September 28, 2019

168 words 1 min read

How SPIFFE Helps Istio in Service Mesh Federation

How SPIFFE Helps Istio in Service Mesh Federation

This proposal resolves the fundamental identity federation problem between different trust domains, using the trust domain and bundle standard proposed by SPIFFE. As an important collaborator of SPIFF …
Talk Title How SPIFFE Helps Istio in Service Mesh Federation
Speakers Wencheng Lu (Senior Staff Software Engineer, Google), Oliver Liu (Senior Software Engineer, Google)
Conference KubeCon + CloudNativeCon
Conf Tag
Location Shanghai, China
Date Jun 23-26, 2019
URL Talk Page
Slides Talk Slides
Video

This proposal resolves the fundamental identity federation problem between different trust domains, using the trust domain and bundle standard proposed by SPIFFE. As an important collaborator of SPIFFE/SPIRE, Istio adopts this standard to support federations with SPIRE and other identity systems. The newly proposed standard enables multiple service meshes to securely establish trusts for cross-mesh secure communications. In this talk, we will explain how this new standard can help on federated service meshes and how Istio supports the standard. Finally, we will demonstrate how the federation can be set up between Istio and SPIRE systems.

identity istio service mesh
comments powered by Disqus
Manage Multi-tenant ML Workloads Using Istio

Manage Multi-tenant ML Workloads Using Istio

September 24, 2019

With rapid growth of machine learning workloads deployed on Kubernetes, it is becoming a popular demand to offer a multi-tenant pipeline to manage machine learning workloads that facilitates different …
AIOps: Anomaly Detection with Prometheus and Istio

AIOps: Anomaly Detection with Prometheus and Istio

September 22, 2019

As IT operations become more agile and complex, at the same time the need to enhance operational efficiency and intelligence grows. Monitoring applications and kubernetes clusters with Prometheus has …
Building a Powerful Edge Using Blockchain

Building a Powerful Edge Using Blockchain

September 20, 2019

There is a key question how to build a powerful edge of IoT system. We considered a two-layer architecture which separates thinking and reflexing and edge plays a role in reflex center of human while …
Can Blockchain Make a Financial and Information Revolution? - Use Cases of Commercial Project at National Bank of Cambodia and Moscow Exchange Group -

Can Blockchain Make a Financial and Information Revolution? - Use Cases of Commercial Project at National Bank of Cambodia and Moscow Exchange Group -

September 19, 2019

Soramitsu Co., Ltd. which is the original developer of Hyperledger Iroha explains unique features of Hyperledger Iroha V1.0 and use cases of commercial projects such as digital currency with National …