The service mesh needs some common way of performing authentication, and potentially authorization.
Right now I am thinking that client certificates may fit the bill, assuming that each service's is rooted in a shared certificate authority that is generated for the service mesh.
I think/hope that this will also make it feasible for each service to use TLS by default.
The service mesh needs some common way of performing authentication, and potentially authorization.
Right now I am thinking that client certificates may fit the bill, assuming that each service's is rooted in a shared certificate authority that is generated for the service mesh.
I think/hope that this will also make it feasible for each service to use TLS by default.