Secure Sensitive Infrastructure

4

Secure Data Delivery

Network Ports

SSH

Implementation Best Practices

Page 6: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

SaltStack Enterprise Security

●●●●●

Installing SaltStack Enterprise

5

Check the Minion ID in the Reactor

salt-call

Store Secure Values in Salt Pillar

Encrypt Pillar On-Disk

Use SHA 256 with FIPS-only OpenSSL

Page 7: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

SaltStack SecOps

SaltStack Security Response

6

Installing SaltStack Enterprise (cont.)

Establishing Encrypted Database Connections

Applying Role-Based Access Controls

http://saltstack.com/secops
Page 8: SaltStack platform security model SaltStack Trust: …...Secure Sensitive Infrastructure 4 Secure Data Delivery Network Ports SSH Implementation Best Practices SaltStack Enterprise

www.saltstack.com

http://www.saltstack.com

Secure Shell (SSH) - Allied Telesis | NETWORK SMARTER · Secure Shell (SSH) | Page 3 Introduction Secure Shell on the AlliedWare Plus OS TheAlliedWare Plus OS implementation of SSH

Secure Shell (SSH) - Allied Telesis | NETWORK SMARTER · Secure Shell (SSH) | Page 3 Introduction Secure Shell on the AlliedWare Plus OS TheAlliedWare Plus OS implementation of SSH

Configuring Secure Shell (SSH)...Configuring Secure Shell (SSH) • FindingFeatureInformation,page1 • PrerequisitesforConfiguringtheSwitchforSecureShell(SSH)andSecureCopyProtocol(SCP),page

Configuring Secure Shell (SSH)...Configuring Secure Shell (SSH) • FindingFeatureInformation,page1 • PrerequisitesforConfiguringtheSwitchforSecureShell(SSH)andSecureCopyProtocol(SCP),page

Secure SSH: Risk Management Solutions · Secure SSH: Risk Management Solutions If an organization has a legacy SSH implementation with hundreds of thousands or even millions of key

Secure SSH: Risk Management Solutions · Secure SSH: Risk Management Solutions If an organization has a legacy SSH implementation with hundreds of thousands or even millions of key

Secure Shell: SSH - Columbia Universitysmb/classes/f06/l12.pdf · Password Guessing Attacks on SSH Secure Shell: SSH Client Authentication Client Authentication Password Authentication

Secure Shell: SSH - Columbia Universitysmb/classes/f06/l12.pdf · Password Guessing Attacks on SSH Secure Shell: SSH Client Authentication Client Authentication Password Authentication

SSH Secure Shell Book | Using Secure Shell | Buy SSH Book

SSH Secure Shell Book | Using Secure Shell | Buy SSH Book

Configuring Secure Shell (SSH) - cisco.com · Secure Copy Protocol Overview. RestrictionsforConfiguringSecureShell,onpage2 How to Configure SSH Setting Up the Switch to Run SSH ...

Configuring Secure Shell (SSH) - cisco.com · Secure Copy Protocol Overview. RestrictionsforConfiguringSecureShell,onpage2 How to Configure SSH Setting Up the Switch to Run SSH ...

Secure Copy...Secure Copy TheSecureCopy(SCP)featureprovidesasecureandauthenticatedmethodforcopyingrouterconfiguration orrouterimagefiles.SCPreliesonSecureShell(SSH ...

Secure Copy...Secure Copy TheSecureCopy(SCP)featureprovidesasecureandauthenticatedmethodforcopyingrouterconfiguration orrouterimagefiles.SCPreliesonSecureShell(SSH ...

Secure Remote Access: SSH HTTPS - WordPress.com fileSSH is a protocol for secure remote login and other secure network services over an insecure network developed by SSH Communications

Secure Remote Access: SSH HTTPS - WordPress.com fileSSH is a protocol for secure remote login and other secure network services over an insecure network developed by SSH Communications

SSH Secure Shell for Windows How to Obtain, Install ...lsaavedr/archivos/windowsXP/ssh/ssh_doc.pdf · SSH Secure Shell for Windows How to Obtain, Install, Configure and Use SSH Secure

SSH Secure Shell for Windows How to Obtain, Install ...lsaavedr/archivos/windowsXP/ssh/ssh_doc.pdf · SSH Secure Shell for Windows How to Obtain, Install, Configure and Use SSH Secure

F-Secure SSH - Pacific Northwest National Laboratory

F-Secure SSH - Pacific Northwest National Laboratory

Configuring Secure Shell (SSH) - ftp.hp.comftp.hp.com/pub/networking/software/Security-Oct2005-59906024-Chap... · Configuring Secure Shell (SSH) ... SSH-Related Commands in This

Configuring Secure Shell (SSH) - ftp.hp.comftp.hp.com/pub/networking/software/Security-Oct2005-59906024-Chap... · Configuring Secure Shell (SSH) ... SSH-Related Commands in This

Configuring Secure Shell (SSH)

Configuring Secure Shell (SSH)

SSH Secure Shell (and friends) From: //en.wikipedia.org/wiki/Ssh.

SSH Secure Shell (and friends) From: //en.wikipedia.org/wiki/Ssh.

Connecting with Secure SHell - UCLouvain22/10/2015 CÉCI HPC Training 1 Connecting with Secure SHell SSH introduction SSH client usage and configuration file SSH frequent mistakes

Connecting with Secure SHell - UCLouvain22/10/2015 CÉCI HPC Training 1 Connecting with Secure SHell SSH introduction SSH client usage and configuration file SSH frequent mistakes

The Secure Shell (SSH) Protocolmarjan.fesb.hr/~mcagalj/CNS/Lectures/SSH_protocol.pdf · The Secure Shell (SSH) Protocol Mario Cagalj University of Split, FESB. Introduction. What

The Secure Shell (SSH) Protocolmarjan.fesb.hr/~mcagalj/CNS/Lectures/SSH_protocol.pdf · The Secure Shell (SSH) Protocol Mario Cagalj University of Split, FESB. Introduction. What

Configuring Secure Shell (SSH) - Cisco...Configuring Secure Shell (SSH) • FindingFeatureInformation,page1 • PrerequisitesforConfiguringtheSwitchforSecureShell(SSH)andSecureCopyProtocol(SCP),page

Configuring Secure Shell (SSH) - Cisco...Configuring Secure Shell (SSH) • FindingFeatureInformation,page1 • PrerequisitesforConfiguringtheSwitchforSecureShell(SSH)andSecureCopyProtocol(SCP),page

SSH -- Secure Shell

SSH -- Secure Shell

Introduction to HP NonStop SSH - Hewlett Packardwhp-hou9.cold.extweb.hp.com/pub/nonstop/ccc/jan2408.pdf · Secure Shell (ssh) protocol Definition Quoted from Wikipedia: −Secure

Introduction to HP NonStop SSH - Hewlett Packardwhp-hou9.cold.extweb.hp.com/pub/nonstop/ccc/jan2408.pdf · Secure Shell (ssh) protocol Definition Quoted from Wikipedia: −Secure

Web File Management with SSH Secure Shell 3.2.3

Web File Management with SSH Secure Shell 3.2.3

SSH, The Secure Shell

SSH, The Secure Shell