Microsegmentation and microservices
- found this article on DZone and wanted to quickly share my thoughts on it.
“Micro is big these days” - This statement is from a article showing the similarities and differences between microservices and microsegmentation. Of course we all know the differences, but we might have never thought about the similarities between the two approaches.
Microservices are about dissecting applications to smaller units and run those units independently instead of running them in a monolithic application. This creates the ability to decouple those functions and makes the service more scalable, independent from the other services and easier to maintain a single functionality. Often one team is responsible for one microservice. They maintain their interface, but consumers of the service do not have to worry about the inner workings as long as they stick to the public interface.
Microsegmentation is about transforming the network into smaller units and controlling access to those smaller units (called segments) in different granularities down to the process or even user level. It can also decouple segmentation (for security) from using the network infrastructure and making it independent of the underlying architecture.
I like the approach the article suggests, cohabitation, both approaches can and should coexist. Just because you use one or the other does not mean you are achieving both.
