Aspen Mesh is announcing the release of 1.2.7 which addresses important Istio security updates. Below are the details of the security fixes taken from Istio 1.2.7 security update. Security Update ISTIO-SECURITY-2019-005: A DoS vulnerability has been discovered by the Envoy community. CVE-2019-15226: After investigation, the Istio team has found that this issue could be leveraged […]
Mutual TLS (mTLS) communication between services is a key Istio feature driving adoption as applications do not have to be altered to support it. mTLS provides client and server side security for service to service communications, enabling organizations to enhance network security with reduced operational burden (e.g. certificate management is handled by Istio).
Let me describe a common service mesh scenario… You’ve deployed your application and it is happily consuming some external resources on the ‘net. For example, say that reviews.default.svc.cluster.local is communicating with external service redis-12.eu-n-3.example.com. But you need to switch to a new external service redis-db-4.eu-n-1.example.com. You’re using a service mesh, right? The light bulb goes […]
The year is 2019, and the number of reported data breaches is up 54% compared to midyear 2018 and is set to be the “worst year on record,’ according to RiskBased Security research. Nearly 31 million records have been exposed in the 13 most significant data breaches of the first half of this year. Exposed […]
We’ve been talking about how you can use a service mesh to do progressive delivery lately. Progressive delivery fundamentally is about decoupling software delivery from user activation of said software. Once decoupled, the user activation portion is under business control. It’s early days, but the promise here is that software engineering can build new stuff […]