Bridging the Gap Between Human and Workload Identity: SPIF... Arndt Schwenkschuster & Dmitry Telegin
Presenters Arndt Schwenkschuster Dmitry Telegin Source KeycloakCon Europe 2026 🚀 Bridging the Gap: How Spiffy and Transaction Tokens Secure the Modern Cloud In the fast-evolving world of cloud-native architecture, we face a persistent, nagging problem: how do we connect human identity (the user clicking a button) with workload identity (the microservices talking to each other)? At a recent industry talk, Arndt Schwenkschuster (Spiffy Maintainer and Standards Architect) and Dmitry Telegin (Keycloak contributor) unveiled a powerful solution. They demonstrated how to use Spiffy and the emerging OAuth Transaction Tokens specification to create a secure, cryptographically verifiable chain of identity from the frontend all the way to the database. ...