Modal Title
Cloud Native Ecosystem Containers Edge Computing Microservices Networking Serverless Storage
The Transformative Power of SBOMs and IBOMs for Cloud Apps
Jun 15th 2023 9:20am, by Oren Penso
Pulumi: New Features for Infrastructure as Code Automation
Jun 15th 2023 9:00am, by B. Cameron Gain
A CTO’s Guide to Navigating the Cloud Native Ecosystem
Jun 13th 2023 9:39am, by Jess Lulka
Survey Says: Cloud Maturity Matters
Jun 13th 2023 6:20am, by Fredric Paul
The Rise of the Cloud Native Cloud
Jun 12th 2023 9:38am, by John Dietz
A CTO’s Guide to Navigating the Cloud Native Ecosystem
Jun 13th 2023 9:39am, by Jess Lulka
Deploy a Kubernetes Development Environment with Kind
Jun 10th 2023 7:00am, by Jack Wallen
Chainguard Improves Security for Its Container Image Registry
May 31st 2023 6:30am, by Steven J. Vaughan-Nichols
How to Protect Containerized Workloads at Runtime
May 30th 2023 4:00am, by Kevin Casey
How to Containerize a Python Application with Paketo Buildpacks
May 29th 2023 5:00am, by Sylvain Kalache
Creating an IoT Data Pipeline Using InfluxDB and AWS
Jun 5th 2023 10:25am, by Jason Myers
Dell Intros New Edge, Generative AI, Cloud, Zero Trust Prods
May 31st 2023 11:00am, by Chris J. Preimesberger
Gothenburg, Sweden Used Open Source IoT to Drastically Cut Water Waste
May 23rd 2023 6:58am, by Alex Handy
Building a Plant Monitoring Tool with IoT
May 8th 2023 9:27am, by Zoe Steinkamp
How to Choose and Model Time Series Databases
Apr 28th 2023 3:00am, by Robert Kimani
In the Great Microservices Debate, Value Eats Size for Lunch
Jun 13th 2023 6:10am, by Anoop Balakuntalam
Amazon Prime Video’s Microservices Move Doesn’t Lead to a Monolith after All
Jun 13th 2023 6:00am, by Scott M. Fulton III
Case Study: A WebAssembly Failure, and Lessons Learned
May 25th 2023 7:00am, by Susan Hall
RabbitMQ Is Boring, and I Love It
May 15th 2023 6:30am, by Josh Long
How OpenSearch Visualizes Jaeger's Distributed Tracing
May 11th 2023 10:00am, by Derek Ho and Jonah Kowall
Red Hat Launches OpenStack Platform 17.1 with Enhanced Security
Jun 14th 2023 10:34am, by Steven J. Vaughan-Nichols
WithSecure Pours Energy into Making Software More Efficient
Jun 1st 2023 7:14am, by Joe Fay
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
How to Decide Between a Layer 2 or Layer 3 Network
Apr 25th 2023 10:00am, by Gino Dion
Linkerd Service Mesh Update Addresses More Demanding User Base
Apr 11th 2023 6:17am, by Joab Jackson
Microsoft Fabric Defragments Analytics, Enters Public Preview
May 23rd 2023 8:00am, by Andrew Brust
Forrester on WebAssembly for Developers: Frontend to Backend
May 17th 2023 6:00am, by Loraine Lawson
Return of the Monolith: Amazon Dumps Microservices for Video Monitoring
May 4th 2023 7:23am, by Joab Jackson
IBM's Quiet Approach to AI, Wasm and Serverless
May 4th 2023 6:00am, by Loraine Lawson
Cloud Control Planes for All: Implement Internal Platforms with Crossplane
Apr 13th 2023 10:00am, by Bassam Tabbara
The Architect’s Guide to Storage for AI
Jun 1st 2023 7:44am, by Keith Pijanowski
8 Real-Time Data Best Practices
Jun 1st 2023 5:00am, by Jennifer Riggins
Raft Native: The Foundation for Streaming Data’s Best Future
May 30th 2023 9:44am, by Doug Flora
Why the Document Model Is More Cost-Efficient Than RDBMS
May 25th 2023 9:24am, by Rick Houlihan
Amazon Aurora vs. Redshift: What You Need to Know
May 25th 2023 6:27am, by Casey Samulski
Frontend Development Software Development Typescript WebAssembly Cloud Services Data Machine Learning Security
