![CNCF [Cloud Native Computing Foundation]](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Flogos%2Finstitutions%2Fcncf-cloud-native-computing-foundation-hz.png?auto=format&h=60&ixlib=php-4.1.0&s=1e85fe5fab5e6a4ac78cf3bd240fe0f0){kind=small}
Learn how to leverage live traffic inspection for automatic authorization in Envoy through this conference talk by Pixie core maintainer Dom Del Nano. Explore how zero instrumentation observability tools like CNCF Pixie and Hubble can address the challenges of implementing authentication and authorization in modern environments. Discover techniques for retrofitting existing systems with proper AuthN/Z controls by understanding service-to-service access patterns. Examine a detailed case study demonstrating how to generate OPA policies for Envoy AuthZ using real traffic data from Pixie, enabling L7-based permission scoping. Gain insights into utilizing protocol traces and span payloads for comprehensive environment visibility and implementing least privilege access in large-scale systems.
Powering Automatic Authorization in Envoy Through Live Traffic Inspection
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Syllabus
Powering Automatic Authorization in Envoy Through Live Traffic Inspection - Dom Del Nano
Taught by
CNCF [Cloud Native Computing Foundation]
![CNCF [Cloud Native Computing Foundation]](https://ccweb.imgix.net/https%3A%2F%2Fwww.classcentral.com%2Fimages%2Flogos%2Finstitutions%2Fcncf-cloud-native-computing-foundation-hz.png?auto=format&h=40&ixlib=php-4.1.0&s=41ac519a3d7def6c705637a8ae3c06c4){kind=small}
