November 2022

Policy as Code with Azure API Management (APIM) and OPA

Nov 21, 2022 By Greg Brown In Styra

A common use case for Open Policy Agent (OPA) is to decouple authorization from the application. This enables policies and decisions to be managed centrally and lifecycled independently to the application. For application use cases, OPA can be integrated at the API Gateway, Service Mesh or Microservices layer or any combination of these.

Read Post

Styra

Read more about Policy as Code with Azure API Management (APIM) and OPA

Meeting PCI DSS Compliance with Styra DAS + Kubernetes

Nov 18, 2022 By Danny Baier In Styra

DevOps and platform teams are more strained than ever, and as a result, need better tools than ever. These teams are required to develop, provide access to, and secure a number of resources — while remaining good stewards to application developers. Beyond that, they are often tasked with overseeing their organization’s shift to the cloud. And as that shift takes place, DevOps teams will need to shift their compliance standards to the cloud.

Read Post

Styra

Read more about Meeting PCI DSS Compliance with Styra DAS + Kubernetes

Snowflake: SansShell: A Non-interactive Daemon for Host Management

Nov 18, 2022 By Styra In Styra

James Chacon, Principal Engineer Learn how Snowflake developed SansShell, an open source tool, to help them audit actions done on a machine, and why they turned to OPA as their authorization mechanism. This session will also cover how the team worked through policy challenges as they scaled.

View Video

Styra

Read more about Snowflake: SansShell: A Non-interactive Daemon for Host Management

Styra: Authorization: The Data Gravity Problem

Nov 18, 2022 By Styra In Styra

Tim Hinrichs, CTO, Styra, & Co-founder, OPA Learn about some of the most popular design patterns for cloud native authorization and OPA, covering the types of policies, architectures, and data dependencies for each. Also hear about how data volume, dynamicity and consistency can effectively exert gravitational pull to influence your authorization architecture.

View Video

Styra

Read more about Styra: Authorization: The Data Gravity Problem

Microservices Security: Fundamentals and Best Practices

Nov 17, 2022 By Anders Eknert In Styra

The many benefits of microservices architecture, such as improved scalability and agility, explain why organizations are migrating from the traditional monolithic architecture. However, these benefits come at the cost of increased complexity, especially regarding security. According to an O’Reilly survey, 56% of respondents considered increased complexity the greatest challenge in developing microservices.

Read Post

Styra

Read more about Microservices Security: Fundamentals and Best Practices

Styra And Okta Collaborate On New Okta Identity Integration For Enhanced Policy-as-Code Authorization

Nov 16, 2022 By Jeff Broberg and John Baldo In Styra

As organizations rapidly transform the way they build and deploy applications in pursuit of greater business agility and increased speed to market, they face significant challenges implementing effective authorization controls throughout microservices environments and the infrastructure they run on. For Identity and Access Management (IAM) teams, stitching together different data sources and transforming them for authorization purposes is complex and time-consuming.

Read Post

Styra

Read more about Styra And Okta Collaborate On New Okta Identity Integration For Enhanced Policy-as-Code Authorization

Securing AWS S3 Buckets with OPA and Object Lambda

Nov 10, 2022 By Adam Sandor In Styra

TL;DR: AWS Object Lamba can authorize requests to S3. We can create an Object Lambda that calls Open Policy Agent (OPA) to get a policy decision. This delegation allows us to implement policies using Rego and manage them in Styra Declarative Authorization Service (DAS).

Read Post

Styra

Read more about Securing AWS S3 Buckets with OPA and Object Lambda

3 OPA Trends from Cloud Native Policy Day at KubeCon + CloudNativeCon

Nov 9, 2022 By Peter O'Neill, Jr. In Styra

This year’s KubeCon + CloudNativeCon NA featured new and exciting updates from the open source community, and we also hosted our own event, Cloud Native Policy Day with OPA, hosted by Styra. At Cloud Native Policy Day, we were fortunate to host a full roster of Open Policy Agent (OPA) luminaries from leading companies to speak at our event, and we wanted to share some high-level takeaways from their talks– each of which showcased unique ways of using OPA.

Read Post

Styra

Read more about 3 OPA Trends from Cloud Native Policy Day at KubeCon + CloudNativeCon

AuthZ as a Service | Styra Run Demo

Nov 8, 2022 By Styra In Styra

Torin Sandall, VP of Open Source at Styra and co-founder of Open Policy agent answers core questions regarding best practices for turnkey SaaS authorization with a Styra Run demo.

View Video

Styra

Read more about AuthZ as a Service | Styra Run Demo

What is Policy as Code? Definition and Benefits

Nov 2, 2022 By Will Seaton In Styra

With policy as code, policies can be managed and automated using code written in a high-level language. It is a programmatic method of uniformly defining and enforcing policies throughout cloud-native applications and their infrastructure.

Read Post

Styra

Read more about What is Policy as Code? Definition and Benefits

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

November 2022

Policy as Code with Azure API Management (APIM) and OPA

Meeting PCI DSS Compliance with Styra DAS + Kubernetes

Snowflake: SansShell: A Non-interactive Daemon for Host Management

Styra: Authorization: The Data Gravity Problem

Microservices Security: Fundamentals and Best Practices

Styra And Okta Collaborate On New Okta Identity Integration For Enhanced Policy-as-Code Authorization

Securing AWS S3 Buckets with OPA and Object Lambda

3 OPA Trends from Cloud Native Policy Day at KubeCon + CloudNativeCon

AuthZ as a Service | Styra Run Demo

What is Policy as Code? Definition and Benefits

Monthly Archive

Follow Us