The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit Europe 2024 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.
This schedule is automatically displayed in Central European Summer Time (UTC/GMT +2). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."
IMPORTANT NOTE: Timing of sessions and room locations are subject to change.
This talk delves into the transformative combination of WireGuard and Calico for enhancing network security in Kubernetes clusters. Despite the ubiquity of Kubernetes in microservice orchestration, securing the inter-node traffic often presents a significant challenge. We will first discuss the security risks associated with the non-encryption of inter-node traffic, such as data interception and potential injection of malicious payloads. It underscores the critical importance of implementing traffic encryption within Kubernetes clusters to thwart these threats. We examine WireGuard and ProjectCalico using its eBPF dataplane for securing traffic. The talk navigates the potential constraints, including the requirement for kernel support, the complexity of multi-cluster setups, and the compatibility issues across different environments.