Services are expected to support TLS by default in modern environments so we need to m

The core bits are implemented. Remaining things are tracked in <a class="issue-link js

Secure the service with TLS about cerbos HOT 7 CLOSED

cerbos commented on May 14, 2024

Secure the service with TLS

from cerbos.

Comments (7)

emreb commented on May 14, 2024

Why https? if this runs on someone's internal network, do we really need https? Doesn't that have a performance impact?
I like the JWT validation option as well, but again, what would be the performance impact? we are up against a library that is in the code, so the competition is pretty fast.

I guess we should start from why do we need them?
I will also ask some users about it if they care.

I always have kafka as an example in my head. Do they support SSL yet?

from cerbos.

charithe commented on May 14, 2024

Running plaintext services is frowned upon these days. Especially for a authz application, HTTPS should be on by default. There's almost no overhead for doing that now because modern CPUs are very fast and usually have special hardware acceleration for crypto operations.

We do need to have some sort of authentication mechanism as well. Again, the current trend is towards the BeyondCorp model where the internal network is not trusted or treated as special. The endpoint needs to be secured because an attacker could use it to enumerate all the users who have permission to do something or even enumerate everything that an application can do. So it's a security risk.

Kafka does support SSL now :)

from cerbos.

emreb commented on May 14, 2024

ok. I do not know much about BeyondCorp model. will research.

…

On Wed, Feb 24, 2021 at 5:17 PM Charith Ellawala ***@***.***> wrote: Running plaintext services is frowned upon these days. Especially for a authz application, HTTPS should be on by default. There's almost no overhead for doing that now because modern CPUs are very fast and usually have special hardware acceleration for crypto operations. We do need to have some sort of authentication mechanism as well. Again, the current trend is towards the BeyondCorp model where the internal network is not trusted or treated as special. The endpoint needs to be secured because an attacker could use it to enumerate all the users who have permission to do something or even enumerate everything that an application can do. So it's a security risk. Kafka does support SSL now :) — You are receiving this because you commented. Reply to this email directly, view it on GitHub <https://github.com/emreb/paams/issues/10#issuecomment-785234929>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AABMF6AGV37CLPOGDSFG3HTTAUYCZANCNFSM4YDAJWIQ> .

from cerbos.

emreb commented on May 14, 2024

here are my 2cents: - Yes, by default then things should be SSL, and some authentication model - However, we should be able to bypass both of those for development mode, they usually are just painful and create barriers in getting it up and running under a minute for testing in dev env (which is a goal I want to achieve) Thoughts?

…

On Wed, Feb 24, 2021 at 6:09 PM Emre Baran ***@***.***> wrote: ok. I do not know much about BeyondCorp model. will research. On Wed, Feb 24, 2021 at 5:17 PM Charith Ellawala ***@***.***> wrote: > Running plaintext services is frowned upon these days. Especially for a > authz application, HTTPS should be on by default. There's almost no > overhead for doing that now because modern CPUs are very fast and usually > have special hardware acceleration for crypto operations. > > We do need to have some sort of authentication mechanism as well. Again, > the current trend is towards the BeyondCorp model where the internal > network is not trusted or treated as special. The endpoint needs to be > secured because an attacker could use it to enumerate all the users who > have permission to do something or even enumerate everything that an > application can do. So it's a security risk. > > Kafka does support SSL now :) > > — > You are receiving this because you commented. > Reply to this email directly, view it on GitHub > <https://github.com/emreb/paams/issues/10#issuecomment-785234929>, or > unsubscribe > <https://github.com/notifications/unsubscribe-auth/AABMF6AGV37CLPOGDSFG3HTTAUYCZANCNFSM4YDAJWIQ> > . >

from cerbos.

charithe commented on May 14, 2024

Sure, being able to turn them off is fine. The defaults should be secure though.

from cerbos.

emreb commented on May 14, 2024

agreed

…

On Thu, Feb 25, 2021 at 5:10 PM Charith Ellawala ***@***.***> wrote: Sure, being able to turn them off is fine. The defaults should be secure though. — You are receiving this because you commented. Reply to this email directly, view it on GitHub <https://github.com/emreb/paams/issues/10#issuecomment-786059411>, or unsubscribe <https://github.com/notifications/unsubscribe-auth/AABMF6BS2C5RVKKDKNL2TIDTA2AB7ANCNFSM4YDAJWIQ> .

from cerbos.

charithe commented on May 14, 2024

The core bits are implemented. Remaining things are tracked in #71.

from cerbos.

Secure the service with TLS about cerbos HOT 7 CLOSED

Comments (7)

Related Issues (20)

Recommend Projects

React

Vue.js

Typescript

TensorFlow

Django

Laravel

D3

Recommend Topics

javascript

web

server

Machine learning

Visualization

Game

Recommend Org

Facebook

Microsoft

Google

Alibaba

D3

Tencent