So when pod needs to communicate securely inside the cubernetes SSL or TLS is used to encrypt the traffic but by default cubernetes doesn't enforce the SSL between ports. So in real time what we're going to do is we're going to use some tools like service mesh or link or certificates manager to enable mutual TLS. So with the help of mutual TLS pod gets its own certificate and traffic is automatically encrypted.
So the sidecar proxies like NY in the STO handles the SSL handshake and verifies the identity. So by following this uh if someone tries to capture the traffic they can't read the data. This setup and shows both ads from P level authentication inside the cluster.
