[object Object]
SPIFFE

SPIFFE with Meshery

Collaborative and visual infrastructure as code for SPIFFE

Features

  • Design and apply policy for node and workload attestation.
  • Configure your signing framework for securely issuing and renewing SVIDs.
  • Simplify access from identified services to secret stores, databases, services meshes and cloud provider services.

Overview

The Secure Production Identity Framework For Everyone (SPIFFE) Project defines a framework and set of standards for identifying and securing communications between application services.

Meshery deploys and manages SPIRE (the SPIFFE Runtime Environment). SPIRE is a toolchain of APIs for establishing trust between software systems across a wide variety of hosting platforms. SPIRE exposes the SPIFFE Workload API, which can attest running software systems and issue SPIFFE IDs and SVIDs to them. This in turn allows two workloads to establish trust between each other, for example by establishing an mTLS connection or by signing and verifying a JWT token. SPIRE can also enable workloads to securely authenticate to a secret store, a database, or a cloud provider service.

Collaboratively and visually diagram your cloud native infrastructure with GitOps-style pipeline integration. Design, test, and manage configuration your Kubernetes-based, containerized applications as a visual topology.

Looking for best practice cloud native design and deployment best practices? Choose from thousands of pre-built components in MeshMap. Choose from hundreds of ready-made design patterns by importing templates from Meshery Catalog or use our low code designer, MeshMap, to create and deploy your own cloud native infrastructure designs.

How it Works

See It in Action

Better together - SPIFFE with Meshery

Wrangle the Workload API

Expertly use the Workload API specification to issue and retrieve SVIDs.

Slide 1
  • Slide 0
  • Slide 1

Related Integrations

80+ Built-In Integrations

Support for your Cloud Native Infrastructure and Apps

All (76)

Platforms (7)

Orchestration & Management (11)

Continuous Integration & Delivery (2)

Service Mesh (7)

Runtime (6)

Orchestration (1)

Observability and Analysis (8)

App Definition and Development (9)

Operating System (3)

Provisioning (13)

Cloud Native Network (1)

Serverless (4)

Scheduling & Orchestration (1)

Security & Compliance (1)

Key Management (2)

Layer5, the cloud native management company

An empowerer of engineers, Layer5 helps you extract more value from your infrastructure. Creator and maintainer of service mesh standards. Maker of Meshery, the cloud native management plane.