Overview
Learn about authentication and authorization implementation best practices for cloud-native environments in this technical conference talk. Dive into the critical security considerations highlighted by OWASP Top 10, exploring how standards like OpenID Connect and tools like Keycloak address authentication challenges. Examine the current landscape of authorization solutions, comparing popular open-source options including OPA, OpenFGA, and Topaz, while considering the ongoing standardization efforts by OpenID Foundation AuthZEN WG. Discover practical approaches for integrating these authorization tools with Keycloak and gain insights into making informed implementation decisions for secure cloud-native applications.
Syllabus
Exploring Best Practice for Implementing Authn and Authz in a Cloud-Native... - Yoshiyuki Tabata
Taught by
Linux Foundation