...
The question would be: who/how to generate key and cert ?
Follow the practice of MSB project, multicloud service will generate our own keys/certs and put them in the docker by default. And also make sure these keys/certs can be overrided by OOM helm chart , just like the logging settings.
6, Security Requirement: Run microservice as non-root user