Dynamic and Context-Aware Security Policies for the Cloud Using Service Mesh

Explore dynamic and context-aware security policies for cloud environments using service mesh in this 36-minute conference talk by IBM Thomas J Watson Research Center researchers Shriti Priya and Julian James Stephen. Delve into the challenges of access and admission control policies in cloud-based microservice applications and learn about an innovative access control system design. Discover how to formulate and evaluate dynamic cloud security policies by leveraging context from service mesh, monitoring tools, and detection systems. Gain insights into collecting, curating, and correlating information from various sources, including service-to-service calls, database interactions, and other relevant signals. Understand the implementation of temporal and behavioral policies using AI to identify policy parameter thresholds. Learn about policy expression and evaluation using Open Policy Agent (OPA) and enforcement through service mesh. Explore practical applications such as building fine-grained authorization policies, enforcing NIST controls, and administering access limits to sensitive data in cloud environments.