Shield: Security in ELK
While it has always been possible to secure Elasticsearch clusters by deploying them within well-secured environments, we continuously received requests from customers and users to have a more integrated solution. In response, we created Shield, our first security plugin for Elasticsearch, which went GA in late January.
In this talk, we'll deep dive into this first release Shield. We went to great lengths preparing Elasticsearch itself for security, not just on its extensibility side, but also carefully rethinking how the data flows in it. We've built a foundation that not only delivers immediate tangible value when it comes to securing Elasticsearch clusters, but also enables us to extend its functionality incrementally and rapidly over time.
Among other topics, we'll cover:
- *Encrypted Communication & Node Authentication
- *IP Filtering
- *Audit Trails
Attendees will leave this talk with a solid understanding of Shield's functionality, architecture and why it's the best possible tool to secure Elasticsearch and your ELK cluster.
Uri Boness has over 12 years of open source Enterprise Java experience, many of which dedicated and focused on Apache Lucene related technologies. An active Apache Lucene community member, often with contributions to various open source projects in the Apache Lucene ecosystem. A consistent promoter and advocate of open source technologies and the founder of the Dutch Apache Lucene User Group. Previously, Uri served as the head of the search department at Orange11, where he helped drive and secure Orange11′s position as an internationally renowned leader in open source search technologies.