Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Designing Zero Trust Systems
Search
Posedio
PRO
February 25, 2025
Programming
0
23
Designing Zero Trust Systems
Posedio
PRO
February 25, 2025
Tweet
Share
More Decks by Posedio
See All by Posedio
Modern data observability
posedio
PRO
0
1
Lost Jobs, Zombie Tasks and AirFlow Nightmares: A debugging Deep Dive
posedio
PRO
0
20
Platform user's remorse
posedio
PRO
0
120
Go KonMari on your SQL
posedio
PRO
0
21
Rolling out digital receipts on GCP infrastructure
posedio
PRO
0
16
API First revisited - where did we take a left turn?
posedio
PRO
0
62
Solving Multi-Tenant Challenges: Apache Airflow and Cloud Composer in Action
posedio
PRO
0
52
Contract testing with Java
posedio
PRO
0
43
Flink in two nutshells
posedio
PRO
0
57
Other Decks in Programming
See All in Programming
NEWT Backend Evolution
xpromx
1
160
リッチエディターを安全に開発・運用するために
unachang113
1
270
SwiftでMCPサーバーを作ろう!
giginet
PRO
2
210
AIのメモリー
watany
11
1.1k
新しいモバイルアプリ勉強会(仮)について
uetyo
1
190
バイブスあるコーディングで ~PHP~ 便利ツールをつくるプラクティス
uzulla
1
300
Strands Agents で実現する名刺解析アーキテクチャ
omiya0555
1
110
Jakarta EE Meets AI
ivargrimstad
0
380
The Niche of CDK Grant オブジェクトって何者?/the-niche-of-cdk-what-isgrant-object
hassaku63
1
710
Go製CLIツールをnpmで配布するには
syumai
0
760
プロダクトという一杯を作る - プロダクトチームが味の責任を持つまでの煮込み奮闘記
hiliteeternal
0
290
Gemini CLI のはじめ方
ttnyt8701
1
110
Featured
See All Featured
Designing Experiences People Love
moore
142
24k
Visualization
eitanlees
146
16k
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.4k
jQuery: Nuts, Bolts and Bling
dougneiner
63
7.8k
Fight the Zombie Pattern Library - RWD Summit 2016
marcelosomers
234
17k
How STYLIGHT went responsive
nonsquared
100
5.7k
StorybookのUI Testing Handbookを読んだ
zakiyama
30
5.9k
Building Flexible Design Systems
yeseniaperezcruz
328
39k
The Illustrated Children's Guide to Kubernetes
chrisshort
48
50k
Imperfection Machines: The Place of Print at Facebook
scottboms
267
13k
Designing Dashboards & Data Visualisations in Web Apps
destraynor
231
53k
Embracing the Ebb and Flow
colly
86
4.8k
Transcript
Designing Zero Trust Systems Damjan Gjurovski, CTO of Posedio Cloud
Native Meetup Linz 25.02.2025
Do it RIGHT. Hello 2 • Head of Technology of
Posedio • Work on Software/Data/Platform Engineering • Largest online transaction processing engine in AT • Largest GCP developer platform in AT • Enjoys building secure systems • How can we build secure systems?
Do it RIGHT. Security, the old way 01
Do it RIGHT. The good old days 4
Do it RIGHT. Becoming useful 5
Do it RIGHT. What about a nice frontend? 6
Do it RIGHT. Admin access needed 7
Do it RIGHT. Load balancing to the rescue 8
Do it RIGHT. Who can access our services 9
Do it RIGHT. Let’s keep things private 10
Do it RIGHT. The crown jewels 11
Do it RIGHT. Compartmentalisation is the solution 12
Do it RIGHT. Or is it? 13
Do it RIGHT. What is security? 02
Do it RIGHT. The glossary 15 CIA triad
Do it RIGHT. The glossary 16 Triple A
Do it RIGHT. The glossary 17 Root of trust
Do it RIGHT. The glossary 18 Identity
Do it RIGHT. How can we secure our systems 03
Do it RIGHT. IdP - Keycloak 20
Do it RIGHT. Workload Identity – SPIFFIE/SPIRE 21
Do it RIGHT. Policy - OPA 22
Do it RIGHT. Permissions - SpiceDB 23
Do it RIGHT. Secrets - Vault 24
Do it RIGHT. mTLS - ISTIO 25
Do it RIGHT. Image scanning - Trivy 26
Do it RIGHT. Image signing – cosign (honourable mention –
chainguard) 27
Do it RIGHT. Threat detection - Falco 28
Do it RIGHT. The Application 29
Do it RIGHT. The Platform 30
Do it RIGHT. THANK YOU! CONTACT US: Weyringergasse 1-3/DG 1040
Wien www.posedio.com
[email protected]
31