Last week, I had the privilege of attending #KubeCon 2025
Seeing #SPIFFE and #SPIRE take a front seat in conversations, driven by #AgenticAI, was mind-blowing.
Here are a few thoughts and reflections from the event:
https://blog.gitguardian.com/kubecon-2025

#KubeCon 2025
Anchoring Trust in the Age of AI: Identities Across Humans, Machines, and Models - Yuan Tang and Anjali Telang

KServe is a CNCF incubator project

https://kserve.github.io/website/

#SPIFFE #SPIRE #Keycloak

🎉 Self-Hosted Human and Machine #Identity in #Keycloak 🎉

Our 26.4 release brings great updates with #passkeys and the latest security best practices for #OpenID Connect with #FAPI and DPoP.
Automatically roll out and rotate client credentials with #spiffe, #spire and #Kubernetes service account tokens.

Start your #sovereign journey and read all in our latest #cncf blog post:
https://www.cncf.io/blog/2025/11/07/self-hosted-human-and-machine-identities-in-keycloak-26-4/

#Keycloak 26.4 is out with a lot of new capabilities for your self-hosted #iam:

* #Passkeys
* Client Authentication to use #SPIFFE or #Kubernetes service account tokens
* Simplified deployments across multiple availability zones to boost availability.
* #FAPI 2 Final
* #DPoP: The OAuth 2.0 Demonstrating Proof-of-Possession at the Application Layer (DPoP) is now fully supported.

Read more the full release announcement: https://www.keycloak.org/2025/09/keycloak-2640-released

Zero Trust в облаке: практическое руководство

В этом руководстве рассматривается современный подход к безопасности — Zero Trust Network Access (ZTNA) — и показано, как его реализовать с помощью SPIFFE/SPIRE и OpenID Connect (OIDC). Материала много, по этому я предоставлю его в сухой форме. В основе ZTNA лежит принцип «никогда не доверяй, всегда проверяй»: каждый запрос на доступ считается потенциально небезопасным и проходит обязательную аутентификацию и авторизацию. По сравнению с классическими VPN-сетями решения ZTNA на базе SPIFFE/SPIRE и OIDC: Ускоряют процедуру аутентификации в 20–80 раз, Повышают производительность на 46–64 %, В облаках AWS и Google Cloud позволяют снизить задержки до 50–100 мс вместо привычных 2–4 с.

https://habr.com/ru/articles/917440/

#zerotrust #spiffe #spire #oidc #kubernetes #aws #gcp #ztna #security

Seriously?

#Spire #SPIFFE

#CNCF wasmCloud is adopting SPIFFE as the standard for introducing workload identity that spans on-prem, edges + clouds. #SPIFFE adoption is growing and is a perfect fit for WebAssembly workload identity. Read Joonas Bergius's post for details ✨

https://wasmcloud.com/blog/2025-03-04-why-were-adopting-spiffe-for-webassembly-workload-identity/

Time to get hands-on at #CNSCon
Tutorial: Demystifying and Enabling Workload Identity Across the Cloud Native Ecosystem - from Andrew Block, Anjali Telang, and Trilok Geer, Red Hat; and Mariusz Sabath and Maia Iyer, IBM

#Spiffe #Spire

🚀 Excited to share my overview & and demo on
“sharing secrets across clusters with SPIFFE federation” ✨

I presented it at sig-spire on Oct 26, 2023.

Dive in and explore! 🛠️:
https://vimeo.com/v0lkan/vsecm-spire

#VSecM #SPIFFE #SPIRE #VMware #TechTalk

Novel ways of providing identity to automated cross-#cloud processes – Workload Identity Federation (#workloadidentityfederation) and #SPIFFE
https://zuinnote.eu/blog/?p=2273

🚀 Hey, #ZeroTrust enthusiasts! — We’ve kicked off VMware Secrets Manager v0.22.0, codenamed Boötes!

🌟 Curious about what awesomeness lies ahead? Our 🔥Updated Yearly Roadmap🔥 has all the details 👉 https://vsecm.com/docs/roadmap/

#SPIFFE #SPIRE #VSecM #VMware

🐢⚡️ #TurtlePower

🚀 Hey, #ZeroTrust enthusiasts! — We’ve kicked off VMware Secrets Manager v0.22.0, codenamed Boötes!

🌟 Curious about what awesomeness lies ahead? Our 🔥Updated Yearly Roadmap🔥 has all the details 👉 https://vsecm.com/docs/roadmap/

#SPIFFE #SPIRE #VSecM #VMware

🐢⚡️ #TurtlePower

Master the art of local deployment and development of VMware Secrets Manager. Take your #DevOps game to the next level 🛠️🔐

🎥 https://vimeo.com/v0lkan/vsecm-local-deployment

#VMware #SoftwareEngineering #ZeroTrust #SPIFFE #SPIRE

Master the art of local deployment and development of VMware Secrets Manager. Take your #DevOps game to the next level 🛠️🔐

🎥 https://vimeo.com/v0lkan/vsecm-local-deployment

#VMware #SoftwareEngineering #ZeroTrust #SPIFFE #SPIRE

🎉 Just wrapped up an electric session on today's #TalkSPIFFE! 🚀 We dove deep into the nitty-gritty of open source, business licensing models, and their ripple effects on the open-source ecosystem (I’m looking at you HashiCorp!). 🌐

https://www.twitch.tv/videos/1913673154

#ZeroTrust #Security #SPIFFE #SPIRE #VSecM #TalkSPIFFE #VOD #Twitch

🔐 A Milestone in Zero-Trust Architectures: SPIFFE Takes Center Stage in Google Cloud

This week marked a pivotal moment in the journey of zero-trust architectures. Google Cloud announced its standardization of SPIFFE as the unified identity platform across all its environments.

This is not just a technical achievement; it’s’ a paradigm shift in how we approach security in cloud computing.

https://www.linkedin.com/feed/update/urn:li:activity:7103184580895014912/

#SPIFFE #ZeroTrust #GoogleCloud #CyberSecurity #OpenSource #Leadership

1/n

NIST said you should use SPIFFE, and you should use it NOW, and Google Cloud is standardizing its workload identity based on SPIFFE.

I cannot emphasize how HUGE this is!

check out this clip:https://www.youtube.com/clip/UgkxcujMWTzWhgep5b0rG0Xk991AQ91PCSmt

#SPIFFE #SPIRE #ZeroTrust #security

Keep your secrets… secret.

https://vimeo.com/v0lkan/secrets-manager

#ZeroTrust #security #VSecM #SPIFFE #SPIRE

Keep your secrets… secret.

https://vimeo.com/v0lkan/secrets-manager

#ZeroTrust #security #VSecM #SPIFFE #SPIRE

🎉 Introducing VMware Secrets Manager; The Next Step for Aegis!
»» https://www.zerotohero.dev/vmware-secrets-manager/ ««

I am thrilled to share an update with all of you. Aegis has transformed and landed into its new home! It is now entering a phase as VMware Secrets Manager for Cloud Native workloads!

#ZeroTrust #security #VMware #SecretsManager #secrets #spiffe #SPIRE