[{"id": 15207, "state": 1, "location": "Room 9", "location_slug": "room_9", "sequence": 85, "name": "Macro Security for your Microservices", "slug": "Macro_Security_for_your_Microservices", "authors": "Sreejith Anujan", "description": "Breaking down a monolithic application into atomic services offers various benefits, including better agility, better scalability and better ability to reuse services.  However, microservices also have particular security needs - \r\n\r\nTraffic encryption to defend against man-in-the-middle attack.\r\nFine grained access control and mutual TLS.\r\nAuditing tools to identity who did what at what time!\r\n\r\nIstio addresses the security challenges developers and operators face in a distributed microservice architecture. Istio provides strong identity, powerful policy, transparent TLS encryption, and authentication, authorization and audit (AAA) tools to protect your microservices and data. \r\n\r\nIn this hands on tutorial session, attendees will \r\n1) Understand the high level architecture of Istio \r\n2) Custom policy enforcement to  limit traffic to a service\r\n3) Service Traffic encryption using Mutual TLS\r\n\r\nTakeaway: Learn how  Istio enforces security features to mitigate insider and external threats against  your data, endpoints, communication and platform , wherever you run your microservices.\r\n\r\nPre-requisites: \r\nIntermediate understanding of container technology and microservices architecture. BYOD with a modern browser and an internet connection to access cloud based labs.", "start": "2020-01-16T15:45:00", "duration": "0:100:0", "released": true, "license": "CC BY", "tags": null, "conf_key": "63", "conf_url": "https://lca2020.linux.org.au/schedule/presentation/21/", "host_url": null, "public_url": null, "rax_mp4_url": null, "archive_url": null, "archive_mp4_url": "", "twitter_url": null, "comment": "", "start_at": "15:40 16.01.2020"}]