Go Time: Golang, Software Engineering

Local cert management for mere mortals

Apr 17, 2024

Security experts Ben Burkert and Chris Stolt discuss challenges in setting up secure local development environments, emphasizing the importance of encryption, HTTPS, and efficient certificate management tools. They highlight the significance of a developer-centric approach in certificate integration, explore complexities in managing certificates, introduce LCL Host for trust store automation, and praise Go's cryptography libraries for secure TLS traffic handling.

47:46

Creator website

Episode guests

Chris Stolt

Ben Burkert

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Creating a secure local environment with TLS everywhere is essential for achieving dev/prod parity and improving software quality.

Anchor offers solutions for both back-end encryption and internal TLS setups, addressing challenges with public certificates and internal CAs.

Deep dives

Developing a Secure Local Environment for Software Development

Ensuring a secure local environment for software development is crucial for achieving development and production parity. By mimicking the production environment locally, developers can catch bugs and issues early, leading to better software quality. However, encrypting local development environments and ensuring HTTPS can be challenging, with developers often resorting to bypassing TLS due to complexities. Creating a secure local environment with TLS everywhere, especially for tasks like gRPC streaming, is essential for achieving dev/prod parity and improving software quality.

Introduction

2min

Challenges in Alert and Incident Management with Local Development Focus

2min

Securing Local Environments for Software Development

8min

Developers and Certificates: A Developer-Centric Approach

2min

Navigating the Complexities of Certificate Management

9min

Streamlining Local Trust Store Management with LCL Host

10min

Securing Processes and Addressing AI Limitations

3min

Enhancing Certificate Management and Customer Engagement

7min

The Role of Cryptography Libraries in Go's Success and Security

3min

In this episode, Ben Burkert & Chris Stolt join Johhny to explore the ups & downs of trying to get secure local development environments set up, why it’s hard & what you can do about it.

Join the discussion

Changelog++ members save 6 minutes on this episode because they made the ads disappear. Join today!

Sponsors:

FireHydrant – The alerting and on-call tool designed for humans, not systems. Signals puts teams at the center, giving you ultimate control over rules, policies, and schedules. No need to configure your services or do wonky work-arounds. Signals filters out the noise, alerting you only on what matters. Manage coverage requests and on-call notifications effortlessly within Slack. But here’s the game-changer…Signals natively integrates with FireHydrant’s full incident management suite, so as soon as you’re alerted you can seamlessly kickoff and manage your entire incident inside a single platform. Learn more or switch today at firehydrant.com/signals
Notion – Notion is a place where any team can write, plan, organize, and rediscover the joy of play. It’s a workspace designed not just for making progress, but getting inspired. Notion is for everyone — whether you’re a Fortune 500 company or freelance designer, starting a new startup or a student juggling classes and clubs.
Changelog News – A podcast+newsletter combo that’s brief, entertaining & always on-point. Subscribe today.

Featuring:

Ben Burkert – GitHub, LinkedIn, X
Chris Stolt – X
Johnny Boursiquot – Website, GitHub, X

Show Notes:

Something missing or broken? PRs welcome!

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Go Time: Golang, Software Engineering

Local cert management for mere mortals

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Developing a Secure Local Environment for Software Development

Anchor's Solution: Simplifying Certificate Management

Open Source Contribution: Revolutionizing TLS Libraries

Enhancing Developer Experience Through Support Engagement

Remember Everything You Learn from Podcasts