Deploying microservices at scale bring many challenges to operation and security teams when configuring and supervising delivered services in production. Handling identity verification, communication encryption, certificate rotation and service auditing may become a real challenge and error prone tasks when managing hundreds (or may be thousands) of microservices in non-consistent and non-automated way.

This presentation will focus on how Istio security component ‘Istio Auth’ has adopted the cloud native security standard SPIFFE to provide out of box security capabilities helping both operation and security teams to deploy, supervise and audit services on the top of zero-trust networks.

The presentation will go through the different security capabilities istio provides, the declarative approach to manage most of applications security concerns with a sequence of demos showing these features