Authorization Policy Enforcement in Service Mesh - Part 2
If you're involved in deploying enterprise applications through micro-services, and managing authorization is a priority - then this talk is for you.
In it, the second in our series covering authorization in micro-services, we’ll briefly recap our previous talk about the basis of authorization in service mesh. Then, we will dig into the "main course": entitlements injection to the micro-service.
The talk will cover the reasons for injecting entitlements. We will share several use cases where this method is needed, followed by a live demonstration of these use cases.
This talk is part of our webcast series on the topic, hosted by PlainID's co-founder Gal Helemski, and Senior Solution Architect Vladi Berger.
You are more than welcome to revisit the first talk in the series by visiting https://www.brighttalk.com/webcast/18611/452538
Our next talk will focus on data filter for micro-service. Stay tuned!
In it, the second in our series covering authorization in micro-services, we’ll briefly recap our previous talk about the basis of authorization in service mesh. Then, we will dig into the "main course": entitlements injection to the micro-service.
The talk will cover the reasons for injecting entitlements. We will share several use cases where this method is needed, followed by a live demonstration of these use cases.
This talk is part of our webcast series on the topic, hosted by PlainID's co-founder Gal Helemski, and Senior Solution Architect Vladi Berger.
You are more than welcome to revisit the first talk in the series by visiting https://www.brighttalk.com/webcast/18611/452538
Our next talk will focus on data filter for micro-service. Stay tuned!
Recorded
Jan 13 2021
35 mins
Your place is confirmed,
we'll send you email reminders
we'll send you email reminders
Presented by
Gal Helemski, Co-Founder and Vladi Berger, Senior Solution Architect, PlainID
Gal Helemski, Co-Founder and Vladi Berger, Senior Solution Architect, PlainID
Presentation preview:
Network with like-minded attendees
-
![[[ session.user.profile.displayName ]]](data:image/gif;base64,R0lGODlhAQABAIAAAP7//wAAACH5BAAAAAAALAAAAAABAAEAAAICRAEAOw==)
- [[ session.user.profile.displayName ]]
- [[ session.user.profile.jobTitle ]]
- [[ session.user.profile.companyName ]]
- [[ userProfileTemplateHelper.getLocation(session.user.profile) ]]
-
- [[ card.displayName ]]
- [[ card.jobTitle ]]
- [[ card.companyName ]]
- [[ userProfileTemplateHelper.getLocation(card) ]]
- Channel
- Channel profile
-
PIAM 101: Uncovering the Ideal Partner Identity & Access Management System Aug 31 2021 4:00 pm UTC 60 mins
Kobi Gol, VP Product, and Nadav Well, Senior Director GTM, @PlainIDGenerating revenue through business partners (such as resellers, distributors, dealers, etc.) is a common strategy for businesses worldwide.
To do so, these companies deploy a Partner Portal to digitize their partner operations, facilitate placing orders or receiving marketing collaterals and training materials, and perform many other self-service activities.
Needless to say, streamlining the provision and management of Identity & Access to partner users is a prerequisite to the success of these efforts.
Our webinar will cover the challenges associated with managing partner identities, why there’s a need for a solution designed specifically to address these challenges, and what you should expect from a well-designed PIAM solution. -
PlainID 101: Policy Based Access Control (PBAC) and Intelligent Authorization Aug 25 2021 4:00 pm UTC 60 mins
Måns Håkansson, Sales Engineer, PlainIDToday’s modern enterprise needs to manage countless access rules distributed across multiple repositories, directories, and applications – making it difficult to audit and control authorizations.
PlainID offers an Authorization platform leveraging Policy Based Access Control (PBAC) that gives admins, managers and business owners an easy graphical interface to administrate Authorizations in real time, with no coding required.
Sign up for our monthly PBAC webinar and discover how PlainID's PBAC solution offers the industry's most fine grained approach to access control with:
-A Wizard Driven Interface - Our graph-based technology enables authorization policies to be easily created, read and managed
-Holistic Visibility & Analytics - PlainID provides full visibility and audit trails, helping meet compliance and regulations requirements
-Contextual, Fine-Grained Access Controls - Access is determined dynamically and in real time, based on user, resource and environmental attributes
-Impact Analysis Tools - Our tools help to investigate policies and assets, revealing who can see what and under which conditions
-and much more! -
Supporting your policy decision with External Sources (DB & RESTful APIs...) Aug 14 2021 4:00 pm UTC 60 mins
Alexander Marsh, Sales EngineerChallenge: To get all the information needed to make an intelligent authorization decision, is not a straightforward process. You need to connect to multiple data sources, different technologies, sometimes combining these sources together and sometimes making the information available locally.
If you get this wrong, you risk making the wrong authorization decisions, which impacts security, efficiency, performance and your bottom line.
