Styra, Inc. announced new cloud
infrastructure support via Terraform, extending Styra Declarative
Authorization Service (DAS) guardrails to storage, network and compute
resource configuration in public clouds including AWS, GCP and Azure.
With this addition, Styra DAS now provides a unified policy-as-code
solution, built on OPA, to ensure cloud infrastructure, Kubernetes and
service mesh deployments are secure and compliant. With Styra DAS and
OPA, cloud and DevOps teams have a unified platform for authorization to
mitigate risk, reduce human error and accelerate platform development.
"Until
now, DevOps and cloud platform teams had to manage authorization,
policy and configuration with disparate tools in each of their clouds,
in each of their orchestration clusters, and between the microservices
that comprise modern apps," said Tim Hinrichs, co-founder and chief
technology officer of Styra. "OPA has become the standard way to
validate configuration and enforce guardrails across disparate systems,
but teams need a unified solution to deploy, monitor and manage OPA at
scale across cloud, K8s and microservices. That's where Styra DAS comes
in."
Scalable Security
With
IT teams already spread thin, these individuals cannot continue to
innovate and still provide the protection that their clouds, platforms
and apps need as entry points expand. This is because in the modern era
of cloud applications, the architects and engineers that create and
manage those apps have an exponentially higher amount of discrete
components to build, manage and secure. While the decomposition of apps
into small, scalable services is the core of cloud digital
transformation-as well as the key to fast updates, high uptime and
global availability-it introduces incredible complexity when it comes to
controlling access to each component and protecting data privacy.
These
growing complexities make authorization-or controlling access- more
critical than ever. Human engineers and security teams who in the past
had to manage and secure three or four systems, cannot be expected to
scale their effort across the hundreds or thousands of disparate
components in a modern cloud application. To address the scale challenge
of the cloud, teams must adopt automated security guardrails for
access. These guardrails are a mission critical part of any cloud app
deployment because they allow enterprises to protect end-user data
against attacks, ensure that all application components work together as
intended, and prove compliance with today's increasing security and
privacy regulations.
By extending Styra DAS to Terraform cloud infrastructure policy,
cloud and DevOps teams no longer have to manage multiple security
tools, or rely on best-effort manual processes, thanks to a unified
platform for authorization that's mapped to common security standards
and industry best practices. With this control plane, teams can:
- Eliminate
ongoing management of custom tooling and speed deployment with a single
policy framework for cloud infrastructure authorization
- Manage the entire lifecycle of the cloud platform from design to deployment
- Eliminate policy silos with a single platform for cross-team collaboration
- Automate configuration validation, deploy platform security based on proven standards, and prove compliance
- Get started quickly with the only library of security policies built by the founders of OPA
With
over 85 million OPA downloads deployed across hundreds of
organizations, OPA has become the de facto standard for platform
authorization. Now, with Styra DAS extended across the cloud platform,
teams have a single solution to deploy, manage and monitor OPA at scale.
Together, OPA and Styra DAS provide security, operations and compliance
guardrails to protect modern app platforms across cloud, Kubernetes and
microservices.
Styra DAS cloud infrastructure support via Terraform is available now to all Styra customers.