Abstract image of a woman sitting on books and studying on a laptop

apidays LIVE New York 2021 - How to Achieve Zero-Trust Security with Kuma Service Mesh by Marco Palladino, Kong

apidays, profile picture
apidays

This document discusses Kuma, a service mesh that provides zero-trust security and connectivity across Kubernetes and multi-cloud environments. It emphasizes Kuma's abilities to intelligently route traffic, restrict access by default until identity is verified, and provide out-of-the-box connectivity across clusters, clouds, and platforms. Key features highlighted include universal usage across K8s and VMs, attribute-based policies, built-in multi-zone connectivity, and being Kubernetes native, with CLI, HTTP API and built-in GUI for easy usage and policy-based control of security, traffic, and observability.

Technology
Related topics:
Apidays New York
1 of 27
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
THE CLOUD CONNECTIVITY COMPANY THE CLOUD CONNECTIVITY COMPANY With Kuma THE CLOUD CONNECTIVITY COMPANY 1 https://konghq.com https://kuma.io Zero-Trust
THE CLOUD CONNECTIVITY COMPANY P A L L A D I N O Marco CO-FOUNDER & CTO AT KONG
THE CLOUD CONNECTIVITY COMPANY Connectivity Powers Innovation CONNECTIVITY NUMBER OF SERVICES
THE CLOUD CONNECTIVITY COMPANY Trust is exploitable 4
THE CLOUD CONNECTIVITY COMPANY Trust is exploitable 5 X
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY ZERO-TRUST SECURITY We need virtual passports for our services. 8
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY 1. Kubernetes, VMs, Multi-Cloud 2. Single and Multi-Zone 3. Multi-Mesh, Native Policies, Easy to Use 900+ Organizations Have deployed Kuma as a Service Mesh in the past 12 months C O N T R O L P L A N E SERVICE S E R V I C E Sandbox Project
THE CLOUD CONNECTIVITY COMPANY Multi-Mesh And Easy To Use & Scale Universal (K8s + VMs), Attribute-Based Policies & More Built-in Multi Zone Connectivity Intelligently route traffic across any platform and any cloud to meet expectations and SLAs Restrict access and encrypt all traffic by default to only complete transactions when identity is verified  Out of the box connectivity across multi-cluster, multi-cloud and multi-platform deployments across the world.
THE CLOUD CONNECTIVITY COMPANY
THE CLOUD CONNECTIVITY COMPANY Kubernetes Native (CRDs) Universal CLI HTTP API Built-in GUI EASY TO USE
THE CLOUD CONNECTIVITY COMPANY Security Traffic Control Observability Advanced Policies POLICY BASED
THE CLOUD CONNECTIVITY COMPANY 70+ Observability Charts Native API Gateway Integration One-Click Zero Trust BATTERIES INCLUDED
THE CLOUD CONNECTIVITY COMPANY ZERO TRUST WITH KUMA apiVersion: kuma.io/v1alpha1 kind: Mesh metadata: name: default spec: mtls: enabledBackend: ca-1 backends: - name: ca-1 type: builtin dpCert: rotation: expiration: 1d conf: caCert: RSAbits: 2048 expiration: 10y
THE CLOUD CONNECTIVITY COMPANY ZERO TRUST WITH KUMA apiVersion: kuma.io/v1alpha1 kind: TrafficPermission mesh: default metadata: name: allow-all-traffic spec: sources: - match: kuma.io/service: '*' destinations: - match: kuma.io/service: '*'
THE CLOUD CONNECTIVITY COMPANY IN KONG MESH type: OPAPolicy mesh: default name: opa-1 selectors: - match: kuma.io/service: backend conf: policy: inlineString: | package envoy.authz import input.attributes.request.http as http_request default allow = false token = {"valid": valid, "payload": payload} { [_, encoded] := split(http_request.headers.authorization, " ") [valid, _, payload] := io.jwt.decode_verify(encoded, {"secret": "secret"}) } allow { is_token_valid action_allowed }
THE CLOUD CONNECTIVITY COMPANY DEMO
THE CLOUD CONNECTIVITY COMPANY 26 More Connectivity Zero Trust Service Mesh Kuma
THE CLOUD CONNECTIVITY COMPANY 27 Download at KUMA.IO Enterprise Offering: konghq.com/kong-mesh

More Related Content

PDF
apidays LIVE New York 2021 - How to Achieve Zero-Trust Security with Kuma Ser...
apidays
 
