The Golden Path to SpringOne
Expert talks on the tools and processes devs need to know. Register for SpringOne at VMware Explore >
Securing the Service-to-Service Call Chain Patterns and Protocols
Securing the Service-to-Service Call Chain Patterns and Protocols
Securing the Service-to-Service Call Chain Patterns and Protocols
May 4, 2023
In this episode
Add to calendarA single request arriving at a service can spawn many requests to downstream services. Securing the service-to-service call chain is a critical but challenging problem. This talk covers the key patterns for securing the service-to-service call chain and the technologies required to implement them. We explore patterns for using API Gateways, Service Mesh, SPIFFE, mTLS, JWT, and OpenID Connect using Spring-based demo apps. By the end of the talk, you’ll be familiar with all the key patterns along with technical and security tradeoffs for each of the patterns, allowing you to choose the patterns that will best fit your specific requirements. We’ll provide a GitHub repo containing implementations of all the patterns discussed in the talk, so you can apply what you learn on your projects.
Guests
Adib Saikali
Adib Saikali is a global field principal solutions engineer at VMware Tanzu, focused on helping VMware’s largest customers design and build cloud native applications and platforms using Spring and Kubernetes. Adib is the author of Securing Cloud Applications a book that teaches application developers the fundamental security technologies and protocols required to secure cloud native applications. Over the past 25 years Adib has worked at startups and global enterprises on numerous software systems in a variety of roles, from software developer, architect, agile coach, and CTO. He has developed a 360-degree view of what it takes to build software systems efficiently, and economically.
Hosts
DaShaun Carter
DaShaun is a husband, father of four, volunteer, struggling athlete and Spring Developer Advocate at VMware Tanzu. Deliberately practicing to build, manage, and run, better software, faster.