Interesting question because I've had a similar one. But a couple of things that I've encountered in my journey are:
1) certificates used to enable the traffic need to be updated and renewed, how donyou automate this process
2) side car injection of certificates at time of container initiation. Is this a standard practice? If so where do you pull the cert from to ensure its always an updated one.
I've not had a ton of experience with service mesh implementations as Chris M. shared above, but definitely would love to see documentation. Sorry for adding to your question and not having any answers, but your question sparked some thoughts for me I never thought to ask before.
Thanks for sharing! Looking forward to some expert answers
------------------------------
Tasia Mabry
Sr Cloud Engineer
Duke Energy
------------------------------
Original Message:
Sent: Jan 26, 2023 09:20:31 AM
From: Shawn de Souza
Subject: Encrypting Traffic between Containers
Hi Everyone,
I'm currently trying to determine whether it's the best practice to encrypt traffic between containers in the same pod on a Kubernetes node. I have been reading up on a few sites and standards, but it's not very clear and quite ambiguous, and most of what I have read is more about encrypting traffic between pods or nodes.
I'm very new to the cloud-native world, and the answer might have been in my face, which I may have misunderstood.
It would be great to hear your thoughts, or if there is any documentation that you know of that I could go through would be greatly appreciated.
Kind regards
Shawn