Weave Engineer/Carson Anderson/Five Flavors of mTLS in Kubernetes

Published Sun, 22 Jan 2023 14:01:11 -0700
111 Words


This talk was presented at the Utah Kubernetes Meetup. It covers 5 different ways to get mututal TLS inside a Kubernetes cluster. This is an important feature that is often only discussed within the context of a service mesh. This talk proves that mTLS can actually be accomplished a number of ways with various trade offs.

Key Takeaways

  • mTLS can be done many different ways
  • Every option has trade-offs
  • The cloud native community provides some great tools to automate PKI
  • A service mesh may be the easiest way but you lose a lot of control


The full source code for the talk can be found at: