SPIRE
E699805
SPIRE is an open-source system for securely issuing and managing identities to workloads in dynamic, cloud-native environments.
Statements (48)
| Predicate | Object |
|---|---|
| instanceOf |
cloud-native security software
ⓘ
open-source project ⓘ software system ⓘ workload identity system ⓘ |
| category |
cloud-native security project
ⓘ
identity and access management software ⓘ |
| designedFor |
Kubernetes workloads
ⓘ
cloud-native environments ⓘ containerized workloads ⓘ dynamic environments ⓘ multi-cloud environments ⓘ |
| governedBy | Cloud Native Computing Foundation NERFINISHED ⓘ |
| hasFullName | SPIFFE Runtime Environment NERFINISHED ⓘ |
| hostedBy | Cloud Native Computing Foundation NERFINISHED ⓘ |
| implements |
SPIFFE specification
ⓘ
Secure Production Identity Framework for Everyone NERFINISHED ⓘ |
| isOpenSource | true ⓘ |
| issuesCredentialType |
JWT SVID
NERFINISHED
ⓘ
X.509 SVID NERFINISHED ⓘ |
| license | Apache License 2.0 ⓘ |
| primaryFunction |
managing workload identities
ⓘ
securely issuing identities to workloads ⓘ |
| programmingLanguage | Go NERFINISHED ⓘ |
| providesComponent |
SPIRE Agent
NERFINISHED
ⓘ
SPIRE Server NERFINISHED ⓘ |
| relatedStandard | SPIFFE NERFINISHED ⓘ |
| securityGoal |
eliminate long-lived secrets
ⓘ
enable secure service-to-service communication ⓘ strong workload authentication ⓘ |
| supportsConcept |
mutual TLS authentication
ⓘ
service identity ⓘ workload identity ⓘ zero trust security ⓘ |
| supportsDeploymentModel |
hybrid cloud
ⓘ
on-premises ⓘ public cloud ⓘ |
| supportsFeature |
automatic certificate rotation
ⓘ
federation of trust domains ⓘ node attestation ⓘ policy-based identity issuance ⓘ workload attestation ⓘ |
| supportsIntegration |
Docker
NERFINISHED
ⓘ
Envoy NERFINISHED ⓘ HashiCorp Vault NERFINISHED ⓘ Istio NERFINISHED ⓘ Kubernetes NERFINISHED ⓘ Linux workloads ⓘ |
| usesIdentifierFormat | SPIFFE ID NERFINISHED ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.