...
- Providing a service to secure communication among micro services via Mutual Authentication of end points (Mutual TLS) and HTTPS.
- Providing a secret service that will provide RESTful API to ADD, DELETE, UPDATE of secrets and secure storage of secrets using AES encryption.
Scope:
Internal CA Broker Service
The proposed project will provide an Internal CA Broker Service which will be used for certificate enrollment by micro services. The ultimate goal is to make sure that all micro services communicate securely between each other using the Interal CA for enrollment and then use TLS to establish secure communication channels between each other.
...
The below diagram illustrates how a micro service will communicate with the CA Broker Service to enroll its certificate.
The below diagram details the architechture blocks used previously in detail:
Secret Service
The project will also provide a Secret Service with the following features and capabilities:
...