Let me tell you about the TLS termination system I built. We needed to support custom domains at scale, which meant HAProxy handling thousands of certificates and terminating TLS for high-traffic services.
The old playbook was simple: decrypt at the load balancer, send HTTP to your app servers, call it a day. But that plaintext traffic between your load balancer and backends? That’s a security team’s nightmare in 2025. Zero Trust means exactly that — trust nothing, encrypt everything, even your “internal” traffic.