appendix C. Istio security: SPIFFE

C.1 Authentication using PKI (public key infrastructure)

Authentication of communicating parties on the World Wide Web is done using digitally signed certificates provisioned by a public key infrastructure (PKI). The PKI is a framework that defines the process of providing the server (such as a web app) with a digital certificate to prove its identity and providing the client with the means of verifying the validity of the digital certificate. To dive deeper into how the PKI works, check out https://www.securew2.com/blog/public-key-infrastructure -explained.

The certificates provisioned by the PKI have a public key and a private key. The public key is contained in the certificate presented to the client as a ...

Get Istio in Action now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Istio in Action by Rinor Maloku, Christian E. Posta

appendix C. Istio security: SPIFFE

C.1 Authentication using PKI (public key infrastructure)

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly