Authorization and policy-as-code: A DevOps-friendly approach to Zero Trust

Lift authorization policies out of applications and manage them using GitOps practices! In this talk we’ll examine policy-as-code workflow for an application using an Open Policy Agent authorization policy and demonstrate Open Source tools that help with getting these policies published and signed.



Andrew Poland

Andrew Poland is an SRE at Aserto, a startup that has created an Open Source framework for fine-grained access control that is managed in a version controlled repository. He has over a 20 years ...