August 19-21 - Co-Located Events
August 21-23 - Conference
Hilton San Diego Bayfront - San Diego, CA
More information for Open Source Summit + Embedded Linux Conference North America 2019
Back To Schedule
Thursday, August 22 • 2:10pm - 2:45pm
Fine-grained Authorization in a Containerized World - Ashutosh Narkar, Styra Inc.*

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Organizations use containerized workloads to build and deploy applications. Although diverse in nature these deployments must conform to company-wide constraints around cost, security, and performance. These evolving constraints affect the entire stack and hence enforcing them becomes difficult.
In this talk, we will introduce the Open Policy Agent (OPA), an open source, general-purpose policy engine which can be used to enforce fine-grained policies in any system and at any layer of the stack.
We will see examples of authoring security policies using OPA’s purpose-built, declarative language over JSON data gathered from Kubernetes.
OPA not only provides the ability to enforce organization-specific policies by leveraging security extension points in Docker and Kubernetes such as admission controllers but also meets strict latency and availability requirements.
We will demo how custom policies can be enforced on Kubernetes objects without modifying any Kubernetes components.

avatar for Ash Narkar

Ash Narkar

Software Engineer, Open Source, Styra
Ash Narkar is a maintainer of the Open Policy Agent project. Ash has over 5 years of experience working on large-scale distributed systems. Ash is a Senior Software Engineer at Styra, Inc. working on OPA development and integrations. Previously he was a Principal Engineer at Verizon... Read More →

Thursday August 22, 2019 2:10pm - 2:45pm PDT
Sapphire P
  Cloud Infrastructure & Automation
  • Session Slides Included Yes
  • Session Recorded Yes