Ryan CantyCloud KMS Fundamentals for Enterprise: Part 2What we really want to control about our keys is generally, who can use them, for what purposes, and with what configuration.13 min read·Feb 22, 2021--2--2
Ryan CantyKMS Fundamentals for Enterprises moving to the Cloud: Part 1As a Cloud Security Engineer at Google Cloud, I get asked questions about Key Management Service (KMS) all the time as clients are…9 min read·Feb 10, 2021----
Ryan CantyUse Google’s Tink for Asymmetric EncryptionIn this tutorial, we’ll implement a common solution to a problem that GPG typically solves, but do it all with Tink.4 min read·Sep 30, 2020----
Ryan CantyStop downloading Google Cloud service account keys!TL;DR: Downloading service account keys poses a serious security risk to your organization because they are long lived and not…6 min read·Jul 27, 2020--11--11
Ryan CantyOkta Authentication in Vault using OpenID Connect (OIDC)A long time ago in an internet far far away, the Okta plugin for Vault was the only way to use your Okta credentials to get into Vault. It…7 min read·Jul 16, 2020--1--1
Ryan CantyUnderstanding Cryptography with RSARSA is an asymmetric cryptographic algorithm that you are probably using right now to view this article over HTTPS. It was designed by Ron…10 min read·Apr 22, 2020----
Ryan CantyProtection from Container Malware with AnthosTL;DR there is a fairly new attack campaign using the Kinsing malware targeted at container platforms like Docker and GKE. This post will…4 min read·Apr 7, 2020----
Ryan CantyHashiCorp Vault and Terraform on Google Cloud — Security Best PracticesDeploy HashiCorp Vault with Terraform on Google Cloud adhering to security best practices and least privilege10 min read·Oct 22, 2019--1--1
Ryan CantyinScaleSecPractical, Proactive Amazon S3 SecurityBefore you go shopping, let’s take a look at what you already have at your disposal to protect your data in the cloud.6 min read·Jul 31, 2019----
Ryan CantyinScaleSecProtecting GCP Services with VPC Service Controls and TerraformAutomate Google Cloud VPC Service Controls to protect your cloud workloads6 min read·Apr 11, 2019----