microsegment.io

segment all the things

Scaling up vs scaling out your security segmentation

If you follow discussion on running cloud native, monolithic or more traditional applications you may have stumbled over the terms “scale up“ and “scale out“. Don’t feel bad if you don’t know these, because they were formerly just “vertical scaling“ (scale up) and “horizontal scaling“ (scale out). What is scale up? Scale up means, if you have e.g. a server in your datacenter running your database, to make the database faster or have more concurrent client getting served, you would add more hardware to that server and just make it the biggest machine available.

Posted by     Alexander Goller on Monday, September 9, 2019

Segment-O-Pedia

Encyclopedia segmentata

This page is work in progress. If there is something missing feel free to comment or send me a mail.

Posted by     Alexander Goller on Friday, September 6, 2019

Ideas on Segmentation metrics (part two)

Please check out Part one of this series of articles Metric One: Do you have more than one segment? This question is, of course, more of a rhetorical question, but there is a point about this one. Of course almost all companies have more than one segment. Most companies use VLANs extensively. We break out DMZs and internal data center LANs of course. Sometimes we use firewall interfaces between those VLANs or segments and treat them as zones.

Posted by     Alexander Goller on Monday, September 2, 2019

ACT IAC on Zero Trust trends

The American Council for Technology-Industry Advisory Council (ACT-IAC), a non commercial organisation for creating a more innovative government published a paper on Zero Trust I would recommend this paper for anybody remotely thinking about Zero Trust, be it because you start thinking about introducing it or because it is just one of those trends that you want to catch up on. There is a huge amount of truth and knowledge in this document and it is not having any marketing in it. I read it and thought this is sound advice for anyone that looks to improve their security posture with the ultimate, long term Zero Trust goal in mind.

Posted by     Alexander Goller on Sunday, August 25, 2019

Ideas on segmentation metrics (part one)

What you measure is what you get If you are like me and live and breath IT or IT security, the above statement probably does not ring a bell and you don’t realize the source of this. It is from a person called Robert. S. Kaplan who developed something you may have heard of, the balanced scorecard. I will not dig into economics, because we are not in business school, but the essence of the scorecard is that you need metrics on which you can measure success or failure to be successful or be able to reach your objectives.

Posted by     Alexander Goller on Thursday, August 22, 2019

avatar

Principal Solutions Architect, Zero Trust Evangelist, BSD enthusiast

FEATURED TAGS
2026 attacks containers hard-truths identity kubernetes lateral-movement links management-plane metrics microsegmentation microservices mitre segmentation supply-chain weekly-roundup zero-trust