The service mesh Istio extends your container platform (Kubernetes, OpenShift) by essential functionalities in the networking part for distributed systems. The tool is a open-source project mainly developed and designed by Google, IBM and Lyft. Istio sits on top of your container platform and takes over the key tasks of traffic management, network security, policy enforcement and telemetry collection. The features of Istio render the possibility to make the entire traffic in your container platform visible, to restrict the traffic via custom sets of rules, to encrypt all the traffic within the container platform and to control the traffic in a way that new versions of a container application can be rolled out into a production environment fast and secure.
The traffic management of Istio helps to roll out new versions of a container application into a production environment controlled and secure (blue-green deployment, canary release, traffic mirroring)
The security features of Istio enable automatic mutual TLS encryption for all the communication within the container platform (secure by default, defense in depth, zero-trust network)
The policy enforcement of Istio allows for the configuration of custom rules for container applications to be enforced at runtime (rate limits, denials, white-/blacklists)
The telemetry collection of Istio supports with the observability and the visualization of the network traffic and with the evaluation of data (metrics, logs, tracing)
How do we support You?
Targeted planning of the service mesh to your needs
Feasibility analysis and concept development under consideration of the requirements portfolio
Deploying and operational support to your service mesh
Training your employees on how to use and manage service mesh