Protecting APIs in Financial Services with Zero Trust Overlay Mesh Networks

As a senior software developer in the financial services industry knows, protecting APIs from cyber threats and attacks is critical. A cutting-edge approach to a robust security solution is embedding the principles of zero-trust networking directly into your application, making your app immediately secure by design. This approach embeds key principles of zero trust: end-to-end encryption, continual authorization, authorize before connect, least-privilege access, directly into your application itself by adopting an OpenZiti SDK. OpenZiti also provides a secure, zero trust overlay mesh usable not just for securing your applications but also for secure connectivity to other data centers and users alike, all without opening holes in your firewalls.

This talk will review the three components of OpenZiti's architecture: controller, edge routers, and SDKs in addition to diving into the internal physical and logical architecture of OpenZiti. We will learn what SPIFFE and SPIRE are and demonstrate how to integrate OpenZiti with SPIRE. Adopting a zero-trust overlay is the next evolution of security, moving beyond TLS and mTLS into a zero-trust-enabled architecture suitable for secure financial transactions. This presentation will feature code written in Go and CLI commands to demonstrate how to configure the OpenZiti overlay mesh.


Clint Dovholuk

Head of Developer Experience @OpenZiti / NetFoundry

Clint Dovholuk has spent over 20 years developing applications at the forefront of connectivity. Initially working for a Tier 1 telecom, he then migrated over to the M2M and IoT space before eventually landing with NetFoundry and focusing on truly zero-trust, programmable networks.

Clint has a passion for enabling developers and spends much of his time with a sharp focus on the users of the software he helps create.

Read more
Find Clint Dovholuk at:


Wednesday Jun 14 / 01:40PM EDT ( 50 minutes )


Dumbo / Navy Yard


API Security Secure Networking Zero-Trust


From the same track

Session Security

Implementing OSSF Scorecards Across an Organization

Wednesday Jun 14 / 04:10PM EDT

Open Source Security Foundation (OSSF) Scorecards provide a way for open source users to determine whether maintainers are being diligent about securing their link in the software security supply chain.

Speaker image - Chris Swan
Chris Swan

Engineer @atsigncompany


Maximizing Performance and Efficiency in Financial Trading Systems through Vertical Scalability and Effective Testing

Wednesday Jun 14 / 10:35AM EDT

In the fast-paced world of financial trading, speed, and efficiency are essential. To achieve this, vertical scalability is crucial in order-processing systems. However, achieving vertical scalability can be a significant challenge for developers. That's why testing is critical.

Speaker image - Peter Lawrey
Peter Lawrey

CEO @Chronicle_SW

Session Data

Performance and Scale - Domain-Oriented Objects vs Tabular Data Structures

Wednesday Jun 14 / 11:50AM EDT

Working with large data structures in memory poses certain restrictions on performance and scalability.

Speaker image - Donald Raab
Donald Raab

Managing Director and Distinguished Engineer @BNY Mellon

Speaker image - Rustam Mehmandarov
Rustam Mehmandarov

Chief Engineer @Computas AS

Session Fintech

Portfolio Analysis at Scale: Running Risk and Analytics on 15+ Million Portfolios Every Day

Wednesday Jun 14 / 05:25PM EDT

In finance, many common calculations are more or less just linear algebra – but at a massive scale and done very fast.

Speaker image - William Chen
William Chen

Director and Technical Fellow @BlackRock


Unconference: Next Gen Fintech

Wednesday Jun 14 / 02:55PM EDT

What is an unconference? An unconference is a participant-driven meeting. Attendees come together, bringing their challenges and relying on the experience and know-how of their peers for solutions.