PDF
INTERFACE, by apidays - How to Achieve Zero-Trust Security by Marco Palladin...
apidays
 
PDF
apidays LIVE Singapore 2021 - Embedding finance into the customer journey by ...
apidays
 
PPTX
Euro-Wallet White Label
EuroWallet
 
PPTX
apidays LIVE JAKARTA - Take control of your microservices with App Mesh by Ak...
apidays
 
PDF
Value Add Services - Go To Market engines
Roy Timor-Rousso
 
PDF
TADS Telecom Summit Layer 7 Ross Garrett
Alan Quayle
 
PDF
Umbraco Certified Partner
Inventive IT
 
apidays LIVE New York 2021 - How to Achieve Zero-Trust Security with Kuma Ser...
apidays
 
INTERFACE, by apidays - How to Achieve Zero-Trust Security by Marco Palladin...
apidays
 
apidays LIVE Singapore 2021 - Embedding finance into the customer journey by ...
apidays
 
Euro-Wallet White Label
EuroWallet
 
apidays LIVE JAKARTA - Take control of your microservices with App Mesh by Ak...
apidays
 
Value Add Services - Go To Market engines
Roy Timor-Rousso
 
TADS Telecom Summit Layer 7 Ross Garrett
Alan Quayle
 
Umbraco Certified Partner
Inventive IT
 

What's hot (20)

PDF
What Can You Do With Twilio
Twilio Inc
 
PDF
15th Anniversary of HideMyAss!
HMA VPN
 
PDF
Lead Gen in the Post-PC World - LeadsCon 2012
Twilio Inc
 
PDF
Cyrus Recharge - Mobile Recharge Software
Cyrus Recharge Solutions
 
PDF
Create an IVR that Keeps Up with Your Customers
Twilio Inc
 
PDF
Why Venture Capitalists invest in the app economy T-Ventures Deutsche Telekom
Thomas Grota
 
PDF
Exit the road ahead for startups - from a view of a Venture Capitalist
Thomas Grota
 
PDF
Twilio SMS - API for Sending & Receiving SMS Messages
Twilio Inc
 
PDF
apidays LIVE Australia 2020 - API Design in Fintech: Challenges and Opportuni...
apidays
 
PDF
Why to chose IGateway as your GPS Partner?
Wadhwani Foundation
 
PPTX
Hms slasscom meetup ppt v1.0.0
hSenid Mobile Marketing
 
PDF
Accelerating Innovation with APIs: Social TV case study at Orange
Orange Dev
 
PPTX
Tracking chips
determinant342
 
PDF
Twilio Signal 2016 Taking Your SMS App Global
Twilio Inc
 
PDF
Leading UK wealth management firm, Williams de Broë, needed to meet new Fina...
Cognia
 
PPTX
Over The Top Service ...How can telcos meet the OTT services challenge?
Adi Kurniawan S.M.B
 
PDF
Twilio Contact Center Overview
Twilio Inc
 
PDF
hSenid Mobile's journey with TADHack: TADSummit Sponsor's Plenary
Alan Quayle
 
PDF
Startup galore how VCs think in a unicorn world - T-Venture Thomas Grota
Thomas Grota
 
PDF
WSO2 Ecosystem platform for Connected Telco
Mifan Careem
 
What Can You Do With Twilio
Twilio Inc
 
15th Anniversary of HideMyAss!
HMA VPN
 
Lead Gen in the Post-PC World - LeadsCon 2012
Twilio Inc
 
Cyrus Recharge - Mobile Recharge Software
Cyrus Recharge Solutions
 
Create an IVR that Keeps Up with Your Customers
Twilio Inc
 
Why Venture Capitalists invest in the app economy T-Ventures Deutsche Telekom
Thomas Grota
 
Exit the road ahead for startups - from a view of a Venture Capitalist
Thomas Grota
 
Twilio SMS - API for Sending & Receiving SMS Messages
Twilio Inc
 
apidays LIVE Australia 2020 - API Design in Fintech: Challenges and Opportuni...
apidays
 
Why to chose IGateway as your GPS Partner?
Wadhwani Foundation
 
Hms slasscom meetup ppt v1.0.0
hSenid Mobile Marketing
 
Accelerating Innovation with APIs: Social TV case study at Orange
Orange Dev
 
Tracking chips
determinant342
 
Twilio Signal 2016 Taking Your SMS App Global
Twilio Inc
 
Leading UK wealth management firm, Williams de Broë, needed to meet new Fina...
Cognia
 
