Certificate Authority Service is a highly available, scalable Google Cloud service that
enables you to simplify, automate, and customize the deployment, management,
and security of private certificate authorities (CA).
Try CA Service tutorials, training courses, and
Qwiklabs from Google Cloud.
Security in Google Cloud
Explore and deploy the components of a secure GCP solution through hands on labs. Learn best practices for securing applications and data and mitigation techniques for attacks at many points in a GCP-based infrastructure, including Distributed Denial-of-Service attacks, phishing attacks, and threats involving content classification and use.
Explore use cases, reference architectures, whitepapers, best practices, and industry solutions.
Hashicorp Vault CA integration
Hashicorp Vault is commonly used for managing and storing secrets on-premise. In this how to guide, you'll learn how Hashicorp Vault CA can be configured to act as a proxy where it forwards all certificate issnace requests to Certificate Authority Service. This allows a currently deployed solution to natively work with Certificate Authority Service.
Providing certificate revocation status via Online Certificate Status Protocol (OCSP) has many benefits, including quicker response time and smaller network bandwidth required (compared to CRLs, which can get big). This guide describes how to configure a delegated OCSP responder that works with Certificate Authority Service.