Securing Cloud Native Apps

A no-fluff guide to implementing best practices for securing cloud native services. What are the best practices to secure microservices, the latest popular wave of innovation in software engineering? This book teaches you to automate security design and verifications to keep microservices software development running smoothly and securely in a cloud-native environment. Securing Cloud Native Apps takes you through every step of secure microservice software development and deployment for systems like Docker and Kubernetes. You'll begin by exploring core microservices security tenets, then dive into developing microservices and securing microservices infrastructure. You'll gain the skills to think like a security engineer at scale and effectively plan secure designs. You'll learn to: Perform threat monitoring to understand the security properties and risks of microservices

Implement secure authorization and authentication and secrets management

Build secure network and service mesh paradigms

Perform runtime monitoring to catch and stop attacks

Coordinate with stakeholders and software development teams

Put all these skills together with a case study covering a real company's security practices

Each chapter provides step-by-step explanations of vital concepts, practical examples, mistakes to look out for, and quizzes to test your knowledge. Whether you're a one-person security team or a larger group, this book equips you with the skills to build a full-fledged microservices security discipline.