Back to Schedule

Demystifying Secure Application Communication with Zero Trust

Lin Sun

09:15 - 10:00

Pavillon

Modern cloud-native applications are frequently distributed across multiple Kubernetes clusters or virtual machines. But what exactly are the requirements for securing communication among these cloud native applications? Is encryption alone sufficient? Do applications require unique identities? How can we ensure the integrity of our applications' data? Do we need to control who can access what? And what are the considerations when dealing with multi-cluster environments? This presentation will explore the essentials of securing application communications within a zero-trust architecture framework. Lin will explain how mutual TLS (mTLS) meets these requirements through its handshake and record protocols. Moreover, she’ll demonstrate live how you can implement mTLS for applications by simply labeling their namespaces, without any restart of applications using Istio's ambient mesh.