Showing only posts by Vignesh Rajamani. Show all posts.

Choose the best way to use and authenticate service accounts on Google Cloud

Source

A fundamental security premise is to verify the identity of a user before determining if they are permitted to access a resource or service. This process is known as authentication. But authentication is necessary for more than just human users. When one application needs to talk to another, we …

Keyless API authentication—Better cloud security through workload identity federation, no service account keys necessary

Source

Organizations often have applications that run on multiple platforms, on-premises or cloud. For such applications that call Google Cloud Platform (GCP) APIs, a common challenge admins face is securing long-lived service account keys used to authenticate to GCP. Examples of such applications might include: Analytics workloads running on AWS …