Product
Request a demo
See Isovalent Cilium Enterprise in action
Request a demo
Resources
- Resources
  Resource Library
  Open source
  Get Cilium from AWS Marketplace
- Whitepapers
  Cilium Overview
  Multi-cluster eBook
  Isovalent Enterprise Security
- Books
  What is eBPF?
  Security Observability
  with eBPF
  Learning eBPF
AMA with Thomas Graf
Join an “ask me anything” session with Thomas Graf, creator of Cilium, co-founder of Isovalent
Add to calendar
Start a hands-on lab
Learn about Isovalent Cilium Enterprise with our interactive labs
Start hands-on lab
Events
- Company
  About us
  Careers
  Partners
- Open Source
  Cilium
  Software for providing, securing and observing network connectivity
  eBPF
  Revolutionary technology with origins in the Linux kernel
- Social media
  GitHub
  Twitter
  YouTube
  LinkedIn
  Slack
Contact us
We look forward to engaging with you around all things Cilium and eBPF
Get in touch
Blog

SECURITY

Transparent Encryption

Effortless Confidentiality and Integrity

How can I encrypt traffic on my clusters, without an operational headache?

Without Cilium

Encryption is required for many compliance frameworks.
However, there's no native pod-to-pod encryption with Kubernetes
Typical solutions are 1) embedding encryption in the application or 2) use a service mesh
Embedding encryption within an app is too complicated and requires app and security domain expertise,
Most Service Mesh implementations come are very complex and hard to manage and operate

Cilium Network Security

Simple “one switch to flip” to enable. Non application changes required.
Automatic key rotation with support for overlapping keys.
Efficient datapath encryption using in-kernel IPsec or WireGuard®. No proxy required.
All node traffic encrypted, including non-standard traffic like UDP.
Works in conjunction with Cilium Cluster Mesh and VM connectivity.
Works across all public and private clouds.

Effectively secure the data plane

Meet compliance requirements: standards such as PCI require encryption of data in transit.
Secure traffic on shared hardware and networks like public or private clouds.
Enable secure operations during migration, encrypting traffic between cloud native and traditional workloads.
Safely use apps with non-standard traffic requirements.

Transparent Encryption Demo with WireGuard

In Episode 3 of the regular livestream covering all things related to eBPF and Cilium, Martynas Pumputis introduces WireGuard and explains how Wireguard on Cilium can be used to encrypt network traffic.

Want to learn more?

There is plenty more material available if you'd like to learn more.

Start a Lab

Step through our interactive labs in a sandbox environment.

Start a Lab

Contact Sales

Engage with the Isovalent sales team to assess an enterprise-grade deployment of Cilium.

Contact Sales

Request a Demo

Request a personalized live demo with an Isovalent Cilium Enterprise expert.

Request a Demo

Product
Security
eBPF-based enforcement, visibility & forensics
Networking
eBPF-based networking & load-balancing
Observability
eBPF-based network & application visibility
Request a demo
See Isovalent Cilium Enterprise in action
Request a demo
Resources
Resource Library
Open source
Get Cilium from AWS Marketplace
Whitepapers
Cilium Overview
Multi-cluster eBook
Isovalent Enterprise Security
Books
What is eBPF?
Security Observability
with eBPF
Learning eBPF
AMA with Thomas Graf
Join an “ask me anything” session with Thomas Graf, creator of Cilium, co-founder of Isovalent
Add to calendar
Start a hands-on lab
Learn about Isovalent Cilium Enterprise with our interactive labs
Start hands-on lab
Events
Company
About us
Careers
Partners
Open Source
Cilium
Software for providing, securing and observing network connectivity
eBPF
Revolutionary technology with origins in the Linux kernel
Social media
GitHub
Twitter
YouTube
LinkedIn
Slack
Contact us
We look forward to engaging with you around all things Cilium and eBPF
Get in touch
Blog

Contact Sales Try Cilium