Explore the complexities of implementing authorization at scale in platform environments during this 10-minute conference talk from PlatformCon 2023. Delve into the challenges of abstracting security complexities in platform environments, focusing on permissions validation for API and service access. Learn how MercadoLibre, with its 10,000+ daily deployments and 12,000+ engineers, tackles the challenge of maintaining high-level API authorization while ensuring availability. Discover the importance of integrating an authorization module within an Internal Developer Platform (IDP) for enhanced auditing, traceability, and visibility for security teams. Gain insights into the challenges of implementing an AuthZ strategy in your IDP, understand the tradeoffs for large-scale adoption, and benefit from lessons learned during this journey. Presented by Antônio Malheiros, Engineering Manager at Mercado Libre, this talk offers valuable knowledge for platform engineers and security professionals dealing with authorization at scale.
Overview
Syllabus
Authorization at scale in platform environments | PlatformCon 2023
Taught by
Platform Engineering
Related Courses
-
API Security on Google Cloud's Apigee API Platform
-
API Platform Part 2: Security
-
Internal Developer Platforms in 2017: A Proto Platform Engineering Story
-
Building a Platform for Thousands of Bots in the Cloud
-
Platform Pioneers: Startups That Started with Platform Engineering
-
Why We Skipped SRE and Switched to Platform Engineering
