Most organizations using Kubernetes and service mesh have been unable to see the expected ROI.
Organizations with multi-cloud environments experience high difficulty in managing workload identities across multiple clouds.
67% of respondents in a recent IT survey reported delaying or slowing down deployment due to Kubernetes security concerns.
Connecting workloads in different cloud environments with federation mechanisms is time-consuming and complex.
Provide application and service workloads with their own Identity Manager and a trusted identity credential that is verified each time workloads connect.
Centralized and automated "cert-based" identity services create trust boundaries and this inhibits connectivity to applications outside the boundary.
Eliminate trust boundaries with a decentralized identity management system where application workloads manage and rotate their own identities without boundaries.
Automated certificates are issued without vetting a workload's trust. Trust is only implicit. And each new cert is a completely new workload identity with no prior history.
Provide a Machine Alias ID (MAID) to trusted workloads at deployment and rotate it frequently with a mechanism to verify trust at each connection.