Policy Everywhere: Zero Trust API Security through Embedded Enforcement in Microservice Meshes
DOI:
https://doi.org/10.48047/ijiee.2023.13.4.10Keywords:
Zero Trust Architecture, Microservices, API Security, mTLS, OAuth2, JWT, Istio, OPA, Service Mesh, API Gateway, Access Control, Distributed Systems SecurityAbstract
The widespread adoption of microservices in cloud-native architectures has exposed fundamental limitations in conventional API security mechanisms that rely on perimeter-based trust and static token models such as OAuth2 and JWT. These legacy approaches, predicated
Downloads
Download data is not yet available.
Downloads
Published
20.05.2023
Issue
Section
Articles
License
You are free to:
- Share — copy and redistribute the material in any medium or format for any purpose, even commercially.
- Adapt — remix, transform, and build upon the material for any purpose, even commercially.
- The licensor cannot revoke these freedoms as long as you follow the license terms.
Under the following terms:
- Attribution — You must give appropriate credit , provide a link to the license, and indicate if changes were made . You may do so in any reasonable manner, but not in any way that suggests the licensor endorses you or your use.
- No additional restrictions — You may not apply legal terms or technological measures that legally restrict others from doing anything the license permits.
Notices:
You do not have to comply with the license for elements of the material in the public domain or where your use is permitted by an applicable exception or limitation .
No warranties are given. The license may not give you all of the permissions necessary for your intended use. For example, other rights such as publicity, privacy, or moral rights may limit how you use the material.
How to Cite
Policy Everywhere: Zero Trust API Security through Embedded Enforcement in Microservice Meshes . (2023). International Journal of Information and Electronics Engineering, 13(4), 104-118. https://doi.org/10.48047/ijiee.2023.13.4.10