Over The Top Service ...How can telcos meet the OTT services challenge?
Adi Kurniawan S.M.B
 
Twilio Contact Center Overview
Twilio Inc
 
hSenid Mobile's journey with TADHack: TADSummit Sponsor's Plenary
Alan Quayle
 
Startup galore how VCs think in a unicorn world - T-Venture Thomas Grota
Thomas Grota
 
WSO2 Ecosystem platform for Connected Telco
Mifan Careem
 
Ad

Similar to apidays LIVE New York 2021 - How to Achieve Zero-Trust Security with Kuma Service Mesh by Marco Palladino, Kong (20)

PDF
apidays LIVE Paris 2021 - How to Achieve Zero-Trust Security With Kuma Servic...
apidays
 
PDF
apidays LIVE Australia 2021 - How to Achieve Zero-Trust Security With Kuma Se...
apidays
 
PDF
Kong Mesh入門編
WenhanShi1
 
PDF
Hajimeteno kong 210415
Junji Nishihara
 
PDF
"はじめてのKong Konnect" APIゲートウェイと Service Meshについて学ぼう!
Junji Nishihara
 
PDF
Kong updatewebinar 210603
Junji Nishihara
 
PDF
"Kongゲートウェイ2.5リリース" Kong Konnectアップデート オンラインミートアップ
Junji Nishihara
 
PDF
Proxies, gateways, and meshes cloud connectivity patterns for developers
LibbySchulze
 
PDF
Kong Academyを日本語でお届け!#3 ”はじめてのKong”オンラインミートアップ
Junji Nishihara
 
PDF
Kong Academyを日本語でお届け!#4 ”はじめてのKong”オンラインミートアップKong Developer Portal編
Junji Nishihara
 
PDF
A Better Way for Applications to Communicate With Your Mesh
OlyaSurits
 
PDF
Connectivity Is the Future
OlyaSurits
 
PDF
Implementing a Reliable, Auto-Healing Scalable Platform at VMware
OlyaSurits
 
PDF
Full Stack Automation With Go
OlyaSurits
 
PDF
Break data silos with real-time connectivity using Confluent Cloud Connectors
confluent
 
PDF
Kong ingress controller kubernetes ingress on steroids
LibbySchulze
 
PDF
HCCJP 23回勉強会 5分で分かる APIゲートウェイと サービスメッシュの違い なぜAPIの管理とサービスメッシュは異なるユースケース を補完するパ...
Junji Nishihara
 
PDF
apidays LIVE Australia 2020 - Connectivity Rules Everything Around Us by Marc...
apidays
 
PDF
apidays LIVE Hong Kong - Connectivity Rules Everything Around Us by Marco Pal...
apidays
 
PDF
Security, Automation and the Software Supply Chain
OlyaSurits
 
apidays LIVE Paris 2021 - How to Achieve Zero-Trust Security With Kuma Servic...
apidays
 
apidays LIVE Australia 2021 - How to Achieve Zero-Trust Security With Kuma Se...
apidays
 
Kong Mesh入門編
WenhanShi1
 
Hajimeteno kong 210415
Junji Nishihara
 
"はじめてのKong Konnect" APIゲートウェイと Service Meshについて学ぼう!
Junji Nishihara
 
Kong updatewebinar 210603
Junji Nishihara
 
"Kongゲートウェイ2.5リリース" Kong Konnectアップデート オンラインミートアップ
Junji Nishihara
 
Proxies, gateways, and meshes cloud connectivity patterns for developers
LibbySchulze
 
Kong Academyを日本語でお届け!#3 ”はじめてのKong”オンラインミートアップ
Junji Nishihara
 
Kong Academyを日本語でお届け!#4 ”はじめてのKong”オンラインミートアップKong Developer Portal編
Junji Nishihara
 
A Better Way for Applications to Communicate With Your Mesh
OlyaSurits
 
Connectivity Is the Future
OlyaSurits
 
Implementing a Reliable, Auto-Healing Scalable Platform at VMware
OlyaSurits
 
Full Stack Automation With Go
OlyaSurits
 
Break data silos with real-time connectivity using Confluent Cloud Connectors
confluent
 
