Enlightning
Learn CNCF projects with Whitney and her lightboard ⚡️
Service Identity Authentication and Authorization Using Athenz
Service Identity Authentication and Authorization Using Athenz
Service Identity Authentication and Authorization Using Athenz
Feb 1, 2024
In this episode
Yahoo developed and open sourced a service authentication and role-based authorization system called Athenz to address the core zero trust principles. Yahoo uses Athenz to bootstrap their instances deployed in both private and public clouds with service identities in the form of short-lived x.509 certificates that allow one service to securely communicate with another. Authentication by itself is not sufficient though, authenticated clients require explicit authorization to be allowed to perform actions and Athenz enables fine-grained role-based (RBAC) access control with industry-standard mTLS bound JWT access tokens.
\(^-^)/
Guests
Henry Avetisyan
Henry Avetisyan is a Distinguished Software Engineer in the Security Platforms team at Yahoo and is one of the lead maintainers of the Athenz project. He is part of a team responsible for providing security solutions to Yahoo properties such as service authentication, role based access control, and centralized key management system.
Hosts
Whitney Lee
Whitney is a lovable goofball who enjoys understanding and using tools in the cloud native landscape. Creative and driven, Whitney recently pivoted from an art-related career to one in tech. She is a CNCF Ambassador and active in the open source community. You can catch her lightboard streaming show ⚡️ Enlightning on Tanzu.TV. And not only does she rock at tech - she literally has toured playing in the band Mutual Benefit on keyboards and vocals.