All Research
Buyer's Compass
I like this
I don't like this

Cloud-Native Application Protection Platforms

Mike Small
Alexei Balaganski
Cloud IaaS is used extensively to develop, deliver new applications, and reengineer existing ones. This is often because cloud services provide an environment for accelerated development without the need for capital expenditure and avoids lengthy procurement delays to obtain hardware. However, this also creates challenges, in particular security as a shared responsibility, and this increases complexity since each cloud service provides security capabilities in diverse ways. While the Cloud Service Providers (CSPs) must take steps to secure the service they provide, it is up to the customer to secure the way they use the service. Cloud-Native Application Protection Platforms (CNAPP) are intended to reduce complexity by helping organizations using multiple cloud services to identify and manage the risks for which they have responsibility.

1 The Challenge

Cloud IaaS is used extensively to develop, deliver new applications, and reengineer existing ones. This is often because cloud services provide an environment for accelerated development without the need for capital expenditure and avoids lengthy procurement delays to obtain hardware. However, this also creates challenges, in particular security as a shared responsibility, and this increases complexity since each cloud service provides security capabilities in diverse ways. While the Cloud Service Providers (CSPs) must take steps to secure the service they provide, it is up to the customer to secure the way they use the service. Cloud-Native Application Protection Platforms (CNAPP) are intended to reduce complexity by helping organizations using multiple cloud services to identify and manage the risks for which they have responsibility.

1.1 Shared Responsibility for Security and Compliance

Figure 1: How responsibilities for security and compliance are shared

The customer does not manage or control the underlying cloud infrastructure but is responsible for managing everything above the service provided. The customer also remains responsible for compliance with laws and regulations governing the processing of their data. How these responsibilities for IaaS are shared is illustrated in Figure 1.

Full article is available for registered users with free trial access or paid subscription.
Log in
Register and read on!
Create an account and buy Professional package, to access this and 600+ other in-depth and up-to-date insights
Register your account to start 30 days of free trial access
Register
Get premium access
Choose a package

Stay up to date

Subscribe for a newsletter to receive updates on newest events, insights and research.
I have read and agree to the Privacy Policy
I have read and agree to the Terms of Use