← Back to microservices patterns mapsecurity
🔒
Microservices Pattern
Mutual TLS (mTLS)
Both client and server services verify each other with certificates.
Detailed Description
mTLS prevents service impersonation inside the cluster.
Service meshes often automate certificate issuance, rotation, and policy.
Visual Diagram
Service A cert <-> Service B cert Both verify identity Encrypted channel
Tradeoffs
Pros
Strong service identity and encryption
Cons
Certificate lifecycle complexity
Examples: Istio mTLS, Linkerd, SPIFFE/SPIRE