Securing Cloud Native Apps

A no-fluff guide to implementing best practices for securing cloud native services.

What are the best practices to secure microservices, the latest popular wave of innovation in software engineering? This book teaches you to automate security design and verifications to keep microservices software development running smoothly and securely in a cloud-native environment.

Securing Cloud Native Apps takes you through every step of secure microservice software development and deployment for systems like Docker and Kubernetes. You’ll begin by exploring core microservices security tenets, then dive into developing microservices and securing microservices infrastructure. You’ll gain the skills to think like a security engineer at scale and effectively plan secure designs. You’ll learn to:

• Perform threat monitoring to understand the security properties and risks of microservices
  
• Implement secure authorization and authentication and secrets management
  
• Build secure network and service mesh paradigms
  
• Perform runtime monitoring to catch and stop attacks
  
• Coordinate with stakeholders and software development teams
  
• Put all these skills together with a case study covering a real company’s security practices
  

Each chapter provides step-by-step explanations of vital concepts, practical examples, mistakes to look out for, and quizzes to test your knowledge. Whether you’re a one-person security team or a larger group, this book equips you with the skills to build a full-fledged microservices security discipline.

Nick Reva is a security engineer, author, teacher and builder that loves growing and leading security engineering teams for the world’s most ambitious engineering organizations. Over the last 10 years, Reva has led security engineering teams to build highly scalable security and services and defenses in cloud native environments at Snapchat and previously SpaceX. Reva has a Masters degree in Security Engineering and advises several companies including HackerOne, Arkose Labs and DeepFence. In 2021, he authored a Microservices Security course with Udacity that has been enjoyed by over 2,000 students.

Shrikant Pandhare is an engineering manager, leading infrastructure security at Snap, Inc. He is passionate about cloud security monitoring, cross-cloud access patterns, Kubernetes security, and securing a cloud fleet at scale. Previously, Pandhare led security initiatives at Splunk. He has also helped to secure middleware applications and build the cloud identity service at Oracle.

Michael Anderson is a security engineer and one of the founding members of the production security team at Snapchat. Anderson has presented at several national conferences, including DEFCON. He also started the Kubernetes Security team at Snapchat, leading the security effort on new infrastructure models.