Discussion about this post

User's avatar
Michael Wood's avatar

Another great perspective. I'm progressively leaning into brokerage. Infra as Code is an approach to a provisioning brokerage service (where I can use ID as the control). An engine that runs networks based on well defined layer 7 intentions (attested with ID) becomes a network broker. Vault, as you discuss here, is an ID broker. In my mind, the closer we get to brokering the delivery of any services (data access included) the tighter we can get on our controls, observability, and all the other zero-trust thoughts.

Expand full comment

No posts