Overview
Explore an innovative solution for implementing zero-trust security in Kubernetes environments using Istio ambient mesh and Cilium. Discover how waypoint proxies and zero-trust tunnels function as policy enforcement points (PEPs) to secure communications between applications without sidecars. Learn about the benefits of blocking malicious attacks at lower layers of the networking stack, and see live demonstrations of enabling a "Do Not Disturb" mode for services using Cilium network policies at L3 and Istio security policies at L4 and L7. Gain insights into creating a secure-by-default, defense-in-depth architecture that allows your services to operate efficiently in a protected environment.
Syllabus
Istio and Cilium: Pushing the Boundaries of the Possible on Zero-Trust - Lin Sun, Solo.io
Taught by
Linux Foundation