Kubernetes Security with Identity & OIDC

May 29, 2023 • 38 min watch

Overview

About this video

Marc Boorshtein, CTO of Tremolo Security, explains why long-lived kubeconfig certificates are an anti-pattern, how OIDC and impersonation deliver revocable cluster access, and how workflow identity via OIDC JWTs replaces static service account tokens in CI/CD pipelines.

Technologies featured in this video

Meet the Cast

David Flanagan

David Flanagan

@rawkode

Laura Santamaria

Laura Santamaria

@nimbinatus

Marc Boorshtein

Marc Boorshtein

@marc-boorshtein

Weekly Cloud Native insights

Stay ahead in cloud native

Tutorials, deep dives, and curated events. No fluff.

Comments

More from Cloud Native Compass

View all 23 episodes

Navigating Kairos: Immutable Operating Systems with a Cloud Native Twist

Navigating Kairos: Immutable Operating Systems with a Cloud Native Twist

Flatcar Linux: A Modern OS for the Always-On Infrastructure

Flatcar Linux: A Modern OS for the Always-On Infrastructure

Platform Engineering: Asking "Why"? with Evelyn Osman

Platform Engineering: Asking "Why"? with Evelyn Osman

AI-Augmented Programming

AI-Augmented Programming

Observability for Developers: What You Need to Know?

Observability for Developers: What You Need to Know?

The Future of Sustainability in Open Source

The Future of Sustainability in Open Source

More about Kubernetes

View all 171 videos

Navigating Kairos: Immutable Operating Systems with a Cloud Native Twist

Navigating Kairos: Immutable Operating Systems with a Cloud Native Twist

Kubernetes Security Scanning: The 4 Tools You Actually Need

Kubernetes Security Scanning: The 4 Tools You Actually Need

Kubernetes Disaster Recovery

Kubernetes Disaster Recovery

More about OpenUnison

View technology

Developing & Building Open Source with Dagger

Developing & Building Open Source with Dagger

Hands-on Introduction to OpenUnison

Hands-on Introduction to OpenUnison