Canva Launches Developer Platform, Eyes Generative AI Apps
Jun 14th 2023 11:00am, by
Dev News: Apollo Drama, Monster API and Mobile App Discontent
Jun 10th 2023 6:00am, by
Vision Pro for Devs: Easy to Start, but UI Not Revolutionary
Jun 9th 2023 9:09am, by
Dev News: A New Rust Release and Chrome 114 Updates
Jun 3rd 2023 9:00am, by
Dealing with Death: Social Networks and Modes of Access
Jun 3rd 2023 6:00am, by
An E-tailer’s Journey to Real-Time AI: Recommendations
Jun 15th 2023 10:41am, by
How Dell's Data Science Team Benefits from Agile Practices
Jun 15th 2023 9:38am, by
The Transformative Power of SBOMs and IBOMs for Cloud Apps
Jun 15th 2023 9:20am, by
Apache SeaTunnel Integrates Masses of Divergent Data Faster
Jun 15th 2023 6:58am, by
Can Companies Really Self-Host at Scale?
Jun 14th 2023 7:47am, by
70% of Devs Using or Will Use AI, Says Stack Overflow Survey
Jun 14th 2023 10:45am, by
Dev News: A New Rust Release and Chrome 114 Updates
Jun 3rd 2023 9:00am, by
Dev News: New Microsoft Edge Tools and Goodbye Node.js 16
May 27th 2023 6:00am, by
Dev News: Angular v16, plus Node.js and TypeScript Updates
Apr 22nd 2023 4:00am, by
This Week in Computing: Malware Gone Wild
Mar 25th 2023 7:10am, by
WebAssembly and Go: A Guide to Getting Started (Part 1)
Jun 12th 2023 5:00am, by
WebAssembly and Go: A Guide to Getting Started (Part 2)
Jun 12th 2023 5:00am, by
How WASM (and Rust) Unlocks the Mysteries of Quantum Computing
Jun 8th 2023 3:00am, by
The Need to Roll up Your Sleeves for WebAssembly
Jun 5th 2023 6:00am, by
Python and WebAssembly: Elevating Performance for Web Apps
Jun 5th 2023 3:00am, by
Managing Kubernetes Complexity in Multicloud Environments
Jun 15th 2023 7:48am, by
3 AI Moves Smart Companies Get Right
Jun 14th 2023 8:41am, by
Amazon Prime Video’s Microservices Move Doesn’t Lead to a Monolith after All
Jun 13th 2023 6:00am, by
Open Sourcing AWS Cedar Is a Game Changer for IAM
Jun 12th 2023 10:00am, by
Dell Intros New Edge, Generative AI, Cloud, Zero Trust Prods
May 31st 2023 11:00am, by
An E-tailer’s Journey to Real-Time AI: Recommendations
Jun 15th 2023 10:41am, by
How Dell's Data Science Team Benefits from Agile Practices
Jun 15th 2023 9:38am, by
Apache SeaTunnel Integrates Masses of Divergent Data Faster
Jun 15th 2023 6:58am, by
Salesforce Officially Launches Einstein AI-Based Data Cloud
Jun 15th 2023 5:00am, by
Can Companies Really Self-Host at Scale?
Jun 14th 2023 7:47am, by
3 AI Moves Smart Companies Get Right
Jun 14th 2023 8:41am, by
Google's DeepMind Extends AI with Faster Sort Algorithms
Jun 13th 2023 12:09pm, by
How to Reduce the Hallucinations from Large Language Models
Jun 9th 2023 7:46am, by
Cybersecurity Pioneer Calls for Regulations to Restrain AI
Jun 9th 2023 5:00am, by
How Apache Airflow Better Manages Machine Learning Pipelines
Jun 8th 2023 3:13pm, by
The Transformative Power of SBOMs and IBOMs for Cloud Apps
Jun 15th 2023 9:20am, by
Salesforce Officially Launches Einstein AI-Based Data Cloud
Jun 15th 2023 5:00am, by
Red Hat Launches OpenStack Platform 17.1 with Enhanced Security
Jun 14th 2023 10:34am, by
Survey Says: Cloud Maturity Matters
Jun 13th 2023 6:20am, by
Open Sourcing AWS Cedar Is a Game Changer for IAM
Jun 12th 2023 10:00am, by
Platform Engineering Operations CI/CD Tech Life DevOps Kubernetes Observability Service Mesh
At PlatformCon: For Realtor.com, Success Is Driven by Stories
Jun 13th 2023 9:31am, by Jennifer Riggins
‘Running Service’ Blueprint for a Kubernetes Developer Portal
Jun 7th 2023 8:30am, by Zohar Einy
Building GPT Applications on Open Source Stack LangChain
