INSUBCONTINENT EXCLUSIVE:
Over the years, Google various whitepapers, detailing how the company solves specific problems at scale, have regularly spawned new startup
ecosystems and changed how other enterprises think about scaling their own tools
Today, the company is publishing a new security whitepaper that details how it keeps its cloud-native architecture safe.
The name,
BeyondProd, already indicates that this is an extension of the BeyondCorp zero trust system the company first introduced a few years ago
While BeyondCorp is about shifting security away from VPNs and firewalls on the perimeter to the individual users and devices, BeyondProd
focuses on Google zero trust approach to how it connects machines, workloads and services.
Unsurprisingly, BeyondProd is based on pretty
much the same principles as BeyondCorp, including network protection at the end, no mutual trust between services, trusted machines running
known code, automated and standardized change rollout and isolated workloads
All of this, of course, focuses on securing cloud-native applications that generally communicate over APIs and run on modern
infrastructure.
&Altogether, these controls mean that containers and the microservices running inside can be deployed, communicate with
each other, and run next to each other, securely; without burdening individual microservice developers with the security and implementation
details of the underlying infrastructure,& Google explains.
Google, of course, notes that it is making all of these features available to
developers through its own services like GKE and Anthos, its hybrid cloud platform
In addition, though, the company also stresses that a lot of its open-source tools also allow enterprises to build systems that adhere to
the same platforms, including the likes of Envoy, Istio, gVisor and others.
&In the same way that BeyondCorp helped us to evolve beyond a
perimeter-based security model, BeyondProd represents a similar leap forward in our approach to production security,& Google says
&By applying the security principles in the BeyondProd model to your own cloud-native infrastructure, you can benefit from our experience,
to strengthen the deployment of your workloads, how your their communications are secured, and how they affect other workloads.&
You can
read the full whitepaper here.
