This document discusses securing communication in cloud native applications. It describes how API gateways and service meshes can be used to provide security between end users and services. API gateways act as edge proxies, enforcing TLS and authentication. Service meshes provide mTLS and access control lists (ACLs) for internal service communication. The document advocates for a defense in depth approach including infrastructure hardening, encryption, and least privilege access. It provides examples of configuring Ambassador and Consul Connect for edge and internal communication security.