Jun 7th 2023 6:58am, by Akmal Chaudhri
Can DevEx Metrics Drive Developer Productivity?
Jun 7th 2023 3:00am, by Jennifer Riggins
SRE vs. DevOps? Successful Platform Engineering Needs Both
Jun 6th 2023 10:53am, by Paige Cruz
Pulumi: New Features for Infrastructure as Code Automation
Jun 15th 2023 9:00am, by B. Cameron Gain
Managing Kubernetes Complexity in Multicloud Environments
Jun 15th 2023 7:48am, by Hemanth Kavuluru
The Risks of Decomposing Software Components
Jun 14th 2023 12:47pm, by Alex Williams
No More FOMO: Efficiency in SLO-Driven Monitoring
Jun 14th 2023 10:00am, by Imaya Kumar Jagannathan
Can Companies Really Self-Host at Scale?
Jun 14th 2023 7:47am, by Jessica Wachtel
What’s Up with OpenStack in 2023
Jun 14th 2023 7:00am, by Kristin Barrientos
Kubernetes Operators: The Real Reason Your Boss Is Smiling
Jun 14th 2023 6:30am, by Ryan Wallner
Is DevOps Tool Complexity Slowing Down Developer Velocity?
May 17th 2023 6:29am, by Heather Joslyn and Lawrence E Hecht
AI Has Become Integral to the Software Delivery Lifecycle
May 12th 2023 11:01am, by Richard MacManus
4 Core Principles of GitOps
May 11th 2023 2:17pm, by Alex Williams
Neil deGrasse Tyson on AI Fears and Pluto’s Demotion
Jun 9th 2023 6:00am, by Loraine Lawson
Can DevEx Metrics Drive Developer Productivity?
Jun 7th 2023 3:00am, by Jennifer Riggins
Donald Knuth Asked ChatGPT 20 Questions. What Did We Learn?
Jun 4th 2023 6:00am, by David Cassel
Dealing with Death: Social Networks and Modes of Access
Jun 3rd 2023 6:00am, by David Eastman
Defend Open Source from Trolls: Oppose Patent Rule Changes
Jun 2nd 2023 6:49am, by Michael Dolan
Kubernetes Operators: The Real Reason Your Boss Is Smiling
Jun 14th 2023 6:30am, by Ryan Wallner
At PlatformCon: For Realtor.com, Success Is Driven by Stories
Jun 13th 2023 9:31am, by Jennifer Riggins
How DevSecOps Teams Should Approach API Security
Jun 12th 2023 6:30am, by Gary Archer
GitLab All in on AI: CEO Predicts Increased Demand for Coders
Jun 9th 2023 8:26am, by Loraine Lawson
Unlocking DevSecOps' Potential Challenges, Successes, Future
Jun 9th 2023 7:40am, by Steven J. Vaughan-Nichols
Managing Kubernetes Complexity in Multicloud Environments
Jun 15th 2023 7:48am, by Hemanth Kavuluru
Kubernetes Operators: The Real Reason Your Boss Is Smiling
Jun 14th 2023 6:30am, by Ryan Wallner
The First Kubernetes Bill of Materials Standard Arrives
Jun 13th 2023 10:48am, by Steven J. Vaughan-Nichols
The Rise of the Cloud Native Cloud
Jun 12th 2023 9:38am, by John Dietz
Deploy a Kubernetes Development Environment with Kind
Jun 10th 2023 7:00am, by Jack Wallen
No More FOMO: Efficiency in SLO-Driven Monitoring
Jun 14th 2023 10:00am, by Imaya Kumar Jagannathan
How Adobe Uses OpenTelemetry Collector
Jun 5th 2023 10:02am, by Susan Hall
Red Hat Ansible Gets Event-Triggered Automation, AI Assist on Playbooks
May 24th 2023 6:22am, by Joab Jackson
Observability: Working with Metrics, Logs and Traces
May 22nd 2023 8:23am, by Jessica Wachtel
Why Upgrade to Observability from Application Monitoring?
May 19th 2023 11:49am, by George Hamilton
Don't Force Containers and Disrupt Workflows
May 25th 2023 3:10pm, by Alex Williams
Linkerd Service Mesh Update Addresses More Demanding User Base
Apr 11th 2023 6:17am, by Joab Jackson
How to Create Zero Trust Architecture for Service Mesh
Mar 27th 2023 7:00am, by Joe Fay
Ambient Mesh: Sidestepping the Sidecar
Mar 1st 2023 8:44am, by Jeff Goldman
Service Mesh Demand for Kubernetes Shifts to Security
Oct 27th 2022 11:04am, by B. Cameron Gain

