One of the emerging standards for cloud (native) security is OPA, the Open Policy Agent; an open source standard under the Cloud Native Computing Foundation.
This talk gives an overview of what OPA can do for you and how you can write declarative policies to check your APIs, Kubernetes, or applications.
This talk is structured into three segments:
1. Why do you want to add a continuous runtime checker to your APIs or applications and what gaps is it covering?
2. How do you write declarative policies with OPA?
3. What does it look like in hands-on examples against APIs, Kubernetes, and applications?
Philipp lives to demo interesting technology. Having worked as a web, infrastructure, and database engineer for over ten years, Philipp is now a developer advocate and EMEA team lead at Elastic — the company behind the Elastic Stack consisting of Elasticsearch, Kibana, Beats, and Logstash.
