Explore the challenges and solutions of extending service mesh identity beyond Kubernetes in this 37-minute conference talk. Dive into the core concepts of identity in service meshes and understand how the Linkerd project tackled the complex task of reimagining its identity system. Learn about the mechanisms used to identify foreign workloads, the role of Kubernetes in this process, and the implementation of SPIFFE/SPIRE as the chosen tool for seamless integration of workloads into the mesh. Gain insights into the technical considerations and decision-making process behind expanding Linkerd's capabilities for mesh expansion, and discover how these changes enable communication beyond the cluster while maintaining robust identity management.
Overview
Syllabus
Bringing SPIFFE to Linkerd for Mesh Expansion - Zahari Dichev, Buoyant
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
-
Introduction to Service Mesh with Linkerd
-
Beyond Kubernetes with Linkerd 2.15 and SPIFFE
-
SPIFFE Ecosystem: MTLS and Identity with Linkerd and Teleport
-
How SPIFFE Helps Istio in Service Mesh Federation
-
Overview and State of Linkerd
-
Linkerd Project Update: VM Support, Ingress, Security on the Edge, and Rust
