Trilok Geer
Trilok Geer is a member of cert-manager steering committee. His recent interests and contributions are primarily focused on workload security and zero-trust architectures. He has diverse experience spanning multiple domains building public and enterprise PaaS offerings, cloud-native certificate management and workload identity.
Red Hat India Private Limited
Senior Principal Software Engineer
Session
Agentic architectures introduce new security challenges like dynamic policies, autonomous decision loops, continuous model execution, and cross-service actions. In this talk, we unpack the full identity flow for securing these systems from attesting compute, verifying workload lineage, enabling cryptographic identity with SPIFFE/SPIRE, integrating OIDC federation, and enforcing fine-grained authorization using purpose-built control loops. We explore patterns for securing AI agents, vector databases, model-serving pipelines, and GPU/Confidential Compute workloads. The session includes design patterns, identity lifetime management, trust-domain boundaries, workload attestation using hardware-backed roots, and how to build a platform where every component, from the operator to the model pipeline, authenticates and authorizes seamlessly.