Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CyberArk: Application Identity in Cloud Foundry and Kubernetes, from the Perspective of an External Service #6

Closed
izgeri opened this issue Apr 6, 2018 · 5 comments
Closed

CyberArk: Application Identity in Cloud Foundry and Kubernetes, from the Perspective of an External Service #6

izgeri opened this issue Apr 6, 2018 · 5 comments
Labels
presentation SIG-Security Presentations usecase-presentation Label for usecase related presentations

Comments

@izgeri
Copy link
Contributor

izgeri commented Apr 6, 2018

CyberArk Conjur recently built two new integrations with Pivotal Cloud Foundry / Cloud Foundry and OpenShift (RedHat's implementation of Kubernetes). Through that process, we learned a lot about how applications are uniquely identified in these two systems, and how external services might leverage the internal app identities to reliably privilege appropriate applications to utilize their services.

I am proposing to speak to the SAFE working group about the current state of each of these systems with respect to application identity, and some lessons learned about potential improvements that could be made.
@duglin
Copy link

duglin commented Apr 6, 2018 via email

@izgeri
Copy link
Contributor Author

izgeri commented Apr 6, 2018

For one of these integrations we used the OSB API, but I wasn't actually thinking I'd talk much about that. I'm actually more interested in the emerging standards around certificate-based app identity, such as the SPIFFE standard and CF instance identity.

@dshaw dshaw added the usecase-presentation Label for usecase related presentations label Apr 13, 2018
@dshaw
Copy link
Collaborator

dshaw commented May 25, 2018

@izgeri Scheduled for 2018-06-08

@izgeri
Copy link
Contributor Author

izgeri commented Jun 8, 2018

Slides are available here

@izgeri izgeri closed this as completed Jun 8, 2018
@dshaw
Copy link
Collaborator

dshaw commented Oct 25, 2018

Meeting notes: https://docs.google.com/document/d/10iJ3wA7uVI6JMyvIv9qXdxdLCyQeS-djYsTqL_JG3d0/edit

Meeting video recording:
https://www.dropbox.com/s/rmr3231e26zue4j/zoom_0.mp4?dl=0

@ultrasaurus ultrasaurus changed the title Talk proposal: Application Identity in Cloud Foundry and Kubernetes, from the Perspective of an External Service CyberArk: Application Identity in Cloud Foundry and Kubernetes, from the Perspective of an External Service Dec 2, 2018
@lumjjb lumjjb added the presentation SIG-Security Presentations label Dec 13, 2019
lumjjb pushed a commit that referenced this issue Apr 17, 2021
Merge pull request #6 from lumjjb/feat/contributors-page
bc54edb 
Clean up contributor page
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
presentation SIG-Security Presentations usecase-presentation Label for usecase related presentations
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@dshaw @duglin @lumjjb @izgeri