a-new-choice-for-istio-data-plane-architectural-innovation-for-a-brand-new-performance-experience-istioxiao-zha-sao-daepxia-mo-zha-zhonghu-xu-huawei.pdf

《a-new-choice-for-istio-data-plane-architectural-innovation-for-a-brand-new-performance-experience-istioxiao-zha-sao-daepxia-mo-zha-zhonghu-xu-huawei.pdf》由会员分享，可在线阅读，更多相关《a-new-choice-for-istio-data-plane-architectural-innovation-for-a-brand-new-performance-experience-istioxiao-zha-sao-daepxia-mo-zha-zhonghu-xu-huawei.pdf（27页珍藏版）》请在三个皮匠报告上搜索。

1、A New Choice for Istio Data Plane:Reshape Sidecarless ServiceMesh with eBPF and Programmable kernelAbout MeCNCF TAG Network Tech LeadIstio Steering Committee MemberIstio,Kmesh MaintainerKubernetes MemberZhonghu XuHuawei CloudAgendaService Mesh Background Why KmeshKmesh Key FeaturesFuture of Service

2、MeshAgendaService Mesh Background Why KmeshKmesh Key FeaturesFuture of Service MeshWhat is Service MeshService Mesh is an infrastructure layer that handles communication between services.It is commonly used in conjunction with microservices architecture to provide features such as service discovery,

3、load balancing,circuit breaking,monitoring,tracing,and security.Core Concepts：1.Non-intrusive Sidecar Injection,injecting a sidecar container into the applications pod without affecting the application itself.It is agnostic to the applications programming language.2.Declarative API:Service Mesh expo

4、ses a northbound API using Kubernetes Custom Resource Definitions(CRDs).This API is fully declarative and standardized.。3.xDS Dynamic Config Update:The data plane and control plane communicate using the xDS gRPC,supporting sub-pub updates。Key Features：1.Service&Traffic Manage:Circuit breaking,fault

5、injection,rich load balancing algorithms,rate limiting,health checks,canary releases,blue-green deployments,etc.2.Observability：Provides application-level monitoring,distributed call chains,access logs,and more.3.Secure Encryption：Helps enterprises run applications in zero-trust networks through sec

6、urity measures such as mTLS(Mutual Transport Layer Security),authentication,authorization,Service LB Service discovery Auto-scaling OpsAppAppApp Telemetry Routing Circuit breaker Authn/z Zero trust KubernetesService MeshRetrospect of SM History1.Service Mesh evolved from sidecar to sidecarless2.Perf