Microservice Authentication and Authorization | Nic Jackson
Nic Jackson (HashiCorp) |
In this talk we will look at how you can secure your microservices, we will identify the difference between authentication and authorization and why both are required. We will investigate some common patterns for request validation, including HMAC and JWT to avoid the confused deputy problem, and also how you can manage and secure secret information. Finally, we will see how we can leverage tools like the open source HashiCorp Vault as well as features from cloud providers like AWS and GCP, to keep your systems and users secure. Takeaways:
- Using JWT for Authz
- How to implement two factor authentication into your applications
- Securing microservice secrets
- Implementing TLS and MTLS
- Securing database access, don’t be the next Equifax
- Encryption in transit, secure your data
- Building a secure secret access policy
Join us at the next DevOpsCon:
The Conference for Continuous Delivery, Microservices, Containers, Cloud & Lean Business
Follow us on Twitter:
Like us on Facebook:
4 months ago 00:39:22 1
10 months ago 00:34:01 1
10 months ago 01:05:43 1
1 year ago 00:08:02 30
1 year ago 00:24:10 9
2 years ago 00:29:40 20
2 years ago 00:19:43 4
2 years ago 03:20:06 20
2 years ago 00:20:06 10
![GOLANG Video Conferencing And Live Streaming - [ PART 5 ] - Full Stack Project #pion #webRTC](https://sun9-32.userapi.com/hibTR5YwtqSgQjGp3enm3-4oLnYp6H8wH1LLxA/cJGoCKXadQc.jpg)
2 years ago 00:50:26 14
3 years ago 01:08:51 1
3 years ago 00:53:21 1
3 years ago 00:27:36 1
6 years ago 00:53:38 1
