When workloads are ephemeral and jobs can span multiple cloud environments, a new way of thinking needs to be grown. The dynamic world of virtual cloud services presents unique challenges that traditional security approaches don't fully address. The SPIFFE project addresses bootstrapping trust in such an environment, and the Workload Identity in Multi System Environments (or, WIMSE) group at the IETF has been chartered to develop new standards in this important space. We will walk through why these steps are vital and how we can use new tools to address our security both today and into the future.
