Portshift Service Mesh Security
DevOps and cloud engineering are moving fast to deploy new container-based applications but don’t use security team approved machine identities. Security teams can’t give engineering and operations teams an easy way to use approved machine identities, and security teams don’t have the confidence approved machine identities are being used. Additionally, security teams can’t observe how these machine identities and policies are being applied throughout container infrastructure.
As part of the Machine Identity Management Development Fund, Portshift is developing a Venafi Operator to be included with the Portshift Istio distribution and/or SaaS management services. Portshift will bundle VCert with their distribution so that customers can quickly enable and connect Portshift to Venafi Trust Protection Platform or Venafi as a Service. This will make it easy for engineering teams to use security team approved machine identities using a Venafi-issuing CA and security policy.