Summary
In this chapter, the focus was on the security considerations involved in cloud-native application development. The chapter provided an overview of cloud-native development and highlighted the differences between traditional and cloud-native app development. The DevOps model and how it fits into cloud-native architecture was also discussed.
The chapter explored the different security threats and attacks that can arise in cloud-native application development and introduced the best practices for integrating security into the development process. The OWASP Top 10 for Cloud-Native and the importance of not just focusing on shift-left and incorporating Dev-First Security were discussed.
This chapter also highlighted the security and development trade-off and discussed the benefits of incorporating supplemental security components into the development process. OWASP ASVS was also introduced as a tool for assessing the security posture of cloud-native applications.
Finally...
