Protecting your data with a Service MeshIdentity Management & Access Control in Multi-cloud, NIST 2020 [video] [slides] In this talk given at the Identity Management & Access Control in Multi-cloud conference held at NIST, I am showing a demo on how a Service Mesh and NGAC can be used to provide fine-grained access control for data. The demo showcases common use cases such as GDPR compliance and self-revoking and time-bounded access permissions.
Service Mesh and the future of networkingSoftware Crafters Barcelona, 2019 [video] [slides] In the world of microservices, we have seen this new technology, the Service Mesh emerge and grow very fast. Projects like Istio, Linkerd or Consul have become very popular and people are starting to adopt them and figuring out the new possibilities these projects bring. But beyond the individual features each of those projects provide, in this talk, we will present the core concepts of a Service Mesh, the novel things this technology brings, and the use cases it is meant to solve. We will explore how Service Meshes will push networking to the next level, opening the door to a whole new set of possibilities especially designed for this new era of multi-cloud and hybrid architectures, and giving us a mental model with which to explore and evaluate after the talk.
Next Generation Access Control for the Multi-Cloud WorldService Mesh Day San Francisco, 2019 [video] [slides] NGAC is a fundamental reworking of traditional access control into a form suited to the needs of the modern, distributed, interconnected enterprise. NGAC is based on a flexible infrastructure that can provide access control services for a number of different types of resources, accessed by a number of different types of applications and users. In this joint talk with David Ferraiolo from NIST we introduced NGAC and did a live demo showing how it can be applied to augment traditional RBAC with high level concepts xsuch as time and location in an efficient and scalable way.
Do you need a service mesh?CodeMotion Madrid, 2018 (Spanish) [video] [slides] In this talk I explored what a service mesh is and what they can do for your microservice web backends. Are the claims of observability, resiliency, and WAF features real? Are they useful during development, production, or both? Using pictures and demos, we’ll find out! This session also briefly covered how a service mesh works, giving us a mental model with which to explore and evaluate after the talk.
Standalone Neutron: How we integrated it with AbiquoOpenStack BCN 7th birthday meetup, 2017 [slides] This is a talk I gave at the OpenStack BCN 7th birthday meetup. In it I explain how we integrated a standalone Neutron with Abiquo to implement an SDN solution without a full OpenStack deployment.
Rule the cloud with Apache jcloudsApacheCon North America, 2016 [slides] Apache jclouds is an open source multi-cloud toolkit for the Java platform that gives you the freedom to create applications that are portable across clouds while giving you full control to use cloud-specific features. In this talk I explored the core concepts around jclouds and did a demo showing how the same code can be used to manage your infrastructure in different cloud providers.
The New Stack - How ‘Secure’ Your Cloud Native Can BeKubeCon + CloudNativeCon NA, 2018 On this livestream from KubeCon + CloudNativeCon NA with Liz Rice and Sarah Allen, we’re discussing the growing security focus at CNCF. In particular, how the CNCF approached security in the past, and how is it continuing to focus on it in the future. [audio] [video]
Compilando Podcast - Fundación Apache con Ignasi Barrera y el cumpleaños de TUX21st Tux anniversary, 2017 (Spanish) On this edition of Compilando Podcast I am introducing the Apache Software Foundation and the main principles behind the Apache Way, the framework used in the Foundation to create sustainable open source projects. [audio]