Sched 应用程式允许你建立你的日程表,但不能代替你的活动注册。你必须注册 2021年中国 KubeCon + CloudNativeCon + Open Source Summit - 线上峰会 才能参加会议。如果你还没有注册但想加入我们,请到活动注册页面购票注册。

请注意:此日程表自动显示为中国标准时间(UTC +8)。要想看到您选择的时区,请从右侧 「Filter by Date」上方的下拉菜单中选择。日程表可能会有变动。

December 9-10
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for KubeCon + CloudNativeCon + Open Source Summit China 2021 - Virtual to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in China Standard Time (UTC +8). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date." The schedule is subject to change.
Back To Schedule
Thursday, December 9 • 11:20 - 11:55
支持零信任服务网络的零信任网络整体解决方案 | Zero Trust Network Turnkey Solution to Support Zero Trust Service Mesh - Hongjun Ni & Pan Zhang, Intel

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.
随着越来越多的员工在远程工作,大多数数据/用户/设备/应用程序都在传统企业范围之外移动。成功的数字转型需要零信任安全模型。本演示将介绍一种具有高性能和可扩展性的零信任网络整体解决方案。此解决方案包含 VPP 上的安全网关和 DPDK 上的负载平衡器,支持零信任安全模型。可用于 K8s 入口/出口网关和边缘云网关,支持零信任云服务网格。本主题将涵盖以下要点:1) 介绍零信任网络整体解决方案的总体架构。2) 在 VPP 和 WireGuard 上实现零信任安全网关。3) 在 DPDK 和 WireGuard 上实现零信任云网关。4) 使用 IPsec MB 库和 AVX512 加速基于 VPP 的 WireGuard 协议。5) 实现基于 DPDK 的 WireGuard 协议,具有高性能和可扩展性。6) 利用 SGX 构建用于机密管理的 T 形三通。

With more employees are working remotely, most data/users/devices/apps are moving outside traditional enterprise perimeter. A successful digital transformation demands a zero trust security model. This presentation will introduce a Zero Trust Network Turnkey Solution with High Performance and Scalability. This solution contains Security Gateway on VPP and Load Balancer on DPDK with Zero Trust security model support. It can be used in K8s Ingress/Egress Gateway and Edge Cloud Gateway, and supports Zero Trust Service Mesh for Cloud. This topic will cover below key points: 1) Introduces overall architecture of a Zero Trust Network Turnkey Solution. 2) Implements a Zero Trust Security Gateway on VPP and WireGuard. 3) Implements a Zero Trust Cloud Gateway on DPDK and WireGuard. 4) Accelerates VPP-based WireGuard protocol with IPsec-MB library and AVX512. 5) Implements DPDK-based WireGuard protocol with high performance and scalability. 6) Leverages SGX to build a TEE for secrets management.

avatar for Hongjun Ni

Hongjun Ni

Technical Leader, Intel
Hongjun Ni has been focusing on Cloud Networking and Network Security. He is FD.io VPP Maintainer, UDPI Project Lead, Sweetcomb Project Lead and NSH_SFC Project Lead. He has fifteen years' rich experience on Cloud Networking, Network Security, SmartNIC and Wireless. He has given 20... Read More →

Thursday December 9, 2021 11:20 - 11:55 CST
Kubecon + CloudNativeCon 演讲厅