From the course: HashiCorp Certified: Consul Associate (003) Cert Prep

Unlock this course with a free trial

Join today to access over 25,500 courses taught by industry experts.

Introduction to gossip encryption

Introduction to gossip encryption

From the course: HashiCorp Certified: Consul Associate (003) Cert Prep

Start my 1-month free trial Buy for my team

Introduction to gossip encryption

All right, so as promised, we're going to quickly review the security model here. So again, remember the console security threat model has multiple components to it. We're talking about the gossip protocol encryption here in this section. But there were other components of the security model. If you remember, we talked about the built in ACL system, which we talked about in the previous objective, we talked about console agent communication, and how we're going to to use TLS to secure our RPC and our API communications. We talked about using mutual TLS for both authenticity and encryption when we're using the console service mesh feature. And finally, we talked about how console has a built-in certificate authority. If we choose, we want to use that or we can integrate with an external CA, maybe something like Vault, maybe something that we already have deployed on-premises or in the cloud. So that's just a quick review of the security model. Again, we're gonna jump into the top one…

Contents