DoD Enterprise DevSecOps Platform Technology Stack (Exemplar)

DoD Enterprise DevSecOps Platform Architecture*

Microservices Architecture (Istio)

  • Design a Service Mesh (ISTIO) architecture
  • ISTIO sidecar proxy, baked-in security, with visibility across containers, by default, without any developer interaction or code change
  • Benefits:
    • API Management, service discovery, authentication…
    • Dynamic request routing for A/B testing, gradual rollouts, canary releases, resilience, observability, retries, circuit breakers and fault injection
    • Layer 7 Load balancing
    • Zero Trust model: East/West Traffic Whitelisting, ACL, RBAC…
    • TLS encryption by default, Key management, signing…