Vultr

Cert-Manager Now Part of The CNCF Sandbox Family as Jetstack Completes Donation

TL;DR

Cloud native infrastructure builder Jetstack announces its successful donation of the cert-manager project to the Linux Foundation’s Cloud Native Computing Foundation as a “sandbox” project. The donation has been eagerly accepted, and cert-manager is expected to revolutionize the security offered to the Kubernetes community, specifically in the domain of certificate management.

The new cert-manager API makes it more mature and powerful
The new cert-manager API makes it more mature and powerful
Key Facts
  1. 1

    Jetstack’s cert-manager is a state-of-the-art Kubernetes certificate management controller. It is used to manage X.509 machine identities in OpenShift and Kubernetes.

  2. 2

    Jetstack’s decision to donate cert-manager stems from their belief that technology like cert-manager can be better-utilized and more effective when managed and operated by a vendor-neutral party like the CNFC.

  3. 3

    CNFC provides Kubernetes and open source support to a variety of organizations, non-profits, government agencies, and academic institutions worldwide. This makes the cert-manager donation especially useful in preserving the security of vast arrays of projects built by the community.

  4. 4

    Cert-manager supports the entire certificate lifecycle and enables the signing of certificates by public and private signatories/authorities such as Let’s Encrypt.

  5. 5

    Cert-manager has been built and grown by a dedicated team of Jetstack’s top engineers and over 260+ highly-experienced developers and engineers.

Details

Jetstack is mainly a Kubernetes professional services company founded in 2015 and recently acquired by Venafi, a security company specialized in different areas mainly machine identity. According to the Venafi:

The combination of speed and security creates an interesting dilemma. How do you build software quick enough to compete, without the risk of being exploited? This is the challenge that Jetstack and Venafi will solve.

Back to cert-manager, Jetstack recently announced the release of the v1 API for this tool, which made the technology more mature and powerful. This release allows developers to have greater visibility and control over their certificates.

Currently, the Venafi+Jetsack team has been working towards integrating Google's new Certificate Authority Service (CAS) with cert-manager. This will offer developers private CA keys as a service, using HSMs, which are validated at FIPS 140-2 Level 3.

It’s exciting to see cert-manager join the CNCF Sandbox. It’s been several years in the making to get to 1.0, and we’re hugely thankful to a community of over 250 contributors, and many end-users, to get it to where it is today. This is a foundational add-on to many Kubernetes and OpenShift clusters, and the project will benefit from being part of the CNCF and its ecosystem. We look forward to attracting a diverse contributor base and extending our partnership and cooperation with many other projects to further enhance the developer and operator experience.
avatar
Matthew Bates
Co-founder and CTO, Jetstack

Get similar news in your inbox weekly, for free

Share this news:
DevOps-and-Alt-Cloud-350x350.png

DevOps and the Alternative Cloud Research Report
Insights into the capabilities developers expect from cloud infrastructure providers

The DevOps FaunCast.png

Listen to the stories behind the stories and learn new things each week
The DevOps FAUNCast

linode2.jpg

The Cloud Computing Golden Ratio
Discover the golden ratio of price to performance

FAUN chief io ad v3.jpg

Introducing the DevSecGuide to IaC
Download for IaC security research findings, practical DevSecOps tips, and more! Free for FAUN readers.

Content Marketing Platform for Cloud Native Companies

Sponsor The Chief I/O
Get in touch!

Vultr

Latest stories

DevOps-and-Alt-Cloud-350x350.png
Sponsored
DevOps and the Alternative Cloud Research Report

Insights into the capabilities developers expect from cloud infrastructure providers ...

Why Your Business Should Connect Directly To Your Cloud
Contributed
Why Your Business Should Connect Directly To Your Cloud

Today, companies make the most use of cloud technology regardless of their size and sector. …

The DevOps FaunCast.png
Sponsored
Listen to the stories behind the stories and learn new things each week

The DevOps FAUNCast ...

1.png
DevSecOps
7 Must-Watch DevSecOps Videos

Security is a crucial part of application development and DevSecOps makes it easy and continuous.The …

linode2.jpg
Sponsored
The Cloud Computing Golden Ratio

Discover the golden ratio of price to performance ...

How to enhance security by integrating SAST and DAST in CI/CD?
DevOps
Contributed
How to enhance security by integrating SAST and DAST in CI/CD?

FAUN chief io ad v3.jpg
Sponsored
Introducing the DevSecGuide to IaC

Download for IaC security research findings, practical DevSecOps tips, and more! Free for FAUN readers. ...

What is Zero Trust Security?
Kubernetes
Contributed
What is Zero Trust Security?

Content Marketing Platform for Cloud Native Companies
Sponsored
Sponsor The Chief I/O

Get in touch! ...

Top Ways To Optimize Your Cyber Security And Performance Monitoring Tools Using Load Balancing
Contributed
Top Ways To Optimize Your Cyber Security And Performance Monitoring Tools Using Load Balancing

In this post, you will learn how to optimize your cybersecurity and performance monitoring tools …

SRE From Theory to Practice What's difficult about on-call.
Contributed
SRE: From Theory to Practice | What's difficult about on-call?

We launched the first episode of a webinar series to tackle one of the major …

How to enhance security by integrating SAST and DAST in CI/CD?
DevOps
Contributed
How to enhance security by integrating SAST and DAST in CI/CD?