Implementación de protocolos seguros en arquitecturas Service Mesh con Istio

García Velasco, Joseba

Please use this identifier to cite or link to this item: http://hdl.handle.net/10609/145848

Title:	Implementación de protocolos seguros en arquitecturas Service Mesh con Istio
Author:	García Velasco, Joseba
Tutor:	Linares Zapater, Ángel
Others:	Garcia-Font, Victor
Abstract:	This final work of head seeks to show a solution to the need to design applications in such a way that the implementation functions of the business logic can be separated (what functionality the application must cover) from the security service implementation logic (what security controls I must equip the solution). Istio approaches this solution in architectures based on microservices on top of Kubernetes. To do this, the implementation of a solution based on a microservices architecture supported by a solution that adds security controls is addressed. This solution will be provided with security capabilities, aimed at controlling communications traffic between services. Specifically, the solution will have the capabilities of the Istio tool implemented, on a Kubernetes platform. These capabilities are based on authentication and authorization security controls, which are based on the mTLS protocol. Specifically, these functions to be implemented will be the enabling of the mTLS protocol in the specific traffic between the services of the solution and the enabling of http traffic on this mTLS protocol, thus achieving a secure communications protocol in the architecture. In the implementation phase, a web application is presented with a series of microservices on which the capabilities of mTLS and communication via http will be implemented.
Keywords:	authentication certificate authority segmentation
Document type:	info:eu-repo/semantics/masterThesis
Issue Date:	Jun-2022
Publication license:	http://creativecommons.org/licenses/by-nc-nd/3.0/es/
Appears in Collections:	Trabajos finales de carrera, trabajos de investigación, etc.