The SPIFFE project is being actively developed by a community of developers who are currently facing the challenges SPIFFE attempts to tackle. This page provides an index to various documents that have been proposed by these developers.

  • The SPIFFE Verifiable Identity Document (SVID) is a specification detailing a combination of naming format, X.509 certificate format, and trusted root bundle sets. This allows two (2) bundles with a common trust root to securely identify each other. (Under active development)

  • The SPIFFE Reference Implementation (SRI) details an open-source software stack that allows for provisioning and managing SPIFFE identities across varying platforms. The SRI implements the SPIFFE Workload API. (Under active development)

  • The SPIFFE whitepaper is SPIFFE’s original proposal, as first presented at GlueCon 2016. (Superseded by the above documents)