Building Modern Access-Control for Cloud Applications with Or Weis | SnykLIVE Recording
With the growing complexity of modern applications and microservices based architectures getting access-control right has become a huge ongoing pain-point, as companies find themselves reimplementing access-control over and over.
Solutions are found in the new tool sets of policy as code, as well as the 5 best practices and open-source tools (e.g. OPA, OPAL, Zanzibar) we can use to face the challenge.
00:00:00 - Stream Start
00:05:07 - Intros
00:12:50 - Building Modern Access Control - Start
00:20:47 - What are some examples of Security & Compliance
00:25:20 - New Way of Thinking About Permissions
00:28:01 - The IAM Waterfall
00:30:12 - Is Relying on Open Source Software a Recipe for Disaster?
00:37:05 - How Do You Pronounce JWT?
00:38:03 - Where Do You Store JWTs in Web Applications?
00:42:29 - 5 Best Practices
00:53:37 - Engines and Camps
00:55:00 - Open Policy Agent (OPA)
01:00:02 - OPAL
01:01:39 - Demo
01:14:33 - Stream End
Make sure to subscribe so you don’t miss new content!
Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.
Learn more about Snyk http://bit.ly/snyk-io