Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Designing Zero Trust Systems
Search
Posedio
PRO
February 25, 2025
Programming
0
18
Designing Zero Trust Systems
Posedio
PRO
February 25, 2025
Tweet
Share
More Decks by Posedio
See All by Posedio
Lost Jobs, Zombie Tasks and AirFlow Nightmares: A debugging Deep Dive
posedio
PRO
0
14
Platform user's remorse
posedio
PRO
0
120
Go KonMari on your SQL
posedio
PRO
0
19
Rolling out digital receipts on GCP infrastructure
posedio
PRO
0
14
API First revisited - where did we take a left turn?
posedio
PRO
0
59
Solving Multi-Tenant Challenges: Apache Airflow and Cloud Composer in Action
posedio
PRO
0
44
Contract testing with Java
posedio
PRO
0
39
Flink in two nutshells
posedio
PRO
0
45
Taming the Codebase: Strategies for Refactoring Legacy Code
posedio
PRO
0
37
Other Decks in Programming
See All in Programming
GitHub Copilot for Azureを使い倒したい
ymd65536
1
360
医療系ソフトウェアのAI駆動開発
koukimiura
1
150
Modern Angular with Signals and Signal Store:New Rules for Your Architecture @jax2025 in Mainz, Germany
manfredsteyer
PRO
0
110
flutter_kaigi_mini_4.pdf
nobu74658
0
160
ビカム・ア・コパイロット
ymd65536
1
170
OpenTelemetry + LLM = OpenLLMetry!?
yunosukey
2
200
Proxmoxをまとめて管理できるコンソール作ってみました
karugamo
0
230
エンジニア向けCursor勉強会 @ SmartHR
yukisnow1823
3
13k
AI時代のリアーキテクチャ戦略 / Re-architecture Strategy in the AI Era
dachi023
0
160
「MCPを使ってる人」が より詳しくなるための解説
yamaguchidesu
0
260
SwiftDataのカスタムデータストアを試してみた
1mash0
0
150
REALITY コマンド作成チュートリアル
nishiuriraku
0
120
Featured
See All Featured
Why You Should Never Use an ORM
jnunemaker
PRO
56
9.4k
What’s in a name? Adding method to the madness
productmarketing
PRO
22
3.4k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
34
3k
Chrome DevTools: State of the Union 2024 - Debugging React & Beyond
addyosmani
5
620
Building Applications with DynamoDB
mza
94
6.4k
No one is an island. Learnings from fostering a developers community.
thoeni
21
3.3k
Rails Girls Zürich Keynote
gr2m
94
13k
Building Flexible Design Systems
yeseniaperezcruz
329
39k
We Have a Design System, Now What?
morganepeng
52
7.6k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
48
5.4k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
180
53k
The Web Performance Landscape in 2024 [PerfNow 2024]
tammyeverts
5
590
Transcript
Designing Zero Trust Systems Damjan Gjurovski, CTO of Posedio Cloud
Native Meetup Linz 25.02.2025
Do it RIGHT. Hello 2 • Head of Technology of
Posedio • Work on Software/Data/Platform Engineering • Largest online transaction processing engine in AT • Largest GCP developer platform in AT • Enjoys building secure systems • How can we build secure systems?
Do it RIGHT. Security, the old way 01
Do it RIGHT. The good old days 4
Do it RIGHT. Becoming useful 5
Do it RIGHT. What about a nice frontend? 6
Do it RIGHT. Admin access needed 7
Do it RIGHT. Load balancing to the rescue 8
Do it RIGHT. Who can access our services 9
Do it RIGHT. Let’s keep things private 10
Do it RIGHT. The crown jewels 11
Do it RIGHT. Compartmentalisation is the solution 12
Do it RIGHT. Or is it? 13
Do it RIGHT. What is security? 02
Do it RIGHT. The glossary 15 CIA triad
Do it RIGHT. The glossary 16 Triple A
Do it RIGHT. The glossary 17 Root of trust
Do it RIGHT. The glossary 18 Identity
Do it RIGHT. How can we secure our systems 03
Do it RIGHT. IdP - Keycloak 20
Do it RIGHT. Workload Identity – SPIFFIE/SPIRE 21
Do it RIGHT. Policy - OPA 22
Do it RIGHT. Permissions - SpiceDB 23
Do it RIGHT. Secrets - Vault 24
Do it RIGHT. mTLS - ISTIO 25
Do it RIGHT. Image scanning - Trivy 26
Do it RIGHT. Image signing – cosign (honourable mention –
chainguard) 27
Do it RIGHT. Threat detection - Falco 28
Do it RIGHT. The Application 29
Do it RIGHT. The Platform 30
Do it RIGHT. THANK YOU! CONTACT US: Weyringergasse 1-3/DG 1040
Wien www.posedio.com
[email protected]
31