How do you control "who can do what" and "what can do what" across the stack? How do you enforce authz, admission control, and risk management policies in your microservices, orchestrators, and CI/CD systems? How do you implement low-latency policy enforcement in the polyglot environments that your company depends on?
In this talk, Tim will introduce the Open Policy Agent (OPA) project. OPA is an open source policy engine used by companies like Netflix, Intuit, Goldman Sachs, TripAdvisor, T-Mobile, and Capital One to enforce rules consistently, up and down the stack. Tim will showcase OPA features and include demos of authz and admission control policies. Finally, he will show how to integrate your services with OPA and provide examples of integrations for projects like Kubernetes, Istio, and more.
Attendees can expect to walk away with fresh ideas about how to achieve fine-grained control throughout their systems.