Security

 
OVERVIEW

Security involves securing applications, devices, and users accessing the network infrastructure. To prevent cyber threats and exploitation, network security implements multiple layers of defense within the network and at the edge. The cost of operational overhead and other expenses can be reduced by adopting serverless security.

Cloud native computing and cloud computing require different approaches to security. Cloud native security has a set of priorities and open-source security requirements that come with introducing both a container and container orchestrator into a production environment.

Securing both internal and external systems has become vital. This is evident in the Docker Hub intrusion in early 2019, which also affected GitHub, BitBucket, and other public/private cloud-based repositories.

What Is Application Security?

Application security is developing and testing security features to detect and prevent vulnerabilities. Securing applications avoid unauthorized access and modification of software.

What Is Zero Trust Security?

Zero trust security is a framework that verifies everyone and trusts no one. Access to networks, applications, devices, software, and systems is verified through a combination of authentication and validated for appropriate user access. In today’s cybersecurity-driven world, zero trust helps to ensure data and company information is kept out of the wrong hands.

What Is Network Security?

Network security involves protecting a networking infrastructure, including applications, devices, and users with access to these things. Through multiple layers of defense within the network and at the edge, network security implements a host of controls and policies to prevent cyber threats and exploitation.

Still interested in security? Check out: Shared Security for Interconnected Blockchains

Network Security Tools Provide Software Protection

Network security tools are hardware and software that protect your network from potential threats. These tools secure sensitive information and enable consistent delivery of your organization’s solutions.

Here are some of the protections that network security tools provide:

Firewall. By using predefined rules, firewalls control network traffic flow.

Network Segmentation. Set boundaries between network segments with similar roles, risks, or functions in a company.

Access Control. Network security systems help organizations manage their networks and systems by limiting or providing access when required.

Data Loss Prevention (DLP). Data Loss Prevention software monitors your network for unauthorized attempts to access your data and stops unauthorized data exfiltration.

Email Security. Protecting email content and accounts from threats is essential for privacy and relationships with customers or team members. Security vendors help email service providers secure your information with advanced network security systems.

Intrusion Prevention Systems (IPS). Intrusions often occur in networks and systems. Attackers try to exploit intrusions before solutions are implemented. Security tools such as IPS prevent attackers from interfering by monitoring a network for malicious activity and taking actions such as blocking to prevent such activities.

Sandboxing. Network security tools enable sandboxing — a process that allows you to run codes in an isolated environment that mirrors end-user activities safely. This process is excellent for testing codes and identifying threats before deployment.

Hyperscale Network Security. When numerous servers are networked into a scalable cloud computing system, that’s hyperscale. Increasing or decreasing the number of servers in use allows the network to cope with large and small data volumes according to changing requirements.

Serverless Security Improves Application Agility

Serverless security is an operational model in cloud computing where applications depend on managed cloud services to simplify infrastructure security. Adopting serverless security reduces operational overhead and other costs. As applications no longer rely on other services for functionality such as authentication, developers can focus on optimization, thereby increasing agility.