In this webinar you will learn:
-How PlainID Policy Manager uses the new PlainID PIP service to connect to multiple information sources (e.g. directories, databases, REST based APIs, etc).
- Use cases such as making Identity information from remote (cloud or on-prem) sources available to a local PlainID decision engine.
- Demo including use cases of combined data from multiple sources, hierarchical data and more. -
PIAM 101: Uncovering the Ideal Partner Identity & Access Management System Recorded: Jul 20 2021 43 mins
Kobi Gol, VP Product, and Nadav Well, Senior Director GTM, @PlainIDGenerating revenue through business partners (such as resellers, distributors, dealers, etc.) is a common strategy for businesses worldwide.
To do so, these companies deploy a Partner Portal to digitize their partner operations, facilitate placing orders or receiving marketing collaterals and training materials, and perform many other self-service activities.
Needless to say, streamlining the provision and management of Identity & Access to partner users is a prerequisite to the success of these efforts.
Our webinar will cover the challenges associated with managing partner identities, why there’s a need for a solution designed specifically to address these challenges, and what you should expect from a well-designed PIAM solution. -
How PlainID provides Dynamic Access with AWS Recorded: Jul 14 2021 46 mins
James Crosby - Sales Engineer @PlainIDAWS IAM presents some common challenges when managing identities.
At PlainID we've established some best practices for overcoming these challenges, which our resident expert James Crosby will cover in this web talk.
James will show how you can use PlainID's platform for:
1) Fast and easy support of privileged and non-privileged users in AWS. Here's why it's so easy to deploy:
- No need for predefined users in AWS, no external user repository, no replication, and minimal definitions required in the cloud service provider.
- Re-use of internal authorization data, to leverage the migration process to the cloud.
2) Controlled (and improved) security
- Contextual: Dynamic, real-time access decision, based on user attributes, environmental attributes (time, location, etc.), and events.
- Controlled: Access will be provided for a controlled limited time, preventing the potential security gap.
James will go over these concepts in detail, followed by a live demonstration of how to implement them. -
Authorization Challenges and Solutions with Multi-Dimensional Access Recorded: Jun 24 2021 38 mins
Daniel Brudner, VP of Sales EngineeringThe last few years have seen an explosion of services that require a central Authorization platform to manage and enforce the different policies. Employees need more access to more platforms all while staying compliant with local regulations.
Enterprises are either struggling to ensure access to the right people at the right time or risk being non-compliant with privacy regulations.
Watch this PlainSense Webinar with Daniel Brudner, VP Sales Engineering at PlainID:
-The impact of new regulations on your approach to Authorization
-How to ensure employees have access to the services and environments they need
-How PlainID's multi-dimensional policy based access control provides different sets of permissions in run-time based on the context and service that the user is accessing
and much more! -
Policy Based Access Control in a Zero Trust Architecture Recorded: Jun 24 2021 51 mins
Daniel Brudner, VP of Sales EngineeringIn today's highly volatile security environment, the Zero Trust, CARTA, and Google Beyond Corp models are becoming standard ways to protect organizations against breaches and control access to data and business functions.
In these models the basic assumption is that identities and resources are connected through a trusted network. For this to be satisfied, both sides must be fully controlled; identities by Identity Management and Authentication Management, and resources by Authorization Management.
Daniel Brudner, VP of Sales Engineering at PlainID ensures you walk away understanding:
-Why a Zero Trust approach is becoming the only approach to IAM
-The benefits of Zero Trust and similar models and their requirements
-How PlainID Policy-Based Access Control (PBAC) supports a Zero Trust architecture
-and much more! -
PIAM 101: Uncovering the Ideal Partner Identity & Access Management System Recorded: Jun 23 2021 43 mins
Kobi Gol, VP Product, and Nadav Well, Senior Director GTM, @PlainIDGenerating revenue through business partners (such as resellers, distributors, dealers, etc.) is a common strategy for businesses worldwide.
To do so, these companies deploy a Partner Portal to digitize their partner operations, facilitate placing orders or receiving marketing collaterals and training materials, and perform many other self-service activities.
Needless to say, streamlining the provision and management of Identity & Access to partner users is a prerequisite to the success of these efforts.
Our webinar will cover the challenges associated with managing partner identities, why there’s a need for a solution designed specifically to address these challenges, and what you should expect from a well-designed PIAM solution. -
PlAM 101: Why do you need a Partner Identity and Access Management Solution Recorded: May 26 2021 46 mins
Kobi Gol, VP Product, PlainID, Nadav Well, Senior Director GTM, PlainIDA vast majority of today’s companies sell in an indirect model. These companies rely on their business partners (resellers, distributors, dealers etc) to take their offer to the market and generate their revenues. To accelerate their business, many companies use a partner portal to digitize their business collaboration. Partners access these portals so they can place orders, get marketing and training materials, and perform many other self-service activities. From a business perspective, these portals are your company’s digital revenue engines which makes the ability of your partners to access them the bedrock of your partnership.
