Best Practices for Securing Cloud Native Applications

Track: Security
Abstract
Microservices are the foundation for building your application in the cloud and, just like with legacy applications, security is of the upmost importance. How do you properly secure a Microservice created for the Jakarta Enterprise Edition or MicroProfile specifications? What are some best practices for authenticating users and authorizing them to access your MicroService? Join me for an overview of Microservice security, with samples based on the Open Liberty application server.
Gary Picher
Gary Picher has worked in the WebSphere Application Server organization of IBM for 20 years. He is currently the WebSphere Security Architect, responsible for both the security of the application server itself, as well as ensuring that customers have all the functionality and guidance they need to secure their own installations and applications.  Prior to that, Gary spent time as the WebSphere Release Architect, where he moved WebSphere Liberty from a quarterly to 4-week delivery cycle to align better with modern DevOps practices.  Gary has also spent a decade as the team lead for the z/OS runtime component of WebSphere Application Server.