Service Mesh Interface

Jan 1, 0001

Definition

Service Mesh Interface (SMI) is a specification that defines a set of standard interfaces for service meshes on Kubernetes. It provides a common framework for service mesh providers to implement features like traffic policy, telemetry, and security, enabling interoperability and simplifying the integration of different service mesh technologies within Kubernetes environments.

Secure Settings Example

apiVersion: specs.smi-spec.io/v1alpha4
kind: TrafficTarget
metadata:
  name: secure-traffic
spec:
  destination:
    kind: ServiceAccount
    name: backend
    namespace: default
  rules:
  - kind: HTTPRouteGroup
    name: backend-routes
    matches:
    - secure-path
  sources:
  - kind: ServiceAccount
    name: frontend
    namespace: default
  - kind: ServiceAccount
    name: api-gateway
    namespace: default

Insecure Settings Example

apiVersion: specs.smi-spec.io/v1alpha4
kind: TrafficTarget
metadata:
  name: insecure-traffic
spec:
  destination:
    kind: ServiceAccount
    name: backend
    namespace: default
  rules:
  - kind: HTTPRouteGroup
    name: backend-routes
    matches:
    - insecure-path
  sources:
  - kind: ServiceAccount
    name: '*'
    namespace: '*'

Service Mesh Interface

Definition

Secure Settings Example

Insecure Settings Example

Ask AppSec: free security newsletter

Ask AppSec: free security newsletter