« Previous 1 2
Microsegmentation in the data center
Improved Separation
Conclusion
Microsegmentation is an exciting way to combine more security with a flexible network structure while making it easy to control security and configuration through the use of policies. However, it is a good idea to keep in mind that all that glitters is not gold. Providers always promise that their policy management solutions will provide control, even over complex environments comprising a large number of segments. In spite of such assurances, you should carefully consider how best to manage the policies. Not every configuration model is simple. Use of the word "programmatic" should definitely set off alarm bells.
Microsegmentation, even in conjunction with complementary security functions, such as firewalls and vulnerability scanners, does not replace other security mechanisms such as database firewalls, system hardening, and sophisticated user and authorization management. Moreover, many questions remain concerning hybrid infrastructures.
« Previous 1 2
Buy this article as PDF
(incl. VAT)