Cloud Service Mesh

GCPNetworking

Managed Istio-based service mesh that provides east-west traffic management, mTLS, fine-grained authorisation, and unified observability across GKE, GKE on AWS, Cloud Run, and VMs, delivered as a GCP-managed control plane (formerly Anthos Service Mesh)

FluffyStack tools
Add to Service BuilderAdd to CompareCompare with equivalentsExplore GCP in TreemapExplore networking in HoneycombSee GCP regions on the World MapSee networking as a networkScore jurisdiction exposure
DocumentationPricingGCP website

Jurisdictional exposure

Provider HQ
USMountain View, USA

Subject to CLOUD Act, FISA-702, DPF

Region locations
APACCNEEAEUUKUSOther44 regions across 7 jurisdictions
Sovereign option
Yes — 2 sovereign-flagged regions available
Full scorecard for this service →US lens detail →Sovereign cloud coverage map →

Attributes

Managed Control Plane
Yes

Sub-services (4)

Managed Istio

GCP-operated Istio control plane with automatic upgrades

Automatic mTLS

Mesh-wide mutual TLS with no app-side code changes

Fine-Grained Authorization

Identity-based service-to-service authz policies using Istio CRDs

Unified Observability

Golden signals, service dependency graph, and per-request telemetry in Monitoring

Compliance & Certifications

This service is attested for the following frameworks. Always verify with the provider before relying on a specific compliance posture.

GDPRSOC 2ISO 27001HIPAAPCI DSSFedRAMP

Where this runs

44 regions
28 countries
2sovereign
Sovereign regions (2)
  • T-Systems Sovereign Cloud · FrankfurtT-Systems Sovereign Cloud powered by Google Cloud
  • S3NS Sovereign Cloud · ParisS3NS — Google Cloud + Thales joint venture
Commercial regions (42)

Europe (13)

  • Belgium
  • Finland
  • Paris
  • Berlin
  • Frankfurt
  • Milan
  • Turin
  • Netherlands
  • Warsaw
  • Madrid
  • Stockholm
  • Zurich
  • London

North America (12)

  • Montréal
  • Toronto
  • Querétaro
  • Northern Virginia
  • Columbus
  • Iowa
  • Dallas
  • Las Vegas
  • Los Angeles
  • South Carolina
  • Salt Lake City
  • Oregon

South America (2)

  • São Paulo
  • Santiago

Asia (9)

  • Hong Kong
  • Delhi
  • Mumbai
  • Jakarta
  • Osaka
  • Tokyo
  • Singapore
  • Seoul
  • Taiwan

Oceania (2)

  • Melbourne
  • Sydney

Middle East (3)

  • Tel Aviv
  • Doha
  • Dammam

Africa (1)

  • Johannesburg

Tags

service-meshistiomtlstraffic-managementobservabilitynetworking

Equivalent services on other platforms

Amazon VPC LatticeAWS

Fully managed application networking service that connects, secures, and observes services across VPCs and AWS accounts without load balancers or service meshes — HTTP, HTTPS, and gRPC routing with IAM-based authorisation. AWS's replacement for App Mesh going forward

Red Hat OpenShift Service MeshOpenShift

Istio-based service-to-service mTLS, traffic shaping, and observability layered onto OpenShift with Kiali topology, Jaeger tracing, and Operator-managed control plane

OCI Service MeshOracle

Managed Istio-based mesh for service-to-service traffic on OKE — mTLS by default, traffic shaping, retries, circuit breakers, and observability without per-service sidecar configuration. Pairs with OCI API Gateway for north-south + east-west uniform policy.

Pricing

Pricing model:subscription