YetanotherHackerNewsdigest.com
HN Theater | HN Academy | HN Books

HN Theater @HNTheaterMonth

The best talks and videos of Hacker News.
Rankings: this week · month (apr/may) · year (2024) · all time
digests · search

Hacker News Comments on
How Airbnb Secured Access to Their Cloud With Context-Aware Access (Cloud Next '19)

Google Cloud Platform · Youtube · 1 HN comments
HN Theater has aggregated all Hacker News stories and comments that mention Google Cloud Platform's video "How Airbnb Secured Access to Their Cloud With Context-Aware Access (Cloud Next '19)".
Youtube Summary
Learn how Airbnb uses context-aware access to protect applications running on-premises and in other clouds.
Envisioned in 2011, the BeyondCorp security model leverages identity and context to evaluate trust for access decisions rather than using the corporate network as the perimeter. Join this session to see how you can manage access to LOB web apps, G Suite, and GCP resources with context-aware access enabling stronger security posture, anywhere access, and more intuitive end-user experiences. We will have demos and one of our customers talking about their experiences.

Airbnb Context-Aware Cloud Access → http://bit.ly/2UlUPjb

Watch more:
Next '19 Security Sessions here → https://bit.ly/Next19Security
Next ‘19 All Sessions playlist → https://bit.ly/Next19AllSessions

Subscribe to the GCP Channel → https://bit.ly/GCloudPlatform


Speaker(s): Ameet Jani, Samuel Keeley, Gagan Arora


Session ID: SEC109
product:Cloud Identity-Aware Proxy,G Suite Apps,G Suite Device Management,G Suite Security; fullname:Gagan Arora,Ameet Jani;
HN Theater Rankings

Hacker News Stories and Comments

All the comments and stories posted to Hacker News that reference this video.
Thanks verdverm.

Disclosure - I don’t have much hands on experience with GCP IAP/context aware solution, but I do very well understand how Google modularized the solution for wider consumption.

The use case of AirbnB where they are using context aware manager that feeds in logic from AWS λ was particularly interesting. Here is the link

https://youtu.be/Sq9gp8KBsY0

The presentation showed the capabilities of IAP. In case of AirbnB they are using custom built logic to make access decisions in IAP. The gist of it is about one feeding in custom logic to trust engine(context aware manager) to make access decisions. I am super impressed by this capability and I give it Google for how they architected.

At the some time, I see 50 other companies that offer zero trust comprehensive solutions that in many ways offer what GCP is offering. Btw, author of this thread is asking the same and I just happen to jump on it because I am in a similar situation.

Now back to questions on top of my mind - how good are the trust engines components of private access solutions provided by zscaler zpa or Netskope private access or cloudflare private access ? As I read it, trust engine that makes dynamic decisions to elevate or de-elevate privileges based on indentity and context is at the core of zero trust based solution . This is where I am at complete loss. I am just trying to separate marketing buzz from authenticity of solution so that I could get right solution in place.

Please share your thoughts. Thanks to rshnotsecure for sharing his views on zscaler. Comments welcome.

HN Theater is an independent project and is not operated by Y Combinator or any of the video hosting platforms linked to on this site.
~ yaj@
;laksdfhjdhksalkfj more things
yahnd.com ~ Privacy Policy ~
Lorem ipsum dolor sit amet, consectetur adipisicing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.