new connect with mtls diagram

2019-02-12 12:36:25 -08:00 · 2019-02-12 12:36:25 -08:00 · ef99dd28e5
commit ef99dd28e5
parent 7e928b03c5
2 changed files with 1 additions and 1 deletions
--- a/README.md
+++ b/README.md
@ -18,7 +18,7 @@ and rolling is challenging even for experts.

 Amongst numerous use cases, proper PKI makes it easy to use mTLS (mutual TLS) to improve security and to make it possible to connect services across the public internet. Unlike VPNs & SDNs, deploying and scaling mTLS is pretty easy. You're (hopefully) already using TLS, and your existing tools and standard libraries will provide most of what you need. If you know how to operate DNS and reverse proxies, you know how to operate mTLS infrastructure.

-![Connect it all with mTLS](https://raw.githubusercontent.com/smallstep/certificates/master/autocert/connect-with-mtls.png)
+![Connect it all with mTLS](https://raw.githubusercontent.com/smallstep/certificates/master/connect-with-mtls-2.png)

 There's just one problem: **you need certificates issued by your own certificate authority (CA)**. Building and operating a CA, issuing certificates, and making sure they're renewed before they expire is tricky. This project provides the infratructure, automations, and workflows you'll need.

--- a/connect-with-mtls-2.png
+++ b/connect-with-mtls-2.png