You're reading from Hybrid Cloud Security Patterns Leverage modern repeatable architecture patterns to secure your workloads on the cloud

Product type Paperback

Published in Nov 2022

Publisher Packt

ISBN-13 9781803233581

Length 252 pages

Edition 1st Edition

Concepts

Cloud Computing

Author (1):

Sreekanth Iyer

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Introduction to Cloud Security

2. Chapter 1: Opportunities and Challenges with Hybrid Multi-cloud Solutions FREE CHAPTER

3. Chapter 2: Understanding Shared Responsibility Model for Cloud Security

4. Part 2: Identity and Access Management Patterns

5. Chapter 3: Cloud Identity and Access Management

6. Chapter 4: Implementing Identity and Access Management for Cloud Applications

7. Part 3: Infrastructure Security Patterns

8. Chapter 5: How to Secure Compute Infrastructure

9. Chapter 6: Implementing Network Isolation, Secure Connectivity, and Protection

10. Part 4: Data and Application Security Patterns

11. Chapter 7: Data Security Patterns

12. Chapter 8: Shift Left Security for DevOps

13. Part 5: Cloud Security Posture Management and Zero Trust Architecture

14. Chapter 9: Managing the Security Posture for Your Cloud Deployments

15. Chapter 10: Building Zero Trust Architecture with Hybrid Cloud Security Patterns

16. Index

Why subscribe?

17. Other Books You May Enjoy

Securing containers

Let’s get started!

Problem

Patterns for securing containers.

Context

Containers provide a better way to efficiently use the underlying infrastructure compared to VMs. Application components and all dependencies are packed inside a container and executed in a secure way.

As shown in the following diagram, containers do not have any guest operating system. Instead, the container leverages the operating system and environment of the underlying layer:

Figure 5.9 – Containers

Containers bring several advantages, important one being build once, run anywhere. This is achieved by packing everything that an application needs into a container, thus isolating the application from the server on which it is running. A containerized application has everything it needs, packed as a container image. A container runtime (also known as container engine, which is a software component deployed on a host operating system) is needed...