Securing OIDC Federation in CI/CD Workflows

Learn to secure OIDC federation in CI/CD workflows through this 20-minute conference talk that explores the security implications and best practices for implementing workload identity in continuous integration and deployment pipelines. Discover how OIDC and workload identity can enhance CI/CD security by eliminating traditional long-lived keys and access tokens while enabling secure API access across different environments. Examine the critical importance of strong security policies that underpin identity federation systems, as weak policies can create vulnerabilities that attackers might exploit to access sensitive resources and potentially compromise your entire supply chain. Explore common risks associated with OIDC implementation in CI/CD contexts and understand how improper configuration can turn your own CI/CD platform into a vector for supply chain attacks. Gain practical strategies for securing your environment and developing robust security policies that maximize the benefits of OIDC federation while minimizing potential attack surfaces and maintaining the integrity of your development and deployment processes.