Beyond the Gateway: Securing Microservices with Istio’s Zero-Trust Model
| In a modern Kubernetes environment, perimeter security is no longer enough. We need to secure traffic within our cluster. This talk provides a practical guide to implementing a zero-trust network using Istio. We’ll move beyond ingress gateways and explore how Istio’s service mesh capabilities like automatic mutual TLS (mTLS), fine-grained Authorization Policies, and JWT validation can secure your services from the inside out, without a single line of application code change. |
Speaker
-
Mofesola BabalolaTempo.ioMofesola is a Staff Site Reliability Engineer at Tempo.io, where he focuses on the reliability and performance of applications in the Atlassian marketplace. With a speciality in observability and service mesh technologies, he has practical experience managing large-scale, secure infrastructure deployments using Terraform and Istio on Kubernetes. In his current role, he has implemented zero-trust security for microservice communication and established disaster recovery strategies aligned with SOC 2 and ISO 27001 standards