Zero-Trust Architecture (ZTA) is of course nothing new, but the maturation and proliferation of cloud-native platforms have made new pain-points apparent. Secret sprawl, ephemeral workloads and services, the recent focus on machine-identities and AI agents. There are emergent standards being worked on right now to tackle these issues. In many ways we are converging towards a pattern of managing workload trust. This session provides a snapshot of the rapidly evolving cloud-native security landscape, focusing specifically on the emerging patterns essential for building robust workload trust. Signicat’s journey with our new Digital Trust Platform (GCP) will be used as a case-study and jumping off point. I will navigate key advancements and standards; Workload Identity in Secure Multi-Cloud Environments (WIMSE), SPIFFE/SPIRE, as well as Transaction Tokens and Token-Based Access Control (TBAC) in general. We will also swing by NIST drafts SP 800-228 & 1800-35.
Attendees will leave with a clear understanding of these emergent patterns, the problems they solve, and their practical implications for designing, deploying, and operating secure cloud-native systems. This talk is ideal for cloud/security architects, tech leads, and developers grappling with ZTA cloud-native platforms.
High impact blog posts and eBooks on API business models, and tech advice
Connect with market leading platform creators at our events
Join a helpful community of API practitioners
Can't make it to the event? Signup to the Nordic APIs newsletter for quality content. High impact blog posts on API business models and tech advice.
By clicking below, you agree that we process your information per the terms in our Privacy Policy.
Ranked #1 API blog on the web
Become a part of our global community of API practitioners and enthusiasts. Share your insights on the blog, speak at an event or exhibit at our conferences and create new business relationships with decision makers and top influencers responsible for API solutions.
