A new declarative system, in which policy can be defined outside the app code, but integrated with APIs across the stack for enforcement, is the only way forward.
![beyondcorp for the rest ofus beyondcorp for the rest ofus](https://ldapwiki.com/images/byondcorp_data-processing_pipeline.jpg)
Old approaches to policy and authorisation won’t be sufficient to address the new scale, speed and complexity challenges. And of course, Kubernetes leads the pack of must-haves for modern application deployments.īy design, this new microservices stack is highly dynamic, ephemeral and decoupled. The technologies created by this global cohort- including Docker, Envoy, Istio, and Prometheus-are critical for today’s enterprises. Open source projects have been key to this shift, driven by the peer-reviewed community’s innovation, iteration, and hardening. Deployments have moved from simple exploration to full-blown production. In just the past two years, the cloud-native application stack and microservice architecture has officially “arrived” in the enterprise. Just as compute, network, storage and monitoring had to evolve to match the demands of modern applications, so too must policy and authorisation services evolve as well.
![beyondcorp for the rest ofus beyondcorp for the rest ofus](https://www.itsecurityguru.org/wp-content/uploads/2020/10/mitchell-luo-jz4ca36oJ_M-unsplash-scaled.jpg)
“Policy-as-code" solutions will be critical for Kubernetes, continuous integration and continuous delivery (CICD), databases, APIs, servicemesh, apps, cloud platforms, and more. Indeed, with today’s “everything-as-code” mentality-borne from the trends towards automation, GitOps, and containerisation-it’s imperative to build policy into the infrastructure itself.
![beyondcorp for the rest ofus beyondcorp for the rest ofus](https://storage.googleapis.com/gweb-cloudblog-publish/images/BeyondCorp_Enterprise_reports.max-2800x2800.jpg)
A complete reinvention of authorisation is required to manage the operational, security, and compliance risks of the new app development world. Now is also the time for policy and authorisation to evolve in order to provide the underpinnings of all security modern strategies, whether you prefer to call it Zero Trust, Gartner’s CARTA, or Google’s BeyondCorp. The application development market is moving to containerised “cloud-native” application architectures and away from monolithic apps.