Flexible and Secure SSH access to cloud infrastructure — Part I

  • Welcome
  • Blog
  • Flexible and Secure SSH access to cloud infrastructure — Part I

Watch the video: Flexible and Secure SSH access to cloud infrastructure — Part I

A couple of years ago we reviewed the way we manage our teams’ SSH accesses. We were looking for three key areas of improvement: service-level granularity, flexibility to give time-bounded accesses, and finally good traceability for auditing purposes.
TL;DR we decided to move towards certificate-based accesses with BLESS (by Netflix OSS), an “SSH Certificate Authority that runs as an AWS Lambda function and is used to sign SSH certificates from public keys”. In this first article, we detail why we made this choice as well as alternate solutions we dismissed.

Our speaker(s)

Flexible and Secure SSH access to cloud infrastructure — Part I - Teads Engineering
Robert Dupuy
VP Engineering
We don’t compromise quality for speed
Cyrille Dubarry
Engineering Manager
Alban Perillat-Merceroz
Engineering Manager in Tech Montpellier
Han Ju
Senior Software Engineer
Tristan Sallé
Senior Software Engineer
Xavier Bucchiotty
Director of Engineering
Loïc Jaures
SVP Technology
Jean-Baptiste Pringuey
VP Engineering
Kévin Margueritte
Software Engineer
Benjamin Davy
Sustainability Director
Antoine Brechon
Engineering Manager - Infrastructure Team
Damien Pacaud
Former Infrastructure Director
Matthias Kunter
Senior Software Engineer @ Analytics
Benoit Daviaud
Senior Software Engineer @ Buying Engine
Damien Islam-Frenoy
Chief Technology Officer
Florian Marin
Engineering Manager @ TAM Central
Nicolas Vizern
Senior Software Engineer @ Buying Engine
Romain Hardouin
Staff Engineer @ Infra-reliability
Scroll to Top