Cloud Native Software Security Handbook: Unleash the power of cloud native tools for robust security in modern applications

Master widely used cloud-native platforms like Kubernetes, Calico, Kibana, Grafana, Anchor, and more to ensure secure infrastructure and software development
Key Features

• Learn how to select cloud-native platforms and integrate security solutions into the overall system
• Leverage cutting-edge tools and platforms and use them, securely, at a global scale in production
• Discover the laws and regulations that you should be aware of to avoid federal prosecution

Book Description
For a Cloud security engineer, it is crucial to think beyond the few managed services provided by the cloud vendor and truly use the plethora of cloud-native tools available for developers and security professionals, which allow for providing security solutions at scale. In this book, we cover technologies for securing the infrastructure, containers, and runtime environments using vendor-agnostic cloud-native tools under the CNCF.
The book begins by introducing the what and whys of the cloud-native environment along with a primer about the platforms that we would be exploring ongoing in the book. We then progress in the book as one would in the development phase of an application. We continue by exploring the System design choices and security trade-offs and then secure application coding techniques that every developer should be mindful of. As we move into more advanced topics, we look into the security architecture of the system and threat modelling practices, and we conclude by explaining the laws and guidelines regulating security practices in the cloud native space while exploring some real-world repercussions that companies have faced in the past due to a company's immature security practices.
By the end of the book, you'll find yourself better positioned in creating secure safe code and system designs.

What you will learn

• Learn security concerns and challenges for cloud-based app development
• Explore various tools for securing config, networks, and runtime
• Implementing threat modeling for risk mitigation strategies
• Implement various security solutions for the CI/CD pipeline
• Discover best practices for logging, monitoring, and alerting
• Understand regulatory compliance product impact on cloud security

Who This Book Is For
The target audience for the book would be developers, security professionals, and DevOps teams who are involved in designing, developing, and deploying cloud-native applications. It is intended for those with a technical background who want to gain a deeper understanding of cloud-native security and learn about the latest tools and technologies for securing cloud-native infrastructure and runtime environments. Having prior experience with cloud vendors and their managed services would be a plus to leveraging all the tools and platforms explained in this book.

深入了解並掌握像Kubernetes、Calico、Kibana、Grafana、Anchor等廣泛使用的雲原生平台，以確保安全的基礎設施和軟體開發。

主要特點：
- 學習如何選擇雲原生平台並將安全解決方案整合到整個系統中。
- 利用尖端工具和平台，在全球範圍內安全地使用它們進行生產。
- 了解應該注意的法律和法規，以避免聯邦起訴。

書籍描述：
對於雲安全工程師來說，超越雲供應商提供的少數托管服務，真正利用開發人員和安全專業人員可用的眾多雲原生工具，以實現規模化的安全解決方案至關重要。在本書中，我們使用CNCF下的供應商無關的雲原生工具來保護基礎設施、容器和運行環境的技術。

本書首先介紹了雲原生環境的概念和原因，以及我們將在書中持續探索的平台的基礎知識。然後，我們按照應用程序開發階段的方式進行書籍的進展。我們繼續探索系統設計選擇和安全權衡，然後介紹每個開發人員都應該注意的安全應用編碼技術。隨著我們進入更高級的主題，我們研究了系統的安全架構和威脅建模實踐，最後解釋了在雲原生空間中規範安全實踐的法律和指南，同時探討了一些公司過去由於公司不成熟的安全實踐而面臨的現實後果。

通過閱讀本書，您將更好地掌握創建安全可靠的代碼和系統設計的位置。

學到什麼：
- 學習雲基礎應用開發的安全問題和挑戰。
- 探索保護配置、網絡和運行時的各種工具。
- 實施威脅建模以進行風險緩解策略。
- 在CI/CD流程中實施各種安全解決方案。
- 了解日誌記錄、監控和警報的最佳實踐。
- 了解法規合規對雲安全的產品影響。

適合閱讀對象：
本書的目標讀者是開發人員、安全專業人員和DevOps團隊，他們參與設計、開發和部署雲原生應用程序。本書適合具有技術背景的人士，他們希望更深入地了解雲原生安全，並了解保護雲原生基礎設施和運行環境的最新工具和技術。具有雲供應商和其托管服務的先前經驗將有助於充分利用本書中解釋的所有工具和平台。

1. Understanding Cloud Native Architecture
2. Secure System Design using Cloud Native
3. Application Development practices in Cloud Native world
4. Developing a Secure Coding Culture
5. Threat Modeling for Cloud Native
6. Securing the Infrastructure
7. Cloud Security Operations
8. DevSecOps Practices for Cloud Native
9. Legal and Compliance Issues
10. Cloud Native Vendor Management and Security Certifications

- 理解雲原生架構
- 使用雲原生進行安全系統設計
- 雲原生世界中的應用程式開發實踐
- 建立安全編碼文化
- 雲原生的威脅建模
- 保護基礎設施的安全性
- 雲安全運營
- 雲原生的DevSecOps實踐
- 法律和合規問題
- 雲原生供應商管理和安全認證