No More Moats - Protecting Your Cloud Native Infrastructure with Zero Trust

Explore the concept of Zero Trust security in cloud native infrastructure through this informative conference talk. Learn how to overcome security barriers in microservices, Kubernetes, and cloud computing by implementing a Zero Trust architecture. Discover how to build a solid foundation using SPIFFE and SPIRE, and enhance security with tools like OPA and Envoy. Examine sample architectures from Fortune 500 organizations and gain insights into their implementation processes. Delve into topics such as perimeter security, SPIFFE vs. traditional PKI, Spire plugins, design considerations, and practical uses. Explore advanced concepts including Envoy Proxy integration, high availability, separate trust domains, CI/CD, OIDC federation, and nested Spire deployment. Get a glimpse of the Spire roadmap, upcoming features, and learn about organizations currently using Spire. Gain valuable knowledge to enhance the security of your cloud native infrastructure and protect against specific attacks.