Unakamatia vipi mawasiliano ya huduma-kwa-huduma (mTLS, zero-trust)?

Question

Accepted Answer

Ndani ya mtandao wa huduma ndogo huwezi kuamini mtandao tu kwa sababu ni "ndani". **Zero-trust** inachukulia kuwa mtandao ni adui, kwa hiyo kila simu inathibitishwa na imeruhusiwa, na trafiki inasimuliwa kwa **mTLS**.

## Mutual TLS (mTLS)

Tofauti na TLS ya kawaida, **pande zote** zinaleta hati. Kila huduma inathibitisha kitambulisho chake, na trafiki inasimuliwa wakati wa uhamisho.

```text
Service A ──cert──▶ Service B
Service A ◀─cert── Service B   (both verify each other's identity)
→ caller is authenticated AND data is encrypted
```

Service mesh inaweza kupatia mTLS kiotomatiki bila mabadiliko ya kod wa programu.

## Idhini ya huduma-kwa-huduma

Kitambulisho (nani anayopigia simu) pamoja na sera (nini wanaweza kufanya). Tokens (JWT) au utambulisho wa SPIFFE unabaini kitambulisho cha mpigia simu.

```yaml
# allow only the orders service to call payments
policy:
  from: { service: orders }
  to:   { service: payments, path: /charge }
  action: ALLOW            # everything else denied by default
```

## Ulinzi katika kina

```text
✓ Authenticate every request (no implicit network trust)
✓ Least privilege — a service can call only what it needs
✓ Short-lived, rotated credentials/certs
✓ Validate tokens at the edge AND between services
✓ Encrypt in transit (mTLS) and at rest
```

## Mtego

Kuamini mtandao wa ndani ("iko nyuma ya mlangʼo wa api") ndilo jinsi huduma moja iliyohalifu inakuwa uhalifu kamili.

## Kwa nini ni muhimu

Katika mtandao wa ndani wa gorofa, huduma moja iliyohalifu inaweza kufikia kila kitu; zero-trust inaikamata. mTLS pamoja na idhini kwa kila simu inamaanisha kwamba mshambuliaji anaye ingia ndani hawezi kumiga huduma au kusonga upande mmoja, ambayo ni ahadi ya kati ya usalama wa jukwaa la huduma ndogo la kisasa.