Leveraging the Linux Kernel for Building a Zero-Trust Environment Without a Service Mesh
CNCF [Cloud Native Computing Foundation] via YouTube
Overview
Explore a conference talk that delves into an innovative approach to establishing a zero-trust network environment using the Linux kernel. Learn how a team at Cisco developed a kernel module as an alternative to complex service meshes, enabling mTLS and access control directly from the Linux kernel. Discover the use of technologies like WebAssembly, kTLS, and OPA to assign strong identities to workloads and encrypt traffic without modifying application code or interfering with the network layer. Gain insights into the challenges faced, thought processes involved, and practical steps taken in developing and deploying this open-source solution. Understand how this approach offers a simpler, more efficient method for achieving zero-trust security compared to traditional methods, and how it contributes to the wider community.
Syllabus
Leveraging the Linux Kernel for Building a Zero-Trust Environment With... Marton Sereg & Zsolt Varga
Taught by
CNCF [Cloud Native Computing Foundation]