Even though Google has already published dozens of papers that help enterprises direct their scaling processes, they have launched a new security whitepaper as an extension of the previous versions.
The new whitepaper, launched on December 17th, aims to help enterprises scale their own tools with a new approach to cloud-native security. Titled BeyondProd, this new approach is quite similar to the previous BeyondCorp zero trust system.
BeyondCorp VS BeyondProd
Google’s BeyondCorp zero trust system was launched a few years ago to help guide enterprises through security systems and approaches. BeyondCorp was all about taking security away from VPNs and firewalls and bringing it closer to individual users and devices.
The new approach, that is, the extension of BeyondCorp known as BeyondProd, focuses on Google’s zero trust approach to connect machines, workloads, and services. BeyondProd is based on a similar principle to its predecessor and it includes many of the same features.
The shared features include network protection at the end, automated and standardized change rollout, isolated workloads, trusted machines running known code, and no mutual trust between services.
“In the same way that BeyondCorp helped us to evolve beyond a perimeter-based security model, BeyondProd represents a similar leap forward in our approach to production security,” Google says. “By applying the security principles in the BeyondProd model to your own cloud-native infrastructure, you can benefit from our experience, to strengthen the deployment of your workloads, how your their communications are secured, and how they affect other workloads.”
The Benefit of the New Approach
This new approach aims to improve the overall security of cloud-native applications that communicate over APIs and run on modern infrastructures. The additional security will come in handy for budget control, as there will be less money spent on unwanted security recovery issues.
All of the features listed above will be available to developers through several Google’s services such as GKE and their hybrid cloud platform known as Anthos. It is also important to mention that Google provides several open-source tools that allow developers to create systems hat adhere to platforms such as Envoy, gVisor, and Istio.
“Altogether, these controls mean that containers and the microservices running inside can be deployed, communicate with each other, and run next to each other, securely; without burdening individual microservice developers with the security and implementation details of the underlying infrastructure,”Google explains.
.png?w=600)
