Real world Istio - War stories and Gotchas Speakers: Lasse Højgaard & Frederik Mogensen - Trifork In a public health care project requirements for security and data protection are very rigid - can Istio help us solve these requirements? And at what cost? This talk is about using Istio for running a multi-tenant setup, allowing the different tenants to talk to the core services on the platform, but not disrupting each other. Enforcing security between services using the service mesh, by demanding JWT tokens on all requests, adding mutual encryption, locking down egress traffic, disallowing inter-namespace traffic, etc. We share our experiences running Istio, war stories, bugs found, and failures.