cncf / tag-security

🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
https://tag-security.cncf.io
Other
2.06k stars 514 forks source link

Hexa Policy Orchestration overview #941

Closed ggebel closed 1 year ago

ggebel commented 2 years ago

Title: Hexa Policy Orchestration overview (referred to Security TAG by TOC after sandbox review)

Speakers: Gerry Gebel/@ggebel and Mark Callahan/@MDCinMT

Description: Hexa Policy Orchestration seeks to make managing distributed identity and access across multiple clouds and across the stack consistent, secure and scalable. Hexa Policy Orchestration is open-source software that manages access policy for applications and data running on multiple clouds and across your tech stack. Hexa translates and orchestrates Identity Query Language (IDQL) policies into the native policies for your application, platform, data, and network systems to unify access policy management.

IDQL is a new Policy Orchestration format that defines access control policies in a declarative way. IDQL policies are distributed and orchestrated, via Hexa, across heterogeneous systems at the application, platform, data, and network planes. Use IDQL to abstract policy from the underlying access control system; (e.g. AWS Identity, GCP BeyondCorp Identity, Snowflake, Versa Networks, F5 Networks Volterra, Nginx and others).

Time: 30 minutes for presentation, demo and Q&A

Availability: Any Security TAG meeting from June 29 onward, but preferably before the next TOC sandbox review on July 26

TO DO

dims commented 2 years ago

Folks,

Please do leave some detailed notes / recommendations for the TOC in this issue or an email to the TOC mailing list (public or private whichever feels right).

thanks, Dims

ashutosh-narkar commented 2 years ago

@ggebel just confirming that y'all will be presenting tomorrow at the Security TAG meeting.

ggebel commented 2 years ago

@ashutosh-narkar confirmed, see you on the call

ggebel commented 2 years ago

Hi @dims - In case you haven't seen it already, here is the recording of our presentation/demo/Q&A

https://youtu.be/N3rYDZNvipo

stale[bot] commented 2 years ago

This issue has been automatically marked as inactive because it has not had recent activity.

anvega commented 1 year ago

Presentation took place already.