Security involves authentication and authorization. Linkerd leaves the task of authentication to third parties, such as TLS termination at Ingress, TLS origination at Egress, time-bound JSON Web Tokens (JWTs), and so on. Authorization can be implemented at the proxy level.
- Title Page
- Copyright and Credits
- About Packt
- Foreword
- Contributors
- Preface
- Section 1: Cloud-Native Application Management
- Monolithic Versus Microservices
- Cloud-Native Applications
- Section 2: Architecture
- Service Mesh Architecture
- Service Mesh Providers
- Service Mesh Interface and SPIFFE
- Section 3: Building a Kubernetes Environment
- Building Your Own Kubernetes Environment
- Section 4: Learning about Istio through Examples
- Understanding the Istio Service Mesh
- Installing a Demo Application
- Installing Istio
- Exploring Istio Traffic Management Capabilities
- Exploring Istio Security Features
- Technical requirements
- Overview of Istio's security
- Authentication
- Authorization
- Advanced capabilities
- Summary
- Questions
- Further reading
- Enabling Istio Policy Controls
- Exploring Istio Telemetry Features
- Technical requirements
- Telemetry and observability
- Configuring UI access
- Collecting built-in metrics
- Collecting new metrics
- Database metrics
- Distributed tracing
- Exploring prometheus 
- Visualizing metrics through Grafana
- Service mesh observability through Kiali
- Tracing with Jaeger
- Cleaning up
- Summary
- Questions
- Further reading
- Section 5: Learning about Linkerd through Examples
- Understanding the Linkerd Service Mesh
- Installing Linkerd
- Exploring the Reliability Features of Linkerd
- Exploring the Security Features of Linkerd
- Exploring the Observability Features of Linkerd
- Section 6: Learning about Consul through Examples
- Understanding the Consul Service Mesh
- Installing Consul
- Exploring the Service Discovery Features of Consul
- Exploring Traffic Management in Consul
- Assessment
- Chapter 1: Monolithic versus Microservices
- Chapter 2: Cloud-Native Applications
- Chapter 3: Service Mesh Architecture
- Chapter 4: Service Mesh Providers
- Chapter 5: Service Mesh Interface and SPIFFE
- Chapter 6: Building Your Own Kubernetes Environment
- Chapter 7: Understanding the Istio Service Mesh
- Chapter 8: Installing a Demo Application
- Chapter 9: Installing Istio
- Chapter 10: Exploring Istio Traffic Management Capabilities
- Chapter 11: Exploring Istio Security Features
- Chapter 12: Enabling Istio Policy Controls
- Chapter 13: Exploring Istio Telemetry Features
- Chapter 14: Understanding the Linkerd Service Mesh
- Chapter 15: Installing Linkerd
- Chapter 16: Exploring the Reliability Features of Linkerd
- Chapter 17: Exploring the Security Features of Linkerd
- Chapter 18: Exploring the Observability Features of Linkerd
- Chapter 19: Understanding the Consul Service Mesh
- Chapter 20: Installing Consul
- Chapter 21: Exploring the Service Discovery Features of Consul
- Chapter 22: Exploring Traffic Management in Consul
- Other Books You May Enjoy
Security
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.