Open Service Mesh

Jan 1, 0001

Definition

Open Service Mesh (OSM) is a lightweight and extensible cloud-native service mesh that runs on Kubernetes. It provides secure, fine-grained control over service-to-service communication by automatically managing TLS encryption, traffic policies, and observability. OSM is designed to be simple to install and operate, integrating seamlessly with Kubernetes environments to enhance security and reliability of microservices.

Secure Settings Example

apiVersion: policy.openservicemesh.io/v1alpha1
kind: IngressBackend
metadata:
  name: secure-ingress
  namespace: my-namespace
spec:
  backends:
  - name: my-service
    port:
      number: 443
      protocol: https
  sources:
  - kind: Service
    name: ingress-controller
    namespace: ingress-namespace
  tls:
    skipClientCertValidation: false

Insecure Settings Example

apiVersion: policy.openservicemesh.io/v1alpha1
kind: IngressBackend
metadata:
  name: insecure-ingress
  namespace: my-namespace
spec:
  backends:
  - name: my-service
    port:
      number: 80
      protocol: http
  sources:
  - kind: Service
    name: ingress-controller
    namespace: ingress-namespace
  tls:
    skipClientCertValidation: true

Open Service Mesh

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter