Building a Rich Workload Identity Stack with SPIFFE and OPA

What’s the highest value platform feature you can offer your Kubernetes tenants? It might be standardizing workload identity and policy controls. In this session, we will discuss desirable properties for a workload identity and present a modern architecture built on SPIFFE and cert-manager which uses Open Policy Agent (OPA) for policy decisions. This should leave you with actionable ideas to help you re-evaluate your workload identity functionality and security posture.

Event Recording

Building a Rich Workload Identity Stack with SPIFFE and OPA

Click here to watch the recording of this session. Please note that this video is only available to event participants and subscribers. You'll need to log in to watch it.

Presentation deck

Building a Rich Workload Identity Stack with SPIFFE and OPA

Click here to download the slide deck. Please note that downloads are only available for event participants and subscribers. You'll need to log in to download it.