Benefits of a Secure Development Process

Many development teams create codes and try to bolt on security at the end of development rather than securing the process. Here are some reasons why a secure development process is essential:

Early detection of errors. A secure development process allows developers to identify problems in different environments quickly. This reduces the time spent on fixes and enables developers to optimize their operations.

Cost reduction. Early detection of security flaws decreases the cost of fixing errors. Fewer development components are affected, reducing the cost of devising and implementing solutions.

Reduction of corrupt data. A secure development process minimizes the risk of threats and code interference. Security tools prevent unauthorized access and malicious behavior and ensure data security.

Security Architecture Challenges

Security platforms prevent system breaches and malware. Although these functions are advantageous, security architecture also poses some challenges:

Adoption of DevOps. Many organizations have adopted some form of DevOps into their processes. The need for agility and speed associated with DevOps introduces development and security vulnerabilities to systems.

Architectural fragments. Many architectures are fragmented with little to no integration. This disconnection increases security risks, as there are blind spots in company infrastructure, room for errors, and time wasted.

Compliance mandates. The security architecture must comply with ever-changing government regulations, security standards, and industry regulations. Non-compliance with these requirements attracts fees and penalties. Many present-day security vendors — except those devoted to the cloud-native space, such as Aqua Security — have difficulty complying with these mandates, as seen in the 2019 acquisition of the Twistlock security platform.

Architecture complexity. The extensiveness of some security architecture makes managing risks complex and causes some teams to use the architecture less, which defeats its initial purpose.

How Can Providers Improve Network Security Software

Vector attacks and security risks increase as software development takes place. These risks create the need to improve security infrastructure and optimize existing software.

Here are some ways security providers can improve applications and platforms:

Establishing security policies for pods. Google has developed a security architecture for its cloud called BeyondCorp, a zero-trust model. The software assumes a company firewall will be breached and secures the application at the user level while managing access.

Addressing issues regarding the internet-based collaborative model of application development. Also known as supply-chain security, this process ensures that you improve the safety of your code. Supply chain security helps organizations monitor, analyze, and mitigate risks arising from external services such as software vendors and open-source libraries.

Scanning container images for buggy dependencies. Container images are immutable static files with executable code that can create containers in a system. Security architecture scans these images to ensure container security and secure the development process.

Application security testing. Teams can secure data and ensure maximum software functionality through application security testing, which is the process of evaluating and reporting on the safety of software applications as they move along the software development lifecycle.

At The New Stack, we monitor the development and adoption of cloud-native security tools and the evolution of traditional security tools into the marketplace — which should be API-supported. We also follow advancements as cloud-native security tools offer real-time feedback and become easily licensed for cloud computing environments.

Save this page to learn more about security tools and how they become integrated with DevOps and CI/CD frameworks.

MORE
ESSENTIAL READING
Thumnail image for: What Is Supply Chain Security and How Does It Work?
What Is Supply Chain Security and How Does It Work?
The modern supply chain stretches from component suppliers to manufacturers and ultimately to the retail outlet. Here's how to keep it safe in an ever-changing threat landscape.
Thumnail image for: What Is Zero Trust Security?
What Is Zero Trust Security?
Zero trust is a security model built on central access controls and not trusting everyone in an organization. Discover how this impacts data security today in this article.
Thumnail image for: Zero Trust Adoption: 4 Steps to Implementation Success
Zero Trust Adoption: 4 Steps to Implementation Success
Want to know how to implement a zero trust architecture? Follow these four steps for successful implementation in your organization.
Thumnail image for: Security Metrics that Actually Matter in a DevOps World
Security Metrics that Actually Matter in a DevOps World
evSecOps’ role as a mindset and practice. In this way it extends beyond just security automation and manifests itself as a culture that produces valuable results for the business.For DevSecOps, this raises the question: If DevOps prioritizes software delivery performance, what should security prioritize to support this?
Thumnail image for: 10 Criteria to Evaluate Your Cloud Network Security Solution
10 Criteria to Evaluate Your Cloud Network Security Solution
Learn how you can ensure that vendor cloud network security solutions have the capabilities that are important to your organization’s success and security.
SHARE
Security Roadmap

Level up your Security skills with our sister site roadmap.sh, a community-built resource to guide your learning.

FULL SECURITY ARCHIVE