Wednesday, May 22 • 11:05 - 11:40
Zero Trust Service Mesh with Calico, SPIRE, and Envoy - Shaun Crampton, Tigera & Evan Gilman, Scytale

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.
The promise of a service mesh is to be able to delegate the hard networking problems to a uniform set of proxies and controllers. An extremely important networking problem is securing traffic within the mesh. Service meshes based on the Envoy proxy are very popular and there is a large diversity of implementations, including many home-grown solutions that focus on routing but may not include security. Shaun and Evan will demonstrate how to enhance your service mesh to follow the Zero Trust network security model using SPIRE and Calico.

A Zero Trust Network emphasizes resilience to compromised services, hosts, and the network itself by treating every network connection as potentially hostile. Secure connections are established only when backed by strong cryptographic identity and approved by fine grained policies---provided by SPIRE and Calico respectively.

avatar for Evan Gilman

Evan Gilman

Engineer, Scytale
Evan Gilman is an engineer with a background in computer networks. With roots in academia, and currently working on the SPIFFE project, he has been building and operating systems in hostile environments his entire professional career. An open source contributor, speaker, and author... Read More →
avatar for Shaun Crampton

Shaun Crampton

Senior Software Engineer, Tigera
Shaun is a Senior Software Engineer at Tigera, working as a core developer on Project Calico. Before joining the Tigera team, Shaun worked on a number of Software Defined Networking products and cloud scale applications. He holds a BA in Computer Science from Cambridge University... Read More →

Wednesday May 22, 2019 11:05 - 11:40
Hall 8.0 B1