Leveraging the Linux Kernel for Building a Zero-Trust Environment Without a Service Mesh

Explore a conference talk that delves into an innovative approach to establishing a zero-trust network environment using the Linux kernel. Learn how a team at Cisco developed a kernel module as an alternative to complex service meshes, enabling mTLS and access control directly from the Linux kernel. Discover the use of technologies like WebAssembly, kTLS, and OPA to assign strong identities to workloads and encrypt traffic without modifying application code or interfering with the network layer. Gain insights into the challenges faced, thought processes involved, and practical steps taken in developing and deploying this open-source solution. Understand how this approach offers a simpler, more efficient method for achieving zero-trust security compared to traditional methods, and how it contributes to the wider community.