One of the emerging standards for cloud (native) security is OPA, the Open Policy Agent; an open source standard under the Cloud Native Computing Foundation. This talk gives an overview of what OPA can do for you and how you can write declarative policies to check your APIs, Kubernetes, or applications. It’s structured into three segments:
- Why do you want to add a continuous runtime checker to your APIs or applications and what gaps is it covering?
- How do you write declarative policies with OPA?
- What does it look like in hands-on examples against APIs, Kubernetes, and applications?