Attending this event?
September 25-26, 2023
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for IstioCon Virtual 2023 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in EDT. To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above “Filter by Date.”

Back To Schedule
Monday, September 25 • 11:55am - 12:25pm
Fine-Grained Policies RBAC with NGAC - José Carlos Chávez, Tetrate

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Log in to leave feedback.
  1. The fine-grained nature of cloud native deployments requires fine-grained authorizations at each component. However, this may require security policies to be centrally defined and the configurations reflecting them to be defined in each microservice to enable uniform, consistent enforcement across the entire system which is hard to model and maintain. Next-Generation Access Control (NGAC), developed by the U.S. National Institute of Standards and Technology (NIST), enables a systematic, policy-consistent approach to access control, granting or denying users administrative capabilities with a high level of granularity. It is based on the assumption that you can model the system you want to protect in a graph that represents the resources and your organizational structure, in a way that has meaning to you and that adheres to your organization semantics. This talk will offer an overview of NGAC and its advantages over more traditional RBAC and ABAC in the context of Zero Trust.

avatar for Jose Carlos Chavez

Jose Carlos Chavez

Software Engineer, Tetrate
José Carlos Chávez is a Software Engineer at Tetrate.io, an OWASP Coraza co-leader, a Zipkin core team member and a Mathematics student at the University of Barcelona. He enjoys working in Security, compiling to WASM, designing APIs and building distributed systems. While not working... Read More →

Monday September 25, 2023 11:55am - 12:25pm EDT
  Case Studies