Cloud Security Gaps


When organizations move application workloads to public cloud environments or build greenfield applications that are designed for the cloud from the beginning, there a number of security assumptions in the legacy, datacentercentric security approach that tend to fail. In this paper, we will focus on the concept of segmentation as a security counter measure, and how old approaches are not translating successfully to cloud environments. Finally, we will offer an alternative of workload identity as a new control point for security applications in the cloud.