How to secure APIs in a microservices environment

Hello API-lovers!
It is time again for yet another online meetup event.
This time the focus will be on API security in a microservices environment.

Current mainstream technologies like Kubernetes facilitate and
encourage dynamic deployments with large numbers of interacting
agents, which constantly scale up and down depending on the load. The
sheer number of communicating agents makes mutual authentication,
authorization, traffic encryption primary security concerns.

The scale of the problem prevents addressing these concerns manually on the individual API-per-API or microservice basis, and requires automated aggregate solutions for these concerns. The mere authentication problem for dynamic granular ephemeral workloads like pods in a serverless Kubernetes becomes extremely challenging and difficult to solve.

In this event Senior cloud consultant Sergei will address the SPIFFE (Secure Production Identity Framework For Everyone) protocol and its implementations SPIRE (SPIFFE Runtime Environment), as well as Istio service mesh. We will also look into the user-to-service token-based authentication and authorization.

As always this event is free.
We hope you can and want to join us.
Welcome!