Kong ingress controller kubernetes ingress on steroids
LibbySchulze
 
HCCJP 23回勉強会 5分で分かる APIゲートウェイと サービスメッシュの違い なぜAPIの管理とサービスメッシュは異なるユースケース を補完するパ...
Junji Nishihara
 
apidays LIVE Australia 2020 - Connectivity Rules Everything Around Us by Marc...
apidays
 
apidays LIVE Hong Kong - Connectivity Rules Everything Around Us by Marco Pal...
apidays
 
Security, Automation and the Software Supply Chain
OlyaSurits
 
Ad

More from apidays (20)

PDF
apidays Munich 2025 - The Physics of Requirement Sciences Through Application...
apidays
 
PDF
apidays Munich 2025 - Developer Portals, API Catalogs, and Marketplaces, Miri...
apidays
 
PDF
apidays Munich 2025 - Making Sense of AI-Ready APIs in a Buzzword World, Andr...
apidays
 
PDF
apidays Munich 2025 - Integrate Your APIs into the New AI Marketplace, Senthi...
apidays
 
PDF
apidays Munich 2025 - The Double Life of the API Product Manager, Emmanuel Pa...
apidays
 
PDF
apidays Munich 2025 - Let’s build, debug and test a magic MCP server in Postm...
apidays
 
PDF
apidays Munich 2025 - The life-changing magic of great API docs, Jens Fischer...
apidays
 
PDF
apidays Munich 2025 - Automating Operations Without Reinventing the Wheel, Ma...
apidays
 
PDF
apidays Munich 2025 - Geospatial Artificial Intelligence (GeoAI) with OGC API...
apidays
 
PPTX
apidays Munich 2025 - GraphQL 101: I won't REST, until you GraphQL, Surbhi Si...
apidays
 
PPTX
apidays Munich 2025 - Effectively incorporating API Security into the overall...
apidays
 
PPTX
apidays Munich 2025 - Federated API Management and Governance, Vince Baker (D...
apidays
 
PPTX
apidays Munich 2025 - Agentic AI: A Friend or Foe?, Merja Kajava (Aavista Oy)
apidays
 
PPTX
apidays Munich 2025 - Streamline & Secure LLM Traffic with APISIX AI Gateway ...
apidays
 
PPTX
apidays Munich 2025 - Building Telco-Aware Apps with Open Gateway APIs, Subhr...
apidays
 
PPTX
apidays Munich 2025 - Building an AWS Serverless Application with Terraform, ...
apidays
 
PDF
apidays Helsinki & North 2025 - REST in Peace? Hunting the Dominant Design fo...
apidays
 
PDF
apidays Helsinki & North 2025 - Monetizing AI APIs: The New API Economy, Alla...
apidays
 
PDF
apidays Helsinki & North 2025 - How (not) to run a Graphql Stewardship Group,...
apidays
 
PDF
apidays Helsinki & North 2025 - APIs in the healthcare sector: hospitals inte...
apidays
 
apidays Munich 2025 - The Physics of Requirement Sciences Through Application...
apidays
 
apidays Munich 2025 - Developer Portals, API Catalogs, and Marketplaces, Miri...
apidays
 
apidays Munich 2025 - Making Sense of AI-Ready APIs in a Buzzword World, Andr...
apidays
 
apidays Munich 2025 - Integrate Your APIs into the New AI Marketplace, Senthi...
apidays
 
apidays Munich 2025 - The Double Life of the API Product Manager, Emmanuel Pa...
apidays
 
apidays Munich 2025 - Let’s build, debug and test a magic MCP server in Postm...
apidays
 
apidays Munich 2025 - The life-changing magic of great API docs, Jens Fischer...
apidays
 
apidays Munich 2025 - Automating Operations Without Reinventing the Wheel, Ma...
apidays
 
apidays Munich 2025 - Geospatial Artificial Intelligence (GeoAI) with OGC API...
apidays
 
apidays Munich 2025 - GraphQL 101: I won't REST, until you GraphQL, Surbhi Si...
apidays
 
apidays Munich 2025 - Effectively incorporating API Security into the overall...
apidays
 
apidays Munich 2025 - Federated API Management and Governance, Vince Baker (D...
apidays
 
apidays Munich 2025 - Agentic AI: A Friend or Foe?, Merja Kajava (Aavista Oy)
apidays
 
apidays Munich 2025 - Streamline & Secure LLM Traffic with APISIX AI Gateway ...
apidays
 
apidays Munich 2025 - Building Telco-Aware Apps with Open Gateway APIs, Subhr...
apidays
 
apidays Munich 2025 - Building an AWS Serverless Application with Terraform, ...
apidays
 
apidays Helsinki & North 2025 - REST in Peace? Hunting the Dominant Design fo...
apidays
 
apidays Helsinki & North 2025 - Monetizing AI APIs: The New API Economy, Alla...
apidays
 
apidays Helsinki & North 2025 - How (not) to run a Graphql Stewardship Group,...
apidays
 
apidays Helsinki & North 2025 - APIs in the healthcare sector: hospitals inte...
apidays
 

