Service mesh, in and outside of the Kubernetes cluster

Presented by

Alexei Kravtsov, Cloud Security Infrastructures Team Lead @Portshift

About this talk

Service mesh is a new networking model that is made up by offloading lots of networking aspects from the application stack into sidecar proxies which are managed by a dedicated infrastructure/control-plane. Service mesh, ideally controls the flow of traffic and API calls between services but when services and resources outside the cluster (which might be crucial for your daily operation) are in the mix, or distributed clusters like multi-clouds, the challenges start to pile-up. In this webinar we will discuss how to address the daily scenarios of microservices communication inside and outside the mesh/Kubernetes clusters. We will show how Istio simplified their deployment and what is required to make it secure. Key Discussion Points and Best Practices: 1. Microservices communication model inside the mesh 2. Authorization and encryption 3. Multi cluster and multi cloud: secure communication 4. Expanding the cluster with Istio 1.6 and the concept of workload entry 5. Q&As
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (12)
Subscribers (1030)
Portshift is a Kubernetes-native security leader leveraging the power of Kubernetes and Service-Mesh to deliver a single source of truth for containers and cloud-native applications protection. Portshift is the only solution offering an agentless approach, with a single Kubernetes admission controller for seamless integration.