SPIFFE
E699804
SPIFFE is an open standard for securely identifying software systems in dynamic and cloud-native environments, enabling interoperable, cryptographic service identities.
Statements (50)
| Predicate | Object |
|---|---|
| instanceOf |
open standard
ⓘ
software identity framework ⓘ |
| abbreviation | SPIFFE NERFINISHED ⓘ |
| defines |
SPIFFE ID
NERFINISHED
ⓘ
SPIFFE Verifiable Identity Document NERFINISHED ⓘ SPIFFE trust domain ⓘ |
| domain |
cloud-native computing
ⓘ
service identity ⓘ zero trust security ⓘ |
| enables |
mutual TLS authentication
ⓘ
portable service identities across platforms ⓘ service mesh identity ⓘ workload-to-workload authentication ⓘ zero trust networking ⓘ |
| focusesOn | workload identity rather than human identity ⓘ |
| fullName | Secure Production Identity Framework for Everyone NERFINISHED ⓘ |
| governedBy | Cloud Native Computing Foundation NERFINISHED ⓘ |
| hostedBy | Cloud Native Computing Foundation NERFINISHED ⓘ |
| license | Apache License 2.0 ⓘ |
| openSource | true ⓘ |
| purpose |
enabling interoperable cryptographic service identities
ⓘ
securely identifying software systems ⓘ |
| relatedConcept |
federated identity
ⓘ
identity provider ⓘ public key infrastructure ⓘ service mesh ⓘ workload identity ⓘ |
| relatedStandard | SPIRE NERFINISHED ⓘ |
| securityProperty |
cryptographic proof of identity
ⓘ
minimization of long-lived secrets ⓘ strong workload authentication ⓘ |
| specificationRepository | https://github.com/spiffe/spiffe ⓘ |
| specifies |
identity documents format
ⓘ
identity issuance lifecycle ⓘ workload API ⓘ |
| status | CNCF incubating project ⓘ |
| supports | federation between trust domains ⓘ |
| supportsEnvironment |
Kubernetes clusters
NERFINISHED
ⓘ
bare metal hosts ⓘ cloud-native environments ⓘ containerized workloads ⓘ dynamic environments ⓘ multi-cloud environments ⓘ virtual machines ⓘ |
| supportsUseCase |
microservices authentication
ⓘ
multi-cluster identity management ⓘ service-to-service encryption ⓘ |
| uses |
JWT tokens
ⓘ
X.509 certificates ⓘ |
| website | https://spiffe.io/ ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.