From the course: Certified Kubernetes Security Specialist (CKS) Cert Prep

Unlock this course with a free trial

Join today to access over 24,900 courses taught by industry experts.

Using Cilium for pod-to-pod encryption

Using Cilium for pod-to-pod encryption - Kubernetes Tutorial

From the course: Certified Kubernetes Security Specialist (CKS) Cert Prep

Start my 1-month free trial Buy for my team

Using Cilium for pod-to-pod encryption

- So when we look at pod-to-pod encryption, it's important to understand that this is a key component to be able to protect against network level attacks within Kubernetes. It also is going to ensure that data confidentiality between pods, and as we mentioned before, that's a crucial aspect. And then the other components that typically have prevented this from being something that's just easy to do within Kubernetes comes down to the fact that it's a challenge to be able to do traditional implementation. There's a lot of performance overhead, so if you wanted to set up Ipsec between each tunnel, or you know, between each one of the containers, that's not an easy task, as well as the resources that it takes. It's also complex from a key management perspective. However you're doing it, via either certificates or passwords or other mechanisms, it can be very difficult when you're talking about hundreds or even some cases, thousands of containers that you've got to manage. And then of…

Contents