Alpine s type 10 install#
Refer to article Golang & Docker - Microservices (RESTful API) for Enterprise Model illustrating the steps to create Restful API and wrapping it up into a Docker image.Ī docker image is composed of multiple resources that will make a container to serve a request on its own in cloud and it is admin’s responsibility to install relevant certs in root directory inside the image to make it secured.
Alpine s type 10 how to#
We can see a demo of how to achieve one way authentication in a docker container that has Golang RESTful API.
It would work the same way for mutual authentication where client and server both provide their public keys and decrypt their messages with its own private keys available at their end.
Alpine s type 10 registration#
Registration Authority(RA) helps in authenticating the cert from Public Key Infrastructure (PKI) available and it acts as middlemen for CA. The most common attacks like MITMA (Man In The Middle Attack) can be prevented by using TLS. RSA (Rivest–Shamir–Adleman) algorithm is used to encrypt and decrypt messages in communication where one key is kept public and the other as private which defines the concept of public key cryptography aka asymmetric encryption. Clients communicating (browsers/client systems) to Server will hold *.pem (Privacy Enhanced Mail) or a .cer (file extension of a SSL certificate) for establishing a secured connection. Most of the certificate formats are with suffix -.pem, .cer, .crt, .key . Client/Server Communication & One way Authentication.
We can categorize the article into three sections that explains key concepts on security and how to achieve it. This article will focus on how to install certs into your docker image that has RESTful API with it. CA is an entity that issues digital certificates that has x.509 standard (uses Public key cryptography)and few leading CA providers are Comodo, GoDaddy, Global Sign & Symantec. The predecessor of Transport Layer Security (TLS) is Secure Socket Layer (SSL), reason for TLS existence is due to SSL’s vulnerability towards an attack and SSL differs from TLS in cryptographic standards over communication between applications.Ī secured communication between apps relies on a certificate(cert) distributed by a Certificate Authority(CA) that is mutually agreed by both client & server. Every client/server communication needs to be secured through a protocol with Secure Socket Layer/Transport Layer Security .