In this webinar, we will cover the challenges associated with the management of partners’ identities, why there’s a need for a solution that is designed specifically to address these challenges, and what you should expect from a PIAM solution. -
Partner Manager Product Demo Recorded: May 26 2021 5 mins
Tal AgamPartner IAM... PlainID’s Partner Manager was designed for companies that have an indirect sales model and need a solution for Partner Identity and Access Management to their partner portal. Partner Manager lets you manage partners as organizations, and delegate admin capabilities to your partners to manage their own user's. This transforms partners’ access management to a model of shared responsibility. -
How Applications can be Integrated with PlainID's Central Authorization Engine Recorded: May 12 2021 54 mins
Daniel Brudner, VP Global Sales Engineering, PlainIDPlainSense Series: Developer API Deep Dive - How Applications can be Integrated with PlainID's Central Authorization Engine.
Are you ready to move to a modern central authorization as a service?
In this deep dive Webinar, we're going to talk about:
-How applications can be integrated with PlainID's dynamic authorization solution
-The importance of using a central authorization solution, and the advantages to developers to integrate a central reusable authorization engine.
-How the same PlainID policies can provide different authorization responses to different scenarios
-When/How to use PlainID for multiple types of authorization requests and responses
-Live demo of the PlainID authorization requests and responses. -
PlainSense: Authorization Policy Enforcement in Service Mesh - Part 4 Recorded: Apr 21 2021 31 mins
Gal Helemski, Co-Founder and Vladi Berger, VP Solutions Engineering, PlainIDThis is the fourth part of the "Authorization Policy enforcement in Service Mesh" webinar series. After covering the foundations and entitlement injection and data filtering in microservices in the first three parts, we are now going to discuss advanced use cases, such as enforcing business limits in the service mesh, usage of external resources, and even a bit of how gRPC is supported.
As usual, the webinar will include a live demonstration, and leave some time for Q&A.
We are looking forward to seeing you there. -
PlainSense: How PlainID Solves the OPA Manageability Gap Recorded: Mar 17 2021 35 mins
Daniel Brudner, VP Global Sales Engineering & Vladi Berger, VP Solutions EngineeringOpen Policy Agent, or OPA, is an open source solution that lets you take a policy-as-code approach to enforcing access controls across your technology stack.
In order to work well at scale, however, OPA policies need to be managed efficiently. Without a systematic process for deploying and monitoring OPA policies, teams run the risk of errors or delays that can undercut the benefits that OPA stands to deliver.
Fortunately, there’s a solution to OPA management challenges: PlainID. In this Webinar, we take a look at why OPA management is important and how to streamline it using PlainID Policy Manager. -
PlainSense: Authorization Policy Enforcement in Service Mesh - Part 3 Recorded: Feb 17 2021 27 mins
Gal Helemski, Co-Founder and Vladi Berger, Senior Solution Architect, PlainIDThis is the third part of the “Authorization Policy enforcement in Service Mesh” webinar series.
In the previous talks, we’ve first covered the foundations of managing authorization for micro-services, then delved into the topic of entitlement injection.
In this talk, the third in the series, we'll be discussing data filtering in the service mesh. More specifically, the ways in which the policy decision sidecar can support your micro-service in enforcing access with a large amount of data.
The series is hosted by PlainID's co-founder Gal Helemski, and by our Senior Solution Architect Vladi Berger. As before, this talk will be accompanied by a live demonstration, and there’ll be time for Q&A.
If you haven’t yet, do feel free to check out the first two talks in the series, available below via the list of related talks. -
Authorization Policy Enforcement in Service Mesh - Part 2 Recorded: Jan 13 2021 35 mins
Gal Helemski, Co-Founder and Vladi Berger, Senior Solution Architect, PlainIDIf you're involved in deploying enterprise applications through micro-services, and managing authorization is a priority - then this talk is for you.
In it, the second in our series covering authorization in micro-services, we’ll briefly recap our previous talk about the basis of authorization in service mesh. Then, we will dig into the "main course": entitlements injection to the micro-service.
The talk will cover the reasons for injecting entitlements. We will share several use cases where this method is needed, followed by a live demonstration of these use cases.
This talk is part of our webcast series on the topic, hosted by PlainID's co-founder Gal Helemski, and Senior Solution Architect Vladi Berger.
You are more than welcome to revisit the first talk in the series by visiting https://www.brighttalk.com/webcast/18611/452538
Our next talk will focus on data filter for micro-service. Stay tuned! -
Top Trends in IAM: Focus on Intelligent Authorization Recorded: Dec 9 2020 58 mins
Tom Malta, Navy Federal Credit Union; Martin Kuppinger, Kuppinger Cole; Rajesh Radhakrishnan, Deloitte; Gal Helemski, PlainIDWhat is the best way for a business to provide seamless and secure access to a wide range of services and applications?
