Kong Event Gateway 1.1: Secure Kafka Event Streaming

Event-driven architectures (EDAs) have become integral to modern enterprises, particularly with Apache Kafka leading the transition from synchronous REST APIs to asynchronous event streams to support real-time analytics and AI. However, the security of these systems has been a significant challenge, especially in aligning modern web identity standards with native event stream protocols. The release of Kong Event Gateway v1.1 addresses this issue by introducing OAuth Token Claim Mapping for Policies and native mTLS Authentication, bridging the security gap between traditional API security models and Kafka's infrastructure-centric posture. This update allows organizations to enforce fine-grained, identity-aware access control across event streams, supporting more secure multi-tenant environments while maintaining alignment with existing Kafka security practices. By integrating OAuth-based policies and mTLS configurations, Kong Event Gateway v1.1 enables enterprises to scale their event-driven architectures securely, ensuring that security and identity are at the forefront rather than an afterthought.