YoVDO

Securing Identity and Authorization in Microservices

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Microservices Security Courses OAuth Courses Authorization Courses Identity Management Courses API Security Courses Software Supply Chain Security Courses Cloud-Native Security Courses SPIFFE Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a conference talk that delves into securing identity and authorization in microservices architectures. Learn about the challenges posed by external API calls in microservices, including potential vulnerabilities from software supply chain attacks, privileged user compromises, and other security threats. Discover the concept of Transaction Tokens (TraTs), a new proposal in the IETF OAuth working group, and how they complement existing security protocols like SPIFFE. Understand how TraTs can assure user identity and context information in call chains, enable nesting for intermediate services, and defend against various attacks in microservice architectures. Gain insights into real-world examples and use cases that demonstrate the effectiveness of TraTs in enhancing security within complex microservices environments.

Syllabus

Securing Identity and Authorization in Microservices - Atul Tulshibagwale, SGNL


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Building on Microsoft Sentinel Platform
Microsoft via YouTube Securing Applications and Infrastructure on Kubernetes with Sysdig
Mirantis via YouTube Container Escape in 2021
Hack In The Box Security Conference via YouTube Running at Light Speed - Cloud Native Security Patterns
LASCON via YouTube Controlled Mayhem With Cloud Native Security Pipelines
OWASP Foundation via YouTube