Open Policy Agent (OPA) is a versatile policy engine designed to handle policy enforcement across cloud infrastructures. It enables users to define and apply policies consistently across a variety of systems, helping maintain security and compliance in dynamic environments. In my view, OPA represents a significant step forward for cloud infrastructure. From experience, unless a […]
Helping Developers Build Secure APIs From the Start
Developers are already tasked with creating and managing APIs; they must also be empowered to secure them easily.
Watching the Watchers: Solving the Problem of Meta-Permissions
The move to the cloud and microservices has introduced new challenges in managing permissions. Software has been broken down into small, independently-deployable microservices, each with its own unique set of permissions. These permissions make it excruciatingly hard to ensure and track correct access. While this technological shift is challenging, it pales in comparison to the […]