Название: Cloud Native Application Protection Platforms: A Guide to CNAPPs and the Foundations of Comprehensive Cloud SecurityАвтор: Russ Miles, Stephen Giguere, Taylor Smith
Издательство: O’Reilly Media, Inc.
Год: 2024
Страниц: 204
Язык: английский
Формат: epub (true)
Размер: 10.1 MB
Cloud native security isn't a game for individual players. It requires team collaboration with a platform that can help cloud security engineers, developers, and operations people do their best work. That's what the cloud native application protection platform (CNAPP) delivers. With this practical guide, you'll learn how CNAPPs can help you consolidate security through DevSecOps across cloud native technologies, practices, and application lifecycles.
Through real-life attack scenarios, authors Russ Miles, Steve Giguere, and Taylor Smith help you explore how CNAPP not only mitigates multidimensional threats, but also reduces complexity and helps your team stay one step ahead of attackers. CNAPP provides a holistic approach to your cloud native development across identities, workloads, networks, and infrastructure.
With this book, you will:
• Examine threats to different parts of the cloud native stack, including pipelines, supply chains, infrastructure, workloads, and applications
• Learn what CNAPP is and how it enables the context-sharing and collaboration necessary to secure your applications from development to runtime
• Assess your own attack surface from a code and runtime standpoint
• Identify blind spots in your existing cloud native security coverage
• Leverage CNAPP to achieve a holistic, collaborative security environment
Here’s a chapter-by-chapter breakdown of what you can expect:
Chapter 1 sets the scene, establishing a tale of two sides, attacker and defender. It dives into the problem of an expanding attack surface, the siloing of teams and information, and alert overload, and does so by introducing our common narratives and bringing us back to some of the first principles of security.
Chapter 2 introduces observability and translates that into the uniformity of security policy across existing silos of security.
Chapter 3 begins our technology journey with the birthplace of CNAPPs, looking at our cloud security posture.
Chapter 4 shifts the conversation left to tools, culture, and collaboration.
Chapters 5 and 6 bring supply chain security into question, starting with our dependencies (both direct and transitive) within our application but extending our investigation into the security of the pipeline itself.
Chapter 7 unveils the secrets of uniting your cloud security tools at runtime into a single, powerful force. Imagine your cloud security posture, identity, and workload security measures all working in beautiful harmony, and turning that alert avalanche into actionable insights.
Chapter 8 asks, “Where is your data?” Data is a pot of gold at the end of an attacker’s rainbow. We need to ask ourselves, where is it, and does an attack path find its way there?
Chapter 9 says “no!” to tribal knowledge. Equip your security dream team with the knowledge to collaborate like never before. Cloud native creators, builders, and defenders will at last work together to become an unstoppable security force.
Additional resources can be found in this book’s GitHub repository.
Who Should Read This Book:
Security is everyone’s job, and this book has something for all technology areas, from DevOps to SecOps, but most certainly, it is for those daring to secure the murky waters of cloud native application development. The book does assume that users have a basic understanding of the cloud native ecosystem.
Скачать Cloud Native Application Protection Platforms: A Guide to CNAPPs and the Foundations of Comprehensive Cloud Security