Evolving OpenID Connect and Observability in Keycloak - Ryan Emerson & Takashi Norimatsu
Ryan Emerson, Takashi Norimatsu
KubeCon + CloudNativeCon Europe 2025 · Session
This talk, presented by Takashi Norimatsu and Ryan Emerson, delves into the significant advancements made in Keycloak, an open-source identity and access management solution. The presentation is divided into two core segments: the evolution of OpenID Connect (OIDC) security features and substantial improvements in Keycloak's observability story. Takashi Norimatsu, a Keycloak maintainer from Hitachi, focuses on how Keycloak is adopting cutting-edge OIDC specifications to bolster security and support emerging digital identity paradigms.
AI review
This talk is a critical update for anyone serious about Keycloak deployments. It masterfully covers two crucial and often disparate domains: securing the identity layer with advanced OpenID Connect specifications like DPoP and OID4VCI, and providing comprehensive observability tools for SREs to proactively manage and troubleshoot complex Keycloak instances. The speakers, both deeply involved in Keycloak's development, delivered a direct, technical, and highly actionable session that provides immense value for both security architects and operations teams.