Piye carane ngamanake komunikasi layanan-ke-layanan (mTLS, zero-trust)?

Question

Accepted Answer

Ing sajrone jaringan microservices sampeyan ora bisa percaya ing jaringan mung amarga iku "internal". **Zero-trust** ngandhaké manawa jaringan iku musuhan, supaya saben panggilan iku diautentikasi lan wewenang, lan traffik dienkripsi nganggo **mTLS**.

## Mutual TLS (mTLS)

Beda karo TLS normal, **kabeh rong** sisi nampilake sertifikat. Saben layanan mbuktèk identitase, lan traffik dienkripsi ing transit.

```text
Service A ──cert──▶ Service B
Service A ◀─cert── Service B   (both verify each other's identity)
→ caller is authenticated AND data is encrypted
```

Mesh layanan bisa nyediakake mTLS kanthi otomatis tanpa owah-owahan kode app.

## Wewenang antar layanan

Identitas (sapa sing nelpon) plus kebijakan (apa sing bisa dilakokno). Token (JWT) utawa identitas SPIFFE nggawa identitas panggilan.

```yaml
# allow only the orders service to call payments
policy:
  from: { service: orders }
  to:   { service: payments, path: /charge }
  action: ALLOW            # everything else denied by default
```

## Pertahanan ing jero

```text
✓ Authenticate every request (no implicit network trust)
✓ Least privilege — a service can call only what it needs
✓ Short-lived, rotated credentials/certs
✓ Validate tokens at the edge AND between services
✓ Encrypt in transit (mTLS) and at rest
```

## Jebakan

Percaya ing jaringan internal ("iku ana ing mburine firewall") iku cara sawijining layanan sing kumompromèn dadi kompromi lengkap.

## Kenapa iku penting

Ing jaringan internal sing rata, sawijining layanan sing kumompromèn bisa nyumandhang kabeh; zero-trust ngiket radius iku.

mTLS plus wewenang saben panggilan ngandhaké yen penyerang sing mendol ing njabang ora bisa niru layanan utawa obah lateral, sing dadi janjine keamanan pokok saka platform microservices modern.