WG Container Identity Update
Decomposing applications into containers and microservices has many advantages but it creates a foundational problem: we need a reliable and secure way to identify all of the pieces. Kubernetes runs y …
| Talk Title | WG Container Identity Update |
| Speakers | Greg Castle (Kubernetes/GKE Security Tech Lead, Google), Clayton Coleman (Architect, Kubernetes and OpenShift, Red Hat) |
| Conference | KubeCon + CloudNativeCon North America |
| Conf Tag | |
| Location | Austin, TX, United States |
| Date | Dec 4- 8, 2017 |
| URL | Talk Page |
| Slides | Talk Slides |
| Video | |
Decomposing applications into containers and microservices has many advantages but it creates a foundational problem: we need a reliable and secure way to identify all of the pieces. Kubernetes runs your containers, but how do those containers prove who they are to other containers, services, clusters, and infrastructure? Some concepts of identity exist in Kubernetes and could be improved, and others are just outright missing. In August 2017 we started the Kubernetes Container Identity Working Group, a cross-SIG effort, with the goal of improving this situation. In this session we’ll give a short introduction to the problem space and the work that’s underway. We’ll reserve most of the time for discussion, and to hear about identity pain points, use cases, and ideas from the community.
