How SPIFFE Helps Istio in Service Mesh Federation

Explore how SPIFFE aids Istio in service mesh federation in this 30-minute conference talk by Google engineers Yonggang Liu and Wencheng Lu. Delve into the fundamental identity federation problem between different trust domains and learn about the trust domain and bundle standard proposed by SPIFFE. Discover how Istio, as a key collaborator of SPIFFE/SPIRE, adopts this standard to support federations with SPIRE and other identity systems. Understand how the newly proposed standard enables multiple service meshes to securely establish trusts for cross-mesh secure communications. Gain insights into how this new standard benefits federated service meshes and how Istio implements it. Witness a demonstration of setting up federation between Istio and SPIRE systems, providing practical knowledge for implementing secure cross-mesh communications.