OAuth 2.0 is everywhere in cloud-native environments—from securing APIs to enabling developer tools—but it wasn’t designed with Kubernetes in mind. And when used without key security enhancements like PKCE (Proof Key for Code Exchange), it leaves your clusters and users exposed to token interception and impersonation risks.
In this session, we’ll go beyond basic OAuth to explore how PKCE can be used to lock down authentication flows in Kubernetes-centric systems. You’ll learn how PKCE helps protect against man-in-the-middle attacks, how it fits into common cloud-native architectures, and where most teams go wrong when implementing it.
If you’re building secure platforms on Kubernetes or looking to tighten your auth flows, this talk will give you the patterns and tools you need to move beyond OAuth—and do it right.