Bringing SPIFFE to Linkerd for Mesh Expansion
Offered By: CNCF [Cloud Native Computing Foundation] via YouTube
Course Description
Overview
Explore the challenges and solutions of extending service mesh identity beyond Kubernetes in this 37-minute conference talk. Dive into the core concepts of identity in service meshes and understand how the Linkerd project tackled the complex task of reimagining its identity system. Learn about the mechanisms used to identify foreign workloads, the role of Kubernetes in this process, and the implementation of SPIFFE/SPIRE as the chosen tool for seamless integration of workloads into the mesh. Gain insights into the technical considerations and decision-making process behind expanding Linkerd's capabilities for mesh expansion, and discover how these changes enable communication beyond the cluster while maintaining robust identity management.
Syllabus
Bringing SPIFFE to Linkerd for Mesh Expansion - Zahari Dichev, Buoyant
Taught by
CNCF [Cloud Native Computing Foundation]
Related Courses
Introducción a SPIFFE y SPIRE - Autenticando servicios nativos de la nubeEkoparty Security Conference via YouTube Road to SLSA3 - Non-falsifiable Provenance in Tekton with SPIFFE/SPIRE
Linux Foundation via YouTube Zero-Trust Supply Chain Security with Sigstore, TektonCD and SPIFFE
Linux Foundation via YouTube How SPIFFE Helps Istio in Service Mesh Federation
Linux Foundation via YouTube Trust No System: The Unsettling Reality of Zero Trust
CNCF [Cloud Native Computing Foundation] via YouTube