Recently uploaded (20)

PDF
Auditboard EB SOX Playbook 2023 edition.
DROK2
 
PDF
Co-training pseudo-labeling for text classification with support vector machi...
IAESIJAI
 
PDF
Aug23rd - Mulesoft Community Workshop - Hyd, India.pdf
Ravi Tamada
 
PPTX
Training Program for knowledge in solar cell and solar industry
RabindranathKaibarty
 
PDF
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
PDF
Enhancing plagiarism detection using data pre-processing and machine learning...
IAESIJAI
 
PDF
Introduction to MCP and A2A Protocols: Enabling Agent Communication
Maxim Salnikov
 
PDF
4 layer Arch & Reference Arch of IoT.pdf
sendilkumar66
 
PDF
A hybrid framework for wild animal classification using fine-tuned DenseNet12...
IAESIJAI
 
PDF
Early detection and classification of bone marrow changes in lumbar vertebrae...
IAESIJAI
 
PPTX
GROUP4NURSINGINFORMATICSREPORT-2 PRESENTATION
ClarisejaneSartillo1
 
PDF
Transform-Your-Factory-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
PPTX
Microsoft User Copilot Training Slide Deck
zohoron1
 
PDF
Dell Pro Micro: Speed customer interactions, patient processing, and learning...
Principled Technologies
 
PDF
Improvisation in detection of pomegranate leaf disease using transfer learni...
IAESIJAI
 
PPTX
future_of_ai_comprehensive_20250822032121.pptx
forrandomuse090
 
PDF
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
Mustafa Kuğu
 
PDF
AI.gov: A Trojan Horse in the Age of Artificial Intelligence
Michael Weaver
 
PDF
5-Ways-AI-is-Revolutionizing-Telecom-Quality-Engineering.pdf
Kalilur Rahman
 
PPTX
MuleSoft-Compete-Deck for midddleware integrations
zupittejas
 
Auditboard EB SOX Playbook 2023 edition.
DROK2
 
Co-training pseudo-labeling for text classification with support vector machi...
IAESIJAI
 
Aug23rd - Mulesoft Community Workshop - Hyd, India.pdf
Ravi Tamada
 
Training Program for knowledge in solar cell and solar industry
RabindranathKaibarty
 
Connector Corner: Transform Unstructured Documents with Agentic Automation
DianaGray10
 
Enhancing plagiarism detection using data pre-processing and machine learning...
IAESIJAI
 
Introduction to MCP and A2A Protocols: Enabling Agent Communication
Maxim Salnikov
 
4 layer Arch & Reference Arch of IoT.pdf
sendilkumar66
 
A hybrid framework for wild animal classification using fine-tuned DenseNet12...
IAESIJAI
 
Early detection and classification of bone marrow changes in lumbar vertebrae...
IAESIJAI
 
GROUP4NURSINGINFORMATICSREPORT-2 PRESENTATION
ClarisejaneSartillo1
 
Transform-Your-Factory-with-AI-Driven-Quality-Engineering.pdf
Kalilur Rahman
 
Microsoft User Copilot Training Slide Deck
zohoron1
 
Dell Pro Micro: Speed customer interactions, patient processing, and learning...
Principled Technologies
 
Improvisation in detection of pomegranate leaf disease using transfer learni...
IAESIJAI
 
future_of_ai_comprehensive_20250822032121.pptx
forrandomuse090
 
Accessing-Finance-in-Jordan-MENA 2024 2025.pdf
Mustafa Kuğu
 
AI.gov: A Trojan Horse in the Age of Artificial Intelligence
Michael Weaver
 
5-Ways-AI-is-Revolutionizing-Telecom-Quality-Engineering.pdf
Kalilur Rahman
 
MuleSoft-Compete-Deck for midddleware integrations
zupittejas
 

apidays LIVE New York 2021 - How to Achieve Zero-Trust Security with Kuma Service Mesh by Marco Palladino, Kong