Answering this question in an increasingly complex digital environment requires a paradigm shift for IAM.
At the nerve center of a system that can manage authorization for a variety of user types, while encompassing the full spectrum of access management, IGA, consent, privacy and other components, is a concept called Intelligent Authorization.
In this web talk, industry experts from Navy Federal Credit Union, Deloitte and KuppingerCole, will join our very own Gal Helemski and Sam Adler, to discuss Top Trends in IAM: Focus on Intelligent Authorization. -
Authorization challenges in the Consumer IAM (CIAM) space Recorded: Dec 7 2020 55 mins
Anthony Bolante (Deloitte), Daniel Brudner (PlainID, Sam Adler (PlainIDTo say the last year has posed a 'challenge' to Consumer IAM management would be a massive understatement.
Many IAM managers have only now been exposed to the flaws in their Role-Based access control models, and are looking to more robust solutions to keep them secure in 2021.
That's why we're excited to have Alexander Bolante, IAM risk expert and managing director at Deloitte join us for a discussion on the evolution of CIAM with Daniel Brudner, VP of Sales Engineering at PlainID.
Watch to learn:
-What organizations need to pay attention to when moving to a modern IAM approach.
-How central dynamic authorization can help organizations with compliance and security -requirements.
-The advantages of a Policy Based approach to access control and how organizations can get started implementing it. -
2-1 The Consumer IAM (CIAM) space and the Authorization challenges that we see Recorded: Dec 2 2020 56 mins
Anthony Bolante (Deloitte), Daniel Brudner (PlainID, Sam Adler (PlainIDTo say the last year has posed a 'challenge' to consumer IAM management would be a massive understatement.
Many IAM managers have only now been exposed to the flaws in their Role-Based access control models, and are looking to more robust solutions to keep them secure in 2021.
That's why we're excited to have Alexander Bolante, IAM risk expert and managing director at Deloitte join us for a discussion on the evolution of CIAM with Daniel Brudner, VP of Sales Engineering at PlainID.
Watch to learn:
What organizations need to pay attention to when moving to a modern IAM approach.
How central dynamic authorization can help organizations with compliance and security requirements.
The advantages of a Policy Based approach to access control and how organizations can get started implementing it. -
Policy Manager in a Modern IAM Architecture Recorded: Dec 1 2020 62 mins
Sam Tang, EY and Daniel Brudner, PlainIDHow can PlainID's Policy Manager fit into a modern Identity & Access Management (IAM) architecture when there are pieces missing from current IAM solutions? More importantly, is it possible to tackle the challenges that arise with IAM solutions?
PlainID's Policy Manager and Policy Based Access Control (PBAC) solution improves productivity with a runtime decision engine that creates cohesive and consistent policies across organizations.
Watch this session with Sam Tang, Managing Director of Cyber Security, EY, and Daniel Brudner, PlainID's VP of Global Sales Engineering to learn:
-The efficiency of the PlainID Authorization Lifecycle
-How PlainID is the main decision point for access among different platforms such as Okta, Sailpoint, Ping, AWS etc.
-How PlainID fits into different modern architectures like Sidecar and Kubernetes
-The Policy Based Access Control Process: how PlainID converts logical business policy into IAM policy
-How organizations use and benefit from PlainID's platform
and much more! -
Authorization Policy Enforcement in Service Mesh Recorded: Nov 24 2020 45 mins
Gal Helemski, Co-Founder and Vladi Berger, Senior Solution Architect, PlainIDIf you're involved in deploying enterprise applications through micro-services and managing authorization is on your mind - this talk is for you. In it, PlainID's senior solution architect Vladi Berger will cover the main challenges in enforcing authorization for micro-services and present approaches for addressing them effectively. Mr. Berger will further showcase PlainID's architecture, and demonstrate it live, using real-world examples based on PlainID's solution for a FinTech company, who required a modern solution for multi-channel access management as part of its micro-services architecture.
The talk would comprise three parts:
Part 1 - The foundations
Part 2 - Entitlements injection to microservice
Part 3 - Data filter to microservice
The Authorization Company
PlainID Inc. is the recognized leader of Policy-Based Access Control (PBAC). Our simple, straightforward solution to authorization management enables organizations to govern, administer and control who can access assets across their digital landscape.
![[[ webcast.title ]]](/resources/images/diamond-100x75.jpg?v=d469f798113889709a5fcd32296a51d64cf4cdc8)
Successfully added emails: 0
Remove all
- Title: Authorization Policy Enforcement in Service Mesh - Part 2
- Live at: Jan 13 2021 5:00 pm
- Presented by: Gal Helemski, Co-Founder and Vladi Berger, Senior Solution Architect, PlainID
- From: