ApacheCon NA 2013

Portland, Oregon

February 26th – 28th, 2013

Register Now!

Wednesday 2:45 p.m.–3:45 p.m.

Reining in Security Sprawl: Certificate & Key Management for Big Data

Dustin Kirkland

How Secure?
Audience level:


As the amount of security data being generated by cryptographic keys and certificates continues to grow, so does the complexity of managing that info across diverse projects and organizations. This session will explore the challenges of "security sprawl" as it relates to big data, supported by real world case studies across numerous verticals.


How is your company managing its most sensitive information? Where are you storing your cryptographic keys and certificates, and who has access to them? If you have a stake in your organization’s security, chances are these are a few of the questions keeping you up at night. And the challenges are becoming increasingly complex as the number of keys under management grows exponentially and servers continue to capture and store more sensitive company data.

Too often organizations tackle key sprawl by storing keys in a text file, while others hardcode keys and passwords into code or spend tens of thousands on a hardware security modules.

Big data presents a significant opportunity for enterprises, as well as several challenges. In this session, we’ll explore: - What’s not secure, not acceptable, not working but totally pervasive - The pains of the cloud and key sprawl - The strengths and weaknesses of various key management options - Easing the pain: recent innovations for managing keys and company secrets - Real-world use cases: web servers to cloud file systems to big data to SSH