Signed, Sealed, Delivered: Why Reverse Proxies Outperform VPNs - Peter ONeill, Teleport & Boris Kurktchiev, Independent

less than 1 minute read

Abstract

To use an analogy, traditional VPNs are like picking up a package from a shared storage room. Once you are inside, you can see and touch far more than the package meant for you. This model worked when networks were smaller and trust was implicit, but in cloud-native environments it creates excessive privilege, blind spots, and unnecessary risk.Reverse proxies in contrast act like signature on delivery. Access is granted only to the intended recipient, only for the right resource, and every handoff is logged. This session will explain how reverse proxies work, the evolution from forward proxies, and why they are a better fit than VPNs for securing modern systems.To make this concrete, we will walk through a demo using Envoy, Keycloak, and two sample applications. Attendees will see how a reverse proxy validates identity, enforces per-route authorization, and logs every action.

Sched URL

Video

Share on

X Facebook LinkedIn Bluesky

About

Conferences

Signed, Sealed, Delivered: Why Reverse Proxies Outperform VPNs - Peter ONeill, Teleport & Boris Kurktchiev, Independent

Abstract

Video

Share on

You May Also Enjoy

The Shared Service Blueprint: A Guide to Multi-Tenancy, Illustrated With KEDA - Aya Igarashi, Preferred Networks, Inc.

Tailor Made: Dynamic Fine-Grained Authorization for API Traffic - Erica Hughberg, Tetrate & Andres Aguiar, Okta

SPIFFE Meets OAuth: Federated Identity for Cloud Native Workloads - Yoshiyuki Tabata, Hitachi, Ltd.

SB💣💣M: Making SBOMs Play Together - Jacopo Bufalino, CNAM & Agathe Blaise, Thales SIX GTS France