YoVDO

Securing Identity and Authorization in Microservices

Offered By: CNCF [Cloud Native Computing Foundation] via YouTube

Tags

Microservices Security Courses OAuth Courses Authorization Courses Identity Management Courses API Security Courses Software Supply Chain Security Courses Cloud-Native Security Courses SPIFFE Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a conference talk that delves into securing identity and authorization in microservices architectures. Learn about the challenges posed by external API calls in microservices, including potential vulnerabilities from software supply chain attacks, privileged user compromises, and other security threats. Discover the concept of Transaction Tokens (TraTs), a new proposal in the IETF OAuth working group, and how they complement existing security protocols like SPIFFE. Understand how TraTs can assure user identity and context information in call chains, enable nesting for intermediate services, and defend against various attacks in microservice architectures. Gain insights into real-world examples and use cases that demonstrate the effectiveness of TraTs in enhancing security within complex microservices environments.

Syllabus

Securing Identity and Authorization in Microservices - Atul Tulshibagwale, SGNL


Taught by

CNCF [Cloud Native Computing Foundation]

Related Courses

Introducción a SPIFFE y SPIRE - Autenticando servicios nativos de la nube
Ekoparty Security Conference via YouTube Road to SLSA3 - Non-falsifiable Provenance in Tekton with SPIFFE/SPIRE
Linux Foundation via YouTube Zero-Trust Supply Chain Security with Sigstore, TektonCD and SPIFFE
Linux Foundation via YouTube How SPIFFE Helps Istio in Service Mesh Federation
Linux Foundation via YouTube Trust No System: The Unsettling Reality of Zero Trust
CNCF [Cloud Native Computing Foundation] via YouTube