Draft Special Publication (SP) 800-204B provides deployment guidance for building an authentication and authorization framework within the service mesh that meets these requirements. A reference platform for hosting the microservices-based application and a reference platform for the service mesh are included to illustrate the concepts in the recommendations and provide the context in terms of the components used in real-world deployments.
The security assurance provided by the deployment, the supporting infrastructure needed and the advantages of the Next Generation Access Control (NGAC), the ABAC model representation developed at NIST that is used in the deployment are also discussed.
SP 800-204B (Draft) (DOI)
Comments Due: Feb. 24, 2021
Email Comments to: firstname.lastname@example.org