Wormhole is a new networking plugin for Kubernetes built to encrypt internal cluster communications transparently using Wireguard, a new lightweight VPN technology. The plugin builds an encrypted overlay network, ensuring all internal traffic is always encrypted. See my previous post introducing Wormhole for additional background.

This post aims to explore and answer two of the most interesting questions we came across after announcing Gravitational Wormhole.

• How do current Kubernetes solutions trust the underlying network?
• What are the advantages of using WireGuard/Wormhole over other choices?

#kubernetes #network security #security