Zero Trust Workload Identity in Kubernetes
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore the implementation of Zero Trust principles in Kubernetes workload identity through this informative conference talk. Delve into the challenges of traditional authorization methods using passwords and secret keys, and discover a simpler solution that ties authorization directly to the workload's identity. Learn about SIFFE (the specification) and Spire (the implementation) as tools for achieving Zero Trust systems. Gain insights into implementing explicit authorization between services across a service mesh in Kubernetes using workload identity. Examine centralized policy enforcement techniques and explore integrations with emerging projects like Keylime for hardware attestation-based identity and Sigstore for identity during software builds. Understand how this approach can enhance security, simplify deployment, and reduce the risk of breaches in Kubernetes environments.
Syllabus
Zero Trust Workload Identity in Kubernetes - Michael Peters, Red Hat
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Introducción a SPIFFE y SPIRE - Autenticando servicios nativos de la nubeEkoparty Security Conference via YouTube Road to SLSA3 - Non-falsifiable Provenance in Tekton with SPIFFE/SPIRE
Linux Foundation via YouTube Zero-Trust Supply Chain Security with Sigstore, TektonCD and SPIFFE
Linux Foundation via YouTube How SPIFFE Helps Istio in Service Mesh Federation
Linux Foundation via YouTube Trust No System: The Unsettling Reality of Zero Trust
CNCF [Cloud Native Computing Foundation] via YouTube