EBP Hearts Microservices

Security teams need to think like developers to more efficiently protect microservice based architectures. Trying to create security enforcement policies organized around monolithic applications flows will not only make it harder to keep up with dynamic releases – it could undermine the advantages of microservices and zero trust networking altogether.

Entitlement Based Policies

Security policies should not be organized around “communities” – they should be built around the entitlements they grant. These entitlements should be “service provider” focused – not based on membership in a point-in-time organizational structure. Developers realized the value of object oriented design years ago – security policies should do the same.