Identity and Access Management Whitepaper (CNCF)

This whitepaper from the CNCF TAG Security and Compliance provides practical guidance on implementing Identity and Access Management (IAM) in cloud native environments. As distributed, dynamic architectures make identity the new security perimeter, the paper covers modern authentication for users and workloads, zero-trust architectures, authorization best practices using PEP/PDP patterns, and the role of SPIFFE for secure workload identity. It offers reference patterns and implementation advice for architects, platform engineers, and security practitioners to build secure and scalable cloud native systems. 

https://www.cncf.io/blog/2026/06/04/identity-and-access-management-whitepaper