Secure Production Identity Framework for Everyone
Inspired by Google and others, SPIFFE is a set of open-source standards for securely identifying software systems in dynamic and heterogeneous production environments
What is SPIFFE?
SPIFFE (Secure Production Identity Framework For Everyone) provides a secure identity, in the form of a specially crafted x509 certificate, to every workload in a modern production environment. SPIFFE removes the need for application-level authentication and authorization and complex network-level ACL configuration.
What is SPIRE?
SPIRE, the SPIFFE Runtime Environment, is an extensible system that implements the principles embodied in the SPIFFE standards. SPIRE manages platform and workload attestation, provides an API for controlling attestation policies, and coordinates certificate issuance and rotation.
The SPIFFE standards are the result of a number of CNCF participants and other interested parties coming together to propose a common method for services to present and authorize their identities to one another.
All SPIFFE standards and SPIRE components are available under the Apache 2.0 license.