No More Moats - Protecting Your Cloud Native Infrastructure with Zero Trust

Explore the concept of Zero Trust security in cloud native infrastructure through this informative conference talk. Learn how to overcome security barriers in microservices, Kubernetes, and cloud computing by implementing a Zero Trust architecture. Discover how to build a solid foundation using SPIFFE and SPIRE, and enhance security with tools like OPA and Envoy. Examine sample architectures from Fortune 500 organizations and gain insights into their implementation processes. Delve into topics such as perimeter security, SPIFFE vs. traditional PKI, Spire plugins, design considerations, and practical uses. Explore advanced concepts including Envoy Proxy integration, high availability, separate trust domains, CI/CD, OIDC federation, and nested Spire deployment. Get a glimpse of the Spire roadmap, upcoming features, and learn about organizations currently using Spire. Gain valuable knowledge to enhance the security of your cloud native infrastructure and protect against specific attacks.

Intro
Agenda
What is perimeter security
SPiffy
SPiffy vs Traditional PKI
Spire
Plugins
Design Considerations
Practical Uses
Envoy Proxy
Spiffy Helper
High Availability
Separate Trust Domains
Continuous Integration Continuous Delivery
Spiffy ID
OIDC Federation
Nested Spire
Spiffy Federation
Spire Roadmap
Spire 10 Features
Whos usingSpire
Next Steps
Website
Thank You