You're reading from Hybrid Cloud Security Patterns Leverage modern repeatable architecture patterns to secure your workloads on the cloud

Product type Paperback

Published in Nov 2022

Publisher Packt

ISBN-13 9781803233581

Length 252 pages

Edition 1st Edition

Concepts

Cloud Computing

Author (1):

Sreekanth Iyer

View More author details

Table of Contents (18) Chapters

Preface

1. Part 1: Introduction to Cloud Security

2. Chapter 1: Opportunities and Challenges with Hybrid Multi-cloud Solutions FREE CHAPTER

3. Chapter 2: Understanding Shared Responsibility Model for Cloud Security

4. Part 2: Identity and Access Management Patterns

5. Chapter 3: Cloud Identity and Access Management

6. Chapter 4: Implementing Identity and Access Management for Cloud Applications

7. Part 3: Infrastructure Security Patterns

8. Chapter 5: How to Secure Compute Infrastructure

9. Chapter 6: Implementing Network Isolation, Secure Connectivity, and Protection

10. Part 4: Data and Application Security Patterns

11. Chapter 7: Data Security Patterns

12. Chapter 8: Shift Left Security for DevOps

13. Part 5: Cloud Security Posture Management and Zero Trust Architecture

14. Chapter 9: Managing the Security Posture for Your Cloud Deployments

15. Chapter 10: Building Zero Trust Architecture with Hybrid Cloud Security Patterns

16. Index

Why subscribe?

17. Other Books You May Enjoy

Network isolation patterns

Let's get started!

Problem

Why is network isolation needed and how can we achieve network isolation?

Context

Most organizations’ applications are distributed across different data centers and multiple cloud environments based on business needs. These applications need to connect to other cloud and on-premises applications to fulfill their functions. Networks are currently protected with perimeter-based network security. This mostly enables what is called north-south (client to server) traffic and is typically done by leveraging network firewalls. But applications or assets within the network are generally trusted, and east-west traffic is allowed without any controls. This traditional approach of network protection cannot be extended to the cloud because if the network gets attacked, it exposes the entire internal and external network that is spread across the cloud. Modern security thinking, in fact, says that you should assume that...