mTLS between services in K8S mTLS between services in K8S kubernetes kubernetes

mTLS between services in K8S


kubernetes cert-manager mtls

Using Service Mesh like Istio or Linkerd for this is currently the only general solution for this.

It should be possible to do this using a library for you app as well, the library typically would need to support certificate management. Service Meshes typically use EnvoyProxy as a sidecar, it has implemented novel "control plane" APIs for management, called xDS protocols - this is something that your library typically would need to implement. In addition you need a control plane interface to manage services.

A drawback with doing this in a library is that it will be language-dependent. But the pro is that it will be better performant.

Google has recently taking this route with Traffic Director - proxyless service mesh

Recent Posts
How can I color dots in a xy scatterplot according to column value?
How to update a claim in ASP.NET Identity?
What does {0} mean when initializing an object?
Accessing members of items in a JSONArray with Java
How to log SQL statements in Spring Boot?
Powershell Get-WebSite name parameter is ignored
How to detect scroll to bottom of html element
Java synchronized method
How to test controllers with CodeIgniter?
Detect Visual Composer
Matplotlib: Specify format of floats for tick labels
Rails join a list of strings with commas and "and" before the last