June 20 - 22 - Tokyo, Japan
Click for Open Source Summit Japan & Automotive Linux Summit Information & Registration
Wednesday, June 20 • 16:20 - 17:00
Advanced Security on Kubernetes with Istio - Shunsuke Miyoshi, Fujitsu

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
Conventional network is designed with a policy "everything on the inside an organization’s network can be trusted".

Thus, a system security is based on Firewall in order to control access between outside and inside.
However, recent attacks are becoming more sophisticated, and we must respond not only to the external threat but also to the threat within Firewall.

As dealing with these threats, Zero Trust Network is proposed.

Zero Trust Network is a security model which rooted in the principle of "never trust, always verify".
Everything(communication path, destination service, ...) are verified in this model, thus, it makes a system more secure.

In Kubernetes, we can build a Zero Trust Network model by combining NetworkPolicy(one of Kubernetes function) and Istio.

This presentation shows an overview of Zero Trust Network model, and how to create the model in kubernetes with Istio.


Shunsuke Miyoshi

Software Engineer, Fujitsu
I have been participated in the development and building of infrastructure systems with Kubernetes, docker for one year. Now, I contribute to Kubernetes community as engineer. I also trying to security evaluation of microservices system by kubernetes and istio.

Wednesday June 20, 2018 16:20 - 17:00 JST
Private Dining