...
- ISTIO-ingress and MetalLB for ingress connections (connections to Multi-Cloud project from other projects) – Secure at least with one project (SO) and non-secure with others.
- User Management with OAUTH2 server with local userDB.
- RBAC as per ISTIO RBAC
- ISTIO (with envoy)for inter-service communication of containers within the Multi-Cloud project.
- ISTIO CA for certificate enrollment of internal services.
- Manual certificates for external communication
- Certificate credential storage using TPM
- Use ORY (OAUTH2) server
- Improve performance of Envoy with hardware crypto accelerators
...