Achieving Mutual TLS - Secure Pod-to-Pod Communication Without the Hassle

Explore secure pod-to-pod communication in this 32-minute conference talk from SREcon20 Americas. Dive into the world of Mutual TLS and learn how to implement it without the usual hassles. Discover the intricacies of certificate lifecycle management and their applications in various scenarios. Compare Golang and Java applications with and without TLS implementation. Gain insights into integrating Mutual TLS into your services using Kube TLS, including detailed explanations of mutating webhook requests and responses. Understand the differences between this approach and service mesh solutions, and get a glimpse of future directions in secure communication. Perfect for SREs and developers looking to enhance their knowledge of secure microservices communication in Kubernetes environments.

Achieving Mutual TLS
Certificate Lifecycle
How are Certificates used
Golang Applications without TLS
Golang Applications using TLS
Java Applications without TLS
Java Applications using TLS
Mutual TLS in your services
TLS keys with Kube TLS
The plan
The details
Mutating Webook Request Body
Mutating Webook Response Body
Webhook Controller
Create And Upload Car
Create Secret
Using KubeTLS
Compare to Service Mesh
Future Directions