Hacker News Comments on
How Airbnb Secured Access to Their Cloud With Context-Aware Access (Cloud Next '19)
Google Cloud Platform
·
Youtube
·
1
HN comments
- This course is unranked · view top recommended courses
Hacker News Stories and Comments
All the comments and stories posted to Hacker News that reference this video.Thanks verdverm.Disclosure - I don’t have much hands on experience with GCP IAP/context aware solution, but I do very well understand how Google modularized the solution for wider consumption.
The use case of AirbnB where they are using context aware manager that feeds in logic from AWS λ was particularly interesting. Here is the link
The presentation showed the capabilities of IAP. In case of AirbnB they are using custom built logic to make access decisions in IAP. The gist of it is about one feeding in custom logic to trust engine(context aware manager) to make access decisions. I am super impressed by this capability and I give it Google for how they architected.
At the some time, I see 50 other companies that offer zero trust comprehensive solutions that in many ways offer what GCP is offering. Btw, author of this thread is asking the same and I just happen to jump on it because I am in a similar situation.
Now back to questions on top of my mind - how good are the trust engines components of private access solutions provided by zscaler zpa or Netskope private access or cloudflare private access ? As I read it, trust engine that makes dynamic decisions to elevate or de-elevate privileges based on indentity and context is at the core of zero trust based solution . This is where I am at complete loss. I am just trying to separate marketing buzz from authenticity of solution so that I could get right solution in place.
Please share your thoughts. Thanks to rshnotsecure for sharing his views on zscaler. Comments welcome.