How To Secure Istio Service Mesh Deployments

Monday Feb 11th 2019 by Sean Michael Kerner

eWEEK: The open-source Istio service mesh technology provides many security options, though a number of critical controls are not turned on by default.

The Isto service mesh enables a more efficient type of container to container, or microservice to service communications and networking model, by offloading the connectivity to a side car proxy.  With Istio, more complex distributed microservice architectures can be built and deployed, but there are multiple key steps that organization should take before putting Istio into production.

"There's a hesitancy to turn things on by default, because you're not sure what a break," John Morello, CTO of Twistlock told eWEEK. "So, you know, being a security person by by trade, I always would prefer people build things in more of a secure by default manner, but it's not really what we've seen in this ecosystem."

Complete Story

Mobile Site | Full Site