Get App-focused Security from an Enterprise-class Service Mesh | On-demand Webinar

In our webinar you can now view on demand, You’ve Got Kubernetes. Now you Need App-focused Security using Istio, we teamed with Mirantis, an industry leader in enterprise-ready Kubernetes deployment and management, to talk about security, Kubernetes, service mesh, istio and more. If you have Kubernetes, you’re off to a great start with a great platform for security based on Microsegmentation and Network Policy. But firewalls and perimeters aren’t enough -- even in their modern, in-cluster form.  

As enterprises embark on the cloud journey, modernizing applications with microservices and containers running on Kubernetes is key to application portability, code reuse and automation. But along with these advantages come significant security and operational challenges due to security threats at various layers of the stack. While Kubernetes platform providers like Mirantis manage security at the infrastructure, orchestration and container level, the challenge at application services level remains a concern. This is where a service mesh comes in. 

Companies with a hyper focus on security – like those in healthcare, finance, government, and highly regulated industries – demand the highest level of security possible to thwart cyberthreats, data breaches and non-compliance issues. You can up level your security by adding a service mesh that’s able to secure thousands of connections between microservices containers inside of a single cluster or across the globe. Today Istio is the gold standard for enterprise-class service mesh for building Zero Trust Security. But I’m not the first to say that implementing open source Istio has its challenges -- and can cause a lot of headaches when Istio deployment and management is added to a DevOps team’s workload without some forethought.  

Aspen Mesh delivers an Istio-based, security hardened enterprise-class service mesh that’s easy to manage. Our Istio solution reduces friction between the experts in your organization because it understands your apps -- and it seamlessly integrates into your SecOps approach & certificate authority architecture. 

It’s not just about what knobs and config you adjust to get mTLS in one cluster – in our webinar we covered the architectural implications and lessons learned that’ll help you fit service mesh into your up-leveled Kubernetes security journey. It was a lively discussion with a lot of questions from attendees. Click the link below to watch the live webinar recording.

-Andrew

 

Click to watch webinar now:

On Demand Webinar | You’ve Got Kubernetes. Now you Need App-focused Security using Istio.

 The webinar gets technical as we delve into: 

  • How Istio controls North-South and East-West traffic, and how it relates to application-level traffic. 
  • How Istio secures communication between microservices. 
  • How to simplify operations and prevent security holes as the number of microservices in production grows. 
  • What is involved in hardening Istio into an enterprise-class service mesh. 
  • How mTLS provides zero-trust based approach to security. 
  • How Aspen Mesh uses crypto to give each container its own identity (using a framework called SPIFFE). Then when containers talk to each other through the service mesh, they prove who they are cryptographically. 
  • Secure ingress and egress, and Cloud Native packet capture. 

Uptime and Efficiency in the Application Economy

Uptime and Efficiency in the Application Economy

The High Cost of Downtime 

Modern organizations are using “application value” as a new form of currency in the software-first world. What this means is any business that delivers a product or service to its customers through an application must understand the importance of application security, reliability and feature velocity. As applications become increasingly important to enterprises, so do engineering teams. 

Access to engineering talent is now more important to companies than access to capital. 61% of executives consider this a potential threat to their business. The average developer spends more than 17 hours a week dealing with maintenance issues, such as debugging and refactoring. In addition, they spend approximately four hours a week on “bad code,” which equates to nearly $85 billion worldwide in opportunity cost lost annually. As the necessity of driving business value with applications increases, so does the importance of engineering teams. As customer demands on applications increase, enterprises have two options — increase the size and cost of engineering teams, or increase engineering efficiency. 

Couple the need to increase engineering efficiency with the challenges around growing revenue in increasingly competitive and low margin businesses - and the importance of driving value through applications is top of mind for any business that considers itself a software company. 

The Advantages and Challenges of Microservices Applications

Microservices architectures allow businesses to keep pace with the competition in their space through application scalability, resiliency and agility. Most importantly, microservices allow enterprises to more quickly deliver new features to customers to maintain customer satisfaction and increase affinity. Microservices provide a powerful way to develop modern applications but they also come with new challenges. 

A common challenge our customers face is difficulty of debugging and resolving problems in a microservices environment. It can be challenging to resolve issues in a timely manner, especially when there are cascading failures which can significantly impact user experience. As a company that maintains a microservices based SaaS platform, we understand the pain operators and developers go through while dealing with an outage. 

Making the Most Out of Modern Applications 

This is why Aspen Mesh is focused on trying to make it easy for engineering organizations to reduce MTTR through quickly identifying any configuration or application changes that are likely to have caused an outage. We try to offer a much improved user experience both for users within that company, but more importantly, for their end-users.  

Service mesh provides observability, tracing and logging capabilities that make it easy to identify when errors occurred and pinpoint their sources. It brings all of your data together into a single source of truth, removing error-prone processes, and enabling you to get fast, reliable information around downtime, failures and outages. More uptime means more revenue, and the agility with stability that you need for a competitive edge.

Aspen Mesh was designed to allow DevOps teams to address what we consider to be the three most critical areas in providing application agility and stability:

  • Proactive anomaly detection, quick incident response and resolution, and workflows that accelerate the remediation process.
  • A unified source of multi-dimensional insights into application and infrastructure health and performance that provides context about the entire software system.
  • Line of sight into weak points in environments, enabling engineering teams to architect more resilient systems in the future. 

There are many tools that allow DevOps teams to more efficiently develop and deploy microservices applications. The beauty of service mesh is that it allows decoupling of Dev and Ops along infrastructure lines. The operators can maintain the platform and develop guardrails that ensure enforcement of security and compliance policies without burdening application developers with infrastructure concerns. 

If you or your team are running Kubernetes-based applications at scale and are seeing the advantages, but know you can get more value out of them by increasing efficiency and more quickly identifying failure root causes, it’s probably time to check out a service mesh. You can reach out to the Aspen Mesh team on how to easily get started or how to best integrate service mesh into your existing stack at hello@aspenmesh.io. Or you can get started yourself with a 30-day free trial of Aspen Mesh