Lightweight mTLS without Proxies, Sidecars or Complexity
04-17, 09:30–10:00 (Europe/Amsterdam), The Warehouse

Implementing mTLS today typically requires multiple abstractions, layers and configuration complexity. Imagine reducing the many steps and configuration artifacts to enable mutual TLS into a single step. Without node-based proxies, sidecars, or additional control planes to manage these and associated complexity. Oh, and reduce latency by a third.

The session will introduce how this can be enabled with a demo of automated mTLS with identity and security policy management and associated observability for cloud-native services. Integration with legacy abstractions and control planes will also be illustrated for coexistence with previously deployed apps and infrastructure.


The talk will introduce a simple way to enable network security in cloud-native web microservices. Early feedback has been extremely positive, with real-world validation that it addresses a number of challenges with existing approaches.

Karthik has been involved in the design and production adoption of abstractions used for cloud-native network security approaches since the early days of Kubernetes, and has guided the architecture of numerous high-profile deployments of Kubernetes network security and service mesh/mTLS deployments. He has been a product advisor for a number of early stage startups and assisted with design, community launch, and operational rollout of a number of widely adopted cloud-native runtime and network security products.