Introduction to security in cloud-native multi-cloud environments
Before digging deeper into the security of cloud-native applications in a multi-cloud environment, let’s explore the classic approach of the 4Cs of cloud-native security. The 4Cs approach (as presented in Figure 5.1) is a layered approach to ensuring the security of cloud-native applications:
Figure 5.1 – 4Cs of cloud security
Each layer in this approach is dependent on the security of the layer outside it. For example, secure code will be dependent on the security of the container where it’s deployed. Let’s have a closer look at each one of the components of the 4Cs approach:
- Cloud: This is the infrastructure layer that hosts and executes your application. At this layer, you should ensure data and configuration security and follow the best security practices recommended by your cloud provider.
- Cluster: As we have explored in previous chapters, this...