Army of Proxies! How Netflix scales identity based zero trust...
Grant Callaghan
BSidesSF 2024 · Day 1
This talk, presented by Grant Callaghan, a Staff Security Software Engineer at Netflix, delves into the intricate architecture and operational strategies Netflix employs to scale **identity-based zero trust** across its vast and evolving ecosystem. Callaghan, a member of Netflix's Access Control and Engineering team since 2018, highlights that scaling in this context is less about requests per second (RPS) and more about scaling human operations to minimize friction on business efforts while effectively balancing risk and speed. The presentation outlines a collaborative approach involving various platform teams to adopt, deploy, and operate zero trust architectural components.
AI review
This talk provides a robust, technically detailed overview of how Netflix has operationalized and scaled identity-based Zero Trust architecture. Moving beyond theoretical concepts, the speaker details the integration of various components, from API gateways and identity providers to service meshes and automated control planes, to manage access for a diverse and rapidly evolving workforce. The emphasis on scaling human operations and embedding security into developer workflows, rather than just network throughput, offers valuable insights for large enterprises.