As enterprises embrace cloud-native technologies and DevOps methodologies to accelerate software development at greater scale, they’re running into a fundamental challenge: the attack surface exposed by microservices applications and their environments is significantly larger and more complex. As a result, a Zero Trust approach — enabling authorization for key access points at the last possible moment — has become essential.  

With this short practical guide, learn how Open Policy Agent (OPA) and policy as code enable a practical Zero Trust approach in microservices applications. From securing both North-South and East-West traffic, to enabling fine-grained RBAC and ABAC with contextual data, to enabling a consistent, Git-based policy lifecycle, OPA empowers developers and platform engineering teams to keep their applications secure.