In this article, Aporeto CTO and Co-founder Dimitri Stiliadis discusses the concept of segmentation. Read the full article on LinkedIn here.
The concept of segmentation, or separating applications in different domains, is one of the most widely used security practices. Segmentation protects application deployments by minimizing lateral movement of attackers or reducing the blast radius by containing a system component compromise within a small subsystem.
Cloud environments provide an unique opportunity to take an entirely different approach to segmentation. But what are the fundamental benefits of transitioning to an end-to-end authentication and authorization model?