Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

CNCF [Cloud Native Computing Foundation]

Improving Secure Pod-to-Pod Communication Within Kubernetes Using Trust Bundles

CNCF [Cloud Native Computing Foundation] via YouTube

Overview

Explore a 38-minute conference talk on enhancing secure pod-to-pod communication in Kubernetes using trust bundles. Delve into new features being added to Kubernetes that allow for specifying roots of trust for cluster applications. Learn about the implementation of "trust bundles" or trust anchor sets, and discover updates to previous work on creating convenient mechanisms for providing certificates to every pod. Examine how these certificates can be accessed and utilized for mutual authentication. Gain insights into leveraging the cert-manager project, SPIFFE project, and KEP-3257 for trust anchor sets to automate TLS certificate creation for pods and establish mTLS patterns. Compare and contrast this approach with current methods of cluster communication security, such as service meshes, and explore areas for further refinement in this evolving Kubernetes ecosystem.

Syllabus

Improving Secure Pod-to-Pod Communication Within Kubernetes Using... Thomas Edward Hahn & Mark Hahn

Taught by

CNCF [Cloud Native Computing Foundation]

Reviews

Start your review of Improving Secure Pod-to-Pod Communication Within Kubernetes Using Trust Bundles

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.