Thursday, February 18, 2021
Every organization has security requirements influenced by the technologies in use, legal regulations, internal conventions, and so on. Policy enforcement is difficult because it often affects the entire stack, requires state from multiple locations, and must evolve over time as business needs change.
Organizations have relied on wikis and tribal knowledge to document and enforce important rules that govern how their systems behave, but today, many organizations pursue "policy as code" for greater control and visibility over their stacks.
In this talk, Ash will introduce the Open Policy Agent (OPA), an open source, general-purpose policy engine used by companies like Netflix, Intuit, and CapitalOne to enforce policies across a breadth of domains such as custom applications, container-management, i.e. Kubernetes, public clouds, server management etc.
This talk will highlight how fine-grained authorization can be achieved by organizations consisting of multiple teams, massive container deployments, diverse security requirements and how all of this can be made possible without significant changes to the existing infrastructure.
Download these images to your phone and post using the Instagram app.