Rafik Harabi
Managing microservices the declarative way.
Actions
Rafik Harabi is a Solution Architect devoted to help customers in their digital transformation journey. He currently spends most of his time architecting and deploying Cloud Native Services Platforms using Kubernetes and recently Istio Service Mesh. Before working on cloud migration projects, Rafik had a long experience in designing, building and deploying high available web platforms serving thousands of users.
Managing microservices with Istio Service Mesh
Developing and managing hundreds (or maybe thousands) of microservices at scale is a challenge for both development and operations teams.
We have seen over the last few years the appearance of new frameworks dedicated to deliver ‘Cloud Native’ applications by providing a set of (out of box) building blocks. Most of these frameworks integrate microservices concerns at the code level.
Recently, we have seen the emergence of a new pattern known as sidecar or proxy promoting to push all these common concerns outside of the business code and provides them on the edge by integrating a new layer to the underlying platform called Service Mesh.
Istio is one of the leading Service Mesh implementing sidecar pattern.
We will go during the presentation throw the core concepts behind Istio, the capabilities that provides to manage, secure and observe microservices and how it gives a new breath for both developers and operations.
Microservices security at scale with Istio Auth
Deploying microservices at scale bring many challenges to operation and security teams when configuring and supervising delivered services in production. Handling identity verification, communication encryption, certificate rotation and service auditing may become a real challenge and error prone tasks when managing hundreds (or may be thousands) of microservices in non-consistent and non-automated way.
This presentation will focus on how Istio security component ‘Istio Auth’ has adopted the cloud native security standard SPIFFE to provide out of box security capabilities helping both operation and security teams to deploy, supervise and audit services on the top of zero-trust networks.
The presentation will go through the different security capabilities istio provides, the declarative approach to manage most of applications security concerns with a sequence of demos showing these features
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top